ScanMalware.com

Security Scan Report: www.travelmole.com

Site favicon
Submitted: Feb 28, 2026, 9:22:00 PMCompleted: Feb 28, 2026, 9:23:36 PMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 2 countries across 5 domains to perform 55 HTTP transactions. The main domain is travelmole.com and was registered NaN years ago.

Submitted URL: https://www.travelmole.com

AI Security Verdict

Moderate Risk

Confidence: 78%

4
Risk Score

The site impersonates PayPal on an unrelated, long‑standing domain without collecting credentials; treat as moderate‑risk brand impersonation.

Risk Factors
Mismatched brand (PayPal) on unrelated domain
Domain is unranked in Cisco Umbrella (low reputation)
Safety Factors
Domain has been registered since 1998 (well‑established)
No credential‑harvesting or payment forms present
No malicious Indicators of Compromise detected
No JavaScript malware or suspicious behavior observed
Domain age information unavailable

Details

Page Title

TravelMole

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

forum

(50%)

Domain Information

Within the commercial generic top-level domain (.com), 'www.travelmole.com' is registered with subdomain 'www'. The core label 'travelmole' covers 10 characters split between four vowels and six consonants. Breaking it apart gives two words: travel, mole. Median word length is 5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.travelmole.com

Page Load Overview

5.63s
Total Load Time
89
HTTP Requests
7
Domains
3.1 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:10,011 chars
Detector Agreement:100%

Website Classification

Primary Category

forum50% confidence
Type: spa
Method: structural

All Detected Categories

forum
50%

Detected Features

Search
Comments
OG: website
Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
21157.240.253.1Frankfurt am Main, Hesse, Germany
AS32934Facebook, Inc.
17188.114.97.3United States
AS13335Cloudflare, Inc.
17142.251.208.168United States
AS15169Google LLC
17142.251.36.99United States
AS15169Google LLC
17142.250.201.170United States
AS15169Google LLC
895--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1B05419628EEC8A3B193390C07976A76C6D679137D70088E5B7FD02491FC9EA96D1233C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

6144:KUpt1lzHHgqMNPfvbupGgFBhAYyFe4KpF0ZtBT:Q4W

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:278895:NHcGgpxLCIISQFCKMIwUABiCZEhBUPOhlGECEAskGAgAkCBhAghJsTKkCQQTAkBQSzEy4hAAEKFsDQQ5hxAEhYqglGEJjgAQ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Scan History

Scan history not available

Unable to load historical scan data