ScanMalware.com

Security Scan Report: dpd-ptrsvu.cfd

Site favicon
Submitted: Dec 10, 2025, 5:13:20 AMCompleted: Dec 10, 2025, 5:14:34 AMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 2 countries across 2 domains to perform 52 HTTP transactions. The main domain is dpd-ptrsvu.cfd and was registered NaN years ago.

Submitted URL: https://dpd-ptrsvu.cfd/ptr/

AI Security Verdict

High Risk

Confidence: 95%

9
Risk Score

Phishing page impersonating DPD, high risk due to brand spoofing and social engineering.

Risk Factors
Brand impersonation (DPD) on a newly registered domain (<7 days)
Domain is unranked in Cisco Umbrella (low reputation)
Google Safe Browsing social engineering threat detected
Urgent/threatening language to compel user action
Form collecting personal data (address) without legitimate purpose
Domain age information unavailable

Details

Page Title

DPD - Envio de encomendas para clientes empresariais e particulares » DPD

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

corporate business

(36%)

Domain Information

The domain 'dpd-ptrsvu.cfd' uses the .cfd top-level domain and has no subdomain. Count 10 characters in 'dpd-ptrsvu' split between 1 vowel and eight consonants; it also includes 1 hyphen. Tokenizing the label suggests five words: d, pd, ptr, s, vu. The median word length lands at two characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://dpd-ptrsvu.cfd/ptr/

Page Load Overview

11.26s
Total Load Time
52
HTTP Requests
2
Domains
2.4 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:80 chars
Detector Agreement:67%

Website Classification

Primary Category

corporate business36% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

corporate business
36%
phishing/scam
20%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1243.165.197.107Jakarta, Jakarta, Indonesia
AS132203Tencent Building, Kejizhongyi Avenue
10104.18.180.27United States
AS13335CLOUDFLARENET
102606:4700::6812:b51bUnited States
AS13335CLOUDFLARENET
10104.18.181.27United States
AS13335CLOUDFLARENET
102606:4700::6812:b41bUnited States
AS13335CLOUDFLARENET
525--

Detected Technologies3

X-UA-Compatible
100%
WordPress
65%
HTTP/3
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T188E3327174A1101B0A7BD0CB62AD750B1A13FA0FD626CDCE715C92284FDEAAF34E2759

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:N6H0RhAsTFw5Fd9kiDSlV1kaVSyNT//YmZMjjXPIbMGHfreotKepdBG5BDsxST:NY0RhAsTFw5Fd9kiDSlV1kaVSyNT//Yv

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:153802:I6I8ALIsNG8jIKKKgEGEAMktkQahEoilkAAVgRiABCDJEKRTAhskMOjSpICBlUWGhooCtBrYAwEEccB0XcBOZAREEAGnCCGy

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:efc7efffe7e70000
Perceptual Hash:b3b109a6ccccce4e
Difference Hash:1c9e1e1a0e0c331b
Wavelet Hash:c7c3c7efe7c70000
Color Hash:#79d2aa

Other Hashes

Crop Resistant:1c9e1e1a0e0c331b,e4f6f96c6c796963,001024b2b2300810

Scan History

Scan history not available

Unable to load historical scan data