Security Scan Report: update.www.www.www.staging.admin.dev.03-120-55-020.plesk.page

Redirected to:
https://login.microsoftonline.com/b34ec9cd-0a78-4623-9e54-2885791429c7...
Site favicon
Submitted: Feb 13, 2026, 9:54:49 AMCompleted: Feb 13, 2026, 9:56:41 AMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 3 HTTP transactions. The main domain is login.microsoftonline.com and was registered NaN years ago.

Submitted URL: https://update.www.www.www.staging.admin.dev.03-120-55-020.plesk.page/auth/oidc/azure

Effective URL: https://login.microsoftonline.com/b34ec9cd-0a78-4623-9e54-2885791429c7/oauth2/v2.0/authorize?access_type=offline&client_id=86a3041a-a218-4ec6-a019-fe40c6d23389&code_challenge=FBwh5GyGEFY4FEr-KhMI8P2gVae5YSDBCkOx9RokkKI&code_challenge_method=S256&redirect_uri=https%3A%2F%2Fvpn.hsag-prod.onpower.cloud%2Fauth%2Foidc%2Fazure%2Fcallback&response_type=code&scope=openid+email+profile&state=pzrIB2XpJy_g-ylI&sso_reload=trueRedirected

AI Security Verdict

High Risk

Confidence: 86%

8
Risk Score

Phishing page mimicking Microsoft login; collects credentials on an untrusted domain.

Risk Factors
Unranked domain
Brand impersonation of Microsoft
Credential collection form on unrelated domain
High JavaScript obfuscation / function() constructor usage
Hidden fields typical of Microsoft login flow
Domain age information unavailable

Details

Page Title

update.www.www.www.staging.admin.dev.03-120-55-020.plesk.page

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

The domain 'update.www.www.www.staging.admin.dev.03-120-55-020.plesk.page' uses the .page top-level domain and includes subdomain 'update.www.www.www.staging.admin.dev.03-120-55-020'. The second-level label 'plesk' is 5 characters long containing one vowel alongside 4 consonants. Tokenizing the label suggests two words: pl, esk. Expect 2.5 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://update.www.www.www.staging.admin.dev.03-120-55-020.plesk.page/auth/oidc/azure

Page Load Overview

30.16s
Total Load Time
1
HTTP Requests
1
Domains
N/A
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:109 chars
Detector Agreement:67%

Website Classification

Primary Category

unknown0% confidence
Type: webapp
Method: structural

All Detected Categories

No categories detected

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
13.120.55.20Frankfurt am Main, Hesse, Germany
AS16509Amazon.com, Inc.
11--

Detected Technologies4

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1AD048E77329A063986558498F05B43099F20B143F506C9BCB9BCBAD9BFDED06107BB78

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:vfQho9PKBb9Js3q9Jzbs6tlg3SBKwdQWgceIszs2bMy8Oldk:whoC9JSqzzbs6o3Sj3gcrs42eAG

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:184741:lI4LA2gDNRWQySAEHjFAJADlAFHJ3gVQAgACAQzA8BiEECpYUAB8AqAgAA2AIMEcKAiKBjkhPCgvBgbBFkg6IJHBGCwigCgA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffcfc3c7ffffffff
Perceptual Hash:b333cccccc233333
Difference Hash:00180c1c00000000
Wavelet Hash:3f1f0307f0f0f0f0
Color Hash:#3c3a78

Other Hashes

Crop Resistant:00180c1c00000000

Scan History

Scan history not available

Unable to load historical scan data