okqianbaoxiazaianzhuo.com.cn
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.
Description of okqianbaoxiazaianzhuo.com.cn
The domain okqianbaoxiazaianzhuo.com.cn appears to present itself as a Chinese-language digital wallet landing page. Its title and on-page text describe an "OK Wallet" for digital payments, transfers, asset management, and multi-currency support, with calls to download or start using the wallet on Android. The page layout resembles a promotional product site for a cryptocurrency or digital-finance application rather than a general informational website.
Based on the domain wording, the site seems to target users searching for an Android download of an "OK wallet" application. The operator is not clearly identified in the provided scan data, and the page does not appear to show strong organizational attribution on the visible homepage. The combination of wallet-related branding, download-oriented wording, and finance-themed claims suggests it may be attempting to attract users interested in cryptocurrency or digital asset management services.
Safety Assessment for okqianbaoxiazaianzhuo.com.cn
Multiple independent security signals raise concern about this domain at the time of this scan. It was flagged by 14 out of 91 security engines, and several web-classification sources categorized it as phishing or fraud-related. The page also presents itself as a digital wallet download site, which is a common lure category for credential theft and fraudulent financial-app distribution. In addition, the malware scan marked one local script file as malicious, which may indicate suspicious client-side behavior, although no malware family name was provided.
At the same time, blacklist databases included in the scan were largely clean, which can happen with newer or short-lived phishing pages before broader blocklists catch up. The very low trust score provided with the scan, the phishing-oriented categorizations, and the financial-wallet theme together make this a higher-risk case than a routine false positive. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site was reachable over HTTPS with a valid Let's Encrypt certificate that, at the time of the scan, was set to expire on 2026-07-22. It appears to be served by nginx from IP address 154.194.137.74, hosted by Starbow Ltd in Chai Wan, Hong Kong. DNSSEC was not enabled, and the domain used share-dns.com / share-dns.net nameservers.
From a security perspective, the presence of TLS alone should not be treated as a trust signal, since phishing pages also commonly use valid certificates. One scanned JavaScript file, /nb.js, was flagged as malicious by the malware scan, while external links and referenced domains were not flagged in that same scan. Domain registration details and age were unavailable in the provided data, which limits confidence in legitimacy checks.
Share your experience with this website. Was it safe? Did you encounter any issues?