ScanMalware.com

Security Scan Report: linfares3.pages.dev

Site favicon
Submitted: Jan 28, 2026, 7:29:36 AMCompleted: Jan 28, 2026, 7:31:21 AMpubliccompleted
Loading additional data...

Summary

This website contacted 10 IPs in 3 countries across 10 domains to perform 116 HTTP transactions. The main domain is linfares3.pages.dev and was registered NaN years ago.

Submitted URL: https://linfares3.pages.dev/search/sand

AI Security Verdict

High Risk

Confidence: 85%

8
Risk Score

Site impersonates StockSnap.io and harvests credentials; treat as phishing.

Risk Factors
Brand impersonation (StockSnap.io) on a non‑official domain
Credential‑harvesting login forms with password fields
Subdomain on a generic hosting platform (.pages.dev) with unknown age
Unranked domain increasing suspicion
Domain age information unavailable

Details

Page Title

1241 Free CC0 Sand Stock Photos - StockSnap.io

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

adult content

(66%)

Domain Information

The domain 'linfares3.pages.dev' uses the developer-focused generic top-level domain (.dev), featuring subdomain 'linfares3'. The registrable portion 'pages' spans 5 characters containing two vowels alongside three consonants. Splitting it apart reveals 1 word: pages. The median word length lands at five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://linfares3.pages.dev/search/sand

Page Load Overview

4.16s
Total Load Time
139
HTTP Requests
16
Domains
10.0 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:7,528 chars
Detector Agreement:100%

Website Classification

Primary Category

adult content66% confidence
Type: webapp
Method: ml+structural

All Detected Categories

adult content
66%
documentation technical
61%
entertainment media
51%
technology software
41%
cryptocurrency blockchain
33%

Detected Features

Login Form
Search
OG: website
Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
22185.89.210.20Frankfurt am Main, Hesse, Germany
AS29990Xandr Inc.
1318.66.102.53United States
AS16509Amazon.com, Inc.
1399.84.152.28United States
AS16509Amazon.com, Inc.
1354.246.116.36Dublin, Leinster, Ireland
AS16509Amazon.com, Inc.
13216.58.206.46United States
AS15169Google LLC
13104.26.5.17United States
AS13335Cloudflare, Inc.
13188.114.96.3United States
AS13335Cloudflare, Inc.
1313.32.121.104UnknownUnknown
1318.66.122.65UnknownUnknown
13108.128.173.240Dublin, Leinster, Ireland
AS16509Amazon.com, Inc.
13910--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T14053FD65629C6C3F413B93C9D804B7D9B2DF5F3BC26246A3B3FB0296E752C81602546B

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:bx+dro+4CwyXH2Q1mUd6DwdMMsVU+3H0s8+GkCMz53/nsIoZKrl85tEFKKmaJHNp:dSx4Cwydmm6DwddslA0D9miQrXz8cIF5

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:66708:RS8BEiYUACEiXYoYakiWOMQMbEGiDSKDJNAEYoAAIMoCIcTBQ1YAG+CFEF/QF2PADSicpCIklIJeAiBIIYCCRDuCMcSSDGUJ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Scan History

Scan history not available

Unable to load historical scan data