Security Scan Report: sp0ct-worvix-biz-relqem-larnok.pages.dev

Redirected to:
https://www.facebook.com/
Site favicon
Submitted: Jul 13, 2026, 3:52:17 AMCompleted: Jul 13, 2026, 3:53:27 AMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 2 HTTP transactions. The main domain is facebook.com and was registered NaN years ago.

Submitted URL: http://sp0ct-worvix-biz-relqem-larnok.pages.dev/

Effective URL: https://www.facebook.com/Redirected

AI Security Verdict

High Risk

Confidence: 80%

8
Risk Score

The site impersonates Facebook with a login form on an unknown‑age, unranked .pages.dev subdomain, indicating a high‑risk credential phishing attempt.

Risk Factors
Unknown subdomain age on hosting platform
Unranked domain
Brand impersonation of a major social media brand
Credential collection form on unknown‑age subdomain
Heavy JavaScript obfuscation
Domain age information unavailable

Details

Page Title

Facebook

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

social media network

(48%)

Domain Information

The domain 'sp0ct-worvix-biz-relqem-larnok.pages.dev' uses the developer-focused generic top-level domain (.dev), featuring subdomain 'sp0ct-worvix-biz-relqem-larnok'. Its registrable label 'pages' stretches across 5 characters with 2 vowels and 3 consonants. Splitting it apart reveals one word: pages. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://sp0ct-worvix-biz-relqem-larnok.pages.dev/

Page Load Overview

0.43s
Total Load Time
45
HTTP Requests
5
Domains
2.3 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:2,019 chars
Detector Agreement:100%

Website Classification

Primary Category

social media network48% confidence
Type: spa
Method: ml+structural

All Detected Categories

social media network
48%
technology software
25%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
45172.66.47.197Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
451--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1D1A45C05FA08C4761B3B0FE1D4A97907AB5C080BDA8959E4D5AE7B7834C7BF8231B716

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

6144:5YiGbRrXl47AqZjispgNmzU9E+GnIWnIjiD99jifr0aiWFRYkRhznaHDv9nuqRcY:Cl4VZC6

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:483110:U8MQEAIDCRItAOgk0CYGAoyYK0HARhBG2WUIUQZQFgCC4AtEGSkowjlh2FcEpxRKkwBJzBAOTISGQSBEJhIkWgDQSaBPDgQZ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:003c3c3c3c3c3800
Perceptual Hash:8a9b35267164bc9d
Difference Hash:8d69717979e1e11f
Wavelet Hash:013d3d3c3d3d3d01
Color Hash:#65783a

Scan History

Scan history not available

Unable to load historical scan data