ScanMalware.com

Security Scan Report: www.the-downballot.com

Submitted: Apr 29, 2026, 3:19:37 PMCompleted: Apr 29, 2026, 3:20:01 PMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 1 country across 5 domains to perform 1 HTTP transaction. The main domain is the-downballot.com and was registered NaN years ago.

Submitted URL: https://www.the-downballot.com/p/with-the-vra-gutted-the-gop-could

AI Security Verdict

Safe Website

Confidence: 82%

0
Risk Score

The site appears to be a legitimate news article with no malicious indicators.

Safety Factors
Established domain age (>2 years)
No forms collecting credentials or payments
Content classified as news/blog
No malicious network or IDS alerts
Domain age information unavailable

Details

Page Title

With the VRA gutted, the GOP could target over a dozen Black and Latino House districts

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

news/blog

(45%)

Domain Information

You're looking at domain 'www.the-downballot.com' on the commercial generic top-level domain (.com) and includes subdomain 'www'. Count 14 characters in 'the-downballot' containing 4 vowels alongside 9 consonants, along with 1 hyphen. It segments into three words: the, down, ballot. Average segment length settles at four characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.the-downballot.com/p/with-the-vra-gutted-the-gop-could

Page Load Overview

3.65s
Total Load Time
220
HTTP Requests
6
Domains
1.3 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:7,124 chars
Detector Agreement:100%

Website Classification

Primary Category

news/blog45% confidence
Type: spa
Method: ml+structural

All Detected Categories

news/blog
45%
government public service
39%
corporate
35%

Detected Features

Articles
OG: article
Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
44172.64.151.232United States
AS13335Cloudflare, Inc.
4418.64.211.57United States
AS16509Amazon.com, Inc.
44151.101.130.217United States
AS54113Fastly, Inc.
44142.251.20.94United States
AS15169Google LLC
44104.16.80.73United States
AS13335Cloudflare, Inc.
2205--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T190F3E8624D50D40F478188AEA67EFE2D61CED01B61A5DC94BCEC887813C1CB77F6BA61

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:DTy8LjPUwx7wwC9fY4gG7XHQTzTx6WLm37k0S:DTyUDx2A4gG7XHQnrm4

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:166254:QCQkXq4IA2mOmsCgBIRERB0cNaMCaAAihACkWggCVSEwwzKkHDIMDMKAWDAGCORAIWiCUm5BwYBYSbxcEUXSLDWgQRUImYwg

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:c6c7cfffc7c7e7e7
Perceptual Hash:b0d87272d9729933
Difference Hash:949c1e161e0d0d0e
Wavelet Hash:40c3c7c3c3c7c7c3
Color Hash:#bf4048

Other Hashes

Crop Resistant:949c1e161e0d0d0e

Scan History

Scan history not available

Unable to load historical scan data