welcome-trust-auth.typedream.app
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of welcome-trust-auth.typedream.app
This domain appears to host a cryptocurrency-themed landing page presented as an "Official Trust Wallet" site. The screenshot shows branding, navigation, and download prompts associated with a crypto wallet product, while the page metadata indicates it was built on Typedream, a hosted website-building platform. The domain itself, welcome-trust-auth.typedream.app, does not appear to be an obvious primary corporate domain for the brand shown on the page.
Based on the visible content and classification data, the site appears to target users interested in digital wallets, Web3, and cryptocurrency asset management. The wording in the domain name ("welcome", "trust", and "auth") may suggest an onboarding or authentication flow, which can be relevant in phishing scenarios when a page imitates a known financial or crypto service.
The site appears to be operated through infrastructure associated with a hosted subdomain service rather than a standalone branded domain. That does not by itself indicate abuse, but in this case it is notable because the page visually presents itself as a branded financial-service interface while using a third-party subdomain.
Safety Assessment for welcome-trust-auth.typedream.app
Multiple security signals indicate elevated risk at the time of this scan. The domain was flagged by 17 out of 91 security engines, and multiple web-classification providers categorized it as phishing or fraud-related. In addition, one content-focused threat database listed the domain, while the page title and screenshot present it as an "Official Trust Wallet" page despite being hosted on a Typedream subdomain rather than an apparent official brand domain.
The page also shows several characteristics commonly associated with credential-harvesting or wallet-targeting impersonation pages: branded crypto-wallet visuals, download or onboarding prompts, and a domain name that combines trust-related and authentication-related terms. Although the malware scan did not report confirmed malicious files, its generic suspicious-object findings on numerous page assets are lower-confidence signals and are less important here than the broader phishing consensus. The domain's IP address is also listed on one mail-reputation blocklist, which is a minor cautionary signal but not the main reason for concern.
Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site uses a valid SSL/TLS certificate issued by a mainstream certificate authority, with hosting and reverse-proxy infrastructure appearing to be provided through Cloudflare. Nameservers also point to Cloudflare, and the server IP geolocates to Canada based on available data. DNSSEC appears to be unsigned.
From a technical perspective, the page seems to be a modern JavaScript-driven site built on Typedream/Next.js-style assets and delivered through a hosted subdomain. The presence of HTTPS is positive for transport encryption, but it should not be treated as proof of legitimacy. The more significant concern is the mismatch between the branded financial-service presentation and the third-party hosted subdomain, alongside the strong multi-engine phishing detections.
Share your experience with this website. Was it safe? Did you encounter any issues?