ScamLens analyzed 088c0ca5c15c457d48af30bae74fae74.xyz using 90+ threat intelligence sources and assigned a trust score of 40/100, classifying it as moderate risk.
Trust Score: 40/100
Risk Level: Caution
This result is still in the investigation range, so the domain alone is not enough for a decision. The next step is to cross-check the email, phone number, company identity, and scenario.
Quick Answer
This result is still in the investigation range, so the domain alone is not enough for a decision. The next step is to cross-check the email, phone number, company identity, and scenario.
Positive Signals
- + Google Safe Browsing: Safe
- + Valid SSL certificate
- + HTTPS encryption supported
Concerns
- - Domain registered only 5 month ago
- - 2 security sources flagged as suspicious
Score Breakdown
Was this assessment accurate?
Mixed signals on 088c0ca5c15c457d48af30bae74fae74.xyz
We did not find direct threat-feed hits, but coverage is thin or other signals warrant care.
- Verify the company exists offlineSearch the registered company name + 'reviews' or 'scam'. Real businesses leave a long trail of independent mentions.
- Pay only via reversible methodsUse credit cards or PayPal Goods & Services. Avoid wire transfers, crypto, gift cards — those are non-reversible.
- Confirm the contact detailsLook up the phone number and email address separately. Free webmail addresses or VoIP numbers are a red flag.
Trust but verify — open this domain on unrelated security services and compare the verdict.
Threat-intelligence sources
Checked across 28 sources — 2 flagged this domain
Show source breakdown
Threat-intelligence sources
Checked across 28 sources — 2 flagged this domain
- safe_browsing clean
- urlhaus clean
- cloudflare_radar clean
- cert_transparency clean
- alienvault_otx clean
- phishstats clean
- virustotal clean
- ipqs clean
- abuseipdb clean
- securitytrails clean
- phishdestroy clean
- threatfox clean
- shodan_internetdb clean
- phishtank clean
- urlscan clean
- rdap clean
- maltiverse clean
- dnsbl clean
- dns_security flagged
- wanted_domains clean
- darkweb clean
- hagezi_tif flagged
- openphish clean
- scam_blocklist clean
- maltrail clean
- crypto_scam_feed clean
- phishing_army clean
- red_flag_domains clean
ScamLens aggregates real-time signals from 90+ commercial and open-source threat-intelligence providers including Google Safe Browsing, VirusTotal, PhishTank, URLhaus, ThreatFox, Cloudflare Radar, OTX, IPQS, GoPlus, Honeypot.is, and more. A flagged signal is evidence; the absence of flags is not proof of safety. Use the signals below alongside community reports to decide.
Advanced Scan
Comprehensive data lookup across premium sources
- Website history verification
- Detailed WHOIS information
- Reverse WHOIS association
- Traffic rank analysis
- Company registration check
AI Deep Investigation
Cross-check the story, claims, and supporting evidence before you decide
- Everything in Advanced Scan
- AI website content analysis
- AI cross-reference verification
- Claim authenticity validation
- Detailed report with evidence
Comprehensive Investigation
Full-spectrum investigation with company deep search & social intelligence
- Everything in Deep Investigation
- AI company background search
- Social media intelligence
- Detailed suspicious point analysis
- Event timeline & entity connections
This analysis is for informational purposes only and does not constitute a legal determination.
Security Sources
Domain Information
- Registrar
- Dynadot LLC
- Created
- January 11, 2026
- Expires
- January 11, 2027
- Domain Age
- 5 months
- DNSSEC
- Disabled
- Nameservers
- ns1.csof.net, ns4.csof.net, ns3.csof.net, ns2.csof.net
- Domain Status
- client transfer prohibited
SSL/TLS Certificate
- Issuer
- C=US, O=Let's Encrypt, CN=R13
- Valid From
- April 15, 2026
- Valid To
- July 14, 2026
- Status
- Valid
Server Information
- IP Address
- 52.16.171.153
- Hosting Provider
- Amazon.com, Inc.
- ASN
- AS16509 Amazon.com, Inc.
- Server Location
- Dublin, Ireland
- Organization
- AWS EC2 (eu-west-1)
Related Intelligence
Technical Details (DNS / Headers / Subdomains)
DNS Records
Email Security
SPF Configured DMARC Not Configured| Type | Value |
|---|---|
| A | 52.16.171.153 |
| MX | 10 mx1.088c0ca5c15c457d48af30bae74fae74.xyz |
| MX | 10 mx2.088c0ca5c15c457d48af30bae74fae74.xyz |
| NS | ns1.csof.net |
| NS | ns3.csof.net |
| NS | ns4.csof.net |
| NS | ns2.csof.net |
| TXT | v=spf1 include:_incspfcheck.mailspike.net ?all |
HTTP Security Headers
0/6Channels / Subdomains
10 subdomains found| Subdomain | Title |
|---|---|
| mx7.088c0ca5c15c457d48af30bae74fae74.xyz | - |
| admin.088c0ca5c15c457d48af30bae74fae74.xyz | - |
| api.088c0ca5c15c457d48af30bae74fae74.xyz | - |
| app.088c0ca5c15c457d48af30bae74fae74.xyz | - |
| www.app.088c0ca5c15c457d48af30bae74fae74.xyz | - |
| www.088c0ca5c15c457d48af30bae74fae74.xyz | - |
| login.088c0ca5c15c457d48af30bae74fae74.xyz | - |
| demo.088c0ca5c15c457d48af30bae74fae74.xyz | - |
| test.088c0ca5c15c457d48af30bae74fae74.xyz | - |
| testing.088c0ca5c15c457d48af30bae74fae74.xyz | - |
Community Reports
Log in to report and share your experience
Report & Take Down This Website
Continue Investigating
The result is still in the investigation range. Cross-check the email, phone, and entity data next
Medium-risk domains are easiest to misread when you only check one signal. The decision gets more reliable once you cross-check the email, phone number, company identity, and business scenario together.
Recommended First
Analyze the related email or invoice
Confirm whether the billing notice, restriction alert, or support email actually matches the site.
Check the company or seller identity
Compare the domain against the company identity, merchant profile, or hiring details.
Check the related phone number
If the actor wants a callback, phone verification, or one-time code readout, verify that number next.
Open the matching scenario guide
If the case involves investing, shopping, or recovery services, verify it through the matching scenario guide.
The results are based on multiple third-party data sources and AI models. False positives or negatives may occur. This report should not be used as the sole basis for any decision. Please verify with additional sources.
Verify the related evidence objects first
Medium-risk cases are easiest to misread when you only check one signal. Verify the email, phone, and entity before deciding whether to report or stop the transaction.
If you already paid or exposed account access, skip the investigation loop and move into the action plan.
Related Security Guides
Learn more about how to protect yourself from this type of threat.
FAQ
Is 088c0ca5c15c457d48af30bae74fae74.xyz safe to visit?
088c0ca5c15c457d48af30bae74fae74.xyz received a trust score of 40/100 from ScamLens. Some minor concerns were identified but no critical threats were found. Exercise normal caution.
Was 088c0ca5c15c457d48af30bae74fae74.xyz flagged by any threat databases?
088c0ca5c15c457d48af30bae74fae74.xyz was flagged by 2 out of 30+ threat intelligence sources. Specifically flagged by: dns_security, hagezi_tif. The detected threat categories include: general threat.
How old is 088c0ca5c15c457d48af30bae74fae74.xyz?
088c0ca5c15c457d48af30bae74fae74.xyz was first registered on January 11, 2026, making it approximately 5 months old. While relatively new, the domain has been active for several months.
Does 088c0ca5c15c457d48af30bae74fae74.xyz use HTTPS and have a valid SSL certificate?
088c0ca5c15c457d48af30bae74fae74.xyz uses an SSL certificate issued by C=US, O=Let's Encrypt, CN=R13, valid until July 14, 2026. The certificate is from a free provider (Let's Encrypt/ZeroSSL), which is common but does not validate the organization's identity.
What security headers does 088c0ca5c15c457d48af30bae74fae74.xyz implement?
088c0ca5c15c457d48af30bae74fae74.xyz is missing important security headers: Content-Security-Policy, X-Frame-Options, X-Content-Type-Options, Strict-Transport-Security, Referrer-Policy, Permissions-Policy. Missing security headers can leave visitors vulnerable to cross-site scripting (XSS) and other web-based attacks.
What does the ScamLens community think about 088c0ca5c15c457d48af30bae74fae74.xyz?
No community votes or reports have been submitted for 088c0ca5c15c457d48af30bae74fae74.xyz yet. You can be the first to share your experience.
Where is 088c0ca5c15c457d48af30bae74fae74.xyz hosted?
088c0ca5c15c457d48af30bae74fae74.xyz is hosted by Amazon.com, Inc. in Dublin, Ireland (ASN: ASAS16509 Amazon.com, Inc.).
Is this report useful?
Use this report to prompt others to keep cross-checking the email, phone number, and entity details instead of clearing it too early.
Forward to your parents — they deserve to browse safely too.
About this analysis
This report is generated from real-time data across 90+ threat intelligence sources, combined with AI analysis and community feedback.
Learn about our scoring methodology | Last analyzed: May 8, 2026