ScanMalware.com

Security Scan Report: mrelay.infos-fr.com

Redirected to: https://www.lemonde.fr/

Site favicon
Submitted: Dec 9, 2025, 2:42:10 PMCompleted: Dec 9, 2025, 2:43:23 PMpubliccompleted
Loading additional data...

Summary

This website contacted 11 IPs in 4 countries across 7 domains to perform 69 HTTP transactions. The main domain is lemonde.fr.

Submitted URL: https://mrelay.infos-fr.com/as.php

Effective URL: https://www.lemonde.fr/Redirected

AI Security Verdict

High Risk

Confidence: 92%

9
Risk Score

High‑risk phishing site masquerading as Le Monde via an untrusted redirect.

Risk Factors
Impersonation of a well‑known brand on an unusual, unranked domain
New or unregistered domain used for redirect
Suspicious redirect chain (initial domain not a known redirect service)
Garbage OCR text suggests deceptive content before redirect
Domain age information unavailable

Details

Page Title

Le Monde.fr - Actualités et Infos en France et dans le monde

Scan Type

public

Language

🇫🇷

French

(80% confidence)

Category

news media journalism

(56%)

Domain Information

Within the commercial generic top-level domain (.com), 'mrelay.infos-fr.com' is registered, featuring subdomain 'mrelay'. The core label 'infos-fr' covers 8 characters with 2 vowels and 5 consonants, plus 1 hyphen. It segments into three words: info, s, fr. The median word length lands at 2 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://mrelay.infos-fr.com/as.php

Page Load Overview

29.83s
Total Load Time
69
HTTP Requests
7
Domains
1.4 MB
Total Size

Language Analysis

Primary Language

🇫🇷French
Code: fr
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:fr
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:fr
Text Length:50,236 chars
Detector Agreement:100%

Website Classification

Primary Category

news media journalism56% confidence
Type: spa
Method: ml+structural

All Detected Categories

news media journalism
56%
corporate business
48%
entertainment media
32%
corporate
25%

Detected Features

OG: website
Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
918.165.140.43United States
AS16509AMAZON-02
691.212.166.115St Petersburg, St.-Petersburg, Russia
AS198953Proton66 OOO
6172.67.212.172United States
AS13335CLOUDFLARENET
6104.21.37.193United States
AS13335CLOUDFLARENET
688.221.169.246Frankfurt am Main, Hesse, Germany
AS16625AKAMAI-AS
6199.232.174.217Stockholm, Stockholm County, Sweden
AS54113FASTLY
62606:4700:3034::ac43:d4acUnited States
AS13335CLOUDFLARENET
62606:4700:3037::6815:25c1United States
AS13335CLOUDFLARENET
618.165.140.57United States
AS16509AMAZON-02
618.165.140.41United States
AS16509AMAZON-02
6911--

Detected Technologies2

X-UA-Compatible
100%
Open-Graph-Protocolvwebsite
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T12D44F9B2B5C067374183C1CBFB65675AE195840ACADA4A40F3FD838957CADD5D2C32AC

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

6144:JFwj5rOUOcfBmRLCuDNDc7Ne/vLh1kBROyCfH6sIiwwGg58VhuvwvDYM4/jOqCiO:mKIay+H0H

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:275588:QIIA1oSkAMAsKBSAiwDUGKJZNIyipUU4AGOAdbC0EiDhICYQEIAKQZkA8bqGSMCCiCIEIK0zKIEEASSJSQEgiVQggB0CqDNE

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00183c3c3c383c00
Perceptual Hash:cb1936e136986799
Difference Hash:0f717171716b710c
Wavelet Hash:e73c3c3c3c3c3c02
Color Hash:#85d279

Other Hashes

Crop Resistant:a262a292863a2b8c,0f717171716b710c

Scan History

Scan history not available

Unable to load historical scan data