coirix[.]com
Category: Newly Registered Websites
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of coirix[.]com
coirix[.]com appears to be a very newly registered website that currently presents a login page styled as a Google account sign-in screen. The page title shown in metadata is "Sign in - Google Accounts," and the visible content asks users to sign in "to continue to coirix[.]com," suggesting the site may be attempting to use a familiar single-sign-on style interface rather than presenting a distinct standalone brand or service description.
Based on the observed page structure and linked assets, the site appears to be built with a modern JavaScript framework and loads analytics-related third-party resources. However, the available scan data does not clearly identify a legitimate business operator, published company information, or a well-established service purpose. The domain category data also labels it as a newly registered website, which is consistent with its recent creation date.
Safety Assessment for coirix[.]com
At the time of this scan, no malware was detected by 0 out of 92 security engines, and the malware scan reviewed 38 files without flagging any of them. In addition, the checked blacklist and threat-database sources were reported clean, and no flagged external links or iframes were identified. These are positive point-in-time indicators.
That said, there are still meaningful risk factors. The domain is only 14 days old, has no established popularity ranking, and the visible page strongly resembles a Google sign-in screen while being hosted on an unrelated domain. That kind of presentation may be consistent with credential-harvesting or brand impersonation scenarios, even when automated scanners have not yet detected malicious behavior. Newly registered domains can also evade detection early in their lifecycle.
Based on the combination of a clean scan result and the highly suspicious login presentation, this website may pose potential risks to visitors, particularly if it requests account credentials or other sensitive information.
Technical Description
The site uses a valid Let's Encrypt SSL certificate and is served through Cloudflare infrastructure, with nameservers also delegated to Cloudflare. The resolved IP is associated with Cloudflare hosting, and the certificate was valid at the time of this scan. DNSSEC appears to be unsigned, which is not uncommon but does mean DNS responses do not benefit from that additional integrity layer.
From a web-application perspective, the site appears to use a Next.js-style asset structure under /_next/static/, and it references common analytics services. No malicious files, flagged outbound links, or iframe-based threats were identified in the supplied scan data. The main technical concern is not malware delivery but the page's apparent imitation of a well-known login interface on a very new domain.
Share your experience with this website. Was it safe? Did you encounter any issues?