homeemployee[.]store
Category: Phishing, Newly Registered
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of homeemployee[.]store
The domain homeemployee[.]store appears to present itself as a shopping or task-oriented platform, but the visible page content is inconsistent. The page title references "Robinson Mall," while the screenshot shows a simple login and registration form with navigation items such as Home, Job, Cart, and Account. URL paths such as /client/register, /client/order, /client/profile, and /client/confirm-order suggest a system that may combine account registration, order handling, and task or job-related functions.
Based on the domain name, page structure, and metadata, the site may be attempting to resemble an e-commerce or work-from-home platform rather than a clearly established business website. The operator is not evident from the provided scan data, and the branding appears unclear or mismatched. That lack of transparent ownership and the mixed signals between the domain name, page title, and interface may make it difficult for visitors to verify who is behind the site.
Safety Assessment for homeemployee[.]store
This website shows several risk indicators at the time of this scan. It was categorized as phishing by a web-classification provider, and 14 out of 92 security engines flagged the domain with phishing, malicious, or suspicious verdicts. In addition, the domain is very new at 41 days old, has no measurable popularity ranking, and uses a generic-looking login/register interface with unclear branding. The mismatch between the domain name "homeemployee[.]store" and the page title "Robinson Mall" may also be consistent with deceptive presentation.
At the same time, the malware scan did not identify malicious files in the sampled content, and major blacklist checks were clean at the time of this scan. That means the page may not currently be serving obvious malware payloads, but phishing pages often focus on credential collection rather than malware delivery. The screenshot's emphasis on username and password entry, combined with multiple phishing detections from security engines, is a more significant concern than the clean file scan.
Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site uses a valid Let's Encrypt SSL certificate and is served through Cloudflare infrastructure, with the observed IP resolving to Cloudflare hosting in Canada. Nameservers also point to Cloudflare, which may help with availability and traffic masking, but this setup does not by itself indicate legitimacy. The domain is newly registered, and DNSSEC appears to be unsigned.
No malicious files, flagged external links, or iframes were identified in the provided content scan, and blacklist databases were clean at the time of this scan. However, the combination of a very recent registration date, phishing-related detections from multiple security engines, and a credential-entry page with inconsistent branding may still indicate elevated risk despite the presence of HTTPS.
Share your experience with this website. Was it safe? Did you encounter any issues?