ScanMalware.com

Security Scan Report: rimborso-richiesta.icu

Redirected to: https://www.google.com/

Site favicon
Submitted: Dec 4, 2025, 1:14:04 AMCompleted: Dec 4, 2025, 1:15:02 AMpubliccompleted
Loading additional data...

Summary

This website contacted 13 IPs in 2 countries across 7 domains to perform 42 HTTP transactions. The main domain is google.com.

Submitted URL: https://rimborso-richiesta.icu/om/gev/m0/inloggen/692e2192d403c

Effective URL: https://www.google.com/Redirected

AI Security Verdict

Low Risk

Confidence: 70%

2
Risk Score

Redirect from a suspicious, unranked domain to Google; no malicious content detected.

Risk Factors
Unranked domain impersonating a well‑known brand before redirect
Safety Factors
Final destination domain is the official Google domain
No malicious Indicators of Compromise matches found
Only a standard search form is present
Domain age information unavailable

Details

Page Title

Google

Scan Type

public

Language

🇩🇪

German

(80% confidence)

Category

adult content

(52%)

Domain Information

Within the .icu top-level domain, 'rimborso-richiesta.icu' is registered while skipping any subdomain. Its registrable label 'rimborso-richiesta' stretches across 18 characters with 7 vowels and ten consonants, notching one hyphen. Word splitting yields five words: rim, borso, richie, st, a. Average segment length settles at three characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://rimborso-richiesta.icu/om/gev/m0/inloggen/692e2192d403c

Page Load Overview

0.59s
Total Load Time
42
HTTP Requests
7
Domains
1.1 MB
Total Size

Language Analysis

Primary Language

🇩🇪German
Code: de
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:de
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:de
Text Length:3,502 chars
Detector Agreement:67%

Website Classification

Primary Category

adult content52% confidence
Type: spa
Method: ml+structural

All Detected Categories

adult content
52%
education learning
42%
documentation technical
35%
news media journalism
30%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
32142.250.185.228United States
AS15169GOOGLE
4142.250.184.227United States
AS15169GOOGLE
32a00:1450:4001:804::2004Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
32a00:1450:4001:813::200eFrankfurt am Main, Hesse, Germany
AS15169GOOGLE
32a00:1450:4001:831::2003Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
32a00:1450:4001:80e::200aFrankfurt am Main, Hesse, Germany
AS15169GOOGLE
32a00:1450:4001:80b::2003Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
32a00:1450:4001:82b::200eFrankfurt am Main, Hesse, Germany
AS15169GOOGLE
2142.250.186.163United States
AS15169GOOGLE
1216.58.206.46United States
AS15169GOOGLE
4213--

Detected Technologies1

Ubuntu
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T110546D766240383BA4239DD0A2EF6F0D3C39E127ED1A4AF86995EE30CBE2DB1151574D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:MDOR+NaZgtA0jA5LH25RkSrIfp3nNeIF5tEdoW:M6R+8ZgtAuA5DaRnraNeI+D

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:280900:LkWJlEKi8AQQoFJMYKMUmoCDjGEYRywgWAqaSpScgQMQo0BISAUC1WBARgJJABoCkhYAICILmQSKGgkFhOEJIECsOARGATwA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:7e7e7e7e7e7e7e7e
Perceptual Hash:94c1c0cecf9b9b32
Difference Hash:c2969ebaa6b6beae
Wavelet Hash:7e427e0e062e4e76
Color Hash:#5d3a78

Other Hashes

Crop Resistant:c0961e5b265e1c06,636b6b6b6b606967,0909090909090909,4040404040404040

Scan History

Scan history not available

Unable to load historical scan data