ScanMalware.com

Security Scan Report: herleiner.net

Redirected to: https://herleiner.net/e/

Submitted: Jan 18, 2026, 12:30:29 PMCompleted: Jan 18, 2026, 12:31:40 PMpubliccompleted
Loading additional data...

Summary

This website contacted 7 IPs in 1 country across 8 domains to perform 1 HTTP transaction. The main domain is herleiner.net and was registered NaN years ago.

Submitted URL: http://herleiner.net/e/

Effective URL: https://herleiner.net/e/Redirected

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Confirmed scam: credential harvesting on a brand‑new domain.

Risk Factors
Credential harvesting form (password only)
Domain registered within 7 days
Login form on a newly registered domain
Domain age information unavailable

Details

Page Title

Log In — WordPress.com

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(58%)

Domain Information

Domain 'herleiner.net' uses the network infrastructure generic top-level domain (.net) while skipping any subdomain. The registrable portion 'herleiner' spans 9 characters split between four vowels and 5 consonants. Word splitting yields three words: her, leine, r. Median word length comes out to 3 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://herleiner.net/e/

Page Load Overview

1.45s
Total Load Time
17
HTTP Requests
8
Domains
672 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:618 chars
Detector Agreement:50%

Website Classification

Primary Category

technology software58% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

technology software
58%
e-commerce shopping
35%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
5151.101.2.137United States
AS15169
2142.250.186.138United States
AS15169GOOGLE
250.6.224.90Ashburn, Virginia, United States
AS31898ORACLE-BMC-31898
2142.250.185.74United States
AS15169GOOGLE
2104.17.24.14United States
AS13335CLOUDFLARENET
2192.0.77.32San Francisco, California, United States
AS2635AUTOMATTIC
2104.18.10.207United StatesUnknown
177--

Detected Technologies8

X-UA-Compatible
100%
PasswordField
100%
JQueryv2.2.4
100%
Bootstrapv4.0.0
100%
Cloudflare
50%
jQuery CDN
20%
cdnjs
20%
Google Hosted Libraries
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T162F22AE426E453E4600387ECED3650167A5EA8FFEB448790F7AC8ED4AF915E5C81A8C4

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:KonE6nIxh+VsXXg4iNjWaXvKt0PH74nDYgqGH0JfKRG7qaXYyOvdi+Y:KonaX+qngtJbvKi8nDDH0gG7LOvdc

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:34346:BNMLIMDWkWwWOB4GIlWUwYGGIgYLEwqFJYEAwEDLCEF5ASD4YMQQBBwMxBkCjOlBB2AYYmC0AgqWGwCAPSMJXDgpHQSIKIIh

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:67e7f7c3c7f7ffff
Perceptual Hash:b332c6c71999cccc
Difference Hash:8c4d649e1c681000
Wavelet Hash:66e7c3c3c0e0f0f0
Color Hash:#832d86

Other Hashes

Crop Resistant:8c4d649e1c681000

Scan History

Scan history not available

Unable to load historical scan data