ScamLens analyzed onedrive.com using 90+ threat intelligence sources and assigned a trust score of 69/100, classifying it as safe.
Trust Score: 69/100
Risk Level: Trusted
This result is still in the investigation range, so the domain alone is not enough for a decision. The next step is to cross-check the email, phone number, company identity, and scenario.
Quick Answer
This result is still in the investigation range, so the domain alone is not enough for a decision. The next step is to cross-check the email, phone number, company identity, and scenario.
Positive Signals
- + Domain has been active for 28 year
- + Google Safe Browsing: Safe
- + HTTPS encryption supported
Concerns
- - Cross-domain redirect detected
Score Breakdown
Was this assessment accurate?
onedrive.com looks legitimate
No threat feeds have flagged this domain. Use standard online-safety habits.
- Bookmark the official URLScammers often clone legitimate brands at look-alike domains. A saved bookmark protects you from typos.
- Watch for unexpected payment requestsEven legitimate sites can be hijacked. Treat unsolicited 'urgent payment' prompts as suspicious.
- Verify HTTPS + the exact spellingConfirm the lock icon, and inspect the domain letter-by-letter before entering passwords or card details.
Trust but verify — open this domain on unrelated security services and compare the verdict.
Threat-intelligence sources
Checked across 27 sources — 1 flagged this domain
Show source breakdown
Threat-intelligence sources
Checked across 27 sources — 1 flagged this domain
- safe_browsing clean
- urlhaus clean
- cloudflare_radar clean
- cert_transparency clean
- alienvault_otx clean
- phishstats clean
- virustotal clean
- ipqs clean
- abuseipdb clean
- securitytrails clean
- phishdestroy clean
- threatfox clean
- shodan_internetdb clean
- phishtank flagged
- urlscan clean
- rdap clean
- maltiverse clean
- dns_security clean
- wanted_domains clean
- darkweb clean
- openphish clean
- scam_blocklist clean
- maltrail clean
- crypto_scam_feed clean
- phishing_army clean
- hagezi_tif clean
- red_flag_domains clean
ScamLens aggregates real-time signals from 90+ commercial and open-source threat-intelligence providers including Google Safe Browsing, VirusTotal, PhishTank, URLhaus, ThreatFox, Cloudflare Radar, OTX, IPQS, GoPlus, Honeypot.is, and more. A flagged signal is evidence; the absence of flags is not proof of safety. Use the signals below alongside community reports to decide.
Advanced Scan
Comprehensive data lookup across premium sources
- Website history verification
- Detailed WHOIS information
- Reverse WHOIS association
- Traffic rank analysis
- Company registration check
AI Deep Investigation
Cross-check the story, claims, and supporting evidence before you decide
- Everything in Advanced Scan
- AI website content analysis
- AI cross-reference verification
- Claim authenticity validation
- Detailed report with evidence
Comprehensive Investigation
Full-spectrum investigation with company deep search & social intelligence
- Everything in Deep Investigation
- AI company background search
- Social media intelligence
- Detailed suspicious point analysis
- Event timeline & entity connections
This analysis is for informational purposes only and does not constitute a legal determination.
Security Sources
Domain Information
- Registrar
- MarkMonitor Inc.
- Created
- June 8, 1998
- Expires
- June 7, 2027
- Domain Age
- 28 years
- DNSSEC
- Disabled
- Nameservers
- NS1-36.AZURE-DNS.COM, NS2-36.AZURE-DNS.NET, NS3-36.AZURE-DNS.ORG, NS4-36.AZURE-DNS.INFO
- Domain Status
- client delete prohibited client transfer prohibited client update prohibited server delete prohibited server transfer prohibited server update prohibited
SSL/TLS Certificate
No data available
Redirect Chain
3 hopsCross-domain redirect detected
This domain redirects to a different domain. This is commonly used by phishing sites to evade detection.
onedrive.com → microsoft.com
onedrive.com
Status: 301onedrive.live.com
Status: 302www.microsoft.com/microsoft-365/onedrive/online-cloud-storage
Status: 302Final destination
www.microsoft.com
Server Information
- IP Address
- 20.72.98.42
- Hosting Provider
- Microsoft Corporation
- ASN
- AS8075 Microsoft Corporation
- Server Location
- Boydton, United States
- Organization
- Microsoft Azure Cloud (eastus2)
Related Intelligence
Technical Details (DNS / Headers / Subdomains)
DNS Records
Email Security
SPF Configured DMARC Configured| Type | Value |
|---|---|
| A | 20.72.98.42 |
| NS | ns1-36.azure-dns.com |
| NS | ns2-36.azure-dns.net |
| NS | ns3-36.azure-dns.org |
| NS | ns4-36.azure-dns.info |
| TXT | google-site-verification=mSj0qkC4ApNQ5AMqJG9aj1bOMbq9mEeoBp5t9S2Yk_s |
| TXT | MS=ms41178630 |
| TXT | google-site-verification=2j6gO3uQkKpLHKD1MiHFAa2jD9nei0rTS7CspzBgcJ8 |
| TXT | AFDVALIDATION=OneDrive |
| TXT | v=spf1 include:spf.protection.outlook.com -all |
HTTP Security Headers
Channels / Subdomains
No data available
Community Reports
Log in to report and share your experience
Continue Investigating
The result is still in the investigation range. Cross-check the email, phone, and entity data next
Medium-risk domains are easiest to misread when you only check one signal. The decision gets more reliable once you cross-check the email, phone number, company identity, and business scenario together.
Recommended First
Analyze the related email or invoice
Confirm whether the billing notice, restriction alert, or support email actually matches the site.
Check the company or seller identity
Compare the domain against the company identity, merchant profile, or hiring details.
Check the related phone number
If the actor wants a callback, phone verification, or one-time code readout, verify that number next.
Open the matching scenario guide
If the case involves investing, shopping, or recovery services, verify it through the matching scenario guide.
The results are based on multiple third-party data sources and AI models. False positives or negatives may occur. This report should not be used as the sole basis for any decision. Please verify with additional sources.
Verify the related evidence objects first
Medium-risk cases are easiest to misread when you only check one signal. Verify the email, phone, and entity before deciding whether to report or stop the transaction.
If you already paid or exposed account access, skip the investigation loop and move into the action plan.
Related Security Guides
Learn more about how to protect yourself from this type of threat.
FAQ
Is onedrive.com safe to visit?
onedrive.com received a trust score of 69/100 from ScamLens, based on analysis of 30+ threat intelligence sources. No significant threats were detected. The site appears safe and trustworthy.
Was onedrive.com flagged by any threat databases?
onedrive.com was flagged by 1 out of 30+ threat intelligence sources. Specifically flagged by: phishtank. The detected threat categories include: general threat.
How old is onedrive.com?
onedrive.com was first registered on June 8, 1998, making it approximately 28 years old. This is an established domain with a history of operation.
Does onedrive.com use HTTPS and have a valid SSL certificate?
ScamLens could not verify the SSL certificate details for onedrive.com during this scan. Treat this as unavailable evidence, not as proof that the site is safe or unsafe.
What security headers does onedrive.com implement?
No security header information was available for onedrive.com.
What does the ScamLens community think about onedrive.com?
No community votes or reports have been submitted for onedrive.com yet. You can be the first to share your experience.
Where is onedrive.com hosted?
onedrive.com is hosted by Microsoft Corporation in Boydton, United States (ASN: ASAS8075 Microsoft Corporation).
What should I do about onedrive.com?
Based on our analysis, onedrive.com appears safe. You can proceed with normal caution. Always verify URLs manually and avoid clicking suspicious links.
Is this report useful?
Use this report to prompt others to keep cross-checking the email, phone number, and entity details instead of clearing it too early.
Forward to your parents — they deserve to browse safely too.
About this analysis
This report is generated from real-time data across 90+ threat intelligence sources, combined with AI analysis and community feedback.
Learn about our scoring methodology | Last analyzed: June 16, 2026
All MarkMonitor Inc. domains All Microsoft Corporation domains