MalwareTips
SUSPICIOUS

Warning signs detected

Zcash Blockbook explorer subdomain flagged as possible malware by multiple scanners despite an old domain and clean IP reputation. Several risk indicators suggest caution. This site might be legitimate — but treat it as unverified until you can independently confirm.

Security Review

Is zcash-blockbook.twnodes.com legit or a scam?

Our verdict:Suspicious· 55/100

Zcash Blockbook explorer subdomain flagged as possible malware by multiple scanners despite an old domain and clean IP reputation.

Top reasons
Multiple security scanners explicitly flag the subdomain as possible phishing or malware.Listed in threat intelligence platforms with malicious tags on related subdomains.No verifiable business registration or owner details found.
zcash-blockbook.twnodes.comScanned 8d ago
Post Facebook
0
Trust score
SUSPICIOUS
Heuristics 98·MT 35
Category tags
blockchain explorer#Phishing75% MT confidence

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence
Data unavailable
Domain Age
6 years old
Registered Feb 2, 2020
MT Intelligence
Suspicious
Moderate likelihood · 75% confidence

MT Intelligence

Advanced threat intelligence
MT Security Analyst
Moderate scam likelihoodengineMT · Guardiantrust35/100
MT AgentLive web researchVisual inspection
0%
Confidence
The subdomain serves a legitimate open-source Blockbook explorer for Zcash, matching the pattern used by other coins on the same parent domain. However, independent security reports explicitly label it as phishing or malware with very low trust scores. The hosting IP shows zero abuse history and the domain is over six years old, which normally supports legitimacy. The current page only displays a standard HTTP 429 rate-limit error with no visible scam elements. These mixed signals, especially the direct scanner flags, keep the overall risk at a moderate level.
Full dossier
Analysis complete

Page Content

The screenshot shows only a standard browser HTTP 429 error page with a sad document icon and reload button. No login forms, wallet prompts, or promotional content appear.

Infrastructure

Hosted on AWS with a valid SSL certificate and an IP that has zero abuse reports. The parent domain twnodes.com has been registered for more than six years.

Domain History

WHOIS data shows the domain is 2307 days old and registered through MarkMonitor. No business registration details were located for the subdomain or parent.

Web Reputation

Multiple scanner reports flag the subdomain as possible phishing or malware, resulting in trust scores near zero. Similar subdomains on the same parent have also appeared in threat intelligence feeds.

Risk Factors
3
  • Multiple security scanners explicitly flag the subdomain as possible phishing or malware.
  • Listed in threat intelligence platforms with malicious tags on related subdomains.
  • No verifiable business registration or owner details found.
Positive Signals
3
  • Domain is over six years old with valid SSL from Amazon.
  • Hosting IP has a perfect abuse score of 0/100.
  • Page content matches the expected open-source Blockbook explorer interface.
AI Recommendation
Avoid entering any wallet details or personal information. Use well-known official Zcash explorers instead until the flags are resolved.
Next-gen fraud intelligence
Evidence-backedCross-checked

Website Preview

Screenshot of zcash-blockbook.twnodes.com
LIVE RENDER
zcash-blockbook.twnodes.com
1Standard browser HTTP 429 error page with sad document icon and reload button

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site. See full visual analysis →

Visual Screenshot Analysis

We capture a fresh screenshot of the live page and ask a vision model to look for scam visual patterns — fake trust badges, countdown timers, overlay pop-ups, and visual clones of legitimate brands.

0
/ 100
No visual red flags

No scam visual patterns detected

Screenshot shows a clean, standard browser error page (HTTP 429) with no scam indicators or suspicious elements present.

Visual risk0/100

What our vision model saw

1 signal

Standard browser HTTP 429 error page with sad document icon and reload button

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for zcash-blockbook.twnodes.com, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age
6.3 yrs
Registered Feb 2020
Business registration
No public record found
Could not match the site to a registered company — common for small sites.
Clone check
Not a clone
No well-known site's layout or branding detected here.
Typosquat check
No look-alike match
The domain doesn't resemble any well-known brand's spelling.
Web mentions
2 scam reports
Key findings
6 headline facts from open-web research
  • - Subdomain of twnodes.com hosting Zcash Blockbook explorer; pattern includes doge-blockbook.twnodes.com, firo-blockbook.twnodes.com, viacoin-blockbook.twnodes.com and others
  • - Scamadviser assigns trust score 0 and notes report by Gridinsoft as possible malware
  • - Gridinsoft flags domain as phishing with trust score 4/100
  • - Listed on Pulsedive for threat intelligence; similar subdomains flagged malicious in Any.Run sandbox analysis (phishing tags)
  • - Hosted on AWS infrastructure (AS16509); mentioned in AhnLab threat report alongside malicious indicators
  • - Blockbook is open-source Trezor Suite backend supporting Zcash and 30+ coins; official explorers exist on other domains like blockbook.zec.zelcore.io
Scam reports (2)
Direct quotes from public scam databases, forums, and news.
  • Scamadviseropen

    "This website has been reported by Gridinsoft as possible malware"

  • Gridinsoftopen

    "Zcash-blockbook.twnodes.com a été signalé comme domaine de phishing . Le schéma est classique: imiter une marque connue, créer un sentiment d' ..."

Research summary
Narrative write-up from our AI analyst, grounded on the facts above

independent review aggregator and Gridinsoft both report the domain as possible malware or phishing with very low trust scores. Similar subdomains have been flagged in sandbox analyses and threat reports. No positive reviews or business registrations were found for the subdomain or parent domain.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Domain & Encryption

Domain History
Age6 years old
RegistrarMarkMonitor Inc.
RegisteredFeb 2, 2020
ExpiresFeb 2, 2028
Owner privacyVisible
Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerAmazon · Amazon RSA 2048 M04
ExpiresAug 30, 2026 (94d)
Self-signedNo
Hosting & Technology
HostingAmazon Technologies Inc.
Server locationUS

Redirect Chain

Hops
1
Cross-domain
No
Lookalike
No
Punycode
No
  • 1301http://zcash-blockbook.twnodes.com/
  • 2429https://zcash-blockbook.twnodes.com/

Server Reputation

Abuse Intelligence
Confidence score0%
Reports on file0
ISPAmazon Technologies Inc.
Usage typeContent Delivery Network

Scam-Type Likelihood

1 scam-type patterns detected
Scam-Type Likelihood

0 of 13 categories showed signals

We check every URL against 13 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.

Top match: Phishing
Phishing
Low-level signals
0/100
  • AI analyst tagged this as phishing.

Warning: phishing patterns

This page shows signs of attempting to steal credentials or impersonate a trusted brand.

  • Treat zcash-blockbook.twnodes.com as unverified

    Do not enter credentials or send money until you have independently verified the business.

  • If you already typed your password — change it now

    Change the password on the legitimate site and anywhere else you re-used it. Turn on two-factor authentication. Review recent account activity.

  • Report the phishing URL

    APWG (Anti-Phishing Working Group) accepts phishing reports at reportphishing@apwg.org. Google Safe Browsing reports help protect other users.

    Open
  • Get help on the forum

    MalwareTips members can help you assess damage and next steps.

    Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
AbuseIPDB
Not listedCheck ↗
Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Safety FAQ

Common questions about this site, answered from the scan data on this page. These are auto-generated — not hand-written — so they always match the underlying report.

  • Our automated security review marked zcash-blockbook.twnodes.com as suspicious. Several warning signs were detected; it may still turn out legitimate, but you should verify it through independent channels before trusting it with money or credentials.

Final Verdict

0
Trust / 100
Final Verdict·zcash-blockbook.twnodes.com
SUSPICIOUS

This is a Zcash blockchain explorer subdomain. Security scanners have flagged it as possible malware or phishing, though the domain itself is years old with a clean hosting IP.

Avoid entering any wallet details or personal information. Use well-known official Zcash explorers instead until the flags are resolved.

AV engines
MT passes
2
Net signals
0
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Suspicious reports

Browse all reports
Suspicioustrust14
cinewhale.cc
57m ago
Read the review
Suspicioustrust58
historyradio.free.nf
2h ago
Read the review
Suspicioustrust21
anidb.app
2h ago
Read the review
Suspicioustrust74
share.dmhy.org
3h ago
Read the review
Suspicioustrust17
lulacloudx.com
3h ago
Read the review
Suspicioustrust51
fugv.zcmasign.eu
3h ago
Read the review
Suspicioustrust50
1xbet.com
3h ago
Read the review
Suspicioustrust57
gelbooru.com
3h ago
Read the review
Suspicioustrust62
snapwins.net
3h ago
Read the review
Suspicioustrust67
roliascan.com
7h ago
Read the review
Suspicioustrust56
getscammed.com
7h ago
Read the review
Suspicioustrust47
thiswebsitewillscamyou.com
7h ago
Read the review
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.