ScanMalware.com

Security Scan Report: cstoreapi2.savearound.com

Redirected to: https://cstoreapi2.savearound.com/#/home

Site favicon
Submitted: Jan 3, 2026, 10:11:10 PMCompleted: Jan 3, 2026, 10:12:24 PMpubliccompleted
Loading additional data...

Summary

This website contacted 11 IPs in 1 country across 7 domains to perform 46 HTTP transactions. The main domain is cstoreapi2.savearound.com and was registered NaN years ago.

Submitted URL: https://cstoreapi2.savearound.com

Effective URL: https://cstoreapi2.savearound.com/#/homeRedirected

The Cisco Umbrella rank of the primary domain is #534,036 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 85%

7
Risk Score

Form harvests credentials and payment data on a low‑rank domain; treat as high‑risk phishing.

Risk Factors
Disguised password field (type='text' with password placeholder)
Hidden password field in HTML
Unicode evasion technique in form fields
Collection of payment information on low‑reputation domain
Multiple password fields on a non‑brand domain
Domain age information unavailable

Details

Page Title

N/A

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

adult content

(86%)

Domain Information

The domain 'cstoreapi2.savearound.com' uses the commercial generic top-level domain (.com), featuring subdomain 'cstoreapi2'. The registrable portion 'savearound' spans 10 characters with five vowels and five consonants. Breaking it apart gives 2 words: save, around. Median word length comes out to five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://cstoreapi2.savearound.com

Page Load Overview

6.31s
Total Load Time
28
HTTP Requests
7
Domains
1.4 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:685 chars
Detector Agreement:100%

Website Classification

Primary Category

adult content86% confidence
Type: webapp
Method: ml+structural

All Detected Categories

adult content
86%
technology software
39%
documentation technical
32%
e-commerce
20%

Detected Features

Login Form
Payment

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
8208.112.15.241United States
AS20021LNH-INC
2104.18.11.207United States
AS13335CLOUDFLARENET
2104.17.24.14United States
AS13335CLOUDFLARENET
2151.101.2.137United States
AS13335
2151.101.129.229United StatesUnknown
2216.58.212.131United States
AS15169GOOGLE
2142.250.185.202United States
AS15169GOOGLE
2104.17.25.14United StatesUnknown
2104.18.10.207United StatesUnknown
2151.101.194.137United StatesUnknown
2811--

Detected Technologies5

PasswordField
100%
Bootstrapv4.4.1
100%
jsDelivr
20%
jQuery CDN
20%
jQuery
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T131B219B7860420AF6783CC956CEB7E096158C621D89F861DBB562A1877C9BF387D33C4

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:tcvEfghgGp7sCty8Nd+ZGAdK2f9rYDNieMW5MfX/X+g7XnCIQG2B/lQVQfMTmmCH:tcvWkgvfr+MnX+g7XCIu7sQJ+LqqtVm

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:25112:wQAUjvbkkBCpAUFAEAGgENNgnAQo6IgTMQDwEzQAUgzB5kqBC5A4oqTAAIy2JIwIJkAIuBKCPgIBCDzM+bAhUgejiCAGZiCu

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:N/A
Perceptual Hash:N/A
Difference Hash:N/A
Wavelet Hash:N/A
Color Hash:N/A

Other Hashes

Crop Resistant:N/A

Scan History

Scan history not available

Unable to load historical scan data