ScamLens
Cached < 6hAnonymous (3/day)

Security Report for scamlens.org

ScamLens analyzed scamlens.org using 90+ threat intelligence sources and assigned a trust score of 50/100, classifying it as moderate risk.

Trust Score: 50/100

Risk Level: Caution

This result is still in the investigation range, so the domain alone is not enough for a decision. The next step is to cross-check the email, phone number, company identity, and scenario.

Site Title
ScamLens - Free Website Safety Checker
Site Description
Check suspicious websites, wallets, calls, emails, chats, and companies before you click, pay, reply, or sign in. ScamLens helps you verify risk, stop losses, and choose the right next step.
en HTTPS ✓
9
Checked 9 times

Quick Answer

This result is still in the investigation range, so the domain alone is not enough for a decision. The next step is to cross-check the email, phone number, company identity, and scenario.

Positive Signals

  • + Google Safe Browsing: Safe
  • + HTTPS encryption supported
  • + Security headers configured (HSTS + CSP)

Concerns

  • - Domain registered only 3 month ago
  • - 2 security sources flagged as suspicious

Score Breakdown

Domain Reputation 30
Newly registered
Threat Intelligence 100
19/21 safeSafeBrowsing OK
Technical Security 75
HTTPSHSTSCSP
Community Reputation 50
No community data yet

Was this assessment accurate?
0 say Safe0 say Suspicious
What do you think?
What to do next

Mixed signals on scamlens.org

We did not find direct threat-feed hits, but coverage is thin or other signals warrant care.

Confidence:High
  1. Verify the company exists offline
    Search the registered company name + 'reviews' or 'scam'. Real businesses leave a long trail of independent mentions.
  2. Pay only via reversible methods
    Use credit cards or PayPal Goods & Services. Avoid wire transfers, crypto, gift cards — those are non-reversible.
  3. Confirm the contact details
    Look up the phone number and email address separately. Free webmail addresses or VoIP numbers are a red flag.
Cross-check with independent scanners

Trust but verify — open this domain on unrelated security services and compare the verdict.

VirusTotalurlscan.ioGoogle Safe Browsing
How we decide this

AI Risk Assessment

Moderate Risk
Based on 5 sourcesUpdated 2d ago

What matters right now

This is the easiest range to misread. Do not rely on the domain alone. Cross-check the email, phone number, company identity, and transaction context together.

[FACT] Safe Browsing returned clean 1, and 25 of 27 threat feeds responded clean 3. However, two threat feeds flagged this domain: shodan_internetdb reported SUSPICIOUS_PORTS and dns_security reported DNS_BLOCKED_MALWARE 2. [INFERENCE] These two independent threat signals, particularly the DNS malware flag, suggest potential infrastructure abuse or misconfiguration despite the majority of feeds being clean. The domain is 116 days old 4, which is established enough to reduce suspicion of freshly created phishing sites. The .org TLD carries low abuse risk 5. [UNVERIFIED] The nature and severity of the suspicious ports and DNS blockage cannot be determined from available data—this requires investigation of what services are running and why DNS security systems flagged it.

Recommendation

Treat with caution. [INFERENCE] While the domain is not confirmed malicious by Safe Browsing or most threat feeds, the two flagged signals warrant manual review before interacting with it. Verify the domain's legitimate purpose and check recent security reports. If you operate this domain, investigate the flagged ports and DNS issues with your registrar 4 and hosting provider to resolve the threat feed detections.

Sources

  1. Google Safe BrowsingThreat intel

    clean

    Verify at source
  2. Threat intelligence feeds (2 flagged)Threat intel

    shodan_internetdb (SUSPICIOUS_PORTS); dns_security (DNS_BLOCKED_MALWARE)

  3. 25/27 threat feeds responded cleanThreat intel
  4. WHOIS registration dataWHOIS

    Registered 2026-02-18T03:12:35.382Z (116 days ago), registrar: Cloudflare, Inc.

  5. TLD risk classification: .org (low risk)Analysis

    Based on APWG / Spamhaus / Interisle 2024 abuse rankings

Powered by ScamLens AI· Check sources to verify important claims

Threat-intelligence sources

Checked across 27 sources — 2 flagged this domain

Show source breakdown
  • safe_browsing clean
  • urlhaus clean
  • cloudflare_radar clean
  • cert_transparency clean
  • alienvault_otx clean
  • phishstats clean
  • virustotal clean
  • ipqs clean
  • abuseipdb clean
  • securitytrails clean
  • phishdestroy clean
  • threatfox clean
  • shodan_internetdb flagged
  • phishtank clean
  • urlscan clean
  • rdap clean
  • maltiverse clean
  • dnsbl clean
  • dns_security flagged
  • wanted_domains clean
  • openphish clean
  • scam_blocklist clean
  • maltrail clean
  • crypto_scam_feed clean
  • phishing_army clean
  • hagezi_tif clean
  • red_flag_domains clean

ScamLens aggregates real-time signals from 90+ commercial and open-source threat-intelligence providers including Google Safe Browsing, VirusTotal, PhishTank, URLhaus, ThreatFox, Cloudflare Radar, OTX, IPQS, GoPlus, Honeypot.is, and more. A flagged signal is evidence; the absence of flags is not proof of safety. Use the signals below alongside community reports to decide.

Advanced Scan

Comprehensive data lookup across premium sources

$2.99one-time payment
  • Website history verification
  • Detailed WHOIS information
  • Reverse WHOIS association
  • Traffic rank analysis
  • Company registration check
Recommended

AI Deep Investigation

Cross-check the story, claims, and supporting evidence before you decide

$4.99one-time payment
  • Everything in Advanced Scan
  • AI website content analysis
  • AI cross-reference verification
  • Claim authenticity validation
  • Detailed report with evidence
Most Thorough

Comprehensive Investigation

Full-spectrum investigation with company deep search & social intelligence

$14.99one-time payment
  • Everything in Deep Investigation
  • AI company background search
  • Social media intelligence
  • Detailed suspicious point analysis
  • Event timeline & entity connections

This analysis is for informational purposes only and does not constitute a legal determination.

Security Sources

Google Safe Browsing
Safe
Cloudflare Radar
Safe
URLhaus (abuse.ch) Confidence: Medium
Not Listed
Certificate Transparency Confidence: Low
Not Listed
AlienVault OTX Confidence: Medium
Not Listed
PhishStats Confidence: Low
Not Listed
VirusTotal Confidence: High
Not Listed
IPQualityScore Confidence: Low
Not Listed
AbuseIPDB Confidence: Low
Not Listed
SecurityTrails Confidence: Low
Not Listed
PhishDestroy Confidence: Medium
Not Listed
ThreatFox (abuse.ch) Confidence: Low
Not Listed
Shodan InternetDB Confidence: Medium
Unsafe
PhishTank Confidence: Low
Not Listed
URLScan.io Confidence: Medium
Not Listed
RDAP Domain Registration Confidence: Medium
Not Listed
Maltiverse Confidence: Low
Not Listed
DNS Blacklists Confidence: Low
Not Listed
DNS Security Confidence: High
Unsafe
Law Enforcement Confidence: Low
Not Listed
OpenPhish Confidence: Low
Not Listed
Scam Blocklist (Jarelllama) Confidence: Low
Not Listed
Maltrail (stamparm) Confidence: Low
Not Listed
Crypto Scam Feed Confidence: Low
Not Listed
Phishing Army Confidence: Low
Not Listed
HaGeZi Threat Intelligence Confidence: Low
Not Listed
Red Flag Domains Confidence: Low
Not Listed

Domain Information

Registrar
Cloudflare, Inc.
Created
February 18, 2026
Expires
February 18, 2027
Domain Age
3 months
DNSSEC
Disabled
Nameservers
alice.ns.cloudflare.com, valentin.ns.cloudflare.com
Domain Status
client transfer prohibited

SSL/TLS Certificate

No data available

Redirect Chain

2 hops
1

scamlens.org

Status: 302
2

scamlens.org/en

Status: 308

Final destination

scamlens.org

Server Information

IP Address
104.21.57.130
Hosting Provider
Cloudflare, Inc.
ASN
AS13335 Cloudflare, Inc.
Server Location
Toronto, Canada
Organization
Cloudflare, Inc.

Related Intelligence
Technical Details (DNS / Headers / Subdomains)

DNS Records

Email Security

SPF Configured DMARC Configured
Type Value
A 104.21.57.130
A 172.67.163.221
AAAA 2606:4700:3031::6815:3982
AAAA 2606:4700:3035::ac43:a3dd
MX 1 mx1.larksuite.com
MX 5 mx2.larksuite.com
MX 10 mx3.larksuite.com
NS alice.ns.cloudflare.com
NS valentin.ns.cloudflare.com
TXT brevo-code:43cb46713c039898ecadfcc2a2045541
TXT v=spf1 +include:spf.onlarksuite.com -all
TXT verification-code-site-App_lark=UBwgTMsv81CYWRy0J0Pw

HTTP Security Headers

6/6
Strict-Transport-Security Present

max-age=31536000; includeSubDomains; preload

Content-Security-Policy Present

default-src 'self'; script-src 'self' 'unsafe-inline' https://plausible.io https...

X-Frame-Options Present

DENY

X-Content-Type-Options Present

nosniff

Referrer-Policy Present

strict-origin-when-cross-origin

Permissions-Policy Present

camera=(), microphone=(), geolocation=(), interest-cohort=()

Channels / Subdomains

No data available

Community Reports

Log in to report and share your experience

...

Report & Take Down This Website

Continue Investigating

The result is still in the investigation range. Cross-check the email, phone, and entity data next

Medium-risk domains are easiest to misread when you only check one signal. The decision gets more reliable once you cross-check the email, phone number, company identity, and business scenario together.

Recommended First

Analyze the related email or invoice

Confirm whether the billing notice, restriction alert, or support email actually matches the site.

Check the company or seller identity

Compare the domain against the company identity, merchant profile, or hiring details.

Check the related phone number

If the actor wants a callback, phone verification, or one-time code readout, verify that number next.

Open the matching scenario guide

If the case involves investing, shopping, or recovery services, verify it through the matching scenario guide.

The results are based on multiple third-party data sources and AI models. False positives or negatives may occur. This report should not be used as the sole basis for any decision. Please verify with additional sources.

Verify the related evidence objects first

Medium-risk cases are easiest to misread when you only check one signal. Verify the email, phone, and entity before deciding whether to report or stop the transaction.

Continue investigating

If you already paid or exposed account access, skip the investigation loop and move into the action plan.

Related Security Guides

Learn more about how to protect yourself from this type of threat.

How to Check if a Website Is Safe Phishing Scams Guide

FAQ

Is scamlens.org safe to visit?

scamlens.org received a trust score of 50/100 from ScamLens. Some minor concerns were identified but no critical threats were found. Exercise normal caution.

Was scamlens.org flagged by any threat databases?

scamlens.org was flagged by 1 out of 30+ threat intelligence sources. Specifically flagged by: dns_security. The detected threat categories include: general threat.

How old is scamlens.org?

scamlens.org was first registered on February 18, 2026, making it approximately 3 months old. While relatively new, the domain has been active for several months.

Does scamlens.org use HTTPS and have a valid SSL certificate?

ScamLens could not verify the SSL certificate details for scamlens.org during this scan. Treat this as unavailable evidence, not as proof that the site is safe or unsafe.

What security headers does scamlens.org implement?

scamlens.org is missing important security headers: Content-Security-Policy, X-Frame-Options, X-Content-Type-Options, Strict-Transport-Security, Referrer-Policy, Permissions-Policy. Missing security headers can leave visitors vulnerable to cross-site scripting (XSS) and other web-based attacks.

What does the ScamLens community think about scamlens.org?

No community votes or reports have been submitted for scamlens.org yet. You can be the first to share your experience.

Where is scamlens.org hosted?

scamlens.org is hosted by Cloudflare, Inc. in Toronto, Canada (ASN: ASAS13335 Cloudflare, Inc.).

What should I do about scamlens.org?

Treat with caution. [INFERENCE] While the domain is not confirmed malicious by Safe Browsing or most threat feeds, the two flagged signals warrant manual review before interacting with it. Verify the domain's legitimate purpose and check recent security reports. If you operate this domain, investigate the flagged ports and DNS issues with your registrar [4] and hosting provider to resolve the threat feed detections.

Is this report useful?

Use this report to prompt others to keep cross-checking the email, phone number, and entity details instead of clearing it too early.

Forward to your parents — they deserve to browse safely too.

About this analysis

This report is generated from real-time data across 90+ threat intelligence sources, combined with AI analysis and community feedback.

Learn about our scoring methodology | Last analyzed: April 6, 2026

All Cloudflare, Inc. domains All Cloudflare, Inc. domains

Other domains registered with Cloudflare, Inc.