pafoved.net
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.
Description of pafoved.net
PAFOVED appears to be a French-language healthcare and nonprofit-oriented website focused on sickle cell disease awareness, training, support, and monitoring. The homepage text identifies it as the "Plateforme d'Appui, de Formation et de Veille sur la Drépanocytose," and the visible navigation includes sections such as presentation, news, publications, and contacts. The content and imagery suggest an informational platform rather than a commercial service.
Based on the homepage text, the project appears to be linked to the Centre de Formation et d’Appui Sanitaire (CEFA-Monkole) and references cooperation with European development partners. The site seems intended to share public-health information, training materials, project updates, and outreach resources related to sickle cell care in Central Africa, particularly the Democratic Republic of the Congo.
Safety Assessment for pafoved.net
Scan results are mixed at the time of this scan. The domain was flagged by 6 out of 91 security engines, with several classifying it as phishing or malicious, which is a meaningful caution signal. At the same time, major threat-database checks shown in the scan were clean, including content-malice and phishing-focused blacklist sources, and the domain has a long registration history of more than 13 years.
The page content visible in the screenshot appears consistent with a healthcare awareness or nonprofit project rather than a typical credential-harvesting page, and the malware scan only reported one generic suspicious JavaScript finding without a named malware family or broader file-level compromise indicators. That said, multiple independent phishing-related detections should not be ignored, even when the visible content looks benign, as they can sometimes reflect compromise, reputation issues, or false positives tied to specific pages or historical behavior.
Based on these findings, this website may pose potential risks, but the evidence is not fully conclusive from the available scan data alone. Visitors should exercise caution, especially before submitting personal information or following unexpected prompts.
Technical Description
The site is hosted on an Apache web server at IP address 62.210.201.13 in Paris, France, with hosting attributed to ONLINE. It presents a valid Let's Encrypt SSL certificate that was valid at the time of this scan, although the scan does not specify the negotiated TLS protocol version. The domain is relatively old, registered in 2012 through Gandi SAS, which can be a stabilizing trust signal compared with newly created domains.
DNSSEC appears to be unsigned, which is common but means DNS responses do not benefit from that additional authenticity layer. No DNS-based blocklist hits were reported in this scan, and blacklist checks were otherwise clean. The main technical concern noted was a single JavaScript file flagged as suspicious by a heuristic malware scan, which may warrant manual inspection but does not by itself confirm malicious behavior.
Share your experience with this website. Was it safe? Did you encounter any issues?