Is dns-finder.com a scam?

Our automated security review marked dns-finder.com as suspicious. Several warning signs were detected; it may still turn out legitimate, but you should verify it through independent channels before trusting it with money or credentials.

Is dns-finder.com safe to use?

dns-finder.com currently scores 55/100 on our trust scale. We found enough warning signals to recommend caution. Verify the site through independent channels before entering credentials or money.

Does dns-finder.com have a valid SSL certificate?

Yes. dns-finder.com presents a valid TLSv1.3 certificate issued by Google Trust Services · WR3, expiring in 75 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.

How old is the dns-finder.com domain?

dns-finder.com is 1.9 years old, registered on 7/17/2024 through RegistryGate GmbH. Scam domains are often freshly registered — a site under 6 months old warrants extra caution.

Has dns-finder.com been flagged by antivirus engines?

No. All 92 antivirus engines in our malware network report dns-finder.com as clean.

Is dns-finder.com on any phishing or malware blacklists?

No. dns-finder.com is not currently listed on the major browser blocklist feeds that modern browsers use.

Where is dns-finder.com hosted?

dns-finder.com resolves to an IP operated by Google LLC in US (usage type: Content Delivery Network). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.

Is dns-finder.com a well-known website?

Yes. dns-finder.com sits in the global top-100k on Cloudflare Radar, which means it has substantial real-world traffic. That does not automatically make it safe, but established brands almost always rank here and throwaway scam domains almost never do.

Security Review

Is dns-finder.com legit or a scam?

Our verdict:Suspicious· 55/100

SafeSuspiciousDangerous

A DNS utility flagged by security researchers for potential data harvesting and DNS-rebind attacks despite clean antivirus scans.

Top reasons

Triggered DNS-rebind attack warnings in network security logs.Included in major community-driven DNS blocklists for data leakage.Reported to perform client-side fingerprinting without clear disclosure.

dns-finder.comScanned 2h ago

Post Facebook

Trust score

SUSPICIOUS

Heuristics 100·MT 42

Category tags

cybersecurity tools#data harvester85% MT confidence

Positive signals (5)

Antivirus clear Not on major blacklists Domain is 1.9 years old Encrypted connection Clean server reputation

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence

0/92

All engines report clean

Domain Age

1.9 years old

Registered Jul 17, 2024

MT Intelligence

Suspicious

Moderate likelihood · 85% confidence

SUSPICIOUS

Warning signs detected

A DNS utility flagged by security researchers for potential data harvesting and DNS-rebind attacks despite clean antivirus scans. Several risk indicators suggest caution. This site might be legitimate — but treat it as unverified until you can independently confirm.

Website Preview

LIVE RENDER

dns-finder.com

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

MT Intelligence

Advanced threat intelligence

MT Security Analyst

Moderate scam likelihoodengineMT · Guardiantrust42/100

MT AgentLive web researchVisual inspection

Confidence

The domain has been active for nearly two years and passes all major antivirus engine checks. However, our research found multiple reports of the site's subdomains triggering DNS-rebind attack warnings in network logs. Security community blocklists have flagged the site for potentially leaking visitor DNS information to third-party websites. While the main page appears functional, the underlying behavior is consistent with aggressive tracking or network fingerprinting. The lack of transparent ownership information further reduces our confidence in its safety.

Full dossier

Analysis complete

Page Content

The site functions as a technical utility for DNS lookups and network diagnostics. It does not appear to sell products or harvest traditional login credentials, but it operates silently in the background of other sites via iframes.

Infrastructure

The domain is hosted on a reputable IP range with a valid SSL certificate issued by Google Trust Services. It utilizes Cloudflare nameservers, which provides a layer of stability but also hides the true origin server.

Domain History

Registered in July 2024, the domain is approximately 707 days old. The registration is handled through a German registrar, though the specific owner details are hidden behind a privacy proxy service based in the United States.

Web Reputation

The site has a polarizing reputation. While technical sandboxes find no malware, it is explicitly listed on major DNS blocklists. Users on technical forums have documented 'ag.dns-finder.com' attempting suspicious rebind maneuvers on local networks.

Risk Factors

Triggered DNS-rebind attack warnings in network security logs.
Included in major community-driven DNS blocklists for data leakage.
Reported to perform client-side fingerprinting without clear disclosure.
Owner identity is hidden behind a WHOIS privacy proxy.
Low global traffic rank despite being nearly two years old.

Positive Signals

Zero detections across 92 antivirus engines in our network.
Valid SSL certificate with no immediate expiry issues.
No evidence of brand impersonation or phishing clones.

AI Recommendation

Avoid using this site for sensitive network diagnostics. If your firewall or DNS blocker flags this domain, do not whitelist it, as it may be attempting to map your internal network.

Next-gen fraud intelligence

Evidence-backedCross-checked

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for dns-finder.com, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age

1.9 yrs

Registered Jul 2024

Business registration

Active · Germany

Site traces back to an actively registered business.

Clone check

Not a clone

No well-known site's layout or branding detected here.

Typosquat check

No look-alike match

The domain doesn't resemble any well-known brand's spelling.

Web mentions

2 scam reports · 3 complaints

Key findings

7 headline facts from open-web research

Domain registered July 18, 2024 via RegistryGate GmbH with Cloudflare nameservers; WHOIS privacy protected via whoisproxy.com (listed in Alexandria, VA).
Subdomains (ag.dns-finder.com, bt.dns-finder.com) trigger DNS-rebind attack warnings in dnsmasq logs on multiple forums and Reddit.
Listed in hagezi/dns-blocklists (ultimate list) with user comment suggesting it leaks or reports visitor DNS information to websites.
Joe Sandbox analysis of http://dns-finder.com/ (Dec 2024) returned clean verdict (score 0/100, UNKNOWN classification, no malicious behavior or AV detections).
Scamadviser rates ag.dns-finder.com with Trust Score 0 but concludes "probably legit"; notes hidden owner identity, low traffic, and iframing.
No reviews on Trustpilot; no major scam complaints found beyond blocklist inclusion and rebind detections.
Domain age ~707 days aligns with 2024 registration; functions as a DNS lookup/finder tool that may perform client-side fingerprinting.

Scam reports (2)

Direct quotes from public scam databases, forums, and news.

GitHub hagezi/dns-blocklistsopen
"dns-finder.com · Issue #8589 · hagezi/dns-blocklists - I think it gives websites information about your DNS"
Level1Techs Forumopen
"possible DNS-rebind attack detected: ag.dns-finder.com"

Business registration

Status: active · Germany

Registered via RegistryGate GmbH (Germany) on 2024-07-18, expires 2027-07-18; registrant details privacy-protected via whoisproxy.com (listed address in US)

Research summary

Narrative write-up from our AI analyst, grounded on the facts above

We found reports on GitHub and specialized hardware forums indicating that dns-finder.com and its subdomains are often flagged for DNS-rebind attacks. While some independent review aggregators suggest it may be a legitimate tool, its inclusion in 'ultimate' blocklists suggests it is used for tracking or fingerprinting. No positive consumer reviews were found to verify its safety for general users.

Antivirus Engines

Clean pass · verified

Clean across 92 engines

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. None of them flagged this URL in the last scan.

0Malicious0Suspicious59Harmless92Engines

Clean

Kaspersky

Clean

Bitdefender

Clean

Microsoft

Not in pass

ESET-NOD32

Not in pass

Avira

Not in pass

Sophos

Clean

Fortinet

Clean

Google Safebrowsing

Clean

Emsisoft

Clean

No engine detections. The URL passed every antivirus and blacklist engine we queried in this scan. Stay vigilant — AV coverage is only one signal among many.

Security Scans

Blacklist Check

Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Domain & Encryption

Domain History

Age1.9 years old

RegistrarRegistryGate GmbH

RegisteredJul 17, 2024

ExpiresJul 17, 2027

Owner privacyVisible

Encryption Certificate

StatusValid

ProtocolTLSv1.3

IssuerGoogle Trust Services · WR3

ExpiresSep 8, 2026 (75d)

Self-signedNo

Hosting & Technology

HostingGoogle LLC

Server locationUS

PopularityTop 100k worldwide

Server Reputation

Abuse Intelligence

Confidence score0%

Reports on file1

ISPGoogle LLC

Usage typeContent Delivery Network

Proceed with caution

Our automated review flagged enough risk that you should treat this site as unverified.

Treat dns-finder.com as unverified
Do not enter credentials or send money until you have independently verified the business.
Verify the business through independent channels
Check the company's social profiles, registry records, and search for recent news or reviews that are not hosted on the site itself.
Never use irreversible payment methods
Crypto, gift cards, wire transfers, and cash apps offer zero buyer protection. Use a credit card or PayPal if you must pay.
Share your experience
If you have additional context, drop a comment below or post on the MalwareTips forum.
Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing

Not listedCheck ↗

VirusTotal

Not listedCheck ↗

AbuseIPDB

Not listedCheck ↗

Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Safety FAQ

Common questions about this site, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

Our automated security review marked dns-finder.com as suspicious. Several warning signs were detected; it may still turn out legitimate, but you should verify it through independent channels before trusting it with money or credentials.
dns-finder.com currently scores 55/100 on our trust scale. We found enough warning signals to recommend caution. Verify the site through independent channels before entering credentials or money.
Yes. dns-finder.com presents a valid TLSv1.3 certificate issued by Google Trust Services · WR3, expiring in 75 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.
dns-finder.com is 1.9 years old, registered on 7/17/2024 through RegistryGate GmbH. Scam domains are often freshly registered — a site under 6 months old warrants extra caution.
No. All 92 antivirus engines in our malware network report dns-finder.com as clean.
No. dns-finder.com is not currently listed on the major browser blocklist feeds that modern browsers use.
dns-finder.com resolves to an IP operated by Google LLC in US (usage type: Content Delivery Network). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.
Yes. dns-finder.com sits in the global top-100k on Cloudflare Radar, which means it has substantial real-world traffic. That does not automatically make it safe, but established brands almost always rank here and throwaway scam domains almost never do.

Final Verdict

Trust / 100

Final Verdict·dns-finder.com

SUSPICIOUS

This site operates as a DNS lookup tool that has been flagged for potential data fingerprinting and DNS-rebind activity. While not explicitly malicious, it is frequently blocked by security lists for leaking visitor information. Use caution and avoid interacting with its subdomains.

Avoid using this site for sensitive network diagnostics. If your firewall or DNS blocker flags this domain, do not whitelist it, as it may be attempting to map your internal network.

AV engines

MT passes

Net signals

Scan another URL

Security review completemalwaretips.com/url-scan

Recently scanned

Other Suspicious reports

minilol.art.atlaq.com

Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…

Loading comments…

This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.