bafkreifuiu3tudoctwygusc7lktugtwmwhfh7uqn2xafijbcgvbtknc5tu.ipfs.dweb.link
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.
Description of bafkreifuiu3tudoctwygusc7lktugtwmwhfh7uqn2xafijbcgvbtknc5tu.ipfs.dweb.link
This URL is an IPFS gateway address under the dweb.link domain, which is commonly used to access content stored on the InterPlanetary File System (IPFS). The page metadata identifies it as an "IPFS Service Worker Gateway," and the screenshot shows a technical landing page stating that the browser is not supported rather than a conventional consumer-facing website.
Based on the domain structure and page content, this appears to be infrastructure-related web content tied to decentralized file delivery rather than a branded business, store, or editorial site. The broader gateway service is associated with IPFS/Protocol Labs infrastructure, while the specific long subdomain likely represents a content identifier rather than a human-managed standalone domain.
Safety Assessment for bafkreifuiu3tudoctwygusc7lktugtwmwhfh7uqn2xafijbcgvbtknc5tu.ipfs.dweb.link
Scan results indicate elevated risk signals at the time of this scan. The URL was flagged by 17 out of 91 security engines, with multiple detections describing phishing or malicious behavior. In addition, the malware scan reported suspicious findings on the page and flagged associated links/domains with generic malicious or suspicious classifications. Although the visible screenshot shows an IPFS gateway compatibility page rather than an obvious credential-harvesting form, decentralized gateway URLs can serve different content over time or expose content not fully reflected in a single screenshot.
Blacklist data was mixed rather than fully clean. One content-related blacklist source listed the URL, and the domain's IP address was also listed on one mail-reputation blocklist; that DNS-based listing is a weaker signal for website safety than direct phishing detections, but it still adds some caution. The domain itself is old, which would normally be a stabilizing factor, yet the combination of numerous engine detections, phishing-oriented labels, and suspicious scan artifacts outweighs that positive signal here. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site presented a valid Let's Encrypt SSL certificate at the time of the scan, with hosting routed through Cloudflare and infrastructure attributed to Protocol Labs in San Francisco, United States. The page uses the dweb.link/IPFS gateway model, where the long subdomain appears to be a content identifier rather than a traditional branded hostname. DNSSEC was reported as unsigned.
From a security perspective, the main concerns are not basic transport encryption but the reputation signals around the specific hosted content. The scan also noted suspicious embedded or generated resource references and a mail-reputation blocklist hit on the serving IP, though that latter point should be treated as secondary context rather than direct proof of malicious web content.
Share your experience with this website. Was it safe? Did you encounter any issues?