ScanMalware.com

Security Scan Report: terveysopas.com

Redirected to: http://terveysopas.com/wp-login.php?redirect_to=http%3A%2F%2Fterveysopas.com%2Fwp-admin%2F&reauth=1

Site favicon
Submitted: Dec 11, 2025, 12:53:52 PMCompleted: Dec 11, 2025, 12:54:29 PMpubliccompleted
Loading additional data...

Summary

This website contacted 10 IPs in 2 countries across 4 domains to perform 38 HTTP transactions. The main domain is terveysopas.com and was registered NaN years ago.

Submitted URL: http://terveysopas.com/wp-admin/

Effective URL: http://terveysopas.com/wp-login.php?redirect_to=http%3A%2F%2Fterveysopas.com%2Fwp-admin%2F&reauth=1Redirected

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Confirmed phishing scam; avoid interaction.

Risk Factors
Password field without username (credential harvesting)
Critical new domain (age < 7 days) with login form
Compromised WordPress site indicated by wp-admin paths
Unranked domain with no reputation
Multiple redirects to a login page
Domain age information unavailable

Details

Page Title

Log In ‹ Terveysopas — WordPress

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

healthcare medical

(43%)

Domain Information

The domain 'terveysopas.com' uses the commercial generic top-level domain (.com) without a subdomain. The registrable portion 'terveysopas' spans 11 characters containing four vowels alongside seven consonants. Breaking it apart gives 4 words: ter, vey, so, pas. Median word length comes out to 3 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://terveysopas.com/wp-admin/

Page Load Overview

15.99s
Total Load Time
38
HTTP Requests
4
Domains
1.3 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:178 chars
Detector Agreement:100%

Website Classification

Primary Category

healthcare medical43% confidence
Type: spa
Method: ml+structural

All Detected Categories

healthcare medical
43%
technology software
36%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
11142.250.186.163United States
AS15169GOOGLE
3142.250.186.131United States
AS15169GOOGLE
3142.250.185.227United States
AS15169GOOGLE
3188.114.97.3United States
AS13335CLOUDFLARENET
3188.114.96.3United States
AS13335CLOUDFLARENET
32a06:98c1:3120::3United States
AS13335CLOUDFLARENET
32a00:1450:4001:81c::2003Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
32a06:98c1:3121::3United States
AS13335CLOUDFLARENET
32a00:1450:4001:829::2003Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
32a00:1450:4001:813::2003Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
3810--

Detected Technologies3

WordPress
100%
PasswordField
100%
JQueryv3.7.1
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T10BE1C8594D0E4E5B0D49AF5078FDE11D656FD827C300C59AABFAA88513B7EC4681BF08

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:jiaCLAAwNtDgDpV/93sVIGC0NKIjXpkix1JhK:2F0AKDgDpV/93kIGC0NKIjXpkixA

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:7248:hFgkAGRAUmwAG5yERiBGBsAjmAQgjgPAIwQQLUFYXhBiAAgMQsEoWlAAQMYUkIwaJWkAUgBQNhqhiADAACSQBHY4DYVEgCyA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:e7e7dbf7efffffff
Perceptual Hash:e626333366cccc99
Difference Hash:0808322408000000
Wavelet Hash:c4c4fcf4e0e0f0f0
Color Hash:#9e87c5

Other Hashes

Crop Resistant:0808322408000000

Scan History

Scan history not available

Unable to load historical scan data