ScanMalware.com

Security Scan Report: ipfs.io

Site favicon
Submitted: Dec 16, 2025, 2:05:52 AMCompleted: Dec 16, 2025, 2:06:17 AMpubliccompleted
Loading additional data...

Summary

This website contacted 19 IPs in 3 countries across 8 domains to perform 13 HTTP transactions. The main domain is ipfs.io and was registered NaN years ago.

Submitted URL: https://ipfs.io/ipfs/bafkreidomrwdob7epmuli4zgpe6qbpv43ey7ucfvdkjrmmtkgebcd2pv3i

The Cisco Umbrella rank of the primary domain is #104,019 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

Phishing login page hosted on IPFS; high risk of credential theft.

Risk Factors
IPFS hosting combined with password collection
Hidden password field indicating attempt to conceal credentials
Login form (email + password) on an untrusted domain
Social engineering text urging users to verify they are human
Low Cisco Umbrella ranking for a site claiming authentication
Domain age information unavailable

Details

Page Title

Sign In.

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

documentation technical

(60%)

Domain Information

The domain 'ipfs.io' uses the British Indian Ocean Territory country-code top-level domain (.io) without a subdomain. The core label 'ipfs' covers 4 characters containing one vowel alongside three consonants. Breaking it apart gives 2 words: i, pfs. Median word length is 2 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://ipfs.io/ipfs/bafkreidomrwdob7epmuli4zgpe6qbpv43ey7ucfvdkjrmmtkgebcd2pv3i

Page Load Overview

2.17s
Total Load Time
13
HTTP Requests
8
Domains
108 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:217 chars
Detector Agreement:100%

Website Classification

Primary Category

documentation technical60% confidence
Type: static
Method: ml+structural+ocr_tiebreaker

All Detected Categories

documentation technical
60%
cryptocurrency blockchain
52%
technology software
51%
healthcare medical
39%
adult content
38%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
13104.16.175.226United States
AS13335CLOUDFLARENET
0216.58.206.36United States
AS15169GOOGLE
0172.67.74.152United States
AS13335CLOUDFLARENET
0172.217.18.4United States
AS15169GOOGLE
0185.93.2.248Paris, Île-de-France, France
AS60068Datacamp Limited
0142.250.186.131United States
AS15169GOOGLE
0142.250.186.170United States
AS15169GOOGLE
0209.94.90.1United States
AS40680PROTOCOL
0104.16.174.226United States
AS13335CLOUDFLARENET
0104.26.13.205United States
AS13335CLOUDFLARENET
1319--

Detected Technologies4

IPFS
40%
HTTP/3
40%
Cloudflare Bot Management
40%
Cloudflare
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1EB32F8629BB9043D3293D0B930F5BB847E35C107EF41499A38AD2A954FCBE8649777C8

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:w7Uq6jfD9jTZLox1JJyw62KJAM7R0eyictmfurisLiZi4jb2UO4UWOA+:wA5X0eyiP2riyiZi4jDUW8

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:11549:DeAyyIZIywkQASKgJaogW4N7BzoDgJIl0CYgcJAhSGAwJgBgAAMOAYAMJEVQOCdBOjFsyDICBDjiZZAUmYZSIUtEKFYER6YE

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffc3c3ffffffffff
Perceptual Hash:b13146cece9b9931
Difference Hash:00161e0000000000
Wavelet Hash:3b03033f0f0f0f0f
Color Hash:#78473a

Other Hashes

Crop Resistant:00161e0000000000

Scan History

Scan history not available

Unable to load historical scan data