PCrisk.com
ldnbyhefn.landry2.workers.dev favicon

ldnbyhefn.landry2.workers.dev

Category: Phishing

Scanned: Jun 24, 2026, 12:41 AM UTC · First seen: Jun 24, 2026 · Threat Engines: 11 / 91 · Times Scanned: 1
5 / 100 Trust Score Based on scan findings at the time of analysis
Potentially Dangerous
0 - High Risk50 - Moderate100 - No Threats
Not scanned has not been scanned yet. Hit Scan Now to check it.

Scans can take up to 5 minutes to complete. Please keep this tab open - we'll redirect you to the report when it's ready.

Failed
Scan unavailable
Scan failed
Protect yourself from potentially harmful websites
Combo Cleaner's real-time web protection module actively blocks access to scam, phishing & malware-infected websites.
★★★★★ 4.8 / 5 Recommended by PCrisk.com editors Windows · Mac · Android · iOS
Download Combo Cleaner Free scan · no signup

To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.

Screenshot of ldnbyhefn.landry2.workers.dev Captured Jun 24, 2026
https://ldnbyhefn.landry2.workers.dev
Screenshot of ldnbyhefn.landry2.workers.dev
This website has been flagged as potentially harmful
Screenshot blurred for safety. Multiple security engines flagged potential threats at the time of scanning.
7 years 4 months (workers.dev)
Not Ranked - This website does not appear in the Tranco top list
Flagged by 11 of 91 engines
✓ Valid (TLS)
CloudFlare, Inc.
Toronto, Canada
gws
Proprietary
188.114.97.2
Domain & WHOIS Information
Registrar CloudFlare, Inc.
Registered February 8, 2019 (workers.dev)
Expires February 8, 2027
Name Servers clyde.ns.cloudflare.com
DNSSEC Unsigned
Hosting CloudFlare, Inc.
This site is hosted on workers.dev - a free hosting platform. The WHOIS data above belongs to the platform, not to ldnbyhefn.landry2.workers.dev. The actual creation date of this subdomain is unknown and could be as recent as today.
Reputation & Threat Check 91 security engines checked
11
11 of 91 engines flagged this website Flagged by 11 security vendors at the time of scanning
Not flagged Flagged
Flagged by 11 of 91 engines
Direct Threat Database Sources
Google Not listed Spamhaus DBL Not listed SURBL Not listed Spamhaus ZEN Not listed Barracuda Not listed SpamCop Not listed Spamhaus ZRD Not listed URLhaus Not listed Phishtank Not listed QBMA Not listed
View detailed engine results on VirusTotal
File Scan Summary Powered by Quttera Engine
41 files scanned
No threats
41
Low Risk
0
Medium Risk
0
High Risk
0
No threats Low Risk Medium Risk High Risk
www.google.com.http-redirect 99 B No threats
www.googletagmanager.com/gtm.js?id= 1.5 KB No threats
www.googletagmanager.com/ns.html?id=GTM-WQZB4J 268 B No threats
www.google.com/imghp?hl=fi&ogbl 78.0 KB No threats
www.google.com/advanced_image_search?hl=fi&authuser=0 277.5 KB No threats
www.google.com/webhp?tab=ww 79.8 KB No threats
www.google.com/preferences?hl=fi 22.6 KB No threats
www.google.com/setprefs?sig=0_s8I7_8p6SjavpOOq6HLjNkhuWdY%3D&hl=sv&source=homepage&sa=X&ved=0ahUKEwjP1pye0Z6VAxUbIhAIHXiyBpUQ2ZgBCAU 22.2 KB No threats
www.google.com/setprefs?sig=0_Actah_QFfJcZq1F-kQRtSFQ5QJ4%3D&hl=sv&source=homepage&sa=X&ved=0ahUKEwiI3Nae0Z6VAxWFUFUIHYmkMyAQ2ZgBCAU 22.2 KB No threats
www.google.com/setprefs?sig=0_tIMl185NTnKhteaM6HFHQzzP1OU%3D&hl=sv&source=homepage&sa=X&ved=0ahUKEwj81cOe0Z6VAxVWOBAIHQ0HI4MQ2ZgBCAU 22.2 KB No threats
Show 31 more...
External Links & Domains
1575
External Links
All Clean
3
Iframes
Clean
108
Referenced Domains
All Clean
0
Flagged Resources
None Detected
http://accounts.google.com/Not flagged
http://cloud.google.com/?utm_source%3Dabout.google&amp%3Butm_medium%3Dreferral&amp%3Butm_campaign%3DproductslistNot flagged
http://google.com/?utm_source%3Dabout.google&amp%3Butm_medium%3Dreferral&amp%3Butm_campaign%3Dglobal-footerNot flagged
http://ldnbyhefn.landry2.workers.dev/advanced_image_search?hl%3Dfi&amp%3Bauthuser%3D0Not flagged
http://ldnbyhefn.landry2.workers.dev/advanced_search?hl%3Dfi&amp%3Bauthuser%3D0Not flagged
http://ldnbyhefn.landry2.workers.dev/chrome/Not flagged
http://ldnbyhefn.landry2.workers.dev/chrome/404/Not flagged
http://ldnbyhefn.landry2.workers.dev/chrome/ai-innovations/Not flagged
http://ldnbyhefn.landry2.workers.dev/chrome/ai-innovations/#ai-modeNot flagged
http://ldnbyhefn.landry2.workers.dev/chrome/beta/Not flagged
http://ldnbyhefn.landry2.workers.dev/chrome/beta/other-platforms/Not flagged
http://ldnbyhefn.landry2.workers.dev/chrome/browser-features/Not flagged
http://ldnbyhefn.landry2.workers.dev/chrome/browser-tools/Not flagged
http://ldnbyhefn.landry2.workers.dev/chrome/canary/Not flagged
http://ldnbyhefn.landry2.workers.dev/chrome/canary/other-platforms/Not flagged
Show 485 more...
Showing first 500 of 1575 entries.
abc.xyzNot flagged
about.googleNot flagged
accounts.google.comNot flagged
admanager.google.comNot flagged
admob.google.comNot flagged
ads.google.comNot flagged
adsense.google.comNot flagged
adsmarketingfrontend-pa.clients6.google.comNot flagged
ai.googleNot flagged
ai.google.devNot flagged
analytics.google.comNot flagged
artsandculture.google.comNot flagged
assistant.google.comNot flagged
blog.googleNot flagged
built-in.googleNot flagged
Show 93 more...
<iframe id%3D"product-moment-2026-promo-video" class%3D"chr-video-v2 chr-video-v2__iframe chr-media-block__media" src%3D"https://www.youtube.com/embed/kCTF5urtzoQ?enablejsapi%3D1&amp%3Bcc_load_policy%3D1&amp%3Brel%3D0&amp%3Bmute%3D1&amp%3Bloop%3D1&amp%3Bplaylist%3DkCTF5urtzoQ" frameborder%3D"0" allowfullscreen data-comp%3D"Youtube VideoScrollInView LazyLoader" allow%3D"autoplay%3B encrypted-media" data-interaction-options%3D"{&#34%3BonEnterView&#34%3B: &#34%3Bautostart&#34%3B, &#34%3BonExitView&#34%3B: &#34%3Bautopause&#34%3B, &#34%3Bthreshold&#34%3B: 0.7, &#34%3Bautoplay&#34%3B: {&#34%3Blg&#34%3B: true, &#34%3Bxl&#34%3B: true}}" aria-label%3D"A demonstration of the new Chrome AI Mode. The screen shows a user interacting with the Chrome browser to search by attaching open tabs and files as context. It concludes by showcasing the new side-by-side interface, where an AI response remains open on the left while a selected webpage opens on the right for multitasking." aria-describedby%3D"product-moment-2026-promo-video-description" referrerpolicy%3D"strict-origin-when-cross-origin">Not flagged
<iframe src%3D"https://www.googletagmanager.com/ns.html?id%3DGTM-PZ6TRJB" height%3D"0" width%3D"0" style%3D"display:none%3Bvisibility:hidden">Not flagged
<iframe src%3D"https://www.googletagmanager.com/ns.html?id%3DGTM-WQZB4J" height%3D"0" width%3D"0" style%3D"display:none%3Bvisibility:hidden">Not flagged
ldnbyhefn.landry2.workers.dev Overview

Description of ldnbyhefn.landry2.workers.dev

This domain appears to host a page designed to resemble Google's search homepage, including Google branding, navigation labels, and a search-style interface. The page title is simply "Google," and the visible content in the screenshot closely imitates the look and layout of a mainstream search portal rather than presenting an independent brand or service of its own.

Based on the domain structure, this is not an official Google-owned domain. It is hosted under a workers.dev subdomain, which is a cloud edge-hosting platform commonly used to deploy custom web applications and static pages. While such infrastructure has many legitimate uses, in this case the combination of a random-looking subdomain label and a page that visually mirrors a major brand may indicate an attempt to impersonate that brand or capture user trust.

The linked resources also reference numerous Google-related domains and Chrome-themed paths, which suggests the site may be presenting itself as part of Google's ecosystem. However, based on the available domain information, it does not appear to be operated from an official google.com property.

Safety Assessment for ldnbyhefn.landry2.workers.dev

Multiple independent security signals indicate elevated risk at the time of this scan. The domain was flagged by 11 out of 91 security engines, with several classifying it as phishing or fraud-related. In addition, multiple web-classification providers categorized the site as phishing or other fraud. Although some blacklist and malware-file checks were clean, those results do not outweigh the broader consensus from security engines when the page itself appears to imitate a well-known brand.

The screenshot and page metadata add to the concern. The site closely resembles Google's homepage, but it is served from a non-Google workers.dev subdomain with a random-looking label. That kind of mismatch between branding and domain identity may be consistent with a look-alike or impersonation page intended to mislead visitors. The absence of flagged files in a malware scan mainly suggests no obvious malicious payloads were detected in the scanned content; it does not rule out credential harvesting or deceptive page behavior.

Blacklists focused on known malicious URLs were clean at the time of this scan, and the domain itself is not newly registered, which are mildly stabilizing factors. Even so, the combination of multi-engine phishing detections, phishing-related categorization, and strong visual imitation of a major brand materially increases risk. Based on these findings, this website may pose potential risks to visitors.

Technical Description

The site uses a valid SSL/TLS certificate issued by a mainstream certificate authority, with expiry listed as 2026-07-31. It is hosted on Cloudflare infrastructure and resolves to an IP address in Toronto, Canada. The web server is identified as "gws," and the domain uses Cloudflare nameservers. DNSSEC appears to be unsigned.

From a technical standpoint, the presence of HTTPS should not be treated as proof of legitimacy, since deceptive sites commonly use valid certificates as well. The domain is approximately 7 years old, but it exists as a subdomain under workers.dev rather than as a standalone branded domain, which can make attribution less clear. No malicious files were flagged in the available malware scan, and blacklist checks were clean at the time of review, but the primary concern here appears to be suspected phishing or impersonation rather than exploit delivery.

HTTP Redirect Chain
302 https://ldnbyhefn.landry2.workers.dev/
200 https://www.google.com/
Website Insights
Not Ranked
Tranco Rank
Not in Top 1M
Visitors Unknown
Category: Phishing
Rank History (30 days)
No rank data available
5 cookies detected
Essential4
Analytics0
Advertising1
Social0
0 1st party cookies
5 3rd party (trackers)
Dispute This Score For website owners
Believe this score is inaccurate?
If you are the website owner and believe the scan results contain errors or false positives, you can submit a dispute for manual review. Our team typically responds within 1-2 business days.
You will be asked to verify your email before the dispute can be processed.
By submitting this form, you confirm that the information provided is accurate. Disputes are reviewed manually and results may take up to 48 hours to update.
One more step..
To submit your dispute for ldnbyhefn.landry2.workers.dev, please click the verification link we just emailed you. Once verified, we'll review it within 1–2 business days.
This report was generated automatically and is provided for informational purposes only. Results are based on a point-in-time scan and may contain false positives or incomplete data. This does not constitute a security audit or certification. No vendor in the market can guarantee a 100% detection rate. If you believe this report is inaccurate, please submit a dispute.
Similar Recently Scanned
web3safeguard.com screenshot
web3safeguard.com
Potentially Suspicious 39/100
web3qfssecurity.org screenshot
web3qfssecurity.org
Potentially Suspicious 30/100
v0-coinbase-login-page.vercel.app screenshot
v0-coinbase-login-page.vercel.app
Potentially Dangerous 0/100
ils-usdt.xyz screenshot
ils-usdt.xyz
Potentially Suspicious 30/100
usdt-ils.xyz screenshot
usdt-ils.xyz
Potentially Suspicious 30/100
amana-vault.online screenshot
amana-vault.online
Moderate Risk 42/100
xow.fi
Potentially Suspicious 30/100
cow.fi-eu.xyz screenshot
cow.fi-eu.xyz
Potentially Dangerous 19/100

Share your experience with this website. Was it safe? Did you encounter any issues?