This domain is a malicious site designed to impersonate the official Romanian government payment portal, Ghiseul.ro, for the purpose of phishing and data harvesting.
- Specialization
- Government Impersonation Scam
- Registered
- Oct 4, 2025
Domain Age
9 Months
Tranco Rank
Unranked
Hosting Provider
Cloudflare, Inc.
Threat History
Issues Found
This domain is a malicious site designed to impersonate the official Romanian government payment portal, Ghiseul.ro, for the purpose of phishing and data harvesting.
URLert analyzed recent scan activity for q4r1.cc and found 1 result.
| Status | Target URL | Type | Time |
|---|---|---|---|
| Dangerous | https://q4r1.cc/ro?uzj=*** | 1d ago |
Historical and current IP address mappings for this domain.
| IP Address / Hosting | Status | Subdomains | Last Seen |
|---|---|---|---|
Hosted by: Cloudflare, Inc. (AS13335) | Active | q4r1.cc | 1 hour ago |
Hosted by: Cloudflare, Inc. (AS13335) | Active | q4r1.cc | 1 hour ago |
Received a suspicious link? Paste the full link to investigate.
Access this classification data programmatically via our API.
{
"domain": "q4r1.cc",
"confidence": "high",
"category": {
"purpose": "potentially_malicious",
"specialization": "Government Impersonation Scam"
},
"identity": {
"headline": "Fraudulent Romanian government portal impersonation",
"summary": "This domain is a malicious site designed to impersonate the official Romanian government payment portal, Ghiseul.ro, for the purpose of phishing and data harvesting.",
"operator": null,
"parent_entity": null,
"topics": [
"phishing",
"fraud",
"impersonation",
"romania",
"government-scam"
]
},
"functions": {
"is_ugc_platform": false,
"is_file_host": false,
"is_url_shortener": false,
"is_public_idp": false,
"is_crypto_platform": false,
"allows_user_subdomains": false,
"is_form_builder": false,
"is_document_host": false
},
"facts": {
"registered_date": "2025-10-04T12:15:54Z",
"rank": null,
"hosting_provider": "Cloudflare, Inc."
}
}