ScamLens
Cached < 6hAnonymous (3/day)

Security Report for bcxcgezafa.cfd

ScamLens analyzed bcxcgezafa.cfd using 90+ threat intelligence sources and assigned a trust score of 73/100, classifying it as safe.

Trust Score: 73/100

Risk Level: Trusted

There is no strongest risk signal at the moment, but that does not automatically clear the case. Continue by checking the actual transaction scenario, company identity, and communication method.

Site Title
Sign in - Matomo
Site Description
free/libre analytics platform
HTTPS ✓
1
Checked 1 times

Quick Answer

There is no strongest risk signal at the moment, but that does not automatically clear the case. Continue by checking the actual transaction scenario, company identity, and communication method.

Positive Signals

  • + Google Safe Browsing: Safe
  • + Valid SSL certificate
  • + HTTPS encryption supported

No concerns found

Score Breakdown

Domain Reputation 30
Newly registered
Threat Intelligence 100
18/19 safeSafeBrowsing OK
Technical Security 82
Valid SSLHTTPSCSP
Community Reputation 50
No community data yet

Was this assessment accurate?
0 say Safe0 say Suspicious
What do you think?
What to do next

bcxcgezafa.cfd looks legitimate

No threat feeds have flagged this domain. Use standard online-safety habits.

Confidence:High
  1. Bookmark the official URL
    Scammers often clone legitimate brands at look-alike domains. A saved bookmark protects you from typos.
  2. Watch for unexpected payment requests
    Even legitimate sites can be hijacked. Treat unsolicited 'urgent payment' prompts as suspicious.
  3. Verify HTTPS + the exact spelling
    Confirm the lock icon, and inspect the domain letter-by-letter before entering passwords or card details.
Cross-check with independent scanners

Trust but verify — open this domain on unrelated security services and compare the verdict.

VirusTotalurlscan.ioGoogle Safe Browsing
How we decide this

AI Risk Assessment

Safe
Based on 5 sourcesUpdated 1d ago

What matters right now

This is better handled as a scenario-verification case, not as a neutral result that automatically clears the domain.

[FACT] Safe Browsing reports the domain clean 1, and 27 of 28 threat feeds responded without flags 3. However, shodan_internetdb flagged this domain as VULNERABLE_HOST with RISKY_INFRASTRUCTURE 2, indicating exposed or misconfigured services. [FACT] The domain uses the .cfd TLD, which carries high abuse risk 5. [FACT] Registration occurred 205 days ago through Namecheap 4, placing it outside the extremely suspicious under-7-day window but still relatively young. [FACT] No brand impersonation, homograph attacks, or community reports are detected. [INFERENCE] The single threat feed flag combined with the high-risk TLD creates moderate concern. The vulnerability flag suggests potential security misconfigurations rather than confirmed malicious intent, but exposed infrastructure can be exploited or repurposed for scams. The lack of DNSSEC 4 adds a minor trust concern but is not determinative.

Recommendation

Exercise caution before interacting. Verify the domain's legitimacy through independent channels (official websites, direct contact with claimed organization). Do not download files or enter credentials. If this is your domain, remediate the flagged vulnerabilities immediately and enable DNSSEC to improve security posture 25.

Sources

  1. Google Safe BrowsingThreat intel

    clean

    Verify at source
  2. Threat intelligence feeds (1 flagged)Threat intel

    shodan_internetdb (VULNERABLE_HOST, RISKY_INFRASTRUCTURE)

  3. 27/28 threat feeds responded cleanThreat intel
  4. WHOIS registration dataWHOIS

    Registered 2025-11-23T16:05:23.0Z (205 days ago), registrar: Namecheap

  5. TLD risk classification: .cfd (high risk)Analysis

    Based on APWG / Spamhaus / Interisle 2024 abuse rankings

Powered by ScamLens AI· Check sources to verify important claims

Threat-intelligence sources

Checked across 28 sources — 1 flagged this domain

Show source breakdown
  • safe_browsing clean
  • urlhaus clean
  • cloudflare_radar clean
  • cert_transparency clean
  • alienvault_otx clean
  • phishstats clean
  • virustotal clean
  • ipqs clean
  • abuseipdb clean
  • securitytrails clean
  • phishdestroy clean
  • threatfox clean
  • shodan_internetdb flagged
  • phishtank clean
  • urlscan clean
  • rdap clean
  • maltiverse clean
  • dnsbl clean
  • dns_security clean
  • wanted_domains clean
  • darkweb clean
  • openphish clean
  • scam_blocklist clean
  • maltrail clean
  • crypto_scam_feed clean
  • phishing_army clean
  • hagezi_tif clean
  • red_flag_domains clean

ScamLens aggregates real-time signals from 90+ commercial and open-source threat-intelligence providers including Google Safe Browsing, VirusTotal, PhishTank, URLhaus, ThreatFox, Cloudflare Radar, OTX, IPQS, GoPlus, Honeypot.is, and more. A flagged signal is evidence; the absence of flags is not proof of safety. Use the signals below alongside community reports to decide.

Advanced Scan

Comprehensive data lookup across premium sources

$2.99one-time payment
  • Website history verification
  • Detailed WHOIS information
  • Reverse WHOIS association
  • Traffic rank analysis
  • Company registration check
Recommended

AI Deep Investigation

Cross-check the story, claims, and supporting evidence before you decide

$4.99one-time payment
  • Everything in Advanced Scan
  • AI website content analysis
  • AI cross-reference verification
  • Claim authenticity validation
  • Detailed report with evidence
Most Thorough

Comprehensive Investigation

Full-spectrum investigation with company deep search & social intelligence

$14.99one-time payment
  • Everything in Deep Investigation
  • AI company background search
  • Social media intelligence
  • Detailed suspicious point analysis
  • Event timeline & entity connections

This analysis is for informational purposes only and does not constitute a legal determination.

Security Sources

Google Safe Browsing
Safe
Cloudflare Radar
Safe
URLhaus (abuse.ch) Confidence: Medium
Not Listed
Certificate Transparency Confidence: Low
Not Listed
AlienVault OTX Confidence: Medium
Not Listed
PhishStats Confidence: Low
Not Listed
VirusTotal Confidence: Low
Not Listed
IPQualityScore Confidence: Low
Not Listed
AbuseIPDB Confidence: Low
Not Listed
SecurityTrails Confidence: Low
Not Listed
PhishDestroy Confidence: Medium
Not Listed
ThreatFox (abuse.ch) Confidence: Low
Not Listed
Shodan InternetDB Confidence: High
Unsafe
PhishTank Confidence: Low
Not Listed
URLScan.io Confidence: Low
Not Listed
RDAP Domain Registration Confidence: Medium
Not Listed
Maltiverse Confidence: Low
Not Listed
DNS Blacklists Confidence: Low
Not Listed
DNS Security Confidence: Medium
Not Listed
Law Enforcement Confidence: Low
Not Listed
darkweb Confidence: Low
Not Listed
OpenPhish Confidence: Low
Not Listed
Scam Blocklist (Jarelllama) Confidence: Low
Not Listed
Maltrail (stamparm) Confidence: Low
Not Listed
Crypto Scam Feed Confidence: Low
Not Listed
Phishing Army Confidence: Low
Not Listed
HaGeZi Threat Intelligence Confidence: Low
Not Listed
Red Flag Domains Confidence: Low
Not Listed

Domain Information

Registrar
Namecheap
Created
November 23, 2025
Expires
November 23, 2026
Domain Age
6 months
DNSSEC
Disabled
Nameservers
dns1.registrar-servers.com, dns2.registrar-servers.com
Domain Status
client transfer prohibited

SSL/TLS Certificate

Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 1, 2026
Valid To
June 30, 2026
Status
Valid
SAN List
bcxcgezafa.cfd

Server Information

IP Address
104.194.8.74
Hosting Provider
ReliableSite.Net LLC
ASN
AS23470 ReliableSite.Net LLC
Server Location
Los Angeles, United States
Organization
ReliableSite.Net LLC

Related Intelligence
Technical Details (DNS / Headers / Subdomains)

DNS Records

Email Security

SPF Configured DMARC Not Configured
Type Value
A 104.194.8.74
MX 10 eforward1.registrar-servers.com
MX 10 eforward2.registrar-servers.com
MX 10 eforward3.registrar-servers.com
MX 15 eforward4.registrar-servers.com
MX 20 eforward5.registrar-servers.com
NS dns1.registrar-servers.com
NS dns2.registrar-servers.com
TXT v=spf1 include:spf.efwd.registrar-servers.com ~all

HTTP Security Headers

3/6
Strict-Transport-Security Missing
Content-Security-Policy Present

default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' 'unsafe-inline'...

X-Frame-Options Present

sameorigin

X-Content-Type-Options Missing
Referrer-Policy Present

same-origin

Permissions-Policy Missing

Channels / Subdomains

No data available

Community Reports

Log in to report and share your experience

...

Proceed with Caution

There is no strongest risk signal yet, but the domain alone is not enough to clear the case

If the case still involves shopping, investment, recovery, or branded support claims, a scenario-based review is usually more valuable than just refreshing the result.

Recommended First

Open the matching scenario guide

Continue by the actual scenario such as an investment platform, online store, or recovery service.

Verify the company or brand identity

Confirm whether the business or brand behind the domain is real.

Review the chat or direct-message script

Many otherwise normal-looking sites become risky because of the pitch, pressure, and payment instructions behind them.

If already affected, move into the action plan

If money or account data were already exposed, do not stay in the normal verification flow.

The results are based on multiple third-party data sources and AI models. False positives or negatives may occur. This report should not be used as the sole basis for any decision. Please verify with additional sources.

Continue with the actual scenario check

If this is a store, investment platform, or recovery service, do not rely on the domain alone. Continue with the matching scenario guide.

Open a scenario guide

If you already paid, logged in, or downloaded files, move into the action plan immediately.

Related Security Guides

Learn more about how to protect yourself from this type of threat.

How to Check if a Website Is Safe Phishing Scams Guide

FAQ

Is bcxcgezafa.cfd safe to visit?

bcxcgezafa.cfd received a trust score of 73/100 from ScamLens, based on analysis of 30+ threat intelligence sources. No significant threats were detected. The site appears safe and trustworthy.

Was bcxcgezafa.cfd flagged by any threat databases?

bcxcgezafa.cfd was checked against 30+ threat intelligence databases including Google Safe Browsing, PhishTank, and URLhaus. No threats were detected across any source.

How old is bcxcgezafa.cfd?

bcxcgezafa.cfd was first registered on November 23, 2025, making it approximately 6 months old. While relatively new, the domain has been active for several months.

Does bcxcgezafa.cfd use HTTPS and have a valid SSL certificate?

bcxcgezafa.cfd uses an SSL certificate issued by C=US, O=Let's Encrypt, CN=R12, valid until June 30, 2026. The certificate is from a free provider (Let's Encrypt/ZeroSSL), which is common but does not validate the organization's identity.

What security headers does bcxcgezafa.cfd implement?

bcxcgezafa.cfd is missing important security headers: Content-Security-Policy, X-Frame-Options, X-Content-Type-Options, Strict-Transport-Security, Referrer-Policy, Permissions-Policy. Missing security headers can leave visitors vulnerable to cross-site scripting (XSS) and other web-based attacks.

What does the ScamLens community think about bcxcgezafa.cfd?

No community votes or reports have been submitted for bcxcgezafa.cfd yet. You can be the first to share your experience.

Where is bcxcgezafa.cfd hosted?

bcxcgezafa.cfd is hosted by ReliableSite.Net LLC in Los Angeles, United States (ASN: ASAS23470 ReliableSite.Net LLC).

What should I do about bcxcgezafa.cfd?

Exercise caution before interacting. Verify the domain's legitimacy through independent channels (official websites, direct contact with claimed organization). Do not download files or enter credentials. If this is your domain, remediate the flagged vulnerabilities immediately and enable DNSSEC to improve security posture [2][5].

Is this report useful?

Use this report to remind others to verify the shopping, investment, or support scenario instead of treating it as full clearance.

Forward to your parents — they deserve to browse safely too.

About this analysis

This report is generated from real-time data across 90+ threat intelligence sources, combined with AI analysis and community feedback.

Learn about our scoring methodology | Last analyzed: April 30, 2026

All Namecheap domains All ReliableSite.Net LLC domains

Other domains registered with Namecheap