MalwareTips
Security Review

Is 99nightintheforestx7.netlify.app legit or a scam?

Our verdict:Dangerous· 1/100

Brand-new phishing page hosted on Netlify, flagged by six antivirus engines including BitDefender and ESET.

Top reasons
Six major antivirus engines (BitDefender, ESET, CyRadar, Criminal IP, alphaMountain.ai, Forcepoint ThreatSeeker) classify this page as phishing.Domain registered 0 days ago — created today, a hallmark of active phishing campaigns.Hosted on a free Netlify subdomain, a common phishing tactic to exploit free SSL and evade domain-level reputation systems.
99nightintheforestx7.netlify.appScanned 4h ago
Post Facebook
0
Trust score
DANGEROUS
Heuristics 0·MT 18
Category tags
phishing#Phishing#Data Harvester92% MT confidence

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence
15/92
Engines flagged this URL
Domain Age
0 days old
Registration date unknown
MT Intelligence
Dangerous
Critical likelihood · 92% confidence
DANGEROUS

Critical risk detected

15 of 92 antivirus engines flag this page as malicious. Multiple independent checks — antivirus engines, browser safety blocklists, and threat databases — flagged this site. Don't enter personal information, deposit money, or download files.

Website Preview

Screenshot of 99nightintheforestx7.netlify.app
LIVE RENDER
99nightintheforestx7.netlify.app

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

MT Intelligence

Advanced threat intelligence
MT Security Analyst
Critical scam likelihoodengineMT · Guardiantrust18/100
MT AgentLive web researchVisual inspection
0%
Confidence
This domain was registered today and is already flagged as phishing by six independent antivirus engines: alphaMountain.ai, BitDefender, Criminal IP, CyRadar, ESET, and Forcepoint ThreatSeeker. The zero-day age combined with a phishing classification from multiple tier-1 detectors is a strong indicator of active malicious intent. The site uses a Netlify subdomain, a common tactic for attackers to exploit free hosting with built-in SSL to appear legitimate while evading domain-level reputation systems. The hosting IP has received three abuse reports and carries a moderate abuse score. No legitimate business registration, no traffic ranking, and no positive trust signals exist to counter the antivirus consensus.
Full dossier
Analysis complete

Page Content

No content analysis available from our sandbox. The page is hosted on a free Netlify subdomain, which is commonly exploited by phishing operators to bypass domain reputation checks.

Infrastructure

Hosted on IP 18.208.88.157 (AWS), which has received 3 abuse reports and carries an abuse score of 12/100. SSL certificate is valid and issued by DigiCert, expiring in 283 days — attackers routinely obtain valid certificates to appear legitimate. The Netlify subdomain structure masks the true operator identity.

Domain History

Domain age is 0 days — registered today. This is a critical red flag for phishing and fraud. Legitimate businesses do not appear instantly with phishing signatures.

Web Reputation

Six antivirus engines flag this page as phishing. Browser blocklists are currently clean, likely because the domain is too new to have been indexed. No traffic ranking. One independent trust aggregator assigned a high score (99/100), which is inconsistent with the antivirus consensus and may reflect a data-collection lag or aggregator error.

Risk Factors
7
  • Six major antivirus engines (BitDefender, ESET, CyRadar, Criminal IP, alphaMountain.ai, Forcepoint ThreatSeeker) classify this page as phishing.
  • Domain registered 0 days ago — created today, a hallmark of active phishing campaigns.
  • Hosted on a free Netlify subdomain, a common phishing tactic to exploit free SSL and evade domain-level reputation systems.
  • Hosting IP 18.208.88.157 has received 3 abuse reports and carries a moderate abuse score.
  • No legitimate business registration, no traffic ranking, and no operational history.
  • Valid SSL certificate from DigiCert may create false legitimacy for non-technical users.
  • Inconsistent trust-aggregator score (99/100) contradicts antivirus consensus, suggesting data lag or collection error.
Positive Signals
1
  • SSL certificate is valid and not expired, issued by a recognized certificate authority.
AI Recommendation
Do not visit this page. Do not enter credentials, payment information, or personal data. If you received a link to this site in an email or message, report it as phishing to the sender's organization and your email provider.
Next-gen fraud intelligence
Evidence-backedCross-checked

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for 99nightintheforestx7.netlify.app, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age
0 days
Brand-new domains are higher-risk by default.
Independent review aggregators
99/100 · high trust
Average across 1 independent review aggregator.
Web mentions
No scam reports found
No complaints, no negative coverage turned up in our sweep.
Web ratings
Scores pulled directly from third-party trust & review sites
ScamAdviser
99/100
High trustopen

Antivirus Engines

Detection matrix · live
15 engines flagged this URL

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. Each detection is listed below by engine name — even a single hit is a meaningful signal.

15Malicious0Suspicious49Harmless92Engines
0
of 92
alphaMountain.ai
Malicious· phishing
BitDefender
Malicious· phishing
Criminal IP
Malicious· phishing
CyRadar
Malicious· phishing
ESET
Malicious· phishing
Forcepoint ThreatSeeker
Malicious· phishing
Fortinet
Malicious· phishing
G-Data
Malicious· phishing
Gridinsoft
Malicious· phishing
LevelBlue
Malicious· phishing
Lionic
Malicious· phishing
Phishtank
Malicious· phishing
Rising
Malicious· phishing
Sophos
Malicious· phishing
VIPRE
Malicious· phishing

15 antivirus engines flagged this URL. Even a single detection is a meaningful signal — treat this site with extra caution and avoid entering credentials, payment info, or downloading any files.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Domain & Encryption

Domain History
Age0 days old
RegistrarHidden
RegisteredUnknown
ExpiresUnknown
Owner privacyVisible
Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerDigiCert Inc · DigiCert Global G2 TLS RSA SHA256 2020 CA1
ExpiresMar 19, 2027 (283d)
Self-signedNo
Hosting & Technology
HostingAmazon Technologies Inc.
Server locationUS

Server Reputation

Abuse Intelligence
Confidence score12%
Reports on file3
ISPAmazon Technologies Inc.
Usage typeContent Delivery Network

Avoid this site

Our automated review flagged enough risk that you should treat this site as unverified.

  • Do not interact with 99nightintheforestx7.netlify.app

    Do not enter credentials, deposit money, download files, or install browser extensions from this site.

  • Verify the business through independent channels

    Check the company's social profiles, registry records, and search for recent news or reviews that are not hosted on the site itself.

  • Never use irreversible payment methods

    Crypto, gift cards, wire transfers, and cash apps offer zero buyer protection. Use a credit card or PayPal if you must pay.

  • Share your experience

    If you have additional context, drop a comment below or post on the MalwareTips forum.

    Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
ListedCheck ↗
AbuseIPDB
Not listedCheck ↗
Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Safety FAQ

Common questions about this site, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

  • Our automated security review flags 99nightintheforestx7.netlify.app as dangerous. Multiple threat indicators were detected — treat the site as a scam until proven otherwise.
  • No — 99nightintheforestx7.netlify.app scored 1/100 on our trust scale. We detected active threat indicators, so we recommend avoiding the site entirely.
  • Yes. 99nightintheforestx7.netlify.app presents a valid TLSv1.3 certificate issued by DigiCert Inc · DigiCert Global G2 TLS RSA SHA256 2020 CA1, expiring in 283 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.
  • 99nightintheforestx7.netlify.app is 0 days old. Scam domains are often freshly registered — a site under 6 months old warrants extra caution.
  • 15 out of 92 antivirus engines in our malware network flagged 99nightintheforestx7.netlify.app as malicious or suspicious (15 outright malicious). Even one detection is a meaningful signal.
  • No. 99nightintheforestx7.netlify.app is not currently listed on the major browser blocklist feeds that modern browsers use.
  • 99nightintheforestx7.netlify.app resolves to an IP operated by Amazon Technologies Inc. in US (usage type: Content Delivery Network). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.
  • Independent trust-rating sites currently show the following for 99nightintheforestx7.netlify.app: ScamAdviser: 99/100. Those scores come from user reviews and their own heuristics, so they are worth comparing against our verdict.

Final Verdict

0
Trust / 100
Final Verdict·99nightintheforestx7.netlify.app
DANGEROUS

A phishing page created today on a Netlify subdomain. Six major antivirus engines flag it as phishing, the domain has zero age, and it shows no legitimate business presence. Do not enter any credentials or personal information.

Do not visit this page. Do not enter credentials, payment information, or personal data. If you received a link to this site in an email or message, report it as phishing to the sender's organization and your email provider.

AV engines
92
MT passes
2
Net signals
0
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Dangerous reports

Browse all reports
Dangeroustrust27
maarket.io
17m ago
Read the review
Dangeroustrust31
new1.hdhub4u.cl
19m ago
Read the review
Dangeroustrust33
installgames.net
21m ago
Read the review
Dangeroustrust22
olymptrade-lid.id
1h ago
Read the review
Dangeroustrust32
porn-xp.eu
1h ago
Read the review
Dangeroustrust1
ty691.com
1h ago
Read the review
Dangeroustrust1
lifeandhope.ec
1h ago
Read the review
Dangeroustrust1
confirmtx.net
1h ago
Read the review
Dangeroustrust1
owa.donationsnonprofit.com
1h ago
Read the review
Dangeroustrust1
docusign-secure-login.com
1h ago
Read the review
Dangeroustrust1
webmail.sendpicz.com
1h ago
Read the review
Dangeroustrust29
futbol-libres.su
1h ago
Read the review
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.