MalwareTips
DANGEROUS

Critical risk detected

12 of 92 antivirus engines flag this page as malicious. Our security stack flagged multiple threat indicators on this website. Don't enter personal information, deposit money, or download files.

Security Review

Is coiusha.efqfq9v-dfeqvdjoqwhf8.com legit or a scam?

Our verdict:Dangerous· 1/100

Phishing page with obfuscated domain name flagged by six antivirus engines and zero legitimate business signals.

Top reasons
Six antivirus engines (ADMINUSLabs, Emsisoft, Forcepoint ThreatSeeker, Fortinet, G-Data, Gridinsoft) classify the page as phishing.Domain name is obfuscated and nonsensical (efqfq9v-dfeqvdjoqwhf8), a common phishing tactic.Domain registered only 85 days ago with no established business history.
coiusha.efqfq9v-dfeqvdjoqwhf8.comScanned 1h ago
Post Facebook
0
Trust score
DANGEROUS
Heuristics 0·MT 18
Category tags
phishing#Phishing#Data Harvester92% MT confidence

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence
0/92
Engines flagged this URL
Domain Age
85 days old
Registered Mar 14, 2026
MT Intelligence
Dangerous
Critical likelihood · 92% confidence

MT Intelligence

Advanced threat intelligence
MT Security Analyst
Critical scam likelihoodengineMT · Guardiantrust18/100
MT AgentLive web researchVisual inspection
0%
Confidence
The domain coiusha.efqfq9v-dfeqvdjoqwhf8.com exhibits multiple hallmarks of a phishing attack. Six major antivirus engines—ADMINUSLabs, Emsisoft, Forcepoint ThreatSeeker, Fortinet, G-Data, and Gridinsoft—all classify it as phishing. The domain name itself is nonsensical and obfuscated, a common tactic to evade detection and appear random to users. At 85 days old, it is a newly registered domain with no established business history. The page body is empty (just a dash), contains no contact information, no business registration, no emails, and no phone numbers—all red flags for a credential-harvesting or data-collection site. Independent review aggregators rate it at 40/100, reflecting questionable reputation. The combination of antivirus detections, obfuscated naming, minimal age, and complete absence of legitimate business signals confirms this is a phishing infrastructure.
Full dossier
Analysis complete

Page Content

The page is essentially blank, displaying only a dash as its body text. There is no title, meta description, contact information, business registration, email address, phone number, or postal address. No login form, countdown timer, or push-notification spam is present. This emptiness is consistent with a phishing landing page designed to redirect users or capture data via external means.

Infrastructure

The domain uses a valid SSL certificate issued by Sectigo Limited with 113 days remaining. The hosting IP (103.250.7.204) has a clean abuse score of 0/100 with no reported abuse. However, the obfuscated domain name and lack of any legitimate business presence suggest the infrastructure is being used for malicious purposes despite the clean IP reputation.

Domain History

The domain was registered 85 days ago via GoDaddy.com, LLC, with privacy protection disabled. The age and nonsensical naming pattern (efqfq9v-dfeqvdjoqwhf8) are consistent with throwaway phishing domains created for short-term campaigns. The domain is not indexed in global traffic rankings, indicating no legitimate traffic or SEO presence.

Web Reputation

Six antivirus engines flag this domain as phishing: ADMINUSLabs, Emsisoft, Forcepoint ThreatSeeker, Fortinet, G-Data, and Gridinsoft. Independent review aggregators assign it a score of 40/100, reflecting questionable reputation. Browser blocklists currently show it as clean, but the antivirus consensus is overwhelming.

Risk Factors
7
  • Six antivirus engines (ADMINUSLabs, Emsisoft, Forcepoint ThreatSeeker, Fortinet, G-Data, Gridinsoft) classify the page as phishing.
  • Domain name is obfuscated and nonsensical (efqfq9v-dfeqvdjoqwhf8), a common phishing tactic.
  • Domain registered only 85 days ago with no established business history.
  • Page body is empty except for a dash; no legitimate business information, contact details, or purpose.
  • No contact email, phone number, postal address, or social media links present.
  • Not indexed in global traffic rankings, indicating no legitimate web presence.
  • Independent review aggregators rate it 40/100, reflecting poor reputation.
Positive Signals
3
  • SSL certificate is valid and issued by a recognized certificate authority (Sectigo Limited).
  • Hosting IP has a clean abuse score with no reported abuse.
  • No malware or suspicious redirects detected in the technical scan.
AI Recommendation
Do not visit this page or enter any personal information. If you received a link to this domain in an email or message, treat it as a phishing attempt and report it to the sender's legitimate organization or to your email provider.
Next-gen fraud intelligence
Evidence-backedCross-checked

Website Preview

Screenshot of coiusha.efqfq9v-dfeqvdjoqwhf8.com
LIVE RENDER
coiusha.efqfq9v-dfeqvdjoqwhf8.com

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for coiusha.efqfq9v-dfeqvdjoqwhf8.com, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age
2 months
Registered Mar 2026
Independent review aggregators
40/100 · questionable
Average across 1 independent review aggregator.
Web mentions
No scam reports found
No complaints, no negative coverage turned up in our sweep.
Web ratings
Scores pulled directly from third-party trust & review sites
ScamAdviser
40/100
Questionableopen
Research summary
Narrative write-up from our AI analyst

No independent scam reports or trust mentions found in available sources.

Antivirus Engines

Detection matrix · live
12 engines flagged this URL

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. Each detection is listed below by engine name — even a single hit is a meaningful signal.

12Malicious0Suspicious50Harmless92Engines
0
of 92
ADMINUSLabs
Malicious· malicious
Emsisoft
Malicious· phishing
Forcepoint ThreatSeeker
Malicious· phishing
Fortinet
Malicious· phishing
G-Data
Malicious· phishing
Gridinsoft
Malicious· phishing
Kaspersky
Malicious· phishing
Netcraft
Malicious· malicious
OpenPhish
Malicious· phishing
Sophos
Malicious· phishing
VIPRE
Malicious· phishing
Webroot
Malicious· malicious

12 antivirus engines flagged this URL. Even a single detection is a meaningful signal — treat this site with extra caution and avoid entering credentials, payment info, or downloading any files.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Contact Verification

We fetched the page and looked for real-world contact details. Legitimate businesses almost always publish an email on their own domain, a phone number, and a postal address. Scam shops usually don't.

What We Found
No clear contact details on the page
Emails on site's domainNone
Phone numbersNone
Postal addressNot listed
Linked social profiles0
Signal Summary
Several contact red flags
  • No contact email found anywhere on the page.
  • No phone number listed on the page.
  • No postal address visible on the page.

Domain & Encryption

Domain History
Age85 days old
RegistrarGoDaddy.com, LLC
RegisteredMar 14, 2026
ExpiresMar 14, 2027
Owner privacyVisible
Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerSectigo Limited · Sectigo Public Server Authentication CA DV R36
ExpiresSep 28, 2026 (113d)
Self-signedNo
Hosting & Technology
HostingMYTEK TRADING PTY LTD
Server locationJP
Web servernginx

Redirect Chain

Hops
1
Cross-domain
No
Lookalike
No
Punycode
No
  • 1302http://coiusha.efqfq9v-dfeqvdjoqwhf8.com/
  • 2200https://coiusha.efqfq9v-dfeqvdjoqwhf8.com/

Server Reputation

Abuse Intelligence
Confidence score0%
Reports on file0
ISPMYTEK TRADING PTY LTD
Usage typeData Center/Web Hosting/Transit

Scam-Type Likelihood

1 scam-type patterns detected
Scam-Type Likelihood

0 of 13 categories showed signals

We check every URL against 13 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.

Top match: Phishing
Phishing
Low-level signals
0/100
  • AI analyst tagged this as phishing.

Phishing site — act fast

This page shows signs of attempting to steal credentials or impersonate a trusted brand.

  • Do not interact with coiusha.efqfq9v-dfeqvdjoqwhf8.com

    Do not enter credentials, deposit money, download files, or install browser extensions from this site.

  • If you already typed your password — change it now

    Change the password on the legitimate site and anywhere else you re-used it. Turn on two-factor authentication. Review recent account activity.

  • Report the phishing URL

    APWG (Anti-Phishing Working Group) accepts phishing reports at reportphishing@apwg.org. Google Safe Browsing reports help protect other users.

    Open
  • Get help on the forum

    MalwareTips members can help you assess damage and next steps.

    Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
ListedCheck ↗
AbuseIPDB
Not listedCheck ↗
Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Safety FAQ

Common questions about this site, answered from the scan data on this page. These are auto-generated — not hand-written — so they always match the underlying report.

  • Our automated security review flags coiusha.efqfq9v-dfeqvdjoqwhf8.com as dangerous. Multiple threat indicators were detected — treat the site as a scam until proven otherwise.

Final Verdict

0
Trust / 100
Final Verdict·coiusha.efqfq9v-dfeqvdjoqwhf8.com
DANGEROUS

This is a phishing page designed to harvest credentials or data. Six antivirus engines flag it as phishing, the domain is only 85 days old with a nonsensical name, and the page contains no legitimate business information or contact details.

Do not visit this page or enter any personal information. If you received a link to this domain in an email or message, treat it as a phishing attempt and report it to the sender's legitimate organization or to your email provider.

AV engines
92
MT passes
2
Net signals
0
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Dangerous reports

Browse all reports
Dangeroustrust17
theuser.cloud
10m ago
Read the review
Dangeroustrust1
urbanroller.it
11m ago
Read the review
Dangeroustrust1
rwen1.yianboa9nhiha5.com
13m ago
Read the review
Dangeroustrust1
itsrafay03.github.io
13m ago
Read the review
Dangeroustrust13
grok73k.net
15m ago
Read the review
Dangeroustrust1
indoamerica200.github.io
15m ago
Read the review
Dangeroustrust28
grok73k.org
17m ago
Read the review
Dangeroustrust1
ledge-com-sttart.pages.dev
17m ago
Read the review
Dangeroustrust1
al-akshaintl.com
19m ago
Read the review
Dangeroustrust1
joao-paulo00.github.io
19m ago
Read the review
Dangeroustrust1
advertenciaycancelacion.github.io
19m ago
Read the review
Dangeroustrust1
travel-planner-lw28fzgjt-devashisnaugain.vercel.app
1h ago
Read the review
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.