MalwareTips
Security Review

Is checkvibe.dev legit or a scam?

Our verdict:Dangerous· 25/100

CheckVibe is a legitimate security and SEO scanner for AI-generated apps with positive developer feedback and a clean reputation.

Top reasons
The domain is relatively young at 130 days old.Automated systems detected a potential cryptocurrency-only checkout pattern.The hosting IP address has a history of abuse reports from unrelated services.
checkvibe.devScanned 20h ago
Post Facebook
0
Trust score
DANGEROUS
Heuristics 33·MT 82
Category tags
software as a service (saas)security tools85% MT confidence

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence
0/92
All engines report clean
Domain Age
4 months old
Registered Feb 16, 2026
MT Intelligence
Suspicious
Low likelihood · 85% confidence
DANGEROUS

Fake shop — do not order

CheckVibe is a legitimate security and SEO scanner for AI-generated apps with positive developer feedback and a clean reputation. The site shows patterns common to non-delivery scam shops. Don't submit payment details, and if you already paid by card or PayPal, start a chargeback today.

Website Preview

Screenshot of checkvibe.dev
LIVE RENDER
checkvibe.dev
1Impersonates OpenAI / ChatGPT

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site. See full visual analysis →

Visual Screenshot Analysis

We capture a fresh screenshot of the live page and ask a vision model to look for scam visual patterns — fake trust badges, countdown timers, overlay pop-ups, and visual clones of legitimate brands.

15
/ 100
Low visual risk

Visual red flags detected in the screenshot

The website appears to be a legitimate SaaS landing page for SEO and AI visibility services with professional design elements and standard UI components.

Visual risk15/100

What our vision model saw

6 signals

Professional design with consistent branding and high-quality graphics

Standard cookie consent modal present at bottom of page

Generic trust indicator 'Trusted by 4,000+ developers' with star ratings

Logos of well-known tech brands displayed in footer as social proof

Functional navigation menu with Product, Pricing, and Blog links

Clear call-to-action for a website scan service

Brand Impersonation

medium confidence

The page mentions or styles itself as OpenAI / ChatGPT, but is hosted on a domain that is not an official OpenAI / ChatGPT property.

MT Intelligence

Advanced threat intelligence
MT Security Analyst
Low scam likelihoodengineMT · Guardiantrust82/100
MT AgentLive web researchVisual inspection
0%
Confidence
The site operates as a specialized utility for the 'vibe coding' community, providing automated security audits and search engine optimization reports. Our research identified active discussions and positive revenue milestones shared by the developers on major tech communities like Reddit. The technical infrastructure is solid, featuring a valid SSL certificate and a domain that has been active for over four months. While our automated systems flagged a potential cryptocurrency checkout pattern, manual review confirms this is likely a false positive or a standard payment option for a global SaaS. The presence of comprehensive legal documentation, including a Swiss-based privacy policy and DPA, further supports its legitimacy.
Full dossier
Analysis complete

Page Content

The storefront presents a professional, high-quality landing page for a security and SEO scanner. It includes specific technical features such as API key detection, Supabase RLS checking, and 'AEO' (AI Engine Optimization) scores. The content is highly specific to modern web development stacks like Next.js and Cursor.

Infrastructure

The site is hosted on a stable IP address with a valid Let's Encrypt SSL certificate. While the hosting IP has some historical abuse reports, these appear unrelated to the current domain's operations. The page loads as a modern JavaScript application with functional navigation and clear calls to action.

Domain History

Registered 130 days ago through 1&1 Internet SE, the domain has moved past the initial 'high-risk' window for new sites. It has established a consistent footprint in the developer community during this time.

Web Reputation

Independent research shows the tool is actively used and discussed in developer forums. There are no records of phishing, malware distribution, or consumer complaints across major security databases or review aggregators.
Risk Factors
3
  • The domain is relatively young at 130 days old.
  • Automated systems detected a potential cryptocurrency-only checkout pattern.
  • The hosting IP address has a history of abuse reports from unrelated services.
Positive Signals
4
  • Zero detections across 92 antivirus engines in our network.
  • Positive community feedback and revenue transparency on developer forums.
  • Comprehensive legal pages including Terms, Privacy Policy, and DPA.
  • Professional design with specific, non-generic technical documentation.
AI Recommendation
This site is safe to use for its intended purpose as a website scanner. You can proceed with scanning your URLs or signing up for their security services.
Next-gen fraud intelligence
Evidence-backedCross-checked

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for checkvibe.dev, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age
4 months
Registered Feb 2026
Business registration
Active · Switzerland
Site traces back to an actively registered business.
Clone check
Not a clone
No well-known site's layout or branding detected here.
Typosquat check
No look-alike match
The domain doesn't resemble any well-known brand's spelling.
Web mentions
3 positive
Key findings
7 headline facts from open-web research
  • Domain launched approximately 130 days ago (around early 2026); self-reported as a new SaaS with revenue posts appearing shortly after launch.
  • Operates as a legitimate tool in the 'vibe coding' niche (AI-assisted app building with Cursor, Claude, etc.), offering URL-based security scans for exposed keys, misconfigurations, plus new SEO/AEO scoring for visibility in Google/ChatGPT/
  • Privacy policy explicitly states company is based in Switzerland; multiple legal pages (terms, cookies, DPA, subprocessors) present with support@checkvibe.dev contact.
  • Positive mentions and self-promotion in r/vibecoding and r/SaaS with claims of $1k–$5k revenue, 50+ paying customers in first months; no independent verification but consistent with indie SaaS launch.
  • Trustpilot page exists with 2 reviews and ~3.3–3.5 score (low volume, company has not solicited reviews); no ScamAdviser or ScamDoc listings found.
  • No scam reports, complaints, phishing indicators, or crypto checkout evidence located across web searches; competitors in vibe-coding security space (safevibe.codes, vibeappscanner.com) exist but no overlap with fraud claims.
  • Page title and description match a legitimate scanner product; 'Crypto-Only Checkout' detection may be a false positive or unrelated to observed payment flows (standard pricing page exists but details limited).
Positive reviews (3)
Quotes indicating the site is legitimate.
  • Reddit (r/vibecoding)open

    "We launched CheckVibe just over a month ago and crossed $1k in revenue with 50 paying customers and 2000 users"

  • Reddit (r/vibecoding)open

    "If you've vibe-coded a SaaS, checkvibe.dev runs in 30 seconds, no signup."

  • Reddit (r/SaaS)open

    "CheckVibe is a security scanner for vibecoded apps shipped fast with AI"

Business registration
Status: active · Switzerland

Privacy policy and terms state CheckVibe is based in Switzerland; contact support@checkvibe.dev. No specific company registry number found in public searches.

Research summary
Narrative write-up from our AI analyst, grounded on the facts above
We searched scam-report databases, consumer-review sites, and general web sources for checkvibe.dev and didn't find scam reports or complaints. The site has a positive reputation on Reddit (r/SaaS and r/vibecoding), where the developers are active and transparent about their launch. The business identifies as being based in Switzerland, and while no specific registration number was found, the presence of detailed legal and subprocessor documents is typical for a legitimate European SaaS.

Scam Network Intelligence

Cross-site correlation

This site shares signals with a broader cluster

Moderate correlation

Many scams don't operate alone. We correlate third-party scripts, hosting infrastructure, brand-impersonation signals, and the AI evidence package to detect when a site is part of a broader scam network.

Suspicion score
0/100
ClearLowModerateHighCritical
Evidence (2)
  • IP 216.198.79.1 has 60 abuse reports — likely part of a network.
  • Checkout only accepts cryptocurrency — no reversible payment option.
Linked signals (1)
Template · Crypto Only Checkout

Antivirus Engines

Clean pass · verified
Clean across 92 engines

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. None of them flagged this URL in the last scan.

0Malicious0Suspicious59Harmless92Engines
Clean
Kaspersky
Clean
Bitdefender
Clean
Microsoft
Not in pass
ESET-NOD32
Not in pass
Avira
Not in pass
Sophos
Clean
Fortinet
Clean
Google Safebrowsing
Clean
Emsisoft
Clean

No engine detections. The URL passed every antivirus and blacklist engine we queried in this scan. Stay vigilant — AV coverage is only one signal among many.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Contact Verification

We fetched the page and looked for real-world contact details. Legitimate businesses almost always publish an email on their own domain, a phone number, and a postal address. Scam shops usually don't.

What We Found
Has a contact email on its own domain
Emails on site's domainsupport@checkvibe.dev
Phone numbersNone
Postal addressPresent
Linked social profiles1
Signal Summary
Contact details look reasonable
  • No phone number listed on the page.
  • Page impersonates OpenAI / ChatGPT on a non-official domain.
  • Scam family match: Crypto-Only Checkout.
  • Contact email on the site's own domain (support@checkvibe.dev).
  • Postal address visible on the page.
  • Links to 4 social profiles.

Domain & Encryption

Domain History
Age4 months old
Registrar1&1 Internet SE
RegisteredFeb 16, 2026
ExpiresFeb 16, 2027
Owner privacyVisible
Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerLet's Encrypt · YR1
ExpiresSep 18, 2026 (83d)
Self-signedNo
Hosting & Technology
HostingVercel, Inc
Server locationUS
Web serverVercel

Redirect Chain

Hops
1
Cross-domain
No
Lookalike
No
Punycode
No
  • 1308http://checkvibe.dev/
  • 2200https://checkvibe.dev/

Server Reputation

Abuse Intelligence
Confidence score0%
Reports on file60
ISPVercel, Inc
Usage typeContent Delivery Network

Scam-Type Likelihood

1 scam-type patterns detected
Scam-Type Likelihood

1 of 13 categories showed signals

We check every URL against 13 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.

Top match: Fake Shop
Fake Shop
Moderate likelihood
41/100
  • Crypto-only checkout — no card / bank payment option.
  • Fake-urgency countdown / high-pressure copy.
  • Multiple contact / trust-signal red flags on the page.
  • Domain is 130 days old — very young for a shop.

Fake shop — do not order

Signals common to non-delivery scam shops were detected on this site.

  • Do not interact with checkvibe.dev

    Do not enter credentials, deposit money, download files, or install browser extensions from this site.

  • If you already paid by card or PayPal — start a chargeback

    Contact your bank or card issuer and dispute the charge as "goods not received" or "merchant fraud." PayPal users can open a case in the Resolution Centre. Act within 120 days for card chargebacks in most jurisdictions.

  • Save every piece of evidence

    Screenshots of the checkout, order confirmation emails, any chat transcripts, and the product listing page. Chargeback and fraud reports go faster when you have receipts.

  • Report the shop

    Report to the FTC (reportfraud.ftc.gov), Action Fraud UK, or your local consumer-protection body. Post the URL on the MalwareTips scam forum so other buyers can find it.

    Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
Not listedCheck ↗
AbuseIPDB
Not listedCheck ↗
Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Referenced Domains

Outbound domains this page links to or loads resources from. Each links to its own security scan.

x.com

Safety FAQ

Common questions about this site, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

  • Our automated security review flags checkvibe.dev as dangerous. Multiple threat indicators were detected — treat the site as a scam until proven otherwise.
  • No — checkvibe.dev scored 25/100 on our trust scale. We detected active threat indicators, so we recommend avoiding the site entirely.
  • Yes. checkvibe.dev presents a valid TLSv1.3 certificate issued by Let's Encrypt · YR1, expiring in 83 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.
  • checkvibe.dev is 4 months old, registered on 2/16/2026 through 1&1 Internet SE. Scam domains are often freshly registered — a site under 6 months old warrants extra caution.
  • No. All 92 antivirus engines in our malware network report checkvibe.dev as clean.
  • No. checkvibe.dev is not currently listed on the major browser blocklist feeds that modern browsers use.
  • checkvibe.dev resolves to an IP operated by Vercel, Inc in US (usage type: Content Delivery Network). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.
  • This is a permanent record of the scan run on June 26, 2026. The verdict and evidence above reflect that scan and do not change on their own. If circumstances around checkvibe.dev have changed, MalwareTips staff can run a fresh scan, which re-runs every check from scratch and publishes an updated report.

Final Verdict

0
Trust / 100
Final Verdict·checkvibe.dev
DANGEROUS

CheckVibe is a legitimate security and SEO scanning tool designed for AI-assisted web development. Our analysis confirms it is a functional SaaS product with positive community feedback and no history of fraudulent activity. You can safely use the site to scan your own URLs.

This site is safe to use for its intended purpose as a website scanner. You can proceed with scanning your URLs or signing up for their security services.

AV engines
92
MT passes
2
Net signals
1
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Dangerous reports

Browse all reports
Dangeroustrust1
houstonwheelrepair.org
2m ago
Read the review
Dangeroustrust1
lindalastattack.com
2m ago
Read the review
Dangeroustrust1
nelienaei-7837--lineasnejj2.replit.app
2m ago
Read the review
Dangeroustrust38
insanitomeium.com
52m ago
Read the review
Dangeroustrust1
ledgar-live.app
53m ago
Read the review
Dangeroustrust1
eliaruizwork.com
58m ago
Read the review
Dangeroustrust3
forge-eth.compiller.me
58m ago
Read the review
Dangeroustrust26
hdtoday.sc
58m ago
Read the review
Dangeroustrust11
ikkkkddd.com
2h ago
Read the review
Dangeroustrust1
huobcoinbt.net
2h ago
Read the review
Dangeroustrust1
govtop.one
2h ago
Read the review
Dangeroustrust1
luzewin.com
2h ago
Read the review
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.