whatsappclone-inky.vercel.app
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of whatsappclone-inky.vercel.app
This domain appears to host a web page styled to resemble WhatsApp, using the title "WhatsApp" and a prominent WhatsApp-like logo alongside a "Login with Google" prompt. Based on the domain name "whatsappclone-inky.vercel.app," the site appears to be a clone or imitation rather than an official WhatsApp property, and it is served from a Vercel-hosted subdomain rather than a known first-party WhatsApp domain.
Available classification data associates the site with phishing and fraud-related categories, while one web-classification source labels it broadly as social media. The page content shown in the screenshot is minimal and focused on prompting user login activity, which may indicate an attempt to collect credentials or impersonate a well-known messaging platform. No clear evidence in the scan data identifies the operator beyond the use of Vercel hosting and a registrar record tied to the parent domain infrastructure.
Safety Assessment for whatsappclone-inky.vercel.app
Multiple independent signals indicate elevated risk at the time of this scan. The domain was flagged by 21 out of 91 security engines, with many of those detections describing the page as phishing or fraud-related. In addition, several web-classification providers categorized the site as phishing or other fraud, and the screenshot shows branding that closely resembles WhatsApp while using a non-official subdomain and a third-party login prompt. That combination may be consistent with credential-harvesting or brand impersonation activity.
The malware scan did not report infected files, but it did apply a generic malicious heuristic to the domain and its linked assets. Blacklist data was mixed: major content-malice databases shown here did not detect the site at the time of this scan, but one threat database listed it, and the domain's IP address was also listed on one mail-reputation blocklist. That DNS-based listing is a weaker signal on its own, but in this case it adds to a broader pattern of concern rather than standing alone.
Given the strong multi-engine phishing consensus, the impersonation-style presentation, and the very low trust score provided in the scan context, this website may pose potential risks to visitors at the time of this scan. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site is hosted on Vercel infrastructure and resolves to IP address 216.198.79.3, with hosting geolocated to Atlanta, United States. It uses a valid SSL/TLS certificate issued by a mainstream certificate authority and expiring on 2026-07-27, which means the connection appears to be encrypted in transit. However, valid HTTPS should not be treated as proof of legitimacy, especially for pages that may imitate well-known brands.
WHOIS data indicates the domain has existed for several years, although this is a subdomain on vercel.app rather than a standalone brand-owned domain. DNSSEC appears to be unsigned. No direct malware payloads were identified in the scanned files, but the page assets and referenced domain were tagged with a generic malicious heuristic, and the overall hosting setup appears consistent with a lightweight deployed web app rather than an established official service portal.
Share your experience with this website. Was it safe? Did you encounter any issues?