PCrisk.com
bafkreiga6px3lueaki24tsx4oi7kdavctjkxpiobmcqllnr2duqahghtoa.ipfs.dweb.link favicon

bafkreiga6px3lueaki24tsx4oi7kdavctjkxpiobmcqllnr2duqahghtoa.ipfs.dweb[.]link

Category: Phishing

Scanned: May 15, 2026, 06:24 PM UTC · First seen: May 15, 2026 · Threat Engines: 10 / 92 · Times Scanned: 1
5 / 100 Trust Score Based on scan findings at the time of analysis
Potentially Dangerous
0 - High Risk50 - Moderate100 - No Threats
Not scanned has not been scanned yet. Hit Scan Now to check it.

Scans can take up to 5 minutes to complete. Please keep this tab open - we'll redirect you to the report when it's ready.

Failed
Scan unavailable
Scan failed
Protect yourself from potentially harmful websites
Combo Cleaner's real-time web protection module actively blocks access to scam, phishing & malware-infected websites.
★★★★★ 4.8 / 5 Recommended by PCrisk.com editors Windows · Mac · Android · iOS
Download Combo Cleaner Free scan · no signup

To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.

Screenshot of bafkreiga6px3lueaki24tsx4oi7kdavctjkxpiobmcqllnr2duqahghtoa.ipfs.dweb[.]link Captured May 15, 2026
https://bafkreiga6px3lueaki24tsx4oi7kdavctjkxpiobmcqllnr2duqahghtoa.ipfs.dweb[.]link
Screenshot of bafkreiga6px3lueaki24tsx4oi7kdavctjkxpiobmcqllnr2duqahghtoa.ipfs.dweb.link
This website has been flagged as potentially harmful
Screenshot blurred for safety. Multiple security engines flagged potential threats at the time of scanning.
9 years (dweb.link)
Not Ranked - This website does not appear in the Tranco top list
Flagged by 10 of 92 engines
✓ Valid (TLS)
Protocol Labs
San Francisco, United States
@helia/service-worker-gateway/3.3.1#HEAD@a1c3b15
Unknown
209.94.90.3
Domain & WHOIS Information
Registrar CSC Corporate Domains, Inc.
Registered February 24, 2017 (dweb.link)
Expires February 24, 2027
Name Servers clarissa.ns.cloudflare.com
DNSSEC Unsigned
Hosting Protocol Labs
This is a subdomain of dweb.link. The WHOIS data above belongs to the parent domain, not to bafkreiga6px3lueaki24tsx4oi7kdavctjkxpiobmcqllnr2duqahghtoa.ipfs.dweb[.]link. The actual creation date of this subdomain is unknown and could be much more recent than the parent.
Reputation & Threat Check 92 security engines checked
10
10 of 92 engines flagged this website Flagged by 10 security vendors at the time of scanning
Not flagged Flagged
Flagged by 10 of 92 engines
Direct Threat Database Sources
Google Not listed Spamhaus DBL Not listed SURBL Listed Spamhaus ZEN Not listed Barracuda Not listed SpamCop Not listed Spamhaus ZRD Not listed URLhaus Not listed Phishtank Not listed QBMA Not listed
View detailed engine results on VirusTotal
File Scan Summary Powered by Quttera Engine
2 files scanned
No threats
2
Low Risk
0
Medium Risk
0
High Risk
0
No threats Low Risk Medium Risk High Risk
bafkreiga6px3lueaki24tsx4oi7kdavctjkxpiobmcqllnr2duqahghtoa.ipfs.dweb.link/# 48.0 KB No threats
bafkreiga6px3lueaki24tsx4oi7kdavctjkxpiobmcqllnr2duqahghtoa.ipfs.dweb.link/cdn-cgi/content?id=ZPTId8Z9ZlYLzgcI5hKSqVdFgrpDdl3mbV2yV_dLSxI-1778869390.2976482-1.0.1.1-6ZGAieyIIC_kx51t6YuSQfMcf8N5cXjAiSnfX1.qH2g 4.2 KB No threats
External Links & Domains
5
External Links
All Clean
0
Iframes
Clean
5
Referenced Domains
All Clean
0
Flagged Resources
None Detected
http://bafkreiga6px3lueaki24tsx4oi7kdavctjkxpiobmcqllnr2duqahghtoa.ipfs.dweb.link/data:image/svg+xml%3Bbase64,PHN2ZyB3aWR0aD0iNDAiIGhlaWdodD0iNDAiIHZpZXdCb3g9IjAgMCA0MCA0MCIgZmlsbD0ibm9uZSIgeG1sbnM9Imh0dHA6Ly93d3cudzMub3JnLzIwMDAvc3ZnIj4KPHJlY3Qgd2lkdGg9IjQw'qNot flagged
https://bafkreiga6px3lueaki24tsx4oi7kdavctjkxpiobmcqllnr2duqahghtoa.ipfs.dweb.link/cdn-cgi/content?id%3DZPTId8Z9ZlYLzgcI5hKSqVdFgrpDdl3mbV2yV_dLSxI-1778869390.2976482-1.0.1.1-6ZGAieyIIC_kx51t6YuSQfMcf8N5cXjAiSnfX1.qH2gNot flagged
https://cdn.jsdelivr.net/npm/bootstrap-icons@1.11.0/icons/shield-check.svgNot flagged
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.1/css/all.min.cssNot flagged
https://fonts.googleapis.com/css2?family%3DLexend:wght@100..900&display%3DswapNot flagged
1.0.1.1Not flagged
bafkreiga6px3lueaki24tsx4oi7kdavctjkxpiobmcqllnr2duqahghtoa.ipfs.dweb.linkNot flagged
cdn.jsdelivr.netNot flagged
cdnjs.cloudflare.comNot flagged
fonts.googleapis.comNot flagged
bafkreiga6px3lueaki24tsx4oi7kdavctjkxpiobmcqllnr2duqahghtoa.ipfs.dweb[.]link Overview

Description of bafkreiga6px3lueaki24tsx4oi7kdavctjkxpiobmcqllnr2duqahghtoa.ipfs.dweb[.]link

This URL appears to be a content-addressed page served through an IPFS gateway on the dweb.link domain, rather than a conventional branded website with its own standalone domain identity. The page shown in the screenshot presents a generic "EmailLogin" form asking for an email address and mailbox password, with minimal branding and no clear indication of a legitimate organization, service provider, or operator.

Based on the visible content, the page appears to be designed to collect email credentials. The use of an IPFS-hosted resource can make attribution more difficult because the content is distributed through decentralized storage while being accessed via a public gateway. No clear business, publisher, or service ownership information is visible from the page content provided.

Safety Assessment for bafkreiga6px3lueaki24tsx4oi7kdavctjkxpiobmcqllnr2duqahghtoa.ipfs.dweb[.]link

Multiple security signals indicate elevated risk at the time of this scan. The URL was flagged by 10 out of 92 security engines, with several classifying it as phishing or malicious. The screenshot also shows a generic email-password collection form with no recognizable provider branding, which is a common pattern associated with credential-harvesting pages.

At the same time, some other checks were less conclusive: the malware scan reported no flagged files, and the checked blacklist databases were largely clean at the time of review. That mixed result can occur when a page is focused on social engineering rather than malware delivery, or when decentralized hosting causes uneven detection coverage across scanners.

Considering the multi-engine phishing detections, the very low trust score, the lack of transparent site identity, and the credential-entry prompt shown in the screenshot, this website may pose potential risks to visitors at the time of this scan.

Technical Description

The page is served over HTTPS with a valid Let's Encrypt certificate, and the host resolves to infrastructure associated with Protocol Labs using an IPFS gateway server identified as @helia/service-worker-gateway/3.3.1. The domain uses Cloudflare nameservers, and DNSSEC appears to be unsigned. The underlying dweb.link domain is several years old, but that age reflects the gateway domain rather than necessarily the specific hosted content.

From a security perspective, the main concern is not the TLS setup but the nature of the hosted content. IPFS gateway URLs can be used to publish pages that are harder to attribute or remove quickly, and the screenshot suggests a credential collection interface with limited provenance. No malicious files were flagged in the provided file scan, but phishing pages often rely on deceptive forms rather than downloadable malware.

HTTP Redirect Chain
400 https://bafkreiga6px3lueaki24tsx4oi7kdavctjkxpiobmcqllnr2duqahghtoa.ipfs.inbrowser.link/
Website Insights
Not Ranked
Tranco Rank
Not in Top 1M
Visitors Unknown
Category: Phishing
Rank History (30 days)
No rank data available
1 cookie detected
Essential1
Analytics0
Advertising0
Social0
0 1st party cookies
1 3rd party (tracker)
Dispute This Score For website owners
Believe this score is inaccurate?
If you are the website owner and believe the scan results contain errors or false positives, you can submit a dispute for manual review. Our team typically responds within 1-2 business days.
You will be asked to verify your email before the dispute can be processed.
By submitting this form, you confirm that the information provided is accurate. Disputes are reviewed manually and results may take up to 48 hours to update.
One more step..
To submit your dispute for bafkreiga6px3lueaki24tsx4oi7kdavctjkxpiobmcqllnr2duqahghtoa.ipfs.dweb[.]link, please click the verification link we just emailed you. Once verified, we'll review it within 1–2 business days.
This report was generated automatically and is provided for informational purposes only. Results are based on a point-in-time scan and may contain false positives or incomplete data. This does not constitute a security audit or certification. No vendor in the market can guarantee a 100% detection rate. If you believe this report is inaccurate, please submit a dispute.
Similar Recently Scanned
file666674.cloud04y[.]cfd
Potentially Suspicious 30/100
cibc.uat5.supernovacompanies.com screenshot
cibc.uat5.supernovacompanies[.]com
Potentially Dangerous 18/100
meta-id19239213.invoice-ads-setting.com screenshot
meta-id19239213.invoice-ads-setting[.]com
Potentially Dangerous 5/100
gosias[.]online
Potentially Dangerous 5/100
meta-id19239211.invoice-ads-setting.com screenshot
meta-id19239211.invoice-ads-setting[.]com
Potentially Dangerous 5/100
meta-id90006.agency-manager-support.com screenshot
meta-id90006.agency-manager-support[.]com
Potentially Dangerous 5/100
meta-id90003.agency-manager-support.com screenshot
meta-id90003.agency-manager-support[.]com
Potentially Dangerous 5/100
sana-khan2776.github.io screenshot
sana-khan2776.github[.]io
Potentially Dangerous 5/100

Share your experience with this website. Was it safe? Did you encounter any issues?