krf.cc
Category: Cryptocurrency
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.
Description of krf.cc
krf.cc appears to host a cryptocurrency-themed landing page branded as "GLOBE X," with marketing text such as "Invest Smarter Not Harder" and a prominent registration prompt. Based on the screenshot and page elements, the site seems intended to attract users interested in crypto investing or trading-related services rather than functioning as a general informational website.
The domain itself is short and non-descriptive, which makes it difficult to independently verify the operator from the name alone. No clear company identity, ownership details, or established brand background are evident from the provided scan data, and the page title "【New message】" does not closely match the visible homepage branding. That mismatch may indicate a templated or repurposed web setup.
Safety Assessment for krf.cc
This domain shows several cautionary signals at the time of this scan. It was flagged by 3 out of 91 security engines, with detections broadly describing malicious, phishing, or spam-related concerns. In addition, the malware scan reported numerous flagged pages under login- and passport-related paths, including many language-specific variants, which may be consistent with credential-harvesting or deceptive login workflows. The site’s visible crypto-investment presentation, combined with a generic short domain and limited operator transparency, may further increase uncertainty for visitors.
Blacklist results were mixed rather than uniformly clean. Major content-focused threat databases did not report a listing in the supplied data, but the domain’s IP address was listed on one mail-reputation blocklist, which is a weaker signal and does not by itself prove harmful website content. Some flagged external resources were also associated with a generic malicious heuristic, though such detections can sometimes reflect pattern-based scanning rather than confirmed malware.
Taken together, the combination of multi-engine detections, phishing-related labeling, and multiple flagged login-oriented pages suggests elevated risk. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site was reachable over HTTPS with a valid Let's Encrypt certificate expiring on 2026-08-30. It appears to run on an nginx web server hosted on HostPapa infrastructure in Washington, United States. The domain is relatively old, having been registered in 2014 through Amazon Registrar, which can sometimes reduce concern around throwaway-domain abuse, although age alone does not rule out compromise or repurposing.
DNSSEC is not enabled, so DNS responses do not appear to benefit from DNSSEC validation. The scan also noted numerous flagged pages under /index/ paths and references to external JavaScript resources, while the page title and visible branding appear inconsistent. Those technical and content signals may indicate a reused template, a cloned interface, or a site section designed for login capture.
Share your experience with this website. Was it safe? Did you encounter any issues?