Security Scan Report: zeni-worem-28n11.pages.dev

Redirected to:
https://zeni-worem-28n11.pages.dev/
Site favicon
Submitted: Dec 4, 2025, 2:22:56 AMCompleted: Dec 4, 2025, 2:25:21 AMpubliccompleted
Loading additional data...

Summary

This website contacted 8 IPs in 1 country across 2 domains to perform 7 HTTP transactions. The main domain is zeni-worem-28n11.pages.dev.

Submitted URL: http://zeni-worem-28n11.pages.dev/

Effective URL: https://zeni-worem-28n11.pages.dev/Redirected

AI Security Verdict

Safe Website

Confidence: 92%

0
Risk Score

The page is a Cloudflare phishing warning and contains no malicious content.

Safety Factors
Page is a Cloudflare warning page informing users of a potential phishing site
No malicious Indicators of Compromise matches found
Domain age information unavailable

Details

Primary Scan Blocked — Fallback Capture Shown

The primary scanner could not load this page (possible bot protection). The screenshot and page details shown were captured by a fallback browser that loaded the page successfully.

Page Title

Suspected phishing site | Cloudflare

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

phishing scam

(95%)

Domain Information

The domain name 'zeni-worem-28n11.pages.dev' uses the developer-focused generic top-level domain (.dev); it also runs on subdomain 'zeni-worem-28n11'. Count 5 characters in 'pages' holding two vowels versus 3 consonants. Word splitting yields one word: pages. Median word length is five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://zeni-worem-28n11.pages.dev/

Page Load Overview

0.22s
Total Load Time
7
HTTP Requests
2
Domains
0 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:378 chars
Detector Agreement:100%

Website Classification

Primary Category

phishing scam95% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

phishing scam
95%
technology software
29%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
4172.66.44.90United States
AS13335CLOUDFLARENET
1104.18.94.41United States
AS13335CLOUDFLARENET
0172.66.47.166United States
AS13335CLOUDFLARENET
0104.18.95.41United States
AS13335CLOUDFLARENET
02606:4700::6812:5e29United States
AS13335CLOUDFLARENET
02606:4700::6812:5f29United States
AS13335CLOUDFLARENET
02606:4700:310c::ac42:2c5aUnited States
AS13335CLOUDFLARENET
02606:4700:310c::ac42:2fa6United States
AS13335CLOUDFLARENET
78--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1CA916267BABD107F109391B261BDB7093AA1C003CB9749907ABCC2751F5AF95AD132C1

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:PjnjtjuiADa/D+DMFozLeiO/t8A2uZknRR3vaQxvb0:PjnjtjuiEa/SoYnOVsuZknX3Cej0

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:4345:RAIAAqEAAAACAMEgkhgDAQBVAAGoggLgxAAAACAFEAMAMCaAAKXQAIAHABAOlAAEAKECkBJGEIkEAABASQQABACAQCBxBgIA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ff7e1e003efeffff
Perceptual Hash:9715f0c70778f807
Difference Hash:00c0705a42004000
Wavelet Hash:ce0e0e000ececece
Color Hash:#40bf59

Other Hashes

Crop Resistant:00c0705a42004000

Scan History

Scan history not available

Unable to load historical scan data