Security Scan Report: iarex.ru

Site favicon
Submitted: May 7, 2026, 7:54:39 PMCompleted: May 7, 2026, 7:57:24 PMpubliccompleted
Loading additional data...

Summary

This website contacted 16 IPs in 2 countries across 18 domains to perform 73 HTTP transactions. The main domain is iarex.ru.

Submitted URL: https://iarex.ru

The Cisco Umbrella rank of the primary domain is #325,785 of the top 1 million websites

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

The site hosts a credential‑stealing login form, is served from IPs flagged as attackers, and triggers critical malware IDS alerts – confirmed phishing scam.

Risk Factors
Credential harvesting form
Known‑malicious IP addresses serving the site
Critical IDS alerts for data exfiltration and C2 activity
Highly obfuscated JavaScript
Multiple redirects
Domain age information unavailable

Details

Page Title

Главные новости России и зарубежья / ИА REX

Scan Type

public

Language

🇷🇺

Russian

(80% confidence)

Category

news/blog

(40%)

Domain Information

You're looking at domain 'iarex.ru' on the Russian country-code top-level domain (.ru) while skipping any subdomain. The core label 'iarex' covers 5 characters with 3 vowels and two consonants. It segments into 3 words: i, are, x. Average segment length settles at one character. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://iarex.ru

Page Load Overview

90.15s
Total Load Time
109
HTTP Requests
21
Domains
6.4 MB
Total Size

Language Analysis

Primary Language

🇷🇺Russian
Code: ru
Confidence:80%
Script:Cyrillic
Direction:ltr

Detection Details

Language Code:ru
Detection Confidence:80%
Script Type:Cyrillic
HTML Lang Attribute:ru
Text Length:7,545 chars
Detector Agreement:100%

Website Classification

Primary Category

news/blog40% confidence
Type: spa
Method: structural

All Detected Categories

news/blog
40%
forum
40%

Detected Features

Search
OG: article

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1994.139.255.28Asbest, Sverdlovsk Oblast, Russia
AS208677Cloud.ru
687.242.104.182Russia
AS50340JSC Selectel
677.88.21.119Russia
AS13238YANDEX LLC
6142.251.110.95United States
AS15169Google LLC
6104.21.27.152United States
AS13335Cloudflare, Inc.
681.200.127.11Russia
AS202173MaximaTelecom JSC
6142.251.13.94United States
AS15169Google LLC
6142.251.20.95United States
AS15169Google LLC
6194.67.72.31Russia
AS197695Domain names registrar REG.RU, Ltd
687.228.57.80Russia
AS49505JSC Selectel
10916--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T16483D83194E1046B53469086FA907A4E3D86627FFB930E0533EC2AB9AFC7DD1C91635E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:wTG73+l6h0rYQXh8UKatbdBkoradwOKx4Oq1:T7uc0rDR8UrtbdsdwT4Oq1

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:81170:oQtgakQARY4nEgKbKAqIEsZgEgMkJSVkDEdQUTTLRglIgylsAQooQEUwIxUjImAROCkIAOFEAlIUYNSMBIocFwYENlEEMCUM

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:df0000fbcfcffbcf
Perceptual Hash:b91634f1f9cd9241
Difference Hash:2e2c34221b1b231a
Wavelet Hash:870000bbeb8fe9cf
Color Hash:#ae40bf

Scan History

Scan history not available

Unable to load historical scan data