MalwareTips
DANGEROUS

Phishing site — do not log in

Flagged on major browser safety blocklists as social engineering. This page looks designed to steal credentials. Don't log in — and if you already did, change the password anywhere you reused it and turn on two-factor authentication.

Security Review

Is shtruz494.github.io legit or a scam?

Our verdict:Dangerous· 10/100

Phishing clone of Steam login on a zero-day-old GitHub subdomain already blocked by major browser lists.

Top reasons
Domain created today with no business history or registration.Explicitly flagged by browser blocklists for social engineering.Hosts a confirmed clone of Steam's login page.
shtruz494.github.ioScanned 9d ago
Post Facebook
0
Trust score
DANGEROUS
Heuristics 0·MT 15
Category tags
phishing#Phishing#Clone Site90% MT confidence
Warning signals (1)
Some abuse reports (37%)
Positive signals (1)
Encrypted connection

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence
Data unavailable
Domain Age
0 days old
Registration date unknown
MT Intelligence
Dangerous
Critical likelihood · 90% confidence

MT Intelligence

Advanced threat intelligence
MT Security Analyst
Critical scam likelihoodengineMT · Guardiantrust15/100
MT AgentLive web researchVisual inspectionNetwork correlation
0%
Confidence
The site mimics Steam's community login at the /steam/ path on a domain registered only today. Browser blocklists explicitly flag it as social engineering while the hosting IP carries 18 abuse reports. Evidence from four independent threat databases lists the exact URL as phishing. Visual analysis shows a clean GitHub 404 shell but the underlying content is a known Steam impersonation template. No legitimate business or positive signals exist to offset these red flags.
Full dossier
Analysis complete

Page Content

The page loads as a standard GitHub Pages 404 but hosts a Steam login clone at /steam/. No legitimate content or business information is present.

Infrastructure

Hosted on GitHub Pages with valid SSL yet the IP shows moderate abuse history. Domain age is zero days with no redirects.

Domain History

Registered today with no prior history or business registration. Privacy protection is disabled but no owner details are available.

Web Reputation

Four separate threat intelligence sources flag the domain and specific Steam-mimicking path as phishing with no positive mentions found anywhere.

Risk Factors
4
  • Domain created today with no business history or registration.
  • Explicitly flagged by browser blocklists for social engineering.
  • Hosts a confirmed clone of Steam's login page.
  • Hosting IP has 18 prior abuse reports.
AI Recommendation
Avoid the site completely and never enter login details. Report the URL to Steam support if you received it via message or email.
Scam network detected
1 linked domain correlated

Evidence confirms this site is a clone of steamcommunity.com.

steamcommunity.com
Next-gen fraud intelligence
Evidence-backedCross-checked

Website Preview

Screenshot of shtruz494.github.io
LIVE RENDER
shtruz494.github.io

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

Visual Screenshot Analysis

We capture a fresh screenshot of the live page and ask a vision model to look for scam visual patterns — fake trust badges, countdown timers, overlay pop-ups, and visual clones of legitimate brands.

0
/ 100
No visual red flags

No scam visual patterns detected

Standard GitHub Pages 404 error page with clean, professional design and no scam indicators.

Visual risk0/100

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for shtruz494.github.io, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age
0 days
Brand-new domains are higher-risk by default.
Business registration
No public record found
Could not match the site to a registered company — common for small sites.
Clone check
Clones steamcommunity.com
The page impersonates a well-known brand's site.
Typosquat check
No look-alike match
The domain doesn't resemble any well-known brand's spelling.
Web mentions
4 scam reports
Key findings
6 headline facts from open-web research
  • Domain shtruz494.github.io listed as Phishing on malwareurl.com (2026-05-11, AS54113 Fastly)
  • Specific URL https://shtruz494.github.io/steam/ flagged as phishing on phishstats.info (detected 5/11/2026)
  • Flagged on recentscam.com with risk score 25/100 for suspicious activity
  • Reported as phishing by OpenDNS on urlquery.net
  • Very new domain (age 0 days per query); multiple GitHub.io phishing reports on same IP range
  • No user reviews, Reddit discussions, or positive mentions found in searches
Scam reports (4)
Direct quotes from public scam databases, forums, and news.
  • malwareurl.comopen

    "shtruz494.github.io , (AS54113) FASTLY, Phishing, 2026-05-11"

  • phishstats.infoopen

    "Sign In. https:// shtruz494.github.io /steam/. Domain: github. 5/11/2026"

  • recentscam.comopen

    "shtruz494.github.io is flagged in our threat intelligence database (risk score: 25/100)."

  • urlquery.netopen

    "OpenDNS, shtruz494.github.io , phishing"

Impersonation / typosquat
Clone of steamcommunity.com

Hosts /steam/ path mimicking Steam login on GitHub.io

Research summary
Narrative write-up from our AI analyst, grounded on the facts above

malwareurl.com, phishstats.info, recentscam.com and urlquery.net each list shtruz494.github.io as a phishing domain targeting Steam users. All four sources note the recent creation date and the /steam/ login path. No positive reviews or legitimate business mentions appear in any searched sources.

Scam Network Intelligence

Cross-site correlation

This site shares signals with a broader cluster

High correlation

Many scams don't operate alone. We correlate third-party scripts, hosting infrastructure, brand-impersonation signals, and the AI evidence package to detect when a site is part of a broader scam network.

Suspicion score
0/100
ClearLowModerateHighCritical
Evidence (2)
  • Evidence confirms this site is a clone of steamcommunity.com.
  • Domain is only 0 days old and already carries multiple network-level red flags.
Linked signals (1)
Clone of steamcommunity.com

Security Scans

Blacklist Check
This URL appears on threat lists

Detected threat categories: SOCIAL_ENGINEERING.

Domain & Encryption

Domain History
Age0 days old
RegistrarHidden
RegisteredUnknown
ExpiresUnknown
Owner privacyVisible
Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerLet's Encrypt · R12
ExpiresJul 5, 2026 (39d)
Self-signedNo
Hosting & Technology
HostingGitHub, Inc.
Server locationUS

Server Reputation

Abuse Intelligence
Confidence score37%
Reports on file18
ISPGitHub, Inc.
Usage typeContent Delivery Network

Scam-Type Likelihood

2 scam-type patterns detected
Scam-Type Likelihood

0 of 13 categories showed signals

We check every URL against 13 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.

Top match: Phishing
Phishing
Moderate likelihood
0/100
  • Google Safe Browsing flagged this as social engineering / phishing.
  • AI analyst tagged this as phishing.
Brand Impersonation
Moderate likelihood
0/100
  • AI analyst tagged this as a brand / clone-site impersonation.
  • Clustered with known brand-impersonation infrastructure.

Phishing site — act fast

This page shows signs of attempting to steal credentials or impersonate a trusted brand.

  • Do not interact with shtruz494.github.io

    Do not enter credentials, deposit money, download files, or install browser extensions from this site.

  • If you already typed your password — change it now

    Change the password on the legitimate site and anywhere else you re-used it. Turn on two-factor authentication. Review recent account activity.

  • Report the phishing URL

    APWG (Anti-Phishing Working Group) accepts phishing reports at reportphishing@apwg.org. Google Safe Browsing reports help protect other users.

    Open
  • Get help on the forum

    MalwareTips members can help you assess damage and next steps.

    Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
ListedCheck ↗
AbuseIPDB
Not listedCheck ↗
Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Safety FAQ

Common questions about this site, answered from the scan data on this page. These are auto-generated — not hand-written — so they always match the underlying report.

  • Our automated security review flags shtruz494.github.io as dangerous. Multiple threat indicators were detected — treat the site as a scam until proven otherwise.

Final Verdict

0
Trust / 100
Final Verdict·shtruz494.github.io
DANGEROUS

This is a phishing clone of Steam's login page hosted on a brand-new GitHub subdomain. Browser blocklists flag it for social engineering and multiple threat feeds confirm the malicious intent. Do not visit or enter any credentials.

Avoid the site completely and never enter login details. Report the URL to Steam support if you received it via message or email.

AV engines
MT passes
2
Net signals
1
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Dangerous reports

Browse all reports
Dangeroustrust1
loureiru.lol
30m ago
Read the review
Dangeroustrust14
cinewhale.cc
49m ago
Read the review
Dangeroustrust39
kabjember.com
2h ago
Read the review
Dangeroustrust41
by42.arswdppo.top
2h ago
Read the review
Dangeroustrust21
astral-games.xyz
2h ago
Read the review
Dangeroustrust25
oneshippros.com
2h ago
Read the review
Dangeroustrust34
movies4u.as
3h ago
Read the review
Dangeroustrust40
cineby.gd
3h ago
Read the review
Dangeroustrust14
lipopeakdrops.com
3h ago
Read the review
Dangeroustrust15
yooutube.com
7h ago
Read the review
Dangeroustrust1
youareanidiot.com
7h ago
Read the review
Dangeroustrust12
flixhd.cc
7h ago
Read the review
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.