MalwareTips
Security Review

Is mystrikingly.com legit or a scam?

Our verdict:Dangerous· 25/100

Official Strikingly subdomain host showing PayPal impersonation and credential-harvest patterns, but legitimate underlying business with 7-year history.

Top reasons
Login form combined with PayPal branding on root domain triggers credential-harvest detection pattern.One scam report on independent review sites alleging billing overcharges and customer service issues.No business contact email on the site's own domain; no phone number or postal address listed.
mystrikingly.comScanned 12h ago
Post Facebook
0
Trust score
DANGEROUS
Heuristics 36·MT 58
Category tags
website builderhosting platform72% MT confidence
Technical red flags (2)
Impersonates PayPalCredential-harvest pattern
Warning signals (1)
Redirects to another domain

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence
0/92
All engines report clean
Domain Age
8 years old
Registered Nov 28, 2018
MT Intelligence
Suspicious
Moderate likelihood · 72% confidence
DANGEROUS

Phishing site — do not log in

A PayPal login is shown on an unrelated domain — classic credential-harvest pattern. This page looks designed to steal credentials. Don't log in — and if you already did, change the password anywhere you reused it and turn on two-factor authentication.

Website Preview

Screenshot of mystrikingly.com
LIVE RENDER
mystrikingly.com
1Impersonates PayPal2Login form detected — credential-harvest pattern

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site. See full visual analysis →

MT Intelligence

Advanced threat intelligence
MT Security Analyst
Moderate scam likelihoodengineMT · Guardiantrust58/100
MT AgentLive web researchVisual inspection
0%
Confidence
mystrikingly.com is registered to Strikingly, a legitimate Y Combinator-backed website builder founded in 2018 and based in Sunnyvale, California. The domain is over 7 years old, hosted on Amazon infrastructure with valid SSL, and serves as the official free subdomain platform for user-created Strikingly sites. However, our page analysis detected a login form combined with PayPal branding on the root domain, which matches a credential-harvest pattern. The page title and meta description are identical to Strikingly's official marketing, and the external domains loaded are all legitimate Strikingly properties. One scam report exists on independent review sites citing billing overcharges, though this reflects user complaints about the service rather than the domain itself being fraudulent. The root domain is not on browser blocklists and has clean antivirus reputation.
Full dossier
Analysis complete

Page Content

The page displays Strikingly's official website-builder marketing copy, including testimonials from legitimate customers and feature descriptions. A login form is present with PayPal branding, which our analysis flagged as a credential-harvest pattern. The page title ('How To Make a Website – Free Website Builder | Strikingly') and meta description match Strikingly's official homepage exactly. No phone number, postal address, or business contact email on the site's own domain is visible.

Infrastructure

Domain registered 2018-11-28 (7+ years old) via NameCheap; hosted on Amazon IP 18.238.80.84 with zero abuse reports. SSL certificate valid (Amazon RSA 2048 M04, 97 days to expiry). All external domains loaded are legitimate Strikingly properties (strikingly.com, static-assets.strikinglycdn.com, and regional variants). No malware or phishing flags from our antivirus network (0/92 engines).

Domain History

mystrikingly.com is the official free subdomain host for Strikingly user sites, documented in Strikingly's support articles. Sites use the format [username].mystrikingly.com. The domain has been in continuous operation since 2018 and is not a clone or newly registered domain.

Web Reputation

One scam report found on independent review sites citing billing overcharges and customer service complaints. Strikingly maintains a phishing-reporting form and claims to remove reported malicious sites within 12 hours. The root domain is not on major browser blocklists. Some individual user-created subdomains have been flagged in spam or housing-scam contexts, but the root domain itself has no direct blocklist hits.

Risk Factors
5
  • Login form combined with PayPal branding on root domain triggers credential-harvest detection pattern.
  • One scam report on independent review sites alleging billing overcharges and customer service issues.
  • No business contact email on the site's own domain; no phone number or postal address listed.
  • Individual user-created subdomains (e.g., [name].mystrikingly.com) have been used in spam and housing scams, though the root domain itself is legitimate.
  • Brand impersonation (PayPal) detected with medium confidence on the login form.
Positive Signals
5
  • Domain registered 7+ years ago (2018-11-28) with continuous operation history.
  • Strikingly is a Y Combinator-backed company with legitimate business registration in China and United States.
  • Hosted on Amazon infrastructure with valid SSL certificate and zero IP abuse reports.
  • All external domains loaded are legitimate Strikingly properties; no malware or phishing flags from antivirus network.
  • Official free subdomain host for Strikingly user sites, documented in company support articles.
AI Recommendation
Do not enter payment or login credentials on this page if you are not an existing Strikingly user. If you are a Strikingly customer, use the official strikingly.com domain for account access. Be aware that individual user-created sites on mystrikingly.com subdomains may be fraudulent; verify the specific subdomain URL before entering any personal information.
Next-gen fraud intelligence
Evidence-backedCross-checked

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for mystrikingly.com, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age
7.6 yrs
Registered Nov 2018
Business registration
Active · China / United States
Site traces back to an actively registered business.
Clone check
Not a clone
No well-known site's layout or branding detected here.
Typosquat check
No look-alike match
The domain doesn't resemble any well-known brand's spelling.
Web mentions
1 scam report
Key findings
7 headline facts from open-web research
  • mystrikingly.com registered on 2018-11-28 (over 7 years old), expires 2029-11-28; hosted on Amazon; valid HTTPS.
  • Official free URL domain for Strikingly website builder: sites use format like [name].mystrikingly.com; documented in Strikingly support articles.
  • Strikingly is a legitimate YC-backed mobile-first website builder founded in China; main site strikingly.com; CEO David Haisha Chen.
  • Strikingly maintains a phishing reporting form and explicitly prohibits phishing/malicious use on its platform; takes down reported sites within 12 hours.
  • Scamvoid rates mystrikingly.com as "Potentially Safe"; not on blocklists; some individual subdomains have mixed Trustpilot/Scamadviser mentions but no direct hits on the root domain.
  • Page title and description are identical to Strikingly's official homepage; no evidence of PayPal cloning on the root domain itself.
  • Some user complaints exist about Strikingly billing practices on Trustpilot; Reddit threads question individual .mystrikingly.com subdomains used in spam/housing scams.
Scam reports (1)
Direct quotes from public scam databases, forums, and news.
  • Trustpilot (for strikingly.com)open

    "They continue to overcharge, prevent customer downgrades and essentially rip people off. Stay away, far way from this Company. Complete SCAM."

Business registration
Status: active · China / United States

Strikingly (operator of mystrikingly.com) is a Y Combinator-backed Chinese company founded by David Haisha Chen; first Chinese YC graduate; CEO based in Sunnyvale, CA; domain registered 2018-11-28

Research summary
Narrative write-up from our AI analyst, grounded on the facts above

Our research found that mystrikingly.com is the official free subdomain host for Strikingly, a legitimate Y Combinator-backed website builder founded in 2018 by David Haisha Chen. The domain has been registered since 2018-11-28 and is hosted on Amazon infrastructure. One scam report exists on independent review sites citing billing overcharges and customer service issues, though this reflects user complaints about the service rather than the domain being fraudulent. Strikingly maintains a phishing-reporting form and claims to remove reported malicious sites within 12 hours. Individual user-created subdomains have been flagged in spam and housing-scam contexts, but the root domain itself is not on browser blocklists and has clean antivirus reputation.

Antivirus Engines

Clean pass · verified
Clean across 92 engines

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. None of them flagged this URL in the last scan.

0Malicious0Suspicious61Harmless92Engines
Clean
Kaspersky
Clean
Bitdefender
Clean
Microsoft
Not in pass
ESET-NOD32
Not in pass
Avira
Not in pass
Sophos
Clean
Fortinet
Clean
Google Safebrowsing
Clean
Emsisoft
Clean

No engine detections. The URL passed every antivirus and blacklist engine we queried in this scan. Stay vigilant — AV coverage is only one signal among many.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Contact Verification

We fetched the page and looked for real-world contact details. Legitimate businesses almost always publish an email on their own domain, a phone number, and a postal address. Scam shops usually don't.

What We Found
Has contact info, but not on the site's domain
Emails on site's domainNone
Phone numbersNone
Postal addressNot listed
Linked social profiles6
Signal Summary
Several contact red flags
  • No email uses the site's own domain — legitimate shops usually do.
  • No phone number listed on the page.
  • No postal address visible on the page.
  • Page impersonates PayPal on a non-official domain.
  • Login form present on a page impersonating PayPal — credential-harvest pattern.
  • Links to 6 social profiles.

Domain & Encryption

Domain History
Age8 years old
RegistrarNameCheap, Inc.
RegisteredNov 28, 2018
ExpiresNov 28, 2029
Owner privacyVisible
Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerAmazon · Amazon RSA 2048 M04
ExpiresSep 23, 2026 (97d)
Self-signedNo
Hosting & Technology
HostingAmazon.com, Inc.
Server locationUS
PopularityTop 100k worldwide

Redirect Chain

Hops
1
Cross-domain
Yes
Lookalike
No
Punycode
No
  • 1301http://mystrikingly.com/
  • 2200https://www.strikingly.com/cross-domain

Server Reputation

Abuse Intelligence
Confidence score0%
Reports on file0
ISPAmazon.com, Inc.
Usage typeContent Delivery Network

Scam-Type Likelihood

1 scam-type patterns detected
Scam-Type Likelihood

1 of 13 categories showed signals

We check every URL against 13 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.

Top match: Phishing
Phishing
High likelihood
75/100
  • Login form combined with brand impersonation (credential-harvest pattern).
  • Page impersonates PayPal in a login flow.

Phishing site — act fast

This page shows signs of attempting to steal credentials or impersonate a trusted brand.

  • Do not interact with mystrikingly.com

    Do not enter credentials, deposit money, download files, or install browser extensions from this site.

  • If you already typed your password — change it now

    Change the password on the legitimate site and anywhere else you re-used it. Turn on two-factor authentication. Review recent account activity.

  • Report the phishing URL

    APWG (Anti-Phishing Working Group) accepts phishing reports at reportphishing@apwg.org. Google Safe Browsing reports help protect other users.

    Open
  • Get help on the forum

    MalwareTips members can help you assess damage and next steps.

    Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
Not listedCheck ↗
AbuseIPDB
Not listedCheck ↗
Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Referenced Domains

Outbound domains this page links to or loads resources from. Each links to its own security scan.

strikingly.comstatic-assets.strikinglycdn.comfr.strikingly.comjp.strikingly.comes.strikingly.compt.strikingly.comtw.strikingly.comcn.strikingly.comnl.strikingly.comsv.strikingly.comde.strikingly.comit.strikingly.comno.strikingly.comro.strikingly.comcs.strikingly.comar.strikingly.comid.strikingly.comfi.strikingly.compl.strikingly.comvi.strikingly.com

Safety FAQ

Common questions about this site, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

  • Our automated security review flags mystrikingly.com as dangerous. Multiple threat indicators were detected — treat the site as a scam until proven otherwise.
  • No — mystrikingly.com scored 25/100 on our trust scale. We detected active threat indicators, so we recommend avoiding the site entirely.
  • Yes. mystrikingly.com presents a valid TLSv1.3 certificate issued by Amazon · Amazon RSA 2048 M04, expiring in 97 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.
  • mystrikingly.com is 7.6 years old, registered on 11/28/2018 through NameCheap, Inc.. Scam domains are often freshly registered — a site under 6 months old warrants extra caution.
  • No. All 92 antivirus engines in our malware network report mystrikingly.com as clean.
  • No. mystrikingly.com is not currently listed on the major browser blocklist feeds that modern browsers use.
  • mystrikingly.com resolves to an IP operated by Amazon.com, Inc. in US (usage type: Content Delivery Network). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.
  • Yes. mystrikingly.com sits in the global top-100k on Cloudflare Radar, which means it has substantial real-world traffic. That does not automatically make it safe, but established brands almost always rank here and throwaway scam domains almost never do.

Final Verdict

0
Trust / 100
Final Verdict·mystrikingly.com
DANGEROUS

mystrikingly.com is the official free subdomain host for Strikingly's website builder platform, but the root domain displays a login form with PayPal branding that triggers credential-harvest detection. The platform itself is legitimate and Y Combinator-backed, though some users report billing disputes.

Do not enter payment or login credentials on this page if you are not an existing Strikingly user. If you are a Strikingly customer, use the official strikingly.com domain for account access. Be aware that individual user-created sites on mystrikingly.com subdomains may be fraudulent; verify the specific subdomain URL before entering any personal information.

AV engines
92
MT passes
2
Net signals
0
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Dangerous reports

Browse all reports
Dangeroustrust41
bulkpalletliquidation.com
16m ago
Read the review
Dangeroustrust29
nickkpixx123.world
19m ago
Read the review
Dangeroustrust1
wincas.net
21m ago
Read the review
Dangeroustrust1
svs-verificationdate.beer
33m ago
Read the review
Dangeroustrust12
switchroms.io
1h ago
Read the review
Dangeroustrust41
freecinebr.pro
3h ago
Read the review
Dangeroustrust1
remendador.com
3h ago
Read the review
Dangeroustrust34
larpers.eu
3h ago
Read the review
Dangeroustrust1
bafybeicgwt5bdcgaygcy34r2ljwriuaqapesiukl6vzszdev4mxquetvse.ipfs.inbrowser.link
3h ago
Read the review
Dangeroustrust8
jns-henderson.com
4h ago
Read the review
Dangeroustrust42
fortis-lifescience.com
4h ago
Read the review
Dangeroustrust1
invest-optionfx.com
4h ago
Read the review
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.