Our automated security review flags is.gd as dangerous. Multiple threat indicators were detected — treat the site as a scam until proven otherwise.

Is is.gd safe to use?

No — is.gd scored 25/100 on our trust scale. We detected active threat indicators, so we recommend avoiding the site entirely.

Does is.gd have a valid SSL certificate?

Yes. is.gd presents a valid TLSv1.2 certificate issued by Google Trust Services · WE1, expiring in 38 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.

How old is the is.gd domain?

is.gd is 18.7 years old, registered on 9/11/2007 through Gandi SAS. Scam domains are often freshly registered — a site under 6 months old warrants extra caution.

Has is.gd been flagged by antivirus engines?

1 out of 92 antivirus engines in our malware network flagged is.gd as malicious or suspicious (1 outright malicious). Even one detection is a meaningful signal.

Is is.gd on any phishing or malware blacklists?

No. is.gd is not currently listed on the major browser blocklist feeds that modern browsers use.

Where is is.gd hosted?

is.gd resolves to an IP operated by Cloudflare, Inc. in US (usage type: Content Delivery Network). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.

How often is the is.gd report updated?

We cache results for 24 hours. Signed-in MalwareTips members can trigger a manual rescan at any time using the "Rescan" button on the report page, which re-runs every check from scratch and refreshes this page.

DANGEROUS

Critical risk detected

Established URL shortener (since 2007) with legitimate business operations, but widely misused for phishing and malware distribution by bad actors. Our security stack flagged multiple threat indicators on this website. Don't enter personal information, deposit money, or download files.

Security Review

Is is.gd legit or a scam?

Name: Is is.gd legit or a scam?
Item: is.gd
Rating: 2
Author: MalwareTips

Our verdict:Dangerous· 25/100

SafeSuspiciousDangerous

Established URL shortener (since 2007) with legitimate business operations, but widely misused for phishing and malware distribution by bad actors.

Top reasons

Frequently abused by third parties to distribute phishing links, particularly Steam gift card and game profile scams.Multiple community reports document malware delivery and binary option fraud via is.gd shortened links.Historical ranking as one of the top phishing shorteners (Netcraft 2014); recent malware campaigns continue to exploit the platform.

is.gdScanned 57m ago

Post Facebook

Trust score

DANGEROUS

Heuristics 35·MT 52

Category tags

url shortenerabuse vector#Phishing72% MT confidence

Technical red flags (1)

1 of 92 engines flagged

Positive signals (4)

Not on major blacklists Domain is 19 years old Encrypted connection Clean server reputation

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence

0/92

Engines flagged this URL

Domain Age

19 years old

Registered Sep 11, 2007

MT Intelligence

Suspicious

Moderate likelihood · 72% confidence

MT Intelligence

Advanced threat intelligence

MT Security Analyst

Moderate scam likelihoodengineMT · Guardiantrust52/100

MT AgentLive web researchVisual inspection

Confidence

is.gd is a genuine, long-running URL shortening platform operated by UK hosting provider Memset and registered in 2007 — nearly 18 years of continuous operation. The domain has valid SSL, clean hosting-IP reputation (0 abuse reports), and active business registration. However, the service is frequently weaponised by attackers: multiple community reports document phishing links (Steam gift card scams, game profile spoofs), malware delivery, spam, and binary option fraud created via is.gd. The single antivirus detection (Chong Lua Dao) likely reflects a specific malicious link rather than the shortener itself. Independent aggregators rate the service as legitimate with average-to-good trust scores, and is.gd's official policy explicitly prohibits spam and malicious use with active enforcement. The core risk is not the platform but the shortened links it hosts — users must treat any is.gd link with caution and preview it before following.

Full dossier

Analysis complete

Page Content

is.gd is a URL shortening service. The homepage provides link-creation tools and redirects users to shortened URLs. The service is not a phishing site or scam storefront itself.

Infrastructure

Hosted on Cloudflare (IP 104.25.233.53) with valid SSL issued by Google Trust Services. Hosting IP has zero abuse reports and a clean reputation score (0/100). SSL certificate is valid with 38 days remaining.

Domain History

Registered in 2007 via Gandi SAS and has been in continuous operation for approximately 18 years. WHOIS is privacy-protected. Domain is set to expire in 2028. This longevity and renewal pattern are consistent with a legitimate, established service.

Web Reputation

Community reviews on independent aggregators are mixed. Positive signals include high traffic ranking (Tranco 500), longevity, valid SSL, and official anti-spam policy. Negative signals include multiple user reports of phishing links, malware delivery, and spam abuse via is.gd-shortened URLs. The service actively combats abuse with blacklists (SURBL), permanent non-editable links, warning pages on flagged content, and rapid complaint investigation. Historical data (Netcraft 2014) ranked it among the top phishing shorteners; recent 2025 reports note use in malware campaigns.

Risk Factors

Frequently abused by third parties to distribute phishing links, particularly Steam gift card and game profile scams.
Multiple community reports document malware delivery and binary option fraud via is.gd shortened links.
Historical ranking as one of the top phishing shorteners (Netcraft 2014); recent malware campaigns continue to exploit the platform.
Single antivirus detection (Chong Lua Dao) suggests at least one malicious link is currently active or recently was.
Users cannot verify the destination of a shortened link before clicking, creating inherent phishing risk.

Positive Signals

Legitimate business: operated by UK hosting provider Memset, registered 2007, active status, expires 2028.
Valid SSL certificate issued by Google Trust Services with clean hosting-IP reputation (0 abuse reports).
High traffic ranking (Tranco 500) and independent aggregators rate the service as legitimate with average-to-good trust scores.
Active abuse controls: blacklist integration (SURBL), permanent non-editable links, warning pages on flagged content, rapid complaint investigation.
Official anti-spam policy explicitly prohibits malicious use; sister service v.gd offers preview pages for added safety.

AI Recommendation

Do not click is.gd links from untrusted sources. If you receive a shortened link, use a link-preview service or hover over it to see the destination before clicking. If you use is.gd to create links, ensure they comply with the service's anti-spam policy.

Next-gen fraud intelligence

Evidence-backedCross-checked

Website Preview

LIVE RENDER

is.gd

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for is.gd, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age

18 yrs

Registered Sep 2007

Business registration

Active · UK

Site traces back to an actively registered business.

Clone check

Not a clone

No well-known site's layout or branding detected here.

Typosquat check

No look-alike match

The domain doesn't resemble any well-known brand's spelling.

Web mentions

7 scam reports · 20 complaints · 3 positive

Key findings

7 headline facts from open-web research

is.gd is a long-established (registered 2007, ~18 years old) URL shortening service operated by UK hosting provider Memset; links last indefinitely if compliant with terms.
Actively combats abuse with blacklists (e.g. SURBL), permanent non-editable links to prevent bait-and-switch, prominent warning pages on flagged spam/phishing links, and rapid complaint investigation.
Frequently misused by third parties for phishing (e.g. Steam gift card scams), malware delivery, spam, and binary option fraud; multiple WOT reviews cite specific phishing incidents via is.gd links.
Scamadviser rates "Very Likely Safe" with average-to-good trust score citing high traffic (Tranco 500), longevity, valid SSL; notes mixed reviews and Pulsedive elevated risk.
WOT community score ~4.2/5 (83% algorithm/child safety) but many negative reviews warn of "potentially malicious links created by third parties", spam, and viruses.
Netcraft (2014) ranked it 5th phishiest shortener at the time (behind tinyurl.com); recent 2025 Cofense report notes use in malware campaigns (e.g. info stealers).
Official policy states "no relationship with spammers" and prohibits spam/malicious use; sister site v.gd shows preview pages by default for added safety.

Scam reports (7)

Direct quotes from public scam databases, forums, and news.

MyWOTopen
"I have seen people get phishing links that were made on is.gd, of a "steam" gift."
MyWOTopen
"I got a link to site on is.gd which was a phishing site"
MyWOTopen
"I got sended a game profile link using is.gd, It's a scam."
MyWOTopen
"Scam - spam, virus. Вирусы, спам и мошенничество."
MyWOTopen
"this site is abused by spammers: spamvertized blurring redirctor for: binary option scam, Beware!"

Positive reviews (3)

Quotes indicating the site is legitimate.

Scamadviseropen
"It seems that is.gd is legit and safe to use and not a scam website. ... has an average to good trust score."
MyWOTopen
"This url shortener might redirect to malicious software BUT they did a great job to filtering them"
is.gd Spam Policyopen
"We hate spam usage of our service and is.gd has no relationship with spammers. ... do everything we can to prevent it."

Business registration

Status: active · UK

Operated by Memset (UK hosting provider); domain registered 2007 via Gandi SAS, expires 2028; WHOIS shows US/SD but historically tied to UK company

Research summary

Narrative write-up from our AI analyst, grounded on the facts above

Community review sites report multiple phishing incidents via is.gd-shortened links, including Steam gift card scams and game profile spoofs. Users also report malware delivery and spam abuse. However, independent trust aggregators rate is.gd as a legitimate service with average-to-good trust scores, citing its 18-year history, high traffic ranking, valid SSL, and active anti-spam enforcement. The service's official policy explicitly prohibits malicious use and states it actively combats abuse. The consensus is that is.gd itself is a legitimate platform frequently misused by third parties for phishing and malware distribution.

Antivirus Engines

Detection matrix · live

1 engine flagged this URL

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. Each detection is listed below by engine name — even a single hit is a meaningful signal.

1Malicious0Suspicious61Harmless92Engines

of 92

Chong Lua Dao

Malicious· malicious

1 antivirus engine flagged this URL. Even a single detection is a meaningful signal — treat this site with extra caution and avoid entering credentials, payment info, or downloading any files.

Security Scans

Blacklist Check

Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Sandbox Render

Page rendered in a safe sandbox

Requests made0

Unique IPs0

Countries0

Detected brandsNone

Domain & Encryption

Domain History

Age19 years old

RegistrarGandi SAS

RegisteredSep 11, 2007

ExpiresSep 12, 2028

Owner privacyHidden

Encryption Certificate

StatusValid

ProtocolTLSv1.2

IssuerGoogle Trust Services · WE1

ExpiresJul 16, 2026 (38d)

Self-signedNo

Hosting & Technology

HostingCloudflare, Inc.

Server locationUS

Redirect Chain

Hops

Cross-domain

Lookalike

Punycode

1301http://is.gd/
2403https://is.gd/

Server Reputation

Hosting

CountryUnknown

NetworkUnknown

IP addressUnknown

Abuse Intelligence

Confidence score0%

Reports on file0

ISPCloudflare, Inc.

Usage typeContent Delivery Network

Scam-Type Likelihood

1 scam-type patterns detected

Scam-Type Likelihood

0 of 13 categories showed signals

We check every URL against 13 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.

Top match: Phishing

Phishing

Low-level signals

0/100

AI analyst tagged this as phishing.

Scam-Type Likelihood

0 of 13 categories showed signals

Top match: Phishing

Phishing

Low-level signals

0/100

AI analyst tagged this as phishing.

Phishing site — act fast

This page shows signs of attempting to steal credentials or impersonate a trusted brand.

Do not interact with is.gd
Do not enter credentials, deposit money, download files, or install browser extensions from this site.
If you already typed your password — change it now
Change the password on the legitimate site and anywhere else you re-used it. Turn on two-factor authentication. Review recent account activity.
Report the phishing URL
APWG (Anti-Phishing Working Group) accepts phishing reports at reportphishing@apwg.org. Google Safe Browsing reports help protect other users.
Open
Get help on the forum
MalwareTips members can help you assess damage and next steps.
Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing

Not listedCheck ↗

VirusTotal

ListedCheck ↗

AbuseIPDB

Not listedCheck ↗

Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Safety FAQ

Common questions about this site, answered from the scan data on this page. These are auto-generated — not hand-written — so they always match the underlying report.

Our automated security review flags is.gd as dangerous. Multiple threat indicators were detected — treat the site as a scam until proven otherwise.

Final Verdict

Trust / 100

Final Verdict·is.gd

DANGEROUS

is.gd is a legitimate URL shortening service established in 2007, but it is frequently abused by third parties to distribute phishing links, malware, and spam. The service itself has strong abuse controls, but users should verify shortened links before clicking.

AV engines

MT passes

Net signals

Scan another URL

Security review completemalwaretips.com/url-scan

Recently scanned

Other Dangerous reports

Browse all reports

Dangeroustrust1

update-billing-netflix.shekinahglory.co.zw

programundianshopee11.blogspot.com

speedpathlogistics.best

Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…

Loading comments…

This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.