https://infomax.mk
104.21.12.35 · Cloudflare, Inc.
Toronto, Canada
—
200 · 95.0s
Valid· WE1, Google Trust Services, US
COMPLETED
No KB/IOK detections were recorded for this scan.
news_media | technology | ecommerce | other · 7/19/2026
The page presents INFOMAX.MK branding and uses the domain infomax.mk, which appears to be the official site for the brand. However, the page shows signs of credential capture risk via SPA behavior (0 static forms in HTML but heavy external script usage and dynamic rendering), multiple external trackers, and embedded iframes. While impersonation signals are weak or absent, the combination of hidden inputs, heavy third-party scripts, and iframe usage plus the WAF/Cloudflare hosting indicates potential for credential harvesting through a dynamic interface, warranting closer scrutiny for abuse rather than immediate labeling as phishing solely based on visuals.
Capture
Stages: 3
Canonical: Late Render (+3s)
Changed: No
Credential Signals
Forms: 0
Password fields: 0
Late-stage login UI: No
Resource Signals
Resources: 166
Hosts: 19
Domains: 13
The site is the real INFOMAX.MK brand domain and presents typical news/portal branding. The scan notes 0 static forms and hidden inputs, plus a large load of external scripts and iframe embeds, which can be leveraged by SPA-driven credential capture or malvertising. Although there is no direct evidence of credential harvesting forms in the static HTML, the dynamic rendering possibility and reliance on third-party scripts warrant caution. The page should be monitored for potential credential collection behaviors or misconfigurations that could enable abuse. If abuse is suspected due to dynamic forms or hidden inputs, escalate for further investigation and monitoring.
Monitor