Security Scan Report: wnivok-trelna-2ed83f-vjbyh-6cb712.pages.dev

Redirected to:
https://www.facebook.com/
Site favicon
Submitted: Jul 9, 2026, 6:57:01 AMCompleted: Jul 9, 2026, 6:58:11 AMpubliccompleted
Loading additional data...

Summary

This website contacted 6 IPs in 2 countries across 5 domains to perform 46 HTTP transactions. The main domain is facebook.com and was registered NaN years ago.

Submitted URL: https://wnivok-trelna-2ed83f-vjbyh-6cb712.pages.dev/

Effective URL: https://www.facebook.com/Redirected

AI Security Verdict

High Risk

Confidence: 85%

8
Risk Score

Page hosts a Facebook login form on an untrusted .pages.dev subdomain, indicating credential phishing.

Risk Factors
Credential collection on a hosting‑platform subdomain
Typosquatting/brand impersonation of a major brand
Unknown subdomain age on a generic hosting service
Domain age information unavailable

Details

Page Title

Facebook

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

The domain name 'wnivok-trelna-2ed83f-vjbyh-6cb712.pages.dev' uses the developer-focused generic top-level domain (.dev) and includes subdomain 'wnivok-trelna-2ed83f-vjbyh-6cb712'. The core label 'pages' covers 5 characters containing 2 vowels alongside three consonants. Tokenizing the label suggests one word: pages. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://wnivok-trelna-2ed83f-vjbyh-6cb712.pages.dev/

Page Load Overview

0.38s
Total Load Time
46
HTTP Requests
5
Domains
16.1 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:2,086 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: spa
Method: structural

All Detected Categories

No categories detected

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
11188.114.96.3Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
7188.114.97.3Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
7104.26.0.100Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
7157.240.0.6Frankfurt am Main, Hesse, Germany
AS32934Facebook, Inc.
7157.240.0.35Frankfurt am Main, Hesse, Germany
AS32934Facebook, Inc.
7157.240.0.174Frankfurt am Main, Hesse, Germany
AS32934Facebook, Inc.
466--

Detected Technologies3

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T144A46C05FA08C4761A3B0FE1E4A57903B76D0807DA8959E4D4AEBB7934C7BF8231B716

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

6144:/vNMMzi5AqZjispVXE+GnIWnIjiHjiVNj0aiWFRYkRhznaHDN9nuqRcrnQlw0Gig:vzil

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:486737:w6AAARAAgxSmIADtBEJQSMgxgACEjIDciQHgkko4QA+SaH8pkFFcPFA4DTDGBMpAQFcogAA4I4ZBAAIiIAYlQAAI2InEINGA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:031d3d3c3c3d1d01
Perceptual Hash:8e1b70267126fd1d
Difference Hash:5f7961697961e18f
Wavelet Hash:033d3d3c3d3d1f01
Color Hash:#bf6440

Scan History

Scan history not available

Unable to load historical scan data