ScanMalware.com

Security Scan Report: melodtiyuhyu-rtwyuhjwq.pages.dev

Submitted: Apr 27, 2026, 3:28:47 PMCompleted: Apr 27, 2026, 3:29:54 PMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 1 country across 2 domains to perform 6 HTTP transactions. The main domain is melodtiyuhyu-rtwyuhjwq.pages.dev and was registered NaN years ago.

Submitted URL: https://melodtiyuhyu-rtwyuhjwq.pages.dev/sameomme#[email protected]

AI Security Verdict

Moderate Risk

Confidence: 95%

5
Risk Score

The page is flagged by Cloudflare as a phishing site and shows multiple strong phishing indicators; users should not interact with it.

Risk Factors
Unranked domain (not in Cisco Umbrella top 1 M)
Subdomain on a hosting platform with unknown age
Email address embedded in URL fragment
Presence of a form (even without credential fields) on a phishing‑flagged page
Safety Factors
No JavaScript malware patterns detected
No credential exfiltration observed
No network IDS alerts
Established domain (2063 days old) with no strong malicious indicators — risk clamped from 8 to 5
Domain age information unavailable

Details

Bot Protection Detected

This website is protected by Cloudflare bot protection. Our scanner was challenged or blocked during access.

Page Title

Suspected phishing site | Cloudflare

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

phishing scam

(95%)

Domain Information

The domain 'melodtiyuhyu-rtwyuhjwq.pages.dev' uses the developer-focused generic top-level domain (.dev) and includes subdomain 'melodtiyuhyu-rtwyuhjwq'. The second-level label 'pages' is 5 characters long split between two vowels and 3 consonants. It segments into 1 word: pages. The median word length lands at five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://melodtiyuhyu-rtwyuhjwq.pages.dev/sameomme#support@domaindb.com

Page Load Overview

0.28s
Total Load Time
6
HTTP Requests
2
Domains
0 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:378 chars
Detector Agreement:100%

Website Classification

Primary Category

phishing scam95% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

phishing scam
95%
technology software
29%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3104.18.94.41United States
AS13335Cloudflare, Inc.
1172.66.45.7United States
AS13335Cloudflare, Inc.
1172.66.46.249United States
AS13335Cloudflare, Inc.
1104.18.95.41United States
AS13335Cloudflare, Inc.
64--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1FB815367BAFD103F21A3917266BDB70935A1C007CAA6499036BCC2750F4FF91AD532C1

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:liADa/D+DMFBzLeiO/tjA2u2nRC3vaQxvb0:liEa/SoFnOV3u2nM3Cej0

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:4172:ACkAVAgQABAJgIUASACQgCMAAAhAQAGIAADhAkBKQBiCHBgABAQYUSDAEBUEIBAQAEiAAggADABSAKgQIAAgEACKABQAAAVE

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ff8787ffc7ffffff
Perceptual Hash:b83898c3c3c7ce3c
Difference Hash:203c38040c000000
Wavelet Hash:9c8490c0c0fcfcfc
Color Hash:#6ce079

Other Hashes

Crop Resistant:203c38040c000000

Scan History

Scan history not available

Unable to load historical scan data