ScanMalware.com

Security Scan Report: t.co

Redirected to:
https://s4s09uw.duckdns.org/
Submitted: Nov 23, 2025, 3:18:07 PMCompleted: Nov 23, 2025, 3:21:16 PMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 2 countries across 2 domains to perform 4 HTTP transactions. The main domain is s4s09uw.duckdns.org.

Submitted URL: https://t.co/C9uOeR2b52

Effective URL: https://s4s09uw.duckdns.org/Redirected

The Cisco Umbrella rank of the primary domain is #1,176 of the top 1 million websitesTop 10K Site

AI Security Verdict

High Risk

Confidence: 92%

7
Risk Score

Site redirects to a suspicious dynamic DNS domain flagged by Indicators of Compromise; treat as high‑risk.

Risk Factors
Primary domain matches malicious Indicators of Compromise
Use of a dynamic DNS subdomain (s4s09uw.duckdns.org)
Unknown / potentially very new domain age
Domain age information unavailable

Details

Page Title

404 Not Found

Scan Type

public

Language

🇳🇱

Dutch

(100% confidence)

Category

unknown

(0%)

Domain Information

The domain name 't.co' uses the Colombian country-code top-level domain (.co) while skipping any subdomain. Count 1 characters in 't' with zero vowels and 1 consonant. Word splitting yields one word: t. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://t.co/C9uOeR2b52

Page Load Overview

2.19s
Total Load Time
4
HTTP Requests
2
Domains
1 KB
Total Size

Language Analysis

Primary Language

🇳🇱Dutch
Code: nl
Confidence:100%
Script:Latin
Direction:ltr

Detection Details

Language Code:nl
Detection Confidence:100%
Script Type:Latin
Text Length:26 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: static
Method: structural

All Detected Categories

No categories detected

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2103.80.133.9Seoul, Seoul, South Korea
AS205960Hdtidc Limited
1162.159.140.229United States
AS13335CLOUDFLARENET
1172.66.0.227United States
AS13335CLOUDFLARENET
43--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T119D02EA70C2ACC0A5330AC20FCB3705C5062B86ED0CC8C61C480189E81D0F8ADADB2A1

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

6:p/ntc7pc3MRJVxC9ixO9WvEAUm0RhixO9WxKQ1X9BXW31AXV2woxO9WvYKOb:plcVc3MxxxaWvsm0R8aWv1PXK+XVWaWs

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:1:0:9e91e7998c6c2cea641fa3e0b070f46e

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00ffffffffffffff
Perceptual Hash:e666666666666623
Difference Hash:0c00000000000000
Wavelet Hash:00fff3f300000000
Color Hash:#8b79d2

Other Hashes

Crop Resistant:0c00000000000000

Scan History

Scan history not available

Unable to load historical scan data