MalwareTips
Security Review

Is whapptr10.com.cn legit or a scam?

Our verdict:Dangerous· 14/100

Fake WhatsApp Web phishing clone targeting cross-border business users via credential-harvesting QR login, flagged by security vendors and linked to active scam campaigns.

Top reasons
Confirmed clone of web.whatsapp.com with identical QR-code login interface and chat layout, designed to harvest credentials.Typosquat domain (whapptr10 vs. web.whatsapp) — a classic phishing technique to trick users into mistyping the legitimate URL.Flagged as phishing by LevelBlue antivirus engine.
whapptr10.com.cnScanned 4h ago
Post Facebook
0
Trust score
DANGEROUS
Heuristics 27·MT 8
Category tags
phishingclone site#Phishing#Clone Site95% MT confidence

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence
1/92
Engines flagged this URL
Domain Age
Registration date unknown
MT Intelligence
Dangerous
Critical likelihood · 95% confidence
DANGEROUS

Brand impersonation — not the real site

This page is styled as a brand but is not the brand's real site. Go to the official site directly, and treat any download, login, or payment request here as unsafe.

Website Preview

Screenshot of whapptr10.com.cn
LIVE RENDER
whapptr10.com.cn
1Page mimics WhatsApp Web interface layout (chat list on left, conversation panel on right) with branding text referencing 'WhatsApp網頁版' (WhatsApp Web version) in the header

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site. See full visual analysis →

Visual Screenshot Analysis

We capture a fresh screenshot of the live page and ask a vision model to look for scam visual patterns — fake trust badges, countdown timers, overlay pop-ups, and visual clones of legitimate brands.

55
/ 100
High visual risk

Visual red flags detected in the screenshot

The page visually replicates the WhatsApp Web interface structure while overlaying commercial business-service messaging and non-standard navigation tabs; no URL is visible to confirm a domain mismatch, so a clone verdict cannot be set, but the combination of WhatsApp UI mimicry with third-party commercial content warrants elevated suspicion.

Visual risk55/100

What our vision model saw

6 signals

Page mimics WhatsApp Web interface layout (chat list on left, conversation panel on right) with branding text referencing 'WhatsApp網頁版' (WhatsApp Web version) in the header

No visible URL bar to confirm or deny domain mismatch against WhatsApp's legitimate domain, so clone status cannot be confirmed

Page promotes business group-chat services including bulk contract transmission, overseas brand agency groups, and import/export industry information circles — commercial overlay on a WhatsApp-styled

Avatar placeholders in the chat list are blank/pink circles with no profile images loaded, suggesting incomplete asset rendering or placeholder content

Right panel shows a promotional image of briefcases with marketing copy about 'high-quality interface for reviewing cross-border contracts and purchase orders', indicating a commercial landing page dr

Navigation tabs (合作群組 商務洽談, 檔案上傳 資料傳輸, 產業快訊 動態資訊, 高清視訊 遠程語訊) are non-standard additions not present in legitimate WhatsApp Web, suggesting a third-party service impersonating the interface

MT Intelligence

Advanced threat intelligence
MT Security Analyst
Critical scam likelihoodengineMT · Guardiantrust8/100
MT AgentLive web researchVisual inspectionNetwork correlation
0%
Confidence
The domain whapptr10.com.cn is a confirmed clone of web.whatsapp.com, replicating the official WhatsApp Web interface and login process while adding commercial business-service messaging. Our antivirus network detected phishing activity, and the evidence package confirms this is part of an active WhatsApp brand-impersonation campaign — a related domain (whapptr7.com.cn) was flagged by 5 security vendors with a 73/100 risk score. The site has no legitimate business registration, no contact information, no privacy policy, and no official WhatsApp affiliation. The registrar (万商云集(成都)科技股份有限公司) is linked to at least 5–6 other malicious domains. The QR-code login flow mimics the real WhatsApp Web but is designed to harvest credentials or deliver malware. Domain age and infrastructure patterns match known active phishing campaigns targeting business users.
Full dossier
Analysis complete

Page Content

The page presents itself as 'WhatsApp網頁版' (WhatsApp Web version) in Chinese, targeting cross-border business users with promises of bulk contract transmission, overseas brand-agency groups, and import/export industry information. It includes a QR-code login flow identical to the official WhatsApp Web interface, file-upload features, video-call options, and multi-person chat rooms. No official WhatsApp branding, privacy policy, terms of service, or contact information appears anywhere on the page.

Infrastructure

Hosted on IP 104.21.90.253 with valid SSL (Google Trust Services, 87 days to expiry). The IP has zero abuse reports and a clean reputation score. However, WHOIS data is unavailable, and the domain is not indexed in global traffic rankings. External resources load from Cloudflare Insights only.

Domain History

The domain whapptr10.com.cn is a typosquat of web.whatsapp.com and a confirmed clone. Related domain whapptr7.com.cn was registered June 16, 2026, and flagged by 5 security vendors. Both domains share the same registrar (万商云集(成都)科技股份有限公司), which is linked to at least 5–6 other malicious domains. No legitimate business registration exists for whapptr10.com.cn in any jurisdiction.

Web Reputation

LevelBlue flagged the domain as phishing. Independent security reports identify whapptr7.com.cn (the related typosquat) as an active brand-impersonation site targeting WhatsApp users. The evidence package confirms this site fits the known pattern of fake WhatsApp Web phishing sites that harvest credentials or deliver malware via QR/login process, amid reports of dozens of new malicious WhatsApp domains registered daily.

Risk Factors
7
  • Confirmed clone of web.whatsapp.com with identical QR-code login interface and chat layout, designed to harvest credentials.
  • Typosquat domain (whapptr10 vs. web.whatsapp) — a classic phishing technique to trick users into mistyping the legitimate URL.
  • Flagged as phishing by LevelBlue antivirus engine.
  • Related domain whapptr7.com.cn flagged by 5 security vendors and 2 blocklists with 73/100 risk score; both share the same malicious registrar.
  • No legitimate business registration, contact information, privacy policy, or official WhatsApp affiliation.
  • Registrar (万商云集(成都)科技股份有限公司) linked to at least 5–6 other flagged malicious domains.
  • Part of active WhatsApp brand-impersonation campaign targeting business users; security community reports dozens of new malicious WhatsApp domains registered daily.
Positive Signals
3
  • Valid SSL certificate issued by Google Trust Services.
  • Hosting IP has zero abuse reports and clean reputation score.
  • No malware detected in our sandbox analysis.
AI Recommendation
Do not visit this site or enter any credentials. If you have already scanned a QR code or logged in, change your WhatsApp password immediately and enable two-factor authentication. Report the domain to WhatsApp Inc. and your local cybercrime authority.
Next-gen fraud intelligence
Evidence-backedCross-checked

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for whapptr10.com.cn, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Business registration
No public record found
Could not match the site to a registered company — common for small sites.
Clone check
Clones web.whatsapp.com
The page impersonates a well-known brand's site.
Typosquat check
Typosquat of web.whatsapp.com
Deliberate misspelling of a real brand's domain.
Web mentions
1 scam report
Key findings
7 headline facts from open-web research
  • Domain whapptr10.com.cn presents as a Chinese-language 'WhatsApp網頁版' (WhatsApp Web version) targeted at cross-border business users, featuring QR code scanning for login, file upload for contracts, video calls, and bulk document transfer.
  • The site closely clones the official WhatsApp Web interface and login process (scan QR with phone app to sync chats and enable features), but includes no official branding, privacy policy, contact information, or links to WhatsApp Inc.
  • Very recent creation (similar whapptr7.com.cn registered June 16, 2026); shares registrar 万商云集(成都)科技股份有限公司 with at least 5-6 other flagged malicious domains.
  • Explicitly flagged in security reports as part of WhatsApp brand impersonation campaign; whapptr7.com.cn listed as malicious by 5 security vendors and 2 blocklists with 73/100 risk score.
  • Page scanned by urlquery.net multiple times, indicating security community scrutiny for malware/suspicious elements.
  • Fits known pattern of fake WhatsApp Web phishing sites that harvest credentials or deliver malware via QR/login process, amid reports of dozens of new malicious WhatsApp domains registered daily.
  • No positive reviews, business records, or legitimate mentions found; domain age unknown but infrastructure matches active scam campaigns.
Scam reports (1)
Direct quotes from public scam databases, forums, and news.
  • phishdestroy.ioopen

    "PhishDestroy identifies whapptr7[.]com[.]cn as a brand impersonation site, specifically targeting WhatsApp users, and is currently active."

Impersonation / typosquat
Typosquat of web.whatsapp.com

Page fully mimics official WhatsApp Web with identical QR code login flow, chat interface elements, and 'WhatsApp網頁版' branding while promoting '高端跨境商務' features; no official WhatsApp affiliation or contact details.

Research summary
Narrative write-up from our AI analyst, grounded on the facts above

Our research identified whapptr7.com.cn, a related typosquat domain, as an active WhatsApp brand-impersonation site flagged by 5 security vendors and 2 blocklists with a 73/100 risk score. Both whapptr7.com.cn and whapptr10.com.cn share the same registrar (万商云集(成都)科技股份有限公司), which is linked to at least 5–6 other malicious domains. Security reports confirm this site fits the known pattern of fake WhatsApp Web phishing sites that harvest credentials or deliver malware via QR/login process, amid reports of dozens of new malicious WhatsApp domains registered daily. No legitimate business registration, positive reviews, or official WhatsApp affiliation was found.

Scam Network Intelligence

Cross-site correlation

This site shares signals with a broader cluster

Critical cluster

Many scams don't operate alone. We correlate third-party scripts, hosting infrastructure, brand-impersonation signals, and the AI evidence package to detect when a site is part of a broader scam network.

Suspicion score
0/100
ClearLowModerateHighCritical
Evidence (2)
  • Evidence confirms this site is a clone of web.whatsapp.com.
  • Domain is a typosquat of web.whatsapp.com.
Linked signals (2)
Clone of web.whatsapp.comTyposquat of web.whatsapp.com

Antivirus Engines

Detection matrix · live
1 engine flagged this URL

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. Each detection is listed below by engine name — even a single hit is a meaningful signal.

1Malicious0Suspicious55Harmless92Engines
0
of 92
LevelBlue
Malicious· phishing

1 antivirus engine flagged this URL. Even a single detection is a meaningful signal — treat this site with extra caution and avoid entering credentials, payment info, or downloading any files.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Contact Verification

We fetched the page and looked for real-world contact details. Legitimate businesses almost always publish an email on their own domain, a phone number, and a postal address. Scam shops usually don't.

What We Found
No clear contact details on the page
Emails on site's domainNone
Phone numbersNone
Postal addressNot listed
Linked social profiles0
Signal Summary
Several contact red flags
  • No contact email found anywhere on the page.
  • No phone number listed on the page.
  • No postal address visible on the page.

Domain & Encryption

Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerGoogle Trust Services · WE1
ExpiresSep 14, 2026 (87d)
Self-signedNo
Hosting & Technology
HostingCloudflare, Inc.
Server locationUS
Web servercloudflare

Server Reputation

Abuse Intelligence
Confidence score0%
Reports on file0
ISPCloudflare, Inc.
Usage typeContent Delivery Network

Scam-Type Likelihood

2 scam-type patterns detected
Scam-Type Likelihood

2 of 13 categories showed signals

We check every URL against 13 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.

Top match: Brand Impersonation
Brand Impersonation
Moderate likelihood
50/100
  • Domain is a typosquat of web.whatsapp.com.
  • AI analyst tagged this as a brand / clone-site impersonation.
  • Clustered with known brand-impersonation infrastructure.
Phishing
Moderate likelihood
35/100
  • Domain is a typosquat of web.whatsapp.com.
  • AI analyst tagged this as phishing / data-harvesting.

Brand impersonation detected

This page is styled as a known brand but is not the brand's real site.

  • Do not interact with whapptr10.com.cn

    Do not enter credentials, deposit money, download files, or install browser extensions from this site.

  • Go to the brand's real site directly

    Type the brand name into a search engine or open it from your bookmarks — don't use links from emails, SMS, ads, or social posts, which are the delivery vectors for impersonation.

  • Never download or sign in here

    Even if the page "just" offers a download or a giveaway, impersonation pages frequently deliver malware or set up follow-up phishing. Assume anything accepted from this site is hostile.

  • Report the impersonation to the brand

    Most major brands have a dedicated abuse or anti-phishing reporting channel — reporting helps them take the site down and protects other users.

    Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
ListedCheck ↗
AbuseIPDB
Not listedCheck ↗
Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Referenced Domains

Outbound domains this page links to or loads resources from. Each links to its own security scan.

static.cloudflareinsights.com

Safety FAQ

Common questions about this site, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

  • Our automated security review flags whapptr10.com.cn as dangerous. Multiple threat indicators were detected — treat the site as a scam until proven otherwise.
  • No — whapptr10.com.cn scored 14/100 on our trust scale. We detected active threat indicators, so we recommend avoiding the site entirely.
  • Yes. whapptr10.com.cn presents a valid TLSv1.3 certificate issued by Google Trust Services · WE1, expiring in 87 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.
  • 1 out of 92 antivirus engines in our malware network flagged whapptr10.com.cn as malicious or suspicious (1 outright malicious). Even one detection is a meaningful signal.
  • No. whapptr10.com.cn is not currently listed on the major browser blocklist feeds that modern browsers use.
  • whapptr10.com.cn resolves to an IP operated by Cloudflare, Inc. in US (usage type: Content Delivery Network). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.
  • This is a permanent record of the scan run on June 18, 2026. The verdict and evidence above reflect that scan and do not change on their own. If circumstances around whapptr10.com.cn have changed, MalwareTips staff can run a fresh scan, which re-runs every check from scratch and publishes an updated report.

Final Verdict

0
Trust / 100
Final Verdict·whapptr10.com.cn
DANGEROUS

This is a fake WhatsApp Web clone designed to harvest login credentials from business users. The site impersonates the official WhatsApp interface with a QR-code login flow but has no affiliation with WhatsApp Inc., no business registration, and shares infrastructure with other flagged malicious domains.

Do not visit this site or enter any credentials. If you have already scanned a QR code or logged in, change your WhatsApp password immediately and enable two-factor authentication. Report the domain to WhatsApp Inc. and your local cybercrime authority.

AV engines
92
MT passes
2
Net signals
2
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Dangerous reports

Browse all reports
Dangeroustrust42
v-videoapp.com
19m ago
Read the review
Dangeroustrust8
www.amazsurprisebox.com
26m ago
Read the review
Dangeroustrust28
blockfirstcapital.com
26m ago
Read the review
Dangeroustrust33
conseilinternationalrecuperation.com
26m ago
Read the review
Dangeroustrust30
trader.qentrixaltd.com
26m ago
Read the review
Dangeroustrust5
redleaflawrecovery.com
27m ago
Read the review
Dangeroustrust1
abantosolutions.org
29m ago
Read the review
Dangeroustrust17
chargebackltd.com
29m ago
Read the review
Dangeroustrust18
trusttlaw.com
29m ago
Read the review
Dangeroustrust3
primefundsrecovery.com
29m ago
Read the review
Dangeroustrust32
legal-asistencia.com
29m ago
Read the review
Dangeroustrust32
ibs.royalcrowncorp.com
35m ago
Read the review
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.