Security Review

Is driksjb11jul.kaisen.my.id legit or a scam?

Our verdict:Dangerous· 1/100

This malicious clone site impersonates Codashop to steal Mobile Legends account credentials and payment data through a fake diamond top-up interface.

driksjb11jul.kaisen.my.idScanned 1h ago
0
Trust score
DANGEROUS
Score breakdown
Heuristics 0·MT 5
Category tags
phishing#phishing#gaming scam#clone site95% MT confidence

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence
11/92
Engines flagged this URL
Domain Age
13 years old
Registered Sep 9, 2013
MT Intelligence
Dangerous
Critical likelihood · 95% confidence
DANGEROUS

Fake shop — do not order

11 of 92 antivirus engines flag this page (11 outright malicious). The site shows patterns common to non-delivery scam shops. Don't submit payment details, and if you already paid by card or PayPal, start a chargeback today.

Website Preview

Screenshot of driksjb11jul.kaisen.my.id
LIVE RENDER
driksjb11jul.kaisen.my.id

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

MT Intelligence

Advanced threat intelligence
MT Security Analyst
Critical scam likelihoodengineMT · Guardiantrust5/100
MT AgentLive web researchVisual inspectionNetwork correlation
0%
Confidence
The page is a deceptive clone of the legitimate Codashop platform, specifically targeting Mobile Legends: Bang Bang players. Our security partners, including BitDefender, ESET, and Fortinet, have explicitly flagged this URL as a phishing threat. The site uses a complex subdomain on a generic Indonesian top-level domain to mimic a real service while hosting a fake login form. We detected specific phishing language and credential-harvesting patterns designed to trick users into providing their Google or Moonton account details. The lack of any official business presence and the high number of antivirus detections confirm its malicious intent.
Full dossier
Analysis complete

Page Content

The site perfectly replicates the branding, layout, and product descriptions of the official Codashop Mobile Legends top-up page. It features a functional-looking interface for entering User IDs and Zone IDs, but its primary goal is to redirect users to a fake login prompt. The page includes deceptive 'maintenance' notices to force users into using specific login methods that the attackers can easily harvest.

Infrastructure

The site is hosted on a subdomain of kaisen.my.id, a common tactic used to bypass simple domain-based filters. While it uses a valid SSL certificate from Google Trust Services to appear secure, this only encrypts the connection to the attackers. The hosting IP has no significant abuse history, suggesting this specific campaign may be relatively new or highly targeted.

Domain History

Although the root domain has existed for over 12 years, this specific subdomain shows no history of legitimate traffic or business operations. It is not indexed in any global traffic rankings, which is highly unusual for a service claiming to process '100,000 Rewards' and high-volume game transactions.

Web Reputation

The reputation is severely compromised, with 11 major antivirus engines flagging the site as a phishing destination. These detections come from reputable providers like Emsisoft and G-Data, indicating a high degree of certainty that the site is part of a coordinated credential-theft campaign.

Risk Factors
6
  • 11 antivirus engines including BitDefender and ESET flag this site as phishing.
  • Impersonates the official Codashop brand to steal gaming account credentials.
  • Contains a fake login form designed for credential harvesting.
  • Uses deceptive 'maintenance' alerts to manipulate user login choices.
  • Hosted on an obscure subdomain with no legitimate business registration.
  • Identified by our intelligence stack as a phishing template match.
Positive Signals
1
  • The site uses a valid SSL certificate for encrypted communication.
AI Recommendation
Do not enter your Mobile Legends ID, Google password, or payment details on this site. If you have already provided information, change your account passwords immediately and enable two-factor authentication.
Next-gen fraud intelligence
Evidence-backedCross-checked

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for driksjb11jul.kaisen.my.id, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age
12 yrs
Registered Sep 2013
Web mentions
No scam reports found
No complaints, no negative coverage turned up in our sweep.
Research summary
Narrative write-up from our AI analyst

No independent reviews or scam reports were found for this specific subdomain, which is typical for short-lived phishing pages that operate via direct links rather than search engine results.

Scam Network Intelligence

Cross-site correlation

This site shares signals with a broader cluster

Moderate correlation

Many scams don't operate alone. We correlate third-party scripts, hosting infrastructure, brand-impersonation signals, and the AI evidence package to detect when a site is part of a broader scam network.

Suspicion score
0/100
ClearLowModerateHighCritical
Evidence (2)
  • Phishing language detected (account verification / suspension warnings).
  • Login form present on a scam-template page — credential-harvest pattern.
Linked signals (3)
cdnjs.cloudflare.comTemplate · PhishingPattern · Credential Harvest

Antivirus Engines

Detection matrix · live
11 engines flagged this URL

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. Each detection is listed below by engine name — even a single hit is a meaningful signal.

11Malicious0Suspicious49Harmless92Engines
0
of 92
BitDefender
Malicious· phishing
Emsisoft
Malicious· phishing
Ermes
Malicious· phishing
ESET
Malicious· phishing
Fortinet
Malicious· phishing
G-Data
Malicious· phishing
Kaspersky
Malicious· phishing
Lionic
Malicious· phishing
Netcraft
Malicious· malicious
Sophos
Malicious· phishing
Webroot
Malicious· malicious

11 antivirus engines flagged this URL. Even a single detection is a meaningful signal — treat this site with extra caution and avoid entering credentials, payment info, or downloading any files.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Technical checks

Contact Verification

We fetched the page and looked for real-world contact details. Legitimate businesses almost always publish an email on their own domain, a phone number, and a postal address. Scam shops usually don't.

What We Found
No clear contact details on the page
Emails on site's domainNone
Phone numbers12345678(1234
Postal addressPresent
Linked social profiles4
Signal Summary
Contact details look reasonable
  • No contact email found anywhere on the page.
  • Page contains phishing language (account verification, suspension warnings, etc.).
  • Scam family match: Phishing Patterns.
  • Phone number listed (12345678(1234).
  • Postal address visible on the page.
  • Links to 4 social profiles.

Domain & Encryption

Domain History
Age13 years old
RegistrarHidden
RegisteredSep 9, 2013
ExpiresUnknown
Owner privacyVisible
Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerGoogle Trust Services · WE1
ExpiresAug 16, 2026 (42d)
Self-signedNo
Hosting & Technology
HostingCloudflare, Inc.
Server locationUS
Web servercloudflare

Server Reputation

Abuse Intelligence
Confidence score0%
Reports on file0
ISPCloudflare, Inc.
Usage typeContent Delivery Network

Scam-Type Likelihood

2 scam-type patterns detected
Scam-Type Likelihood

2 of 13 categories showed signals

We check every URL against 13 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.

Top match: Fake Shop
Fake Shop
Moderate likelihood
56/100
  • Page contains e-commerce copy (cart / checkout / shipping).
  • Fake-urgency countdown / high-pressure copy.
  • Multiple contact / trust-signal red flags on the page.
  • E-commerce page with multiple non-delivery red flags (missing real contact info, very young domain, crypto-only checkout, or fake-urgency).
Phishing
Moderate likelihood
40/100
  • Phishing copy patterns in the scraped page.
  • Primary scraped category is phishing / credential-harvest.
  • AI analyst tagged this as phishing / data-harvesting.

Fake shop — do not order

Signals common to non-delivery scam shops were detected on this site.

  • Do not interact with driksjb11jul.kaisen.my.id

    Do not enter credentials, deposit money, download files, or install browser extensions from this site.

  • If you already paid by card or PayPal — start a chargeback

    Contact your bank or card issuer and dispute the charge as "goods not received" or "merchant fraud." PayPal users can open a case in the Resolution Centre. Act within 120 days for card chargebacks in most jurisdictions.

  • Save every piece of evidence

    Screenshots of the checkout, order confirmation emails, any chat transcripts, and the product listing page. Chargeback and fraud reports go faster when you have receipts.

  • Report the shop

    Report to the FTC (reportfraud.ftc.gov), Action Fraud UK, or your local consumer-protection body. Post the URL on the MalwareTips scam forum so other buyers can find it.

    Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
ListedCheck ↗
AbuseIPDB
Not listedCheck ↗

Referenced Domains

Outbound domains this page links to or loads resources from. Each links to its own security scan.

Safety FAQ

Common questions about this site, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

  • Our automated security review flags driksjb11jul.kaisen.my.id as dangerous. Multiple threat indicators were detected — treat the site as a scam until proven otherwise.
  • No — driksjb11jul.kaisen.my.id scored 1/100 on our trust scale. We detected active threat indicators, so we recommend avoiding the site entirely.
  • Yes. driksjb11jul.kaisen.my.id presents a valid TLSv1.3 certificate issued by Google Trust Services · WE1, expiring in 42 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.
  • driksjb11jul.kaisen.my.id is 12.8 years old, registered on 9/9/2013. Scam domains are often freshly registered — a site under 6 months old warrants extra caution.
  • 11 out of 92 antivirus engines in our malware network flagged driksjb11jul.kaisen.my.id as malicious or suspicious (11 outright malicious). Even one detection is a meaningful signal.
  • No. driksjb11jul.kaisen.my.id is not currently listed on the major browser blocklist feeds that modern browsers use.
  • driksjb11jul.kaisen.my.id resolves to an IP operated by Cloudflare, Inc. in US (usage type: Content Delivery Network). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.
  • This is a permanent record of the scan run on July 4, 2026. The verdict and evidence above reflect that scan and do not change on their own. If circumstances around driksjb11jul.kaisen.my.id have changed, MalwareTips staff can run a fresh scan, which re-runs every check from scratch and publishes an updated report.

Final Verdict

0
Trust / 100
Final Verdict·driksjb11jul.kaisen.my.id
DANGEROUS

This is a phishing page designed to steal Mobile Legends game accounts by impersonating the official Codashop top-up service. Multiple security engines have flagged it as a credential-harvesting threat. Do not enter your login details or payment information.

Do not enter your Mobile Legends ID, Google password, or payment details on this site. If you have already provided information, change your account passwords immediately and enable two-factor authentication.

AV engines
92
MT passes
2
Net signals
3
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Dangerous reports

Browse all reports
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.