cropped.link
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of cropped.link
cropped.link appears to be a URL-shortening service branded as "CroppedLink." Based on the homepage text shown in the scan, the site offers users a way to create short links, with messaging that suggests links may remain active for 24 hours. The page layout is minimal and centers on a single input field and a button for shortening URLs.
The domain has been registered since 2020, which suggests it is not newly created, but the site itself appears lightweight and narrowly focused on one function rather than presenting broader company or ownership information. No clear operator identity is visible in the provided page snapshot, so the organization behind the service cannot be confirmed from the available data.
URL shorteners can be used for legitimate link management, but they can also obscure destination addresses, which may increase abuse potential in phishing or fraud campaigns. In this case, the domain name, page title, and visible interface all align with a short-link utility rather than a full content website.
Safety Assessment for cropped.link
Multiple scan sources associated this domain with phishing, fraud, or suspicious activity at the time of this scan. Specifically, 9 out of 91 security engines flagged the domain, and several web-classification providers categorized it as phishing-related or elevated-risk. While one malware scan reported no directly flagged files, it also applied a generic malicious heuristic to the domain and several local assets, which adds caution but is lower-confidence than broad multi-engine consensus.
Blacklist-style checks were mixed rather than uniformly clean. Major content-malice databases shown in the scan did not report the domain at the time of testing, which is a moderating factor. However, the domain's IP address was listed on one mail-reputation blocklist, and one additional blacklist source marked the domain with a generic malicious designation. A single DNS-based reputation listing does not by itself prove harmful website content, but it does contribute a minor negative signal.
The site also functions as a link shortener, a type of service that can conceal final destinations and may be attractive for abuse if not tightly controlled. Combined with the phishing-related classifications from multiple security engines and the relatively low trust context in the scan, these findings suggest elevated risk. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site was reachable over HTTPS with a valid Let's Encrypt certificate that, at the time of this scan, was set to expire on 2026-09-02. It is hosted on IP address 77.72.22.202 in Frankfurt am Main, Germany, appears to use nginx/1.26.1 as the web server, and relies on UltraDNS nameservers. The domain itself is about five years old, which is older than many throwaway malicious domains.
DNSSEC appears to be unsigned, which is not uncommon but means DNS responses do not benefit from DNSSEC validation. No major TLS failure is indicated in the provided data, but the scan does show repeated generic heuristic flags on local assets and a mixed reputation profile across security systems, so the primary concerns here appear to be reputation- and abuse-related rather than certificate or hosting misconfiguration issues.
Share your experience with this website. Was it safe? Did you encounter any issues?