Security Scan Report: portale.provincia.ms.it

Redirected to:
https://www.provincia.ms.it/
Site favicon
Submitted: Jun 15, 2026, 12:51:15 PMCompleted: Jun 15, 2026, 12:52:28 PMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 2 countries across 3 domains to perform 2 HTTP transactions. The main domain is provincia.ms.it and was registered NaN years ago.

Submitted URL: https://portale.provincia.ms.it/

Effective URL: https://www.provincia.ms.it/Redirected

AI Security Verdict

Moderate Risk

Confidence: 85%

4
Risk Score

Site appears to be a legitimate government portal; moderate risk due to heavily obfuscated JavaScript, but no phishing or malware indicators.

Risk Factors
High JavaScript obfuscation score (base64, unescape, concatenation)
Use of Function() constructor (code generation)
Unranked in Cisco Umbrella (not in top 1 M)
Safety Factors
Domain registered since 1999 (10009 days old)
Official government brand matches domain
No forms collecting credentials or payments
No malicious IoC, YARA, or network IDS detections
Domain age information unavailable

Details

Page Title

Provincia di Massa‑Carrara

Scan Type

public

Language

🇮🇹

Italian

(80% confidence)

Category

news/blog

(40%)

Domain Information

You're looking at domain 'portale.provincia.ms.it' on the Italian country-code top-level domain (.ms.it) with subdomain 'portale'. Count 9 characters in 'provincia' split between 4 vowels and five consonants. Word splitting yields 1 word: provincia. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://portale.provincia.ms.it/

Page Load Overview

3.25s
Total Load Time
128
HTTP Requests
4
Domains
4.0 MB
Total Size

Language Analysis

Primary Language

🇮🇹Italian
Code: it
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:it
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:it
Text Length:18,171 chars
Detector Agreement:100%

Website Classification

Primary Category

news/blog40% confidence
Type: dynamic
Method: structural

All Detected Categories

news/blog
40%

Detected Features

OG: article

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
6469.172.96.204Pavia, Lombardy, Italy
AS214169Cloudfire s.r.l.
6423.36.162.220Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
1282--

Detected Technologies8

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1C814B673B1E9206F1757C2F87250E327E5D7444BCA8668C1F1AF07982FC7D862A1A25E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:w/QdxZhDF0YkxAUcSBxf0nstNv0svGveOtYoYLhu5XXUlZxg+7tCmPbrOnLD9/zf:QQdcsuPhu5XX+ZJjuxHkCHNZf

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:209217:QQwCQCHMIRKyTpqaRqKCgKDQQCIAQuBAOGFS0HBJHCgopABpWpcJDOZEcDgQoGCSJIURQNM+asOIBJQAHGdkYJs0NQFDGQBh

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffc400f1f1f1f3ff
Perceptual Hash:ec1a926cbd95b511
Difference Hash:35092923a3272700
Wavelet Hash:c1c40091f1f1f1ff
Color Hash:#3b783a

Scan History

Scan history not available

Unable to load historical scan data