ScanMalware.com

Security Scan Report: www.ohiostatefair.com

Site favicon
Submitted: Jun 22, 2026, 7:11:23 PMCompleted: Jun 22, 2026, 7:13:05 PMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 1 country across 3 domains to perform 2 HTTP transactions. The main domain is ohiostatefair.com and was registered NaN years ago.

Submitted URL: https://www.ohiostatefair.com/p/entertainment/concerts1

AI Security Verdict

Moderate Risk

Confidence: 80%

5
Risk Score

The site exhibits critical JavaScript credential exfiltration without visible forms, indicating a high‑risk phishing operation.

Risk Factors
Credential exfiltration via JavaScript (critical)
Hidden credential handling despite absence of visible form fields
Safety Factors
Long‑standing domain with no known IoC or malware signatures
No network IDS alerts
Page classified as news/article content
Verdict cited a credential/login form, but DOM analysis found no password field (real or disguised) or payment field, and no other hard signal — credential-phishing framing unsupported; risk adjusted from 8 to 5
Domain age information unavailable

Details

Page Title

Concerts

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

news/blog

(40%)

Domain Information

Within the commercial generic top-level domain (.com), 'www.ohiostatefair.com' is registered, featuring subdomain 'www'. The registrable portion 'ohiostatefair' spans 13 characters with 7 vowels and six consonants. Word splitting yields three words: ohio, state, fair. Median word length is 4 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.ohiostatefair.com/p/entertainment/concerts1

Page Load Overview

11.44s
Total Load Time
123
HTTP Requests
19
Domains
10.6 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:13,458 chars
Detector Agreement:100%

Website Classification

Primary Category

news/blog40% confidence
Type: spa
Method: structural

All Detected Categories

news/blog
40%

Detected Features

Search
OG: article

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
41150.171.109.35United States
AS8075Microsoft Corporation
4123.194.190.207United States
AS20940Akamai International B.V.
4113.88.18.55San Jose, California, United States
AS8075Microsoft Corporation
1233--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T142043936ECE52033966790E8B3EE67997D90400FE64A9C50F6ACC7421FD3D969D2B12C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:RLjutjTeaHQ0eXOaSJRDKsMePLAFXum2PeMSwsOHRxM0KOBdeUOsB6dbPOL2nnhG:R8jTeEQ0ePSjDteUOsB6dbPOL2nnhCuU

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:186034:jhDYcIh4csqSSIM2YYQIMiIhEDIhkIePQDRCBoAlEiJAnlqDFOAFCkFh7BYALiEoERx1R4UaL9QgsuGQ82SURZEGbMIIAGRE

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00ff8181ffffffff
Perceptual Hash:ed619296506d693e
Difference Hash:f0800b0b04377a39
Wavelet Hash:00ff8080c3ffbf89
Color Hash:#2d43d2

Other Hashes

Crop Resistant:f0800b0b04377a39,00100832b2320810,9182048812368580

Scan History

Scan history not available

Unable to load historical scan data