JavaScript is required to use the scan form. Reading existing reports works without it.

whatspp.icu

Category: Phishing

Scanned: May 16, 2026, 04:12 PM UTC · First seen: May 16, 2026 · Threat Engines: 21 / 92 · Times Scanned: 1

5 / 100 Trust Score Based on scan findings at the time of analysis

Potentially Dangerous

0 - High Risk50 - Moderate100 - No Threats

Fresh scan recommended

Last scanned 39 days ago - security status may have changed since then.

Not scanned has not been scanned yet. Hit Scan Now to check it.

Scans can take up to 5 minutes to complete. Please keep this tab open - we'll redirect you to the report when it's ready.

Failed

Scan unavailable

Scan failed

Protect yourself from potentially harmful websites

Combo Cleaner's real-time web protection module actively blocks access to scam, phishing & malware-infected websites.

★★★★★ 4.8 / 5 Recommended by PCrisk.com editors Windows · Mac · Android · iOS

Download Combo Cleaner Free scan · no signup

To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.

Screenshot of whatspp.icu Captured May 16, 2026

https://whatspp.icu

This website has been flagged as potentially harmful

Screenshot blurred for safety. Multiple security engines flagged potential threats at the time of scanning.

Domain Age 1 month

Popularity Rank Not Ranked - This website does not appear in the Tranco top list

Threat Databases Flagged by 21 of 92 engines

SSL Certificate ✓ Valid (TLS)

Hosting Provider Mega II

Server Location Hung Hom, Hong Kong

Web Server nginx

CMS Platform Unknown

IP Address 223.26.63.22

Domain & WHOIS Information

Registrar Gname.com Pte. Ltd.

Registered May 12, 2026

Expires May 12, 2027

Name Servers A8.SHARE-DNS.COM

DNSSEC Unsigned

Hosting Mega II

Reputation & Threat Check 92 security engines checked

21 of 92 engines flagged this website Flagged by 21 security vendors at the time of scanning

Not flagged Flagged

Flagged by 21 of 92 engines

Direct Threat Database Sources

Google Not listed Spamhaus DBL Not listed SURBL Listed Spamhaus ZEN Not listed Barracuda Not listed SpamCop Not listed Spamhaus ZRD Not listed URLhaus Not listed Phishtank Not listed QBMA Listed

View detailed engine results on VirusTotal

File Scan Summary Powered by Quttera Engine

7 files scanned

No threats

Low Risk

Medium Risk

High Risk

No threats Low Risk Medium Risk High Risk

whatspp.icu/javascript%3A 146 B No threats

whatspp.icu/web.js 22.3 KB No threats

whatspp.icu/chunk-vendors.js 2.1 MB No threats

whatspp.icu/chunk-vendors.css 296.8 KB No threats

whatspp.icu/# 9.0 KB No threats

whatspp.icu/favicon.png 2.0 KB No threats

whatspp.icu/tutorial.png 103.2 KB No threats

External Links & Domains

External Links

6 Flagged

Iframes

Clean

Referenced Domains

1 Flagged

Flagged Resources

Detected

whatspp.icuFlagged: Generic Malicious Object

http://whatspp.icu/chunk-vendors.cssFlagged: Generic Malicious Object

http://whatspp.icu/chunk-vendors.jsFlagged: Generic Malicious Object

http://whatspp.icu/favicon.pngFlagged: Generic Malicious Object

http://whatspp.icu/javascript:Flagged: Generic Malicious Object

http://whatspp.icu/tutorial.pngFlagged: Generic Malicious Object

http://whatspp.icu/web.jsFlagged: Generic Malicious Object

http://whatspp.icu/chunk-vendors.cssFlagged: Generic Malicious Object

http://whatspp.icu/chunk-vendors.jsFlagged: Generic Malicious Object

http://whatspp.icu/favicon.pngFlagged: Generic Malicious Object

http://whatspp.icu/javascript:Flagged: Generic Malicious Object

http://whatspp.icu/tutorial.pngFlagged: Generic Malicious Object

http://whatspp.icu/web.jsFlagged: Generic Malicious Object

https://www.wherews.com/whatsapp/qrcode?sesskey%3D1bb9fae8-a4bf-4090-8210-d03d90ff0fa2&amp%3Bt%3D1689131454887Not flagged

whatspp.icuFlagged: Generic Malicious Object

www.wherews.comNot flagged

whatspp.icu Overview

Description of whatspp.icu

The domain whatspp.icu appears to present itself as a WhatsApp Web-related page, using branding, layout, and wording associated with the messaging platform's desktop login flow. The screenshot shows a page titled "Whatsapp" with WhatsApp-style visuals, Chinese-language instructions for linking a device, and a QR-code themed interface intended to resemble a web login or tutorial page.

Based on the domain name and page presentation, this site does not appear to be an official WhatsApp domain. The missing "a" in "whatspp" makes the address closely resemble the well-known WhatsApp brand while differing slightly from the expected spelling, which may indicate an attempt to attract users looking for the legitimate service. No clear operator identity or legitimate business ownership information is visible from the provided scan data.

Safety Assessment for whatspp.icu

Multiple independent signals indicate elevated risk at the time of this scan. The site was categorized by several web-classification providers as phishing or fraud-related, and 21 out of 92 security engines flagged the domain. In addition, the domain closely resembles the WhatsApp brand name and may be a look-alike intended to mislead visitors seeking the legitimate WhatsApp Web service.

The domain is also extremely new, with a reported age of 3 days, which can increase uncertainty and is commonly seen with short-lived phishing infrastructure. While some blacklist databases were clean at the time of this scan, one threat database listed the domain, and the broader multi-engine consensus is notably negative. The malware scan did not report confirmed malicious files, but its generic object labels are lower-confidence signals than the stronger phishing classifications and brand resemblance concerns.

Based on these findings, this website may pose potential risks to visitors.

Technical Description

The site was reachable over HTTPS with a valid Let's Encrypt certificate expiring in August 2026. It appears to be served by nginx from an IP address geolocated to Hung Hom, Hong Kong, with hosting identified as Mega II. The domain uses nameservers on SHARE-DNS infrastructure, and DNSSEC is unsigned.

From a security posture perspective, the combination of a very recently registered domain, unsigned DNSSEC, and a page imitating a major web service raises concern. The scan also noted several internally hosted resources and one external URL associated with the page flow. Although no confirmed malware payloads were identified in the scanned files at the time of analysis, the infrastructure profile does not offset the phishing-related indicators.

HTTP Redirect Chain

No redirects detected - direct connection to destination

Website Insights

Popularity

Not Ranked

Tranco Rank

Not in Top 1M

Visitors Unknown

Category: Phishing

Rank History (30 days)

No rank data available

No cookies data available

Dispute This Score For website owners

Believe this score is inaccurate?

If you are the website owner and believe the scan results contain errors or false positives, you can submit a dispute for manual review. Our team typically responds within 1-2 business days.

Your Email *

Your Name

Domain *

Dispute Reason *

Additional Details *

You will be asked to verify your email before the dispute can be processed.

By submitting this form, you confirm that the information provided is accurate. Disputes are reviewed manually and results may take up to 48 hours to update.

One more step..

To submit your dispute for whatspp.icu, please click the verification link we just emailed you. Once verified, we'll review it within 1–2 business days.

This report was generated automatically and is provided for informational purposes only. Results are based on a point-in-time scan and may contain false positives or incomplete data. This does not constitute a security audit or certification. No vendor in the market can guarantee a 100% detection rate. If you believe this report is inaccurate, please submit a dispute.

Similar Recently Scanned