ScanMalware.com

Security Scan Report: update.www.aiqahxfm.100.22.198.15.nip.io

Submitted: Mar 16, 2026, 4:53:59 PMCompleted: Mar 16, 2026, 4:55:43 PMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 1 country across 5 domains to perform 27 HTTP transactions. The main domain is update.www.aiqahxfm.100.22.198.15.nip.io and was registered NaN years ago.

Submitted URL: https://update.www.aiqahxfm.100.22.198.15.nip.io/

The Cisco Umbrella rank of the primary domain is #376,334 of the top 1 million websites

AI Security Verdict

Low Risk

Confidence: 92%

2
Risk Score

Site appears legitimate but contains heavily obfuscated JavaScript; no credential collection detected.

Risk Factors
Highly obfuscated JavaScript code (base64, charcode manipulation, excessive concatenation)
Safety Factors
Well‑established domain (>13 years)
No credential or payment collection forms
No malicious Indicators of Compromise
No network IDS alerts
Uses common reputable external services (cdn.jsdelivr.net, Google Analytics)
Domain age information unavailable

Details

Page Title

${cloakTitle}

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

Domain 'update.www.aiqahxfm.100.22.198.15.nip.io' uses the British Indian Ocean Territory country-code top-level domain (.io), featuring subdomain 'update.www.aiqahxfm.100.22.198.15'. Its registrable label 'nip' stretches across 3 characters with 1 vowel and two consonants. Word splitting yields 1 word: nip. The median word length lands at 3 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://update.www.aiqahxfm.100.22.198.15.nip.io/

Page Load Overview

2.10s
Total Load Time
29
HTTP Requests
6
Domains
1.3 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:39 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: dynamic
Method: structural

All Detected Categories

No categories detected

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
9104.16.174.226United States
AS13335Cloudflare, Inc.
5142.251.141.106United States
AS15169Google LLC
5100.22.198.15Boardman, Oregon, United States
AS16509Amazon.com, Inc.
5142.251.127.97United States
AS13335
5172.240.108.76United States
AS7979Servers.com, Inc.
295--

Detected Technologies4

Google-AnalyticsvUniversal
100%
HTTP/3
40%
Google Analytics
35%
jsDelivr
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T19F22E865574D0E2A520A8088B5B1B68C622FC533FBC58CF97DF79894D7DC388836ADB0

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:c83NZfLVWCymks/IsPfPXZXviy4SYrVbjqD:p9ZfLVWCLIKKQyxjqD

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:10839:TAgAtKETaCUBuIBsExQidSY8QQGAAgCCPQIgJCSHkuEQLgAJEAVTMdYUQSgAiKAAgsC6pSUYG4kIACBDNdACAjFJ2QYIRPhI

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:181818181800183c
Perceptual Hash:cc39c933cc333333
Difference Hash:10323032300c3032
Wavelet Hash:38383c3c18003c3c
Color Hash:#931f4e

Other Hashes

Crop Resistant:10323032300c3032

Scan History

Scan history not available

Unable to load historical scan data