ScanMalware.com

Security Scan Report: windstreamupgradeservicess.pages.dev

Submitted: Oct 13, 2025, 9:01:20 AMCompleted: Oct 13, 2025, 9:02:38 AMpubliccompleted
Loading additional data...

Summary

This website contacted 8 IPs in 1 country across 2 domains to perform 6 HTTP transactions. The main domain is windstreamupgradeservicess.pages.dev and was registered NaN years ago.

Submitted URL: https://windstreamupgradeservicess.pages.dev/windstream%20page%201

AI Security Verdict

Safe Website

Confidence: 95%

0
Risk Score

The page is a Cloudflare warning; no malicious activity detected.

Safety Factors
Page is a Cloudflare warning, not a credential collection site
Well‑established domain with minimal reputation risk
Domain age information unavailable

Details

Primary Scan Blocked — Fallback Capture Shown

The primary scanner could not load this page (possible bot protection). The screenshot and page details shown were captured by a fallback browser that loaded the page successfully.

Page Title

windstreamupgradeservicess.pages.dev

Scan Type

public

Language

🇺🇸

English

(50% confidence)

Category

phishing scam

(95%)

Domain Information

Within the developer-focused generic top-level domain (.dev), 'windstreamupgradeservicess.pages.dev' is registered with subdomain 'windstreamupgradeservicess'. The registrable portion 'pages' spans 5 characters holding 2 vowels versus three consonants. It segments into one word: pages. Median word length comes out to 5 characters. 'pages' most often appears in English. Secondary signals appear in French and Chinese (Pinyin). Overall, 'windstreamupgradeservicess.pages.dev' reads as English with single-word simplicity.

Screenshot

Security scan screenshot of https://windstreamupgradeservicess.pages.dev/windstream%20page%201

Page Load Overview

44.61s
Total Load Time
6
HTTP Requests
2
Domains
N/A
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:50%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:50%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:378 chars
Detector Agreement:100%

Website Classification

Primary Category

phishing scam95% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

phishing scam
95%
technology software
30%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
6188.114.96.3United States
AS13335CLOUDFLARENET
0188.114.97.3United States
AS13335CLOUDFLARENET
0104.18.94.41United States
AS13335CLOUDFLARENET
0104.18.95.41United States
AS13335CLOUDFLARENET
02606:4700::6812:5e29United States
AS13335CLOUDFLARENET
02606:4700::6812:5f29United States
AS13335CLOUDFLARENET
02a06:98c1:3120::3United States
AS13335CLOUDFLARENET
02a06:98c1:3121::3United States
AS13335CLOUDFLARENET
68--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1D5815373BAFD107F11A3917266BDB70935A1C007CAA6499036BCC2751F4EF91AD532C5

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:liADa/D+DMFozLeiO/t8A2u0nRC3vaQxvb0:liEa/SoYnOVsu0nM3Cej0

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:4091:IAEAYAAYABAZAgkAMAIAwIMAAAhEAQABQEIZAACSAUigCBggRJJpQAAIAREAAEEAaGhBghYAREAAAMAwMAAgGAASADAAAIAB

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ff8787ffc7ffffff
Perceptual Hash:b83898c3c3c7ce3c
Difference Hash:203c38040c000000
Wavelet Hash:9c849cc0c0fcfcfc
Color Hash:#d24b2d

Other Hashes

Crop Resistant:203c38040c000000

Scan History

Scan history not available

Unable to load historical scan data