ScanMalware.com

Security Scan Report: googleads.g.doubleclick.net

Redirected to: https://ipfs.io/ipfs/bafkreif7dvtemyd3vvuc57wxkqkifnhy3snr76oxfbee7azvcyk6bvbzpe

Submitted: Oct 13, 2025, 7:00:29 AMCompleted: Oct 13, 2025, 7:01:29 AMpubliccompleted
Loading additional data...

Summary

This website contacted 44 IPs in 2 countries across 13 domains to perform 18 HTTP transactions. The main domain is ipfs.io.

Submitted URL: https://googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://ipfs.io/ipfs/bafkreif7dvtemyd3vvuc57wxkqkifnhy3snr76oxfbee7azvcyk6bvbzpe

Effective URL: https://ipfs.io/ipfs/bafkreif7dvtemyd3vvuc57wxkqkifnhy3snr76oxfbee7azvcyk6bvbzpeRedirected

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

Page hosts a credential‑harvesting login on an IPFS gateway – high‑risk phishing.

Risk Factors
Credential‑harvesting login form on decentralized IPFS host
Hidden password field indicates attempt to obscure data collection
Unranked, low‑reputation domain used for phishing lure
Brand impersonation (WEBMAIL, Access your document) on non‑official domain
Noindex meta tag absent, allowing search engine indexing of phishing page
Domain age information unavailable

Details

Page Title

googleads.g.doubleclick.net

Scan Type

public

Language

🇺🇸

English

(50% confidence)

Category

unknown

(0%)

Domain Information

Domain 'googleads.g.doubleclick.net' uses the network infrastructure generic top-level domain (.net); it also runs on subdomain 'googleads.g'. The core label 'doubleclick' covers 11 characters containing 4 vowels alongside 7 consonants. Segmentation suggests 2 words: double, click. Median word length comes out to 5.5 characters. 'double' most often appears in English. It also appears in Chinese (Pinyin) and Sinhala contexts.

Screenshot

Security scan screenshot of https://googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://ipfs.io/ipfs/bafkreif7dvtemyd3vvuc57wxkqkifnhy3snr76oxfbee7azvcyk6bvbzpe

Page Load Overview

34.08s
Total Load Time
18
HTTP Requests
13
Domains
102 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:50%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:50%
Script Type:Latin
Text Length:442 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: dynamic
Method: structural

All Detected Categories

No categories detected

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
18209.94.90.1United States
AS40680PROTOCOL
0185.93.1.245Chicago, Illinois, United States
AS60068Datacamp Limited
0216.58.206.74United States
AS15169GOOGLE
0104.16.78.6United States
AS13335CLOUDFLARENET
0151.101.2.137San Francisco, California, United States
AS54113FASTLY
0142.250.185.66United States
AS15169GOOGLE
0104.18.11.207United States
AS13335CLOUDFLARENET
0172.64.147.188United States
AS13335CLOUDFLARENET
0172.66.160.114United States
AS13335CLOUDFLARENET
0104.26.13.205United States
AS13335CLOUDFLARENET
1844--

Detected Technologies8

JQueryv2.2.4
100%
Bootstrapv4.0.0
100%
Cloudflare
50%
HTTP/3
40%
Font Awesome
40%
jQuery CDN
20%
cdnjs
20%
Google Hosted Libraries
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T11872C617B8F705922923A5B96FBF87093A65800B5908CE047DAD76949F41F4AF8773CC

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:vCFkQFjb8Tc6vwJVl0FIfivibWigivEiviml07U0et:6FkQFjbsc6vwJn0Jqz9BqO0w0et

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:16621:DThGpQoAhugCSwwDBchNeEQAgMIAuQAYAuLlKUxhQIoxEnLAAow0BA/5g1AiyIU2l6iwoEJFIBoymMoEAo+ABJQYBAiAmciB

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:N/A
Perceptual Hash:N/A
Difference Hash:N/A
Wavelet Hash:N/A
Color Hash:N/A

Other Hashes

Crop Resistant:N/A

Scan History

Scan history not available

Unable to load historical scan data