ddpayqianbaoxiazaigw.com.cn
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.
Description of ddpayqianbaoxiazaigw.com.cn
The website appears to present itself as a Chinese-language digital wallet and personal finance platform branded as "DDPAY钱包". Based on the page title, navigation labels, and meta description, it claims to offer payment functions, digital asset storage, asset management, and related financial tools for users seeking a convenient wallet or investment-management interface.
The domain itself is unusually long and does not appear to match a widely recognized financial brand. The homepage layout includes registration and login options, feature sections, and promotional language focused on secure payments and asset management. Based on the available content, the site appears to target users interested in digital payments or cryptocurrency-style wallet services rather than general informational content.
Safety Assessment for ddpayqianbaoxiazaigw.com.cn
Multiple independent security signals raise concern about this domain at the time of this scan. It was categorized by several web-classification providers as phishing or fraud-related, and 15 out of 91 security engines flagged it, with many of those detections specifically describing phishing activity. In addition, a malware scan reported one flagged script file (nb.js) as malicious, which may indicate harmful or deceptive functionality embedded in the page.
The site also presents itself as a financial or wallet service, which increases the potential impact of any deceptive behavior because such pages may seek credentials, wallet details, or other sensitive information. Although several blacklist databases were clean at the time of this scan, blacklist coverage can lag behind newly deployed phishing pages, and clean blacklist status does not outweigh the broader multi-engine phishing consensus seen here.
The domain has a very low published trust score, is not ranked among popular sites, and uses branding that does not appear well established based on the available data. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site was reachable over HTTPS with a valid Let's Encrypt certificate that, at the time of this scan, was set to expire on 2026-07-22. It appears to be served by nginx from IP address 154.194.142.190, hosted by Starbow Ltd in Chai Wan, Hong Kong. DNSSEC was not enabled, and WHOIS creation details were unavailable in the provided data, which limits transparency around domain history.
From a security perspective, the most notable technical concern is the flagged JavaScript file at /nb.js, which a malware scan marked as malicious. The page also loads standard frontend assets and external Chinese web-service resources, but no flagged external links or iframes were identified in the supplied scan results. Even so, the combination of phishing classifications and a flagged script suggests the site should be treated cautiously at the time of this scan.
Share your experience with this website. Was it safe? Did you encounter any issues?