ScanMalware.com

Security Scan Report: online.thermospas.com

Submitted: Jan 31, 2026, 11:00:37 PMCompleted: Jan 31, 2026, 11:02:10 PMpubliccompleted
Loading additional data...

Summary

This website contacted 11 IPs in 2 countries across 11 domains to perform 1 HTTP transaction. The main domain is online.thermospas.com and was registered NaN years ago.

Submitted URL: https://online.thermospas.com/Test-Strips-s/28.htm

AI Security Verdict

Moderate Risk

Confidence: 78%

5
Risk Score

Page impersonates Chase brand on an old, unranked domain but lacks credential collection; moderate risk.

Risk Factors
Brand impersonation / typosquatting (CHASE branding on online.thermospas.com)
Unranked domain in Cisco Umbrella
Safety Factors
Domain age 10,335 days (well‑established)
No password or payment fields in forms
No malicious Indicators of Compromise detected
Domain age information unavailable

Details

Page Title

Test Strips

Scan Type

public

Language

🇺🇸

English

(62% confidence)

Category

documentation technical

(52%)

Domain Information

Within the commercial generic top-level domain (.com), 'online.thermospas.com' is registered with subdomain 'online'. The core label 'thermospas' covers 10 characters split between 3 vowels and seven consonants. It segments into two words: thermos, pas. Median word length comes out to five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://online.thermospas.com/Test-Strips-s/28.htm

Page Load Overview

3.43s
Total Load Time
269
HTTP Requests
16
Domains
1.7 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:62%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:62%
Script Type:Latin
Text Length:2,603 chars
Detector Agreement:100%

Website Classification

Primary Category

documentation technical52% confidence
Type: spa
Method: ml+structural

All Detected Categories

documentation technical
52%
healthcare medical
35%
adult content
26%
government public service
25%

Detected Features

Search
Products

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
29172.66.147.250United States
AS13335Cloudflare, Inc.
24142.250.185.131United States
AS15169Google LLC
24151.101.130.137United States
AS54113Fastly, Inc.
24172.66.0.114United States
AS13335Cloudflare, Inc.
24142.250.201.74GermanyUnknown
24104.20.47.8GermanyUnknown
24216.58.206.42GermanyUnknown
243.160.150.20GermanyUnknown
24104.16.79.73GermanyUnknown
24142.250.184.232GermanyUnknown
26911--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T10E831831E5AE5526013388E071EABF1A74AA4033D2024951FDFC85281FCBD9A7773B6E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:dDfF21NODv0rSZhqPXhn1wT144slNYYYWOIOx1Hl39m11qQvokYQ+aJcL7o/x/jQ:dDfFDDv0uZhqPX8Tu48NpY+6HldQvoVP

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:82026:EtZBBFQ02MNJoXCVRAkRUEoKEGFBRQBhHggwMEZpgiOooCUAoQEgJdGGDkUHWDHS5IAYACFJsCQsRTioaKAFkjBgqg2SGIKU

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:9bffffcfffd7cf00
Perceptual Hash:bc9c0ebc18bc4ec9
Difference Hash:3226213c3c2c3c69
Wavelet Hash:00c3ffc7c7e78700
Color Hash:#ca6ce0

Other Hashes

Crop Resistant:3226213c3c2c3c69,24dbd8e4d8d8d20c,0000002014686969

Scan History

Scan history not available

Unable to load historical scan data