phishing/scam

English

Domain 'protectionpage2025.cfd' uses the .cfd top-level domain and has no subdomain. Count 18 characters in 'protectionpage2025' containing six vowels alongside 8 consonants; it also includes four digits. Segmentation suggests three words: protection, page, 2025. Median word length is 4 characters. The linguistic tilt is French for 'protection'. Usage also turns up in Chinese (Pinyin) and English contexts.

html/be/99/be9926a5-dda2-4f91-88e2-102a978765a6.html.gz

52c09bcc5f1fda4cfa240382144713b17a74b1643ff207521ded4ace4852a457

viewport

robots

googlebot

bingbot

slurp

google

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;worker-src blob: 'self';frame-ancestors 'none';

child-src https:  chrome-untrusted://new-tab-page/ chrome-untrusted://ntp-microsoft-auth/;connect-src chrome://resources chrome://theme 'self';default-src 'self';font-src chrome://resources 'self';img-src chrome://resources chrome://theme chrome://image chrome://favicon2 chrome://app-icon chrome://extension-icon chrome://fileicon blob: data: 'self';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources chrome://webui-test 'self';style-src chrome://resources chrome://theme 'self' 'unsafe-inline';trusted-types parse-html-subset sanitize-inner-html static-types webui-test-script webui-test-html polymer-html-literal polymer-template-event-attribute-policy lit-html-desktop;frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;frame-ancestors 'none';

base-uri 'none';child-src https:;form-action https://ogs.google.com https://*.corp.google.com;object-src 'none';script-src 'self' 'unsafe-inline' https:;frame-ancestors chrome://new-tab-page/

Dynadot LLC

protectionpage2025.cfd

Abuse

Admin

Cloudflare-NOC

Cloudflare, Inc.

CLOUDFLARENET

[][(![]+[])[+[]]+([![]]+[][[]])[+!![]+[+[]]]+(![]+[])[!![]+!![]]+(!![]+[])[+[]]+(!![]+[])[!![]+!![]+!![]]+(!![]+[])[+!![]]][(!![]+[+(+!![]+[+([]+[][(![]+[])[+[]]+([![]]+[][[]])[+!![]+[+[]]]+(![]+[])[!

Script

Business Help Center

⚠️ High Risk - http://protectionpage2025.cfd/

Requests	IP Address	Location	AS Autonomous System
3	104.21.67.18	United States	AS13335CLOUDFLARENET
1	172.67.167.159	United States	AS13335CLOUDFLARENET
1	2606:4700:3032::6815:4312	United States	AS13335CLOUDFLARENET
1	2606:4700:3037::ac43:a79f	United States	AS13335CLOUDFLARENET
6	4	-	-

Security Scan Report: protectionpage2025.cfd

Summary

AI Security Verdict

Confirmed Scam

Risk Factors

Details

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History