meta-id17682.invoice-ads-manager[.]com
Category: Suspicious
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of meta-id17682.invoice-ads-manager[.]com
The domain meta-id17682.invoice-ads-manager[.]com appears to present itself as a Meta-related account or business support page. Based on the page title, metadata, and screenshot, it imitates branding associated with Meta's privacy and account-management ecosystem and promotes a supposed "Meta Agency Partner Program" invitation. The content suggests a workflow where visitors are encouraged to submit a participation request or continue an account-related process.
However, the domain itself is not an official Meta-owned domain and uses a long subdomain structure under invoice-ads-manager.com, which may be intended to resemble a legitimate business or advertising portal. The page references Meta branding and links to facebook.com, which may increase its apparent credibility to visitors. Based on the available content, this appears to be a look-alike login or account-lure page rather than an independently branded business website.
Safety Assessment for meta-id17682.invoice-ads-manager[.]com
Multiple risk indicators were identified at the time of this scan. The site was flagged by 22 out of 92 security engines, with many classifying it as phishing, malicious, or fraud-related. In addition, several web-classification sources categorized the domain as suspicious, phishing, or malware-related. The screenshot also shows strong visual imitation of Meta branding while being hosted on a non-official domain, which may indicate an attempt to mislead users into believing they are interacting with a legitimate Meta service.
Although one malware scan reported no flagged files and several blacklist databases were clean at the time of this scan, those signals do not outweigh the broader phishing consensus. The domain is also extremely new at 16 days old, unranked, and structured in a way that may be designed to resemble a trusted business or account-management portal. These are common characteristics of short-lived credential-harvesting campaigns.
Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site uses a valid SSL/TLS certificate issued by a mainstream certificate authority and is served through Cloudflare infrastructure at IP address 172.66.0.96, with hosting geolocated to Canada based on available data. A valid certificate indicates encrypted transport, but it does not verify that the underlying service is trustworthy. DNSSEC appears to be unsigned, and the domain uses registrar-provided nameservers.
From an infrastructure perspective, the page appears to be a modern web application with Next.js-style static asset paths. No malicious files were flagged in the provided file scan, and no suspicious external links or iframes were identified in that specific crawl. Even so, the primary concern here appears to be social-engineering and credential phishing rather than overt malware delivery.
Share your experience with this website. Was it safe? Did you encounter any issues?