ScanMalware.com

Security Scan Report: hrca-hrca-btmez-ayzbir.cfd

Submitted: Nov 4, 2025, 12:45:34 AMCompleted: Nov 4, 2025, 12:45:55 AMpubliccompleted
Loading additional data...

Summary

This website contacted 19 IPs in 3 countries across 8 domains to perform 24 HTTP transactions. The main domain is hrca-hrca-btmez-ayzbir.cfd and was registered NaN years ago.

Submitted URL: https://hrca-hrca-btmez-ayzbir.cfd/

AI Security Verdict

Low Risk

Confidence: 75%

2
Risk Score

New, unranked domain with no malicious signs; proceed cautiously.

Risk Factors
Newly registered domain (<7 days) with no established reputation
Safety Factors
No malicious Indicators of Compromise detected
No credential or payment collection forms present
Content appears to be a standard grocery/market site
Domain age information unavailable

Details

Page Title

Gourmet Market

Scan Type

public

Language

🇹🇷

Turkish

(80% confidence)

Category

adult content

(58%)

Domain Information

The domain name 'hrca-hrca-btmez-ayzbir.cfd' uses the .cfd top-level domain without a subdomain. The registrable portion 'hrca-hrca-btmez-ayzbir' spans 22 characters containing five vowels alongside 14 consonants, plus three hyphens. Breaking it apart gives 9 words: hrc, a, hrc, a, bt, mez, a, yz, bir. Expect 2 characters per word on average. Most frequently, 'a' shows up in Hungarian. Secondary signals appear in Portuguese and Galician.

Screenshot

Security scan screenshot of https://hrca-hrca-btmez-ayzbir.cfd/

Page Load Overview

6.10s
Total Load Time
24
HTTP Requests
8
Domains
1.3 MB
Total Size

Language Analysis

Primary Language

🇹🇷Turkish
Code: tr
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:tr
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:tr
Text Length:1,904 chars
Detector Agreement:100%

Website Classification

Primary Category

adult content58% confidence
Type: static
Method: ml+structural

All Detected Categories

adult content
58%
blog personal website
46%
government public service
30%
phishing/scam
20%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
6146.75.122.208Frankfurt am Main, Hesse, Germany
AS54113FASTLY
1157.240.0.6Frankfurt am Main, Hesse, Germany
AS32934FACEBOOK
1142.250.185.195United States
AS15169GOOGLE
178.159.156.57Sofia, Sofia-Capital, Bulgaria
AS214943Railnet LLC
1157.240.0.35Frankfurt am Main, Hesse, Germany
AS32934FACEBOOK
1142.250.186.42United States
AS15169GOOGLE
1188.114.97.3United States
AS13335CLOUDFLARENET
1104.17.25.14United States
AS13335CLOUDFLARENET
12a06:98c1:3120::3United States
AS13335CLOUDFLARENET
1188.114.96.3United States
AS13335CLOUDFLARENET
2419--

Detected Technologies2

HTTP/3
40%
Facebook Pixel
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T194C2725A55F33056681BF5A85BB7534A2375D003D91BCD283BEC17488F87AE99C83B8C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:Phnfgrrt9H5F5h1fDqF2F2Fgqo68BoZmrFC:BgF9H5F5h17qF2F2FJofICFC

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:27248:KEMAECGByiiBZexqIA8jRBmEWEcAGJUBjDrRAdAaTiAH14CgAHKsETAEWF6BKmQbcOhgoTECAACCACCeApVBAmvZvWAGRoCi

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ff0000600060001f
Perceptual Hash:a2debee08ec280de
Difference Hash:69b7e5c5c58595ff
Wavelet Hash:ff030171716103ff
Color Hash:#cee06c

Other Hashes

Crop Resistant:69b7e5c5c58595ff,485827a6e7ecece6,d080808a0ae080e4,a63ec7c6c79336ff

Scan History

Scan history not available

Unable to load historical scan data