ScanMalware.com

Security Scan Report: pubsub.dev.unbiasedsecurity.xyz

Redirected to:
https://login.microsoftonline.com/9c848b2a-49ba-4c39-9749-118d06717a84...
Site favicon
Submitted: Jan 2, 2026, 3:04:15 PMCompleted: Jan 2, 2026, 3:05:30 PMpubliccompleted
Loading additional data...

Summary

This website contacted 6 IPs in 5 countries across 6 domains to perform 16 HTTP transactions. The main domain is login.microsoftonline.com and was registered NaN years ago.

Submitted URL: http://pubsub.dev.unbiasedsecurity.xyz/

Effective URL: https://login.microsoftonline.com/9c848b2a-49ba-4c39-9749-118d06717a84/oauth2/v2.0/authorize?approval_prompt=force&client_id=8fa94742-c4a2-4c44-8934-cb76d58cc86d&redirect_uri=https%3A%2F%2Fauthn.dev.unbiasedsecurity.xyz%2Foauth2%2Fcallback&response_type=code&scope=openid+email+profile&state=ejyI4o-YjrkI4qKHgdQz_Wof67k0Yt44UUYSamOD6A8%3Ahttps%3A%2F%2Fpubsub.dev.unbiasedsecurity.xyz%2F&sso_reload=trueRedirected

AI Security Verdict

High Risk

Confidence: 78%

7
Risk Score

Phishing login page collecting credentials on an untrusted domain

Risk Factors
Credential harvesting login form on a non‑official domain
Suspicious redirect to a legitimate Microsoft login page after credential capture
Unranked domain lacking reputation
Domain age information unavailable

Details

Page Title

Sign in to your account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

The domain 'pubsub.dev.unbiasedsecurity.xyz' uses the open generic top-level domain (.xyz) with subdomain 'pubsub.dev'. Its registrable label 'unbiasedsecurity' stretches across 16 characters holding 7 vowels versus 9 consonants. Breaking it apart gives 2 words: unbiased, security. Expect eight characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://pubsub.dev.unbiasedsecurity.xyz/

Page Load Overview

3.58s
Total Load Time
18
HTTP Requests
6
Domains
407 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:109 chars
Detector Agreement:67%

Website Classification

Primary Category

unknown0% confidence
Type: webapp
Method: structural

All Detected Categories

No categories detected

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
320.190.159.4Ireland
AS8075
334.140.88.146Brussels, Brussels Capital, Belgium
AS396982GOOGLE-CLOUD-PLATFORM
323.207.210.132Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
320.190.160.66United StatesUnknown
320.190.160.4NetherlandsUnknown
313.107.246.44United States
AS8075MICROSOFT-CORP-MSN-AS-BLOCK
186--

Detected Technologies4

X-UA-Compatible
100%
PasswordField
100%
Meta-Refresh-Redirect
100%
Ghost
15%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T11A734BE97EB32933824641B9A5752E02AF379903894CDDA4F19CC9882FFB74D8137653

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:li8GLGGP+5Maz8nhJDzzTEyqU6MVnvnaloMPb1EbvViX8zjC:Y8c+5Ma4nfDmyS228XC

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:76476:JQCJRAxGF0OwOzqNMEwyGAgmBEAIxAIIhsoMgCJ4lFqEzoRQ8oLFRgAC0oYFgo0AAIkgQh2iGAoAEosYrE6WYHd1EmGIQiBQ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0000181818180000
Perceptual Hash:8c597366cc9999cc
Difference Hash:73cdb2b2b2b24ffb
Wavelet Hash:00011b1f1f1f3f3f
Color Hash:#40bfb7

Other Hashes

Crop Resistant:e03870bab2a08393,8292c03032e080a2,73cdb2b2b2b24ffb

Scan History

Scan history not available

Unable to load historical scan data