id528.agency-digital-engine.com
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.
Description of id528.agency-digital-engine.com
This domain appears to host a page styled to resemble a Meta privacy or account-support interface. Based on the page title, metadata, and screenshot, it presents an "Invitation to Join Meta Agency Partner Program" and asks the visitor to complete a verification or confirmation process. The content suggests it is targeting social-media page owners, agencies, or advertisers by referencing account eligibility, onboarding, and media management access.
The domain itself, id528.agency-digital-engine.com, does not appear to be an official Meta-owned web property. Instead, it uses a generic subdomain structure on agency-digital-engine.com while displaying Meta branding and privacy-centre language. Based on the available content, the page appears to be designed to imitate a legitimate brand environment rather than operate as an independent informational website.
Safety Assessment for id528.agency-digital-engine.com
Multiple security signals indicate elevated risk at the time of this scan. The URL was flagged by 18 out of 91 security engines, and multiple web-classification providers categorized it as phishing, malware, spyware, or fraud-related content. In addition, the page screenshot shows branding and wording associated with Meta while being hosted on an unrelated domain, which may indicate an attempt to impersonate a well-known platform and collect user information under false pretenses.
A malware scan also reported several flagged JavaScript files within the site's Next.js asset bundle, although no specific malware family names were provided. At the same time, major blacklist databases were clean at the time of this scan, which can happen with newly created domains before broader blocklists are updated. The domain is only 22 days old, has no established ranking presence, and uses a generic infrastructure setup that may be consistent with short-lived campaign pages.
Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site was served over HTTPS with a valid Let's Encrypt certificate expiring on 2026-08-06, and it appears to be proxied through Cloudflare infrastructure with nameservers on Cloudflare and an observed server IP in Cloudflare's network. DNSSEC appears to be unsigned, which is not uncommon but does mean DNS responses do not benefit from that additional integrity layer.
From a technical-risk perspective, the most notable concern is the combination of a very new domain, Cloudflare-fronted hosting, and multiple flagged JavaScript assets under the /_next/static/ path. While CDN and framework-generated asset paths are common on legitimate sites, the concentration of detections alongside phishing-related page content increases concern at the time of this scan.
Share your experience with this website. Was it safe? Did you encounter any issues?