log-coinbase-in.framer.ai
Category: Information Technology, Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of log-coinbase-in.framer.ai
The domain log-coinbase-in.framer.ai appears to be a subdomain hosted on Framer, a website-building and hosting platform. Based on the naming pattern, it seems designed to resemble a Coinbase-related login address, even though it is not on Coinbase's primary domain. At the time of this scan, the visible page displayed a generic "Site Not Found" message rather than an active service or application.
Available classification data associates this address with phishing and fraud-related categories rather than a legitimate cryptocurrency or financial service. The use of a hosted subdomain on a site-building platform may indicate that the address was created for a temporary campaign, test page, or impersonation attempt, although the currently visible content is inactive.
Because this is a subdomain rather than a standalone registered domain, the age of the parent domain does not necessarily reflect how long this specific address has been in use. Based on the domain string and categorization signals, it appears more consistent with a look-alike or impersonation-oriented page than with an official Coinbase property.
Safety Assessment for log-coinbase-in.framer.ai
Multiple scan sources categorized this address as phishing or fraud-related, and 19 out of 92 security engines flagged it at the time of this scan. In addition, one threat database listing was present, which adds corroborating evidence beyond a single heuristic alert. Although the malware file scan did not identify malicious files on the currently served page, that result is limited because the page appears inactive and only a minimal amount of content was available for inspection.
A notable concern is that the domain closely resembles coinbase.com in plain language and may be a look-alike intended to exploit user trust in the Coinbase brand. The combination of a Coinbase-themed subdomain name, lack of ranking, and phishing-oriented classifications increases the likelihood that this address may have been used for credential harvesting or related social-engineering activity.
The current screenshot shows a "Site Not Found" page, which may mean the content has been removed, misconfigured, or is no longer active. Even so, historical and point-in-time detection signals remain relevant. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site presented a valid Let's Encrypt SSL certificate expiring in July 2026 and was hosted on infrastructure associated with Framer B.V at IP address 31.43.161.6 in Amsterdam, Netherlands. The web server identified itself as Framer, and the page title matched a default "Site Not Found" response. DNSSEC was not enabled for the parent domain zone according to the provided data.
From a security perspective, the main concerns are reputational rather than transport-layer issues: the address was flagged by a substantial number of security engines, matched phishing-related categories, and resembles a well-known financial brand in its naming. No external links, iframes, or flagged files were observed in the limited scan content, but that may reflect the current inactive state rather than the full historical behavior of the subdomain.
Share your experience with this website. Was it safe? Did you encounter any issues?