ScanMalware.com

Security Scan Report: online-akte.ra-lyko.de

Redirected to:
https://online-akte.ra-lyko.de/index.php/login
Site favicon
Submitted: May 3, 2026, 6:03:27 PMCompleted: May 3, 2026, 6:04:45 PMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 26 HTTP transactions. The main domain is online-akte.ra-lyko.de and was registered NaN years ago.

Submitted URL: http://online-akte.ra-lyko.de/index.php/login

Effective URL: https://online-akte.ra-lyko.de/index.php/loginRedirected

AI Security Verdict

Moderate Risk

Confidence: 94%

5
Risk Score

The site impersonates Nextcloud, collects login credentials on an unranked domain, and uses heavily obfuscated JavaScript – high‑risk phishing.

Risk Factors
Brand impersonation with credential collection
Unranked domain reputation
High JavaScript obfuscation score
Presence of a password field on a non‑official domain
Safety Factors
Domain age > 9 years (well‑established)
No malicious Indicators of Compromise detected
No network IDS alerts or known malware signatures
Established domain (3346 days old) with no strong malicious indicators — risk clamped from 8 to 5
Domain age information unavailable

Details

Page Title

Login – Nextcloud

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(78%)

Domain Information

The domain 'online-akte.ra-lyko.de' uses the German country-code top-level domain (.de); it also runs on subdomain 'online-akte'. Its registrable label 'ra-lyko' stretches across 7 characters holding 2 vowels versus 4 consonants; it also includes 1 hyphen. It segments into three words: ra, ly, ko. Median word length is 2 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://online-akte.ra-lyko.de/index.php/login

Page Load Overview

4.11s
Total Load Time
26
HTTP Requests
1
Domains
203 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:271 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software78% confidence
Type: webapp
Method: ml+structural

All Detected Categories

technology software
78%
documentation technical
41%
real estate property
26%
corporate
25%

Detected Features

Login Form
Search
OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2685.13.145.150Germany
AS34788Neue Medien Muennich GmbH
261--

Detected Technologies2

PasswordField
100%
Vue.js
30%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1BD858FE6AC8525329527C72D708EBA3E331BB14318215A9AD4CE70880FF67DE73B155E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

12288:qRQpCCZtB4b6chxpBOSabYKgPZtB4bSUDqNkg2EeFlqkc+TVmQMg+ZTQ+4Ctr/5m:9Qct3ctkwWx

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:1760108:IHRD1oxsIAhQDAJQSQRwAZCkEIWKcABAADSWIN1oSEQhuZOJQABgAC9YgJGkCgMCOIgRQYN4jkPIE6gZ2EAQpRgUoJIE0CYA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00181818387ee100
Perceptual Hash:c99c32e31eb0c93e
Difference Hash:d0f0b2b2f1c08733
Wavelet Hash:007878f8fcfee310
Color Hash:#40bfbf

Other Hashes

Crop Resistant:a2a696a8313386a2,e0e0e0c2c1828303,aad24c4d4a808282,d0f0b2b2f1c08733

Scan History

Scan history not available

Unable to load historical scan data