appcolonylab-migration.pages.dev
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.
Description of appcolonylab-migration.pages.dev
This domain appears to present itself as a cryptocurrency-related web application branded around “COLONY,” with page text referencing a community-driven Avalanche ecosystem accelerator, decentralized fundraising, liquid vesting, staking, validator programs, and airdrops. The screenshot shows a wallet-connection prompt and an interface focused on claiming token rewards, which suggests the site is designed to interact with users’ crypto wallets rather than provide general informational content.
Based on the domain structure and page content, the site may be attempting to imitate or closely associate itself with the legitimate Colony Lab ecosystem, especially since it references related branding and links to domains such as app.colonylab.io. The use of a Cloudflare Pages subdomain rather than a primary branded domain may indicate a temporary deployment, campaign page, or unofficial clone. At the time of this scan, the content appears to target cryptocurrency users interested in airdrops and Avalanche ecosystem participation.
Safety Assessment for appcolonylab-migration.pages.dev
The scan results show multiple notable risk indicators at the time of this scan. The domain was flagged by 13 out of 91 security engines, with many of those detections classifying it as phishing or otherwise malicious, and it was also listed in a major safe-browsing database for social engineering. In addition, the page design and wording appear to encourage users to connect a cryptocurrency wallet and claim airdrops, which is a common pattern seen in wallet-draining and credential-harvesting campaigns.
There is also a branding concern: the domain name closely resembles Colony Lab branding while using a different host under pages.dev, and the page itself references Colony-related services and assets. That resemblance may indicate a look-alike page intended to gain user trust. Although the malware scan only reported a generic suspicious JavaScript finding and several blacklist sources were clean, the broader multi-engine phishing consensus carries more weight here.
Based on these findings, this website may pose potential risks to visitors, particularly anyone asked to connect a wallet or approve blockchain transactions.
Technical Description
The site was hosted behind Cloudflare infrastructure and resolved to a Cloudflare IP address in Canada at the time of this scan. It presented a valid TLS certificate issued by a mainstream certificate authority, which indicates encrypted transport was available, but HTTPS alone does not verify the legitimacy of the content or operator.
The domain has been registered for several years, expires in 2026, and uses Cloudflare nameservers. DNSSEC appeared to be unsigned at the time of this scan. A malware scan flagged one JavaScript file as suspicious without naming a specific malware family, while the stronger technical concern comes from the phishing-related detections and social-engineering listing rather than from confirmed malware payloads.
Share your experience with this website. Was it safe? Did you encounter any issues?