ScamLens analyzed 189id2026.xyz using 90+ threat intelligence sources and assigned a trust score of 52/100, classifying it as moderate risk.
Trust Score: 52/100
Risk Level: Caution
This result is still in the investigation range, so the domain alone is not enough for a decision. The next step is to cross-check the email, phone number, company identity, and scenario.
Quick Answer
This result is still in the investigation range, so the domain alone is not enough for a decision. The next step is to cross-check the email, phone number, company identity, and scenario.
Positive Signals
- + Google Safe Browsing: Safe
- + HTTPS encryption supported
- + 17/17 security sources confirmed safe
Concerns
- - Domain registered only 2 month ago
- - SSL certificate expired
Score Breakdown
Was this assessment accurate?
AI Risk Assessment
Moderate RiskWhat matters right now
This is the easiest range to misread. Do not rely on the domain alone. Cross-check the email, phone number, company identity, and transaction context together.
[FACT] Safe Browsing is clean 1 and all 28 threat feeds responded clean with zero flags 2, indicating no confirmed malicious activity. [FACT] The domain was registered 83 days ago 3, placing it outside the extremely suspicious (under 7 days) or moderately suspicious (under 30 days) windows. [FACT] SSL is present and security headers are enabled, supporting basic infrastructure 3. [INFERENCE] However, the .xyz TLD carries high abuse risk 4—disproportionately used in scams and fraud. Combined with an 83-day-old domain on a high-risk TLD and no established reputation (unranked on Cloudflare Radar, zero community engagement), this pattern warrants caution. [FACT] No brand impersonation or homograph attacks detected 3. [UNVERIFIED] The domain's purpose and content are unknown; additional inspection of site behavior and functionality would clarify legitimacy.
Recommendation
[INFERENCE] Exercise caution before engaging. The absence of threat signals is reassuring, but the high-risk TLD and lack of established reputation create moderate concern. [INFERENCE] Verify the domain's stated purpose independently—if it claims to be a financial service, exchange, or payment platform, heightened scrutiny is warranted. If it is a personal project or niche service on a cost-effective TLD, risk is lower. Do not assume safety based on clean feeds alone; visually inspect the site for suspicious claims or requests for sensitive data.
Sources
- 28/28 threat feeds responded cleanThreat intel
- WHOIS registration dataWHOIS
Registered 2026-01-29T23:38:43.0Z (83 days ago), registrar: Namecheap
- TLD risk classification: .xyz (high risk)Analysis
Based on APWG / Spamhaus / Interisle 2024 abuse rankings
Powered by ScamLens AI· Check sources to verify important claims
Advanced Scan
Comprehensive data lookup across premium sources
- Website history verification
- Detailed WHOIS information
- Reverse WHOIS association
- Traffic rank analysis
- Company registration check
AI Deep Investigation
Cross-check the story, claims, and supporting evidence before you decide
- Everything in Advanced Scan
- AI website content analysis
- AI cross-reference verification
- Claim authenticity validation
- Detailed report with evidence
Comprehensive Investigation
Full-spectrum investigation with company deep search & social intelligence
- Everything in Deep Investigation
- AI company background search
- Social media intelligence
- Detailed suspicious point analysis
- Event timeline & entity connections
This analysis is for informational purposes only and does not constitute a legal determination.
Security Sources
Domain Information
- Registrar
- Namecheap
- Created
- January 29, 2026
- Expires
- January 29, 2027
- Domain Age
- 2 months
- DNSSEC
- Disabled
- Nameservers
- ridge.ns.cloudflare.com, veda.ns.cloudflare.com
- Domain Status
- server hold client transfer prohibited
SSL/TLS Certificate
- Issuer
- C=US, O=Let's Encrypt, CN=E8
- Valid From
- January 29, 2026
- Valid To
- April 29, 2026 Expired
Server Information
No data available
Related Intelligence
Technical Details (DNS / Headers / Subdomains)
DNS Records
No data available
HTTP Security Headers
Channels / Subdomains
No data available
Community Reports
Log in to report and share your experience
Report & Take Down This Website
Continue Investigating
The result is still in the investigation range. Cross-check the email, phone, and entity data next
Medium-risk domains are easiest to misread when you only check one signal. The decision gets more reliable once you cross-check the email, phone number, company identity, and business scenario together.
Recommended First
Analyze the related email or invoice
Confirm whether the billing notice, restriction alert, or support email actually matches the site.
Check the company or seller identity
Compare the domain against the company identity, merchant profile, or hiring details.
Check the related phone number
If the actor wants a callback, phone verification, or one-time code readout, verify that number next.
Open the matching scenario guide
If the case involves investing, shopping, or recovery services, verify it through the matching scenario guide.
The results are based on multiple third-party data sources and AI models. False positives or negatives may occur. This report should not be used as the sole basis for any decision. Please verify with additional sources.
Verify the related evidence objects first
Medium-risk cases are easiest to misread when you only check one signal. Verify the email, phone, and entity before deciding whether to report or stop the transaction.
If you already paid or exposed account access, skip the investigation loop and move into the action plan.
Related Security Guides
Learn more about how to protect yourself from this type of threat.
FAQ
Is 189id2026.xyz safe to visit?
189id2026.xyz received a trust score of 52/100 from ScamLens. Some minor concerns were identified but no critical threats were found. Exercise normal caution.
Was 189id2026.xyz flagged by any threat databases?
189id2026.xyz was checked against 90+ threat intelligence databases including Google Safe Browsing, PhishTank, and URLhaus. No threats were detected across any source.
How old is 189id2026.xyz?
189id2026.xyz was first registered on January 29, 2026, making it approximately 3 months old. While relatively new, the domain has been active for several months.
Does 189id2026.xyz use HTTPS and have a valid SSL certificate?
189id2026.xyz uses an SSL certificate issued by C=US, O=Let's Encrypt, CN=E8, valid until April 29, 2026. The certificate is from a free provider (Let's Encrypt/ZeroSSL), which is common but does not validate the organization's identity.
What security headers does 189id2026.xyz implement?
189id2026.xyz is missing important security headers: Content-Security-Policy, X-Frame-Options, X-Content-Type-Options, Strict-Transport-Security, Referrer-Policy, Permissions-Policy. Missing security headers can leave visitors vulnerable to cross-site scripting (XSS) and other web-based attacks.
What does the ScamLens community think about 189id2026.xyz?
No community votes or reports have been submitted for 189id2026.xyz yet. You can be the first to share your experience.
What should I do about 189id2026.xyz?
[INFERENCE] Exercise caution before engaging. The absence of threat signals is reassuring, but the high-risk TLD and lack of established reputation create moderate concern. [INFERENCE] Verify the domain's stated purpose independently—if it claims to be a financial service, exchange, or payment platform, heightened scrutiny is warranted. If it is a personal project or niche service on a cost-effective TLD, risk is lower. Do not assume safety based on clean feeds alone; visually inspect the site for suspicious claims or requests for sensitive data.
Is this report useful?
Use this report to prompt others to keep cross-checking the email, phone number, and entity details instead of clearing it too early.
Forward to your parents — they deserve to browse safely too.
About this analysis
This report is generated from real-time data across 90+ threat intelligence sources, combined with AI analysis and community feedback.
Learn about our scoring methodology | Last analyzed: April 11, 2026