Critical Threat

Phishing site — do not log in

A Google login is shown on an unrelated domain — classic credential-harvest pattern. Do not enter credentials. Open the real service from a trusted bookmark or app.

Security Review

Is mail.mmma.rumahsakit.de legit or a scam?

Critical Threat: Phishing

Recommended action:Do not enter credentials. Open the real service from a trusted bookmark or app.

This assessment combines 9 completed security checks into one public risk profile. Review the evidence and missing checks below before deciding whether to interact with mail.mmma.rumahsakit.de.

Cross-checked against 9 completed checks 3 raised a concern
Open-web research was partially available; the verdict uses the other completed checks.
mail.mmma.rumahsakit.deScanned Jul 17, 2026
Risk profile
Critical Threat
Threat type
Phishing
Evidence strength
Strong
Recommended action
Do not sign in
Technical score

Legacy trust score: 1/100

Score breakdown
Heuristics 0·MT 12
Category tags
phishinggamingHow sure we are: High
Technical red flags (3)
12 of 92 engines flaggedImpersonates GoogleCredential-harvest pattern
Positive signals (3)
No Google Safe Browsing matchEncrypted connectionNo significant IP abuse signal

These checks passed — but they don't clear the site. Valid SSL and a calm hosting IP only show that parts of the infrastructure work normally. They do not prove the business is real or cancel the warning signals above.

View density

At a glance

The most useful evidence from this scan, separated from the final verdict so you can judge the signals yourself.

9 checks completed
Antivirus engines
12/92
Engines flagged this URL
Domain registration
Registration date unknown
Operator identity
Claimed Only
The site provides an identity or contact claim that was not independently verified
How this report was created
Checks completed9
Open-web researchPartial
AnalysisAI-assisted synthesis
Scan timeJul 17, 2026

The public risk profile combines the completed automated checks into one consistent interpretation. A staff review is only claimed when explicitly identified on the report.

Intelligence

Advanced threat intelligence
Analysis
Critical ThreatengineMT · GuardianThreat pattern matchNo specific pattern
MT AgentLive web researchVisual inspection
92%
Confidence
Bottom line

The URL sits on mail.mmma.rumahsakit.de, a subdomain of a German hospital domain that has no connection to PUBG Mobile or any gaming service. The page shows multiple reward IDs and item lists that promise free skins and upgrade materials if the visitor logs in. A visible login form offers Twitter and Facebook buttons, which matches the classic credential-harvest pattern. Six named engines including Kaspersky, Fortinet, and Emsisoft all classify the page as phishing. The hosting IP carries a clean abuse score, yet the domain itself is not indexed in global traffic rankings and carries no verifiable business registration in the checked sources data. No scam reports or positive reviews appear in our research, but the technical signals alone are decisive. The combination of brand impersonation, login form, and multiple engine detections indicates the page is built to steal account credentials.

Full analysis

Page Content

The page title reads "PUBG MOBILE EVENT" and lists specific player IDs alongside promised rewards such as Naruto skins, Ferrari vehicle wraps, and upgrade materials. Large buttons labeled "Log in With Twitter" and "Log in With Facebook" sit directly above a username and password field. The text claims the visitor must connect an account to claim the items.

Infrastructure

The site loads from IP 103.52.114.215 with a valid Let's Encrypt certificate that expires in 89 days. Eleven of 92 engines flag the page as malicious, with alphaMountain.ai, Emsisoft, Forcepoint, Fortinet, G-Data, and Kaspersky all marking it phishing. The IP itself shows zero abuse reports.

Domain History

The domain is not present in global traffic indexes. Related Indonesian hospital domains exist but have no operational link to this .de subdomain. No verifiable business registration in the checked sources records were located.

Web Reputation

Our research found zero scam reports and zero positive reviews. No independent review aggregators list the domain.

What This Means for You

Entering any credentials on this page sends them to an attacker. Avoid clicking the login buttons or providing account details.

Evidence behind the conclusion
Risk Factors
5
  • Eleven antivirus engines flag the page as phishing, including Kaspersky and Fortinet.
  • Login form present on a page impersonating a game brand on a non-official domain.
  • Subdomain of a hospital domain with no connection to PUBG Mobile.
  • Promises free in-game items in exchange for social-media login.
  • No verifiable business registration in the checked sources or contact information visible.
Recommendation
Do not enter credentials. Open the real service from a trusted bookmark or app.
Next-gen fraud intelligence
Evidence-backedCross-checked

Website Preview

Screenshot of mail.mmma.rumahsakit.de
SCAN-TIME CAPTURE
mail.mmma.rumahsakit.de
3 red flags
Red flags spotted on this page

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site. See full visual analysis →

Visual analysis

Web Research

Findings and citations

Threat Detection

Antivirus Engines

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
ListedCheck ↗
AbuseIPDB
Not listedCheck ↗

Threat Pattern Match

2 threat patterns detected
Threat Pattern Match

2 of 21 categories showed signals

We check every URL against 21 distinct threat categories to identify what kind of pattern is present. This match is not a second risk level. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.

Top match: Phishing
Phishing
Pattern match: High
85/100
  • Login form combined with brand impersonation (credential-harvest pattern).
  • Page impersonates Google in a login flow.
  • AI analyst tagged this as phishing / data-harvesting.
Gaming Scam
Pattern match: High
80/100
  • Tagged as a gaming scam.
  • Free game-currency / generator language.

Technical Details

The plumbing behind the site — who registered it, how it’s encrypted, where it’s hosted, and where it links out. A valid certificate or a calm server doesn’t mean the business is honest — scam sites pass these checks too. Use this to corroborate the verdict, not to overturn it.

Identity

We fetched the page and looked for real-world contact details. Legitimate businesses almost always publish an email on their own domain, a phone number, and a postal address. Scam shops usually don't.

What We Found
No clear contact details on the page
Emails on site's domainNone
Phone numbers(2002-2002
Postal addressNot listed
Linked social profiles0
Signal Summary
Several contact red flags
  • No contact email found anywhere on the page.
  • No postal address visible on the page.
  • Page impersonates Google on a non-official domain (looks like a typosquat).
  • Login form present on a page impersonating Google — credential-harvest pattern.
  • Phone number listed ((2002-2002).

Domain

Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerLet's Encrypt · YR2
ExpiresOct 14, 2026 (89d)
Self-signedNo
Hosting & Technology
HostingPT Cloud Hosting Indonesia
Server locationID
Web serverApache

Infrastructure

Abuse Intelligence
Confidence score0%
Reports on file0
ISPPT Cloud Hosting Indonesia
Usage typeData Center/Web Hosting/Transit

Connections — Referenced Domains

Outbound domains this page links to or loads resources from. Each links to its own security scan.

What to do

Before interacting

Do not enter credentials. Open the real service from a trusted bookmark or app.

If you already paid, signed in or downloaded

Act promptly and follow the steps that match what you shared or opened.

Safer Alternatives

Final Verdict

Threat type
Phishing
Evidence strength
Strong
Technical score

Legacy trust score: 1/100

Final Verdict·mail.mmma.rumahsakit.de
Critical Threat

Why we rated mail.mmma.rumahsakit.de critical threat

mail.mmma.rumahsakit.de is rated Critical Threat for phishing, with strong evidence.

Do not enter credentials. Open the real service from a trusted bookmark or app.

AV engines
92
Domain age
Flagged
12
Scan another URL
Security review completemalwaretips.com/url-scan

Safety FAQ

Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.