svnshiftplay.z13.web.core.windows.net
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of svnshiftplay.z13.web.core.windows.net
This URL is hosted on a microsoft-owned cloud storage subdomain under web.core.windows.net rather than on a standalone branded domain. Based on the page title ("OFFICIAL SITE - Support") and the screenshot, the page appears to present itself as a support or account-assistance page, but it is not operating from an official amazon-owned domain.
The visible content uses Amazon branding and displays a message claiming an account transaction requires urgent verification, along with a phone number to call. That presentation is commonly associated with tech-support or account-verification lures that attempt to create urgency and direct visitors to contact a third party.
Because this is a cloud-hosted subdomain with no clear independent business identity, the operator is not transparently identified from the available scan data. The combination of generic support wording, borrowed retail branding, and off-brand hosting may indicate a temporary campaign page rather than a legitimate customer-support property.
Safety Assessment for svnshiftplay.z13.web.core.windows.net
Scan findings show limited but notable risk indicators at the time of this scan. One out of 91 security engines flagged the URL as phishing, and one blacklist database also listed it for phishing-related activity. Other malware and blacklist checks were otherwise clean, and the file scan did not detect malicious payloads in the sampled content.
Even so, the page content itself raises stronger concerns than the raw detection count alone. The screenshot shows Amazon branding on a microsoft cloud-hosted subdomain and displays an urgent message about an unauthorized transaction, asking the visitor to call a phone number for support. That combination may indicate brand impersonation and a social-engineering attempt designed to pressure users into contacting a fraudulent call center or disclosing account information.
The long registration age shown in the WHOIS data appears to reflect the parent microsoft-owned domain rather than this specific hosted subpage, so it should not be treated as reassurance for the page itself. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site is served over HTTPS with a valid certificate issued to Microsoft Corporation, which is consistent with hosting on Azure infrastructure. The server appears to be Windows-Azure-Web/1.0 with Microsoft-HTTPAPI/2.0, hosted on Microsoft Azure cloud storage in the United States. DNSSEC is unsigned.
From a security-assessment perspective, the main concern is not the TLS setup but the use of a cloud-hosted subdomain to present branded support content that does not match the apparent brand owner. No malicious files, external links, or iframes were detected in the provided scan sample, but cloud-hosted phishing pages can still operate with minimal on-page artifacts.
Share your experience with this website. Was it safe? Did you encounter any issues?