ScanMalware.com

Security Scan Report: nickmacdonald111.wixsite.com

Site favicon
Submitted: Dec 4, 2025, 10:49:57 PMCompleted: Dec 4, 2025, 10:50:45 PMpubliccompleted
Loading additional data...

Summary

This website contacted 30 IPs in 1 country across 8 domains to perform 107 HTTP transactions. The main domain is nickmacdonald111.wixsite.com.

Submitted URL: https://nickmacdonald111.wixsite.com/my-site-1

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Site hosts a credential‑harvesting login form on a suspicious, unranked Wix subdomain with malicious Indicators of Compromise.

Risk Factors
Malicious Indicators of Compromise matches (wix.com, wixsite.com)
Credential harvesting login form (username/email and password fields)
Unranked, likely newly registered domain
Free web‑hosting subdomain flagged as suspicious
Domain age information unavailable

Details

Page Title

HOME | My Site 1

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

corporate

(50%)

Domain Information

The domain name 'nickmacdonald111.wixsite.com' uses the commercial generic top-level domain (.com); it also runs on subdomain 'nickmacdonald111'. The core label 'wixsite' covers 7 characters split between three vowels and four consonants. Splitting it apart reveals 3 words: wi, x, site. The median word length lands at two characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://nickmacdonald111.wixsite.com/my-site-1

Page Load Overview

0.38s
Total Load Time
107
HTTP Requests
8
Domains
779 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:139 chars
Detector Agreement:100%

Website Classification

Primary Category

corporate50% confidence
Type: spa
Method: structural

All Detected Categories

corporate
50%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
8034.49.229.81Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
954.204.83.201Ashburn, Virginia, United States
AS14618AMAZON-AES
765.8.131.77United States
AS16509AMAZON-02
3151.101.194.217San Francisco, California, United States
AS54113FASTLY
334.149.206.255Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
352.86.41.132Ashburn, Virginia, United States
AS14618AMAZON-AES
3151.101.2.217San Francisco, California, United States
AS54113FASTLY
33.91.142.98Ashburn, Virginia, United States
AS14618AMAZON-AES
365.8.131.55United States
AS16509AMAZON-02
365.8.131.125United States
AS16509AMAZON-02
10730--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T19E649E907A01B13A4E6311DF439A770CA13D5011BC914A65F6FC96B029DBEEA13E3B7E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:+Jmko1JNC8FFrDdiMcMEpuZuHuSGh2oQm0NwU78+Br0Qe+84CiByBC323DqL7AMi:+Jmko1R9iMcMEou8+BQQw4CyeDcEUFA

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:327474:wQQJEAoK8IHQlD5OwIZhKLTRFQZGhJSERxACRTAAUiEEYFeqRidQYgdnwEGiAQC0jSIcbAhI0IgJMii0BOAAKAg9fEZIg0Zg

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ff0030303000ffff
Perceptual Hash:8604b939cececec6
Difference Hash:9ee4646465699800
Wavelet Hash:ff0030303410ffff
Color Hash:#2d5b86

Other Hashes

Crop Resistant:9ee4646465699800,e2606a72fa6251da,cdb3b3b3b3b3b2f6,e060c0c080000000

Scan History

Scan history not available

Unable to load historical scan data