ScanMalware.com

Security Scan Report: bafybeiazdhvoszuueq6chguvjqnoc2lupidjfoirxtquev6yhh5sbpcbmy.ipfs.dweb.link

Site favicon
Submitted: Dec 1, 2025, 12:23:31 PMCompleted: Dec 1, 2025, 12:25:00 PMpubliccompleted
Loading additional data...

Summary

This website contacted 28 IPs in 2 countries across 16 domains to perform 19 HTTP transactions. The main domain is bafybeiazdhvoszuueq6chguvjqnoc2lupidjfoirxtquev6yhh5sbpcbmy.ipfs.dweb.link.

Submitted URL: https://bafybeiazdhvoszuueq6chguvjqnoc2lupidjfoirxtquev6yhh5sbpcbmy.ipfs.dweb.link/mantle.html/

The Cisco Umbrella rank of the primary domain is #174,969 of the top 1 million websites

AI Security Verdict

Confirmed Scam

Confidence: 95%

9
Risk Score

Confirmed phishing scam hosted on IPFS; do not enter credentials.

Risk Factors
IPFS hosting combined with credential‑harvesting form
Brand impersonation (Webmail) on an untrusted domain
Domain age < 7 days with login form
Low ranking domain for a service that should be high‑profile
Domain age information unavailable

Details

Page Title

Webmail :: Welcome to Webmail

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(35%)

Domain Information

Domain 'bafybeiazdhvoszuueq6chguvjqnoc2lupidjfoirxtquev6yhh5sbpcbmy.ipfs.dweb.link' uses the .link top-level domain and includes subdomain 'bafybeiazdhvoszuueq6chguvjqnoc2lupidjfoirxtquev6yhh5sbpcbmy.ipfs'. The second-level label 'dweb' is 4 characters long containing 1 vowel alongside three consonants. Breaking it apart gives 2 words: d, web. Average segment length settles at two characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://bafybeiazdhvoszuueq6chguvjqnoc2lupidjfoirxtquev6yhh5sbpcbmy.ipfs.dweb.link/mantle.html/

Page Load Overview

28.21s
Total Load Time
19
HTTP Requests
16
Domains
92 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:357 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software35% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

technology software
35%
adult content
34%
documentation technical
32%
news media journalism
27%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
9209.94.90.2United States
AS40680PROTOCOL
1151.101.130.137San Francisco, California, United States
AS54113FASTLY
1104.17.25.14United States
AS13335CLOUDFLARENET
1104.18.11.207United States
AS13335CLOUDFLARENET
1142.250.184.202United States
AS15169GOOGLE
165.254.250.40United States
AS29873BIZLAND-SD
0142.250.185.138United States
AS15169GOOGLE
0104.17.24.14United States
AS13335CLOUDFLARENET
0172.64.146.87United States
AS13335CLOUDFLARENET
0104.18.41.169United States
AS13335CLOUDFLARENET
1928--

Detected Technologies4

IPFS
40%
HTTP/3
40%
Cloudflare Bot Management
40%
Cloudflare
40%

Content Similarity HashesFor malware variant detection

Image Hashes

Perceptual Hashes

Average Hash:N/A
Perceptual Hash:N/A
Difference Hash:N/A
Wavelet Hash:N/A
Color Hash:N/A

Other Hashes

Crop Resistant:N/A

Scan History

Scan history not available

Unable to load historical scan data