Security Scan Report: nrivok-belnar-1fd82e-njygh-4ab561.pages.dev

Redirected to:
https://www.facebook.com/
Site favicon
Submitted: Jul 5, 2026, 11:53:08 AMCompleted: Jul 5, 2026, 11:54:20 AMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 2 HTTP transactions. The main domain is facebook.com and was registered NaN years ago.

Submitted URL: http://nrivok-belnar-1fd82e-njygh-4ab561.pages.dev/

Effective URL: https://www.facebook.com/Redirected

AI Security Verdict

High Risk

Confidence: 80%

8
Risk Score

The site impersonates Facebook with a login form on an unknown-age, unranked subdomain, indicating high risk of credential phishing.

Risk Factors
Brand impersonation on an unranked hosting subdomain
Credential collection form on unknown-age domain
High JavaScript obfuscation indicating potential malicious intent
Domain age information unavailable

Details

Page Title

Facebook

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

social media network

(48%)

Domain Information

Domain 'nrivok-belnar-1fd82e-njygh-4ab561.pages.dev' uses the developer-focused generic top-level domain (.dev); it also runs on subdomain 'nrivok-belnar-1fd82e-njygh-4ab561'. Count 5 characters in 'pages' with two vowels and three consonants. Tokenizing the label suggests 1 word: pages. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://nrivok-belnar-1fd82e-njygh-4ab561.pages.dev/

Page Load Overview

0.89s
Total Load Time
51
HTTP Requests
5
Domains
2.3 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:2,019 chars
Detector Agreement:100%

Website Classification

Primary Category

social media network48% confidence
Type: spa
Method: ml+structural

All Detected Categories

social media network
48%
technology software
25%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
51188.114.96.3Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
511--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1D9A46B05FA08C4371B3B0FE1D4A67903A75D0807DA8959E4D5AE7B6834C7BF8631BB16

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

6144:pHoPZSDzC4ykAqZjispgNmzUFE+GnIWnIjiD99jifr0aiWFRYkRhznaHD+9nuqRc:egDz+oR

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:483139:0GEEEF4xCgtAgRQFiMDC2nQQL5EGKQSAGQLgRDHAjgjVAWYGURxGGyAFBA+sAmyYEDgskhBFSCLiCDCcIxQFhIIpuhCABTRp

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:003c3c3c3c3c3800
Perceptual Hash:8a9b25e67164bc99
Difference Hash:8d69317979e1e11f
Wavelet Hash:013d3d3c3d3d3d01
Color Hash:#be79d2

Scan History

Scan history not available

Unable to load historical scan data