ScanMalware.com

Security Scan Report: actedschweizer.pages.dev

Redirected to: https://actedschweizer.pages.dev/

Submitted: Dec 11, 2025, 11:53:26 AMCompleted: Dec 11, 2025, 11:53:44 AMpubliccompleted
Loading additional data...

Summary

This website contacted 17 IPs in 2 countries across 5 domains to perform 11 HTTP transactions. The main domain is actedschweizer.pages.dev and was registered NaN years ago.

Submitted URL: http://actedschweizer.pages.dev/

Effective URL: https://actedschweizer.pages.dev/Redirected

AI Security Verdict

High Risk

Confidence: 88%

7
Risk Score

Site likely phishing for credentials and payment info; treat as high‑risk and do not submit data.

Risk Factors
Hidden password field (credential harvesting)
Collection of payment details on a suspicious domain
Brand impersonation of a government‑style mortgage program
Unranked domain with low reputation
Domain age information unavailable

Details

Page Title

Schweizer Hypothekenprogramm — 100'000 CHF Unterstützung

Scan Type

public

Language

🇩🇪

German

(80% confidence)

Category

finance banking

(64%)

Domain Information

You're looking at domain 'actedschweizer.pages.dev' on the developer-focused generic top-level domain (.dev) and includes subdomain 'actedschweizer'. The second-level label 'pages' is 5 characters long with two vowels and three consonants. Breaking it apart gives one word: pages. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://actedschweizer.pages.dev/

Page Load Overview

4.42s
Total Load Time
11
HTTP Requests
5
Domains
189 KB
Total Size

Language Analysis

Primary Language

🇩🇪German
Code: de
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:de
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:de
Text Length:2,342 chars
Detector Agreement:100%

Website Classification

Primary Category

finance banking64% confidence
Type: webapp
Method: ml+structural

All Detected Categories

finance banking
64%
government public service
47%
technology software
33%
e-commerce
20%

Detected Features

Login Form
Payment

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
0142.251.140.170United States
AS15169GOOGLE
0172.217.18.3United States
AS15169GOOGLE
0172.66.46.213United States
AS13335CLOUDFLARENET
0172.67.74.152United States
AS13335CLOUDFLARENET
0104.26.3.143United States
AS13335CLOUDFLARENET
0104.26.2.143United States
AS13335CLOUDFLARENET
0172.66.45.43United States
AS13335CLOUDFLARENET
02a00:1450:4001:801::2003Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
02606:4700:310c::ac42:2ed5United States
AS13335CLOUDFLARENET
0104.26.13.205United States
AS13335CLOUDFLARENET
1117--

Detected Technologies1

PasswordField
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1E823F82631F2047F69A380F6F396AB18392AD583E94BC77D739C85515FC3EA0899B344

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:+L+hn8R9ad+WbQbOmxMW9EU57H8M45cl4gMpSz:PhHM45cSgMpSz

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:48829:Ur+FlVA6AIiAcXgFxBnhDUsCAQABhXafAoYNEEiAKFQGaBmAIegEKEFDlQgIAwSKCWUkKBCBIqR8CqOjQAAIwcFICoAzghuU

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ff003c3c38003800
Perceptual Hash:c2b4b8ecd2c2e9c9
Difference Hash:4445c5cde5e5c1d1
Wavelet Hash:ff003c3c3c113d3d
Color Hash:#9e87c5

Other Hashes

Crop Resistant:4445c5cde5e5c1d1,d4e5cdede5e5c1d1

Scan History

Scan history not available

Unable to load historical scan data