Security Scan Report: www.whm.update.03-120-55-020.plesk.page

Redirected to:
https://login.microsoftonline.com/b34ec9cd-0a78-4623-9e54-2885791429c7...
Site favicon
Submitted: Jul 4, 2026, 4:25:01 PMCompleted: Jul 4, 2026, 4:26:13 PMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 2 countries across 4 domains to perform 2 HTTP transactions. The main domain is login.microsoftonline.com and was registered NaN years ago.

Submitted URL: https://www.whm.update.03-120-55-020.plesk.page/auth/oidc/azure

Effective URL: https://login.microsoftonline.com/b34ec9cd-0a78-4623-9e54-2885791429c7/oauth2/v2.0/authorize?access_type=offline&client_id=86a3041a-a218-4ec6-a019-fe40c6d23389&code_challenge=XUhVFPZsYqpUzulJDC6v3TiC3A3AwPGqk5E5Cb-08RU&code_challenge_method=S256&redirect_uri=https%3A%2F%2Fvpn.hsag-prod.onpower.cloud%2Fauth%2Foidc%2Fazure%2Fcallback&response_type=code&scope=openid+email+profile&state=9PfWxnVipPjlU7tq&sso_reload=trueRedirected

AI Security Verdict

Low Risk

Confidence: 85%

2
Risk Score

Login page appears to be a legitimate Azure AD SSO redirect; no malicious indicators detected.

Risk Factors
Login form hosted on a non‑brand domain
Safety Factors
Cross‑origin form submission to login.microsoftonline.com is a standard Azure AD SSO redirect
Well‑established domain with no malicious reputation signals
Domain age information unavailable

Details

Page Title

Sign in to your account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

Domain 'www.whm.update.03-120-55-020.plesk.page' uses the .page top-level domain with subdomain 'www.whm.update.03-120-55-020'. The second-level label 'plesk' is 5 characters long split between one vowel and 4 consonants. Breaking it apart gives 2 words: pl, esk. Median word length is 2.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.whm.update.03-120-55-020.plesk.page/auth/oidc/azure

Page Load Overview

1.29s
Total Load Time
17
HTTP Requests
5
Domains
1.0 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:109 chars
Detector Agreement:67%

Website Classification

Primary Category

unknown0% confidence
Type: webapp
Method: structural

All Detected Categories

No categories detected

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
540.126.31.130Office365 · CLOUDDublin, Leinster, Ireland
AS8075Microsoft Corporation
423.53.42.114Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
440.126.31.73Azure · CLOUDDublin, Leinster, Ireland
AS8075Microsoft Corporation
43.120.55.20Aws · CLOUDFrankfurt am Main, Hesse, Germany
AS16509Amazon.com, Inc.
174--

Detected Technologies5

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T144835CDA7FA62937868A44B5B5B93E02AA365903894CDD74F04CCC843FFA74D8133A17

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:FwQo8GLG2bVZiJH1RocIZ9Tjuokmap5vPoMLufl0GXZi6C:+8QiVR0a/ApC

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:81341:JuDBUVTLCYIQiZIAghNiMHBE0JAAMICFCQAL4QsFAMRISgLzlHLCIIDZDZrAgLBQywNCIBUGSkyAi6UohxMMATAlmQQzhDEh

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0000187858180000
Perceptual Hash:c81d2727c8cf9d8c
Difference Hash:3202b2b2b232e585
Wavelet Hash:030018fafe1f75e5
Color Hash:#d22d72

Scan History

Scan history not available

Unable to load historical scan data