ScanMalware.com

Security Scan Report: gk.lordfilm17.ru

Redirected to: https://me.lordfilm131.ru/

Site favicon
Submitted: Dec 26, 2025, 5:06:43 PMCompleted: Dec 26, 2025, 5:06:59 PMpubliccompleted
Loading additional data...

Summary

This website contacted 10 IPs in 3 countries across 12 domains to perform 88 HTTP transactions. The main domain is me.lordfilm131.ru.

Submitted URL: https://gk.lordfilm17.ru

Effective URL: https://me.lordfilm131.ru/Redirected

The Cisco Umbrella rank of the primary domain is #516,942 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 88%

8
Risk Score

Site likely phishing; hidden password field on a new, low‑rank domain.

Risk Factors
Credential harvesting via hidden password field
New/very low‑ranking domain hosting a login form
Multiple redirects ending on a different domain
Domain age information unavailable

Details

Page Title

Лордфильм - Смотреть фильмы онлайн в хорошем качестве бесплатно

Scan Type

public

Language

🇷🇺

Russian

(80% confidence)

Category

entertainment media

(38%)

Domain Information

The domain name 'gk.lordfilm17.ru' uses the Russian country-code top-level domain (.ru), featuring subdomain 'gk'. The registrable portion 'lordfilm17' spans 10 characters holding two vowels versus 6 consonants, along with two digits. Word splitting yields 3 words: lord, film, 17. Median word length comes out to 4 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://gk.lordfilm17.ru

Page Load Overview

1.80s
Total Load Time
78
HTTP Requests
12
Domains
1.2 MB
Total Size

Language Analysis

Primary Language

🇷🇺Russian
Code: ru
Confidence:80%
Script:Cyrillic
Direction:ltr

Detection Details

Language Code:ru
Detection Confidence:80%
Script Type:Cyrillic
HTML Lang Attribute:ru
Text Length:3,512 chars
Detector Agreement:100%

Website Classification

Primary Category

entertainment media38% confidence
Type: webapp
Method: ml+structural

All Detected Categories

entertainment media
38%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
15144.76.37.59Russia
AS15169
7185.199.108.153United States
AS54113FASTLY
789.42.231.251Netherlands
AS206264Amarutu Technology Ltd
788.212.201.204Moscow, Moscow, Russia
AS39134Edinaya Set Limited Liability Company
7142.250.185.138United States
AS15169GOOGLE
787.250.251.119Russia
AS13238YANDEX LLC
7185.199.111.153Unknown
AS42745
7193.233.15.8Russia
AS42745Safe Value Limited
777.88.21.119Russia
AS13238YANDEX LLC
7142.251.141.67United States
AS15169GOOGLE
7810--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T123332172018D0DAF019F63C69524675D39EB8E7DEE5B8662B3FF066E13D3C50E90A106

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:SPamUeIQ/w6AYlYrYCYpYi5u0WJDPceOM0BMCXJNQ/eep:d2XeOMMMSVs

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:50379:QANwAYICRGQiQISxgcDBBJIKTGIQCiFJhD0Z5g2UEPIYRAkoDRBEBiDSQ1wVnACAGBumCCGgIASkwAAEBIDARIAcAwOICigk

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00087c3c083c3c18
Perceptual Hash:924b3c397996c6b1
Difference Hash:7159e8f0d9e4f4f4
Wavelet Hash:08087e7e7c7c3e1c
Color Hash:#d25c2d

Other Hashes

Crop Resistant:38c6283831cb7371,7159e8f0d8e4f4f4

Scan History

Scan history not available

Unable to load historical scan data