Security Scan Report: arvixel.click

Redirected to:
https://hbneqtlep.com/mro/acceder/
Submitted: Nov 5, 2025, 11:03:14 AMCompleted: Nov 5, 2025, 11:03:54 AMpubliccompleted
Loading additional data...

Summary

This website contacted 9 IPs in 2 countries across 3 domains to perform 17 HTTP transactions. The main domain is hbneqtlep.com and was registered NaN years ago.

Submitted URL: https://arvixel.click/

Effective URL: https://hbneqtlep.com/mro/acceder/Redirected

AI Security Verdict

High Risk

Confidence: 95%

9
Risk Score

Site is flagged as a phishing site; do not trust or provide any information.

Risk Factors
Domain age <7 days (critical risk)
Google Safe Browsing phishing detection
Domain not listed in Cisco Umbrella rankings (unranked)
Presence of Cloudflare phishing warning page
Domain age information unavailable

Details

Primary Scan Blocked — Fallback Capture Shown

The primary scanner could not load this page (possible bot protection). The screenshot and page details shown were captured by a fallback browser that loaded the page successfully.

Page Title

Suspected phishing site | Cloudflare

Scan Type

public

Language

🇺🇸

English

(50% confidence)

Category

phishing scam

(86%)

Domain Information

Within the .click top-level domain, 'arvixel.click' is registered and has no subdomain. Count 7 characters in 'arvixel' split between 3 vowels and 4 consonants. Breaking it apart gives four words: a, rvi, x, el. The median word length lands at 1.5 characters. 'a' most often appears in Hungarian. Secondary signals appear in Portuguese and Galician.

Screenshot

Security scan screenshot of https://arvixel.click/

Page Load Overview

14.23s
Total Load Time
17
HTTP Requests
3
Domains
1 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:50%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:50%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:395 chars
Detector Agreement:100%

Website Classification

Primary Category

phishing scam86% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

phishing scam
86%
technology software
27%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
9104.18.94.41United States
AS13335CLOUDFLARENET
1104.18.95.41United States
AS13335CLOUDFLARENET
1188.114.97.3United States
AS13335CLOUDFLARENET
1188.114.96.3United States
AS13335CLOUDFLARENET
13.104.119.231Sydney, New South Wales, Australia
AS16509AMAZON-02
12a06:98c1:3120::3United States
AS13335CLOUDFLARENET
12606:4700::6812:5f29United States
AS13335CLOUDFLARENET
12a06:98c1:3121::3United States
AS13335CLOUDFLARENET
12606:4700::6812:5e29United States
AS13335CLOUDFLARENET
179--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1DEC1D472BABD003E119381B272BDF7093965C003DBA2458076BCC6751F4EF92AC67AD9

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:liADa/D+DMFozLeiO/t8ARo4gZieBuNnR73vaQxvbbm+nx/Iq:liEa/SoYnOVfgZ5uNnV3Cejblnx/R

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:5742:MEFAQgIQAIYBAnEAMIBAEINAAAjEAQgRAEo5ACIKAEioKhhwBAhQQBCOJREBAkEAaGogihIADECAgIAEIAAMEQziAGAAgCAQ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ff8787ffc7ffffff
Perceptual Hash:b83898c3c3c7ce3c
Difference Hash:203c3c001c000000
Wavelet Hash:dc8480f0c3ffc3c3
Color Hash:#931f5b

Other Hashes

Crop Resistant:203c3c001c000000

Scan History

Scan history not available

Unable to load historical scan data