Is messigaul.pages.dev a scam?

Our automated security review flags messigaul.pages.dev as dangerous. Multiple threat indicators were detected — treat the site as a scam until proven otherwise.

Is messigaul.pages.dev safe to use?

No — messigaul.pages.dev scored 12/100 on our trust scale. We detected active threat indicators, so we recommend avoiding the site entirely.

Does messigaul.pages.dev have a valid SSL certificate?

Yes. messigaul.pages.dev presents a valid TLSv1.3 certificate issued by Google Trust Services · WE1, expiring in 85 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.

How old is the messigaul.pages.dev domain?

messigaul.pages.dev is 0 days old. Scam domains are often freshly registered — a site under 6 months old warrants extra caution.

Has messigaul.pages.dev been flagged by antivirus engines?

2 out of 92 antivirus engines in our malware network flagged messigaul.pages.dev as malicious or suspicious (2 outright malicious). Even one detection is a meaningful signal.

Is messigaul.pages.dev on any phishing or malware blacklists?

No. messigaul.pages.dev is not currently listed on the major browser blocklist feeds that modern browsers use.

Where is messigaul.pages.dev hosted?

messigaul.pages.dev resolves to an IP operated by Cloudflare, Inc. in US (usage type: Content Delivery Network). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.

How often is the messigaul.pages.dev report updated?

This is a permanent record of the scan run on June 15, 2026. The verdict and evidence above reflect that scan and do not change on their own. If circumstances around messigaul.pages.dev have changed, MalwareTips staff can run a fresh scan, which re-runs every check from scratch and publishes an updated report.

Security Review

Is messigaul.pages.dev legit or a scam?

Our verdict:Dangerous· 12/100

SafeSuspiciousDangerous

Zero-day gambling drainer site impersonating a legitimate Indonesian slot platform, flagged as phishing by multiple security engines.

Top reasons

Domain registered today with zero operational history — classic disposable drainer pattern.Two antivirus engines flag the page as phishing (alphaMountain.ai, Forcepoint ThreatSeeker).Zero contact information: no email, phone, address, or social links — designed to prevent user complaints or chargebacks.

messigaul.pages.devScanned 3h ago

Post Facebook

Trust score

DANGEROUS

Heuristics 0·MT 18

Category tags

gamblingcrypto fraud#Gambling#Crypto Drainer#Fake Shop92% MT confidence

Technical red flags (2)

2 of 92 engines flagged Domain is 0 days old

Warning signals (1)

Scam-network signals (35/100)

Positive signals (3)

Not on major blacklists Encrypted connection Clean server reputation

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence

2/92

Engines flagged this URL

Domain Age

0 days old

Registration date unknown

MT Intelligence

Dangerous

Critical likelihood · 92% confidence

DANGEROUS

Fake shop — do not order

Domain was registered only 0 days ago — brand-new sites are higher-risk by default. The site shows patterns common to non-delivery scam shops. Don't submit payment details, and if you already paid by card or PayPal, start a chargeback today.

Website Preview

LIVE RENDER

messigaul.pages.dev

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

MT Intelligence

Advanced threat intelligence

MT Security Analyst

Critical scam likelihoodengineMT · Guardiantrust18/100

MT AgentLive web researchVisual inspectionNetwork correlation

Confidence

The domain messigaul.pages.dev was registered today and already exhibits multiple critical fraud signals. Two independent antivirus engines—alphaMountain.ai and Forcepoint ThreatSeeker—flag the page as phishing. The site presents itself as 'MAXWIN X500', an online gambling platform, but offers no legitimate business contact information: no email, phone number, postal address, or social links anywhere on the page. The page loads external content from suspicious domains including rootsec1337.org and pejuangstorybet138.com, typical of drainer-farm infrastructure. The combination of zero age, zero contact data, gambling content, and phishing detections matches the pattern of a cryptocurrency or payment-harvesting drainer designed to steal credentials and funds from users who attempt to register or deposit.

Full dossier

Analysis complete

Page Content

The page mimics an Indonesian online slot-gambling site under the brand 'MAXWIN X500', advertising high-payout games ('slot gacor'), low minimum deposits (10,000 IDR), and multiple payment methods including e-wallets and QR codes. The text is entirely in Indonesian and uses common gambling-site marketing language ('easy to access', 'highest winrate', '24/7 support'). No legitimate business registration, licensing information, or operator details are present.

Infrastructure

Hosted on Cloudflare Pages (172.66.47.167) with a valid SSL certificate issued by Google Trust Services. The domain loads external resources from pintorjaen.com, rootsec1337.org, pejuangstorybet138.com, and standard CDNs. The presence of rootsec1337.org (a known malicious domain) in the resource chain is a strong indicator of compromised or malicious infrastructure.

Domain History

Registered 0 days ago (today). WHOIS privacy is not enabled, but registrar information is unavailable. The instant-launch pattern combined with zero contact information is consistent with disposable drainer domains designed for rapid credential harvesting before takedown.

Web Reputation

alphaMountain.ai and Forcepoint ThreatSeeker both classify the page as phishing. The hosting IP (172.66.47.167) has an abuse score of 0/100 but carries 2 abuse reports. The domain is not indexed in global traffic rankings and carries no positive reputation signals from independent trust aggregators.

Risk Factors

Domain registered today with zero operational history — classic disposable drainer pattern.
Two antivirus engines flag the page as phishing (alphaMountain.ai, Forcepoint ThreatSeeker).
Zero contact information: no email, phone, address, or social links — designed to prevent user complaints or chargebacks.
Loads external content from rootsec1337.org, a known malicious domain associated with credential harvesting.
Gambling-site template with Indonesian language targeting Southeast Asian users — common in regional drainer farms.
Advertises low-friction payment methods (e-wallets, QR codes, pulsa transfers) typical of scam-payment flows.
No business registration, licensing, or operator transparency — operates as anonymous shell.

Positive Signals

SSL certificate is valid and issued by a trusted CA (Google Trust Services).
Hosting IP abuse score is 0/100, indicating no widespread IP-level blacklisting.
No malware or sandbox detections — the threat is credential/payment harvesting, not file-based malware.

AI Recommendation

Do not visit this site, do not create an account, and do not enter any payment information. If you have already entered credentials or payment details, contact your bank or payment provider immediately to report potential fraud and monitor your account for unauthorized transactions. Report the domain to your browser's phishing-report mechanism.

Next-gen fraud intelligence

Evidence-backedCross-checked

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for messigaul.pages.dev, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age

0 days

Brand-new domains are higher-risk by default.

Web mentions

No scam reports found

No complaints, no negative coverage turned up in our sweep.

Research summary

Narrative write-up from our AI analyst

No independent review aggregators or public scam-report databases returned results for this domain, consistent with its zero-day registration status.

Scam Network Intelligence

Cross-site correlation

This site shares signals with a broader cluster

Moderate correlation

Many scams don't operate alone. We correlate third-party scripts, hosting infrastructure, brand-impersonation signals, and the AI evidence package to detect when a site is part of a broader scam network.

Suspicion score

0/100

ClearLowModerateHighCritical

Evidence (2)

Zero contact info, crypto/gambling content, and the domain is only 0 days old — hallmark of a drainer farm.
Domain is only 0 days old and already carries multiple network-level red flags.

Linked signals (1)

Pattern · Contactless Crypto NEW Domain

Antivirus Engines

Detection matrix · live

2 engines flagged this URL

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. Each detection is listed below by engine name — even a single hit is a meaningful signal.

2Malicious0Suspicious60Harmless92Engines

of 92

alphaMountain.ai

Malicious· phishing

Forcepoint ThreatSeeker

Malicious· phishing

2 antivirus engines flagged this URL. Even a single detection is a meaningful signal — treat this site with extra caution and avoid entering credentials, payment info, or downloading any files.

Security Scans

Blacklist Check

Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Contact Verification

We fetched the page and looked for real-world contact details. Legitimate businesses almost always publish an email on their own domain, a phone number, and a postal address. Scam shops usually don't.

What We Found

No clear contact details on the page

Emails on site's domainNone

Phone numbersNone

Postal addressNot listed

Linked social profiles0

Signal Summary

Several contact red flags

No contact email found anywhere on the page.
No phone number listed on the page.
No postal address visible on the page.

Domain & Encryption

Domain History

Age0 days old

RegistrarHidden

RegisteredUnknown

ExpiresUnknown

Owner privacyVisible

Encryption Certificate

StatusValid

ProtocolTLSv1.3

IssuerGoogle Trust Services · WE1

ExpiresSep 9, 2026 (85d)

Self-signedNo

Hosting & Technology

HostingCloudflare, Inc.

Server locationUS

Web servercloudflare

Redirect Chain

Hops

Cross-domain

Lookalike

Punycode

1301http://messigaul.pages.dev/
2200https://messigaul.pages.dev/

Server Reputation

Abuse Intelligence

Confidence score0%

Reports on file2

ISPCloudflare, Inc.

Usage typeContent Delivery Network

Scam-Type Likelihood

1 scam-type patterns detected

Scam-Type Likelihood

1 of 13 categories showed signals

We check every URL against 13 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.

Top match: Fake Shop

Fake Shop

Moderate likelihood

43/100

AI analyst tagged this as a fake shop.
No phone number or postal address anywhere on the page.
Multiple contact / trust-signal red flags on the page.
Domain is 0 days old — very young for a shop.

Scam-Type Likelihood

1 of 13 categories showed signals

Top match: Fake Shop

Fake Shop

Moderate likelihood

43/100

AI analyst tagged this as a fake shop.
No phone number or postal address anywhere on the page.
Multiple contact / trust-signal red flags on the page.
Domain is 0 days old — very young for a shop.

Fake shop — do not order

Signals common to non-delivery scam shops were detected on this site.

Do not interact with messigaul.pages.dev
Do not enter credentials, deposit money, download files, or install browser extensions from this site.
If you already paid by card or PayPal — start a chargeback
Contact your bank or card issuer and dispute the charge as "goods not received" or "merchant fraud." PayPal users can open a case in the Resolution Centre. Act within 120 days for card chargebacks in most jurisdictions.
Save every piece of evidence
Screenshots of the checkout, order confirmation emails, any chat transcripts, and the product listing page. Chargeback and fraud reports go faster when you have receipts.
Report the shop
Report to the FTC (reportfraud.ftc.gov), Action Fraud UK, or your local consumer-protection body. Post the URL on the MalwareTips scam forum so other buyers can find it.
Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing

Not listedCheck ↗

VirusTotal

ListedCheck ↗

AbuseIPDB

Not listedCheck ↗

Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Referenced Domains

Outbound domains this page links to or loads resources from. Each links to its own security scan.

pintorjaen.com content.rootsec1337.org cdn.ampproject.org fonts.googleapis.com fonts.gstatic.com pejuangstorybet138.com res.cloudinary.com cdn-icons-png.flaticon.com

Safety FAQ

Common questions about this site, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

Our automated security review flags messigaul.pages.dev as dangerous. Multiple threat indicators were detected — treat the site as a scam until proven otherwise.
No — messigaul.pages.dev scored 12/100 on our trust scale. We detected active threat indicators, so we recommend avoiding the site entirely.
Yes. messigaul.pages.dev presents a valid TLSv1.3 certificate issued by Google Trust Services · WE1, expiring in 85 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.
messigaul.pages.dev is 0 days old. Scam domains are often freshly registered — a site under 6 months old warrants extra caution.
2 out of 92 antivirus engines in our malware network flagged messigaul.pages.dev as malicious or suspicious (2 outright malicious). Even one detection is a meaningful signal.
No. messigaul.pages.dev is not currently listed on the major browser blocklist feeds that modern browsers use.
messigaul.pages.dev resolves to an IP operated by Cloudflare, Inc. in US (usage type: Content Delivery Network). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.
This is a permanent record of the scan run on June 15, 2026. The verdict and evidence above reflect that scan and do not change on their own. If circumstances around messigaul.pages.dev have changed, MalwareTips staff can run a fresh scan, which re-runs every check from scratch and publishes an updated report.

Final Verdict

Trust / 100

Final Verdict·messigaul.pages.dev

DANGEROUS

A brand-new online gambling site (registered today) with zero contact information, phishing detections from multiple engines, and hallmark drainer-farm infrastructure. Do not enter payment details or personal information.

AV engines

MT passes

Net signals

Scan another URL

Security review completemalwaretips.com/url-scan

Recently scanned

Other Dangerous reports

site-4hencvzd9.godaddysites.com

chloewnavalcert.wasmer.app

1h ago

Read the review

Dangeroustrust1

multipliers-kinetiq.xyz

fiverr-orders-payment.pro

Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…

Loading comments…

This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.