ScanMalware.com

Security Scan Report: account-uat.canon.ge

Redirected to: https://test.salesforce.com/

Submitted: Mar 12, 2026, 2:12:42 PMCompleted: Mar 12, 2026, 2:14:01 PMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 2 countries across 3 domains to perform 17 HTTP transactions. The main domain is test.salesforce.com and was registered NaN years ago.

Submitted URL: http://account-uat.canon.ge/

Effective URL: https://test.salesforce.com/Redirected

AI Security Verdict

High Risk

Confidence: 85%

8
Risk Score

Page impersonates Salesforce login on a Canon subdomain; likely phishing – avoid and report.

Risk Factors
Brand impersonation (Salesforce) on a non‑official domain
Cross‑origin credential form posting to test.salesforce.com
Marketing language promising free CRM to entice users
Domain age information unavailable

Details

Page Title

Login | Salesforce

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

corporate business

(49%)

Domain Information

The domain 'account-uat.canon.ge' uses the Georgian country-code top-level domain (.ge), featuring subdomain 'account-uat'. Count 5 characters in 'canon' with 2 vowels and three consonants. It segments into one word: canon. Median word length comes out to 5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://account-uat.canon.ge/

Page Load Overview

3.67s
Total Load Time
66
HTTP Requests
8
Domains
1.2 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-us
Text Length:472 chars
Detector Agreement:100%

Website Classification

Primary Category

corporate business49% confidence
Type: webapp
Method: ml+structural

All Detected Categories

corporate business
49%
technology software
35%
social_media
25%

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2235.158.127.51Frankfurt am Main, Hesse, Germany
AS16509Amazon.com, Inc.
2223.50.131.133Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
22160.8.234.0London, England, United Kingdom
AS14340Salesforce.com, Inc.
663--

Detected Technologies1

PasswordField
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T19B4241BB5E325C270703859DBCD2FB9DB06BC32D434A5DA4A6AD06176387E9C183097E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:Z3zAgJauGBsc7YUYMiFmqv1N4uj9rN2UJMf9Jm2wupfDEj:N3Ja5mcERmIrNxMf9JFwSL2

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:13101:xQvgQiFLAgQhWUQwgciAOQJTRIBhIJ0CICOEBCk4WdBgBTIxQ3wRiCQBCoZkgAMAq3owlSUGZJodQJR2EgGIQqqOIgCBjWdE

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:f090f09090f0f0f0
Perceptual Hash:ee2ee0603ce3c3c3
Difference Hash:2726c42424c42424
Wavelet Hash:f0b0f090f0f0f0f0
Color Hash:#7b79d2

Other Hashes

Crop Resistant:2726c42424c42424

Scan History

Scan history not available

Unable to load historical scan data