other

corporate

English

_ga_KKLSRK6J1Z

gdpr_consent

_lc2_fpi_meta

cookieconsent_status

_lr_retry_request

_lr_env_src_ats

euconsent

consent

_lc2_fpi

_li_dcdm_c

The domain 'xilai.pages.dev' uses the developer-focused generic top-level domain (.dev), featuring subdomain 'xilai'. Count 5 characters in 'pages' split between two vowels and 3 consonants. Tokenizing the label suggests one word: pages. Median word length is 5 characters. No strong language cues emerged from the frequency lists.

html/35/8c/358c4a74-2f84-4041-9037-a211ee065753.html.gz

frame-ancestors 'none'; upgrade-insecure-requests

script-src 'report-sample' 'nonce-C_wP4iQM0mq1jNid7wrWYQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http

script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgsrsghrgc:72:0

script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:112:0

__pb_locator__

2cb37d274342308f286429e71c7aa39b15fba4a1243ee5172b7e8892c5be02a0

6d062d9279c73cf64449786e4d130a43e65f62fc6f93489d94cc1c211eef21b1

f371b701421c1b6093de33785c07a827308ac515325753f781021f80b14c5859

7b21bbb8ef971401ae80a3877b20405f18623e70111a65f0503458ea623255ce

09df6ba28295fdb4127503617898450eb16fee4441916ae278a716e7dead20bc

4eb98f402f6ef3c7b56f9267df1129fe9c2d7e010fa1f09c2a7bfaad001d729e

3a04fc008338e4ee4cd3f9ece3795ab80bf9f9112714a30cc045336ad569f3a7

97be8d3b3ffb588831c194a84cb32d6fd5bdedd8291bf349f1a1876c96fe3a53

95a485074bbc9062e40538b1da3ed6e655383f84843fffb71c30f08878a3c719

e9b759886fa11d6380a23f1784b53396cb8d090d583205b80f173c9a45b3b5d5

3d804c499d84d2d6d45b4f24daf495cd0b4a73b9e50657d3769356312a4c7b2e

width=device-width, initial-scale=1.0, minimal-ui

viewport

description

keywords

https://www.speedtest.net/images/share-logo.png

twitter:card

twitter:site

twitter:title

twitter:description

twitter:image

twitter:app:id:iphone

twitter:app:id:ipad

twitter:app:id:googleplay

google-play-app

app-id=300704847, affiliate-data=ct=stnet_smart_app_banner&pt=110176

apple-itunes-app

AlK2UR5SkAlj8jjdEc9p3F3xuFYlF6LYjAML3EOqw1g26eCwWPjdmecULvBH5MVPoqKYrOfPhYVL71xAXI1IBQoAAAB8eyJvcmlnaW4iOiJodHRwczovL2RvdWJsZWNsaWNrLm5ldDo0NDMiLCJmZWF0dXJlIjoiV2ViVmlld1hSZXF1ZXN0ZWRXaXRoRGVwcmVjYXRpb24iLCJleHBpcnkiOjE3NTgwNjcxOTksImlzU3ViZG9tYWluIjp0cnVlfQ==

Amm8/NmvvQfhwCib6I7ZsmUxiSCfOxWxHayJwyU1r3gRIItzr7bNQid6O8ZYaE1GSQTa69WwhPC9flq/oYkRBwsAAACCeyJvcmlnaW4iOiJodHRwczovL2dvb2dsZXN5bmRpY2F0aW9uLmNvbTo0NDMiLCJmZWF0dXJlIjoiV2ViVmlld1hSZXF1ZXN0ZWRXaXRoRGVwcmVjYXRpb24iLCJleHBpcnkiOjE3NTgwNjcxOTksImlzU3ViZG9tYWluIjp0cnVlfQ==

A9nrunKdU5m96PSN1XsSGr3qOP0lvPFUB2AiAylCDlN5DTl17uDFkpQuHj1AFtgWLxpLaiBZuhrtb2WOu7ofHwEAAACKeyJvcmlnaW4iOiJodHRwczovL2RvdWJsZWNsaWNrLm5ldDo0NDMiLCJmZWF0dXJlIjoiQUlQcm9tcHRBUElNdWx0aW1vZGFsSW5wdXQiLCJleHBpcnkiOjE3NzQzMTA0MDAsImlzU3ViZG9tYWluIjp0cnVlLCJpc1RoaXJkUGFydHkiOnRydWV9

A93bovR+QVXNx2/38qDbmeYYf1wdte9EO37K9eMq3r+541qo0byhYU899BhPB7Cv9QqD7wIbR1B6OAc9kEfYCA4AAACQeyJvcmlnaW4iOiJodHRwczovL2dvb2dsZXN5bmRpY2F0aW9uLmNvbTo0NDMiLCJmZWF0dXJlIjoiQUlQcm9tcHRBUElNdWx0aW1vZGFsSW5wdXQiLCJleHBpcnkiOjE3NzQzMTA0MDAsImlzU3ViZG9tYWluIjp0cnVlLCJpc1RoaXJkUGFydHkiOnRydWV9

A1S5fojrAunSDrFbD8OfGmFHdRFZymSM/1ss3G+NEttCLfHkXvlcF6LGLH8Mo5PakLO1sCASXU1/gQf6XGuTBgwAAACQeyJvcmlnaW4iOiJodHRwczovL2dvb2dsZXRhZ3NlcnZpY2VzLmNvbTo0NDMiLCJmZWF0dXJlIjoiQUlQcm9tcHRBUElNdWx0aW1vZGFsSW5wdXQiLCJleHBpcnkiOjE3NzQzMTA0MDAsImlzU3ViZG9tYWluIjp0cnVlLCJpc1RoaXJkUGFydHkiOnRydWV9

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;worker-src blob: 'self';frame-ancestors 'none';

child-src https:  chrome-untrusted://new-tab-page/ chrome-untrusted://ntp-microsoft-auth/;connect-src chrome://resources chrome://theme 'self';default-src 'self';font-src chrome://resources 'self';img-src chrome://resources chrome://theme chrome://image chrome://favicon2 chrome://app-icon chrome://extension-icon chrome://fileicon blob: data: 'self';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources chrome://webui-test 'self';style-src chrome://resources chrome://theme 'self' 'unsafe-inline';trusted-types parse-html-subset sanitize-inner-html static-types webui-test-script webui-test-html polymer-html-literal polymer-template-event-attribute-policy lit-html-desktop;frame-ancestors 'none';

base-uri 'none';child-src https:;form-action https://ogs.google.com https://*.corp.google.com;object-src 'none';script-src 'self' 'unsafe-inline' https:;frame-ancestors chrome://new-tab-page/

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;frame-ancestors 'none';

Amazon EC2 Abuse

IP Management

Amazon AWS Network Operations

Amazon Data Services Northern Virginia

Amazon EC2 Network Operations

AMAZON-IAD

window.zdconsent = window.zdconsent || {'run': [], 'cmd':[], 'useractioncomplete': [], 'analytics':[], 'functional':[], 'social':[] };


      if ("fonts" in document) {
        Promise.all([
          (new FontFace("Montserrat",
            "url('/s/fonts/Montserrat-VariableFont_wght-hint-all.woff2') format('woff2-variations')",
            { "weight": "1 999" })).load(),
          (new FontFace("Montserrat",
            "url('/s/fonts/Montserrat-Italic-VariableFont_wght-hint-all.woff2') format('woff2-variations')",
            { "style": "italic" })).load(),
        ]).then(function (fonts) {
          fonts.forEach(function (font) {
            document.fonts.add(font);
          });
        });
      }
    


        window.dataLayer = window.dataLayer || [];
      


        //Load GTM
        window.zdconsent = window.zdconsent || {'run': []};
        window.zdconsent.run.push(function(){
        (function(w,d,s,l,i){w[l]=w[l]||[];w[l].push({'gtm.start':
        new Date().getTime(),event:'gtm.js'});var f=d.getElementsByTagName(s)[0],
        j=d.createElement(s),dl=l!='dataLayer'?'&l='+l:'';j.async=true;j.src=
        '//www.googletagmanager.com/gtm.js?id='+i+dl;f.parentNode.insertBefore(j,f);
        })(window,document,'script','dataLayer','GTM-K7SNBZ');
        });
      


    // detect IE before loading backbone
    if ("ActiveXObject" in window) {
      document.getElementsByTagName("html")[0].className += " ie";
    }
  

!function(){"use strict";var t;(t=document.createElement("script")).type="text/javascript",t.src="//b.cdnst.net/javascript/speedtest-main.js?v=505f0cb35448d2c05cc66021e498ce78",document.body.appendChild(t)}();

Requests	IP Address	Location	AS Autonomous System
156	3.208.81.115	Ashburn, Virginia, United States	AS14618AMAZON-AES
26	146.75.122.219	Frankfurt am Main, Hesse, Germany	AS54113FASTLY
12	34.240.33.144	Dublin, Leinster, Ireland	AS16509AMAZON-02
12	3.79.16.5	Frankfurt am Main, Hesse, Germany	AS16509AMAZON-02
11	172.66.44.89	United States	AS13335CLOUDFLARENET
7	146.75.122.132	Frankfurt am Main, Hesse, Germany	AS54113FASTLY
6	104.18.87.42	United States	AS13335CLOUDFLARENET
6	23.36.162.25	Frankfurt am Main, Hesse, Germany	AS20940Akamai International B.V.
5	100.25.156.137	Ashburn, Virginia, United States	AS14618AMAZON-AES
4	216.239.32.36	United States	AS15169GOOGLE
156	163	-	-

Security Scan Report: xilai.pages.dev

Summary

AI Security Verdict

High Risk

Risk Factors

Details

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Detected Technologies4

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History