ScanMalware.com

Security Scan Report: openrouter.godisljr.workers.dev

Redirected to:
https://openrouter.godisljr.workers.dev/
Site favicon
Submitted: May 2, 2026, 8:54:26 PMCompleted: May 2, 2026, 8:56:06 PMpubliccompleted
Loading additional data...

Summary

This website contacted 7 IPs in 1 country across 7 domains to perform 133 HTTP transactions. The main domain is openrouter.godisljr.workers.dev and was registered NaN years ago.

Submitted URL: http://openrouter.godisljr.workers.dev/

Effective URL: https://openrouter.godisljr.workers.dev/Redirected

AI Security Verdict

Low Risk

Confidence: 78%

2
Risk Score

The site shows low risk: no credential collection, no malicious IoCs, but unknown subdomain age and heavy JS obfuscation warrant caution.

Risk Factors
Unknown subdomain age on a hosting platform
High JavaScript obfuscation score (base64, concatenation, high entropy)
Safety Factors
No forms collecting credentials or payments
No malicious Indicators of Compromise or YARA detections
No network IDS alerts
Meta tags are generic and do not impersonate a known brand
Domain age information unavailable

Details

Page Title

OpenRouter

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(73%)

Domain Information

The domain name 'openrouter.godisljr.workers.dev' uses the developer-focused generic top-level domain (.dev); it also runs on subdomain 'openrouter.godisljr'. The second-level label 'workers' is 7 characters long with two vowels and five consonants. It segments into one word: workers. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://openrouter.godisljr.workers.dev/

Page Load Overview

6.53s
Total Load Time
201
HTTP Requests
7
Domains
1.3 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:2,862 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software73% confidence
Type: spa
Method: ml+structural

All Detected Categories

technology software
73%
cryptocurrency blockchain
67%
documentation technical
57%
corporate business
37%
government public service
34%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
33142.251.13.97United States
AS15169Google LLC
28188.114.97.3United States
AS13335Cloudflare, Inc.
28142.251.127.156United States
AS15169Google LLC
28216.239.32.36United States
AS15169Google LLC
28142.251.14.99United States
AS15169Google LLC
28142.251.20.94United States
AS15169Google LLC
28104.18.34.146United States
AS13335Cloudflare, Inc.
2017--

Detected Technologies1

Google Analytics
35%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1F304962BE906FD1D7827CD9E617EAF3AC08AC972C532853CF39CC99516A287647D58C0

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:HAebx/c64Jysq7vn84XOJ1jNTSiC60wEgVXJTXm++dfbLi4bad+dMua2RXbMxu1:HAeRbeJ9NTZC60wnZVtVu1

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:183727:EAQIUClQIEHBxqUCcWQEKSAAEiRBGKWiXQFyoawk/AexMAjVjJSWgU2iEQUQgiUHQYiALUxNJCAIcKAL4GiCgg1LAKppAApQ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:7fc3e7e7ffff81c3
Perceptual Hash:b1714cccce8b9393
Difference Hash:d21e5e1e161b1303
Wavelet Hash:38c2e7c3ff878181
Color Hash:#2dd296

Other Hashes

Crop Resistant:d21e5e1e161b1303

Scan History

Scan history not available

Unable to load historical scan data