ScamLens
Cached < 6hAnonymous (3/day)

Security Report for onionin.com

ScamLens analyzed onionin.com using 90+ threat intelligence sources and assigned a trust score of 62/100, classifying it as moderate risk.

Trust Score: 62/100

Risk Level: Caution

This result is still in the investigation range, so the domain alone is not enough for a decision. The next step is to cross-check the email, phone number, company identity, and scenario.

Site Title
onionin.com
Website meta information unavailable
HTTPS ✓
1
Checked 1 times

Quick Answer

This result is still in the investigation range, so the domain alone is not enough for a decision. The next step is to cross-check the email, phone number, company identity, and scenario.

Positive Signals

  • + Google Safe Browsing: Safe
  • + HTTPS encryption supported

Concerns

  • - 2 security sources flagged as suspicious

Score Breakdown

Domain Reputation 55
1 years old
Threat Intelligence 100
19/21 safeSafeBrowsing OK
Technical Security 68
HTTPSHSTS
Community Reputation 50
No community data yet

Was this assessment accurate?
0 say Safe0 say Suspicious
What do you think?
What to do next

Mixed signals on onionin.com

We did not find direct threat-feed hits, but coverage is thin or other signals warrant care.

Confidence:High
  1. Verify the company exists offline
    Search the registered company name + 'reviews' or 'scam'. Real businesses leave a long trail of independent mentions.
  2. Pay only via reversible methods
    Use credit cards or PayPal Goods & Services. Avoid wire transfers, crypto, gift cards — those are non-reversible.
  3. Confirm the contact details
    Look up the phone number and email address separately. Free webmail addresses or VoIP numbers are a red flag.
Cross-check with independent scanners

Trust but verify — open this domain on unrelated security services and compare the verdict.

VirusTotalurlscan.ioGoogle Safe Browsing
How we decide this

AI Risk Assessment

Moderate Risk
Based on 5 sourcesUpdated 4d ago

What matters right now

This is the easiest range to misread. Do not rely on the domain alone. Cross-check the email, phone number, company identity, and transaction context together.

[FACT] Safe Browsing reports this domain clean 1, and 26 of 28 threat feeds responded clean 3. However, two threat feeds have flagged this domain: shodan_internetdb reports a VULNERABLE_HOST condition, and dns_security reports DNS_BLOCKED_MALWARE 2. [FACT] The domain uses .com (low-risk TLD) 5 and has SSL enabled with security headers present [source data]. [FACT] Registration occurred 365 days ago via Gname 449 Inc registrar 4, and no community reports or brand impersonation have been detected [source data]. [INFERENCE] The conflicting signals—clean Safe Browsing and 93% threat feed consensus versus two credible security feeds flagging vulnerabilities and DNS malware blocking—suggest genuine security issues (likely compromised infrastructure or DNS hijacking) rather than outright malicious registration. The domain's age and legitimate TLD support this interpretation.

Recommendation

[INFERENCE] Do not use this domain for sensitive transactions or credential entry. [UNVERIFIED] Contact the registrant to verify the domain's current purpose and security status—the vulnerable host and DNS blocks suggest either active compromise or misconfiguration requiring remediation. Additional data needed: recent DNS resolution logs, WHOIS contact responsiveness, and detailed vulnerability analysis from shodan_internetdb to assess exploit likelihood.

Sources

  1. Google Safe BrowsingThreat intel

    clean

    Verify at source
  2. Threat intelligence feeds (2 flagged)Threat intel

    shodan_internetdb (VULNERABLE_HOST); dns_security (DNS_BLOCKED_MALWARE)

  3. 26/28 threat feeds responded cleanThreat intel
  4. WHOIS registration dataWHOIS

    Registered 2025-06-11T18:42:35Z (365 days ago), registrar: Gname 449 Inc

  5. TLD risk classification: .com (low risk)Analysis

    Based on APWG / Spamhaus / Interisle 2024 abuse rankings

Powered by ScamLens AI· Check sources to verify important claims

Threat-intelligence sources

Checked across 28 sources — 2 flagged this domain

Show source breakdown
  • safe_browsing clean
  • urlhaus clean
  • cloudflare_radar clean
  • cert_transparency clean
  • alienvault_otx info
  • phishstats clean
  • virustotal clean
  • ipqs clean
  • abuseipdb clean
  • securitytrails clean
  • phishdestroy clean
  • threatfox clean
  • shodan_internetdb flagged
  • phishtank clean
  • urlscan clean
  • rdap clean
  • maltiverse clean
  • dnsbl clean
  • dns_security flagged
  • wanted_domains clean
  • darkweb clean
  • openphish clean
  • scam_blocklist clean
  • maltrail clean
  • crypto_scam_feed clean
  • phishing_army clean
  • hagezi_tif clean
  • red_flag_domains clean

ScamLens aggregates real-time signals from 90+ commercial and open-source threat-intelligence providers including Google Safe Browsing, VirusTotal, PhishTank, URLhaus, ThreatFox, Cloudflare Radar, OTX, IPQS, GoPlus, Honeypot.is, and more. A flagged signal is evidence; the absence of flags is not proof of safety. Use the signals below alongside community reports to decide.

Advanced Scan

Comprehensive data lookup across premium sources

$2.99one-time payment
  • Website history verification
  • Detailed WHOIS information
  • Reverse WHOIS association
  • Traffic rank analysis
  • Company registration check
Recommended

AI Deep Investigation

Cross-check the story, claims, and supporting evidence before you decide

$4.99one-time payment
  • Everything in Advanced Scan
  • AI website content analysis
  • AI cross-reference verification
  • Claim authenticity validation
  • Detailed report with evidence
Most Thorough

Comprehensive Investigation

Full-spectrum investigation with company deep search & social intelligence

$14.99one-time payment
  • Everything in Deep Investigation
  • AI company background search
  • Social media intelligence
  • Detailed suspicious point analysis
  • Event timeline & entity connections

This analysis is for informational purposes only and does not constitute a legal determination.

Security Sources

Google Safe Browsing
Safe
Cloudflare Radar
Safe
URLhaus (abuse.ch) Confidence: Medium
Not Listed
Certificate Transparency Confidence: Low
Not Listed
AlienVault OTX Confidence: Low
Monitored
PhishStats Confidence: Low
Not Listed
VirusTotal Confidence: Low
Not Listed
IPQualityScore Confidence: Low
Not Listed
AbuseIPDB Confidence: Medium
Not Listed
SecurityTrails Confidence: Low
Not Listed
PhishDestroy Confidence: Medium
Not Listed
ThreatFox (abuse.ch) Confidence: Low
Not Listed
Shodan InternetDB Confidence: Medium
Unsafe
PhishTank Confidence: Low
Not Listed
URLScan.io Confidence: Medium
Not Listed
RDAP Domain Registration Confidence: Medium
Not Listed
Maltiverse Confidence: Low
Not Listed
DNS Blacklists Confidence: Low
Not Listed
DNS Security Confidence: High
Unsafe
Law Enforcement Confidence: Low
Not Listed
darkweb Confidence: Low
Not Listed
OpenPhish Confidence: Low
Not Listed
Scam Blocklist (Jarelllama) Confidence: Low
Not Listed
Maltrail (stamparm) Confidence: Low
Not Listed
Crypto Scam Feed Confidence: Low
Not Listed
Phishing Army Confidence: Low
Not Listed
HaGeZi Threat Intelligence Confidence: Low
Not Listed
Red Flag Domains Confidence: Low
Not Listed

Domain Information

Registrar
Gname 449 Inc
Created
June 11, 2025
Expires
June 11, 2026
Domain Age
1 years
DNSSEC
Disabled
Nameservers
NS7.ALIDNS.COM, NS8.ALIDNS.COM
Domain Status
client transfer prohibited

SSL/TLS Certificate

No data available

Server Information

IP Address
43.128.252.32
Hosting Provider
Shenzhen Tencent Computer Systems Company Limited
ASN
AS132203 Tencent Building, Kejizhongyi Avenue
Server Location
Tokyo, Japan
Organization
Tencent Cloud Computing

Related Intelligence
Technical Details (DNS / Headers / Subdomains)

DNS Records

Email Security

SPF Not Configured DMARC Not Configured
Type Value
A 43.128.252.32
NS ns7.alidns.com
NS ns8.alidns.com

HTTP Security Headers

Security header detection was blocked by the target website (e.g. rate limiting or access restriction). Results may be inaccurate.

Channels / Subdomains

No data available

Community Reports

Log in to report and share your experience

...

Report & Take Down This Website

Continue Investigating

The result is still in the investigation range. Cross-check the email, phone, and entity data next

Medium-risk domains are easiest to misread when you only check one signal. The decision gets more reliable once you cross-check the email, phone number, company identity, and business scenario together.

Recommended First

Analyze the related email or invoice

Confirm whether the billing notice, restriction alert, or support email actually matches the site.

Check the company or seller identity

Compare the domain against the company identity, merchant profile, or hiring details.

Check the related phone number

If the actor wants a callback, phone verification, or one-time code readout, verify that number next.

Open the matching scenario guide

If the case involves investing, shopping, or recovery services, verify it through the matching scenario guide.

The results are based on multiple third-party data sources and AI models. False positives or negatives may occur. This report should not be used as the sole basis for any decision. Please verify with additional sources.

Verify the related evidence objects first

Medium-risk cases are easiest to misread when you only check one signal. Verify the email, phone, and entity before deciding whether to report or stop the transaction.

Continue investigating

If you already paid or exposed account access, skip the investigation loop and move into the action plan.

Related Security Guides

Learn more about how to protect yourself from this type of threat.

How to Check if a Website Is Safe Phishing Scams Guide

FAQ

Is onionin.com safe to visit?

onionin.com received a trust score of 62/100 from ScamLens. Some minor concerns were identified but no critical threats were found. Exercise normal caution.

Was onionin.com flagged by any threat databases?

onionin.com was flagged by 1 out of 30+ threat intelligence sources. Specifically flagged by: dns_security. The detected threat categories include: general threat.

How old is onionin.com?

onionin.com was first registered on June 11, 2025, making it approximately 1 year old. This is an established domain with a history of operation.

Does onionin.com use HTTPS and have a valid SSL certificate?

ScamLens could not verify the SSL certificate details for onionin.com during this scan. Treat this as unavailable evidence, not as proof that the site is safe or unsafe.

What security headers does onionin.com implement?

No security header information was available for onionin.com.

What does the ScamLens community think about onionin.com?

No community votes or reports have been submitted for onionin.com yet. You can be the first to share your experience.

Where is onionin.com hosted?

onionin.com is hosted by Shenzhen Tencent Computer Systems Company Limited in Tokyo, Japan (ASN: ASAS132203 Tencent Building, Kejizhongyi Avenue).

What should I do about onionin.com?

[INFERENCE] Do not use this domain for sensitive transactions or credential entry. [UNVERIFIED] Contact the registrant to verify the domain's current purpose and security status—the vulnerable host and DNS blocks suggest either active compromise or misconfiguration requiring remediation. Additional data needed: recent DNS resolution logs, WHOIS contact responsiveness, and detailed vulnerability analysis from shodan_internetdb to assess exploit likelihood.

Is this report useful?

Use this report to prompt others to keep cross-checking the email, phone number, and entity details instead of clearing it too early.

Forward to your parents — they deserve to browse safely too.

About this analysis

This report is generated from real-time data across 90+ threat intelligence sources, combined with AI analysis and community feedback.

Learn about our scoring methodology | Last analyzed: May 29, 2026

All Gname 449 Inc domains All Shenzhen Tencent Computer Systems Company Limited domains

Other domains on the same server