facebook-id9875314.invoice-ads-setting[.]com
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of facebook-id9875314.invoice-ads-setting[.]com
This domain appears to present itself as a Meta or Facebook-related account, privacy, or business-support page. The page title references "Accounts Centre," the meta description mentions "Meta Accounts Centre," and the screenshot shows branding such as "Meta Privacy Centre" and "Meta Agency Partner Program," suggesting that the site is attempting to resemble an official Meta business or account-management interface.
However, the actual hostname is not an official Meta-owned domain. Instead, it uses a long subdomain structure, "facebook-id9875314.invoice-ads-setting[.]com," that incorporates the Facebook name within a different parent domain. Based on the domain pattern, page content, and classification data, this website appears to be designed to imitate a legitimate Meta/Facebook service page rather than operate as an independent, clearly branded business website.
Safety Assessment for facebook-id9875314.invoice-ads-setting[.]com
Multiple security signals indicate elevated risk at the time of this scan. The domain was flagged by 20 out of 92 security engines, and several web-classification sources categorized it as phishing, fraud-related, or malware-associated. The page content also closely imitates Meta/Facebook branding while being hosted on an unrelated domain, which may be consistent with credential-harvesting or social-engineering activity.
There are also contextual warning signs beyond the engine detections. The domain is only 10 days old, has no meaningful popularity ranking, and uses a naming pattern that embeds the word "facebook" plus an ID-like string inside a non-official parent domain. The screenshot shows a polished Meta-themed interface intended to encourage user interaction, which may increase the likelihood of deception for visitors expecting an official account or business portal.
Although some blacklist databases did not list the domain and the page-level malware scan did not detect malicious files at the time of analysis, those signals do not outweigh the strong phishing indicators and the clear brand imitation pattern. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site uses a valid TLS certificate issued by a mainstream certificate authority, with hosting routed through Cloudflare infrastructure and an observed server IP of 172.66.0.96. This means traffic may be encrypted in transit, but a valid certificate should not be interpreted as proof of legitimacy. The domain is very newly registered through Gransy, s.r.o., and its DNSSEC status is unsigned.
From a technical perspective, the page appears to load modern web assets, including Next.js-style static chunks, images, and fonts, and no flagged files were reported by the file scan at the time of review. Even so, the combination of recent registration, Cloudflare-fronted hosting, unsigned DNSSEC, and strong phishing-related detections suggests the infrastructure may have been set up quickly for impersonation rather than for a long-established service.
Share your experience with this website. Was it safe? Did you encounter any issues?