ScanMalware.com

Security Scan Report: serveraws.pages.dev

Redirected to:
https://www.visa.de/
Site favicon
Submitted: May 4, 2026, 5:02:49 AMCompleted: May 4, 2026, 5:04:23 AMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 2 countries across 4 domains to perform 40 HTTP transactions. The main domain is visa.de and was registered NaN years ago.

Submitted URL: http://serveraws.pages.dev/

Effective URL: https://www.visa.de/Redirected

AI Security Verdict

Moderate Risk

Confidence: 85%

5
Risk Score

Page impersonates Visa on an unranked subdomain and redirects to the real site; likely a phishing lure.

Risk Factors
Brand impersonation via meta tags
Unranked / low‑reputation domain with brand name
Unknown subdomain age on a generic hosting platform
High JavaScript obfuscation score
Safety Factors
Final URL resolves to the legitimate https://www.visa.de
No credential or payment forms present
No Indicators of Compromise detected
No network IDS alerts or malware YARA matches
Established domain (2070 days old) with no strong malicious indicators — risk clamped from 8 to 5
Domain age information unavailable

Details

Page Title

World Trade Organization - Home page - Global trade

Scan Type

public

Language

🇩🇪

German

(80% confidence)

Category

e-commerce shopping

(93%)

Domain Information

The domain name 'serveraws.pages.dev' uses the developer-focused generic top-level domain (.dev), featuring subdomain 'serveraws'. The core label 'pages' covers 5 characters split between two vowels and 3 consonants. Splitting it apart reveals 1 word: pages. Expect 5 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://serveraws.pages.dev/

Page Load Overview

4.23s
Total Load Time
95
HTTP Requests
9
Domains
9.8 MB
Total Size

Language Analysis

Primary Language

🇩🇪German
Code: de
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:de
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:de
Text Length:19,694 chars
Detector Agreement:80%

Website Classification

Primary Category

e-commerce shopping93% confidence
Type: spa
Method: ml+structural

All Detected Categories

e-commerce shopping
93%
finance banking
85%
corporate
35%
corporate business
26%

Detected Features

Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
26188.114.96.3United States
AS13335Cloudflare, Inc.
23104.16.79.73United States
AS13335Cloudflare, Inc.
23185.111.111.156Frankfurt am Main, Hesse, Germany
AS212238Datacamp Limited
23142.251.127.97United States
AS15169Google LLC
954--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T12123A611ACF14127526254D4BA76AB0DFBA1D14B860ACD18B7EC8BC51FC2F89CD63BC9

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:nlrdIi8fQFEAaolGESg/LKE90Lr62wn2P8Ox/GR3:lrdIi8fQm5oS7JLr62wnVOx/GR3

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:47471:FGgMgIEGBMdAIAkwlASAIZKxEKAETAKxBQA1MAu+wAWAAIjnmIgIdEkhQmRoKWhAmQqAqsOgRCiAKAADbACOAWESYCABQEMg

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ff3f3fffffff8f8f
Perceptual Hash:bfc03fc0e03fc033
Difference Hash:02c2c10181337b3b
Wavelet Hash:cc4c0d0df1f98189
Color Hash:#ac537a

Other Hashes

Crop Resistant:02c2c10181337b3b

Scan History

Scan history not available

Unable to load historical scan data