This domain is being used to host fraudulent payment pages designed to steal credit card information by impersonating legitimate services like OpenAI's ChatGPT.
- Specialization
- Phishing and Fraud
- Registered
- Dec 5, 2017
nxcli.io
Analyzed 2 months ago
Potentially Malicious High Traffic
0 /100
ScoreDomain Age
8 Years
Tranco Rank
#30,965
Hosting Provider
LIQUIDWEB - Liquid…
Threat History
Issues Found
Community Votes
Rate this domain:
AI Analyst Classification
Security Considerations
While nxcli.io is an established platform, the following functional capabilities require extra vigilance.
Security Note: Even established platforms can be abused by malicious actors.
Technical Analysis
Recent Threat Analysis
URLert analyzed recent scan activity for nxcli.io and found 1 result.
| Status | Target URL | Type | Time |
|---|---|---|---|
| Dangerous | https://66d977a8d8.nxcli.io/wp-admin/vip/kol/der/web/pay.php | 2mo ago |
Hosting & Network
Historical and current IP address mappings for this domain.
| IP Address / Hosting | Status | Subdomains | Last Seen |
|---|---|---|---|
Hosted by: LIQUIDWEB - Liquid Web, L.L.C (AS32244) | Historical | 66d977a8d8.nxcli.io | 1 day ago |
LIQUIDWEB - Liquid Web, L.L.C (AS32244)
Legacy
66d977a8d8.nxcli.io
Seen 1 day ago
Community Intelligence
Discussion Threads
Share Insight
0/20+
Investigate a Link
Received a suspicious link? Paste the full link to investigate.
Frequently Asked Questions About nxcli.io
nxcli.io has been classified by URLert as potentially malicious. This domain is not associated with a known legitimate service.
No. nxcli.io has been classified as potentially malicious by URLert. This domain is not associated with a known legitimate service. Risk factors on this domain: custom subdomains. 1 of 1 recent URLs scanned from this domain were flagged for suspicious or malicious activity.
Something wrong?
Developer API
Integrate Domain Intelligence
Access this classification data programmatically via our API.
GET /api/v1/classify?domain=nxcli.io
{
"domain": "nxcli.io",
"confidence": "high",
"category": {
"purpose": "potentially_malicious",
"specialization": "Phishing and Fraud"
},
"identity": {
"headline": "Malicious site impersonating OpenAI payment services",
"summary": "This domain is being used to host fraudulent payment pages designed to steal credit card information by impersonating legitimate services like OpenAI's ChatGPT.",
"operator": null,
"parent_entity": null,
"topics": [
"phishing",
"fraud",
"credential harvesting",
"malicious"
]
},
"functions": {
"is_ugc_platform": false,
"is_file_host": false,
"is_url_shortener": false,
"is_public_idp": false,
"is_crypto_platform": false,
"allows_user_subdomains": true,
"is_form_builder": false,
"is_document_host": false
},
"facts": {
"registered_date": "2017-12-05T19:38:55Z",
"rank": 30965,
"hosting_provider": "LIQUIDWEB - Liquid Web, L.L.C"
}
}