PCrisk.com
paie-lebon.duckdns.org favicon

paie-lebon.duckdns.org

Category: Phishing

Scanned: May 30, 2026, 05:06 PM UTC · First seen: May 30, 2026 · Threat Engines: 18 / 91 · Times Scanned: 1
5 / 100 Trust Score Based on scan findings at the time of analysis
Potentially Dangerous
0 - High Risk50 - Moderate100 - No Threats
Not scanned has not been scanned yet. Hit Scan Now to check it.

Scans can take up to 5 minutes to complete. Please keep this tab open - we'll redirect you to the report when it's ready.

Failed
Scan unavailable
Scan failed
Protect yourself from potentially harmful websites
Combo Cleaner's real-time web protection module actively blocks access to scam, phishing & malware-infected websites.
★★★★★ 4.8 / 5 Recommended by PCrisk.com editors Windows · Mac · Android · iOS
Download Combo Cleaner Free scan · no signup

To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.

Screenshot of paie-lebon.duckdns.org Captured May 30, 2026
https://paie-lebon.duckdns.org
Screenshot of paie-lebon.duckdns.org
This website has been flagged as potentially harmful
Screenshot blurred for safety. Multiple security engines flagged potential threats at the time of scanning.
13 years (duckdns.org)
Not Ranked - This website does not appear in the Tranco top list
Flagged by 18 of 91 engines
✓ Valid (TLS)
Ghosty Networks LLC
Schieren, Luxembourg
Apache
Unknown
64.89.160.102
Domain & WHOIS Information
Registrar Gandi SAS
Registered April 12, 2013 (duckdns.org)
Expires April 12, 2029
Name Servers ns1.duckdns.org
DNSSEC Unsigned
Hosting Ghosty Networks LLC
This is a subdomain of duckdns.org. The WHOIS data above belongs to the parent domain, not to paie-lebon.duckdns.org. The actual creation date of this subdomain is unknown and could be much more recent than the parent.
Reputation & Threat Check 91 security engines checked
18
18 of 91 engines flagged this website Flagged by 18 security vendors at the time of scanning
Not flagged Flagged
Flagged by 18 of 91 engines
Direct Threat Database Sources
Google Not listed Spamhaus DBL Not listed SURBL Listed Spamhaus ZEN Not listed Barracuda Not listed SpamCop Not listed Spamhaus ZRD Not listed URLhaus Not listed Phishtank Not listed QBMA Listed
View detailed engine results on VirusTotal
File Scan Summary Powered by Quttera Engine
1 file scanned
No threats
1
Low Risk
0
Medium Risk
0
High Risk
0
No threats Low Risk Medium Risk High Risk
paie-lebon.duckdns.org/index.html 12.1 KB No threats
External Links & Domains
5
External Links
All Clean
0
Iframes
Clean
1
Referenced Domains
All Clean
0
Flagged Resources
None Detected
https://flowering-pen.web.app/css/727502fb0082da8c2e00.cssNot flagged
https://flowering-pen.web.app/img/eyes.svgNot flagged
https://flowering-pen.web.app/img/lbc-front-web-arrow-left.svgNot flagged
https://flowering-pen.web.app/img/lbc-front-web-logo.svgNot flagged
https://flowering-pen.web.app/img/verified.svgNot flagged
flowering-pen.web.appNot flagged
paie-lebon.duckdns.org Overview

Description of paie-lebon.duckdns.org

This domain appears to host a login page styled to resemble Leboncoin, a well-known French classifieds marketplace. The page title, visible branding, and screenshot indicate that it is presenting a "leboncoin - connexion" interface and prompting visitors to enter an email address and password.

The domain itself is a DuckDNS subdomain rather than an official Leboncoin web property, which suggests it may not be operated by the legitimate marketplace. The page also loads assets from a separate web.app host, indicating a lightweight externally hosted front-end rather than a standard corporate login deployment. Based on the available content and classifications, the site appears to be intended to collect account credentials rather than provide an independent service.

Safety Assessment for paie-lebon.duckdns.org

Multiple security signals indicate elevated risk at the time of this scan. The domain was flagged by 18 out of 91 security engines, and several web-classification providers categorized it as phishing or fraud-related. The screenshot further shows a login form closely imitating Leboncoin branding while being hosted on an unrelated DuckDNS subdomain, which may be consistent with credential-harvesting activity.

Although one malware scan reported no malicious files and several blacklist sources were clean, those findings do not outweigh the broader phishing consensus in this case. The combination of strong multi-engine detection, a very low trust score, and branding that appears to mimic a known service on a non-official domain materially increases concern.

Based on these findings, this website may pose potential risks to visitors.

Technical Description

The site was reachable over HTTPS with a valid Let's Encrypt certificate, hosted on an Apache server at IP address 64.89.160.102 in Luxembourg. The domain uses DuckDNS nameservers, is relatively old as a parent hostname, and has DNSSEC disabled (unsigned). A valid certificate should not be treated as proof of legitimacy, since low-cost certificates are commonly used by both legitimate and abusive sites.

The page appears technically simple, with only one scanned file and several external assets loaded from flowering-pen.web.app. No flagged files or iframes were reported in the provided malware scan, but the use of third-party hosted assets alongside a brand-mimicking login page may still be a concern from an impersonation and credential-security perspective.

HTTP Redirect Chain
No redirects detected - direct connection to destination
Website Insights
Not Ranked
Tranco Rank
Not in Top 1M
Visitors Unknown
Category: Phishing
Rank History (30 days)
No rank data available
No cookies data available
Dispute This Score For website owners
Believe this score is inaccurate?
If you are the website owner and believe the scan results contain errors or false positives, you can submit a dispute for manual review. Our team typically responds within 1-2 business days.
You will be asked to verify your email before the dispute can be processed.
By submitting this form, you confirm that the information provided is accurate. Disputes are reviewed manually and results may take up to 48 hours to update.
One more step..
To submit your dispute for paie-lebon.duckdns.org, please click the verification link we just emailed you. Once verified, we'll review it within 1–2 business days.
This report was generated automatically and is provided for informational purposes only. Results are based on a point-in-time scan and may contain false positives or incomplete data. This does not constitute a security audit or certification. No vendor in the market can guarantee a 100% detection rate. If you believe this report is inaccurate, please submit a dispute.
Similar Recently Scanned
votes.hub-flarenetwork.com screenshot
votes.hub-flarenetwork.com
Potentially Dangerous 19/100
dpd.mvztrqplxn.club screenshot
dpd.mvztrqplxn.club
Potentially Dangerous 5/100
dpd.xvnplrqtmz.cyou
Potentially Dangerous 5/100
dpd.qtrzvplxmn.cfd
Potentially Dangerous 5/100
dpd.znxqtrmvpl.cfd
Potentially Dangerous 19/100
cfd.worksinc.app
Potentially Dangerous 5/100
dpd.bvxtrpq.cfd
Potentially Dangerous 5/100
plumeair.eth.limo
Potentially Dangerous 5/100

Share your experience with this website. Was it safe? Did you encounter any issues?