ScanMalware.com

Security Scan Report: cf329112-wordpress-awf01.tw1.ru

Redirected to: https://vh454.timeweb.ru/blocked/?ref=cf329112-wordpress-awf01.tw1.ru#bb8e70ec2b32cff69

Site favicon
Submitted: Oct 26, 2025, 2:40:25 AMCompleted: Oct 26, 2025, 2:41:27 AMpubliccompleted
Loading additional data...

Summary

This website contacted 20 IPs in 3 countries across 10 domains to perform 43 HTTP transactions. The main domain is vh454.timeweb.ru.

Submitted URL: https://cf329112-wordpress-awf01.tw1.ru/wp-content/plugins/nwca-ddcanww/nwca-ddcanww/pages/region.php?lca#bb8e70ec2b32cff69

Effective URL: https://vh454.timeweb.ru/blocked/?ref=cf329112-wordpress-awf01.tw1.ru#bb8e70ec2b32cff69Redirected

AI Security Verdict

Low Risk

Confidence: 80%

3
Risk Score

Low risk site; likely a parked domain with a compromised WordPress path but no phishing or malware observed.

Risk Factors
Compromised WordPress site path detected
Safety Factors
No malicious Indicators of Compromise matches
No credential or payment forms present
Only a standard search form is present
Redirects to a legitimate hosting provider page
Domain age information unavailable

Details

Page Title

Домен припаркован в Timeweb

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

Domain 'cf329112-wordpress-awf01.tw1.ru' uses the Russian country-code top-level domain (.ru); it also runs on subdomain 'cf329112-wordpress-awf01'. The registrable portion 'tw1' spans 3 characters split between 0 vowels and 2 consonants; bonus characters include one digit. Word splitting yields 2 words: tw, 1. Expect 1.5 characters per word on average. 'tw' is most common in Albanian usage.

Screenshot

Security scan screenshot of https://cf329112-wordpress-awf01.tw1.ru/wp-content/plugins/nwca-ddcanww/nwca-ddcanww/pages/region.php?lca#bb8e70ec2b32cff69

Page Load Overview

44.40s
Total Load Time
43
HTTP Requests
10
Domains
882 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:1,802 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: dynamic
Method: structural

All Detected Categories

No categories detected

Detected Features

Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
5142.250.186.132United States
AS15169GOOGLE
25.255.255.77Russia
AS13238YANDEX LLC
2216.58.206.42United States
AS15169GOOGLE
2142.250.185.67United States
AS15169GOOGLE
237.9.64.225Russia
AS13238YANDEX LLC
277.88.55.88Russia
AS13238YANDEX LLC
287.250.251.119Russia
AS13238YANDEX LLC
2142.250.185.195United States
AS15169GOOGLE
292.53.96.105Russia
AS9123Jsc timeweb
287.250.250.119Russia
AS13238YANDEX LLC
4320--

Detected Technologies2

JQueryv2.1.3
100%
Yandex.Metrika
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1CB73B5E741F0D0E14A4FC3B19D36569BDD7624BFDE85528479DC0A106F82EF98883AAC

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:xfFVtrVlcBLoHj0PxiHm/ouVHzMd/ENRzGXLIN0:B3lcBLoHj0Au1MMMLIG

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:77922:IOVCNGlTmgmAgCGAGAERw0cQLcZkAAkFABFMZk1CFBoxcqBJRESSqEAQECBHmBeZADngXBBAQQDKhGzCpjQDAhFCBDsEIo6D

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00007e7e1e7e7e3e
Perceptual Hash:9578693a3ec3c293
Difference Hash:0332c0e0b8eccaea
Wavelet Hash:00007e7e1e7e3a7e
Color Hash:#6ce096

Other Hashes

Crop Resistant:0332c0e0b8eccaea

Scan History

Scan history not available

Unable to load historical scan data