Security Scan Report: sp5ct6-fralqor-biz-vrontek-plamnix.pages.dev

Redirected to:
https://sp5ct6-fralqor-biz-vrontek-plamnix.pages.dev/
Site favicon
Submitted: Jul 2, 2026, 4:51:06 PMCompleted: Jul 2, 2026, 4:53:36 PMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 1 country across 2 domains to perform 2 HTTP transactions. The main domain is sp5ct6-fralqor-biz-vrontek-plamnix.pages.dev and was registered NaN years ago.

Submitted URL: http://sp5ct6-fralqor-biz-vrontek-plamnix.pages.dev/

Effective URL: https://sp5ct6-fralqor-biz-vrontek-plamnix.pages.dev/Redirected

AI Security Verdict

High Risk

Confidence: 95%

7
Risk Score

The site is confirmed phishing; avoid interaction and report it.

Risk Factors
Unranked domain and unknown subdomain age
Hosted on a generic developer subdomain (pages.dev)
Cloudflare flagging indicates known malicious activity
Absence of legitimate content suggests a phishing kit
Domain age information unavailable

Details

Bot Protection Detected

This website is protected by Cloudflare bot protection. Our scanner was challenged or blocked during access.

Page Title

Suspected Phishing | Cloudflare

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

phishing scam

(92%)

Domain Information

You're looking at domain 'sp5ct6-fralqor-biz-vrontek-plamnix.pages.dev' on the developer-focused generic top-level domain (.dev), featuring subdomain 'sp5ct6-fralqor-biz-vrontek-plamnix'. Its registrable label 'pages' stretches across 5 characters with two vowels and three consonants. Breaking it apart gives one word: pages. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://sp5ct6-fralqor-biz-vrontek-plamnix.pages.dev/

Page Load Overview

0.76s
Total Load Time
7
HTTP Requests
2
Domains
0 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:373 chars
Detector Agreement:100%

Website Classification

Primary Category

phishing scam92% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

phishing scam
92%
technology software
38%
documentation technical
29%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
4172.66.44.123Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
3104.18.94.41Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
72--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1B8815277BAFD103F21A3917266BDB70A35A1C007CAA6499036BCC2754F4EF92AD136C1

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:libDa/D+DMFBzLeiO/tjA2utnRC3vaQxvb0:liPa/SoFnOV3utnM3Cej0

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:4167:QIAAkrmwDCAAAEUAABAiAgA0gIAUUYQAQQcIACAIDcAAIBAQARAACAiFEAgkAQACIBBOAwIAAIAQASQBYRFgAACKAAAARQAk

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ff8787ffc7ffffff
Perceptual Hash:b83898c3c3c7ce3c
Difference Hash:203c38040c000000
Wavelet Hash:9c8490c0033f3333
Color Hash:#bfbf40

Other Hashes

Crop Resistant:203c38040c000000

Scan History

Scan history not available

Unable to load historical scan data