go.borrowlly[.]com
Category: Finance & Banking
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.
Description of go.borrowlly[.]com
The domain go.borrowlly[.]com appears to be a login portal associated with the Borrowly brand. Based on the screenshot, the page is designed as a customer access page where users are asked to enter a phone number and the last four digits of a Social Security number to log in and manage an application or account. The footer references my.borrowlly.com and includes links to privacy, terms of service, SMS terms, and unsubscribe options, which suggests it may be part of a consumer financial or lending-related service.
The use of a branded subdomain and a minimal sign-in interface indicates this page may serve returning customers rather than acting as a public marketing homepage. Because it requests sensitive personal information, it appears intended for account access or identity verification within a financial-services workflow. Based on the available branding and page structure, it likely operates as a customer portal for Borrowly or a related service.
Safety Assessment for go.borrowlly[.]com
Scan results were mixed but not strongly negative at the time of this scan. No detections were reported by 0 out of 92 security engines, and the domain was listed as clean across the checked blacklist and threat-database sources. Those are positive indicators, especially because blacklist and multi-engine consensus are typically stronger signals than a single generic heuristic.
At the same time, there are some cautionary factors. The domain is relatively new at 92 days old, has no Tranco ranking, and one malware scan labeled the main page as suspicious without identifying a specific malware family or showing corroborating detections elsewhere. The screenshot also shows a login form requesting a phone number and the last four digits of an SSN, which means visitors should be careful to confirm they intended to access this service and that the URL matches the expected brand destination.
Based on available data, no confirmed threats were detected at the time of this scan, but the combination of a young domain, a sensitive login form, and a single low-confidence suspicious heuristic means some caution may still be warranted.
Technical Description
The site uses a valid Let's Encrypt SSL certificate that was active at the time of the scan, which indicates traffic to the page can be encrypted in transit. It is served through Vercel infrastructure, with the resolved IP hosted through HETZNER-DC and geolocated to Ashburn, United States. The domain uses registrar-provided nameservers from Namecheap.
DNSSEC appears to be unsigned, so there is no additional DNS integrity protection visible from the provided records. No malicious external links, referenced domains, or iframes were identified in the scan data. The main technical concern is not an observed exploit but the presence of a sensitive authentication form on a very new subdomain, which may justify extra verification by users before entering personal information.
Share your experience with this website. Was it safe? Did you encounter any issues?