ScanMalware.com

Security Scan Report: visit-kaliningrad.ru

Submitted: Mar 25, 2026, 1:38:27 PMCompleted: Mar 25, 2026, 1:39:49 PMpubliccompleted
Loading additional data...

Summary

This website contacted 22 IPs in 2 countries across 22 domains to perform 160 HTTP transactions. The main domain is visit-kaliningrad.ru.

Submitted URL: https://visit-kaliningrad.ru

AI Security Verdict

Confirmed Scam

Confidence: 92%

10
Risk Score

Site hosts a credential‑phishing form and matches a known malicious IP; avoid and report.

Risk Factors
Malicious Indicators of Compromise (IP 5.255.255.77)
Credential‑collecting form (password field) on a low‑reputation, unknown‑age domain
Excessive redirects (8)
Unranked domain (not in Cisco Umbrella top 1 M)
Domain age unknown (cannot verify establishment)
Domain age information unavailable

Details

Page Title

Туристический центр: информация для туриста, что посмотреть в Калининграде и области

Scan Type

public

Language

🇷🇺

Russian

(80% confidence)

Category

travel tourism

(98%)

Domain Information

The domain 'visit-kaliningrad.ru' uses the Russian country-code top-level domain (.ru) with no subdomain. The registrable portion 'visit-kaliningrad' spans 17 characters holding 6 vowels versus 10 consonants, plus 1 hyphen. Splitting it apart reveals 2 words: visit, kaliningrad. Expect 8 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://visit-kaliningrad.ru

Page Load Overview

6.61s
Total Load Time
166
HTTP Requests
24
Domains
25.2 MB
Total Size

Language Analysis

Primary Language

🇷🇺Russian
Code: ru
Confidence:80%
Script:Cyrillic
Direction:ltr

Detection Details

Language Code:ru
Detection Confidence:80%
Script Type:Cyrillic
HTML Lang Attribute:ru
Text Length:11,576 chars
Detector Agreement:100%

Website Classification

Primary Category

travel tourism98% confidence
Type: webapp
Method: ml+structural

All Detected Categories

travel tourism
98%
corporate business
82%
government public service
65%
blog personal website
62%
education learning
37%

Detected Features

Login Form
Search
OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
19216.58.206.74United States
AS15169Google LLC
7142.251.127.95United States
AS15169Google LLC
737.9.64.225Russia
AS13238YANDEX LLC
777.88.21.119Russia
AS13238YANDEX LLC
7217.16.19.172Russia
AS47764LLC VK
7104.18.1.22Russia
AS13238
7104.16.175.226Russia
AS13335
787.250.251.89Russia
AS13238YANDEX LLC
7104.17.25.14United States
AS13335Cloudflare, Inc.
7108.138.26.114RussiaUnknown
16622--

Detected Technologies4

X-UA-Compatible
100%
PasswordField
100%
PHP
50%
1C-Bitrix
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T14EC42A238648107BB336195FD914771870EEDDB1FA634AD2F3FB090A42D6D99720F26A

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:jsnIAv+mafLWOlPHFOFzveba9e4Fm1LLmo1seTcxbTjwUgQ+Wg3c7f20Jn0jhnfX:js+lPHUdGba9au4clTjfgQ+Wg3c7uUu

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:580732:HgwwwAAsKaMIiQkQYpIJIRPmQMAJKDAAdAiFRoEMAsI7OAlfj0AkUUECgAGIIkYhAViAw1gIGRkYMYA7QjJGEVIhIMQoE0Jm

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00ff91b1f191f7fb
Perceptual Hash:ee4a9134636e3d51
Difference Hash:6683232767272772
Wavelet Hash:00fd9181f191f5bb
Color Hash:#4fbf40

Other Hashes

Crop Resistant:44e3232767272772,004014d2f2e20d40,b3b33549d9889048,0020047179710e10

Scan History

Scan history not available

Unable to load historical scan data