ScanMalware.com

Security Scan Report: kb.io-x9.info

Redirected to: https://kb.io-x9.info/?sjLPEORPV3jRVmt3QthJNpZZpWsC9eyMrv17NZF4gng7ZL9AN4wdrzr3Ls1og9Fpiasg6woe5KXCRiHxU8IoedE3qTSgdMpmIdss&i#html=v2_&n7V1bImj6ihDp2RARC5rESIFjSMkKnRb92x1gzavT6sYhXIzXZLITWmcZVZxqAzRYdjZnCBF1s3VBznIqRn5m4Ybt0tYiWuqqre1YPLDaZlqETpyjRyYlGCnKSaqcWJaxp30Kdx6XFImyQmud6CjDyw4yEG12LqhZQN6bJypmW20hp3pNngHO23OIKrMf5CTRwtaMpGB&id=24

Submitted: Nov 21, 2025, 3:44:48 AMCompleted: Nov 21, 2025, 3:47:10 AMpubliccompleted
Loading additional data...

Summary

This website contacted 16 IPs in 1 country across 4 domains to perform 82 HTTP transactions. The main domain is kb.io-x9.info and was registered NaN years ago.

Submitted URL: https://kb.io-x9.info/?translate

Effective URL: https://kb.io-x9.info/?sjLPEORPV3jRVmt3QthJNpZZpWsC9eyMrv17NZF4gng7ZL9AN4wdrzr3Ls1og9Fpiasg6woe5KXCRiHxU8IoedE3qTSgdMpmIdss&i#html=v2_&n7V1bImj6ihDp2RARC5rESIFjSMkKnRb92x1gzavT6sYhXIzXZLITWmcZVZxqAzRYdjZnCBF1s3VBznIqRn5m4Ybt0tYiWuqqre1YPLDaZlqETpyjRyYlGCnKSaqcWJaxp30Kdx6XFImyQmud6CjDyw4yEG12LqhZQN6bJypmW20hp3pNngHO23OIKrMf5CTRwtaMpGB&id=24Redirected

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Site impersonates DKB, hosts a password‑only form on a new unranked domain with circular redirects – confirmed phishing scam.

Risk Factors
Brand impersonation of DKB on a newly registered, unranked domain
Password‑only form without username field
Circular redirect indicating URL manipulation
Domain age < 90 days (high‑risk new domain)
Unranked domain lacking reputable reputation
Domain age information unavailable

Details

Page Title

Scan Type

public

Language

🇿🇦

AF

(21% confidence)

Category

cryptocurrency blockchain

(97%)

Domain Information

The domain 'kb.io-x9.info' uses the informational generic top-level domain (.info); it also runs on subdomain 'kb'. Its registrable label 'io-x9' stretches across 5 characters with 2 vowels and one consonant; it also includes one digit and one hyphen. Breaking it apart gives 3 words: io, x, 9. Average segment length settles at one character. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://kb.io-x9.info/?translate

Page Load Overview

7.35s
Total Load Time
82
HTTP Requests
4
Domains
59 KB
Total Size

Language Analysis

Primary Language

🇿🇦AF
Code: af
Confidence:21%
Script:Unknown
Direction:ltr

Detection Details

Language Code:af
Detection Confidence:21%
Script Type:Unknown
Text Length:399 chars
Detector Agreement:100%

Website Classification

Primary Category

cryptocurrency blockchain97% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

cryptocurrency blockchain
97%
finance banking
94%
healthcare medical
88%
technology software
86%
forum community discussion
83%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
58188.114.96.3United States
AS13335CLOUDFLARENET
12172.66.46.220United States
AS13335CLOUDFLARENET
7151.101.130.137San Francisco, California, United States
AS54113FASTLY
6188.114.97.3United States
AS13335CLOUDFLARENET
5172.66.45.36United States
AS13335CLOUDFLARENET
52a04:4e42::649United States
AS54113FASTLY
5151.101.194.137San Francisco, California, United States
AS54113FASTLY
52606:4700:310c::ac42:2edcUnited States
AS13335CLOUDFLARENET
52a06:98c1:3121::3United States
AS13335CLOUDFLARENET
5151.101.66.137San Francisco, California, United States
AS54113FASTLY
8216--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T17EF24F4BE1E31A63C292C2F05937373D7F3DD85E9BC108B4799E2BAE5B86D92464508C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:eYtG6yXh+b1XSP7o3V/b1XSP7o3VB+y6preq7MpRPoPM+c/sffl2E/JttWu:eYtGxXkb1Czo3V/b1Czo3VB+1qp62Lu

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:36929:RRDaCAIwXBC0EigCIxyDJC4gR8cUhEwEQVCiS5olIB+BQQCykH80MhAwZhqIqKEClIAEOQSNkJoI9BAASLgAOiVZhAYYdglE

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:7fffffffe7ffff00
Perceptual Hash:b3c41cc433cc33e7
Difference Hash:801028084c080019
Wavelet Hash:7070e2e2e2eaf600
Color Hash:#93381f

Other Hashes

Crop Resistant:801028084c080019,09851b1a1a090101

Scan History

Scan history not available

Unable to load historical scan data