trezarsuit-en.wasmer.app
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of trezarsuit-en.wasmer.app
This website appears to present itself as an "Official Trezor Suite" page for managing a Trezor hardware wallet and cryptocurrency assets. The page title and visible content describe desktop and web access for wallet management, portfolio tracking, privacy features, and hardware-wallet integration. It also links out to multiple real Trezor-related resources such as trezor.io, suite.trezor.io, the Trezor shop, blog, and wiki.
Safety Assessment for trezarsuit-en.wasmer.app
Several security signals indicate elevated risk at the time of this scan. The domain was flagged by 7 out of 91 security engines for phishing, and the page content appears to imitate Trezor branding while being hosted on a wasmer.app subdomain rather than an official Trezor-owned domain. That mismatch between the claimed identity and the actual hostname is a common pattern associated with credential-harvesting or wallet-targeting impersonation pages.
Other signals are mixed but do not outweigh the phishing concerns. A malware scan did not flag files on the page, and major content-malice blacklist checks were clean at the time of this scan; however, the domain's IP address is listed on one mail-reputation blocklist, which is a minor cautionary signal rather than direct proof of malicious web content. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site uses a valid Let's Encrypt SSL certificate with expiry listed as 2026-09-13, which indicates HTTPS was configured at the time of testing. It resolves to IP address 62.210.172.162, hosted by ONLINE in Paris, France. The domain is a subdomain on wasmer.app, while the page content claims to be an official Trezor service, which is a notable infrastructure inconsistency.
WHOIS data for the parent domain indicates an older registration date, but that age does not establish legitimacy for an individual subdomain. DNSSEC appears to be unsigned, and the web server software was not identified in the scan data.
Share your experience with this website. Was it safe? Did you encounter any issues?