ScanMalware.com

Security Scan Report: gpolsc-p-ssod.info-ingepar.com

Redirected to: https://login.microsoftonline.com/1d123b40-06f1-4551-a329-ab5115fc11b8/oauth2/v2.0/authorize?client_id=cc7f84a7-3d1e-479e-9b1b-32a6fd526d9d&redirect_uri=https%3A%2F%2Fgpolsc-p-ssod.info-ingepar.com%2FAuth%2Fsignin-oidc&response_type=code&scope=openid%20profile&code_challenge=k6KOc_m_KB_IIQOc5vJG_OTB2nbS0vNFz_fkzujP44o&code_challenge_method=S256&response_mode=form_post&nonce=639104391003018488.MjFkZjkwOTEtMjJjMy00MGM0LTllNjAtOWI4YWQ0Njc5YjJhMmQ1NDE5MTAtNjA5NS00ZWJmLThiMTYtN2MyYzJiYzdlNWE4&state=CfDJ8McwI4QtwJJJtZ-l0kODetDgfgUv_eErsX16H8yVRAw9Z_RlNA8gKBNkWrL5EGPFhNCJgmH0MCs_GX3fm1vJ7kB8YkvAM7gJpD4RmcHxLrsfauHbgOa6GZQLJtf3p9t8XPACutpOv034z63cpomYnbf2aHtJtyJChHVZOCqJ9-OzlIy5ssYf36BKB5Ypsq0McGlHe2jgS1fwpMERRVazdHBZIR07aBezHMsi52u-vRqUi9Wr3VtjeiLjcUq1ZNzHenjb4yFaQIFn0kitYLcECHAAX3q-wWyDTxl6tob5wVA1GOCvkEyd_suVQTYQKlgaVmjehXv3WKbmCN_V_OdHWPzPNKBbAxG_Dc7ydZq-LBXIVZgfxStCbR19ZbI7p6quLDFDR9FVpGZ8aTQGVSP1TJM45KEuRvZfbcL2n2Kt9-sN&x-client-SKU=ID_NET9_0&x-client-ver=8.0.1.0&sso_reload=true

Submitted: Mar 30, 2026, 3:44:56 AMCompleted: Mar 30, 2026, 3:46:06 AMpubliccompleted
Loading additional data...

Summary

This website contacted 6 IPs in 4 countries across 6 domains to perform 1 HTTP transaction. The main domain is login.microsoftonline.com and was registered NaN years ago.

Submitted URL: http://gpolsc-p-ssod.info-ingepar.com/

Effective URL: https://login.microsoftonline.com/1d123b40-06f1-4551-a329-ab5115fc11b8/oauth2/v2.0/authorize?client_id=cc7f84a7-3d1e-479e-9b1b-32a6fd526d9d&redirect_uri=https%3A%2F%2Fgpolsc-p-ssod.info-ingepar.com%2FAuth%2Fsignin-oidc&response_type=code&scope=openid%20profile&code_challenge=k6KOc_m_KB_IIQOc5vJG_OTB2nbS0vNFz_fkzujP44o&code_challenge_method=S256&response_mode=form_post&nonce=639104391003018488.MjFkZjkwOTEtMjJjMy00MGM0LTllNjAtOWI4YWQ0Njc5YjJhMmQ1NDE5MTAtNjA5NS00ZWJmLThiMTYtN2MyYzJiYzdlNWE4&state=CfDJ8McwI4QtwJJJtZ-l0kODetDgfgUv_eErsX16H8yVRAw9Z_RlNA8gKBNkWrL5EGPFhNCJgmH0MCs_GX3fm1vJ7kB8YkvAM7gJpD4RmcHxLrsfauHbgOa6GZQLJtf3p9t8XPACutpOv034z63cpomYnbf2aHtJtyJChHVZOCqJ9-OzlIy5ssYf36BKB5Ypsq0McGlHe2jgS1fwpMERRVazdHBZIR07aBezHMsi52u-vRqUi9Wr3VtjeiLjcUq1ZNzHenjb4yFaQIFn0kitYLcECHAAX3q-wWyDTxl6tob5wVA1GOCvkEyd_suVQTYQKlgaVmjehXv3WKbmCN_V_OdHWPzPNKBbAxG_Dc7ydZq-LBXIVZgfxStCbR19ZbI7p6quLDFDR9FVpGZ8aTQGVSP1TJM45KEuRvZfbcL2n2Kt9-sN&x-client-SKU=ID_NET9_0&x-client-ver=8.0.1.0&sso_reload=trueRedirected

AI Security Verdict

High Risk

Confidence: 92%

7
Risk Score

Phishing page mimicking Microsoft login to steal credentials.

Risk Factors
Brand impersonation
Credential harvesting form (email + password)
Cross‑origin credential submission to Microsoft login
Multiple redirects (4)
Highly obfuscated JavaScript
Domain age information unavailable

Details

Page Title

Sign in to your account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(60%)

Domain Information

Within the commercial generic top-level domain (.com), 'gpolsc-p-ssod.info-ingepar.com' is registered, featuring subdomain 'gpolsc-p-ssod'. The second-level label 'info-ingepar' is 12 characters long containing five vowels alongside six consonants, notching 1 hyphen. It segments into three words: info, inge, par. Median word length is four characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://gpolsc-p-ssod.info-ingepar.com/

Page Load Overview

1.99s
Total Load Time
20
HTTP Requests
6
Domains
465 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:138 chars
Detector Agreement:67%

Website Classification

Primary Category

technology software60% confidence
Type: webapp
Method: ml+structural

All Detected Categories

technology software
60%

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
513.107.246.44United States
AS8075Microsoft Corporation
320.190.159.129United States
AS8075
337.59.251.196France
AS16276OVH SAS
340.126.31.0Dublin, Leinster, Ireland
AS8075Microsoft Corporation
320.50.73.11FranceUnknown
323.207.210.137Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
206--

Detected Technologies4

X-UA-Compatible
100%
PasswordField
100%
Meta-Refresh-Redirect
100%
Ghost
15%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T16C836CD97EE2283B838641B5B57A6E03AA775C13884DCD60B15CC8C42FFA74E4137A67

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:lpnW8GLG2ev2eKm3/TzmLhGegZoIyEk77gx2xpTvPoMmCf2EC9ai5IzmiC:W8rKqZJ32RAUC

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:88196:ISIN1gQhghMCC7JAaZJQQyJgxWOLhITQUEBCiQACBVqYCBFIEwNBECTx0iQDAKYBVhB1oJIABUdMGqwoAAgHDBIkBdYkIcxF

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00102933372f373f
Perceptual Hash:8659517666d9992b
Difference Hash:88e4dae7e7cee6e6
Wavelet Hash:00202b3b373f373f
Color Hash:#40bf82

Other Hashes

Crop Resistant:88e4dae7e7cee6e6

Scan History

Scan history not available

Unable to load historical scan data