mail03-blocage-provisoire.abrdns.com
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.
Description of mail03-blocage-provisoire.abrdns.com
This domain appears to be a subdomain hosted under abrdns.com and, based on its naming pattern, may have been set up to resemble a temporary mail-related or account-access page. The visible homepage is not a full website; instead, it shows a basic Apache directory listing labeled "Index of /" with a single accessible subfolder named "id/". That presentation suggests the host may be serving a narrowly scoped landing page or staged content rather than a conventional public-facing service.
Available classification data associates the domain with phishing and fraud-related activity. The wording in the subdomain string, combined with the presence of a simple directory index and a referenced "id/" path, may indicate an attempt to direct visitors toward an identity, login, or credential-related page. Based on the available scan context, this does not appear to be a mainstream business, media, or consumer service website.
Safety Assessment for mail03-blocage-provisoire.abrdns.com
Multiple independent security signals raise concern about this domain at the time of the scan. It was flagged by 13 out of 91 security engines, and several web-classification sources categorized it as phishing or fraud-related. In addition, a malware scan marked one path on the site as suspicious, although that finding was generic rather than tied to a named malware family.
The page content visible in the screenshot is minimal and consists of an open directory listing rather than a normal website homepage. That kind of sparse setup can sometimes be seen on temporary infrastructure used for credential collection or other deceptive campaigns, especially when paired with a mail-themed subdomain name. While major threat databases and blacklist checks shown here were otherwise clean at the time of the scan, the multi-engine phishing consensus is a much stronger signal in this case.
Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site was reachable over HTTPS with a valid Let's Encrypt certificate that, at the time of the scan, was set to expire on 2026-09-14. It appears to be served by Apache from an IP hosted on Microsoft Azure Cloud in the Johannesburg region of South Africa. The domain itself is relatively old, having been created in 2014, which suggests the risk may be tied to this specific subdomain or current deployment rather than the age of the parent domain alone.
DNSSEC appears to be unsigned, so DNS responses may not benefit from that additional integrity protection. The homepage exposes a directory index, which is generally a weak configuration choice because it can reveal internal paths and site structure. Combined with the suspicious classification data, that exposed indexing may be an additional operational concern.
Share your experience with this website. Was it safe? Did you encounter any issues?