PHPSESSID

Within the commercial generic top-level domain (.com), 'www.amexshirahamaz.com' is registered; it also runs on subdomain 'www'. The registrable portion 'amexshirahamaz' spans 14 characters split between six vowels and eight consonants. Segmentation suggests 5 words: amex, s, hirah, a, maz. Average segment length settles at 3 characters. No strong language cues emerged from the frequency lists.

html/4c/f6/4cf64d24-c188-4e4a-8345-73b1643440b5.html.gz

default-src 'none'; script-src 'nonce-EyPzG4eFtQJKAG7S' 'unsafe-eval'; script-src-attr 'none'; worker-src blob:; style-src 'unsafe-inline'; img-src 'self'; connect-src 'self'; frame-src 'self' blob:; child-src 'self' blob:; form-action 'none'; base-uri 'self'; sandbox allow-same-origin allow-scripts allow-popups allow-forms

default-src 'none'; script-src 'nonce-1OxTA2fqcIOKsj15' 'unsafe-eval'; script-src-attr 'none'; worker-src blob:; style-src 'unsafe-inline'; img-src 'self'; connect-src 'self'; frame-src 'self' blob:; child-src 'self' blob:; form-action 'none'; base-uri 'self'; sandbox allow-same-origin allow-scripts allow-popups allow-forms

5743c640722924aa6974b1f602ad1abb67f4c5240cc4829ed64147cf0e6ecf83

de03d7a5e333cc2f0cca48c7c844f22e74a369af78224c7447ffc000490dfd38

viewport

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;worker-src blob: 'self';frame-ancestors 'none';

child-src https:  chrome-untrusted://new-tab-page/ chrome-untrusted://ntp-microsoft-auth/;connect-src chrome://resources chrome://theme 'self';default-src 'self';font-src chrome://resources 'self';img-src chrome://resources chrome://theme chrome://image chrome://favicon2 chrome://app-icon chrome://extension-icon chrome://fileicon blob: data: 'self';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources chrome://webui-test 'self';style-src chrome://resources chrome://theme 'self' 'unsafe-inline';trusted-types parse-html-subset sanitize-inner-html static-types webui-test-script webui-test-html polymer-html-literal polymer-template-event-attribute-policy lit-html-desktop;frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;frame-ancestors 'none';

base-uri 'none';child-src https:;form-action https://ogs.google.com https://*.corp.google.com;object-src 'none';script-src 'self' 'unsafe-inline' https:;frame-ancestors chrome://new-tab-page/

GMO Internet Group, Inc. d/b/a Onamae.com

AMEXSHIRAHAMAZ.COM

Abuse

IP Administrator

NetInformatik Inc.

NETINF-V4BLK1

X-UA-Compatible

HSTS

✅ Low Risk - https://www.amexshirahamaz.com/

Requests	IP Address	Location	AS Autonomous System
7	104.18.95.41	United States	AS13335CLOUDFLARENET
3	23.160.193.20	United States	AS397270NETINF-TRANSIT-AS
2	104.18.94.41	United States	AS13335CLOUDFLARENET
2	2606:4700::6812:5e29	United States	AS13335CLOUDFLARENET
2	2606:4700::6812:5f29	United States	AS13335CLOUDFLARENET
11	5	-	-

Security Scan Report: www.amexshirahamaz.com

Summary

AI Security Verdict

Safe Website

Safety Factors

Details

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Detected Technologies2

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History