ScanMalware.com

Security Scan Report: drsheenamskincare.com

Submitted: Nov 4, 2025, 8:31:30 AMCompleted: Nov 4, 2025, 8:32:40 AMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 2 countries across 5 domains to perform 39 HTTP transactions. The main domain is drsheenamskincare.com and was registered NaN years ago.

Submitted URL: https://drsheenamskincare.com/plalawebmail/sso.login/login2.php

AI Security Verdict

High Risk

Confidence: 88%

8
Risk Score

Phishing login page with high risk; do not enter credentials.

Risk Factors
Credential harvesting form on a domain with no known legitimate brand
Social engineering detection by Google Safe Browsing
Domain age information unavailable

Details

Page Title

ログイン

Scan Type

public

Language

🇯🇵

Japanese

(80% confidence)

Category

documentation technical

(64%)

Domain Information

Within the commercial generic top-level domain (.com), 'drsheenamskincare.com' is registered while skipping any subdomain. Count 17 characters in 'drsheenamskincare' containing six vowels alongside 11 consonants. Segmentation suggests 5 words: dr, sheena, m, skin, care. Median word length is 4 characters. 'dr' most often appears in Catalan. Usage also turns up in Romanian and Dutch contexts.

Screenshot

Security scan screenshot of https://drsheenamskincare.com/plalawebmail/sso.login/login2.php

Page Load Overview

51.74s
Total Load Time
39
HTTP Requests
5
Domains
207 KB
Total Size

Language Analysis

Primary Language

🇯🇵Japanese
Code: ja
Confidence:80%
Script:Mixed
Direction:ltr

Detection Details

Language Code:ja
Detection Confidence:80%
Script Type:Mixed
HTML Lang Attribute:ja
Text Length:294 chars
Detector Agreement:100%

Website Classification

Primary Category

documentation technical64% confidence
Type: webapp
Method: ml+structural

All Detected Categories

documentation technical
64%
technology software
60%
adult content
47%
government public service
46%
cryptocurrency blockchain
41%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1191.235.134.131United States
AS30286THM
791.235.132.130United States
AS30286THM
791.235.133.182United States
AS30286THM
745.142.237.175Mumbai, Maharashtra, India
AS140543ReadyDedis, LLC
72a03:7b40:0:1:3bdb:416:ddc6:2cefUnited States
AS30286THM
395--

Detected Technologies3

X-UA-Compatible
100%
PasswordField
100%
JQueryv3.6.3
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1A5022404B7E42B09642154F0D2607EAA4FD2CC3FD7220D54745EA17E1F89B4A8D6BABC

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:GRO7NCCJftQfy4FsbDGOC3vkGVj+frWRDXvxhC5O3if7IPQrpS4qFAwgw3po9fZi:GRMYMWQXGL4ADXuQKNS4qivgpoXi

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:8905:wI5CNoDCAChQ5UNVQIQGEAxFHDukmAREwyBiCKoBwRgCYQgZxVKuMB8loKLBQN8Bw0GIAMgCiAANhWwkhQCwqJqHroABCKAQ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:1c043c3c3c000000
Perceptual Hash:9e933138dc989cdc
Difference Hash:314d706860140400
Wavelet Hash:1c243c3cfcd0c0c0
Color Hash:#2d67d2

Other Hashes

Crop Resistant:314d706860140400

Scan History

Scan history not available

Unable to load historical scan data