ScanMalware.com

Security Scan Report: www.cookcountycourtil.gov

Site favicon
Submitted: Oct 20, 2025, 8:05:47 AMCompleted: Oct 20, 2025, 8:07:13 AMpubliccompleted
Loading additional data...

Summary

This website contacted 38 IPs in 2 countries across 9 domains to perform 80 HTTP transactions. The main domain is cookcountycourtil.gov and was registered NaN years ago.

Submitted URL: http://www.cookcountycourtil.gov/

AI Security Verdict

High Risk

Confidence: 92%

9
Risk Score

Likely phishing site impersonating the Cook County Circuit Court

Risk Factors
Brand impersonation on a typo‑squatted government domain
Circular redirect indicating possible URL manipulation
Unranked domain with low reputation
Recent domain registration (<1 year)
Potential typo‑squatting
Domain age information unavailable

Details

Page Title

Home | Circuit Court of Cook County

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

government

(95%)

Domain Information

The domain 'www.cookcountycourtil.gov' uses the United States government-restricted top-level domain (.gov) with subdomain 'www'. The core label 'cookcountycourtil' covers 17 characters with seven vowels and ten consonants. Breaking it apart gives 4 words: cook, county, court, il. Average segment length settles at 4.5 characters. 'cook' is most common in Italian usage. Secondary signals appear in French and English.

Screenshot

Security scan screenshot of http://www.cookcountycourtil.gov/

Page Load Overview

23.84s
Total Load Time
80
HTTP Requests
9
Domains
1.4 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:9,648 chars
Detector Agreement:100%

Website Classification

Primary Category

government95% confidence
Type: dynamic
Method: structural

All Detected Categories

government
95%

Detected Features

Search
OG: government

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
6142.250.185.131United States
AS15169GOOGLE
2172.217.18.3United States
AS15169GOOGLE
2142.250.186.42United States
AS15169GOOGLE
2142.250.186.168United States
AS15169GOOGLE
218.244.18.69United States
AS16509AMAZON-02
2216.239.34.36United States
AS15169GOOGLE
218.244.18.94United States
AS16509AMAZON-02
218.244.18.75United States
AS16509AMAZON-02
2142.250.186.74United States
AS15169GOOGLE
2216.58.206.74United States
AS15169GOOGLE
8038--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T146A3972198D0183502EF82D035716336E6A2D35AD9090548FBBD87EB8FDFE69EE37605

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:v+rwrwfJetS/ZgpHKgTGZoJEUqEpK/H3eIjOx+x63NcxKaEH1Eyj8+2QRX3SG4Af:vNPtphKpdX7newnbAYBz7G

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:101312:yxNQ8SDFcgTjRoJOMgQAE4QBfkiABphTyDIIERDglRAEyJAYcIkk8IgRKAIBwgIxdKUDIMEwAJIj5OLCjnlmAo8UH2UAAKQC

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0000000083c3ffff
Perceptual Hash:fd13923859926cc7
Difference Hash:98484a0a03270f2b
Wavelet Hash:0c00a183c3c3ffff
Color Hash:#931f5d

Other Hashes

Crop Resistant:98484a0a03270f2b,a280a0d0d0e280a2,9595858595959595,88986b6a2a522327

Scan History

Scan history not available

Unable to load historical scan data