ScanMalware.com

Security Scan Report: ne-redirect235088.pages.dev

Redirected to: https://taker.dropcheck.one/

Submitted: Mar 19, 2026, 2:26:41 AMCompleted: Mar 19, 2026, 2:27:59 AMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 1 country across 5 domains to perform 8 HTTP transactions. The main domain is taker.dropcheck.one and was registered NaN years ago.

Submitted URL: https://ne-redirect235088.pages.dev/

Effective URL: https://taker.dropcheck.one/Redirected

AI Security Verdict

Confirmed Scam

Confidence: 88%

9
Risk Score

The site mimics a Cloudflare CAPTCHA on a newly created free‑hosting subdomain and triggers a critical IDS alert for data exfiltration – treat as high‑risk malware distribution.

Risk Factors
Brand impersonation on a non‑official domain
Critical IDS alert indicating possible data exfiltration
New subdomain on a free hosting platform
Absence of legitimate site content; only a CAPTCHA page
Potential malicious large POST request
Domain age information unavailable

Details

Bot Protection Detected

This website is protected by security_check bot protection. Our scanner was challenged or blocked during access.

Page Title

CloudFlare - Verify that you are a human

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

documentation technical

(49%)

Domain Information

Within the developer-focused generic top-level domain (.dev), 'ne-redirect235088.pages.dev' is registered, featuring subdomain 'ne-redirect235088'. The registrable portion 'pages' spans 5 characters holding two vowels versus 3 consonants. It segments into one word: pages. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://ne-redirect235088.pages.dev/

Page Load Overview

0.81s
Total Load Time
8
HTTP Requests
5
Domains
28 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:323 chars
Detector Agreement:100%

Website Classification

Primary Category

documentation technical49% confidence
Type: static
Method: ml+structural

All Detected Categories

documentation technical
49%
adult content
35%
technology software
28%
government public service
26%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2188.114.97.3United States
AS13335Cloudflare, Inc.
2172.66.47.78United States
AS13335
2188.114.96.3United States
AS13335Cloudflare, Inc.
2104.16.123.96United States
AS13335
84--

Detected Technologies4

WordPress
75%
Cloudflare Bot Management
55%
HTTP/3
40%
Cloudflare
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T159C1A66A167301325743A1942BFB93487930C003DA09D9543BDC9598CF99FD18CEBBDD

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:TVZ7in2FnDtdQb0SwWPUMnRyUpyhtzyJGHGL6+BWiVX+8nx/Iq:JZ7HFnDtqb0vWPUMnRySyhtzyJ1FBWil

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:5685:hAIUUAAAkRgG9wEQIAogNgQJUUAgAiUwABExjCSBEBIC0kEAJQQ4UAIGGCQBQBAAgkwoUEBngAkBAKIAgCJxnO4AAMAU0FgI

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffffc7c7c7ffffff
Perceptual Hash:b131cece313163c7
Difference Hash:10001c1c1c000000
Wavelet Hash:33330f03c0fcf0f0
Color Hash:#931f78

Other Hashes

Crop Resistant:10001c1c1c000000

Scan History

Scan history not available

Unable to load historical scan data