ScanMalware.com

Security Scan Report: www.tolowa.gov

Submitted: Oct 6, 2025, 7:44:43 AMCompleted: Oct 6, 2025, 7:45:49 AMpubliccompleted
Loading additional data...

Summary

This website contacted 37 IPs in 1 country across 11 domains to perform 105 HTTP transactions. The main domain is tolowa.gov and was registered NaN years ago.

Submitted URL: https://www.tolowa.gov/

AI Security Verdict

Safe Website

Confidence: 92%

1
Risk Score

Legitimate tribal website with low risk; no phishing or malware indicators detected.

Safety Factors
No password, email, or payment fields
No malicious Indicators of Compromise detected
Domain age > 1 year
Content appears legitimate and consistent with a tribal organization
Domain age information unavailable

Details

Page Title

Tolowa Dee-ni' Nation, CA | Official Website

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

government public service

(65%)

Domain Information

Within the United States government-restricted top-level domain (.gov), 'www.tolowa.gov' is registered with subdomain 'www'. The registrable portion 'tolowa' spans 6 characters containing 3 vowels alongside 3 consonants. Word splitting yields three words: to, low, a. Average segment length settles at 2 characters. 'to' most strongly signals Czech. Usage also turns up in Slovak and Hungarian contexts.

Screenshot

Security scan screenshot of https://www.tolowa.gov/

Page Load Overview

10.55s
Total Load Time
105
HTTP Requests
11
Domains
11.8 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:4,577 chars
Detector Agreement:100%

Website Classification

Primary Category

government public service65% confidence
Type: spa
Method: ml+structural

All Detected Categories

government public service
65%
documentation technical
50%
government
48%
healthcare medical
47%
phishing scam
41%

Detected Features

Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3335.190.93.146United States
AS396982GOOGLE-CLOUD-PLATFORM
234.98.105.146Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
2216.239.34.36United States
AS15169GOOGLE
234.98.91.45Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
213.33.187.6New York, New York, United States
AS16509AMAZON-02
213.107.253.44United States
AS8075MICROSOFT-CORP-MSN-AS-BLOCK
2142.250.186.42United States
AS15169GOOGLE
235.190.52.95United States
AS396982GOOGLE-CLOUD-PLATFORM
2207.38.76.125United States
AS36489NETSOLUS-NETWORKS
2142.250.186.99United States
AS15169GOOGLE
10537--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1E6E319E8A659203781133298F52B7348A97E9177E70B4CB6FC7C6270EFC1CE195712A9

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:pZ3AcAjw13kA2dNKTr45sMmQsVvddxR9797W372hl5XAEoodBu8ai60tbJB5Bntb:pl3v1X5XAlcBn75BntM6f

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:145639:noyxAEypAEls+DAWopBpAR0HCO8lAEQCSKOBI2mCNAaBDAhWgAQSS7OCAASCtCKI6QRQaWMhATqZIQCYUgDSxPBFaERhwws4

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffffffffff0000ff
Perceptual Hash:8ad5a14bc14fc15f
Difference Hash:ea306161310129a3
Wavelet Hash:ff187f7f39000063
Color Hash:#93631f

Other Hashes

Crop Resistant:ea306161310129a3,80ca250d832b8080

Scan History

Scan history not available

Unable to load historical scan data