ScanMalware.com

Security Scan Report: paylalo.sviluppo.host

Redirected to:
https://www.paypal.com/de/home
Submitted: Apr 26, 2026, 3:27:21 PMCompleted: Apr 26, 2026, 3:28:18 PMpubliccompleted
Loading additional data...

Summary

This website contacted 11 IPs in 2 countries across 9 domains to perform 98 HTTP transactions. The main domain is paypal.com and was registered NaN years ago.

Submitted URL: https://paylalo.sviluppo.host/ge/DUVzTTavlOw/?redirection=login

Effective URL: https://www.paypal.com/de/homeRedirected

AI Security Verdict

Moderate Risk

Confidence: 82%

5
Risk Score

The site pretends to be PayPal on an unranked, unrelated domain; high risk of phishing and should be avoided and reported.

Risk Factors
Brand impersonation (PayPal) on a non‑official, unranked domain
Unranked domain in Cisco Umbrella reputation list
Highly obfuscated JavaScript (critical score)
Safety Factors
No credential or payment forms detected
Domain age is over 25 years (well‑established)
No Indicators of Compromise, malware YARA matches, or IDS alerts
Established domain (9782 days old) with no strong malicious indicators — risk clamped from 8 to 5
Domain age information unavailable

Details

Page Title

PayPal Konto | Digitale Mobile Wallet | PayPal DE

Scan Type

public

Language

🇩🇪

German

(80% confidence)

Category

e-commerce shopping

(93%)

Domain Information

The domain name 'paylalo.sviluppo.host' uses the .host top-level domain, featuring subdomain 'paylalo'. Count 8 characters in 'sviluppo' split between three vowels and 5 consonants. It segments into four words: s, vil, up, po. Median word length is 2 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://paylalo.sviluppo.host/ge/DUVzTTavlOw/?redirection=login

Page Load Overview

4.97s
Total Load Time
98
HTTP Requests
9
Domains
1.1 MB
Total Size

Language Analysis

Primary Language

🇩🇪German
Code: de
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:de
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:de-DE
Text Length:8,266 chars
Detector Agreement:80%

Website Classification

Primary Category

e-commerce shopping93% confidence
Type: static
Method: ml+structural

All Detected Categories

e-commerce shopping
93%
finance banking
92%
technology software
51%
corporate
25%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
18104.19.183.109United States
AS13335Cloudflare, Inc.
8142.251.127.94United States
AS15169Google LLC
834.149.66.154Kansas City, Missouri, United States
AS396982Google LLC
8104.18.6.168United States
AS13335Cloudflare, Inc.
8104.16.79.73United States
AS13335Cloudflare, Inc.
8172.64.152.85United States
AS13335Cloudflare, Inc.
8192.178.183.94United States
AS15169Google LLC
8104.19.184.109United States
AS13335Cloudflare, Inc.
8149.62.185.217Italy
AS47242Host SpA
8104.18.7.168United States
AS13335Cloudflare, Inc.
9811--

Detected Technologies2

LiteSpeed
40%
HTTP/3
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T19784AEBC5D18EC2D4700848DE1CF3798B11F825A8B02426B776E6E7E87A10B7756CA77

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:mZIjaklMjjG/q1G08z5TwNrm/FPFqycsPwq:/FPFqycs4q

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:383907:CuRQAgEBEVQSQoUkB6SRi4TBAQswUizYCcDCqIgIFgAHEoKqxUoCAqBW4WgwJPcCFoCChICnBBTIoYUCAmKoGAYKmQ4EIReJ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:fd278383e7fdbcc2
Perceptual Hash:e3aacbca62c8e8ca
Difference Hash:7149978f4d33684c
Wavelet Hash:fd030303c1fdfcc0
Color Hash:#6ce0c3

Other Hashes

Crop Resistant:7149978f4d33684c,d2d2d387294594b6,29292929adeda9ad,ac545aab3553d2c1,3838386c4c4c5adb

Scan History

Scan history not available

Unable to load historical scan data