ScanMalware.com

Security Scan Report: trfnews.i234.me

Site favicon
Submitted: Oct 7, 2025, 9:23:02 AMCompleted: Oct 7, 2025, 9:24:47 AMpubliccompleted
Loading additional data...

Summary

This website contacted 28 IPs in 2 countries across 11 domains to perform 65 HTTP transactions. The main domain is trfnews.i234.me and was registered NaN years ago.

Submitted URL: https://trfnews.i234.me/wordpress/freeze-warning-issued-october-7-at-229am-cdt-until-october-8-at-900am-cdt-by-nws-grand-forks-nd/

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

High risk due to malicious primary domain and signs of a compromised WordPress site.

Risk Factors
Malicious primary domain indicator (i234.me)
Unranked/low‑reputation domain hosting the content
Dynamic/suspicious domain usage
Potentially compromised WordPress installation
Domain age information unavailable

Details

Page Title

Freeze Warning issued October 7 at 2:29AM CDT until October 8 at 9:00AM CDT by NWS Grand Forks ND - TRF News

Scan Type

public

Language

🇺🇸

English

(100% confidence)

Category

government public service

(83%)

Domain Information

The domain name 'trfnews.i234.me' uses the Montenegrin country-code top-level domain (.me); it also runs on subdomain 'trfnews'. The core label 'i234' covers 4 characters containing one vowel alongside zero consonants, along with three digits. Word splitting yields 2 words: i, 234. Median word length comes out to 2 characters. Most frequently, 'i' shows up in English. Secondary signals appear in Chinese (Pinyin) and Bosnian.

Screenshot

Security scan screenshot of https://trfnews.i234.me/wordpress/freeze-warning-issued-october-7-at-229am-cdt-until-october-8-at-900am-cdt-by-nws-grand-forks-nd/

Page Load Overview

40.71s
Total Load Time
65
HTTP Requests
11
Domains
693 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:100%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:100%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:62,186 chars
Detector Agreement:100%

Website Classification

Primary Category

government public service83% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

government public service
83%
social media network
82%
blog personal website
80%
adult content
76%
news media journalism
75%

Detected Features

Search
Articles
Comments

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
11142.250.185.225United States
AS15169GOOGLE
2104.20.20.192United States
AS13335CLOUDFLARENET
2167.71.54.9Frankfurt am Main, Hesse, Germany
AS14061DIGITALOCEAN-ASN
2216.58.206.40United States
AS15169GOOGLE
2142.250.186.142United States
AS15169GOOGLE
2216.239.34.36United States
AS15169GOOGLE
2172.66.171.172United States
AS13335CLOUDFLARENET
2216.58.206.42United States
AS15169GOOGLE
2216.58.206.34United States
AS15169GOOGLE
2142.250.184.227United States
AS15169GOOGLE
6528--

Detected Technologies5

WordPressv6.1.1
100%
MetaGenerator
100%
PHP
50%
MySQL
50%
WordPress Block Editor
30%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1F8B48331F940293F6B3B45C4A749D70AB1C6A31FF4E90810D5D607688AE9E78F52E2E7

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:q30WxRvlASlv1zx4nie2do9vMdpcKsWmTw8yncc0eRbHBTplAjbT5d3hiantUerd:8JAS3846hi7nM12k

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:500174:CKBSSEFiCEQlMWBCC2SIFAigRogRARfpGk8MgQwDEw04YS0AyomLYIYGghBEqgZgAB0wGsAQCkFAjdCERBCISkJAhIzQUCgQ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00181818383c1800
Perceptual Hash:c93c36633736c9c8
Difference Hash:8cb2b2b2b2f2f0cc
Wavelet Hash:00383c3c7c7c7c7e
Color Hash:#4d2d86

Other Hashes

Crop Resistant:8c8e9eaeb2ba3617,8cb2b2b2b2f2f0cc

Scan History

Scan history not available

Unable to load historical scan data