upld-info-web.square.site
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of upld-info-web.square.site
upld-info-web.square.site appears to be a page hosted on Square's website-building platform rather than an official standalone corporate domain. Based on the page title, metadata, and screenshot, it presents itself as an Uphold login or account-access page related to cryptocurrency, stocks, and metals trading, using branding associated with the Uphold financial platform.
The content shown in the screenshot resembles a branded landing page with navigation items such as Individuals, Enterprise, Institutional, Market, Learn, and Transparency, along with a Login button and app prompt. However, the site is operating from a Square subdomain with a generic-looking hostname, which may indicate a third-party hosted page rather than an official Uphold-owned web property.
The domain itself does not appear to represent a normal independent business website. Instead, it appears to be a hosted page that may have been created to imitate or reference a known financial brand, likely with the goal of attracting users seeking account access.
Safety Assessment for upld-info-web.square.site
Multiple independent signals raise significant concerns about this page. At the time of this scan, 17 out of 92 security engines flagged the URL, and several web-classification sources categorized it as phishing or fraud-related. In addition, major blacklist data included social-engineering listings, which is a strong indicator that the page may be attempting to collect credentials or other sensitive information under false pretenses.
The page also closely resembles Uphold branding in both its title and visible design, yet it is hosted on a square.site subdomain rather than an apparent official Uphold domain. That mismatch may indicate a look-alike page intended to appear affiliated with the real service. While one malware scan reported no directly flagged files, its generic object labels on site assets do not outweigh the broader multi-engine phishing consensus and blacklist listings.
Because this is a financial-themed login page on a third-party hosted subdomain, with substantial phishing detections and social-engineering blacklist hits, visitors should treat it with caution. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site uses a valid Let's Encrypt TLS certificate that was valid at the time of scanning, and it appears to be served through Cloudflare infrastructure while being hosted by Weebly/Square. The server IP geolocates to the United States, and the domain relies on AWS nameservers. DNSSEC is unsigned, which is common but means DNS responses do not appear to have DNSSEC validation protection.
From an infrastructure perspective, the use of mainstream hosting and a valid certificate does not by itself establish legitimacy, since phishing pages commonly use reputable cloud platforms and HTTPS. The more notable technical concern here is the combination of third-party hosted branding, blacklist presence, and broad phishing detections rather than any obvious TLS misconfiguration.
Share your experience with this website. Was it safe? Did you encounter any issues?