ScanMalware.com

Security Scan Report: www.tripreport.com

Submitted: Dec 3, 2025, 2:28:09 AMCompleted: Dec 3, 2025, 2:30:50 AMpubliccompleted
Loading additional data...

Summary

This website contacted 51 IPs in 4 countries across 14 domains to perform 88 HTTP transactions. The main domain is tripreport.com and was registered NaN years ago.

Submitted URL: https://www.tripreport.com/cities/nashville

AI Security Verdict

High Risk

Confidence: 92%

5
Risk Score

High‑risk phishing page attempting to harvest credentials

Risk Factors
Credential harvesting form with disguised password field
Hidden password field
Unicode evasion technique
Password field lacking username/email input
Domain age information unavailable

Details

Page Title

Nashville Travel Guide | Tripreport

Scan Type

public

Language

🇺🇸

English

(68% confidence)

Category

entertainment media

(80%)

Domain Information

The domain name 'www.tripreport.com' uses the commercial generic top-level domain (.com), featuring subdomain 'www'. The core label 'tripreport' covers 10 characters split between 3 vowels and 7 consonants. Tokenizing the label suggests 2 words: trip, report. Median word length is five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.tripreport.com/cities/nashville

Page Load Overview

1.18s
Total Load Time
88
HTTP Requests
14
Domains
1.9 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:68%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:68%
Script Type:Latin
Text Length:62,089 chars
Detector Agreement:75%

Website Classification

Primary Category

entertainment media80% confidence
Type: static
Method: ml+structural+ocr_tiebreaker

All Detected Categories

entertainment media
80%
travel tourism
30%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2345.11.218.197United Kingdom
AS204413Hyve Ltd
19142.250.185.68United States
AS15169GOOGLE
15142.250.184.234United States
AS15169GOOGLE
6142.250.186.174United States
AS15169GOOGLE
4172.217.18.10United States
AS15169GOOGLE
4142.250.186.99United States
AS15169GOOGLE
3142.250.184.195United States
AS15169GOOGLE
3142.250.186.138United States
AS15169GOOGLE
3142.250.185.168United States
AS15169GOOGLE
2142.250.184.194United States
AS15169GOOGLE
8851--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1D742D813E99C053B437393D5BAA5A62EEE97C00FCB1D186030AC46986FE3E564D2F18D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:O3aAjf/kCVy4Q3cAs59gPymh37nunWlDtocBx3qea+3naR4Pd7iLWHjjQOCWe:OKwUCTacAsQPVhRjoc7FaR4Fi6HjjZe

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:12902:IjCBEQLwBIFgYCVgIeQBAHkiAG0l/gioKI0RASbgE4gCCCGD1RRSm0SCkjERAcDWjDLjKEACgExsAiME4MMDQVlIxECI0wDC

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Scan History

Scan history not available

Unable to load historical scan data