j70f.vip
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.
Description of j70f.vip
The domain j70f.vip appears to host a Chinese-language online betting or gambling-themed website. The page title and screenshot prominently reference “BET365,” sports betting, casino-style sections, app downloads, promotions, and account actions such as registration and login. The content layout suggests a gambling portal aimed at users seeking sports wagering, live betting, or related gaming services.
However, the domain name itself does not appear to match the branding shown on the page, and the site presents itself using a well-known betting brand in a way that may be intended to attract trust. Based on the available page content, this website may be operating as an unofficial gambling portal or a look-alike page rather than a clearly attributable official brand property. No clear operator identity is visible in the provided scan data.
Safety Assessment for j70f.vip
Multiple independent security signals raise concerns about this domain at the time of the scan. It was categorized by several web-classification providers as phishing or fraud-related, and 12 out of 91 security engines flagged it as malicious or phishing-related. The page also displays branding associated with a well-known betting company while using an unrelated domain name, which may indicate a look-alike setup intended to imitate that brand.
Additional context increases the risk profile: the domain is only 1 day old, has no established popularity ranking, and the malware scan reported suspicious JavaScript files, even though no specific malware family was identified. While major blacklist databases included in the scan were clean at that moment, blacklist status can lag behind newly created abusive domains.
Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site was reachable over HTTPS with a valid Let's Encrypt certificate expiring on 2026-08-23. It appears to be served by Nginx from IP address 154.39.104.130, hosted with infrastructure identified as StarCloudGlobal-HK in Hong Kong. DNSSEC is not enabled, and the domain uses nameservers under 1111343.com.
From a security perspective, the technical setup is fairly typical for a newly deployed site, but the combination of a very new registration, unsigned DNSSEC, and suspicious flagged JavaScript files may warrant caution. The presence of references to external services such as Geetest and Telegram is not inherently malicious, but in this context they do not offset the broader phishing-related indicators seen in the scan data.
Share your experience with this website. Was it safe? Did you encounter any issues?