ScanMalware.com

Security Scan Report: plesk-test.clientexec.rocks

Redirected to: https://plesk-test.clientexec.rocks/login_up.php

Submitted: Mar 20, 2026, 4:02:17 AMCompleted: Mar 20, 2026, 4:03:31 AMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 3 countries across 3 domains to perform 14 HTTP transactions. The main domain is plesk-test.clientexec.rocks and was registered NaN years ago.

Submitted URL: http://plesk-test.clientexec.rocks/

Effective URL: https://plesk-test.clientexec.rocks/login_up.phpRedirected

AI Security Verdict

High Risk

Confidence: 78%

7
Risk Score

Login page mimics Plesk on a non‑official domain; likely a phishing attempt.

Risk Factors
Brand impersonation (Plesk login page on an unrelated domain)
Credential collection on an unranked, low‑reputation domain
Unranked domain (not in Cisco Umbrella top 1M)
Domain age information unavailable

Details

Page Title

Plesk Obsidian 18.0.76

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(46%)

Domain Information

The domain name 'plesk-test.clientexec.rocks' uses the .rocks top-level domain with subdomain 'plesk-test'. The second-level label 'clientexec' is 10 characters long holding four vowels versus six consonants. Breaking it apart gives 2 words: client, exec. Median word length comes out to 5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://plesk-test.clientexec.rocks/

Page Load Overview

4.77s
Total Load Time
24
HTTP Requests
3
Domains
413 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:445 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software46% confidence
Type: webapp
Method: ml+structural

All Detected Categories

technology software
46%
cryptocurrency blockchain
30%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
851.161.98.228Canada
AS16276OVH SAS
835.186.247.156United States
AS396982Google LLC
8108.129.55.197Dublin, Leinster, Ireland
AS16509Amazon.com, Inc.
243--

Detected Technologies3

X-UA-Compatible
100%
PasswordField
100%
RequireJS
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1BDA3F61908283F3B07C723F67C97358DBAB48194A1D41054ADEE85A907EEF9DE42F16B

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:RMaeEvPIg3I3jECfe8Lzi7Gm2OIyto6j2Z7nm6xzw2fMZwrtpOs13okp:OaeEvPIg30Xi7P0B6jc7nRmwrtH144

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:98944:SBIWxQCpYSGEoANNFa9ZWqCkHgMi4kFCeZgDQCgELQMCAhhSExJLACDkAOW6DiNBNDJkATsQEREgDIiBkktKCEEHGSJOFZVA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0018011818181800
Perceptual Hash:886667cc763233b3
Difference Hash:61730db3b3b3b34d
Wavelet Hash:001821391f1f1f0f
Color Hash:#e0726c

Other Hashes

Crop Resistant:c7c8c8c8c8c8c8c7,e2e2e0803326989a,60720cb2b2b2b24c

Scan History

Scan history not available

Unable to load historical scan data