bafybeieioorq2gemlvbkffwwttxkijnn7lb3kjh4rbvh223jb5qrzesgqa[.]ipfs[.]dweb[.]link
Domain Security & Threat Intelligence Report
16/95 VT
Taken Down
Dec 21, 2025
1 Blocklist
84
Threat
PhishDestroy AI
HIGH
The domain bafybeieioorq2gemlvbkffwwttxkijnn7lb3kjh4rbvh223jb5qrzesgqa.ipfs.dweb.link is flagged as a phishing site, with a VirusTotal score of 16/95. This domain appears to be utilizing IPFS technology, making it harder to trace and take down. The risks associated with this domain stem from its potential to impersonate trusted IPFS services, putting users' sensitive information at risk.
Registered with CSC Corporate Domains, Inc. for 1548 days, this domain is currently alive and has an IP address of 209.94.90.2. It has been blocklisted on two occasions, indicating prior recognition of its malicious activity. The relatively aged domain combined with its usage of decentralized hosting can complicate mitigation efforts, as it is less susceptible to traditional takedown processes.
Currently active, PhishDestroy is monitoring this domain closely and has reported it for its phishing activities. Continuous vigilance is necessary to prevent further exploitation of this site, as it poses ongoing risks to users engaging with IPFS services.
Registered with CSC Corporate Domains, Inc. for 1548 days, this domain is currently alive and has an IP address of 209.94.90.2. It has been blocklisted on two occasions, indicating prior recognition of its malicious activity. The relatively aged domain combined with its usage of decentralized hosting can complicate mitigation efforts, as it is less susceptible to traditional takedown processes.
Currently active, PhishDestroy is monitoring this domain closely and has reported it for its phishing activities. Continuous vigilance is necessary to prevent further exploitation of this site, as it poses ongoing risks to users engaging with IPFS services.
VirusTotal
16 Detections
URLScan.io
Domain Age
1,550 days
Site Status
Taken Down HTTP 403
DestroyList
Listed
User Reports
1 report
Threat Response Pipeline
Discovery
Submission
Legal
Takedown
14/15
Pre-emptive Discovery & Ingestion
Global Ecosystem Submission
Legal Notifications & Reporting
Public Transparency & Takedown
Public Blocklist Status
Evidence Capture
Domain Intelligence
Domainbafybeieioorq2gemlvbkffwwttxkijnn7lb3kjh4rbvh223jb5qrzesgqa.ipfs.dweb.link
RegistrarCSC Corporate Domains, Inc. (USA)
IP Address209.94.90.2
CreatedNov 29, 2021
ExpiresFeb 24, 2026
Nameserversclarissa.ns.cloudflare.com
tate.ns.cloudflare.com
tate.ns.cloudflare.com
Page Title/ipfs/bafybeieioorq2gemlvbkffwwttxkijnn7lb3kjh4rbvh223jb5qrzesgqa/
Abuse Contactstldsupport@cscinfo.com
abuse@ipfs.io
abuse@ipfs.io
First DetectedDec 21, 2025
Registrar Response0h
HTTP Status403
Report This Domain
Submit evidence & help protect others
VirusTotal Analysis
16 / 95 security vendors flagged this domain
View on VT
alphaMountain.ai
BitDefender
CRDF
CyRadar
ESET
Forcepoint ThreatSeeker
Fortinet
G-Data
Gridinsoft
Lionic
MalwareURL
Phishing Database
Sophos
Trustwave
VIPRE
Webroot
Evidence & External Reports
URLScan Report
VirusTotal
URLQuery
Wayback Machine
WHOIS Lookup
Cloudflare Radar 
Shodan
ScamAdviser
ChainAbuse
Were You Affected by This Site?
You are not alone and there is nothing to be ashamed of. Scammers are sophisticated criminals who exploit trust. Reporting your experience is the most powerful weapon against fraud — your report can prevent others from becoming victims and help law enforcement take action. Silence is the scammer's greatest advantage. Break it.
If you have interacted with this domain, entered personal information, or connected a cryptocurrency wallet — take immediate action. Below are resources to help you report the incident and protect yourself.
Chainabuse
Report crypto wallet address, transaction, or phishing URL
FBI IC3
Report internet crime (US)
Europol
Report cybercrime (EU)
Action Fraud
Report fraud & cyber crime (UK)
SEAL-ISAC
Security Alliance — crypto threat intelligence
Domain Appeal
Contest this listing if false positive
Beware of recovery scammers! After being scammed, criminals may contact you again pretending to be "recovery agents," lawyers, or investigators who claim they can retrieve your lost funds — for a fee. This is a second scam. No legitimate service will ask for upfront payment to recover stolen crypto. Learn more about recovery fraud →
Report to Your Local Authorities
Select your country to see local cybercrime reporting contacts and complaint templates.
Select your country...
Related Domain Reports
Other Domains on 209.94.90.2
bafkreie45gvjpqk3q3qfguediyj6tvyz2azroerva3hzsohajh47zn4jkm.ipfs.dweb.link 22
bafkreih64laewalbroop3732ynvah5s4yrgp457gezwlsqbemzricttuky.ipfs.dweb.link 21
bafkreiehjatmkhv5y2zkeaj2idmdb5w5mhl6mljeo34tmuhgam2vjzh6ya.ipfs.dweb.link 21
bafkreif5sojs2sp3b7rccp4yoy4kf6ubfix3v3nlxkv2nzxmrz35hpww4u.ipfs.dweb.link 21
bafkreibm6kp7ltcmpl3p2mdxx3wirdfwk2jyykygjzwp3hcjszl7z2fy3i.ipfs.dweb.link 21
bafkreihuwsmynlll4to4pzv7dq2ke76huvkbcni7eh4khw5ids3wt4x5su.ipfs.dweb.link 20
More Domains at CSC Corporate Domains, Inc.
purple-lifecycle-583172.framer.app 14
bafkreihutfgjtpky7yd2pvyguyuau4wck2h4ilz4myanzwjetcdko4jrtm.ipfs.dweb.link 10
bafkreihxkhc3zqivf7yc4ii5no5a7wuzk7j3rqg25dvwt4w6k3gd7tgmyi.ipfs.dweb.link 20
regular-patterns-355532.framer.app 19
bafkreidyo526kmmllfzfuubwhk6r4gzcllp6a7qybqzkdwpzm4gf6x2iwy.ipfs.dweb.link 15
bafybeigskpiydswbmhso7ab47cpnnee7rlc4q7a2ykpoxz4fo3ducinra4.ipfs.dweb.link 23
Stay Informed, Stay Safe
Monitor live threats or contest this listing if you believe it's a false positive