Security Scan Report: gcpu-f2ej-mr21.philip-turnkeytalk-com-s-account.workers.dev

Submitted: Jun 30, 2026, 2:47:41 PMCompleted: Jun 30, 2026, 2:49:00 PMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 1 country across 2 domains to perform 2 HTTP transactions. The main domain is gcpu-f2ej-mr21.philip-turnkeytalk-com-s-account.workers.dev and was registered NaN years ago.

Submitted URL: https://gcpu-f2ej-mr21.philip-turnkeytalk-com-s-account.workers.dev/a61b5ed9623f1a6e?email=x

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

The page impersonates Adobe Acrobat Sign, is flagged by threat intel as a known attacker, and exhibits high‑risk indicators.

Risk Factors
Primary domain IoC match
Brand impersonation of Adobe
Subdomain on hosting platform with unknown age
Anti‑analysis JavaScript (devtools/right‑click blocking)
Domain age information unavailable

Details

Page Title

Adobe Acrobat Sign

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(67%)

Domain Information

Domain 'gcpu-f2ej-mr21.philip-turnkeytalk-com-s-account.workers.dev' uses the developer-focused generic top-level domain (.dev) with subdomain 'gcpu-f2ej-mr21.philip-turnkeytalk-com-s-account'. The core label 'workers' covers 7 characters holding two vowels versus five consonants. Breaking it apart gives one word: workers. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://gcpu-f2ej-mr21.philip-turnkeytalk-com-s-account.workers.dev/a61b5ed9623f1a6e?email=x

Page Load Overview

0.82s
Total Load Time
7
HTTP Requests
3
Domains
29 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:507 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software67% confidence
Type: static
Method: ml+structural

All Detected Categories

technology software
67%
government public service
56%
documentation technical
47%
healthcare medical
46%
finance banking
36%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
4188.114.96.3Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
3142.251.14.95Google · CDNUnited States
AS15169Google LLC
72--

Detected Technologies3

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1F772C090B1F7A675231A2C287E3DEE1D24721C55F0606042B7260EE0A8F699FDDDEF85

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:Lnj9aeVQ/nnMpQFwCugE4kdj0UqcrOqMksoowYGqBEFMgToh2:L0eOnMpQG2TkwcrEsYXaFToh2

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:16552:jAAQuSIWlEAUx8FQwIMoHAKYUSgsIHR0gKEHYCiQEBAYEsm7BUIKCQTU0CBUggEj0oSMkQMCThgBELJFLCqAIIgDoYgDETgM

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:9f9fffd1d1d99b1f
Perceptual Hash:ed96969669699292
Difference Hash:7274b63333333330
Wavelet Hash:1f1f5f1111111f1f
Color Hash:#271f93

Other Hashes

Scan History

Scan history not available

Unable to load historical scan data