buildaionbase[.]xyz
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of buildaionbase[.]xyz
buildaionbase[.]xyz appears to present itself as an interactive "Base AI Ecosystem" directory or visualization site focused on wallets, inference tools, trading, and DeFi projects associated with the Base blockchain ecosystem. The page title and meta description suggest it is meant to showcase protocols and projects in a searchable, map-like interface, and the screenshot shows a polished web application with ecosystem categories and orbit-style navigation.
Based on the domain name, the site may be attempting to associate itself with the Base blockchain brand or community, but the available data does not indicate that it is operated by an official Base entity. The domain is very newly registered and uses a generic .xyz extension rather than a clearly established official brand domain, so visitors may want to verify any claimed affiliation independently before interacting with wallets, accounts, or crypto-related features.
Safety Assessment for buildaionbase[.]xyz
Multiple security signals raise concerns about this domain at the time of this scan. It was flagged by 8 out of 91 security engines, and several web-classification sources categorized it as phishing, fraud-related, or a newly registered website. In addition, one major blacklist source listed the domain for social-engineering activity. Those findings are notable because they suggest the site may be associated with credential harvesting, wallet-targeting, or deceptive crypto-themed activity rather than a benign informational project.
At the same time, the malware scan did not identify malicious files in the sampled content, and no flagged external links or iframes were reported in the crawl. That means the page did not appear to be serving obvious malware payloads during this specific scan. However, phishing pages often rely on deceptive branding, wallet prompts, or social-engineering flows rather than downloadable malware, so a clean file scan does not materially offset the phishing-related detections.
The combination of a very recent registration, lack of ranking, crypto/DeFi theme, and multiple phishing-related detections suggests elevated risk. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The domain is only 8 days old and is hosted on Vercel infrastructure, using Vercel nameservers and a valid Let's Encrypt SSL certificate. The site appears to be built as a modern JavaScript application, likely using a Next.js-style asset structure under /_next/static/. HTTPS is present, but SSL alone only indicates encrypted transport and should not be treated as proof of legitimacy.
DNSSEC is unsigned, which is common but provides no added DNS integrity protection. The hosting setup itself appears standard for a lightweight web app, and no malicious files were flagged in the sampled scan. The main technical concern is not server misconfiguration but the broader risk profile: a newly registered domain on commodity hosting, paired with phishing-related detections and branding that may imply affiliation with a known blockchain ecosystem.
Share your experience with this website. Was it safe? Did you encounter any issues?