ScanMalware.com

Security Scan Report: www.dorotusa.org

Site favicon
Submitted: Jun 23, 2026, 4:40:10 PMCompleted: Jun 23, 2026, 4:41:51 PMpubliccompleted
Loading additional data...

Summary

This website contacted 8 IPs in 1 country across 8 domains to perform 2 HTTP transactions. The main domain is dorotusa.org and was registered NaN years ago.

Submitted URL: https://www.dorotusa.org/event/john-james-audubon-and-the-birds-of-america-20260227/

AI Security Verdict

Low Risk

Confidence: 75%

3
Risk Score

Informational article site; high JS obfuscation but no malicious indicators, overall moderate risk.

Risk Factors
Heavy JavaScript obfuscation and dynamic eval usage
Cross‑origin email subscription form to external marketing service
Safety Factors
Long‑standing domain with no reputation issues
Absence of credential or payment forms
No threat‑intel or malware detections
Page type is an informational article (og:type=article)
Verdict cited a credential/login form, but DOM analysis found no password field (real or disguised) or payment field, and no other hard signal — credential-phishing framing unsupported; risk adjusted from 4 to 3
Domain age information unavailable

Details

Page Title

John James Audubon and The Birds of America - 20260227 | DOROT

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

social media network

(61%)

Domain Information

You're looking at domain 'www.dorotusa.org' on the non-profit oriented generic top-level domain (.org) with subdomain 'www'. The registrable portion 'dorotusa' spans 8 characters holding 4 vowels versus 4 consonants. Word splitting yields three words: do, rot, usa. Median word length is 3 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.dorotusa.org/event/john-james-audubon-and-the-birds-of-america-20260227/

Page Load Overview

10.67s
Total Load Time
163
HTTP Requests
42
Domains
2.2 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:1,602 chars
Detector Agreement:100%

Website Classification

Primary Category

social media network61% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

social media network
61%
adult content
49%
government public service
29%
news/blog
20%

Detected Features

Search
OG: article

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
23104.17.24.14United States
AS13335Cloudflare, Inc.
20188.114.97.3United States
AS13335Cloudflare, Inc.
20104.21.27.152United States
AS13335Cloudflare, Inc.
20172.217.208.95United States
AS15169Google LLC
20172.64.147.188United States
AS13335Cloudflare, Inc.
20104.18.197.95United States
AS13335Cloudflare, Inc.
20104.16.79.73United States
AS13335Cloudflare, Inc.
20172.66.171.172United States
AS13335Cloudflare, Inc.
1638--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1DD332932B221523B564783D8F730FB1D9067A08FDE930895F6FC12A673CAEE4A90159D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:/ZEkPPuNDOeOIi5jrpjHVgFf8e4Hmv3kuyYizImneHsP:uwuNDzOIi1tE7v3PELne8

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:52100:BIAghABhCKUGgohUKiyxwAaAStTzkWRUoSzORQQYEBozGgRsMpYoJAIA/wAYlLMhBMqcNCsOYIGCUAiUgBBOAQQRKURcapUM

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Scan History

Scan history not available

Unable to load historical scan data