evixmail[.]com
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of evixmail[.]com
The domain evixmail[.]com appears to host a webmail login portal. The page title, "Webmail :: Welcome to Webmail," and the screenshot showing a username/password form suggest it is intended to provide browser-based email access, likely for users of a specific mail system or private mail service.
Based on the visible content, the site does not present broader company information, branding, or public-facing service details. The operator is not clearly identified in the available page metadata, and the domain itself is relatively new and not broadly ranked in web traffic datasets, which limits independent context about its legitimacy or business purpose.
Safety Assessment for evixmail[.]com
This website shows multiple risk indicators at the time of this scan. It was flagged by 17 out of 92 security engines, with many of those detections classifying the page as phishing or otherwise malicious. In addition, one blacklist database listed the domain, and the overall trust score provided with the scan was very low. While one malware scan reported no directly flagged files, it still associated the domain and linked resources with a generic malicious-object heuristic, which adds to the concern rather than offsetting it.
The page itself is a generic webmail login screen with minimal identifying information. That kind of presentation can be legitimate in some private mail deployments, but it is also commonly used in credential-harvesting campaigns because it asks visitors to enter usernames and passwords without clearly showing who operates the service. The domain is also very new and lacks established reputation signals, which may increase uncertainty.
Based on these findings, this website may pose potential risks to visitors, particularly if asked to enter email credentials or other sensitive information.
Technical Description
The site uses a valid Let's Encrypt SSL certificate that was active at the time of the scan, which means traffic may be encrypted in transit. It is hosted on a DigitalOcean IP in the United States and appears to run Apache/2.4.41 on Ubuntu. The domain uses Cloudflare nameservers, while DNSSEC is unsigned.
From a security-review perspective, the main concerns are reputational rather than transport-layer configuration. The domain is only about 211 days old, is not ranked in Tranco, and several internal JavaScript and CSS resources were generically flagged during scanning. Those resource names look like standard webmail assets, so the file-path evidence alone is not conclusive, but combined with the multi-engine phishing detections and the generic credential-collection page, the infrastructure should be treated cautiously at the time of this scan.
Share your experience with this website. Was it safe? Did you encounter any issues?