guas385-houtian-vm.pages[.]dev
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of guas385-houtian-vm.pages[.]dev
guas385-houtian-vm.pages[.]dev appears to be a subdomain hosted on the pages.dev platform, which is commonly used for static site hosting and developer deployments. The hostname structure suggests it may be a project, test, or temporary deployment rather than a polished public-facing brand website, and it does not appear to be associated with a widely recognized organization based on the available domain information.
Available classification data indicates that multiple web-classification providers associate this URL with phishing, fraud, or hacking-related activity, although one provider categorized it more broadly under information technology. Because this is a hosted subdomain on a shared platform, the operator identity is not clearly established from the scan data alone, and the page may be controlled by an individual user or small project owner rather than a verified business entity.
Safety Assessment for guas385-houtian-vm.pages[.]dev
This URL shows several notable risk indicators at the time of this scan. It was flagged by 18 out of 92 security engines, with many of those detections describing phishing-related behavior. In addition, multiple web-classification sources labeled the site as phishing, fraud, or hacking-related, which materially increases concern compared with a single isolated heuristic alert.
Blacklist and reputation data were mixed. Some major threat databases did not list the domain at the time of the scan, but other blacklist sources did report it. The malware scan summary itself reported no flagged files, yet it also associated the domain and certain linked resources with generic malicious or suspicious objects, which may indicate suspicious page behavior or detection patterns rather than confirmed malware payloads.
Taken together, the multi-engine phishing consensus outweighs the cleaner signals such as valid TLS and the absence of flagged files. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site uses a valid SSL/TLS certificate issued by Google Trust Services, with expiration in July 2026. It is hosted behind Cloudflare infrastructure on IP address 172.66.47.169, with Cloudflare nameservers and a pages.dev subdomain setup. This suggests the content is being served through a shared edge-hosting environment rather than a dedicated standalone server.
The domain is approximately 5 years old, which can sometimes be a stabilizing signal, but age alone does not offset strong phishing-related detections on a hosted subdomain. DNSSEC appears to be unsigned, which is not uncommon but does mean DNS responses do not benefit from that additional integrity layer. No direct malware files were flagged in the file scan, though generic suspicious indicators were attached to the domain and certain linked CSS resources at the time of analysis.
Share your experience with this website. Was it safe? Did you encounter any issues?