ScanMalware.com

Security Scan Report: www.rheinpfalz.de

Site favicon
Submitted: Jan 9, 2026, 3:37:12 PMCompleted: Jan 9, 2026, 3:38:46 PMpubliccompleted
Loading additional data...

Summary

This website contacted 10 IPs in 2 countries across 11 domains to perform 71 HTTP transactions. The main domain is rheinpfalz.de.

Submitted URL: https://www.rheinpfalz.de

The Cisco Umbrella rank of the primary domain is #398,713 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 85%

7
Risk Score

Potential credential‑harvesting page; treat as phishing.

Risk Factors
Hidden password field (credential harvesting attempt)
Presence of a password input on a site with no legitimate login purpose
Low domain ranking suggesting suspicious or newly created site
Domain age information unavailable

Details

Page Title

Aktuelle Nachrichten aus der Pfalz - DIE RHEINPFALZ

Scan Type

public

Language

🇩🇪

German

(80% confidence)

Category

government public service

(80%)

Domain Information

You're looking at domain 'www.rheinpfalz.de' on the German country-code top-level domain (.de) with subdomain 'www'. Count 10 characters in 'rheinpfalz' split between 3 vowels and seven consonants. It segments into 2 words: rhein, pfalz. Median word length is 5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.rheinpfalz.de

Page Load Overview

9.25s
Total Load Time
127
HTTP Requests
11
Domains
2.8 MB
Total Size

Language Analysis

Primary Language

🇩🇪German
Code: de
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:de
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:de
Text Length:14,991 chars
Detector Agreement:100%

Website Classification

Primary Category

government public service80% confidence
Type: spa
Method: ml+structural

All Detected Categories

government public service
80%
documentation technical
63%
news media journalism
59%
social_media
25%
news/blog
20%

Detected Features

Login Form
Search
Articles
OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
19172.66.148.47United States
AS13335CLOUDFLARENET
1299.84.152.45Germany
AS24940
1291.215.100.78Germany
AS43407INFOnline GmbH
1280.228.115.129Hemmoor, Lower Saxony, Germany
AS9145EWE-Tel GmbH
12104.16.144.111United States
AS13335CLOUDFLARENET
125.252.232.103Weyhe, Lower Saxony, Germany
AS44599FM-Datacenter GmbH & Co. KG
1299.84.152.127Germany
AS16509
1223.88.92.37Nuremberg, Bavaria, Germany
AS24940Hetzner Online GmbH
12212.4.227.59Germany
AS12665MSH Medien System Haus GmbH & Co. KG
12104.20.47.41United States
AS13335CLOUDFLARENET
12710--

Detected Technologies6

PasswordField
100%
Open-Graph-Protocolvwebsite
100%
MetaGenerator
100%
HSTS
40%
Stimulus
30%
Piano
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1C8440B21B082323F0A1356EAF1BAAB287153E15BCF120550B3FC97BE1F96D909D9758D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

6144:bSy2IrTR5DfAM1i5MalrrlUchT6MjtTy8aq7:bJcacsMhTyk

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:260564:ICQCaRNbCxBEAAKGBUMSSAJtTYEEBDEgMGfEioCiABC1AEggsk5wIkZgHcWBDKI0BAZoE0hjIMBINMMmdgcBjAgEBAoGLAQA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ef00ffff87878787
Perceptual Hash:b3c50c339cc98eb3
Difference Hash:1e4d00900e0e1e3e
Wavelet Hash:c600ffff83838383
Color Hash:#931f46

Other Hashes

Crop Resistant:1e4d00900e0e1e3e,0000000000000000,0fa1202ce4e56525

Scan History

Scan history not available

Unable to load historical scan data