customer-sp-bayerjohnathan.pages.dev
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of customer-sp-bayerjohnathan.pages.dev
This domain appears to be a subdomain hosted on the pages.dev platform, which is commonly used to publish static websites through Cloudflare's hosting infrastructure. The naming pattern "customer-sp-bayerjohnathan" does not clearly identify a known business, publisher, or public service, and based on the available scan data there is no obvious indication of a legitimate branded website or established organization operating it.
The page appears to be delivered through Cloudflare infrastructure and references Cloudflare resources such as challenge scripts and error-style assets. That setup may be consistent with a lightweight hosted page, temporary landing page, or access-controlled content. Based on the domain structure and the phishing-related detections in the scan results, the site may be intended to imitate a customer or support-related portal rather than serve as a well-established standalone website.
Safety Assessment for customer-sp-bayerjohnathan.pages.dev
Multiple security engines flagged this domain during the scan, with 17 out of 91 reporting phishing, malicious, or suspicious behavior at the time of analysis. While blacklist coverage was mixed and several major threat databases did not list the domain, one blacklist source did include it, and the overall multi-engine consensus is a stronger risk signal than a single heuristic finding. The domain name itself also appears unusual for a legitimate customer-facing service, which may increase the likelihood of deceptive use.
The malware scan did not identify infected files, but it did include a generic malicious-object label tied to the domain and certain linked stylesheet paths. Generic heuristic findings on their own can be low-confidence, yet in this case they are accompanied by a substantial number of phishing-related detections from independent security engines. The domain is several years old, which can sometimes reduce risk, but age alone does not outweigh the concentration of phishing classifications.
Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site uses a valid TLS certificate issued by Google Trust Services, with expiry extending to 2026-08-31. It is hosted behind Cloudflare infrastructure on IP space associated with Cloudflare, and the web server is reported as Cloudflare. This suggests the origin is shielded by a content delivery and reverse-proxy layer, which is common for both legitimate and abusive sites.
DNSSEC appears to be unsigned, so DNS responses may not benefit from DNSSEC validation. The domain is registered through Cloudflare and has been active since 2020, with Cloudflare nameservers in use. No obvious TLS misconfiguration is shown in the scan data, but the combination of proxy hosting, limited site identity signals, and phishing-related detections may warrant caution.
Share your experience with this website. Was it safe? Did you encounter any issues?