abrehamrahi.ir
Category: Malicious
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of abrehamrahi.ir
abrehamrahi.ir appears to present itself as a Persian-language cloud storage and file-sharing service. The page title and meta description describe a platform for storing files online, organizing them, and sharing them with others, while the homepage screenshot shows a modern landing page with login and sign-up options plus mobile and desktop interface mockups.
Based on the visible branding, the site seems to operate under the name "ابرهمراهی" and may be targeting users in Iran or Persian-speaking audiences. Its apparent purpose is similar to an online storage or personal file management platform, offering remote access, upload capability, and sharing features rather than retail or media content.
Safety Assessment for abrehamrahi.ir
This domain shows several risk indicators at the time of this scan. It was flagged by 10 out of 91 security engines, and multiple web-classification sources associated it with phishing, fraud, or malicious website activity. Although one malware scan reported no directly flagged files, that same scan still applied a generic malicious label to the domain and many internal resource URLs, which may indicate suspicious patterns rather than confirmed malware payloads.
Blacklist results were mixed: several major threat databases did not list the domain at the time of checking, but one blacklist source did include it. The site also presents itself as a cloud storage service, a category that can be abused for credential harvesting or malicious file delivery when trust signals are limited. Because there is meaningful multi-engine detection consensus rather than a single isolated heuristic, the negative findings carry more weight here.
Based on these findings, this website may pose potential risks to visitors at the time of this scan.
Technical Description
The site was reachable over HTTPS with a valid Let's Encrypt certificate expiring on 2026-08-07. It appears to be hosted on IP address 185.22.29.17 in Tehran, Iran, using an openresty web server and infrastructure associated with MCI. The page resources suggest a modern JavaScript-based frontend, including Next.js-style static chunk paths.
Domain age is about 3 years, which can be a mildly stabilizing factor, but DNSSEC status, registrar details, nameservers, and protocol details were not available in the provided scan data. No direct malicious files were identified in the file scan, yet numerous internal links and assets were generically flagged, and the broader reputation data remains the more significant concern at the time of this scan.
Share your experience with this website. Was it safe? Did you encounter any issues?