SUSPICIOUS

Warning signs detected

2 of 92 antivirus engines flag this page. Several risk indicators suggest caution. This site might be legitimate — but treat it as unverified until you can independently confirm.

Security Review

Is highmarket.my legit or a scam?

Our verdict:Suspicious· 30/100

A non-functional Malaysian domain flagged for phishing and linked to known threat intelligence databases.

highmarket.myScanned 1d ago
0
Trust score
SUSPICIOUS
Score breakdown
Heuristics 5·MT 40
Screenshot of highmarket.mySee the live page ↓
Category tags
phishing#phishing#parked domain85% MT confidence
Technical red flags (1)
2 of 92 engines flagged
Positive signals (3)
Not on major blacklistsEncrypted connectionClean server reputation

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence
2/92
Engines flagged this URL
Domain Age
Registration date unknown
Intelligence
Suspicious
High likelihood · 85% confidence

Website Preview

Screenshot of highmarket.my
LIVE RENDER
highmarket.my

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site. See full visual analysis →

Visual analysis

We capture a fresh screenshot of the live page and ask a vision model to look for scam visual patterns — fake trust badges, countdown timers, overlay pop-ups, and visual clones of legitimate brands.

40
/ 100
Moderate visual risk

Visual red flags detected in the screenshot

The page displays a standard Apache '403 Forbidden' error message, indicating it is currently non-functional or restricted.

Visual risk40/100

What our vision model saw

1 signal

Page appears parked or non-functional

Intelligence

Advanced threat intelligence
Analysis
High scam likelihoodengineMT · Guardiantrust40/100
MT AgentLive web researchVisual inspectionNetwork correlation
0%
Confidence
Our analysis identified this domain as a significant risk despite its current '403 Forbidden' status. Two security engines, alphaMountain.ai and Webroot, specifically flag the site for phishing and malicious activity. Furthermore, our research found the domain listed in threat intelligence databases alongside other confirmed fraudulent sites. The lack of any business registration or public ownership data is a common trait of temporary infrastructure used for cyberattacks. Because the site is currently restricted, it may be in a 'dormant' phase before launching a campaign.
Full dossier
Analysis complete

Page Content

The site currently returns a standard Apache 403 Forbidden error, meaning the server is active but public access to the content is restricted. This is often seen when attackers are setting up a page or have temporarily disabled it to avoid detection.

Infrastructure

The domain is hosted on an IP address with a clean reputation, but it uses a short-term SSL certificate from Let's Encrypt. It utilizes the .my country-code top-level domain for Malaysia, though no local business presence could be verified.

Domain History

Public records for this domain are largely unavailable, which is typical for domains used in short-lived phishing operations. The lack of a global traffic index suggests it has no legitimate user base or history of normal operation.

Web Reputation

The domain has been explicitly linked to phishing clusters in external threat intelligence feeds. It appears in lists alongside other malicious domains, indicating it is likely part of a wider network of fraudulent infrastructure.
Risk Factors
6
  • Flagged as phishing by alphaMountain.ai.
  • Flagged as malicious by Webroot.
  • Linked to known threat intelligence databases alongside other fraudulent domains.
  • No verifiable business registration or ownership records found.
  • Currently displaying a 403 Forbidden error, typical of dormant malicious sites.
  • Zero global traffic ranking or established web presence.
Positive Signals
2
  • The hosting IP address currently has no reported abuse history.
  • The SSL certificate is technically valid.
AI Recommendation
Avoid visiting this site or entering any information if it becomes functional. The existing security flags and links to threat databases suggest it is intended for malicious use.
Scam network detected
1 linked domain correlated

This domain has been identified in threat feeds alongside other suspicious URLs, suggesting it may be part of a coordinated phishing network.

bybitamlchecker.com
Next-gen fraud intelligence
Evidence-backedCross-checked

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for highmarket.my, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Business registration
No public record found
Could not match the site to a registered company — common for small sites.
Clone check
Not a clone
No well-known site's layout or branding detected here.
Typosquat check
No look-alike match
The domain doesn't resemble any well-known brand's spelling.
Web mentions
1 scam report
Key findings
7 headline facts from open-web research
  • Domain highmarket.my appears in PhishDestroy threat intelligence listing with 6 detections alongside other flagged domains like bybitamlchecker.com
  • No direct scam reports, reviews, complaints, or Reddit discussions referencing highmarket.my specifically
  • No WHOIS, domain age, registration date, or business registration details publicly available or indexed
  • .my is Malaysia's country-code top-level domain (ccTLD) managed by MYNIC
  • No positive reviews, Trustpilot, ScamAdviser, or other review platform mentions found
  • Unrelated legitimate businesses exist with similar names (e.g., Highmarket Inn & Sports in NY, High Market MTG card)
  • No evidence of brand impersonation, typosquatting, or clone activity
Scam reports (1)
Direct quotes from public scam databases, forums, and news.
  • PhishDestroyopen

    "highmarket.my . 6 detections"

Research summary
Narrative write-up from our AI analyst, grounded on the facts above
We searched scam-report databases, consumer-review sites, and general web sources for highmarket.my and found it listed in threat intelligence data with six detections. It appears in these lists alongside other flagged domains like bybitamlchecker.com. No positive reviews or business registration records were located, which is a significant red flag for a domain of this nature.

Threat Detection

Antivirus Engines

Detection matrix · live
2 engines flagged this URL

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. Each detection is listed below by engine name — even a single hit is a meaningful signal.

2Malicious0Suspicious55Harmless92Engines
0
of 92
alphaMountain.ai
Malicious· phishing
Webroot
Malicious· malicious

2 antivirus engines flagged this URL. Even a single detection is a meaningful signal — treat this site with extra caution and avoid entering credentials, payment info, or downloading any files.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
ListedCheck ↗
AbuseIPDB
Not listedCheck ↗

Technical Details

Domain & Encryption

Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerLet's Encrypt · YR2
ExpiresOct 1, 2026 (86d)
Self-signedNo
Hosting & Technology
HostingCGI GLOBAL LIMITED
Server locationUS

Server Reputation

Abuse Intelligence
Confidence score0%
Reports on file0
ISPCGI GLOBAL LIMITED
Usage typeData Center/Web Hosting/Transit

What to do

Proceed with caution

Our automated review flagged enough risk that you should treat this site as unverified.

  • Treat highmarket.my as unverified

    Do not enter credentials or send money until you have independently verified the business.

  • Verify the business through independent channels

    Check the company's social profiles, registry records, and search for recent news or reviews that are not hosted on the site itself.

  • Never use irreversible payment methods

    Crypto, gift cards, wire transfers, and cash apps offer zero buyer protection. Use a credit card or PayPal if you must pay.

  • Share your experience

    If you have additional context, drop a comment below or post on the MalwareTips forum.

    Open

Final Verdict

0
Trust / 100
Final Verdict·highmarket.my
SUSPICIOUS

This domain is currently non-functional but has been flagged by multiple security engines for phishing activity. It appears in threat intelligence databases alongside known fraudulent sites. Do not interact with this domain if it becomes active.

Avoid visiting this site or entering any information if it becomes functional. The existing security flags and links to threat databases suggest it is intended for malicious use.

AV engines
92
MT passes
2
Net signals
0
Scan another URL
Security review completemalwaretips.com/url-scan

Safety FAQ

Common questions about this site, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

  • Our automated security review marked highmarket.my as suspicious. Several warning signs were detected; it may still turn out legitimate, but you should verify it through independent channels before trusting it with money or credentials.
  • highmarket.my currently scores 30/100 on our trust scale. We found enough warning signals to recommend caution. Verify the site through independent channels before entering credentials or money.
  • Yes. highmarket.my presents a valid TLSv1.3 certificate issued by Let's Encrypt · YR2, expiring in 86 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.
  • 2 out of 92 antivirus engines in our malware network flagged highmarket.my as malicious or suspicious (2 outright malicious). Even one detection is a meaningful signal.
  • No. highmarket.my is not currently listed on the major browser blocklist feeds that modern browsers use.
  • highmarket.my resolves to an IP operated by CGI GLOBAL LIMITED in US (usage type: Data Center/Web Hosting/Transit). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.
  • This is a permanent record of the scan run on July 6, 2026. The verdict and evidence above reflect that scan and do not change on their own. If circumstances around highmarket.my have changed, MalwareTips staff can run a fresh scan, which re-runs every check from scratch and publishes an updated report.
Recently scanned

Other Suspicious reports

Browse all reports
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.