PCrisk.com
bafkreifv4toarzwlzqzc2cfi34btq6zfvwxnepfkcrap4bjuev5wdcclc4.ipfs.dweb.link favicon

bafkreifv4toarzwlzqzc2cfi34btq6zfvwxnepfkcrap4bjuev5wdcclc4.ipfs.dweb[.]link

Category: Phishing

Scanned: May 14, 2026, 04:45 PM UTC · First seen: May 14, 2026 · Threat Engines: 17 / 92 · Times Scanned: 1
5 / 100 Trust Score Based on scan findings at the time of analysis
Potentially Dangerous
0 - High Risk50 - Moderate100 - No Threats
Not scanned has not been scanned yet. Hit Scan Now to check it.

Scans can take up to 5 minutes to complete. Please keep this tab open - we'll redirect you to the report when it's ready.

Failed
Scan unavailable
Scan failed
Protect yourself from potentially harmful websites
Combo Cleaner's real-time web protection module actively blocks access to scam, phishing & malware-infected websites.
★★★★★ 4.8 / 5 Recommended by PCrisk.com editors Windows · Mac · Android · iOS
Download Combo Cleaner Free scan · no signup

To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.

Screenshot of bafkreifv4toarzwlzqzc2cfi34btq6zfvwxnepfkcrap4bjuev5wdcclc4.ipfs.dweb[.]link Captured May 14, 2026
https://bafkreifv4toarzwlzqzc2cfi34btq6zfvwxnepfkcrap4bjuev5wdcclc4.ipfs.dweb[.]link
Screenshot of bafkreifv4toarzwlzqzc2cfi34btq6zfvwxnepfkcrap4bjuev5wdcclc4.ipfs.dweb.link
This website has been flagged as potentially harmful
Screenshot blurred for safety. Multiple security engines flagged potential threats at the time of scanning.
9 years (dweb.link)
Not Ranked - This website does not appear in the Tranco top list
Flagged by 17 of 92 engines
✓ Valid (TLS)
Protocol Labs
San Francisco, United States
Unknown
Unknown
209.94.90.3
Domain & WHOIS Information
Registrar CSC Corporate Domains, Inc.
Registered February 24, 2017 (dweb.link)
Expires February 24, 2027
Name Servers tate.ns.cloudflare.com
DNSSEC Unsigned
Hosting Protocol Labs
This is a subdomain of dweb.link. The WHOIS data above belongs to the parent domain, not to bafkreifv4toarzwlzqzc2cfi34btq6zfvwxnepfkcrap4bjuev5wdcclc4.ipfs.dweb[.]link. The actual creation date of this subdomain is unknown and could be much more recent than the parent.
Reputation & Threat Check 92 security engines checked
17
17 of 92 engines flagged this website Flagged by 17 security vendors at the time of scanning
Not flagged Flagged
Flagged by 17 of 92 engines
Direct Threat Database Sources
Google Not listed Spamhaus DBL Not listed SURBL Listed Spamhaus ZEN Not listed Barracuda Not listed SpamCop Not listed QBMA Listed
View detailed engine results on VirusTotal
File Scan Summary Powered by Quttera Engine
1 file scanned
No threats
1
Low Risk
0
Medium Risk
0
High Risk
0
No threats Low Risk Medium Risk High Risk
bafkreifv4toarzwlzqzc2cfi34btq6zfvwxnepfkcrap4bjuev5wdcclc4.ipfs.dweb.link/# 47.7 KB No threats
External Links & Domains
4
External Links
1 Flagged
0
Iframes
Clean
4
Referenced Domains
1 Flagged
2
Flagged Resources
Detected
bafkreifv4toarzwlzqzc2cfi34btq6zfvwxnepfkcrap4bjuev5wdcclc4.ipfs.dweb.linkFlagged: Generic Suspicious Object
http://bafkreifv4toarzwlzqzc2cfi34btq6zfvwxnepfkcrap4bjuev5wdcclc4.ipfs.dweb.link/data:image/svg+xml%3Bbase64,PHN2ZyB3aWR0aD0iNDAiIGhlaWdodD0iNDAiIHZpZXdCb3g9IjAgMCA0MCA0MCIgZmlsbD0ibm9uZSIgeG1sbnM9Imh0dHA6Ly93d3cudzMub3JnLzIwMDAvc3ZnIj4KPHJlY3Qgd2lkdGg9IjQwFlagged: Generic Suspicious Object
http://bafkreifv4toarzwlzqzc2cfi34btq6zfvwxnepfkcrap4bjuev5wdcclc4.ipfs.dweb.link/data:image/svg+xml%3Bbase64,PHN2ZyB3aWR0aD0iNDAiIGhlaWdodD0iNDAiIHZpZXdCb3g9IjAgMCA0MCA0MCIgZmlsbD0ibm9uZSIgeG1sbnM9Imh0dHA6Ly93d3cudzMub3JnLzIwMDAvc3ZnIj4KPHJlY3Qgd2lkdGg9IjQwFlagged: Generic Suspicious Object
https://cdn.jsdelivr.net/npm/bootstrap-icons@1.11.0/icons/shield-check.svgNot flagged
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.1/css/all.min.cssNot flagged
https://fonts.googleapis.com/css2?family%3DLexend:wght@100..900&display%3DswapNot flagged
bafkreifv4toarzwlzqzc2cfi34btq6zfvwxnepfkcrap4bjuev5wdcclc4.ipfs.dweb.linkFlagged: Generic Suspicious Object
cdn.jsdelivr.netNot flagged
cdnjs.cloudflare.comNot flagged
fonts.googleapis.comNot flagged
bafkreifv4toarzwlzqzc2cfi34btq6zfvwxnepfkcrap4bjuev5wdcclc4.ipfs.dweb[.]link Overview

Description of bafkreifv4toarzwlzqzc2cfi34btq6zfvwxnepfkcrap4bjuev5wdcclc4.ipfs.dweb[.]link

This URL appears to be an IPFS-hosted page delivered through the dweb.link gateway rather than a conventional branded website. The visible content is a simple "EmailLogin" form asking for an email address and mailbox password, with minimal branding and no clear indication of a legitimate organization, service provider, or business identity behind it.

Based on the page layout and wording, the site appears to be presenting itself as a generic webmail or secure mail access portal. However, the domain itself is a long content-addressed IPFS identifier rather than a recognizable mail provider domain, which makes it difficult to attribute the page to any established operator based on available data.

Safety Assessment for bafkreifv4toarzwlzqzc2cfi34btq6zfvwxnepfkcrap4bjuev5wdcclc4.ipfs.dweb[.]link

Multiple independent security signals indicate elevated risk at the time of this scan. The URL was flagged by 17 out of 92 security engines, and several web-classification sources categorized it as phishing or fraud-related. The screenshot also shows a credential-entry page requesting an email password on a non-branded IPFS gateway URL, which is a common pattern associated with credential harvesting.

Although one malware scan reported no directly flagged files, it still noted a generic suspicious-object heuristic tied to the page and one referenced link/domain. In addition, one blacklist source showed a listing while other blacklist checks were clean. The combination of multi-engine phishing detections, phishing-oriented categorization, and the deceptive-looking login prompt materially outweighs the limited clean signals.

Based on these findings, this website may pose potential risks to visitors, particularly anyone asked to enter email account credentials.

Technical Description

The site is served over HTTPS with a valid Let's Encrypt certificate that was valid at the time of scanning, and it resolves to infrastructure associated with Protocol Labs through the dweb.link gateway. Nameservers are on Cloudflare, and DNSSEC appears to be unsigned. The domain itself is older, but that age reflects the gateway domain rather than the specific IPFS-hosted content shown in the screenshot.

From a security perspective, the main concern is not TLS but the page behavior and hosting model: a generic credential form hosted on a decentralized content gateway can make attribution and takedown more difficult. The page also loads common third-party assets such as icon fonts and Google Fonts, but no technical indicator here offsets the stronger phishing-related findings from the scan data.

HTTP Redirect Chain
No redirects detected - direct connection to destination
Website Insights
Not Ranked
Tranco Rank
Not in Top 1M
Visitors Unknown
Category: Phishing
Rank History (30 days)
No rank data available
1 cookie detected
Essential1
Analytics0
Advertising0
Social0
0 1st party cookies
1 3rd party (tracker)
Dispute This Score For website owners
Believe this score is inaccurate?
If you are the website owner and believe the scan results contain errors or false positives, you can submit a dispute for manual review. Our team typically responds within 1-2 business days.
You will be asked to verify your email before the dispute can be processed.
By submitting this form, you confirm that the information provided is accurate. Disputes are reviewed manually and results may take up to 48 hours to update.
One more step..
To submit your dispute for bafkreifv4toarzwlzqzc2cfi34btq6zfvwxnepfkcrap4bjuev5wdcclc4.ipfs.dweb[.]link, please click the verification link we just emailed you. Once verified, we'll review it within 1–2 business days.
This report was generated automatically and is provided for informational purposes only. Results are based on a point-in-time scan and may contain false positives or incomplete data. This does not constitute a security audit or certification. No vendor in the market can guarantee a 100% detection rate. If you believe this report is inaccurate, please submit a dispute.
Similar Recently Scanned
admin-hiexpress.s3.ap-northeast-2.amazonaws[.]com
Potentially Dangerous 5/100
plumeair.eth[.]limo
Potentially Dangerous 5/100
6119365.com screenshot
6119365[.]com
Potentially Dangerous 5/100
areardrome.eth[.]limo
Potentially Dangerous 5/100
koprex.in screenshot
koprex[.]in
Potentially Dangerous 5/100
6112365.com screenshot
6112365[.]com
Potentially Dangerous 18/100
214365.com screenshot
214365[.]com
Potentially Suspicious 24/100
megaappfi.eth[.]limo
Potentially Dangerous 5/100

Share your experience with this website. Was it safe? Did you encounter any issues?