mogcoins-xyz.pages.dev
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.
Description of mogcoins-xyz.pages.dev
This website appears to present itself as a promotional page for a cryptocurrency project called “Mog Coin” or “$MOG.” Based on the page title, screenshot, and visible navigation items such as “About $MOG,” “Memes,” “Merch,” “How To Buy,” and “How to Bridge,” the site seems intended to market a meme-coin style token and direct visitors toward token-related actions such as buying, swapping, or bridging assets.
The domain is hosted on a pages.dev subdomain rather than on a dedicated primary brand domain, which may indicate a lightweight or temporary deployment. The page also references several external crypto-related services and token-information resources. No clear operator identity, company details, or formal organizational information are evident from the provided scan data, so the entity behind the site cannot be independently verified from this snapshot alone.
Safety Assessment for mogcoins-xyz.pages.dev
Multiple security signals raise concern here. At the time of this scan, 15 out of 91 security engines flagged the domain, with many of those detections classifying it as phishing or otherwise malicious. In addition, the malware scan marked the page as malicious, flagged 3 hosted files, and identified numerous outbound links and referenced domains as suspicious. This level of multi-engine agreement is a stronger warning sign than a single heuristic alert.
The page also appears to imitate or mirror branding associated with the Mog Coin project while operating from a separate pages.dev subdomain rather than the apparent main project domain. That kind of domain mismatch may be consistent with a look-alike or unofficial clone intended to redirect users toward token purchases or wallet interactions. Although major threat databases and blacklist providers were clean at the time of this scan, those clean results do not outweigh the substantial number of phishing-related detections from security engines.
Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site is served over HTTPS with a valid TLS certificate issued by Google Trust Services, and it is hosted behind Cloudflare infrastructure on IP address 172.66.44.103. The domain uses Cloudflare nameservers and is several years old, which suggests the hostname itself is not newly registered, although that does not by itself reduce content-related risk. DNSSEC appears to be unsigned.
From a security perspective, the main concerns are not certificate validity or hosting setup, but the content and reputation signals: multi-engine phishing detections, malicious file findings, and suspicious outbound references. The use of a hosted subdomain platform may also make attribution more difficult than with a clearly branded standalone domain.
Share your experience with this website. Was it safe? Did you encounter any issues?