ScanMalware.com

Security Scan Report: servernotice645.wixsite.com

Site favicon
Submitted: Nov 6, 2025, 1:52:09 AMCompleted: Nov 6, 2025, 1:53:15 AMpubliccompleted
Loading additional data...

Summary

This website contacted 30 IPs in 1 country across 8 domains to perform 117 HTTP transactions. The main domain is servernotice645.wixsite.com.

Submitted URL: https://servernotice645.wixsite.com/onenote

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Phishing site impersonating Microsoft, harvesting credentials on a new Wix subdomain.

Risk Factors
Disguised password field (type='text' with password placeholder)
Brand impersonation of Microsoft on an unranked domain
Unicode evasion technique in form fields
External malicious domain links (wix.com, wixsite.com)
New/unknown domain age with no reputable ranking
Domain age information unavailable

Details

Page Title

HOME | Onenote

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

corporate

(50%)

Domain Information

Domain 'servernotice645.wixsite.com' uses the commercial generic top-level domain (.com) and includes subdomain 'servernotice645'. The registrable portion 'wixsite' spans 7 characters containing 3 vowels alongside 4 consonants. Word splitting yields three words: wi, x, site. Average segment length settles at two characters. The linguistic tilt is Chinese (Zhuyin) for 'wi'. It also appears in Chinese (Pinyin) and English contexts. Overall, 'servernotice645.wixsite.com' reads as Chinese (Zhuyin).

Screenshot

Security scan screenshot of https://servernotice645.wixsite.com/onenote

Page Load Overview

40.62s
Total Load Time
117
HTTP Requests
8
Domains
740 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:150 chars
Detector Agreement:50%

Website Classification

Primary Category

corporate50% confidence
Type: spa
Method: structural

All Detected Categories

corporate
50%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3065.8.131.76United States
AS16509AMAZON-02
354.209.70.244Ashburn, Virginia, United States
AS14618AMAZON-AES
334.144.206.118Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
334.49.229.81Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
344.206.60.214Ashburn, Virginia, United States
AS14618AMAZON-AES
334.192.137.100Ashburn, Virginia, United States
AS14618AMAZON-AES
334.149.87.45Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
334.149.206.255Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
3151.101.66.217San Francisco, California, United States
AS54113FASTLY
365.8.131.125United States
AS16509AMAZON-02
11730--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T11E64AFA47601F03A4E6312DF535A7A0C61395011FD928A54F6EDA27028DBFEA13E377E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:1z1MNC8FFrDdiMDZMEI2DUTUN30TeW6jzh+P6BfBw3E3gqL7AMOzW6FqROhjBedn:1z1O9iMDZMENR0TezStMgcE9FS

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:320683:ABksYyoZWFFBEREMVAEMRz4BCEjrU1EMAMMJJAUIioJxiuAAEmAgSYBMCEQoD9BMJgqROs4JQShYWqLcMriikjIjGIyCGIxk

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00efefe7e7ffffff
Perceptual Hash:f333991c66669919
Difference Hash:1c08184d4d000800
Wavelet Hash:00ee2626263e3e3e
Color Hash:#2d8643

Other Hashes

Crop Resistant:1c08184d4d000800

Scan History

Scan history not available

Unable to load historical scan data