Security Scan Report: recrypting.provendesignimpact.de

Redirected to:
https://recrypting.provendesignimpact.de/wkqTs/#accounts.receivable@in...
Submitted: Apr 21, 2026, 7:33:05 PMCompleted: Apr 21, 2026, 7:34:14 PMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 1 country across 2 domains to perform 14 HTTP transactions. The main domain is recrypting.provendesignimpact.de.

Submitted URL: http://recrypting.provendesignimpact.de/wkqTs/#[email protected]

Effective URL: https://recrypting.provendesignimpact.de/wkqTs/#[email protected]Redirected

AI Security Verdict

Low Risk

Confidence: 92%

3
Risk Score

The site is flagged by Cloudflare as a phishing page; treat as high‑risk and do not engage.

Risk Factors
Cloudflare phishing flag (strong external indicator)
Unranked / unknown‑age domain
Email address in URL fragment used as lure
No legitimate credential or payment form present
Safety Factors
No concrete malicious signal (no IoC / YARA / Safe-Browsing / IDS / credential form / brand impersonation) — elevated risk rested on domain age or reputation alone; clamped from 8 to 3
Domain age information unavailable

Details

Bot Protection Detected

This website is protected by Cloudflare bot protection. Our scanner was challenged or blocked during access.

Page Title

Suspected phishing site | Cloudflare

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

phishing scam

(86%)

Domain Information

The domain 'recrypting.provendesignimpact.de' uses the German country-code top-level domain (.de) with subdomain 'recrypting'. The second-level label 'provendesignimpact' is 18 characters long holding six vowels versus 12 consonants. It segments into three words: proven, design, impact. Average segment length settles at six characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://recrypting.provendesignimpact.de/wkqTs/#accounts.receivable@infomanagerinc.com

Page Load Overview

0.44s
Total Load Time
14
HTTP Requests
2
Domains
9 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:395 chars
Detector Agreement:100%

Website Classification

Primary Category

phishing scam86% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

phishing scam
86%
technology software
25%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3104.18.94.41United States
AS13335Cloudflare, Inc.
3104.18.95.41United States
AS13335Cloudflare, Inc.
3104.21.83.40United States
AS13335Cloudflare, Inc.
3172.67.211.100United States
AS13335Cloudflare, Inc.
144--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T159A19472FABD043F2193817266B9B70A39A5C047C7A609903ABCC2755F8FF91AD132C1

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:liADa/D+DMFBzLeiO/tjAg5lz+QLZieMu8nRC3vaQxvb0:liEa/SoFnOVLhLZ0u8nM3Cej0

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:4876:ACkAdAhQAFAJgJ0ASACwgCMiQAhAQAEIACDhAkALYBiCHBgABgQYUSDAEBUkIBAQAEiAIggCDABSAOgQoACgEAC6ABQAQAFE

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:df8787ffe7e7ffff
Perceptual Hash:b8389cc7c7c7243c
Difference Hash:203c3c1004040000
Wavelet Hash:9c848080c3c3ffff
Color Hash:#536bac

Other Hashes

Crop Resistant:203c3c1004040000

Scan History

Scan history not available

Unable to load historical scan data