store.workshopscommunitycreators.com
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.
Description of store.workshopscommunitycreators.com
This domain appears to host a login page rather than a normal storefront, despite the "store" subdomain in its name. The visible page is styled to resemble the Steam sign-in interface, including branding elements associated with Valve's gaming platform, and presents a "Sign In" prompt with an error message about communication with Steam servers.
Based on the domain structure, this page does not appear to be an official Steam or Valve-owned web property. Instead, it appears to be a newly created subdomain under workshopscommunitycreators.com that may have been set up to imitate a recognizable gaming service login experience. The combination of a generic-looking parent domain, a very recent registration date, and branding associated with a different company raises credibility concerns at the time of this scan.
Safety Assessment for store.workshopscommunitycreators.com
Multiple scan signals indicate elevated risk at the time of this scan. The domain was flagged by 12 out of 91 security engines, with several classifying it as phishing or otherwise malicious, and an additional malware scan marked a hosted JavaScript file as suspicious. Although major blacklist databases checked here were clean at the time of review, blacklist status can lag behind newly created abusive pages, especially when a domain is only a few days old.
The page content itself also raises concern because it closely imitates the Steam login experience while being hosted on an unrelated domain. That kind of branding mismatch may indicate an attempt to collect account credentials or otherwise mislead visitors. The domain is only 5 days old, has no established popularity ranking, and uses a generic sign-in presentation that does not match the expected official service domain.
Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site was reachable over HTTPS with a valid Let's Encrypt certificate, and traffic appears to be routed through Cloudflare infrastructure. The server IP resolves to Cloudflare hosting in Toronto, Canada, and the domain uses Cloudflare nameservers. A valid certificate helps encrypt traffic in transit, but it does not by itself verify that the operator or page purpose is trustworthy.
From a domain-security perspective, the registration is extremely recent and DNSSEC is not enabled. The domain is unsigned, which means DNS responses do not benefit from DNSSEC validation. A suspicious JavaScript file was also identified during scanning, which may warrant deeper inspection of client-side behavior if this page is being investigated for credential harvesting or malicious scripting.
Share your experience with this website. Was it safe? Did you encounter any issues?