Security Scan Report: did.li

Redirected to: https://claruno.click/voucherid565329413510/

Submitted: Nov 30, 2025, 5:56:01 PMCompleted: Nov 30, 2025, 5:58:25 PMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 0 countries across 2 domains to perform 6 HTTP transactions. The main domain is claruno.click and was registered NaN years ago.

Submitted URL: https://did.li/kvesh6-il

Effective URL: https://claruno.click/voucherid565329413510/Redirected

AI Security Verdict

Low Risk

Confidence: 70%

3
Risk Score

Site shows minor risk due to new, unranked domain and payment‑related title, but no active threats detected.

Risk Factors
Very new domain (< 30‑90 days) increases suspicion
Unranked domain (not in Cisco Umbrella top 1 M) adds risk
Payment‑related page title without functional forms may indicate a lure
Safety Factors
No malicious Indicators of Compromise matches found
No credential or payment collection forms detected
No known malicious redirect services used
Domain age information unavailable

Details

Page Title

תשלומים

Scan Type

public

Language

🇮🇱

HE

(80% confidence)

Category

legitimate website

(45%)

Domain Information

Within the .li country-code top-level domain, 'did.li' is registered without a subdomain. Its registrable label 'did' stretches across 3 characters split between 1 vowel and two consonants. Breaking it apart gives 1 word: did. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://did.li/kvesh6-il

Page Load Overview

1.38s
Total Load Time
6
HTTP Requests
2
Domains
43 KB
Total Size

Language Analysis

Primary Language

🇮🇱Hebrew
Code: he
Confidence:80%
Script:Hebrew
Direction:rtl

Detection Details

Language Code:he
Detection Confidence:80%
Script Type:Hebrew
HTML Lang Attribute:he
Text Length:187 chars
Detector Agreement:100%

Website Classification

Primary Category

legitimate website45% confidence
Type: static
Method: ml+structural

All Detected Categories

legitimate website
45%
e-commerce
36%
phishing/scam
20%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
5172.93.123.10UnknownUnknown
165.9.175.110UnknownUnknown
165.9.175.39UnknownUnknown
165.9.175.60UnknownUnknown
165.9.175.114UnknownUnknown
65--

Content Similarity HashesFor malware variant detection

Image Hashes

Perceptual Hashes

Average Hash:N/A
Perceptual Hash:N/A
Difference Hash:N/A
Wavelet Hash:N/A
Color Hash:N/A

Other Hashes

Crop Resistant:N/A

Scan History

Scan history not available

Unable to load historical scan data