Security Scan Report: xylic-id-ui.pages.dev

Redirected to:
https://xylic-id-ui.pages.dev/login
Site favicon
Submitted: Nov 13, 2025, 9:17:14 AMCompleted: Nov 13, 2025, 9:17:50 AMpubliccompleted
Loading additional data...

Summary

This website contacted 15 IPs in 2 countries across 4 domains to perform 9 HTTP transactions. The main domain is xylic-id-ui.pages.dev.

Submitted URL: https://xylic-id-ui.pages.dev/

Effective URL: https://xylic-id-ui.pages.dev/loginRedirected

AI Security Verdict

Confirmed Scam

Confidence: 92%

9
Risk Score

Confirmed phishing site harvesting credentials via a login form.

Risk Factors
Circular redirect detected (strong indicator of URL manipulation)
Credential harvesting form (email + password) on a suspicious domain
Domain is unranked and likely newly registered, increasing phishing likelihood
Domain age information unavailable

Details

Primary Scan Blocked — Fallback Capture Shown

The primary scanner could not load this page (possible bot protection). The screenshot and page details shown were captured by a fallback browser that loaded the page successfully.

Page Title

Xylic

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(53%)

Domain Information

Within the developer-focused generic top-level domain (.dev), 'xylic-id-ui.pages.dev' is registered with subdomain 'xylic-id-ui'. The second-level label 'pages' is 5 characters long containing two vowels alongside three consonants. Segmentation suggests one word: pages. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://xylic-id-ui.pages.dev/

Page Load Overview

2.44s
Total Load Time
9
HTTP Requests
4
Domains
19 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:136 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software53% confidence
Type: webapp
Method: ml+structural

All Detected Categories

technology software
53%
news media journalism
26%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
9142.250.184.195United States
AS15169GOOGLE
0188.114.96.3United States
AS13335CLOUDFLARENET
0142.251.140.163United States
AS15169GOOGLE
0104.17.25.14United States
AS13335CLOUDFLARENET
0188.114.97.3United States
AS13335CLOUDFLARENET
0142.250.185.234United States
AS15169GOOGLE
02a00:1450:4001:804::200aFrankfurt am Main, Hesse, Germany
AS15169GOOGLE
0142.250.185.202United States
AS15169GOOGLE
02a06:98c1:3121::3United States
AS13335CLOUDFLARENET
0104.17.24.14United States
AS13335CLOUDFLARENET
915--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T143E1A87C45401A26D2238DDB3CE1569FA19AC23ECE205885FB7F819BDFD0FA1068675E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:nh33sJl9kHJZW/v2KJ9eIMDHQoECJkET8OI9LK/rdh5dlM2KE62KYWpsjCcT7B:gkDWmKJ9eIMDwoE0kEOL2W2+23cP6

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:7231:mkAorhhYgKgIiKAJBMcCAQjBgYAKACRASCGICEiAAoYBEWIpkAYLQCgAKBJDIiAgrAJaAHBhjDGAABUlMAAxEAQFUwKCCQQQ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00183c1c3c3c1800
Perceptual Hash:89ad2727278d8d27
Difference Hash:0f32b2b232b2320c
Wavelet Hash:333f3c3c3c3c3c0c
Color Hash:#86582d

Other Hashes

Scan History

Scan history not available

Unable to load historical scan data