ScanMalware.com

Security Scan Report: swbonsp.cfd

Redirected to: https://swbonsp.cfd/

Submitted: Mar 17, 2026, 5:27:12 AMCompleted: Mar 17, 2026, 5:28:23 AMpubliccompleted
Loading additional data...

Summary

This website contacted 6 IPs in 1 country across 6 domains to perform 69 HTTP transactions. The main domain is swbonsp.cfd and was registered NaN years ago.

Submitted URL: http://swbonsp.cfd/

Effective URL: https://swbonsp.cfd/Redirected

AI Security Verdict

Confirmed Scam

Confidence: 95%

9
Risk Score

Impersonates Borussia Dortmund on a newly registered domain; confirmed scam.

Risk Factors
Brand impersonation on a brand‑new, unranked domain
Domain age < 7 days (critical risk)
Email‑only form on suspicious domain (potential data harvesting)
Lack of legitimate organizational content
Domain age information unavailable

Details

Page Title

BVB

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

phishing/scam

(40%)

Domain Information

You're looking at domain 'swbonsp.cfd' on the .cfd top-level domain while skipping any subdomain. Count 7 characters in 'swbonsp' holding one vowel versus six consonants. Segmentation suggests 4 words: s, wb, on, sp. Median word length comes out to 2 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://swbonsp.cfd/

Page Load Overview

1.26s
Total Load Time
55
HTTP Requests
6
Domains
2.1 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:4,171 chars
Detector Agreement:100%

Website Classification

Primary Category

phishing/scam40% confidence
Type: static
Method: structural

All Detected Categories

phishing/scam
40%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
10185.199.110.153United States
AS15169
9142.251.127.94United States
AS15169Google LLC
9104.17.24.14United States
AS13335Cloudflare, Inc.
9142.251.140.170United States
AS15169Google LLC
9188.114.96.3United States
AS13335Cloudflare, Inc.
9142.250.201.182United States
AS15169Google LLC
556--

Detected Technologies2

Cloudflare
50%
cdnjs
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T18CE39F359240712F9907B7C8F968E3B673DE213EFA024989BFAC12429355DCD9E1FA05

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:G9gasW1aYfCr++mbm+i2JM7hr6RRnt/oARJhO4ypmkqVqWA7FWeFAuxyizDUEX7H:sarGtilhmh/nRDyX+q9Ee3xHUEb

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:146642:WwQB8EpAMQyoxwAIUhjoSFGgGAQEpBFACZIDgpIBRESHGgDOFseBI4HSOACW8CCQbMFKIUppRLdAAoAEAYYYUJeVECAQcBWI

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:fbf1f1818181ffff
Perceptual Hash:ed69c63c30936b92
Difference Hash:0363230f1f236330
Wavelet Hash:c1f1e1818181f3ff
Color Hash:#79d2b6

Other Hashes

Crop Resistant:0363230f1f236330,c75c1a9e89a8d2c9,b38b47ce9dd87ab5,aa9e8e96968e8eaa,4c9cd16a666c3860,21a9a3a151890f69

Scan History

Scan history not available

Unable to load historical scan data