ScanMalware.com

Security Scan Report: www.cityofredlands.org

Site favicon
Submitted: Oct 18, 2025, 11:48:43 PMCompleted: Oct 18, 2025, 11:50:08 PMpubliccompleted
Loading additional data...

Summary

This website contacted 71 IPs in 2 countries across 20 domains to perform 90 HTTP transactions. The main domain is cityofredlands.org and was registered NaN years ago.

Submitted URL: https://www.cityofredlands.org/

AI Security Verdict

High Risk

Confidence: 92%

9
Risk Score

Phishing page impersonating Google on a legitimate municipal domain; high risk.

Risk Factors
Brand impersonation of Google on an unrelated domain
Password field without accompanying username field (credential harvesting)
Login form collecting credentials on a site that should not require them
Domain age information unavailable

Details

Page Title

City of Redlands

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

news/blog

(40%)

Domain Information

The domain 'www.cityofredlands.org' uses the non-profit oriented generic top-level domain (.org); it also runs on subdomain 'www'. Its registrable label 'cityofredlands' stretches across 14 characters holding 4 vowels versus ten consonants. Word splitting yields 3 words: city, of, redlands. Median word length comes out to 4 characters. 'city' is most common in Chinese (Pinyin) usage. You will also see it in English and Dutch contexts.

Screenshot

Security scan screenshot of https://www.cityofredlands.org/

Page Load Overview

32.31s
Total Load Time
90
HTTP Requests
20
Domains
4.1 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:11,712 chars
Detector Agreement:100%

Website Classification

Primary Category

news/blog40% confidence
Type: dynamic
Method: structural

All Detected Categories

news/blog
40%

Detected Features

Search
OG: article

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
20142.250.185.131United States
AS15169GOOGLE
1172.217.18.10United States
AS15169GOOGLE
1184.24.77.156Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
1184.24.77.154Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
154.82.17.135Ashburn, Virginia, United States
AS14618AMAZON-AES
1104.18.15.80United States
AS13335CLOUDFLARENET
1142.250.181.238United States
AS15169GOOGLE
1107.20.175.248Ashburn, Virginia, United States
AS14618AMAZON-AES
123.23.101.133Ashburn, Virginia, United States
AS14618AMAZON-AES
1216.58.206.40United States
AS15169GOOGLE
9071--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T14FD3715184F55827026781C77A7A6B2AABE1D30BC74B0644B6BC87F70FCFD56E9A3108

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:bKIbPMZr8KCAgGkJZU6A5EziTaTaH538XftYd8r4Ats6gsGM6HzM+m9MRfIUT7m:bxb2rwfJLiB53Cte01kxm9yfr7m

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:134677:SBJEJcygqPMmS0kJEoQx4gYRMwp6YRESEAQTATuIkKAQp8SAj4hIgBZBAE3SoqhWALiUoGBggJAECEoAoVHFTZCSBiQIZ4QE

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffe0e0e00000fcfc
Perceptual Hash:d321d20c8cdaadde
Difference Hash:c2cb4bcb636f7818
Wavelet Hash:ffe0e0e02000fcff
Color Hash:#1f2d93

Other Hashes

Crop Resistant:c2cb4bcb636f7818,1e1b389c0c24613b,cbcb4bcbcb636527,0952d44c68a44cd2

Scan History

Scan history not available

Unable to load historical scan data