Security Scan Report: uk-whatapp.hl.cn

Redirected to:
https://hk.yahoo.com/?guccounter=1
Site favicon
Submitted: Jul 8, 2026, 7:44:26 AMCompleted: Jul 8, 2026, 7:45:35 AMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 3 countries across 5 domains to perform 2 HTTP transactions. The main domain is hk.yahoo.com and was registered NaN years ago.

Submitted URL: http://uk-whatapp.hl.cn/

Effective URL: https://hk.yahoo.com/?guccounter=1Redirected

AI Security Verdict

Low Risk

Confidence: 72%

3
Risk Score

The site mimics Yahoo with mismatched domain and redirects but lacks credential collection; treat as moderate risk.

Risk Factors
Brand impersonation (Yahoo brand on unrelated domain)
Excessive redirects (4)
Obfuscated JavaScript (high score)
Safety Factors
No password, payment, or disguised password fields
No credential exfiltration or cross‑origin form submission
No threat‑intel matches or malware detections
Verdict cited a credential/login form, but DOM analysis found no password field (real or disguised) or payment field, and no other hard signal — credential-phishing framing unsupported; risk adjusted from 5 to 3
Domain age information unavailable

Details

Page Title

Yahoo

Scan Type

public

Language

🇰🇷

Korean

(65% confidence)

Category

adult content

(95%)

Domain Information

The domain name 'uk-whatapp.hl.cn' uses the Chinese country-code top-level domain (.hl.cn). Its registrable label 'uk-whatapp' stretches across 10 characters split between three vowels and 6 consonants; it also includes one hyphen. Tokenizing the label suggests three words: uk, what, app. Median word length comes out to three characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://uk-whatapp.hl.cn/

Page Load Overview

2.14s
Total Load Time
22
HTTP Requests
6
Domains
166 KB
Total Size

Language Analysis

Primary Language

🇰🇷Korean
Code: ko
Confidence:65%
Script:Hangul
Direction:ltr

Detection Details

Language Code:ko
Detection Confidence:65%
Script Type:Hangul
HTML Lang Attribute:zh-Hant-HK
Text Length:20,915 chars
Detector Agreement:100%
Language mismatch: Declared as zh but detected as ko

Website Classification

Primary Category

adult content95% confidence
Type: static
Method: ml+structural

All Detected Categories

adult content
95%
social media network
94%
real estate property
92%
healthcare medical
91%
blog personal website
90%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
752.18.103.144Aws · CLOUDDublin, Leinster, Ireland
AS16509Amazon.com, Inc.
554.77.189.28Aws · CLOUDDublin, Leinster, Ireland
AS16509Amazon.com, Inc.
5104.208.68.88Azure · CLOUDHong Kong, Hong Kong
AS8075Microsoft Corporation
587.248.119.252United Kingdom
AS203220Yahoo-UK Limited
224--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1F9743BB5A213593F110389F8B1A5376EA1CAE72FCE53458CD7EC53242BDACE19AD0178

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:Ty8omVBgIgZr+MuK+kbwKixiQiDubDdN/clkMMes4isGaHsx:uzfTxeRZYRr7NI

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:351072:ABGihHM4RAEAmIzp1S6aICSBeCEAQFKKUAMKQACHzgABRFRNAKGyQOUSAQIMU0BQEqxCIEx5ykhiRAGncZgCgBAQ98NNVABJ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffffffcfcfc9f999
Perceptual Hash:b9b4cf3034cb9661
Difference Hash:6d90e49898bba373
Wavelet Hash:f761414f4f415919
Color Hash:#5371ac

Scan History

Scan history not available

Unable to load historical scan data