ScanMalware.com

Security Scan Report: mrelay.livraison-relais-fr.com

Redirected to: https://www.lemonde.fr/

Site favicon
Submitted: Dec 12, 2025, 6:54:11 PMCompleted: Dec 12, 2025, 6:55:02 PMpubliccompleted
Loading additional data...

Summary

This website contacted 14 IPs in 2 countries across 7 domains to perform 64 HTTP transactions. The main domain is lemonde.fr and was registered NaN years ago.

Submitted URL: https://mrelay.livraison-relais-fr.com/as.php

Effective URL: https://www.lemonde.fr/Redirected

AI Security Verdict

High Risk

Confidence: 82%

7
Risk Score

Page mimics Le Monde on a suspicious domain and redirects to the real site, indicating a phishing attempt.

Risk Factors
Brand impersonation on an untrusted domain
Untrusted redirect domain (not a known marketing/redirect service)
Domain is unranked in Cisco Umbrella (low reputation) despite old age
Domain age information unavailable

Details

Page Title

Le Monde.fr - Actualités et Infos en France et dans le monde

Scan Type

public

Language

🇫🇷

French

(80% confidence)

Category

entertainment media

(98%)

Domain Information

The domain 'mrelay.livraison-relais-fr.com' uses the commercial generic top-level domain (.com) with subdomain 'mrelay'. The registrable portion 'livraison-relais-fr' spans 19 characters split between seven vowels and ten consonants, along with two hyphens. Splitting it apart reveals six words: liv, raison, rel, a, is, fr. Median word length is 2.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://mrelay.livraison-relais-fr.com/as.php

Page Load Overview

16.55s
Total Load Time
64
HTTP Requests
7
Domains
1.2 MB
Total Size

Language Analysis

Primary Language

🇫🇷French
Code: fr
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:fr
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:fr
Text Length:49,372 chars
Detector Agreement:100%

Website Classification

Primary Category

entertainment media98% confidence
Type: spa
Method: ml+structural

All Detected Categories

entertainment media
98%
news media journalism
81%
adult content
55%
government public service
52%
documentation technical
31%

Detected Features

OG: website
Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
12172.67.212.172United States
AS13335CLOUDFLARENET
4146.75.122.217Frankfurt am Main, Hesse, Germany
AS54113FASTLY
4172.67.151.45United States
AS13335CLOUDFLARENET
4104.21.37.193United States
AS13335CLOUDFLARENET
423.52.181.51Frankfurt am Main, Hesse, Germany
AS16625AKAMAI-AS
418.245.86.101United States
AS16509AMAZON-02
418.245.86.69United States
AS16509AMAZON-02
418.245.86.111United States
AS16509AMAZON-02
42606:4700:3035::6815:387fUnited States
AS13335CLOUDFLARENET
4104.21.56.127United States
AS13335CLOUDFLARENET
6414--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T10F34E7B2B5C067374183C2DBFB62676AE191850AC6DA8A40F3FD83854BC6DD5D2C729C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

6144:tFOj5rOUOcfBmRLCuDNDc7Ne/vLh1kBROyCfH6sIiwwGg58VhuvwvDYM4/jOqCir:d3ZCMFxay+H0H

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:242973:rK8QZ6EqRBASOQBHgEIfKmrhTJ4YLwAKkWFAEQCJgXoCVqQgMiQMwBGtgpCPQiA4JAgI2IARA1hNIcrBVYpiJHIAjAiFNlzU

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:001c3c3c3c3c1c00
Perceptual Hash:99ce30e730cd6719
Difference Hash:0f717171716b319e
Wavelet Hash:e73c3c3c7c3c3c02
Color Hash:#87c591

Other Hashes

Crop Resistant:a262a292862a2b8c,0f717171716b319e

Scan History

Scan history not available

Unable to load historical scan data