PCrisk.com
php1-whatsapp.com.cn favicon

php1-whatsapp.com.cn

Category: Phishing

Scanned: May 24, 2026, 02:22 PM UTC · First seen: May 24, 2026 · Threat Engines: 20 / 91 · Times Scanned: 1
5 / 100 Trust Score Based on scan findings at the time of analysis
Potentially Dangerous
0 - High Risk50 - Moderate100 - No Threats
Fresh scan recommended
Last scanned 33 days ago - security status may have changed since then.
Not scanned has not been scanned yet. Hit Scan Now to check it.

Scans can take up to 5 minutes to complete. Please keep this tab open - we'll redirect you to the report when it's ready.

Failed
Scan unavailable
Scan failed
Protect yourself from potentially harmful websites
Combo Cleaner's real-time web protection module actively blocks access to scam, phishing & malware-infected websites.
★★★★★ 4.8 / 5 Recommended by PCrisk.com editors Windows · Mac · Android · iOS
Download Combo Cleaner Free scan · no signup

To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.

Screenshot of php1-whatsapp.com.cn Captured May 24, 2026
https://php1-whatsapp.com.cn
Screenshot of php1-whatsapp.com.cn
This website has been flagged as potentially harmful
Screenshot blurred for safety. Multiple security engines flagged potential threats at the time of scanning.
Unknown
Not Ranked - This website does not appear in the Tranco top list
Flagged by 20 of 91 engines
✓ Valid (TLS)
AWS EC2 (us-west-1)
San Jose, United States
jiduncdn
Unknown
54.215.31.113
Domain & WHOIS Information
Registrar Dynadot Inc
Registered Unknown
Expires Unknown
Name Servers ns1.dyna-ns.net
DNSSEC Unsigned
Hosting AWS EC2 (us-west-1)
Reputation & Threat Check 91 security engines checked
20
20 of 91 engines flagged this website Flagged by 20 security vendors at the time of scanning
Not flagged Flagged
Flagged by 20 of 91 engines
Direct Threat Database Sources
Google Not listed Spamhaus DBL Not listed SURBL Listed Spamhaus ZEN Not listed Barracuda Not listed SpamCop Not listed Spamhaus ZRD Not listed URLhaus Not listed Phishtank Not listed QBMA Not listed
View detailed engine results on VirusTotal
File Scan Summary Powered by Quttera Engine
25 files scanned
No threats
23
Low Risk
0
Medium Risk
2
High Risk
0
No threats Low Risk Medium Risk High Risk
forsale.dynadot.com/php1-whatsapp.com.cn?drefid=2071 16.5 KB Flagged: medium risk
/index Flagged: medium risk
forsale.dynadot.com/payment-options 187.6 KB No threats
forsale.dynadot.com/domain-management 187.6 KB No threats
forsale.dynadot.com/free-uspto-trademark-search 187.6 KB No threats
forsale.dynadot.com/payment-plan 187.6 KB No threats
forsale.dynadot.com/sitemap 187.6 KB No threats
forsale.dynadot.com/affiliate 187.6 KB No threats
forsale.dynadot.com/tools 187.6 KB No threats
forsale.dynadot.com/blog 187.6 KB No threats
forsale.dynadot.com/support 187.6 KB No threats
forsale.dynadot.com/help 187.6 KB No threats
Show 13 more...
Quttera flagged medium risk files - is this your website?
Investigate and remove potential threats with Quttera
Remove Malware

Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.

External Links & Domains
278
External Links
14 Flagged
0
Iframes
Clean
23
Referenced Domains
1 Flagged
15
Flagged Resources
Detected
forsale.dynadot.comFlagged: Generic Suspicious Object
https://forsale.dynadot.com/ar/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/de/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/es/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/fr/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/hi/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/id/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/it/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/ja/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/ko/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/pt/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/ru/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/sr/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/zh/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/ar/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/de/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/es/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/fr/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/hi/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/id/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/it/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/ja/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/ko/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/pt/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/ru/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/sr/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
https://forsale.dynadot.com/zh/forsale/php1-whatsapp.com.cn?drefid%3D2071Flagged: Generic Suspicious Object
http://php1-whatsapp.com.cn/?utm_source%3Dforsale-dynadot-logo&#38%3Butm_campaign%3Ddynadot-forsale&#38%3Butm_medium%3Dparked&#38%3Butm_content%3Dphp1-whatsapp.com.cnNot flagged
Show 263 more...
forsale.dynadot.comFlagged: Generic Suspicious Object
apps.apple.comNot flagged
chat.dynadot.comNot flagged
hm.baidu.comNot flagged
instagram.comNot flagged
itunes.apple.comNot flagged
pagead2.googlesyndication.comNot flagged
park.ioNot flagged
php1-whatsapp.com.cnNot flagged
play.google.comNot flagged
widget.trustpilot.comNot flagged
www.clarity.msNot flagged
www.domaining.comNot flagged
www.dynadot.comNot flagged
www.facebook.comNot flagged
Show 8 more...
php1-whatsapp.com.cn Overview

Description of php1-whatsapp.com.cn

The domain php1-whatsapp.com.cn currently appears to resolve to a registrar-hosted landing page advertising the domain for sale rather than an active WhatsApp-related service. The screenshot shows a branded marketplace page with purchase options, payment icons, and contact details for the registrar, which suggests the domain is being offered as inventory instead of operating as a standalone website.

Based on the domain string, the name incorporates the well-known WhatsApp brand alongside an added prefix, which can make it resemble an official or affiliated service even though the visible page is only a sales listing. The available content indicates the page is operated through a domain marketplace environment associated with the registrar, not by WhatsApp or an identifiable independent publisher.

The site therefore appears to function primarily as a domain sale page / parked marketplace listing. It does not presently show original editorial content, user services, or a business storefront beyond the offer to purchase the domain itself.

Safety Assessment for php1-whatsapp.com.cn

Multiple web-classification sources categorize this domain as phishing or fraud-related, and 20 out of 91 security engines flagged it at the time of this scan. That level of multi-engine agreement is a meaningful risk signal, especially because the domain name closely resembles the WhatsApp brand while not appearing to be an official WhatsApp domain. Even though the visible page is a registrar sales landing page, the domain itself may still carry reputation concerns due to prior use, look-alike naming, or abuse patterns associated with the address.

The malware scan produced only a generic suspicious result tied mainly to the registrar's for-sale infrastructure, which by itself would be a low-confidence signal. However, in this case that weaker heuristic is outweighed by the broader phishing consensus from security engines and by the domain's brand-like naming pattern. Blacklist databases included in the scan were largely clean at the time of review, so the evidence is mixed at the blacklist level, but the engine detections remain substantial.

Because the page is currently a domain-for-sale listing, visitors are less likely to encounter active phishing content on the visible homepage right now. Still, based on these findings, this website may pose potential risks to visitors, particularly due to the strong phishing-related reputation signals and the resemblance to a well-known messaging brand.

Technical Description

The domain presented a valid SSL/TLS certificate issued by TrustAsia Technologies with expiry listed as 2026-08-21, which indicates HTTPS was configured at the time of the scan. The site was hosted on infrastructure associated with AWS EC2 in the us-west-1 region, with the server identified as jiduncdn and an IP address of 54.215.31.113. Nameservers point to registrar-managed DNS, which is consistent with a parked or marketplace-hosted domain.

DNSSEC appears to be unsigned, so there is no DNSSEC validation layer in place based on the available records. No major transport-security issue is evident from the certificate alone, but a valid certificate should not be treated as proof of legitimacy; parked, deceptive, and short-lived domains can also use HTTPS.

HTTP Redirect Chain
403 https://php1-whatsapp.com.cn/
Website Insights
Not Ranked
Tranco Rank
Not in Top 1M
Visitors Unknown
Category: Phishing
Rank History (30 days)
No rank data available
1 cookie detected
Essential1
Analytics0
Advertising0
Social0
1 1st party cookie
0 3rd party (trackers)
Dispute This Score For website owners
Believe this score is inaccurate?
If you are the website owner and believe the scan results contain errors or false positives, you can submit a dispute for manual review. Our team typically responds within 1-2 business days.
You will be asked to verify your email before the dispute can be processed.
By submitting this form, you confirm that the information provided is accurate. Disputes are reviewed manually and results may take up to 48 hours to update.
One more step..
To submit your dispute for php1-whatsapp.com.cn, please click the verification link we just emailed you. Once verified, we'll review it within 1–2 business days.
This report was generated automatically and is provided for informational purposes only. Results are based on a point-in-time scan and may contain false positives or incomplete data. This does not constitute a security audit or certification. No vendor in the market can guarantee a 100% detection rate. If you believe this report is inaccurate, please submit a dispute.
Similar Recently Scanned
trzr-hard-ware-wallet.pages.dev screenshot
trzr-hard-ware-wallet.pages.dev
Potentially Dangerous 5/100
trezor-bridge-io-doc.framer.ai screenshot
trezor-bridge-io-doc.framer.ai
Potentially Dangerous 0/100
trezor-secure-suitehub.framer.ai screenshot
trezor-secure-suitehub.framer.ai
Potentially Dangerous 0/100
installed-trrzr-bridge-en.framer.ai screenshot
installed-trrzr-bridge-en.framer.ai
Potentially Dangerous 5/100
us-en-suite.framer.ai screenshot
us-en-suite.framer.ai
Potentially Dangerous 19/100
webpage-terzr-io-cdn.framer.ai screenshot
webpage-terzr-io-cdn.framer.ai
Potentially Dangerous 5/100
trrzur-bridge.framer.ai screenshot
trrzur-bridge.framer.ai
Potentially Dangerous 19/100
pilerlab.com screenshot
pilerlab.com
Potentially Suspicious 30/100

Share your experience with this website. Was it safe? Did you encounter any issues?