metqmask-wallet.gitbook.io
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of metqmask-wallet.gitbook.io
This URL is a subdomain hosted on GitBook, a platform commonly used to publish documentation, guides, and lightweight web pages. The string "wallet" in the subdomain name suggests it may have been presented as a cryptocurrency wallet-related page, knowledge base, or onboarding portal rather than a standalone corporate website.
Based on the available classifications, the page has been associated by multiple web-classification providers with phishing or fraud-related activity rather than ordinary documentation use. The current screenshot does not show an active content page; instead, it displays a brief notice stating that the organization has been suspended, which suggests the hosted content may have been taken down by the platform operator or is no longer publicly available.
Because this is a GitBook-hosted subdomain rather than an independent top-level brand domain, the underlying infrastructure is shared with the hosting platform. That means the page itself appears to have been operated by a GitBook user or organization account, while delivery and edge protection are handled through the platform's broader hosting setup.
Safety Assessment for metqmask-wallet.gitbook.io
Scan results indicate elevated risk at the time of this scan. The URL was flagged by 18 out of 91 security engines, with many of those detections describing phishing or fraud-related behavior. Multiple web-classification sources also categorized the page as phishing. Although one malware scan reported no malicious files in the limited content it checked, that does not outweigh the broader phishing consensus from the reputation and threat-detection data.
Blacklist-style results were mixed rather than uniformly clean. Major content-malice databases shown here did not report a listing at the time of the scan, but the domain's IP address was listed on one mail-reputation blocklist. That particular signal is weaker than direct phishing detections and may reflect shared infrastructure or email reputation rather than website content, but it still adds a small amount of caution.
The screenshot further shows the page in a suspended state, which is consistent with a hosted page that may have been disabled after review or abuse handling. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site was served over HTTPS with a valid TLS certificate issued by a mainstream certificate authority, and traffic appears to have been proxied through Cloudflare infrastructure at IP address 104.18.40.47. The web server and hosting environment both point to Cloudflare-backed delivery, while the content itself appears to have been hosted as a GitBook subdomain. The certificate validity indicates encryption was present, but HTTPS alone does not validate the trustworthiness of the page content.
The domain record shows an older registration date and Cloudflare nameservers, with DNSSEC reported as unsigned. An older domain age can sometimes support legitimacy, but in this case it should be interpreted cautiously because the scanned URL is a hosted subdomain rather than a standalone business domain, and the phishing detections are the stronger signal. No malicious files, external links, or iframes were identified in the limited page scan, likely because the page was already suspended at the time of capture.
Share your experience with this website. Was it safe? Did you encounter any issues?