ScanMalware.com

Security Scan Report: tpsonline.multiterminal.co.id

Redirected to:
https://tpsonline.multiterminal.co.id/login.aspx
Submitted: Apr 28, 2026, 3:37:22 AMCompleted: Apr 28, 2026, 3:38:41 AMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 1 country across 3 domains to perform 8 HTTP transactions. The main domain is tpsonline.multiterminal.co.id and was registered NaN years ago.

Submitted URL: http://tpsonline.multiterminal.co.id/

Effective URL: https://tpsonline.multiterminal.co.id/login.aspxRedirected

AI Security Verdict

High Risk

Confidence: 80%

8
Risk Score

The site hosts a login form and triggers critical IDS alerts for possible data exfiltration; despite its age, the unranked reputation and malicious traffic indicate a high‑risk credential phishing operation.

Risk Factors
Critical network IDS alert indicating possible data exfiltration
High network IDS alert for suspicious POST traffic
Credential collection form on an unranked domain
Unranked domain reputation despite long age
Absence of brand verification or legitimate branding
Domain age information unavailable

Details

Page Title

N/A

Scan Type

public

Language

🇺🇸

English

(50% confidence)

Category

unknown

(0%)

Domain Information

Domain 'tpsonline.multiterminal.co.id' uses the Indonesian country-code top-level domain (.co.id); it also runs on subdomain 'tpsonline'. Count 13 characters in 'multiterminal' containing five vowels alongside eight consonants. Word splitting yields 2 words: multi, terminal. Expect 6.5 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://tpsonline.multiterminal.co.id/

Page Load Overview

1.74s
Total Load Time
9
HTTP Requests
3
Domains
2 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:50%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:50%
Script Type:Latin
Text Length:38 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: webapp
Method: structural

All Detected Categories

No categories detected

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3188.114.97.3United States
AS13335Cloudflare, Inc.
3104.21.4.252United States
AS13335Cloudflare, Inc.
3104.18.24.212United States
AS13335Cloudflare, Inc.
93--

Detected Technologies2

PasswordField
100%
Microsoft ASP.NET
30%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1A9429674524B0619B317C0E4BD6BAA5E67B940039803D52CA7FE74DCEFA39DC84B2746

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:M1/z5rbIcQ4zt0Iinmtr3tb4IL1LOROORyORDORUOR76OSTcP8Bw/Z1JogcSDQhS:0/Z6Bw/Z9cSDQRnx/w

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:12376:EgTmnIMmSQABxUBoYhOwEhDUCEGWjx0ZAcAhgeicASGVgUZWPcYBQDQBCEgEAQAAkiygAcfjgKcYzChPDfIQAo6D1MQEcCUM

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:1818180000000000
Perceptual Hash:999999666666cc99
Difference Hash:3232320400000000
Wavelet Hash:3c3c1800f0f0f0f0
Color Hash:#b187c5

Other Hashes

Crop Resistant:3232320400000000

Scan History

Scan history not available

Unable to load historical scan data