SUSPICIOUS

Warning signs detected

GitHub Pages subdomain flagged in phishing feeds with a malicious URL path, now returning a 404. Several risk indicators suggest caution. This site might be legitimate — but treat it as unverified until you can independently confirm.

Security Review

Is appcloudfare.github.io legit or a scam?

Be careful — we couldn't verify this site.

Do this now:don't sign in or pay until you've confirmed the site is genuine another way.

GitHub Pages subdomain flagged in phishing feeds with a malicious URL path, now returning a 404.

Cross-checked against 8 independent sources 1 raised a concern
Open-web research was partially available; the verdict uses the other completed checks.
appcloudfare.github.ioScanned Jul 16, 2026
46/100
Trust score
0 = danger · 100 = safe
SUSPICIOUS
Score breakdown
Heuristics 57·MT 20
Category tags
phishingHow sure we are: Moderate
Warning signals (1)
Some abuse reports (40%)
Positive signals (2)
Not on major blacklistsEncrypted connection

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

At a glance

The most useful evidence from this scan, separated from the final verdict so you can judge the signals yourself.

8 checks completed
Antivirus engines
Antivirus data unavailable
Domain Age
Registration date unknown
Browser blocklists
Clear
No Google Safe Browsing warning
Encryption
Valid
TLS TLSv1.3
Visual inspection
50/100
Visual risk score
Open-web research
Partial
Only validated claims are shown

Website Preview

Screenshot of appcloudfare.github.io
SCAN-TIME CAPTURE
appcloudfare.github.io
What our review noticed on this page

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site. Marker positions are approximate. See full visual analysis →

Visual analysis

Intelligence

Advanced threat intelligence
Analysis
High scam likelihoodengineMT · Guardiantrust20/100
MT AgentLive web researchVisual inspection
75%
Confidence
The subdomain appcloudfare.github.io appears in a phishing abuse feed dated 2026-07-15 with a long random path that matches known credential-harvesting patterns. The hosting IP carries a moderate abuse score and 52 prior abuse reports. The current page renders only a standard GitHub 404, indicating the malicious content has been removed or the link was never fully deployed. GitHub Pages subdomains are frequently abused for short-lived phishing campaigns because they require no registration and are easy to spin up. The combination of an abuse-feed hit plus the suspicious subdomain name outweighs the clean browser blocklist result and the empty page.
Risk Factors
3
  • Subdomain listed in phishing abuse feed on 2026-07-15 with credential-harvest-style path.
  • Hosting IP carries 52 abuse reports and a 40/100 abuse score.
  • GitHub Pages requires no registration, enabling quick abuse.
Positive Signals
2
  • Browser blocklist feeds show clean.
  • Current page returns a standard 404 with no active malicious content.
The full analysis

Page Content

The live page displays a standard GitHub Pages 404 error with no other content or branding. No login forms, download links, or interactive elements are present. The visual risk score sits at 50/100, reflecting the suspicious subdomain rather than active malicious content on the landing page itself.

Infrastructure

The site is hosted on GitHub Pages infrastructure at IP 185.199.108.153. That IP shows an abuse score of 40/100 and 52 prior abuse reports. SSL is valid and issued by Let's Encrypt with 48 days remaining. No redirects occur and the connection is direct.

Domain History

WHOIS age is unknown and the registrar field is unavailable. The subdomain uses the free github.io namespace, which has no registration cost and minimal identity verification. This makes it attractive for short-lived malicious campaigns.

Web Reputation

One phishing report exists in the URLAbuse feed dated 2026-07-15 for the path /1lrnK_11l4VJ7eZOGc113PhI. The entry is tagged as generic-email phishing. No positive reviews or business registrations were located. Independent review aggregators returned no data.

What this means for you

Even though the page currently shows a 404, the recorded phishing URL indicates the subdomain was used or intended for malicious activity. Avoid clicking similar links and do not enter credentials on any github.io address unless you fully trust the owner.

AI Recommendation
Do not visit or share links from this subdomain. If you received the URL in an email or message, treat it as suspicious and delete it.
Next-gen fraud intelligence
Evidence-backedCross-checked

Web Research Findings

Threat Detection

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
AbuseIPDB
ListedCheck ↗

Technical Details

The plumbing behind the site — who registered it, how it’s encrypted, where it’s hosted, and where it links out. A valid certificate or a calm server doesn’t mean the business is honest — scam sites pass these checks too. Use this to corroborate the verdict, not to overturn it.

Domain & Encryption

Domain History
AgeUnknown
RegistrarHidden
RegisteredUnknown
ExpiresUnknown
Owner privacyVisible
Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerLet's Encrypt · YR2
ExpiresSep 2, 2026 (48d)
Self-signedNo
Hosting & Technology
HostingGitHub, Inc.
Server locationUS

Server Reputation

Abuse Intelligence
Confidence score40%
Reports on file52
ISPGitHub, Inc.
Usage typeContent Delivery Network

What to do

Final Verdict

46
Trust / 100
Final Verdict·appcloudfare.github.io
SUSPICIOUS

Why we rated appcloudfare.github.io suspicious

This GitHub Pages subdomain hosts a phishing link previously flagged in abuse feeds. The page currently shows a 404 error, but the URL path was recorded as a phishing attempt in July 2026.

Do not visit or share links from this subdomain. If you received the URL in an email or message, treat it as suspicious and delete it.

AV engines
Domain age
Flagged
Scan another URL
Security review completemalwaretips.com/url-scan

Safety FAQ

Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.