Is break.parts a scam?

Our automated security review marked break.parts as suspicious. Several warning signs were detected; it may still turn out legitimate, but you should verify it through independent channels before trusting it with money or credentials.

Is break.parts safe to use?

break.parts currently scores 53/100 on our trust scale. We found enough warning signals to recommend caution. Verify the site through independent channels before entering credentials or money.

Does break.parts have a valid SSL certificate?

Yes. break.parts presents a valid TLSv1.3 certificate issued by Google Trust Services · WE1, expiring in 64 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.

Has break.parts been flagged by antivirus engines?

1 out of 92 antivirus engines in our malware network flagged break.parts as malicious or suspicious (1 outright malicious). Even one detection is a meaningful signal.

Is break.parts on any phishing or malware blacklists?

No. break.parts is not currently listed on the major browser blocklist feeds that modern browsers use.

Where is break.parts hosted?

break.parts resolves to an IP operated by Cloudflare, Inc. in US (usage type: Content Delivery Network). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.

How often is the break.parts report updated?

This is a permanent record of the scan run on June 16, 2026. The verdict and evidence above reflect that scan and do not change on their own. If circumstances around break.parts have changed, MalwareTips staff can run a fresh scan, which re-runs every check from scratch and publishes an updated report.

Security Review

Is break.parts legit or a scam?

Our verdict:Suspicious· 53/100

SafeSuspiciousDangerous

Anonymous AI decomposition tool with no business registration, legal docs, or contact info; one antivirus engine flagged it malicious.

Top reasons

Webroot antivirus engine flagged the domain as malicious; no other engine concurred, but the detection warrants caution.No business registration, company name, or legal entity found in any jurisdiction.Complete absence of contact information: no email, phone, or postal address on the page.

break.partsScanned 1h ago

Post Facebook

Trust score

SUSPICIOUS

Heuristics 67·MT 42

Category tags

web applicationai tool65% MT confidence

Technical red flags (1)

1 of 92 engines flagged

Positive signals (3)

Not on major blacklists Encrypted connection Clean server reputation

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence

1/92

Engines flagged this URL

Domain Age

—

Registration date unknown

MT Intelligence

Suspicious

Moderate likelihood · 65% confidence

SUSPICIOUS

Warning signs detected

Anonymous AI decomposition tool with no business registration, legal docs, or contact info; one antivirus engine flagged it malicious. Several risk indicators suggest caution. This site might be legitimate — but treat it as unverified until you can independently confirm.

Website Preview

LIVE RENDER

break.parts

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

MT Intelligence

Advanced threat intelligence

MT Security Analyst

Moderate scam likelihoodengineMT · Guardiantrust42/100

MT AgentLive web researchVisual inspection

Confidence

break.parts presents itself as a web toy that uses AI to recursively break down physical objects into smaller, purchasable components. The core functionality — anonymous participation, no email/password requirement, live feed of discoveries — aligns with a casual interactive demo. However, several factors elevate caution. First, Webroot flagged the domain as malicious, though no other engine in our antivirus network concurred and browser blocklists remain clean. Second, the site lacks any business registration, company name, owner details, privacy policy, terms of service, or legal footer — standard for even small indie projects. Third, no contact email, phone, or postal address appears anywhere on the page. Fourth, the domain is not indexed in global traffic rankings, suggesting minimal public awareness or traffic. The evidence package found zero scam reports, complaints, or reviews across consumer sites, which is consistent with a niche or newly-launched tool but also means no independent verification of legitimacy exists. The combination of a single malware detection, complete absence of business transparency, and zero public track record creates moderate uncertainty.

Full dossier

Analysis complete

Page Content

The site is a JavaScript single-page application (SPA) built on Cloudflare Workers and Google's Gemini API. Users enter a display name (no account creation) and interact with a canvas-based interface to decompose objects into parts. The page explicitly disclaims that decompositions are AI-generated approximations, not engineering documentation, and warns against using the output as safety or professional advice. No login form, countdown timer, or push-notification spam detected.

Infrastructure

Hosted on Cloudflare (IP 172.67.213.149), with valid SSL issued by Google Trust Services expiring in 64 days. The hosting IP has an abuse score of 0/100 and only 1 abuse report on record — both benign signals. External resources loaded from Tailwind CSS CDN and Cloudflare Insights, which are standard third-party libraries. No redirects or homoglyph/IDN tricks detected.

Domain History

WHOIS data is unavailable, preventing verification of registration date or owner. The domain is not indexed in global traffic rankings. No business registration found in any jurisdiction searched. The creator is listed in the page footer as 'SabiMaru Sai Htoo Han Naing' with a copyright year of 2026 (likely a typo for 2024 or 2025), but no verifiable company entity, legal address, or contact method is provided.

Web Reputation

Webroot flagged the domain as malicious — the only detection among 92 engines. Browser blocklists are clean. No scam reports, complaints, or reviews found on consumer-review aggregators or general web searches. The absence of any public discussion or track record is consistent with a new or low-traffic indie project but prevents independent verification of the site's legitimacy or safety.

Risk Factors

Webroot antivirus engine flagged the domain as malicious; no other engine concurred, but the detection warrants caution.
No business registration, company name, or legal entity found in any jurisdiction.
Complete absence of contact information: no email, phone, or postal address on the page.
No privacy policy, terms of service, or legal footer visible on the homepage.
Domain not indexed in global traffic rankings; minimal public awareness or verification.
WHOIS data unavailable; owner identity cannot be independently verified.
Zero scam reports, complaints, or public reviews — no independent track record to assess legitimacy.

Positive Signals

Hosting IP has clean abuse reputation (0/100 score) with minimal abuse reports.
Valid SSL certificate issued by Google Trust Services.
No browser blocklist hits; clean sandbox analysis.
Page content is transparent about limitations: explicitly disclaims AI accuracy and warns against using output for safety or professional advice.
No cryptocurrency, wallet, airdrop, or financial features typical of scams.

AI Recommendation

Do not enter personal information (email, payment details, or real name) on this site. The single antivirus detection and complete lack of business transparency create enough uncertainty that casual use only is advisable. If you use the tool, treat all decompositions as entertainment, not technical guidance.

Next-gen fraud intelligence

Evidence-backedCross-checked

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for break.parts, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Business registration

No public record found

Could not match the site to a registered company — common for small sites.

Clone check

Not a clone

No well-known site's layout or branding detected here.

Typosquat check

No look-alike match

The domain doesn't resemble any well-known brand's spelling.

Web mentions

No scam reports found

No complaints, no negative coverage turned up in our sweep.

Key findings

7 headline facts from open-web research

break.parts is an interactive web tool described as "take anything apart" that uses AI (powered by Gemini) to recursively decompose objects like guitars, iPhones, cars into smaller buyable parts via a draggable/zoomable canvas interface.
Users participate anonymously by picking a display name (no email, password, or account required) to label discoveries on a live feed and leaderboard.
The site has an "About" link but no visible company name, contact info, privacy policy, terms of service, or legal footer on the homepage.
No reviews, scam reports, complaints, or mentions of the domain were found on Trustpilot, Reddit, ScamAdviser, or general web searches.
No business registration, WHOIS details, or owner information located; domain age listed as unknown.
Page title and description match the provided content exactly: "break.parts — take anything apart" and "Decompose any object into its parts, recursively, until you reach something you could literally buy."
No references to cryptocurrency, wallets, airdrops, logins, or financial features that are common in scams.

Research summary

Narrative write-up from our AI analyst, grounded on the facts above

We searched scam-report databases, consumer-review sites, and general web sources for break.parts and found zero scam reports, complaints, or reviews. No business registration, WHOIS details, or owner information was located. The domain appears to be a niche or newly-launched interactive tool with minimal public track record. For a low-traffic indie project, the absence of reviews and complaints is expected and is not by itself a sign of trust — it simply means the site has not yet accumulated public feedback or scrutiny.

Antivirus Engines

Detection matrix · live

1 engine flagged this URL

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. Each detection is listed below by engine name — even a single hit is a meaningful signal.

1Malicious0Suspicious56Harmless92Engines

of 92

Webroot

Malicious· malicious

1 antivirus engine flagged this URL. Even a single detection is a meaningful signal — treat this site with extra caution and avoid entering credentials, payment info, or downloading any files.

Security Scans

Blacklist Check

Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Contact Verification

We fetched the page and looked for real-world contact details. Legitimate businesses almost always publish an email on their own domain, a phone number, and a postal address. Scam shops usually don't.

What We Found

No clear contact details on the page

Emails on site's domainNone

Phone numbersNone

Postal addressNot listed

Linked social profiles0

Signal Summary

Several contact red flags

No contact email found anywhere on the page.
No phone number listed on the page.
No postal address visible on the page.

Domain & Encryption

Encryption Certificate

StatusValid

ProtocolTLSv1.3

IssuerGoogle Trust Services · WE1

ExpiresAug 19, 2026 (64d)

Self-signedNo

Hosting & Technology

HostingCloudflare, Inc.

Server locationUS

Web servercloudflare

Server Reputation

Abuse Intelligence

Confidence score0%

Reports on file1

ISPCloudflare, Inc.

Usage typeContent Delivery Network

Proceed with caution

Our automated review flagged enough risk that you should treat this site as unverified.

Treat break.parts as unverified
Do not enter credentials or send money until you have independently verified the business.
Verify the business through independent channels
Check the company's social profiles, registry records, and search for recent news or reviews that are not hosted on the site itself.
Never use irreversible payment methods
Crypto, gift cards, wire transfers, and cash apps offer zero buyer protection. Use a credit card or PayPal if you must pay.
Share your experience
If you have additional context, drop a comment below or post on the MalwareTips forum.
Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing

Not listedCheck ↗

VirusTotal

ListedCheck ↗

AbuseIPDB

Not listedCheck ↗

Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Referenced Domains

Outbound domains this page links to or loads resources from. Each links to its own security scan.

cdn.tailwindcss.com cdn.jsdelivr.net static.cloudflareinsights.com

Safety FAQ

Common questions about this site, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

Our automated security review marked break.parts as suspicious. Several warning signs were detected; it may still turn out legitimate, but you should verify it through independent channels before trusting it with money or credentials.
break.parts currently scores 53/100 on our trust scale. We found enough warning signals to recommend caution. Verify the site through independent channels before entering credentials or money.
Yes. break.parts presents a valid TLSv1.3 certificate issued by Google Trust Services · WE1, expiring in 64 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.
1 out of 92 antivirus engines in our malware network flagged break.parts as malicious or suspicious (1 outright malicious). Even one detection is a meaningful signal.
No. break.parts is not currently listed on the major browser blocklist feeds that modern browsers use.
break.parts resolves to an IP operated by Cloudflare, Inc. in US (usage type: Content Delivery Network). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.
This is a permanent record of the scan run on June 16, 2026. The verdict and evidence above reflect that scan and do not change on their own. If circumstances around break.parts have changed, MalwareTips staff can run a fresh scan, which re-runs every check from scratch and publishes an updated report.

Final Verdict

Trust / 100

Final Verdict·break.parts

SUSPICIOUS

break.parts is an interactive AI-powered web toy that decomposes objects into parts. While the concept appears legitimate, the complete absence of business registration, contact information, legal documentation, and a single detection by Webroot create moderate risk signals for a public-facing tool.

AV engines

MT passes

Net signals

Scan another URL

Security review completemalwaretips.com/url-scan

Recently scanned

Other Suspicious reports

Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…

Loading comments…

This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.