ScanMalware.com

Security Scan Report: ww16.gvg-koeln.de

Redirected to: https://resultearchnow.com/?dn=gvg-koeln.de&sksubid=180662&_slsen=1

Site favicon
Submitted: Feb 12, 2026, 10:20:27 PMCompleted: Feb 12, 2026, 10:21:58 PMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 3 countries across 5 domains to perform 11 HTTP transactions. The main domain is resultearchnow.com and was registered NaN years ago.

Submitted URL: http://ww16.gvg-koeln.de/?sub1=20260213-0920-2638-8f3c-dfb49d926e58

Effective URL: https://resultearchnow.com/?dn=gvg-koeln.de&sksubid=180662&_slsen=1Redirected

AI Security Verdict

Low Risk

Confidence: 88%

2
Risk Score

Low risk – domain for sale page with redirects, no malicious activity detected

Risk Factors
New domain (<90 days) – higher likelihood of being used for malicious purposes
Multiple redirects (4) – could indicate redirect chaining
Safety Factors
No malicious Indicators of Compromise detected
No JavaScript malware patterns detected
No credential or payment forms present
Page content is a simple domain‑for‑sale notice
Domain age information unavailable

Details

Page Title

N/A

Scan Type

public

Language

🏳️

UNKNOWN

(0% confidence)

Category

unknown

(0%)

Domain Information

The domain 'ww16.gvg-koeln.de' uses the German country-code top-level domain (.de) with subdomain 'ww16'. The second-level label 'gvg-koeln' is 9 characters long containing two vowels alongside 6 consonants, notching 1 hyphen. It segments into 5 words: g, vg, ko, el, n. Median word length is two characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://ww16.gvg-koeln.de/?sub1=20260213-0920-2638-8f3c-dfb49d926e58

Page Load Overview

3.03s
Total Load Time
11
HTTP Requests
5
Domains
15 KB
Total Size

Language Analysis

Primary Language

🏳️UNKNOWN
Code: unknown
Confidence:0%

Detection Details

Language Code:unknown
Detection Confidence:0%
0
Detector Agreement:0%

Website Classification

Primary Category

unknown0% confidence
Type: static
Method: structural

All Detected Categories

No categories detected

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2199.191.50.11British Virgin Islands
AS40034Confluence Networks Inc
2172.67.183.137United States
AS13335Cloudflare, Inc.
264.190.63.136Germany
AS47846SEDO GmbH
2188.114.97.3United States
AS13335Cloudflare, Inc.
2205.234.175.175United States
AS30081CacheFly
115--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1A65219A1257544106BEE0242DC7C5EC76A492C27B84E3D1CBACFBB11E19D6AF9C11CF6

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:7gt5Ak8DILoTspmEESWyAvZILoTspmEESkUBa:7q5Ak8cEKmEFFEKmEFra

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:13371:AHECrYGmwYAJUOORIC4RC9J0oAQRTAdIoLSIAzIAAAZAhgJEB0GlFLHs5joDhAQ0NL14VHkCAgDkBl6BTIJCA5CDIylQIBak

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00e7f7f75a101000
Perceptual Hash:e4b11b0e1b4eaea9
Difference Hash:71969696b6a6b692
Wavelet Hash:18e7ffffdb101000
Color Hash:#867a2d

Other Hashes

Crop Resistant:71969696b6a6b692

Scan History

Scan history not available

Unable to load historical scan data