ScanMalware.com

Security Scan Report: kg-portal.ru

Site favicon
Submitted: Dec 26, 2025, 7:14:31 PMCompleted: Dec 26, 2025, 7:15:58 PMpubliccompleted
Loading additional data...

Summary

This website contacted 35 IPs in 7 countries across 40 domains to perform 296 HTTP transactions. The main domain is kg-portal.ru.

Submitted URL: https://kg-portal.ru

The Cisco Umbrella rank of the primary domain is #410,922 of the top 1 million websites

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Confirmed phishing scam with hidden password field and malicious IP.

Risk Factors
Hidden password field (credential harvesting)
Malicious IP association
Excessive redirects
Low domain ranking
Presence of login form on unverified domain
Domain age information unavailable

Details

Page Title

КГ-Портал — всё о кино, видеоиграх, сериалах и аниме | КГ-Портал

Scan Type

public

Language

🇷🇺

Russian

(80% confidence)

Category

adult content

(62%)

Domain Information

The domain name 'kg-portal.ru' uses the Russian country-code top-level domain (.ru) while skipping any subdomain. The registrable portion 'kg-portal' spans 9 characters with two vowels and six consonants; it also includes one hyphen. Word splitting yields 2 words: kg, portal. Expect 4 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://kg-portal.ru

Page Load Overview

16.40s
Total Load Time
394
HTTP Requests
53
Domains
3.8 MB
Total Size

Language Analysis

Primary Language

🇷🇺Russian
Code: ru
Confidence:80%
Script:Cyrillic
Direction:ltr

Detection Details

Language Code:ru
Detection Confidence:80%
Script Type:Cyrillic
HTML Lang Attribute:ru-ru
Text Length:23,317 chars
Detector Agreement:80%

Website Classification

Primary Category

adult content62% confidence
Type: spa
Method: ml+structural

All Detected Categories

adult content
62%
entertainment media
47%
social_media
35%
forum
35%
news/blog
20%

Detected Features

Login Form
Comments
OG: article

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2093.158.134.118Russia
AS13238YANDEX LLC
11194.55.244.177Moscow, Moscow, Russia
AS34959Kviktel LLC
11142.250.185.162Ireland
AS57363
1195.163.52.67Russia
AS47764LLC VK
11142.251.140.174Netherlands
AS16276
11142.250.185.67United Kingdom
AS212247
11194.55.244.188United States
AS44066
1131.172.81.7Germany
AS44066firstcolo GmbH
1145.138.161.81Unknown
AS50214
1174.125.71.154Unknown
AS52007
39435--

Detected Technologies8

X-UA-Compatible
100%
PasswordField
100%
OpenSearch
100%
Open-Graph-Protocolvarticle
100%
JQueryv3.1.1
100%
Google-Tag-Manager
100%
Google-AnalyticsvUniversal
100%
HSTS
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T14E940B30E5E8042E821653DEE388774974A5C5B7E7061989B3EC263E6FC1C57E47A38E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:HoQJCLPWcSVC6s2rq3WUvmw5S5LWcSVETSXE+OGuNHT3Rr:HwH6s2rq3jmw56BTSXE+OGcN

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:431783:UiEEqC9RE6oloAyIwmAX3IoBlhAKAyiABRRZUKRREQwIUwcUBjCA6AgA0sihAQcBFBdAVlisB6JiAVBfoiKBS0AZEReBbtkd

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00ff83ffffe1e1e1
Perceptual Hash:e79863679823653c
Difference Hash:f433373434cbcbcb
Wavelet Hash:005f011fbfe16161
Color Hash:#ac538d

Other Hashes

Crop Resistant:f433373434cbcbcb,54949cd4d4845414,1e1e145672767474,e01111d8ded8595b,363212131a5a6869

Scan History

Scan history not available

Unable to load historical scan data