Suspected phishing site | Cloudflare

phishing scam

technology software

English

The domain name 'zeni-worem-28n11.pages.dev' uses the developer-focused generic top-level domain (.dev); it also runs on subdomain 'zeni-worem-28n11'. Count 5 characters in 'pages' holding two vowels versus 3 consonants. Word splitting yields one word: pages. Median word length is five characters. No strong language cues emerged from the frequency lists.

html/59/60/5960ab48-d3ee-4bea-bba2-9a53681b8d26_fallback.html.gz

html/59/60/5960ab48-d3ee-4bea-bba2-9a53681b8d26.html.gz

robots

viewport

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

child-src https:  chrome-untrusted://new-tab-page/ chrome-untrusted://ntp-microsoft-auth/;connect-src chrome://resources chrome://theme 'self';default-src 'self';font-src chrome://resources 'self';img-src chrome://resources chrome://theme chrome://image chrome://favicon2 chrome://app-icon chrome://extension-icon chrome://fileicon blob: data: 'self';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources chrome://webui-test 'self';style-src chrome://resources chrome://theme 'self' 'unsafe-inline';trusted-types parse-html-subset sanitize-inner-html static-types webui-test-script webui-test-html polymer-html-literal polymer-template-event-attribute-policy lit-html-desktop;frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;worker-src blob: 'self';frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;frame-ancestors 'none';

base-uri 'none';child-src https:;form-action https://ogs.google.com https://*.corp.google.com;object-src 'none';script-src 'self' 'unsafe-inline' https:;frame-ancestors chrome://new-tab-page/

Abuse

Admin

Cloudflare-NOC

Cloudflare, Inc.

CLOUDFLARENET


  if (!navigator.cookieEnabled) {
    window.addEventListener('DOMContentLoaded', function () {
      var cookieEl = document.getElementById('cookie-alert');
      cookieEl.style.display = 'block';
    })
  }



    function onTurnstileSuccess(token) {
      document.getElementById("bypass-button").disabled = false;
    }
  


    window._cf_translation = {};
    
    
  

☠️ Malicious - http://zeni-worem-28n11.pages.dev/

Requests	IP Address	Location	AS Autonomous System
4	172.66.44.90	United States	AS13335CLOUDFLARENET
1	104.18.94.41	United States	AS13335CLOUDFLARENET
0	172.66.47.166	United States	AS13335CLOUDFLARENET
0	104.18.95.41	United States	AS13335CLOUDFLARENET
0	2606:4700::6812:5e29	United States	AS13335CLOUDFLARENET
0	2606:4700::6812:5f29	United States	AS13335CLOUDFLARENET
0	2606:4700:310c::ac42:2c5a	United States	AS13335CLOUDFLARENET
0	2606:4700:310c::ac42:2fa6	United States	AS13335CLOUDFLARENET
7	8	-	-

Security Scan Report: zeni-worem-28n11.pages.dev

Summary

AI Security Verdict

Safe Website

Safety Factors

Details

Bot Protection Detected

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History