ScanMalware.com

Security Scan Report: cjelfmas810.pages.dev

Redirected to: https://google.com/carrefour

Submitted: Jan 2, 2026, 11:35:03 PMCompleted: Jan 2, 2026, 11:36:28 PMpubliccompleted
Loading additional data...

Summary

This website contacted 14 IPs in 3 countries across 12 domains to perform 29 HTTP transactions. The main domain is google.com and was registered NaN years ago.

Submitted URL: https://cjelfmas810.pages.dev/

Effective URL: https://google.com/carrefourRedirected

AI Security Verdict

Confirmed Scam

Confidence: 95%

9
Risk Score

Confirmed phishing scam using a malicious pages.dev subdomain to impersonate Google.

Risk Factors
Malicious primary domain indicator of compromise
Multiple malicious Indicators of Compromise matches
Brand impersonation/typosquatting of Google on an unranked domain
Suspicious redirect chain to an unrelated URL
Domain age information unavailable

Details

Page Title

Error 404 (Not Found)!!1

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

e-commerce shopping

(60%)

Domain Information

You're looking at domain 'cjelfmas810.pages.dev' on the developer-focused generic top-level domain (.dev); it also runs on subdomain 'cjelfmas810'. The core label 'pages' covers 5 characters holding two vowels versus three consonants. It segments into one word: pages. Median word length comes out to five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://cjelfmas810.pages.dev/

Page Load Overview

2.65s
Total Load Time
40
HTTP Requests
12
Domains
149 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:125 chars
Detector Agreement:100%

Website Classification

Primary Category

e-commerce shopping60% confidence
Type: static
Method: ml+structural

All Detected Categories

e-commerce shopping
60%
news media journalism
49%
finance banking
46%
government public service
43%
corporate business
42%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
14172.66.44.55United States
AS13335CLOUDFLARENET
2142.251.141.100Finland
AS54113
2185.111.111.158Sweden
AS24940
2142.250.186.170Unknown
AS396982
2142.251.140.174Unknown
AS13335
2188.114.97.3United States
AS13335CLOUDFLARENET
2172.66.47.130UnknownUnknown
2188.114.96.3United States
AS13335CLOUDFLARENET
2104.17.24.14United States
AS13335CLOUDFLARENET
2142.250.186.136UnknownUnknown
4014--

Detected Technologies3

HTTP/3
40%
Cloudflare Bot Management
40%
Cloudflare
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1453198BFECCD209FA82FC0E5D893515421458E91F355CFDDA749D678D4AA74910335C8

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

24:hR0R05NsvD+6zSU6pedQf3Zvcn1BZdAe1nCr1LTHoERB/Vx6S8B:TzHqD+2+pUAewUSB//5K

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:1619:AQAEgAQAAACggFAAAAAAQCCAAMAAggAAAAAgQgAIAAAAAAggAAAAAAAAAYIAAAGAAAAAAAAAgAIAAAAZQAAAAAGhAAEAAIAA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffc3c3ffffffffff
Perceptual Hash:b030988acfcf6765
Difference Hash:0014160000000000
Wavelet Hash:ffc3c3ff00000000
Color Hash:#6d2d86

Other Hashes

Crop Resistant:0014160000000000

Scan History

Scan history not available

Unable to load historical scan data