ScamLens analyzed axa-cotizador-autos.web.app using 90+ threat intelligence sources and assigned a trust score of 33/100, classifying it as high risk.
Trust Score: 33/100
Risk Level: High Risk
This domain already shows strong risk signals. Stop interacting, preserve the page, chat, phone, and payment evidence, and move into response or reporting immediately.
Quick Answer
This domain already shows strong risk signals. Stop interacting, preserve the page, chat, phone, and payment evidence, and move into response or reporting immediately.
Positive Signals
- + Google Safe Browsing: Safe
- + HTTPS encryption supported
Concerns
- - 3 security sources flagged as suspicious
Score Breakdown
Was this assessment accurate?
AI Risk Assessment
High RiskWhat matters right now
With a high-risk result, the priority is not reading more pages. It is immediate containment, credential resets, evidence preservation, and the reporting path.
FACT: Three established threat intelligence feeds have flagged this domain for phishing and malware activity: phishdestroy (PHISHING), dns_security (DNS_BLOCKED_MALWARE), and openphish (phishing) 2. FACT: Safe Browsing returned clean 1, and 25 of 28 threat feeds responded clean 3. INFERENCE: The convergence of three independent threat feeds on phishing/malware signals—despite Google Safe Browsing being clean—indicates active malicious content with moderate-to-high confidence. The .app TLD carries low inherent risk 4, so the threat stems from domain behavior, not the extension. FACT: No community reports exist [0 reports], but absence of reports does not invalidate automated threat detection. INFERENCE: The domain is likely actively hosting phishing or malware content targeting Spanish-speaking users ("cotizador-autos" suggests auto insurance quotes), possibly mimicking legitimate AXA services. The mismatch between Safe Browsing (clean) and multiple specialized feeds (flagged) suggests evasion tactics or recently weaponized infrastructure.
Recommendation
DO NOT visit or interact with this domain 2. If you received a link from this domain via email or chat claiming to be from AXA or a financial service, report it as phishing to your email provider and to [email protected] (if applicable). Verify any insurance quote requests through AXA's official website (axa.com or your country's official AXA domain) using a direct URL, not links provided in unsolicited messages. Consider blocking this domain at your network or device level 2.
Sources
- Threat intelligence feeds (3 flagged)Threat intel
phishdestroy (PHISHING); dns_security (DNS_BLOCKED_MALWARE); openphish (phishing)
- 25/28 threat feeds responded cleanThreat intel
- TLD risk classification: .app (low risk)Analysis
Based on APWG / Spamhaus / Interisle 2024 abuse rankings
Powered by ScamLens AI· Check sources to verify important claims
Advanced Scan
Comprehensive data lookup across premium sources
- Website history verification
- Detailed WHOIS information
- Reverse WHOIS association
- Traffic rank analysis
- Company registration check
AI Deep Investigation
Cross-check the story, claims, and supporting evidence before you decide
- Everything in Advanced Scan
- AI website content analysis
- AI cross-reference verification
- Claim authenticity validation
- Detailed report with evidence
Comprehensive Investigation
Full-spectrum investigation with company deep search & social intelligence
- Everything in Deep Investigation
- AI company background search
- Social media intelligence
- Detailed suspicious point analysis
- Event timeline & entity connections
This analysis is for informational purposes only and does not constitute a legal determination.
Security Sources
Domain Information
- DNSSEC
- Disabled
SSL/TLS Certificate
No data available
Server Information
- IP Address
- 199.36.158.100
- Hosting Provider
- Fastly, Inc.
- ASN
- AS54113 Fastly, Inc.
- Server Location
- Mountain View, United States
- Organization
- Google LLC
Related Intelligence
Technical Details (DNS / Headers / Subdomains)
DNS Records
Email Security
SPF Not Configured DMARC Not Configured| Type | Value |
|---|---|
| A | 199.36.158.100 |
| AAAA | 2620:0:890::100 |
HTTP Security Headers
2/6max-age=31556926; includeSubDomains; preload
SAMEORIGIN
Channels / Subdomains
No data available
Community Reports
Log in to report and share your experience
Report & Take Down This Website
High-Risk Signals
The risk signals are strong enough. Move on evidence preservation, reporting, and victim response now
This result is no longer just a normal verification case. Moving the chat, phone, payment, and official-reporting path in parallel is usually more important than waiting for more data.
Recommended First
Move into the victim action plan
If you already paid, logged in, or installed tools, use the action plan first to prioritize containment and evidence work.
Move into the website-reporting flow
Move the site, payment evidence, chat trail, and contact points into the formal reporting path.
Add the chat, DM, and payment-pressure trail
Keep the Telegram, WhatsApp, social DM, and payment-pressure trail in the same timeline.
Check the callback number and SMS
If the actor also used calls, SMS, or one-time codes, verify that phone path next.
The results are based on multiple third-party data sources and AI models. False positives or negatives may occur. This report should not be used as the sole basis for any decision. Please verify with additional sources.
If a loss already happened, move into the response flow now
Delay is the main risk with high-risk domains. Prioritize freezes, credential resets, reporting, and evidence preservation now.
If no loss happened yet, continue with the website-reporting and official-agency paths next.
Related Security Guides
Learn more about how to protect yourself from this type of threat.
Understanding this threat
FAQ
Is axa-cotizador-autos.web.app safe to visit?
axa-cotizador-autos.web.app received a trust score of 33/100 from ScamLens, indicating several security concerns. 3 threat intelligence sources flagged this domain. Proceed with extreme caution.
Was axa-cotizador-autos.web.app flagged by any threat databases?
axa-cotizador-autos.web.app was flagged by 3 out of 90+ threat intelligence sources. Specifically flagged by: phishdestroy, dns_security, openphish. The detected threat categories include: general threat.
How old is axa-cotizador-autos.web.app?
Registration date information for axa-cotizador-autos.web.app is not publicly available through WHOIS records, which can itself be a risk indicator.
Does axa-cotizador-autos.web.app use HTTPS and have a valid SSL certificate?
axa-cotizador-autos.web.app does not appear to have a valid SSL certificate configured. This means data transmitted to and from this site is not encrypted, which is a significant security concern.
What security headers does axa-cotizador-autos.web.app implement?
axa-cotizador-autos.web.app is missing important security headers: Content-Security-Policy, X-Frame-Options, X-Content-Type-Options, Strict-Transport-Security, Referrer-Policy, Permissions-Policy. Missing security headers can leave visitors vulnerable to cross-site scripting (XSS) and other web-based attacks.
What does the ScamLens community think about axa-cotizador-autos.web.app?
No community votes or reports have been submitted for axa-cotizador-autos.web.app yet. You can be the first to share your experience.
Where is axa-cotizador-autos.web.app hosted?
axa-cotizador-autos.web.app is hosted by Fastly, Inc. in Mountain View, United States (ASN: ASAS54113 Fastly, Inc.).
What should I do about axa-cotizador-autos.web.app?
DO NOT visit or interact with this domain [2]. If you received a link from this domain via email or chat claiming to be from AXA or a financial service, report it as phishing to your email provider and to [email protected] (if applicable). Verify any insurance quote requests through AXA's official website (axa.com or your country's official AXA domain) using a direct URL, not links provided in unsolicited messages. Consider blocking this domain at your network or device level [2].
Is this report useful?
Use this report to tell others to stop interacting now and move straight into containment, evidence preservation, and reporting.
Forward to your parents — they deserve to browse safely too.
About this analysis
This report is generated from real-time data across 90+ threat intelligence sources, combined with AI analysis and community feedback.
Learn about our scoring methodology | Last analyzed: April 10, 2026