ScanMalware.com

Security Scan Report: nbtxpaintestomator.com

Redirected to: https://nbtxpaintestomator.com/login

Submitted: Jan 25, 2026, 2:59:53 PMCompleted: Jan 25, 2026, 3:01:04 PMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 1 country across 5 domains to perform 19 HTTP transactions. The main domain is nbtxpaintestomator.com and was registered NaN years ago.

Submitted URL: https://nbtxpaintestomator.com/

Effective URL: https://nbtxpaintestomator.com/loginRedirected

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

New, unranked domain with a credential‑collecting login form; classified as a confirmed phishing scam.

Risk Factors
Domain age less than 7 days (critical new domain)
Credential‑harvesting login form on a brand‑new, unranked domain
Unranked domain with no established reputation
Domain age information unavailable

Details

Page Title

Paint Estimator

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(64%)

Domain Information

The domain 'nbtxpaintestomator.com' uses the commercial generic top-level domain (.com) without a subdomain. Count 18 characters in 'nbtxpaintestomator' containing 6 vowels alongside twelve consonants. Segmentation suggests six words: nb, tx, paint, es, tomato, r. Median word length comes out to 2 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://nbtxpaintestomator.com/

Page Load Overview

3.43s
Total Load Time
19
HTTP Requests
6
Domains
83 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:220 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software64% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

technology software
64%
documentation technical
25%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
7104.20.17.167United States
AS13335Cloudflare, Inc.
3185.199.109.133United States
AS14618
3162.159.142.117United States
AS13335Cloudflare, Inc.
3104.16.80.73United States
AS13335Cloudflare, Inc.
3108.138.7.15United StatesUnknown
195--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T10CC2D890B80C12385D2FEA45FAC8A32C9129F541DF634465B10E049EF9D3FE639A7F99

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:IB30rGV4xksc64Jysq7vDOkedDX9XzYGbEIx/jF9:Cebx/c64Jysq7v6TEIx/jF9

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:27657:BMZSTlAScMOmkiDxBgAIoJigwPBApaSdkIAAwgIMM54SAEadhoFzRAAgAlRmCR2lm5jwnCjUkAGMsZSkJKqETCXFIz4gMEAA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:6000181818180000
Perceptual Hash:c96363c9e363c962
Difference Hash:d02c323232b20c31
Wavelet Hash:ff0018183c3c0cff
Color Hash:#2d8640

Other Hashes

Crop Resistant:0000104c4c482000,d02c323232b20c31

Scan History

Scan history not available

Unable to load historical scan data