ScanMalware.com

Security Scan Report: hempstead.egovpayments.com

Redirected to:
https://hempstead.egovpayments.com/egov/apps/bill/pay.egov
Site favicon
Submitted: May 5, 2026, 8:24:28 AMCompleted: May 5, 2026, 8:25:42 AMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 51 HTTP transactions. The main domain is hempstead.egovpayments.com and was registered NaN years ago.

Submitted URL: https://hempstead.egovpayments.com

Effective URL: https://hempstead.egovpayments.com/egov/apps/bill/pay.egovRedirected

AI Security Verdict

Moderate Risk

Confidence: 80%

5
Risk Score

Critical phishing IDS alert on an old, self‑branded site leads to a high‑risk classification.

Risk Factors
Critical phishing IDS alert
Unranked domain reputation
Highly obfuscated JavaScript
Safety Factors
Self‑branding aligns with domain name
No password, email, or payment fields present
Domain age > 18 years (well‑established)
Established domain (6635 days old) with no strong malicious indicators — risk clamped from 7 to 5
Domain age information unavailable

Details

Page Title

Receiver of Taxes Payment Center e-Bill Items by Name ToH

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

government public service

(43%)

Domain Information

The domain name 'hempstead.egovpayments.com' uses the commercial generic top-level domain (.com), featuring subdomain 'hempstead'. The registrable portion 'egovpayments' spans 12 characters split between four vowels and 8 consonants. Tokenizing the label suggests three words: e, gov, payments. Median word length comes out to 3 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://hempstead.egovpayments.com

Page Load Overview

2.62s
Total Load Time
53
HTTP Requests
1
Domains
936 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-gb
Text Length:5,137 chars
Detector Agreement:100%

Website Classification

Primary Category

government public service43% confidence
Type: spa
Method: ml+structural

All Detected Categories

government public service
43%
finance banking
40%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
5315.197.183.30United States
AS16509Amazon.com, Inc.
531--

Detected Technologies7

JQueryv1.10.2
100%
Google-AnalyticsvUniversal
100%
Joomla!
70%
HSTS
40%
jQuery UI
20%
jQuery CDN
20%
MooTools
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1CCC2F82F8C4E8C1645D021E8F499F41DC16F9A7A93A0CD82ECEF417662C5EED782B09D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:8VAUhBFlCszeup3cTR5TvTcJTUoT/b6sBrh9VQG57RD5vI1TOfwV:BiFTeuNcHr6Xyo9yYtg

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:26520:hrBQQDCKXAFEIANAAgi6RTABowcMoGAkAJQCk65LgwCJagDi0MKTEYIQLMIkLoKEBYQoBDHWLAxQoaAiFLgAiACGRHSwcgsA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:fffbc3c7c7c7c7ef
Perceptual Hash:b1ccce9ace313265
Difference Hash:b6169e9a9e9b9f0e
Wavelet Hash:c3c3c383c3c3c3c7
Color Hash:#c587a1

Other Hashes

Crop Resistant:b6169e9a9e9b9f0e,8c8d2d2dcd0d1d9d

Scan History

Scan history not available

Unable to load historical scan data