MalwareTips
SAFE

No threats detected

All checks passed. This site appears legitimate — but always stay alert for phishing even on trusted domains.

Security Review

Is l.facebook.com legit or a scam?

Our verdict:Safe· 78/100

Official Facebook link shim domain used to redirect and protect users from external links.

Why we trust it
Zero detections from our antivirus network and blocklist feedsDomain age exceeds 29 years and aligns with Facebook's registrationClean hosting IP with zero abuse reports
l.facebook.comScanned 18d ago
Post Facebook
0
Trust score
SAFE
Heuristics 43·AI 95
Category tags
legitimateredirect95% AI confidence
Technical red flags (1)
Visual clone of facebook.com
View density

Analysis Summary

Threat Intelligence
0/93
All engines report clean
Domain Age
29 years old
Registered Mar 29, 1997
AI Rating
Safe
Low likelihood · 95% confidence

AI Security Analysis

Advanced threat intelligence
AI Security Analyst
Low scam likelihoodengineMT · Guardiantrust95/100
AI AgentLive web researchVisual inspection
0%
Confidence
This domain belongs to Facebook and serves as their official link redirection service. The technical scan returned zero malicious detections across our antivirus network and blocklist feeds. The domain is over 29 years old, matching Facebook's own registration history, with a clean hosting IP and valid SSL certificate. Our research confirms it has been used since 2008 to strip referrer data and shield users from potentially harmful external links. No scam reports or complaints appear in any sources, and the visual analysis shows standard Facebook branding without suspicious elements.
Full dossier
Analysis complete

Page Content

The page functions as a transparent redirect shim rather than a destination site. It displays standard Facebook styling during the brief forwarding process.

Infrastructure

Hosted on Facebook's own IP range with a clean abuse score and valid DigiCert SSL certificate. Three cross-domain hops are normal for this service.

Domain History

Registered 10640 days ago under RegistrarSafe, LLC with no privacy protection, consistent with Meta's long-standing infrastructure.

Web Reputation

Zero scam mentions or complaints found. Multiple sources confirm its role as Facebook's official privacy-preserving redirector.

Positive Signals
4
  • Zero detections from our antivirus network and blocklist feeds
  • Domain age exceeds 29 years and aligns with Facebook's registration
  • Clean hosting IP with zero abuse reports
  • Confirmed as official Facebook link redirection service in our research
AI Recommendation
This is a legitimate Facebook service. You can safely proceed with the link.
Next-gen fraud intelligence
Evidence-backedCross-checked

Website Preview

Screenshot of l.facebook.com
LIVE RENDER
l.facebook.com
1Visually clones facebook.com

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site. See full visual analysis →

Visual Screenshot Analysis

We capture a fresh screenshot of the live page and ask a vision model to look for scam visual patterns — fake trust badges, countdown timers, overlay pop-ups, and visual clones of legitimate brands.

0
/ 100
Critical visual riskVisual clone

The page visually mimics facebook.com

Screenshot shows a clean, fully-rendered Facebook login page with standard professional design, no scam indicators, urgency tactics, or suspicious elements visible.

Visual risk0/100

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for l.facebook.com, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age
29 yrs
Registered Mar 1997
Business registration
No public record found
Could not match the site to a registered company — common for small sites.
Clone check
Not a clone
No well-known site's layout or branding detected here.
Typosquat check
No look-alike match
The domain doesn't resemble any well-known brand's spelling.
Web mentions
5 positive
Key findings
6 headline facts from open-web research
  • l.facebook.com is Facebook's official link shim domain for redirecting clicks on external links shared in posts
  • Purpose: protects users from malicious URLs and strips personal referrer data for privacy (introduced 2008)
  • Appears in Google Analytics as referral traffic (l.facebook.com for desktop, lm.facebook.com for mobile)
  • Confirmed legitimate in multiple sources including Reddit threads and analytics blogs; no scam reports found for the domain itself
  • Domain age 10640 days aligns with facebook.com registration; all traffic is real Facebook-originated clicks
  • Scam mentions in results refer only to fake Facebook emails/messages, not to l.facebook.com
Research summary
Narrative write-up from our AI analyst, grounded on the facts above

Our research confirms l.facebook.com is Facebook's official link redirection domain introduced in 2008 to protect users from malicious URLs and preserve privacy. No scam reports or complaints were found for the domain itself. All references describe it as legitimate Meta infrastructure used for real Facebook-originated clicks.

Scam Network Intelligence

Cross-site correlation

This site shares signals with a broader cluster

Moderate correlation

Many scams don't operate alone. We correlate third-party scripts, hosting infrastructure, brand-impersonation signals, and the AI evidence package to detect when a site is part of a broader scam network.

Suspicion score
0/100
ClearLowModerateHighCritical
Evidence (1)
  • Screenshot analysis found visual cloning of facebook.com.
Linked signals (1)
Clone of facebook.com

Antivirus Engines

Clean pass · verified
Clean across 93 engines

We cross-check every URL against our antivirus network of 93 malware and blacklist engines. None of them flagged this URL in the last scan.

0Malicious0Suspicious60Harmless93Engines
Clean
Kaspersky
Clean
Bitdefender
Clean
Microsoft
Not in pass
ESET-NOD32
Not in pass
Avira
Not in pass
Sophos
Clean
Fortinet
Clean
Google Safebrowsing
Clean
Emsisoft
Clean

No engine detections. The URL passed every antivirus and blacklist engine we queried in this scan. Stay vigilant — AV coverage is only one signal among many.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Domain & Encryption

Domain History
Age29 years old
RegistrarRegistrarSafe, LLC
RegisteredMar 29, 1997
ExpiresMar 30, 2034
Owner privacyVisible
Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerDigiCert Inc · DigiCert Global G2 TLS RSA SHA256 2020 CA1
ExpiresMay 23, 2026 (7d)
Self-signedNo
Hosting & Technology
HostingMeta Platforms Ireland Limited
Server locationUS

Redirect Chain

Hops
3
Cross-domain
Yes
Lookalike
No
Punycode
No
  • 1302https://l.facebook.com/l.php?u=https%3A%2F%2Ft.co%2Fj2QN3xXkE1%3Ffbclid%3DIwZXh0bgNhZW0CMTAAYnJpZBExenExQzVBYnh2d0o3c1lkT3NydGMGYXBwX2lkEDIyMjAzOTE3ODgyMDA4OTIAAR5xsVH2TrwrkeLLws0AZBzXnBH2vPVfcnK_R3j0nIc2NNOINIgv4OPQm6TRqQ_aem_woJJSrD6ZSnCzu4MKYznkQ&h=AUAm_Nsa6sGANudNgPyIQIUXLeptN8fIiiIkGgnpQ_AaorjtnKFW5c86peAhmsv0n_Y9Il_iaHNucDjudkO9NRyE67ZQR7gdy2sj1ctwJmWFGHxEQfcp0pbIqwD1M096g1DdwWIlb2O7u1UHWQ&__tn__=KF&c%5B0%5D=AUCQW_-F8s2y3_J4sS4YYw_b45WLS2ZQPYyr6acRRsyHlscbH26Er77sGufcUuUgl9uV88mox7t-E9IbXE44qv9FfMnTa1bXbEIR4GH6jB2Fxt0Hj8Skq19Daq-dpeWxc_IlkG1Q3_nJ1ARQTc0ep30CNVrQshF58tR1aGBFeA4cQ5It3nVLVPVSb0ujxAS3GKzWybG0LHO-TBxx9H6fAoq14eqzn9WN8fC2Pk65XG8
  • 2302https://l.facebook.com/l.php?u=https%3A%2F%2Ft.co%2Fj2QN3xXkE1%3Ffbclid%3DIwZXh0bgNhZW0CMTAAYnJpZBExenExQzVBYnh2d0o3c1lkT3NydGMGYXBwX2lkEDIyMjAzOTE3ODgyMDA4OTIAAR5xsVH2TrwrkeLLws0AZBzXnBH2vPVfcnK_R3j0nIc2NNOINIgv4OPQm6TRqQ_aem_woJJSrD6ZSnCzu4MKYznkQ&h=AUAgtQbum5NR6Qid1Z3bcklJeSZyyO3tPSNx9avq24cR6yPRKoQnP0zAkzqYR1ttAlJgsDf14FSRb9Chyu_jguUNz3MO1rTFGNiGnO_E_-zRUzZy92wt4enyGqnQEb-9_6o05U4I3wqk4yMqc5d22JRWcX4wScJ9YS2bSDOxvxeurVTogewofihNgL70t1KO_a02JkahWXFDGJads1hQoavT7y4p4Ip4c3zbm9l3jMIy8YbTCJl9x6J8sl0oDQqZT88GOpWbva8KvdmTVX8pz-mU2W4Eld8-lk6L3KHydeR82CshTCWuADWv2i1oKe_akacBDg
  • 3302https://www.facebook.com/flx/warn/?u=https%3A%2F%2Ft.co%2Fj2QN3xXkE1%3Ffbclid%3DIwZXh0bgNhZW0CMTAAYnJpZBExenExQzVBYnh2d0o3c1lkT3NydGMGYXBwX2lkEDIyMjAzOTE3ODgyMDA4OTIAAR5xsVH2TrwrkeLLws0AZBzXnBH2vPVfcnK_R3j0nIc2NNOINIgv4OPQm6TRqQ_aem_woJJSrD6ZSnCzu4MKYznkQ&h=AUDxyQniwD7Mpt6SmK-XAYdp5ZeZ3EmlqujF1m-kMcxgQPji7qOGSVAi_HaLJ_s5UiP0B6b18iBLkLdskJRVNB4fSI2K1C8Xx7lqkjgrsiVawZUCueI4wLLIiYimkhT3xee7guCf19bjdlUYU8WUJ4E5J7YhSwo5EnKUE7Ykdr-eNutf6sOb-1kqCM_SN7WzH11mlsLgUcDHPw7m-dIWax5qirIBiPedmthJxXHKePOixP6GHabj7ADRonCL_4F39QQW9g_qKEgTx8BSJxc7Q84cBndypauc-ikot2U5TFkbuZJ6v6maFlf6F3BGB3r82Xbg4Qcross-domain
  • 4200https://www.facebook.com/login/?next=https%3A%2F%2Fwww.facebook.com%2Fflx%2Fwarn%2F%3Fu%3Dhttps%253A%252F%252Ft.co%252Fj2QN3xXkE1%253Ffbclid%253DIwZXh0bgNhZW0CMTAAYnJpZBExenExQzVBYnh2d0o3c1lkT3NydGMGYXBwX2lkEDIyMjAzOTE3ODgyMDA4OTIAAR5xsVH2TrwrkeLLws0AZBzXnBH2vPVfcnK_R3j0nIc2NNOINIgv4OPQm6TRqQ_aem_woJJSrD6ZSnCzu4MKYznkQ%26h%3DAUDxyQniwD7Mpt6SmK-XAYdp5ZeZ3EmlqujF1m-kMcxgQPji7qOGSVAi_HaLJ_s5UiP0B6b18iBLkLdskJRVNB4fSI2K1C8Xx7lqkjgrsiVawZUCueI4wLLIiYimkhT3xee7guCf19bjdlUYU8WUJ4E5J7YhSwo5EnKUE7Ykdr-eNutf6sOb-1kqCM_SN7WzH11mlsLgUcDHPw7m-dIWax5qirIBiPedmthJxXHKePOixP6GHabj7ADRonCL_4F39QQW9g_qKEgTx8BSJxc7Q84cBndypauc-ikot2U5TFkbuZJ6v6maFlf6F3BGB3r82Xbg4Qcross-domain

Server Reputation

Abuse Intelligence
Confidence score0%
Reports on file0
ISPMeta Platforms Ireland Limited
Usage typeCommercial

Scam-Type Likelihood

1 scam-type patterns detected
Scam-Type Likelihood

0 of 13 categories showed signals

We check every URL against 13 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.

Top match: Brand Impersonation
Brand Impersonation
Moderate likelihood
0/100
  • Visual clone of facebook.com detected in the screenshot.
  • Clustered with known brand-impersonation infrastructure.

Still, stay alert

No major threat indicators — but a clean scan does not guarantee every page is safe, and phishing emails routinely spoof real domains.

  • Double-check the exact URL in your address bar

    Confirm you are actually on l.facebook.com and not a lookalike like l-.facebook.com.com or an IDN homoglyph.

  • Use a password manager

    Password managers only auto-fill on the exact domain they were saved for — they refuse to fill lookalike domains, which is the single best phishing defence.

  • Discuss this site on the forum

    If you have first-hand experience with this site — good or bad — share it with the MalwareTips community.

    Open

Trust History

Trust score over time
Last 3 public scans of l.facebook.com
78/100
-20 vs Apr 29
Apr 29May 16

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
Not listedCheck ↗
AbuseIPDB
Not listedCheck ↗
Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Safety FAQ

Common questions about this site, answered from the scan data on this page. These are auto-generated — not hand-written — so they always match the underlying report.

  • Our automated security review found no threat indicators on l.facebook.com. The site appears legitimate based on the signals we checked, but always stay alert for phishing emails that spoof real domains.

Final Verdict

0
Trust / 100
Final Verdict·l.facebook.com
SAFE

l.facebook.com is Facebook's official link redirection service. Our scan shows clean reputation, valid SSL, and an old domain with no scam reports. It is safe to use.

This is a legitimate Facebook service. You can safely proceed with the link.

AV engines
93
AI passes
2
Net signals
1
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Safe reports

Browse all reports
Safetrust83
web-check.xyz
15m ago
Read the review
Safetrust71
samsbeautywarehouse.com
17m ago
Read the review
Safetrust86
vox.com
17m ago
Read the review
Safetrust81
mobiledokan.com
19m ago
Read the review
Safetrust88
google.com.au
19m ago
Read the review
Safetrust86
limo.media
21m ago
Read the review
Safetrust87
shalltry.com
1h ago
Read the review
Safetrust83
constantcontact.com
1h ago
Read the review
Safetrust86
proofpoint.com
1h ago
Read the review
Safetrust90
kemkes.go.id
1h ago
Read the review
Safetrust95
acesso.gov.pt
1h ago
Read the review
Safetrust95
bing.net
1h ago
Read the review
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.