srva.closer.website
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of srva.closer.website
The domain srva.closer.website appears to host a simple web page styled as an email login portal. Based on the page title and screenshot, it presents itself as an "Outlook Web App" sign-in form requesting a username, email address, and password. The content is minimal and does not show the broader navigation, branding context, or supporting information typically associated with a full business or productivity service website.
The domain itself is a subdomain under closer.website rather than an official Microsoft-owned domain. No clear operator identity is disclosed on the page, and the available metadata does not indicate a legitimate organizational relationship with the Outlook service it visually references. Based on the visible content, the page appears intended to collect login credentials rather than provide standalone informational or transactional functionality.
Safety Assessment for srva.closer.website
Multiple security signals indicate elevated risk at the time of this scan. The domain was flagged by 18 out of 91 security engines, with most detections describing phishing-related behavior. In addition, the page visually imitates an Outlook login screen while being hosted on an unrelated domain, which may indicate an attempt to capture account credentials by resembling a well-known email service.
Blacklist and threat-database results were mixed. Several major content-focused threat databases did not list the domain at the time of this scan, and the malware file scan did not detect malicious files in the sampled page resources. However, the domain's IP address was listed on one mail-reputation blocklist, which is a weaker signal on its own but still worth noting. The stronger concern here is the combination of multi-engine phishing detections, the very low trust score provided in the scan context, and the apparent imitation of a recognizable login brand.
Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site was reachable over HTTPS with a valid Let's Encrypt certificate that was set to expire on 2026-08-24. It appears to be served by nginx from an IP hosted by Hetzner in Falkenstein, Germany. DNSSEC was not enabled for the domain, and the nameservers were ns1.closer.ws and ns2.closer.ws.
From a technical perspective, the page appears lightweight and consists mainly of static assets, form fields, and supporting scripts. The malware scan of 53 files did not flag any embedded malicious payloads at the time of analysis, but that does not materially reduce the phishing concern because credential-harvesting pages often rely on otherwise simple, clean-looking HTML and JavaScript rather than overt malware.
Share your experience with this website. Was it safe? Did you encounter any issues?