ScanMalware.com

Security Scan Report: www.grotonny.gov

Site favicon
Submitted: Dec 2, 2025, 10:22:47 PMCompleted: Dec 2, 2025, 10:24:19 PMpubliccompleted
Loading additional data...

Summary

This website contacted 29 IPs in 1 country across 7 domains to perform 133 HTTP transactions. The main domain is grotonny.gov and was registered NaN years ago.

Submitted URL: https://www.grotonny.gov/

AI Security Verdict

High Risk

Confidence: 92%

10
Risk Score

High‑risk phishing site impersonating the Village of Groton; avoid and report.

Risk Factors
Link to malicious domain wix.com (Indicators of Compromise)
Newly registered domain (<90 days)
Unranked Cisco Umbrella reputation
Suspicious use of free web hosting for a .gov site
Low overall legitimacy signals
Domain age information unavailable

Details

Page Title

HOME | vilgroton

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

government

(48%)

Domain Information

The domain name 'www.grotonny.gov' uses the United States government-restricted top-level domain (.gov) with subdomain 'www'. The core label 'grotonny' covers 8 characters with 2 vowels and six consonants. Splitting it apart reveals two words: groton, ny. Median word length is four characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.grotonny.gov/

Page Load Overview

0.62s
Total Load Time
133
HTTP Requests
7
Domains
1.7 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:2,818 chars
Detector Agreement:100%

Website Classification

Primary Category

government48% confidence
Type: static
Method: ml+structural

All Detected Categories

government
48%
government public service
32%
corporate
25%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
9234.49.229.81Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
2165.8.131.77United States
AS16509AMAZON-02
1765.8.131.55United States
AS16509AMAZON-02
952.2.55.140Ashburn, Virginia, United States
AS14618AMAZON-AES
4151.101.130.217San Francisco, California, United States
AS54113FASTLY
452.86.41.132Ashburn, Virginia, United States
AS14618AMAZON-AES
454.204.83.201Ashburn, Virginia, United States
AS14618AMAZON-AES
43.91.142.98Ashburn, Virginia, United States
AS14618AMAZON-AES
434.149.87.45Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
4151.101.66.217San Francisco, California, United States
AS54113FASTLY
13329--

Detected Technologies6

React
50%
Google Cloud
50%
Wix
40%
HTTP/3
40%
HSTS
40%
Google Cloud CDN
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T16EC48C60A1006C3E5E9F11DDB26ABB0D34646411DD810B3BF9FC5A683EE7DE522D732A

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

6144:awmko1Pa9pcY96sMJEsb50TezSdQ+cEx0JnkykIFF:tmh1ipcY99ndQa0JkTIFF

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:549472:SuvP7cOAC8hIaCA0gAGFYuSEACAAJgsFSEAADQykZAwhAdggVcANCBKQQDBvMWHhAA4CBSQoQBTAG4sHQRaak0AgQgADAqVM

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00003e3f3f3c3d7f
Perceptual Hash:8f39706e27eed480
Difference Hash:4db1f0656b6565c4
Wavelet Hash:00003e3f3f3c3d7e
Color Hash:#2d5b86

Other Hashes

Crop Resistant:4db1f0656b6565c4,e1d0d0e0a0e4f2e3,63b8746020383839,4db1f065696465e4,6646673b31b19c97

Scan History

Scan history not available

Unable to load historical scan data