Security Scan Report: duquoinil.gov

Submitted: Oct 28, 2025, 7:58:18 PMCompleted: Oct 28, 2025, 8:00:03 PMpubliccompleted
Loading additional data...

Summary

This website contacted 19 IPs in 2 countries across 4 domains to perform 10 HTTP transactions. The main domain is duquoinil.gov and was registered NaN years ago.

Submitted URL: https://duquoinil.gov/

AI Security Verdict

Low Risk

Confidence: 92%

2
Risk Score

Site appears legitimate but shows a circular redirect and 403 response; likely safe.

Risk Factors
Circular redirect detected (potential redirect loop)
403 Forbidden response may indicate misconfiguration
Safety Factors
.gov TLD indicates government site
Domain age over 3 years
No malicious Indicators of Compromise
No external links or suspicious content
Domain age information unavailable

Details

Primary Scan Blocked — Fallback Capture Shown

The primary scanner could not load this page (possible bot protection). The screenshot and page details shown were captured by a fallback browser that loaded the page successfully.

Page Title

Du Quoin Illinois – For a change of pace

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

malicious

(49%)

Domain Information

Within the United States government-restricted top-level domain (.gov), 'duquoinil.gov' is registered with no subdomain. The registrable portion 'duquoinil' spans 9 characters with 5 vowels and four consonants. Tokenizing the label suggests three words: du, quoi, nil. The median word length lands at 3 characters. 'du' most strongly signals Swedish. You may catch it in Norwegian and Danish as well.

Screenshot

Security scan screenshot of https://duquoinil.gov/

Page Load Overview

50.41s
Total Load Time
10
HTTP Requests
4
Domains
88 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:105 chars
Detector Agreement:100%

Website Classification

Primary Category

malicious49% confidence
Type: static
Method: ml+structural

All Detected Categories

malicious
49%
government
48%
other
47%
suspicious phishing
33%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
10108.138.2.209United States
AS16509AMAZON-02
0142.250.185.227United States
AS15169GOOGLE
0142.250.181.234United States
AS15169GOOGLE
0108.138.2.71United States
AS16509AMAZON-02
035.206.117.184Council Bluffs, Iowa, United States
AS15169GOOGLE
0108.138.2.142United States
AS16509AMAZON-02
02600:9000:2490:fc00:5:acf3:db40:21United States
AS16509AMAZON-02
02600:9000:2490:a400:5:acf3:db40:21United States
AS16509AMAZON-02
02600:9000:2490:b600:5:acf3:db40:21United States
AS16509AMAZON-02
02a00:1450:4001:80e::200aFrankfurt am Main, Hesse, Germany
AS15169GOOGLE
1019--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T17E73E1DD37600ED8CC9687D2673821493487B4EDE4504951F29E2BE4FF8B69D4AE068F

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:9IQS0tz0jiTbitkDfLMerF89xSuvcOKNGYUxYo3myMRdQmy:9r/itkDfLKKW

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:80656:UgABACUEVARyooAEaoMDTQOIAAmvRiAfMFKgCkqFaCmuIqOIAEwYREhgAYQCVizUoCIQxWgkUqAwAgBICOgK9tAFiNAEFpsG

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0000000000ffffff
Perceptual Hash:dd029add22b2fd22
Difference Hash:11310a4d32320022
Wavelet Hash:081808009affffff
Color Hash:#ae87c5

Other Hashes

Crop Resistant:11310a4d32320022

Scan History

Scan history not available

Unable to load historical scan data