ScanMalware.com

Security Scan Report: drwindows.de

Redirected to: https://www.drwindows.de/

Submitted: Mar 10, 2026, 3:15:44 PMCompleted: Mar 10, 2026, 3:17:25 PMpubliccompleted
Loading additional data...

Summary

This website contacted 6 IPs in 3 countries across 7 domains to perform 59 HTTP transactions. The main domain is drwindows.de.

Submitted URL: https://drwindows.de

Effective URL: https://www.drwindows.de/Redirected

The Cisco Umbrella rank of the primary domain is #374,205 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 82%

7
Risk Score

Site mimics Microsoft branding on an unverified, low‑rank domain – likely phishing.

Risk Factors
Brand impersonation: brand name (Microsoft) does not match domain
Low Cisco Umbrella ranking for a site claiming a major brand
Unknown domain age increases suspicion
Domain age information unavailable

Details

Page Title

Dr. Windows - Am Puls von Microsoft

Scan Type

public

Language

🇩🇪

German

(80% confidence)

Category

corporate

(70%)

Domain Information

Domain 'drwindows.de' uses the German country-code top-level domain (.de) while skipping any subdomain. The registrable portion 'drwindows' spans 9 characters split between 2 vowels and seven consonants. Breaking it apart gives two words: dr, windows. Average segment length settles at 4.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://drwindows.de

Page Load Overview

2.57s
Total Load Time
57
HTTP Requests
8
Domains
298 KB
Total Size

Language Analysis

Primary Language

🇩🇪German
Code: de
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:de
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:de
Text Length:5,689 chars
Detector Agreement:60%

Website Classification

Primary Category

corporate70% confidence
Type: spa
Method: structural

All Detected Categories

corporate
70%

Detected Features

OG: website
Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
12142.251.141.106United States
AS15169Google LLC
992.204.58.67Strasbourg, Grand Est, France
AS8972Host Europe GmbH
946.22.41.108Germany
AS61157PlusServer GmbH
9212.102.56.178Unknown
AS61157
9142.251.140.168United States
AS15169Google LLC
9216.58.206.91United States
AS15169Google LLC
576--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T10DA3E8B3A989482D5356DD05A685B3DE701F7F37D61209E4FEBB5038E2C26D34E23289

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:MMqzxHeuwNpZGG8/4st17ycs+Su1111SGJ6XJCbfOmZnj/bxMC9O87cR7TzqbW:MNpeuGpZGGc4slsR

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:102973:C4mbAAAEjYAF60QI0QIpkUKVOzEIwFEkHCTEilV2AprA2haYAMFGCgdAMUmQMOERVQi0EwhAh4YQNwMGAiIACgaJEEY1V6oV

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0000ffffffffdfdb
Perceptual Hash:b847314618534ffd
Difference Hash:c81e9ab2a222b6b2
Wavelet Hash:0000cbdbdbfbc3c3
Color Hash:#2dd251

Other Hashes

Crop Resistant:c91e9ab22222b2b2,00d0c9cdc8002c60

Scan History

Scan history not available

Unable to load historical scan data