other

malicious

suspicious phishing

English

The domain 'phoots.strava.com' uses the commercial generic top-level domain (.com) and includes subdomain 'phoots'. The core label 'strava' covers 6 characters split between two vowels and 4 consonants. It segments into two words: st, rava. The median word length lands at three characters. No strong language cues emerged from the frequency lists.

html/41/84/4184711b-cccb-4c10-962a-974fc3e73868.html.gz

846af7f3b9efe192673dec75c2cc12e20c42d1c53beb22ed255b3f610064224a

2b6500fdad4b852b328f5e849503bee3d563f367a1506b4587a398b925a1c771

color-scheme

theme-color

width=device-width, initial-scale=1.0,
                                 maximum-scale=1.0, user-scalable=no

viewport

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;worker-src blob: 'self';frame-ancestors 'none';

child-src https:  chrome-untrusted://new-tab-page/ chrome-untrusted://ntp-microsoft-auth/;connect-src chrome://resources chrome://theme 'self';default-src 'self';font-src chrome://resources 'self';img-src chrome://resources chrome://theme chrome://image chrome://favicon2 chrome://app-icon chrome://extension-icon chrome://fileicon blob: data: 'self';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources chrome://webui-test 'self';style-src chrome://resources chrome://theme 'self' 'unsafe-inline';trusted-types parse-html-subset sanitize-inner-html static-types webui-test-script webui-test-html polymer-html-literal polymer-template-event-attribute-policy lit-html-desktop;frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;frame-ancestors 'none';

base-uri 'none';child-src https:;form-action https://ogs.google.com https://*.corp.google.com;object-src 'none';script-src 'self' 'unsafe-inline' https:;frame-ancestors chrome://new-tab-page/

// Copyright 2022 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
function assert(value,message){if(value){return}throw new

var loadTimeDataRaw = {"details":"Details","errorCode":"HTTP ERROR 404","fontfamily":"\"sans\", Arial, sans-serif","fontfamilyMd":"Roboto, \"sans\", Arial, sans-serif","fontsize":"75%","heading":{"msg":"This \u003Cspan>phoots.strava.com\u003C/span> page can’t be found"},"hideDetails":"Hide details","iconClass":"icon-generic","language":"en","reloadButton":{"msg":"Reload","reloadUrl":"https://phoots.strava.com/"},"suggestionsDetails":[],"suggestionsSummaryList":[],"summary":{"msg":"No webpage was found for the web address: \u003Cstrong>https://phoots.strava.com/\u003C/strong>"},"textdirection":"ltr","title":"phoots.strava.com"};

Requests	IP Address	Location	AS Autonomous System
1	18.245.86.96	United States	AS16509AMAZON-02
0	18.245.86.37	United States	AS16509AMAZON-02
0	18.245.86.70	United States	AS16509AMAZON-02
0	18.245.86.35	United States	AS16509AMAZON-02
1	4	-	-

Security Scan Report: phoots.strava.com

Summary

AI Security Verdict

Safe Website

Safety Factors

Details

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Detected Technologies3

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History