Security Scan Report: darswupdate.app.admin.dev.03-120-55-020.plesk.page

Redirected to:
https://login.microsoftonline.com/b34ec9cd-0a78-4623-9e54-2885791429c7...
Site favicon
Submitted: Jul 13, 2026, 1:51:42 AMCompleted: Jul 13, 2026, 1:52:55 AMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 3 countries across 4 domains to perform 2 HTTP transactions. The main domain is login.microsoftonline.com and was registered NaN years ago.

Submitted URL: https://darswupdate.app.admin.dev.03-120-55-020.plesk.page/auth/oidc/azure

Effective URL: https://login.microsoftonline.com/b34ec9cd-0a78-4623-9e54-2885791429c7/oauth2/v2.0/authorize?access_type=offline&client_id=86a3041a-a218-4ec6-a019-fe40c6d23389&code_challenge=tht0B2i3iwzfkRBHFUjiuSHuAJvOph-X5Ps9bSvSL5U&code_challenge_method=S256&redirect_uri=https%3A%2F%2Fvpn.hsag-prod.onpower.cloud%2Fauth%2Foidc%2Fazure%2Fcallback&response_type=code&scope=openid+email+profile&state=uzP7jg4mKvgc8mCn&sso_reload=trueRedirected

AI Security Verdict

High Risk

Confidence: 85%

8
Risk Score

Page impersonates Microsoft login, collects credentials on an unrelated, unranked domain – high risk of phishing.

Risk Factors
Brand impersonation of Microsoft on a non‑Microsoft domain
Credential collection form
Highly obfuscated JavaScript
Unranked domain with no reputation
Domain age information unavailable

Details

Page Title

Sign in to your account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

documentation technical

(37%)

Domain Information

The domain name 'darswupdate.app.admin.dev.03-120-55-020.plesk.page' uses the .page top-level domain and includes subdomain 'darswupdate.app.admin.dev.03-120-55-020'. The core label 'plesk' covers 5 characters with one vowel and four consonants. Tokenizing the label suggests two words: pl, esk. The median word length lands at 2.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://darswupdate.app.admin.dev.03-120-55-020.plesk.page/auth/oidc/azure

Page Load Overview

1.68s
Total Load Time
17
HTTP Requests
5
Domains
449 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:109 chars
Detector Agreement:67%

Website Classification

Primary Category

documentation technical37% confidence
Type: webapp
Method: ml+structural+ocr_tiebreaker

All Detected Categories

documentation technical
37%
technology software
30%

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
513.107.246.67Azure · CLOUDUnited States
AS8075Microsoft Corporation
43.120.55.20Aws · CLOUDFrankfurt am Main, Hesse, Germany
AS16509Amazon.com, Inc.
440.126.31.130Azure · CLOUDDublin, Leinster, Ireland
AS8075Microsoft Corporation
420.190.159.75Office365 · CLOUDDublin, Leinster, Ireland
AS8075Microsoft Corporation
174--

Detected Technologies5

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1EF835CD67FA71937828A45B5B5B93E02AE3A29078848DD64F19CCC842FFB70C8137957

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:Db1o8GLG2+VlRb9pHjE1oeIZ9Tjuokmap5vPoMLuJv0GRjim9bC:u8flDISa/ABC

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:81311:a0xAhmXKCLAwot8AwUoCgtDmBABIYMMYDAIhyk0UCEAQUuK4KDYnCAfcoRogYQE0JDFi6YoMKzbYAAjDlhXgQ0S+AIKFNACp

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0000187858180000
Perceptual Hash:c81d2727c8cf9d8c
Difference Hash:3202b2b2b232e585
Wavelet Hash:030018fafe1f75e5
Color Hash:#5371ac

Scan History

Scan history not available

Unable to load historical scan data