Security Scan Report: jp.hotels.com

Site favicon
Submitted: Jul 5, 2026, 4:27:54 PMCompleted: Jul 5, 2026, 4:28:26 PMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 1 country across 2 domains to perform 2 HTTP transactions. The main domain is jp.hotels.com and was registered NaN years ago.

Submitted URL: https://jp.hotels.com/go/guam

The Cisco Umbrella rank of the primary domain is #22,050 of the top 1 million websites

AI Security Verdict

Low Risk

Confidence: 92%

3
Risk Score

The page hosts highly obfuscated JavaScript with a keylogger signature, posing a malware threat despite lacking credential forms.

Risk Factors
High‑severity JavaScript keylogger YARA match
Critical JavaScript obfuscation and dynamic code generation
Obfuscated code using base64, charcode manipulation, and excessive concatenation
Safety Factors
Domain age 11785 days (well‑established)
No Indicators of Compromise matches
No network IDS alerts
No credential or payment forms
No cross‑origin credential exfiltration detected
Established domain (11785 days old) with no strong malicious indicators — risk clamped from 8 to 5
Verdict cited a credential/login form, but DOM analysis found no password field (real or disguised) or payment field, and no other hard signal — credential-phishing framing unsupported; risk adjusted from 5 to 3
Domain age information unavailable

Details

Bot Protection Detected

This website is protected by datadome bot protection. Our scanner was challenged or blocked during access.

Page Title

人間認証

Scan Type

public

Language

🇯🇵

Japanese

(60% confidence)

Category

healthcare medical

(51%)

Domain Information

Domain 'jp.hotels.com' uses the commercial generic top-level domain (.com) and includes subdomain 'jp'. Count 6 characters in 'hotels' split between two vowels and 4 consonants. Word splitting yields one word: hotels. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://jp.hotels.com/go/guam

Page Load Overview

10.50s
Total Load Time
175
HTTP Requests
23
Domains
3.8 MB
Total Size

Language Analysis

Primary Language

🇯🇵Japanese
Code: ja
Confidence:60%
Script:Mixed
Direction:ltr

Detection Details

Language Code:ja
Detection Confidence:60%
Script Type:Mixed
Text Length:84 chars
Detector Agreement:100%

Website Classification

Primary Category

healthcare medical51% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

healthcare medical
51%
adult content
43%
government public service
39%
documentation technical
33%
news media journalism
32%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
882.16.204.156Hamburg, Free and Hanseatic City of Hamburg, Germany
AS20940Akamai International B.V.
872.16.241.216Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
1752--

Detected Technologies7

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1F7C3E7296D5C38B66A6321BFD069C96BB72C0083643C3EF1362EC99CF1C93954966DC7

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:/IfrIXQJmBLqoHmYJ58Zt4Ss1VI1MlfiCl9bgDvVq7uth+pWRtM:/gT847M

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:121182:pVmgej8EMoOEWgABMChQAgTpTgQOWHaQmJHwEUeHUGAtQFCICwRkNiCDoJBANE/ABIuFHkCCgs2SAPQY2HUWGTUASiDS4EAM

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00ffffefffffffff
Perceptual Hash:b3734c4c335f4c4c
Difference Hash:10080c0c0c000808
Wavelet Hash:00e6e0e0e7ffe700
Color Hash:#65783a

Other Hashes

Scan History

Scan history not available

Unable to load historical scan data