ScamLens
Cached < 6hAnonymous (3/day)

Security Report for reverselookup.com

ScamLens analyzed reverselookup.com using 90+ threat intelligence sources and assigned a trust score of 70/100, classifying it as safe.

Trust Score: 70/100

Risk Level: Trusted

This domain already shows strong risk signals. Stop interacting, preserve the page, chat, phone, and payment evidence, and move into response or reporting immediately.

Site Title
reverselookup.com
Website meta information unavailable
en HTTPS ✓
2
Checked 2 times

Quick Answer

This domain already shows strong risk signals. Stop interacting, preserve the page, chat, phone, and payment evidence, and move into response or reporting immediately.

Positive Signals

  • + Domain has been active for 27 year
  • + Google Safe Browsing: Safe
  • + HTTPS encryption supported

Concerns

  • - 3 security sources flagged as suspicious

Score Breakdown

Domain Reputation 80
27 years old
Threat Intelligence 91
13/16 safeSafeBrowsing OK
Technical Security 68
HTTPSHSTS
Community Reputation 50
No community data yet

Was this assessment accurate?
0 say Safe0 say Suspicious
What do you think?
What to do next

reverselookup.com looks legitimate

No threat feeds have flagged this domain. Use standard online-safety habits.

Confidence:High
  1. Bookmark the official URL
    Scammers often clone legitimate brands at look-alike domains. A saved bookmark protects you from typos.
  2. Watch for unexpected payment requests
    Even legitimate sites can be hijacked. Treat unsolicited 'urgent payment' prompts as suspicious.
  3. Verify HTTPS + the exact spelling
    Confirm the lock icon, and inspect the domain letter-by-letter before entering passwords or card details.
Cross-check with independent scanners

Trust but verify — open this domain on unrelated security services and compare the verdict.

VirusTotalurlscan.ioGoogle Safe Browsing
How we decide this

AI Risk Assessment

Safe
Based on 5 sourcesUpdated 4d ago

What matters right now

With a high-risk result, the priority is not reading more pages. It is immediate containment, credential resets, evidence preservation, and the reporting path.

reverselookup.com presents mixed security signals. 1 Safe Browsing is clean, and 3 18 of 21 threat feeds are clean, indicating no confirmed malicious activity. However, 2 three threat feeds flagged the domain: VirusTotal (SUSPICIOUS), Shodan Internet DB (SUSPICIOUS_PORTS), and DNS Security (DNS_BLOCKED_MALWARE). 4 The domain is legitimately aged (registered 1998, 10213 days old) with MarkMonitor registrar and 5 .com is a low-risk TLD. 2 The flagged threat feeds suggest potential port exposure or historical DNS malware association, but lack confirmation from Safe Browsing. No community reports exist. [INFERENCE] The combination of three flagged feeds despite Safe Browsing clean status suggests possible infrastructure misconfiguration or residual threat intelligence rather than active exploitation.

Recommendation

Investigate the specific threat feed flags—particularly SUSPICIOUS_PORTS and DNS_BLOCKED_MALWARE—via Shodan and DNS reputation databases to confirm current threat status. If you operate this domain, audit open ports and DNS records. Verify Safe Browsing remains clean before engaging with sensitive transactions. Monitor for updates.

Sources

  1. Google Safe BrowsingThreat intel

    clean

    Verify at source
  2. Threat intelligence feeds (3 flagged)Threat intel

    virustotal (SUSPICIOUS); shodan_internetdb (SUSPICIOUS_PORTS); dns_security (DNS_BLOCKED_MALWARE)

  3. 18/21 threat feeds responded cleanThreat intel
  4. WHOIS registration dataWHOIS

    Registered 1998-06-27T04:00:00Z (10213 days ago), registrar: MarkMonitor Inc.

  5. TLD risk classification: .com (low risk)Analysis

    Based on APWG / Spamhaus / Interisle 2024 abuse rankings

Powered by ScamLens AI· Check sources to verify important claims

Threat-intelligence sources

Checked across 21 sources — 3 flagged this domain

Show source breakdown
  • safe_browsing clean
  • urlhaus clean
  • cloudflare_radar clean
  • cert_transparency clean
  • alienvault_otx clean
  • phishstats clean
  • virustotal flagged
  • ipqs clean
  • abuseipdb clean
  • securitytrails clean
  • phishdestroy clean
  • threatfox clean
  • shodan_internetdb flagged
  • phishtank clean
  • urlscan clean
  • rdap clean
  • maltiverse clean
  • dnsbl clean
  • dns_security flagged
  • wanted_domains clean
  • openphish clean

ScamLens aggregates real-time signals from 90+ commercial and open-source threat-intelligence providers including Google Safe Browsing, VirusTotal, PhishTank, URLhaus, ThreatFox, Cloudflare Radar, OTX, IPQS, GoPlus, Honeypot.is, and more. A flagged signal is evidence; the absence of flags is not proof of safety. Use the signals below alongside community reports to decide.

Advanced Scan

Comprehensive data lookup across premium sources

$2.99one-time payment
  • Website history verification
  • Detailed WHOIS information
  • Reverse WHOIS association
  • Traffic rank analysis
  • Company registration check
Recommended

AI Deep Investigation

Cross-check the story, claims, and supporting evidence before you decide

$4.99one-time payment
  • Everything in Advanced Scan
  • AI website content analysis
  • AI cross-reference verification
  • Claim authenticity validation
  • Detailed report with evidence
Most Thorough

Comprehensive Investigation

Full-spectrum investigation with company deep search & social intelligence

$14.99one-time payment
  • Everything in Deep Investigation
  • AI company background search
  • Social media intelligence
  • Detailed suspicious point analysis
  • Event timeline & entity connections

This analysis is for informational purposes only and does not constitute a legal determination.

Security Sources

Google Safe Browsing
Safe
Cloudflare Radar
Safe
URLhaus (abuse.ch) Confidence: Medium
Not Listed
Certificate Transparency Confidence: Low
Not Listed
AlienVault OTX Confidence: Medium
Not Listed
PhishStats Confidence: Low
Not Listed
VirusTotal Confidence: Medium
Unsafe
IPQualityScore Confidence: Low
Not Listed
AbuseIPDB Confidence: Medium
Not Listed
SecurityTrails Confidence: Low
Not Listed
PhishDestroy Confidence: Medium
Not Listed
ThreatFox (abuse.ch) Confidence: Low
Not Listed
Shodan InternetDB Confidence: Medium
Unsafe
PhishTank Confidence: Low
Not Listed
URLScan.io Confidence: Medium
Not Listed
RDAP Domain Registration Confidence: Medium
Not Listed
Maltiverse Confidence: Low
Not Listed
DNS Blacklists Confidence: Low
Not Listed
DNS Security Confidence: High
Unsafe
Law Enforcement Confidence: Low
Not Listed
OpenPhish Confidence: Low
Not Listed

Domain Information

Registrar
MarkMonitor Inc.
Created
June 27, 1998
Expires
June 26, 2033
Domain Age
27 years
DNSSEC
Disabled
Nameservers
BLUE.FOUNDATIONDNS.COM, BLUE.FOUNDATIONDNS.NET, BLUE.FOUNDATIONDNS.ORG
Domain Status
client delete prohibited client transfer prohibited client update prohibited

SSL/TLS Certificate

No data available

Server Information

IP Address
104.18.28.81
Hosting Provider
Cloudflare, Inc.
ASN
AS13335 Cloudflare, Inc.
Server Location
Toronto, Canada
Organization
Cloudflare, Inc.

Related Intelligence
Technical Details (DNS / Headers / Subdomains)

DNS Records

Email Security

SPF Not Configured DMARC Configured
Type Value
A 104.18.28.81
A 104.18.29.81
AAAA 2606:4700::6812:1c51
AAAA 2606:4700::6812:1d51
MX 1 smtp.google.com
NS blue.foundationdns.org
NS blue.foundationdns.com
NS blue.foundationdns.net
TXT apple-domain-verification=-IVYkS3rg2sI4cla0jdDGhh5oO3c2xhauJbB8uHqL9M
TXT google-site-verification=4WxTHsT2aULnx_uSkaoJN4DnYLey9yB1siZPlmDoFqk
TXT google-site-verification=EyX7wEXKJWp1GrOwQMxhS0X_9xgNimh-KovWVQPffu0
TXT google-site-verification=uVyhbMd0tuzN2duvKiu1pttn0pZen7OdOd9KXr7hVmM
TXT prowly-verification=d98539dd35d1c34e41244248c148aa62703bb1765d98259f377f92780d6b35f3

HTTP Security Headers

2/6
Strict-Transport-Security Present

max-age=15552000; includeSubDomains; preload

Content-Security-Policy Missing
X-Frame-Options Missing
X-Content-Type-Options Present

nosniff

Referrer-Policy Missing
Permissions-Policy Missing

Channels / Subdomains

No data available

Community Reports

Log in to report and share your experience

...

High-Risk Signals

The risk signals are strong enough. Move on evidence preservation, reporting, and victim response now

This result is no longer just a normal verification case. Moving the chat, phone, payment, and official-reporting path in parallel is usually more important than waiting for more data.

Recommended First

Move into the victim action plan

If you already paid, logged in, or installed tools, use the action plan first to prioritize containment and evidence work.

Move into the website-reporting flow

Move the site, payment evidence, chat trail, and contact points into the formal reporting path.

Add the chat, DM, and payment-pressure trail

Keep the Telegram, WhatsApp, social DM, and payment-pressure trail in the same timeline.

Check the callback number and SMS

If the actor also used calls, SMS, or one-time codes, verify that phone path next.

The results are based on multiple third-party data sources and AI models. False positives or negatives may occur. This report should not be used as the sole basis for any decision. Please verify with additional sources.

If a loss already happened, move into the response flow now

Delay is the main risk with high-risk domains. Prioritize freezes, credential resets, reporting, and evidence preservation now.

Start the response

If no loss happened yet, continue with the website-reporting and official-agency paths next.

Related Security Guides

Learn more about how to protect yourself from this type of threat.

How to Check if a Website Is Safe Phishing Scams Guide

FAQ

Is reverselookup.com safe to visit?

reverselookup.com received a trust score of 70/100 from ScamLens, based on analysis of 30+ threat intelligence sources. No significant threats were detected. The site appears safe and trustworthy.

Was reverselookup.com flagged by any threat databases?

reverselookup.com was flagged by 2 out of 30+ threat intelligence sources. Specifically flagged by: virustotal, dns_security. The detected threat categories include: general threat.

How old is reverselookup.com?

reverselookup.com was first registered on June 27, 1998, making it approximately 27 years old. This is an established domain with a history of operation.

Does reverselookup.com use HTTPS and have a valid SSL certificate?

ScamLens could not verify the SSL certificate details for reverselookup.com during this scan. Treat this as unavailable evidence, not as proof that the site is safe or unsafe.

What security headers does reverselookup.com implement?

reverselookup.com is missing important security headers: Content-Security-Policy, X-Frame-Options, X-Content-Type-Options, Strict-Transport-Security, Referrer-Policy, Permissions-Policy. Missing security headers can leave visitors vulnerable to cross-site scripting (XSS) and other web-based attacks.

What does the ScamLens community think about reverselookup.com?

No community votes or reports have been submitted for reverselookup.com yet. You can be the first to share your experience.

Where is reverselookup.com hosted?

reverselookup.com is hosted by Cloudflare, Inc. in Toronto, Canada (ASN: ASAS13335 Cloudflare, Inc.).

What should I do about reverselookup.com?

Investigate the specific threat feed flags—particularly SUSPICIOUS_PORTS and DNS_BLOCKED_MALWARE—via Shodan and DNS reputation databases to confirm current threat status. If you operate this domain, audit open ports and DNS records. Verify Safe Browsing remains clean before engaging with sensitive transactions. Monitor for updates.

Is this report useful?

Use this report to tell others to stop interacting now and move straight into containment, evidence preservation, and reporting.

Forward to your parents — they deserve to browse safely too.

About this analysis

This report is generated from real-time data across 90+ threat intelligence sources, combined with AI analysis and community feedback.

Learn about our scoring methodology | Last analyzed: April 3, 2026

All MarkMonitor Inc. domains All Cloudflare, Inc. domains

Other domains registered with MarkMonitor Inc.