ScanMalware.com

Security Scan Report: cy714912-wordpress-lqfu0.tw1.ru

Redirected to: https://vh456.timeweb.ru/blocked/?ref=cy714912-wordpress-lqfu0.tw1.ru#0919e066bff051fe9

Site favicon
Submitted: Nov 23, 2025, 11:20:20 AMCompleted: Nov 23, 2025, 11:21:10 AMpubliccompleted
Loading additional data...

Summary

This website contacted 20 IPs in 3 countries across 11 domains to perform 51 HTTP transactions. The main domain is vh456.timeweb.ru.

Submitted URL: https://cy714912-wordpress-lqfu0.tw1.ru/wp-content/plugins/SG2sms/sgfar/pages/index.php?lsg#0919e066bff051fe9

Effective URL: https://vh456.timeweb.ru/blocked/?ref=cy714912-wordpress-lqfu0.tw1.ru#0919e066bff051fe9Redirected

The Cisco Umbrella rank of the primary domain is #163,229 of the top 1 million websites

AI Security Verdict

Low Risk

Confidence: 80%

2
Risk Score

Suspicious WordPress path and new domain, but no malicious content detected; likely safe to view but avoid providing any data.

Risk Factors
Compromised WordPress URL path detected
Domain age unknown / possibly very new
Low Cisco Umbrella ranking
Safety Factors
No malicious Indicators of Compromise matches found
No credential or payment forms present
Final URL leads to a Timeweb block page, not to malicious content
Domain age information unavailable

Details

Page Title

Домен заблокирован в Timeweb

Scan Type

public

Language

🇷🇺

Russian

(60% confidence)

Category

corporate business

(42%)

Domain Information

You're looking at domain 'cy714912-wordpress-lqfu0.tw1.ru' on the Russian country-code top-level domain (.ru); it also runs on subdomain 'cy714912-wordpress-lqfu0'. The core label 'tw1' covers 3 characters containing zero vowels alongside two consonants, plus one digit. Splitting it apart reveals two words: tw, 1. Expect 1.5 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://cy714912-wordpress-lqfu0.tw1.ru/wp-content/plugins/SG2sms/sgfar/pages/index.php?lsg#0919e066bff051fe9

Page Load Overview

1.14s
Total Load Time
51
HTTP Requests
11
Domains
1.3 MB
Total Size

Language Analysis

Primary Language

🇷🇺Russian
Code: ru
Confidence:60%
Script:Cyrillic
Direction:ltr

Detection Details

Language Code:ru
Detection Confidence:60%
Script Type:Cyrillic
HTML Lang Attribute:en
Text Length:1,736 chars
Detector Agreement:100%
Language mismatch: Declared as en but detected as ru

Website Classification

Primary Category

corporate business42% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

corporate business
42%
technology software
37%

Detected Features

Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1492.53.96.141Russia
AS9123Jsc timeweb
877.88.21.119Russia
AS13238YANDEX LLC
8142.250.186.99United States
AS15169GOOGLE
737.9.64.225Russia
AS13238YANDEX LLC
387.250.251.119Russia
AS13238YANDEX LLC
277.88.44.55Russia
AS13238YANDEX LLC
287.250.250.119Russia
AS13238YANDEX LLC
277.88.55.88Russia
AS13238YANDEX LLC
22a00:1450:4001:82f::2003Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
22a00:1450:4001:830::2004Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
5120--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1F963C7E701F0D0E14A4FC3B19D365A9B9D7624BFDE81928479DC0A507F92DF58883AAC

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:kHfGeFKP7V7cdqCHG0PxiHm/ouVHHMjEENRzigLIN0:kHf5GB7cdqCHG0AupMVbLIG

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:72932:ECQJjGiwCTBmREASIQIhIgjCM1JAFCJMUISJkiGEQVCmNJxVM8UCKBkkQIg6hS8ISwBTAMdSAoBEER5AYh8EqEmAT0IEQkQQ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:818181ffffffffff
Perceptual Hash:ba3b3ac0c5c5c5c5
Difference Hash:2b2b0b36f0c0b8e8
Wavelet Hash:000080807f7f7f7f
Color Hash:#78753a

Other Hashes

Crop Resistant:2b2b0b36f0c0b8e8,ec72bd1d9d9d9980,7494e4c474cccc6a

Scan History

Scan history not available

Unable to load historical scan data