English

The domain name 'ck056004-wordpress-5me27.tw1.ru' uses the Russian country-code top-level domain (.ru) with subdomain 'ck056004-wordpress-5me27'. Its registrable label 'tw1' stretches across 3 characters containing 0 vowels alongside 2 consonants; bonus characters include one digit. Splitting it apart reveals two words: tw, 1. Expect 1.5 characters per word on average. 'tw' most often appears in Albanian.

html/51/f4/51f458a5-5967-431d-bfcb-e4aeee19a334_fallback.html.gz

Домен припаркован в Timeweb

html/51/f4/51f458a5-5967-431d-bfcb-e4aeee19a334.html.gz

upgrade-insecure-requests; default-src 'none'; base-uri 'none'; script-src 'report-sample' 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: abs.yandex.ru an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs&project=yabs&yandex_login=&platform=

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

child-src https:  chrome-untrusted://new-tab-page/ chrome-untrusted://ntp-microsoft-auth/;connect-src chrome://resources chrome://theme 'self';default-src 'self';font-src chrome://resources 'self';img-src chrome://resources chrome://theme chrome://image chrome://favicon2 chrome://app-icon chrome://extension-icon chrome://fileicon blob: data: 'self';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources chrome://webui-test 'self';style-src chrome://resources chrome://theme 'self' 'unsafe-inline';trusted-types parse-html-subset sanitize-inner-html static-types webui-test-script webui-test-html polymer-html-literal polymer-template-event-attribute-policy lit-html-desktop;frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;worker-src blob: 'self';frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;frame-ancestors 'none';

base-uri 'none';child-src https:;form-action https://ogs.google.com https://*.corp.google.com;object-src 'none';script-src 'self' 'unsafe-inline' https:;frame-ancestors chrome://new-tab-page/

JQuery

⚠️ High Risk - https://ck056004-wordpress-5me27.tw1.ru/wp-content/plugins/agclnw/pages/region.php

Requests	IP Address	Location	AS Autonomous System
9	142.250.185.74	United States	AS15169GOOGLE
4	142.250.185.67	United States	AS15169GOOGLE
4	92.53.96.105	Russia	AS9123Jsc timeweb
4	37.9.64.225	Russia	AS13238YANDEX LLC
4	5.255.255.77	Russia	AS13238YANDEX LLC
4	142.250.185.228	United States	AS15169GOOGLE
4	77.88.44.55	Russia	AS13238YANDEX LLC
33	7	-	-

Security Scan Report: ck056004-wordpress-5me27.tw1.ru

Summary

AI Security Verdict

Low Risk

Risk Factors

Safety Factors

Details

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Detected Technologies1

Content Similarity HashesFor malware variant detection

Image Hashes

Perceptual Hashes

Other Hashes

Scan History