ScanMalware.com

Security Scan Report: windows-security.ddns.net

Redirected to: https://www.microsoft.com/de-de

Submitted: Mar 4, 2026, 12:08:43 AMCompleted: Mar 4, 2026, 12:10:13 AMpubliccompleted
Loading additional data...

Summary

This website contacted 10 IPs in 5 countries across 13 domains to perform 1 HTTP transaction. The main domain is microsoft.com and was registered NaN years ago.

Submitted URL: http://windows-security.ddns.net/

Effective URL: https://www.microsoft.com/de-deRedirected

AI Security Verdict

Moderate Risk

Confidence: 70%

4
Risk Score

Redirects from an unranked DDNS domain to Microsoft; no malicious content detected but the initial URL is suspicious.

Risk Factors
Unranked, low‑reputation domain presenting a major brand
Multiple redirects (4) from a suspicious DDNS subdomain
High JavaScript obfuscation score (potentially suspicious, though no malware detected)
Safety Factors
Final destination domain matches the claimed brand (Microsoft)
No forms collecting credentials or payment information
No malicious Indicators of Compromise matches
HTTPS connection to the final site
Domain age information unavailable

Details

Page Title

Microsoft – AI, molnet, produktivitet, datorer, spel och appar

Scan Type

public

Language

🇩🇪

German

(80% confidence)

Category

technology software

(41%)

Domain Information

The domain 'windows-security.ddns.net' uses the network infrastructure generic top-level domain (.net) with subdomain 'windows-security'. The registrable portion 'ddns' spans 4 characters containing zero vowels alongside four consonants. Splitting it apart reveals 2 words: d, dns. Expect 2 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://windows-security.ddns.net/

Page Load Overview

9.94s
Total Load Time
112
HTTP Requests
13
Domains
829 KB
Total Size

Language Analysis

Primary Language

🇩🇪German
Code: de
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:de
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:de-DE
Text Length:6,506 chars
Detector Agreement:80%

Website Classification

Primary Category

technology software41% confidence
Type: spa
Method: ml+structural

All Detected Categories

technology software
41%
e-commerce shopping
28%
corporate
25%
forum
20%

Detected Features

Search
OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1320.250.198.32Zurich, Zurich, Switzerland
AS8075Microsoft Corporation
1120.190.159.71France
AS8075
11146.75.121.91Switzerland
AS3215
1140.126.31.67United States
AS16625
1113.107.246.44Finland
AS1299
1123.197.128.15GermanyUnknown
1123.52.181.212UnknownUnknown
1113.107.246.45United States
AS8075Microsoft Corporation
112.20.142.67UnknownUnknown
1183.193.94.54Pau, Nouvelle-Aquitaine, France
AS3215Orange
11210--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T11514C731F0F1B53A868F31FAE5595755BA93EB8397848FF3B08E45181F82798AE03059

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:xnzTypuyi8HDms0Ns0B3V0/KKVEBopgzBP4UQK/Q/B9G3cYJ9lBnRfWDRT3nzE9J:YFiBsssi0CUEqpPfH8zmvqAheW5l0A4B

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:198720:gnG7JqAofUG22MDJASYDDsIIgNwdCIEgoAoEYKkIAcEQEH2BDIFEJx8KZYAVnhWigSRWwxFAGgAidgzQWZuCKDNBkxNMBASk

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:e060e00000ffffff
Perceptual Hash:c240cebd1b99da35
Difference Hash:81c4c8813f490861
Wavelet Hash:e060e00000ffffff
Color Hash:#e09a6c

Other Hashes

Crop Resistant:81c4c8813f490861,d2f2d3f3c28204fc,80c0ccc881731f89

Scan History

Scan history not available

Unable to load historical scan data