ScanMalware.com

Security Scan Report: spb.gazel-services.ru

Redirected to: blob:https://stonecarver2.com/10199536-0902-419c-869d-7b507debf11c

Site favicon
Submitted: Mar 3, 2026, 2:40:50 PMCompleted: Mar 3, 2026, 2:42:25 PMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 3 countries across 5 domains to perform 8 HTTP transactions. The main domain is .

Submitted URL: https://spb.gazel-services.ru/bitrix/class-wp-user.html?clckid=945da73f

Effective URL: blob:https://stonecarver2.com/10199536-0902-419c-869d-7b507debf11cRedirected

AI Security Verdict

Confirmed Scam

Confidence: 94%

9
Risk Score

Phishing page impersonating CapitalOne login on a brand‑new, unranked domain; avoid and report.

Risk Factors
Brand impersonation on non‑official domain
Disguised password fields (type='text' with password placeholder)
Blob URL usage to hide real content source
New, unranked domain (spb.gazel-services.ru)
Unicode character mixing for evasion
Domain age information unavailable

Details

Page Title

Sign In

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

finance banking

(67%)

Domain Information

Domain 'spb.gazel-services.ru' uses the Russian country-code top-level domain (.ru) and includes subdomain 'spb'. Count 14 characters in 'gazel-services' containing five vowels alongside eight consonants; bonus characters include one hyphen. Breaking it apart gives 3 words: gaze, l, services. Average segment length settles at 4 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://spb.gazel-services.ru/bitrix/class-wp-user.html?clckid=945da73f

Page Load Overview

1.39s
Total Load Time
8
HTTP Requests
5
Domains
382 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:1,782 chars
Detector Agreement:67%

Website Classification

Primary Category

finance banking67% confidence
Type: webapp
Method: ml+structural

All Detected Categories

finance banking
67%
documentation technical
54%
government public service
39%
technology software
39%
adult content
28%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
123.36.162.211Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
15.23.51.104St Petersburg, St.-Petersburg, Russia
AS9123Jsc timeweb
1151.101.130.137United States
AS54113Fastly, Inc.
123.36.162.212Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
1104.153.45.38United States
AS29757Webline Services Inc
85--

Detected Technologies1

PasswordField
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T177E34D32619305BAA9A385885BEB2B463E945847D0CAD13477ACB7D80FC38D5D4BE3DC

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:hQldSjLuAqvohxb1T39lGbocwruWNOTAHxKV:hQldSjLu14xEb4xKV

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:146775:JHMIBkgropCBAEEZ42KhUwYCwSAAHDCYYEEAAirgUQAIKU4UyBAaEJpCTZJ0CGUIQEizIa9AlkFCUQ0UVkAhBwOGl4wDQIcs

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:77e7ffe7e7ffc6ff
Perceptual Hash:b327cc27279d8931
Difference Hash:cc0c104c4d002c30
Wavelet Hash:40e7e7e7e7e70200
Color Hash:#ac6253

Other Hashes

Crop Resistant:cc0c104c4d002c30

Scan History

Scan history not available

Unable to load historical scan data