Security Scan Report: r2-image-uploader.pages.dev

Site favicon
Submitted: Jan 1, 2026, 1:46:44 AMCompleted: Jan 1, 2026, 1:48:07 AMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 18 HTTP transactions. The main domain is r2-image-uploader.pages.dev and was registered NaN years ago.

Submitted URL: https://r2-image-uploader.pages.dev/

AI Security Verdict

Confirmed Scam

Confidence: 98%

10
Risk Score

Site is a confirmed phishing scam harvesting authentication tokens.

Risk Factors
Malicious Indicators of Compromise on primary domain
Hidden password field
Password field without username
Credential harvesting form
Unranked/low‑reputation domain
Domain age information unavailable

Details

Page Title

Cloudflare 图床上传

Scan Type

public

Language

🇨🇳

Chinese

(60% confidence)

Category

technology software

(39%)

Domain Information

Domain 'r2-image-uploader.pages.dev' uses the developer-focused generic top-level domain (.dev), featuring subdomain 'r2-image-uploader'. Count 5 characters in 'pages' split between 2 vowels and 3 consonants. Breaking it apart gives one word: pages. Median word length is five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://r2-image-uploader.pages.dev/

Page Load Overview

5.55s
Total Load Time
2
HTTP Requests
1
Domains
N/A
Total Size

Language Analysis

Primary Language

🇨🇳Chinese
Code: zh
Confidence:60%
Script:Han
Direction:ltr

Detection Details

Language Code:zh
Detection Confidence:60%
Script Type:Han
HTML Lang Attribute:zh-CN
Text Length:121 chars
Detector Agreement:50%

Website Classification

Primary Category

technology software39% confidence
Type: static
Method: ml+structural

All Detected Categories

technology software
39%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2188.114.96.3United States
AS13335CLOUDFLARENET
21--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1B02276AAA8F304625957707937EB87867E209003D80BDE187ECC5BD08F8BE5459A77C8

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:sZf37gr5Wu2ErmU9bmjZ9FozFbmuQNwGR4/tyexVRJ6ybJbNj9vRMIZGBZ1vq9g0:eRmpJd8y9Gl4UY

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:10527:aIE5JJRAR0AiBtCDIINMZlwKEVaAziaaAgCIsAEggSCJnzYEUPYgHkjwcQQKRBAYFaOcCAUDAdACEUA4ib9ACCWCB0GCGcy4

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffffffffc3c3ffff
Perceptual Hash:b38ecc3199ce6619
Difference Hash:001068301c0c3004
Wavelet Hash:f0f0fcdcccc0c0c0
Color Hash:#80bf40

Other Hashes

Crop Resistant:001068301c0c3004

Scan History

Scan history not available

Unable to load historical scan data