ScanMalware.com

Security Scan Report: herleiner.net

Submitted: Jan 16, 2026, 4:40:43 PMCompleted: Jan 16, 2026, 4:41:53 PMpubliccompleted
Loading additional data...

Summary

This website contacted 8 IPs in 1 country across 8 domains to perform 18 HTTP transactions. The main domain is herleiner.net and was registered NaN years ago.

Submitted URL: https://herleiner.net/e/

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Confirmed phishing scam; do not enter credentials.

Risk Factors
Credential harvesting pattern: password field without username
Brand new domain (<7 days) hosting a login form
Impersonation of WordPress.com login page on unrelated domain
Domain age information unavailable

Details

Page Title

Log In — WordPress.com

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(58%)

Domain Information

The domain 'herleiner.net' uses the network infrastructure generic top-level domain (.net) while skipping any subdomain. The registrable portion 'herleiner' spans 9 characters with four vowels and 5 consonants. Tokenizing the label suggests three words: her, leine, r. The median word length lands at three characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://herleiner.net/e/

Page Load Overview

1.71s
Total Load Time
16
HTTP Requests
8
Domains
672 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:618 chars
Detector Agreement:50%

Website Classification

Primary Category

technology software58% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

technology software
58%
e-commerce shopping
35%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2151.101.66.137United States
AS15169
2104.18.11.207United States
AS13335CLOUDFLARENET
2142.250.185.106United States
AS2635
2216.58.206.74United States
AS13335
2192.0.77.32San Francisco, California, United States
AS2635AUTOMATTIC
2104.17.24.14United StatesUnknown
250.6.224.90Ashburn, Virginia, United States
AS31898ORACLE-BMC-31898
2104.18.10.207United States
AS13335CLOUDFLARENET
168--

Detected Technologies8

X-UA-Compatible
100%
PasswordField
100%
JQueryv2.2.4
100%
Bootstrapv4.0.0
100%
Cloudflare
50%
jQuery CDN
20%
cdnjs
20%
Google Hosted Libraries
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T162F22AE426E453E4600387ECED3650167A5EA8FFEB448790F7AC8ED4AF915E5C81A8C4

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:KonE6nIxh+VsXXg4iNjWaXvKt0PH74nDYgqGH0JfKRG7qaXYyOvdi+Y:KonaX+qngtJbvKi8nDDH0gG7LOvdc

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:34346:BNMLIMDWkWwWOB4GIlWUwYGGIgYLEwqFJYEAwEDLCEF5ASD4YMQQBBwMxBkCjOlBB2AYYmC0AgqWGwCAPSMJXDgpHQSIKIIh

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:67e7f7c3c7f7ffff
Perceptual Hash:b332c6c71999cccc
Difference Hash:8c4d649e1c681000
Wavelet Hash:66e7c3c3c0e0f0f0
Color Hash:#40bfae

Other Hashes

Crop Resistant:8c4d649e1c681000

Scan History

Scan history not available

Unable to load historical scan data