ScanMalware.com

Security Scan Report: jdeservices.guess.eu

Redirected to: https://login.microsoftonline.com/bb755779-5332-4e2a-8fea-2a1c2538f134/oauth2/v2.0/authorize?client_id=03b1378a-e699-466e-a7f8-1798f2367b5a&scope=api%3A%2F%2F03b1378a-e699-466e-a7f8-1798f2367b5a%2FAccess%20openid%20profile%20offline_access&redirect_uri=https%3A%2F%2Fjdeservices.guess.eu%2F&client-request-id=98f70717-e85e-4c25-b6a7-0601bf44c283&response_mode=fragment&response_type=code&x-client-SKU=msal.js.browser&x-client-VER=2.38.2&client_info=1&code_challenge=W3D2V2OmfXimLsXBRJg8Cs9JiEu4ND6hLN2dvxE-g9I&code_challenge_method=S256&nonce=3c491040-8eae-41be-ae24-f28fb97be657&state=eyJpZCI6ImZhZDNiNjRhLWIxNmQtNDhmMy05Mzg1LTc0ODIzNmI4MDA4MyIsIm1ldGEiOnsiaW50ZXJhY3Rpb25UeXBlIjoicmVkaXJlY3QifX0%3D&sso_reload=true

Site favicon
Submitted: Feb 27, 2026, 3:17:44 AMCompleted: Feb 27, 2026, 3:18:56 AMpubliccompleted
Loading additional data...

Summary

This website contacted 6 IPs in 3 countries across 6 domains to perform 30 HTTP transactions. The main domain is login.microsoftonline.com and was registered NaN years ago.

Submitted URL: https://jdeservices.guess.eu

Effective URL: https://login.microsoftonline.com/bb755779-5332-4e2a-8fea-2a1c2538f134/oauth2/v2.0/authorize?client_id=03b1378a-e699-466e-a7f8-1798f2367b5a&scope=api%3A%2F%2F03b1378a-e699-466e-a7f8-1798f2367b5a%2FAccess%20openid%20profile%20offline_access&redirect_uri=https%3A%2F%2Fjdeservices.guess.eu%2F&client-request-id=98f70717-e85e-4c25-b6a7-0601bf44c283&response_mode=fragment&response_type=code&x-client-SKU=msal.js.browser&x-client-VER=2.38.2&client_info=1&code_challenge=W3D2V2OmfXimLsXBRJg8Cs9JiEu4ND6hLN2dvxE-g9I&code_challenge_method=S256&nonce=3c491040-8eae-41be-ae24-f28fb97be657&state=eyJpZCI6ImZhZDNiNjRhLWIxNmQtNDhmMy05Mzg1LTc0ODIzNmI4MDA4MyIsIm1ldGEiOnsiaW50ZXJhY3Rpb25UeXBlIjoicmVkaXJlY3QifX0%3D&sso_reload=trueRedirected

The Cisco Umbrella rank of the primary domain is #421,700 of the top 1 million websites

AI Security Verdict

Low Risk

Confidence: 88%

2
Risk Score

Legitimate Azure AD login page; low risk despite low ranking.

Risk Factors
Low Cisco Umbrella ranking (421,700) for a brand‑related domain
Safety Factors
Cross‑origin form submits to legitimate Microsoft authentication service
No payment or credit‑card fields present
No hidden password fields or credential exfiltration detected
Page title generic and does not impersonate a known brand
Domain age information unavailable

Details

Page Title

Sign in to your account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

Within the .eu country-code top-level domain, 'jdeservices.guess.eu' is registered; it also runs on subdomain 'jdeservices'. The registrable portion 'guess' spans 5 characters holding 2 vowels versus three consonants. Splitting it apart reveals one word: guess. Median word length comes out to five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://jdeservices.guess.eu

Page Load Overview

1.51s
Total Load Time
24
HTTP Requests
6
Domains
993 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:109 chars
Detector Agreement:67%

Website Classification

Primary Category

unknown0% confidence
Type: webapp
Method: structural

All Detected Categories

No categories detected

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
423.207.210.137Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
420.190.159.129United States
AS8075
4142.250.201.170Netherlands
AS20940
420.190.160.5UnknownUnknown
413.107.246.44United States
AS8075Microsoft Corporation
420.50.2.59Amsterdam, North Holland, Netherlands
AS8075Microsoft Corporation
246--

Detected Technologies5

X-UA-Compatible
100%
PasswordField
100%
Meta-Refresh-Redirect
100%
HSTS
40%
Ghost
15%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T175834BD97EB31937838A00B5B5BA3D02AE765903894CCD60F15CC9842FFA75D823BA57

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:l+VD8GLGGwwLPGaAB0oIyEk77gx2xpTvPoMmCftEi2AEiwC:EVD8L4PeB0J32RANC

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:82264:g48rgRghpIeATCwgIkgBGeADiRKAkEiuAHAC1hcA+UzBBWpKS4LKgVaeEG0AwHAlhkwgcJwIGBBTVwsxwgoBJ5gJAESQIDLA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:9e021a1818188293
Perceptual Hash:9d987672c8cd989c
Difference Hash:343632b333317637
Wavelet Hash:df8a1e191d1cb383
Color Hash:#87c5c5

Other Hashes

Crop Resistant:fac0e2babab283a2,cba2c23232e280c9,343632b333317637

Scan History

Scan history not available

Unable to load historical scan data