coonnect-xfinity-auth.weebly[.]com
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of coonnect-xfinity-auth.weebly[.]com
This URL appears to be a page hosted on the Weebly website-building platform rather than an official standalone corporate domain. Based on the subdomain name "coonnect-xfinity-auth" and the page title "Sign in to xfinity," the page appears to be presenting itself as an Xfinity account login portal intended to collect user credentials such as email, mobile number, username, and password.
The screenshot shows branding and layout elements resembling a telecommunications account sign-in page, including references to Xfinity ID and Comcast-related footer text. However, the use of a free-hosted Weebly subdomain instead of an official brand-owned domain strongly suggests the page may be imitating a legitimate customer login experience rather than serving as an authorized Xfinity property.
The underlying registered domain in the scan data is weebly.com, which is a long-established hosting platform. That age reflects the platform domain, not necessarily the age or legitimacy of this specific subpage. Based on the available evidence, this specific URL appears to function as a credential-harvesting or brand-impersonation page rather than a normal business website.
Safety Assessment for coonnect-xfinity-auth.weebly[.]com
Multiple independent security signals indicate elevated risk for this URL at the time of the scan. It was categorized by several web-classification providers as phishing or fraud-related, flagged by 22 out of 94 security engines, and listed in blacklist data associated with social-engineering activity. The page content also closely imitates an Xfinity sign-in screen while being hosted on a Weebly subdomain, which may be a strong sign of brand impersonation and credential theft.
Although one malware scan reported no directly flagged files, that does not outweigh the broader phishing indicators. The scan also noted numerous flagged internal resources and a flagged domain reference, and the screenshot shows a login form requesting account credentials on a non-official host. For phishing pages, the primary risk is often social engineering and credential capture rather than downloadable malware.
Based on these findings, this website may pose potential risks to visitors. Users should avoid entering passwords or personal account information on pages like this unless they have independently confirmed they are on the official brand-owned domain.
Technical Description
The site is served over HTTPS with a valid Let's Encrypt certificate, and the scan indicates DNSSEC is enabled on the parent domain. It is hosted through Weebly infrastructure and fronted by Cloudflare, with the server IP resolving to 74.115.51.8 in the United States. These are common hosting and delivery components and do not, by themselves, indicate legitimacy.
A notable technical concern is that the page uses a third-party hosted subdomain rather than an official Xfinity or Comcast-owned login domain, despite presenting a branded authentication interface. The parent domain's long registration age and signed DNS records apply to weebly.com as a platform, not to the trustworthiness of this specific subpage. In this context, the hosting setup may make abuse easier by allowing deceptive pages to be published under a reputable platform domain.
Share your experience with this website. Was it safe? Did you encounter any issues?