ScanMalware.com

Security Scan Report: southbendin.gov

Submitted: Dec 20, 2025, 1:31:24 PMCompleted: Dec 20, 2025, 1:32:35 PMpubliccompleted
Loading additional data...

Summary

This website contacted 33 IPs in 2 countries across 25 domains to perform 198 HTTP transactions. The main domain is southbendin.gov and was registered NaN years ago.

Submitted URL: https://southbendin.gov/

The Cisco Umbrella rank of the primary domain is #743,375 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 88%

8
Risk Score

Site shows suspicious brand impersonation and a password‑only field, indicating high‑risk phishing potential.

Risk Factors
Brand impersonation (Google) on southbendin.gov
Credential harvesting pattern: password field without username
Domain age information unavailable

Details

Page Title

Official Website for City of South Bend - South Bend, Indiana

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

government

(95%)

Domain Information

The domain name 'southbendin.gov' uses the United States government-restricted top-level domain (.gov) while skipping any subdomain. The registrable portion 'southbendin' spans 11 characters split between four vowels and 7 consonants. Segmentation suggests three words: south, bend, in. Average segment length settles at four characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://southbendin.gov/

Page Load Overview

8.01s
Total Load Time
198
HTTP Requests
25
Domains
4.5 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:7,112 chars
Detector Agreement:100%

Website Classification

Primary Category

government95% confidence
Type: spa
Method: structural

All Detected Categories

government
95%
corporate
70%
news/blog
40%

Detected Features

Search
Articles
OG: website
Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
6216.58.209.168United States
AS15169GOOGLE
6141.193.213.10United States
AS209242Cloudflare London, LLC
6142.251.38.74United States
AS15169GOOGLE
618.165.140.24United States
AS16509AMAZON-02
618.165.140.44United States
AS16509AMAZON-02
6104.17.24.14United States
AS13335CLOUDFLARENET
618.165.140.123United States
AS16509AMAZON-02
6173.194.221.157United States
AS15169GOOGLE
6104.20.47.8United States
AS13335CLOUDFLARENET
652.242.103.142Boydton, Virginia, United States
AS8075MICROSOFT-CORP-MSN-AS-BLOCK
19833--

Detected Technologies10

WordPress
100%
Open-Graph-Protocolvwebsite
100%
JQueryv3.7.1
100%
Google-AnalyticsvUniversal
100%
Cloudflare Bot Management
55%
PHP
50%
MySQL
50%
WP Engine
40%
HTTP/3
40%
Cloudflare
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1B3F309729448483B015F57CC9056B21C62F6D726EB0146E5F7BE43A83FCEDBAE1A3249

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:0hUmKbZyxnZAD9KuaaQhCGPfXQ4RLmuGy5CwyBbtLSH80CQBXAeJdrJvN0j78:0hFaQkSvQQ0s

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:166545:EIQRB+AGZhBnAlTUkQAJoJoLtIBICBfgIgQAYVgRDlEbJgYKgwBUBCdAAiACHEgREgQgIIK8RSggow7ACcwgzCywqGMBEFQX

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Scan History

Scan history not available

Unable to load historical scan data