Security Scan Report: ferro-nexus.pages.dev

Submitted: Oct 27, 2025, 7:47:10 AMCompleted: Oct 27, 2025, 7:48:53 AMpubliccompleted
Loading additional data...

Summary

This website contacted 8 IPs in 1 country across 2 domains to perform 5 HTTP transactions. The main domain is ferro-nexus.pages.dev.

Submitted URL: https://ferro-nexus.pages.dev/

AI Security Verdict

Low Risk

Confidence: 92%

1
Risk Score

The page is a Cloudflare warning for a reported phishing site; no direct malicious content detected.

Safety Factors
Cloudflare block page provides clear warning to users
Absence of data‑collection forms reduces immediate threat
Domain age information unavailable

Details

Primary Scan Blocked — Fallback Capture Shown

The primary scanner could not load this page (possible bot protection). The screenshot and page details shown were captured by a fallback browser that loaded the page successfully.

Page Title

Suspected phishing site | Cloudflare

Scan Type

public

Language

🇺🇸

English

(50% confidence)

Category

phishing scam

(95%)

Domain Information

You're looking at domain 'ferro-nexus.pages.dev' on the developer-focused generic top-level domain (.dev) with subdomain 'ferro-nexus'. Its registrable label 'pages' stretches across 5 characters with 2 vowels and three consonants. Segmentation suggests one word: pages. 'pages' is most common in English usage. You will also see it in French and Chinese (Pinyin) contexts. Net impression: English phrase with single-word simplicity.

Screenshot

Security scan screenshot of https://ferro-nexus.pages.dev/

Page Load Overview

61.53s
Total Load Time
5
HTTP Requests
2
Domains
0 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:50%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:50%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:378 chars
Detector Agreement:100%

Website Classification

Primary Category

phishing scam95% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

phishing scam
95%
technology software
30%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
5172.66.46.240United States
AS13335CLOUDFLARENET
0172.66.45.16United States
AS13335CLOUDFLARENET
0104.18.94.41United States
AS13335CLOUDFLARENET
02606:4700::6812:5e29United States
AS13335CLOUDFLARENET
02606:4700:310c::ac42:2d10United States
AS13335CLOUDFLARENET
0104.18.95.41United States
AS13335CLOUDFLARENET
02606:4700:310c::ac42:2ef0United States
AS13335CLOUDFLARENET
02606:4700::6812:5f29United States
AS13335CLOUDFLARENET
58--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1AE815467BAFD103F11A3917266BDB70935A1C007CBA6499036BCC2751F4EF91AD532C5

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:liADa/D+DMFozLeiO/t8A2u/nRC3vaQxvb0:liEa/SoYnOVsu/nM3Cej0

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:4091:IAEAYAAYABAZAgkAMAIAwIMAAAhEAQABQEIZAACSAUigChggRJJpQAAIAREAAEEAaGgBghYABEAAAMAwMAAgGAASADAAAIAB

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ff8787ffc7ffffff
Perceptual Hash:b83898c3c3c7ce3c
Difference Hash:203c38041c000000
Wavelet Hash:9c8490c0c0fcfcfc
Color Hash:#9479d2

Other Hashes

Crop Resistant:203c38041c000000

Scan History

Scan history not available

Unable to load historical scan data