ScanMalware.com

Security Scan Report: visitsnovalley.com

Submitted: Oct 27, 2025, 6:47:15 AMCompleted: Oct 27, 2025, 6:49:06 AMpubliccompleted
Loading additional data...

Summary

This website contacted 16 IPs in 2 countries across 3 domains to perform 8 HTTP transactions. The main domain is visitsnovalley.com and was registered NaN years ago.

Submitted URL: https://visitsnovalley.com/snoqualmie-pass/

AI Security Verdict

Low Risk

Confidence: 82%

2
Risk Score

Low risk – circular redirect present but no malicious content or credential collection.

Risk Factors
Circular redirect detected (potential URL manipulation or redirect loop)
Safety Factors
Domain age of 2110 days (well‑established)
No malicious Indicators of Compromise matches found
No forms collecting credentials or payment information
Domain is unranked but age and lack of malicious activity mitigate risk
Domain age information unavailable

Details

Bot Protection Detected

This website is protected by forbidden bot protection. Our scanner was challenged or blocked during access.

Page Title

Robot Challenge Screen

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

malicious

(49%)

Domain Information

You're looking at domain 'visitsnovalley.com' on the commercial generic top-level domain (.com) with no subdomain. The core label 'visitsnovalley' covers 14 characters split between 5 vowels and nine consonants. Breaking it apart gives three words: visits, no, valley. Expect 6 characters per word on average. The linguistic tilt is Catalan for 'visites'. Secondary signals appear in Spanish and Chinese (Pinyin).

Screenshot

Security scan screenshot of https://visitsnovalley.com/snoqualmie-pass/

Page Load Overview

33.56s
Total Load Time
8
HTTP Requests
3
Domains
1 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:105 chars
Detector Agreement:100%

Website Classification

Primary Category

malicious49% confidence
Type: static
Method: ml+structural

All Detected Categories

malicious
49%
other
47%
suspicious phishing
33%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
8108.138.2.142United States
AS16509AMAZON-02
035.184.219.30Council Bluffs, Iowa, United States
AS396982GOOGLE-CLOUD-PLATFORM
0108.138.2.71United States
AS16509AMAZON-02
0142.250.185.234United States
AS15169GOOGLE
02600:9000:2490:a200:5:acf3:db40:21United States
AS16509AMAZON-02
02600:9000:2490:e00:5:acf3:db40:21United States
AS16509AMAZON-02
02600:9000:2490:1400:5:acf3:db40:21United States
AS16509AMAZON-02
0108.138.2.34United States
AS16509AMAZON-02
02600:9000:2490:4400:5:acf3:db40:21United States
AS16509AMAZON-02
02600:9000:2490:4a00:5:acf3:db40:21United States
AS16509AMAZON-02
816--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T17E73E1DD37600ED8CC9687D2673821493487B4EDE4504951F29E2BE4FF8B69D4AE068F

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:9IQS0tz0jiTbitkDfLMerF89xSuvcOKNGYUxYo3myMRdQmy:9r/itkDfLKKW

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:80656:UgABACUEVARyooAEaoMDTQOIAAmvRiAfMFKgCkqFaCmuIqOIAEwYREhgAYQCVizUoCIQxWgkUqAwAgBICOgK9tAFiNAEFpsG

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0000000000ffffff
Perceptual Hash:dd029add22b2fd22
Difference Hash:11310a4d32320022
Wavelet Hash:081808009affffff
Color Hash:#403a78

Other Hashes

Crop Resistant:11310a4d32320022

Scan History

Scan history not available

Unable to load historical scan data