Security Scan Report: rlonex-fursa-a7c109-wplm.pages.dev

Site favicon
Submitted: Jul 4, 2026, 12:45:27 PMCompleted: Jul 4, 2026, 12:48:15 PMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 1 country across 2 domains to perform 2 HTTP transactions. The main domain is rlonex-fursa-a7c109-wplm.pages.dev and was registered NaN years ago.

Submitted URL: http://rlonex-fursa-a7c109-wplm.pages.dev/

AI Security Verdict

Low Risk

Confidence: 75%

3
Risk Score

The site shows high JavaScript obfuscation and a circular redirect but lacks forms or brand impersonation; treat as moderate risk.

Risk Factors
Unknown subdomain age on a hosting platform
High JavaScript obfuscation without accompanying malicious YARA matches
Circular redirect pattern
Unranked domain (not in Cisco Umbrella top 1 M)
Safety Factors
No forms collecting credentials or payment data
No external links or cross‑origin network calls
No Indicators of Compromise matches
No IDS/Suricata alerts
Verdict cited a credential/login form, but DOM analysis found no password field (real or disguised) or payment field, and no other hard signal — credential-phishing framing unsupported; risk adjusted from 5 to 3
Domain age information unavailable

Details

Page Title

rlonex-fursa-a7c109-wplm.pages.dev

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(73%)

Domain Information

The domain name 'rlonex-fursa-a7c109-wplm.pages.dev' uses the developer-focused generic top-level domain (.dev), featuring subdomain 'rlonex-fursa-a7c109-wplm'. The second-level label 'pages' is 5 characters long holding 2 vowels versus 3 consonants. Splitting it apart reveals 1 word: pages. The median word length lands at five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://rlonex-fursa-a7c109-wplm.pages.dev/

Page Load Overview

8.10s
Total Load Time
3
HTTP Requests
1
Domains
N/A
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:798 chars
Detector Agreement:67%

Website Classification

Primary Category

technology software73% confidence
Type: static
Method: ml+structural

All Detected Categories

technology software
73%
documentation technical
45%
adult content
34%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2188.114.97.3Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
1104.18.94.41Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
32--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1EF048F77329A063D86558498E45B83099F21B143F506C8BC79BCBAD8BFDED06107BB78

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:r/Qho9PKBb9Js3q9Jzbs6tlg1ySBKwdQ9gcoIsPr2bMy8OldS:shoC9JSqzzbs6okSjggcpsD2eAE

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:188019:h0NCCRgXDXAARgMUITDCYsJywoSKCByOCQgmAENBBxDIIxDiLopiCUXBIABR4ogwFkQEQfodEAhBhCZwLlqgAkyGRBJggNBA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffc7c7c3d3ffffff
Perceptual Hash:b1339acccc933365
Difference Hash:00181c1616000000
Wavelet Hash:fcdcc0c4c0fcf0f0
Color Hash:#822dd2

Other Hashes

Crop Resistant:00181c1616000000

Scan History

Scan history not available

Unable to load historical scan data