DANGEROUS

Critical risk detected

8 of 92 antivirus engines flag this page (8 outright malicious). Our security review flagged this site as high-risk. Don't enter personal information, deposit money, or download files.

Security Review

Is cas-univ-lyon1.framer.website legit or a scam?

Our verdict:Dangerous· 1/100

Phishing page mimicking a university login portal, flagged by BitDefender, ESET, and four other engines.

cas-univ-lyon1.framer.websiteScanned 1h ago
0
Trust score
DANGEROUS
Score breakdown
Heuristics 0·MT 20
Screenshot of cas-univ-lyon1.framer.websiteSee the live page ↓
Category tags
phishing#phishing85% MT confidence
Technical red flags (1)
8 of 92 engines flagged
Positive signals (4)
Not on major blacklistsDomain is 5 years oldEncrypted connectionClean server reputation

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence
8/92
Engines flagged this URL
Domain Age
5 years old
Registered Nov 19, 2021
Intelligence
Dangerous
High likelihood · 85% confidence

Website Preview

Screenshot of cas-univ-lyon1.framer.website
LIVE RENDER
cas-univ-lyon1.framer.website

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

Intelligence

Advanced threat intelligence
Analysis
High scam likelihoodengineMT · Guardiantrust20/100
MT AgentLive web researchVisual inspection
0%
Confidence
The domain cas-univ-lyon1.framer.website carries a university-style name that suggests an official login page for Université Lyon 1. Six security engines explicitly flagged the page as phishing, including BitDefender, ESET, Emsisoft, and G-Data. The hosting IP shows a moderate abuse score and two prior abuse reports, increasing the risk. The domain itself is 4.6 years old and uses a legitimate registrar, yet the phishing detections override that age signal. Browser blocklists remain clean and the sandbox did not flag the page, but the engine consensus is strong enough to warrant a malicious classification. Users should avoid entering any credentials on this site.
Full dossier
Analysis complete

Page Content

The URL structure and domain name strongly suggest an attempt to impersonate the CAS (Central Authentication Service) login portal for Université Lyon 1. No legitimate university would host its authentication system on a Framer subdomain.

Infrastructure

The site is hosted on IP 31.43.160.6, which carries an abuse score of 10/100 and two recorded abuse reports. SSL is valid and issued by Let's Encrypt, but this is common for both legitimate and malicious sites. The page required only one redirect hop and stayed within the same domain.

Domain History

The domain was registered on 2021-11-19 through CSC Corporate Domains, Inc. At 4.6 years old, the domain is not newly created, yet the phishing detections indicate it may have been repurposed or compromised for malicious use.

Web Reputation

Six of 92 antivirus engines flagged the page as phishing. BitDefender, ESET, Emsisoft, Forcepoint ThreatSeeker, G-Data, and LevelBlue all returned positive detections. No independent review aggregators returned data for this domain.

What this means for you

Do not enter any university credentials, email addresses, or passwords on this page. The combination of a university-branded domain and multiple phishing detections indicates a credential-harvesting attempt.

Risk Factors
3
  • Six antivirus engines (BitDefender, ESET, Emsisoft, Forcepoint ThreatSeeker, G-Data, LevelBlue) flagged the page as phishing.
  • Domain name mimics an official university authentication portal (cas-univ-lyon1).
  • Hosting IP 31.43.160.6 has a 10/100 abuse score and two prior abuse reports.
Positive Signals
3
  • Domain is 4.6 years old with a reputable registrar (CSC Corporate Domains).
  • SSL certificate is valid and issued by Let's Encrypt.
  • Browser blocklist feeds returned clean.
AI Recommendation
Do not enter any login credentials or personal information. Close the page and navigate directly to the official university website through a trusted bookmark or search.
Next-gen fraud intelligence
Evidence-backedCross-checked

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for cas-univ-lyon1.framer.website, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Web mentions
No scam reports found
No complaints, no negative coverage turned up in our sweep.

We searched scam-report databases, consumer-review sites, and general web sources for cas-univ-lyon1.framer.website and did not find scam reports, complaints, or impersonation signals. The domain age, registration record and aggregator reviews shown above are consistent with a legitimate site.

Domain Timeline

  1. Nov 19, 2021
    Domain registered

    First appeared in WHOIS records — 4.6 years old today.

  2. Jul 10, 2026
    Latest security review — Flagged as dangerous

    This scan re-ran every check; the current findings are detailed above.

cas-univ-lyon1.framer.website is an established domain now carrying threat signals. An older domain that starts tripping security checks is a classic pattern for an asset that was sold, repurposed, or compromised — the age alone is not reassurance.

Threat Detection

Antivirus Engines

Detection matrix · live
8 engines flagged this URL

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. Each detection is listed below by engine name — even a single hit is a meaningful signal.

8Malicious0Suspicious53Harmless92Engines
0
of 92
BitDefender
Malicious· phishing
Emsisoft
Malicious· phishing
ESET
Malicious· phishing
Forcepoint ThreatSeeker
Malicious· phishing
G-Data
Malicious· phishing
LevelBlue
Malicious· phishing
Netcraft
Malicious· malicious
Sophos
Malicious· phishing

8 antivirus engines flagged this URL. Even a single detection is a meaningful signal — treat this site with extra caution and avoid entering credentials, payment info, or downloading any files.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
ListedCheck ↗
AbuseIPDB
Not listedCheck ↗

Technical Details

Domain & Encryption

Domain History
Age5 years old
RegistrarCSC Corporate Domains, Inc.
RegisteredNov 19, 2021
ExpiresNov 19, 2026
Owner privacyVisible
Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerLet's Encrypt · YE1
ExpiresSep 24, 2026 (75d)
Self-signedNo
Hosting & Technology
HostingFramer B.V.
Server locationNL

Redirect Chain

Hops
1
Cross-domain
No
Lookalike
No
Punycode
No
  • 1308http://cas-univ-lyon1.framer.website/
  • 2404https://cas-univ-lyon1.framer.website/

Server Reputation

Abuse Intelligence
Confidence score10%
Reports on file2
ISPFramer B.V.
Usage typeContent Delivery Network

What to do

Avoid this site

Our automated review flagged enough risk that you should treat this site as unverified.

  • Do not interact with cas-univ-lyon1.framer.website

    Do not enter credentials, deposit money, download files, or install browser extensions from this site.

  • Verify the business through independent channels

    Check the company's social profiles, registry records, and search for recent news or reviews that are not hosted on the site itself.

  • Never use irreversible payment methods

    Crypto, gift cards, wire transfers, and cash apps offer zero buyer protection. Use a credit card or PayPal if you must pay.

  • Share your experience

    If you have additional context, drop a comment below or post on the MalwareTips forum.

    Open

Final Verdict

0
Trust / 100
Final Verdict·cas-univ-lyon1.framer.website
DANGEROUS

This page is a phishing site impersonating a university login portal. Six major antivirus engines flagged it as phishing, and the domain is hosted on a low-reputation IP with abuse reports.

Do not enter any login credentials or personal information. Close the page and navigate directly to the official university website through a trusted bookmark or search.

AV engines
92
Domain age
5 yrs
Flagged
8
Scan another URL
Security review completemalwaretips.com/url-scan

Safety FAQ

Common questions, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

  • cas-univ-lyon1.framer.website shows every sign of being a scam site — avoid interacting with it. Our review tagged it for phishing. 8 of 92 security engines flag it (8 as outright malicious). The domain is 4.6 years old through CSC Corporate Domains, Inc.. This pattern matches throwaway sites built to take money or data and disappear.
  • No — cas-univ-lyon1.framer.website scored just 1/100 on our trust scale, and we detected active threat indicators. We recommend avoiding it entirely: don't log in, pay, download anything, or connect a wallet.
  • If you've already paid or handed over details on cas-univ-lyon1.framer.website, act quickly. 1) Contact your bank or card issuer immediately and ask to dispute the charge or open a chargeback — the sooner you act, the better your odds. 2) Report the site to the U.S. FTC at reportfraud.ftc.gov or the FBI's IC3 at ic3.gov, and in the UK to Action Fraud at actionfraud.police.uk. 3) If you entered a password, change it on cas-univ-lyon1.framer.website and anywhere you reused it, and turn on two-factor authentication. 4) Watch your bank and email for follow-up fraud, and keep screenshots as evidence.
  • Often yes, if you act fast. Payments made by credit or debit card can frequently be reversed through a chargeback or dispute — contact your bank right away and explain it was a fraudulent site. Bank transfers and gift-card or voucher payments are much harder to recover, but you should still report them to your bank and to the FTC (reportfraud.ftc.gov) or Action Fraud (actionfraud.police.uk). Avoid any "refund" or "recovery" service that contacts you first — it's usually a follow-up scam.
  • Just viewing a scam page is usually low-risk on an up-to-date browser — the real danger is what it asks you to DO (enter details, download a file, send money). If you downloaded anything, run a full antivirus scan and treat the file as untrusted. If you entered a password or card number, change the password everywhere you reused it and contact your bank.
  • You can report cas-univ-lyon1.framer.website through several official channels: the U.S. FTC at reportfraud.ftc.gov, the FBI's Internet Crime Complaint Center (IC3) at ic3.gov, and — in the UK — Action Fraud at actionfraud.police.uk. You can also flag it to Google Safe Browsing (safebrowsing.google.com/safebrowsing/report_phish) so other browsers warn about it, and report it to the company being impersonated if there is one. Reporting helps get scam sites taken down faster.
  • Modern scams are built to look convincing. A valid SSL padlock, a polished template, stock photos, fake reviews, and a trust badge can all be added in minutes and prove nothing about who runs the site. Scammers buy cheap domains, clone real designs, and copy legal pages wholesale. That's exactly why an automated review that checks the domain's age, hosting, blacklists, and behaviour — rather than just how the page looks — is more reliable than a first impression.
  • Yes. 8 of 92 antivirus and blocklist engines in our malware network flagged cas-univ-lyon1.framer.website, 8 of them as outright malicious. Even a single detection from a reputable engine is a meaningful warning, and multiple detections rarely happen by accident.
  • No — cas-univ-lyon1.framer.website is not currently on the major browser blocklist feeds that Chrome, Safari, Firefox, and Edge rely on. Note that blocklists can lag behind brand-new scam domains, so "not listed" is reassuring but not a guarantee on its own.
  • cas-univ-lyon1.framer.website is 4.6 years old, registered on November 19, 2021 through CSC Corporate Domains, Inc.. A multi-year registration history is one of the stronger signals against a scam, though it's never a guarantee on its own — established domains can still be misused.
  • cas-univ-lyon1.framer.website resolves to an IP operated by Framer B.V. in NL (Content Delivery Network). Hosting location alone doesn't make a site good or bad — but hosting that doesn't match a brand's claimed country, or that sits on networks known for abuse, is one of the many signals we weigh alongside the verdict above.
  • This report is a record of the scan run on July 10, 2026, and the verdict reflects that point in time. Scam sites change fast — they can go live, get flagged, or vanish within days — so if you believe something about cas-univ-lyon1.framer.website has changed, MalwareTips staff can run a fresh scan that re-checks every signal from scratch and republishes an updated verdict.
Recently scanned

Other Dangerous reports

Browse all reports
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.