Our automated security review flags nryf.xyz as dangerous. Multiple threat indicators were detected — treat the site as a scam until proven otherwise.

Is nryf.xyz safe to use?

No — nryf.xyz scored 1/100 on our trust scale. We detected active threat indicators, so we recommend avoiding the site entirely.

Does nryf.xyz have a valid SSL certificate?

Yes. nryf.xyz presents a valid TLSv1.2 certificate issued by Let's Encrypt · R13, expiring in 32 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.

How old is the nryf.xyz domain?

nryf.xyz is 10 months old, registered on 8/7/2025 through GoDaddy.com, LLC. Scam domains are often freshly registered — a site under 6 months old warrants extra caution.

Has nryf.xyz been flagged by antivirus engines?

5 out of 92 antivirus engines in our malware network flagged nryf.xyz as malicious or suspicious (4 outright malicious). Even one detection is a meaningful signal.

Is nryf.xyz on any phishing or malware blacklists?

No. nryf.xyz is not currently listed on the major browser blocklist feeds that modern browsers use.

Where is nryf.xyz hosted?

nryf.xyz resolves to an IP operated by GoDaddy.com, LLC in US (usage type: Data Center/Web Hosting/Transit). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.

How often is the nryf.xyz report updated?

We cache results for 24 hours. Signed-in MalwareTips members can trigger a manual rescan at any time using the "Rescan" button on the report page, which re-runs every check from scratch and refreshes this page.

DANGEROUS

Critical risk detected

4 of 92 antivirus engines flag this page as malicious. Our security stack flagged multiple threat indicators on this website. Don't enter personal information, deposit money, or download files.

Security Review

Is nryf.xyz legit or a scam?

Name: Is nryf.xyz legit or a scam?
Item: nryf.xyz
Rating: 1
Author: MalwareTips

Our verdict:Dangerous· 1/100

SafeSuspiciousDangerous

nryf.xyz promotes a fake Coca-Cola anniversary giveaway scam that promises instant prizes after questions.

Top reasons

Domain used in documented fake Coca-Cola giveaway promising instant prizes after questions.Four malicious detections and one phishing flag from our antivirus network.No business registration or verifiable company behind the domain.

nryf.xyzScanned 1d ago

Post Facebook

Trust score

DANGEROUS

Heuristics 0·MT 15

Category tags

scam#Fake Giveaway90% MT confidence

Technical red flags (1)

5 of 92 engines flagged

Warning signals (1)

Domain is 10 months old

Positive signals (3)

Not on major blacklists Encrypted connection Clean server reputation

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence

0/92

Engines flagged this URL

Domain Age

10 months old

Registered Aug 7, 2025

MT Intelligence

Dangerous

High likelihood · 90% confidence

MT Intelligence

Advanced threat intelligence

MT Security Analyst

High scam likelihoodengineMT · Guardiantrust15/100

MT AgentLive web researchVisual inspectionNetwork correlation

Confidence

The domain nryf.xyz is 302 days old and carries four malicious detections plus one phishing flag from our antivirus network. Our research found explicit use in a documented scam that directs users to a /CokePrizes-2026 path promising rewards. Two separate reports describe the same misleading prize scheme and note the site's low trust score. The main page returns a 403 error, yet the documented scam path remains active. No business registration or legitimate traffic exists to offset these signals.

Full dossier

Analysis complete

Page Content

The scanned root returns a standard 403 Forbidden page with no visible content or branding. Evidence shows the operator promotes a fake Coca-Cola 140th anniversary giveaway at a subpath that promises instant rewards after questions.

Infrastructure

Valid SSL certificate from Let's Encrypt. Hosting IP shows zero abuse reports. Four of 92 engines flagged the domain malicious, with Fortinet specifically labeling it phishing.

Domain History

Registered 302 days ago through GoDaddy with no privacy protection. No business registration records found in any jurisdiction.

Web Reputation

Two independent reports document the site's use in a false giveaway scam. No positive reviews or legitimate business mentions appear anywhere.

Risk Factors

Domain used in documented fake Coca-Cola giveaway promising instant prizes after questions.
Four malicious detections and one phishing flag from our antivirus network.
No business registration or verifiable company behind the domain.
Two confirmed scam reports and two complaints tied to the site.

Positive Signals

Hosting IP carries zero abuse reports.
Domain age of 302 days is older than many throwaway scam sites.

AI Recommendation

Avoid the site entirely and do not click any links promising Coca-Cola prizes or rewards.

Scam network detected

Related infrastructure identified

Domain tied to a single documented fake-giveaway campaign.

Next-gen fraud intelligence

Evidence-backedCross-checked

Website Preview

LIVE RENDER

nryf.xyz

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

Visual Screenshot Analysis

We capture a fresh screenshot of the live page and ask a vision model to look for scam visual patterns — fake trust badges, countdown timers, overlay pop-ups, and visual clones of legitimate brands.

/ 100

No visual red flags

No scam visual patterns detected

Standard 403 Forbidden error page with no scam indicators visible.

Visual risk0/100

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for nryf.xyz, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age

10 months

Registered Aug 2025

Business registration

No public record found

Could not match the site to a registered company — common for small sites.

Clone check

Not a clone

No well-known site's layout or branding detected here.

Typosquat check

No look-alike match

The domain doesn't resemble any well-known brand's spelling.

Web mentions

2 scam reports

Key findings

6 headline facts from open-web research

- nryf.xyz is a .xyz domain registered approximately 302 days ago with no established traffic or history.
- Explicitly used in a documented fake Coca-Cola 140th anniversary giveaway scam (links to /CokePrizes-2026 promising prizes after questions).
- Blacklisted by multiple security vendors with a reported 1/100 trust score per GridinSoft scan.
- PCRisk scanner notes it as a very recently registered .xyz with limited publicly available context.
- No mentions or discussions found on Reddit; unrelated NRYF references refer to other entities (e.g., Norwegian riding federation).
- No positive reviews, official business registrations, or legitimate uses identified in searches.

Scam reports (2)

Direct quotes from public scam databases, forums, and news.

The Link Guardopen
"The link directs users to **https://nryf.xyz/CokePrizes-2026** and promises instant rewards after answering a few questions. This claim is **false and misleading**."
GridinSoftopen
"Multiple security vendors blacklist Nryf.xyz , and our checks show a 1/100 trust score. Avoid entering personal or payment data."

Research summary

Narrative write-up from our AI analyst, grounded on the facts above

The Link Guard documented nryf.xyz directing users to a fake Coca-Cola 140th anniversary gift link that falsely promises instant rewards. GridinSoft reported the domain blacklisted by multiple vendors with a 1/100 trust score and advised against entering personal data.

Antivirus Engines

Detection matrix · live

5 engines flagged this URL

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. Each detection is listed below by engine name — even a single hit is a meaningful signal.

4Malicious1Suspicious54Harmless92Engines

of 92

alphaMountain.ai

Malicious· malicious

CRDF

Malicious· malicious

CyRadar

Malicious· malicious

Fortinet

Malicious· phishing

Forcepoint ThreatSeeker

Suspicious· suspicious

5 antivirus engines flagged this URL. Even a single detection is a meaningful signal — treat this site with extra caution and avoid entering credentials, payment info, or downloading any files.

Security Scans

Blacklist Check

Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Domain & Encryption

Domain History

Age10 months old

RegistrarGoDaddy.com, LLC

RegisteredAug 7, 2025

ExpiresAug 7, 2026

Owner privacyVisible

Encryption Certificate

StatusValid

ProtocolTLSv1.2

IssuerLet's Encrypt · R13

ExpiresJul 7, 2026 (32d)

Self-signedNo

Hosting & Technology

HostingGoDaddy.com, LLC

Server locationUS

Server Reputation

Abuse Intelligence

Confidence score0%

Reports on file0

ISPGoDaddy.com, LLC

Usage typeData Center/Web Hosting/Transit

Scam-Type Likelihood

1 scam-type patterns detected

Scam-Type Likelihood

0 of 13 categories showed signals

We check every URL against 13 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.

Top match: Fake Giveaway

Fake Giveaway

Low-level signals

0/100

AI analyst tagged this as a giveaway / airdrop / lottery scam.

Scam-Type Likelihood

0 of 13 categories showed signals

Top match: Fake Giveaway

Fake Giveaway

Low-level signals

0/100

AI analyst tagged this as a giveaway / airdrop / lottery scam.

Fake giveaway detected

This page mimics a celebrity, brand, or crypto giveaway. These are virtually always scams.

Do not interact with nryf.xyz
Do not enter credentials, deposit money, download files, or install browser extensions from this site.
Elon Musk / Vitalik / MrBeast will never ask you to send crypto first
Every "send 0.1 ETH, receive 1 ETH back" giveaway is a scam. 100% of them. There is no exception.
If you already sent funds
Funds sent to a scam wallet cannot be recovered. Report the wallet address to the relevant chain explorer and file a report at IC3 — scammers are tracked, even when recovery isn't possible.

Trust History

Trust score over time

Last 3 public scans of nryf.xyz

1/100

-89 vs Jun 4

Jun 4Jun 5

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing

Not listedCheck ↗

VirusTotal

ListedCheck ↗

AbuseIPDB

Not listedCheck ↗

Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Safety FAQ

Common questions about this site, answered from the scan data on this page. These are auto-generated — not hand-written — so they always match the underlying report.

Our automated security review flags nryf.xyz as dangerous. Multiple threat indicators were detected — treat the site as a scam until proven otherwise.

Final Verdict

Trust / 100

Final Verdict·nryf.xyz

DANGEROUS

nryf.xyz hosts a fake Coca-Cola giveaway that asks users to answer questions for prizes. Multiple security engines flag the domain as malicious or phishing, and independent reports confirm it promotes false reward claims. Do not visit or enter any information.

Avoid the site entirely and do not click any links promising Coca-Cola prizes or rewards.

AV engines

MT passes

Net signals

Scan another URL

Security review completemalwaretips.com/url-scan

Recently scanned

Other Dangerous reports

Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…

Loading comments…

This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.