MalwareTips
DANGEROUS

Critical risk detected

13 of 92 antivirus engines flag this page as malicious. Our security stack flagged multiple threat indicators on this website. Don't enter personal information, deposit money, or download files.

Security Review

Is scriptapi.dev legit or a scam?

Our verdict:Dangerous· 1/100

Malicious domain flagged by six antivirus engines; no legitimate business presence or traffic ranking detected.

Top reasons
Six antivirus engines classify the domain as malicious, including tier-1 detectors CyRadar and Forcepoint ThreatSeeker.Domain has been registered for 632 days with zero global traffic ranking, suggesting deliberate obscurity.No legitimate business registration, contact details, or service documentation present.
scriptapi.devScanned 1h ago
Post Facebook
0
Trust score
DANGEROUS
Heuristics 0·MT 18
Category tags
malwaredata-harvester#Malware#Data Harvester92% MT confidence
Technical red flags (1)
14 of 92 engines flagged

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence
14/92
Engines flagged this URL
Domain Age
1.7 years old
Registered Sep 14, 2024
MT Intelligence
Dangerous
Critical likelihood · 92% confidence

MT Intelligence

Advanced threat intelligence
MT Security Analyst
Critical scam likelihoodengineMT · Guardiantrust18/100
MT AgentLive web researchVisual inspection
0%
Confidence
Our antivirus network detected malicious activity on scriptapi.dev, with six engines including CyRadar and Forcepoint ThreatSeeker classifying it as malicious. The domain is 632 days old, suggesting it has been operating under the radar for an extended period. Despite its age, the site has no global traffic ranking and no presence on independent review aggregators, which is inconsistent with a legitimate API service. The hosting IP shows zero abuse reports and a clean reputation score, but this does not override the strong antivirus consensus. The combination of multiple malware detections, absence of legitimate business signals, and lack of any public trust indicators points to a malicious operation.
Full dossier
Analysis complete

Page Content

The domain claims to offer a script API service but provides no verifiable business information, documentation, or legitimate service details. No company registration, contact information, or operational transparency is evident.

Infrastructure

Hosted on IP 172.67.189.74 with valid SSL from Google Trust Services. The IP itself has a clean abuse score (0/100) and zero reported abuse incidents, but this does not indicate the domain's legitimacy.

Domain History

Registered 632 days ago via Namecheap Inc. with privacy protection disabled. The extended registration age combined with zero traffic ranking suggests deliberate low-profile operation rather than a new or abandoned domain.

Web Reputation

Six antivirus engines flag the domain as malicious: ADMINUSLabs, alphaMountain.ai, Chong Lua Dao, CRDF, CyRadar, and Forcepoint ThreatSeeker. No independent trust aggregators have rated the site. Browser blocklists remain clean, but the strong AV consensus indicates active malicious content or behaviour.

Risk Factors
5
  • Six antivirus engines classify the domain as malicious, including tier-1 detectors CyRadar and Forcepoint ThreatSeeker.
  • Domain has been registered for 632 days with zero global traffic ranking, suggesting deliberate obscurity.
  • No legitimate business registration, contact details, or service documentation present.
  • No independent trust-rating presence despite the domain's age.
  • Antivirus reputation score is 0, indicating confirmed malicious classification.
Positive Signals
3
  • SSL certificate is valid and issued by Google Trust Services.
  • Hosting IP has zero abuse reports and a clean reputation score (0/100).
  • No cross-domain redirects or homoglyph indicators detected.
AI Recommendation
Do not visit scriptapi.dev or download any files from it. If you have already interacted with this domain, run a full antivirus scan on your device to check for malware infection.
Next-gen fraud intelligence
Evidence-backedCross-checked

Website Preview

Screenshot of scriptapi.dev
LIVE RENDER
scriptapi.dev

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for scriptapi.dev, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age
1.7 yrs
Registered Sep 2024
Web mentions
No scam reports found
No complaints, no negative coverage turned up in our sweep.
Research summary
Narrative write-up from our AI analyst

No web research data available for this domain.

Antivirus Engines

Detection matrix · live
14 engines flagged this URL

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. Each detection is listed below by engine name — even a single hit is a meaningful signal.

13Malicious1Suspicious48Harmless92Engines
0
of 92
ADMINUSLabs
Malicious· malicious
alphaMountain.ai
Malicious· malicious
Chong Lua Dao
Malicious· malicious
CRDF
Malicious· malicious
CyRadar
Malicious· malicious
Forcepoint ThreatSeeker
Malicious· malicious
Fortinet
Malicious· malware
Lionic
Malicious· malicious
Lumu
Malicious· malware
Rising
Malicious· malicious
Sophos
Malicious· malware
Sucuri SiteCheck
Malicious· malicious
VIPRE
Malicious· malware
ESET
Suspicious· suspicious

14 antivirus engines flagged this URL. Even a single detection is a meaningful signal — treat this site with extra caution and avoid entering credentials, payment info, or downloading any files.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Sandbox Render
Sandbox capture incomplete — no traffic recorded
Requests made0
Unique IPs0
Countries0
Detected brandsNone

Domain & Encryption

Domain History
Age1.7 years old
RegistrarNamecheap Inc.
RegisteredSep 14, 2024
ExpiresSep 14, 2026
Owner privacyVisible
Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerGoogle Trust Services · WE1
ExpiresAug 10, 2026 (62d)
Self-signedNo
Hosting & Technology
HostingCloudflare, Inc.
Server locationUS

Server Reputation

Hosting
CountryUnknown
NetworkUnknown
IP addressUnknown
Abuse Intelligence
Confidence score0%
Reports on file0
ISPCloudflare, Inc.
Usage typeContent Delivery Network

Scam-Type Likelihood

1 scam-type patterns detected
Scam-Type Likelihood

1 of 13 categories showed signals

We check every URL against 13 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.

Top match: Malware
Malware
Low-level signals
15/100
  • AI analyst tagged this as malware / drive-by / cracked app.

Malware distribution detected

Signals suggest this page may deliver malicious files or exploit the browser.

  • Do not interact with scriptapi.dev

    Do not enter credentials, deposit money, download files, or install browser extensions from this site.

  • If you downloaded or ran a file from here

    Disconnect the device from the internet, run a full scan with a reputable antivirus (Malwarebytes, ESET, Bitdefender), and consider a second-opinion scanner. Change passwords on any account you used from the device afterwards — ideally from a different device.

  • Get free cleanup help

    MalwareTips has a dedicated malware-removal team who walk you through cleanup one-on-one.

    Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
ListedCheck ↗
AbuseIPDB
Not listedCheck ↗
Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Safety FAQ

Common questions about this site, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

  • Our automated security review flags scriptapi.dev as dangerous. Multiple threat indicators were detected — treat the site as a scam until proven otherwise.
  • No — scriptapi.dev scored 1/100 on our trust scale. We detected active threat indicators, so we recommend avoiding the site entirely.
  • Yes. scriptapi.dev presents a valid TLSv1.3 certificate issued by Google Trust Services · WE1, expiring in 62 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.
  • scriptapi.dev is 1.7 years old, registered on 9/14/2024 through Namecheap Inc.. Scam domains are often freshly registered — a site under 6 months old warrants extra caution.
  • 14 out of 92 antivirus engines in our malware network flagged scriptapi.dev as malicious or suspicious (13 outright malicious). Even one detection is a meaningful signal.
  • No. scriptapi.dev is not currently listed on the major browser blocklist feeds that modern browsers use.
  • scriptapi.dev resolves to an IP operated by Cloudflare, Inc. in US (usage type: Content Delivery Network). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.
  • We cache results for 24 hours. Signed-in MalwareTips members can trigger a manual rescan at any time using the "Rescan" button on the report page, which re-runs every check from scratch and refreshes this page.

Final Verdict

0
Trust / 100
Final Verdict·scriptapi.dev
DANGEROUS

scriptapi.dev is flagged as malicious by six major antivirus engines including CyRadar and Forcepoint ThreatSeeker. The domain was registered 632 days ago but shows no legitimate business presence, traffic ranking, or independent trust signals. Do not visit or interact with this site.

Do not visit scriptapi.dev or download any files from it. If you have already interacted with this domain, run a full antivirus scan on your device to check for malware infection.

AV engines
92
MT passes
2
Net signals
0
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Dangerous reports

Browse all reports
Dangeroustrust29
pay.teamhealth.com
9m ago
Read the review
Dangeroustrust45
globalnursing.mindauthors.com
11m ago
Read the review
Dangeroustrust1
bafkreia7m7wyi7xnltk5kqkoy4m3nssthp2vnjertouskbhqknycjtb2o4.ipfs.dweb.link
13m ago
Read the review
Dangeroustrust25
forms.logiforms.com
15m ago
Read the review
Dangeroustrust1
mesnager-bussinesss1008f9725.netlify.app
15m ago
Read the review
Dangeroustrust41
3binternational.com
19m ago
Read the review
Dangeroustrust14
hbosqrosegroup.de
19m ago
Read the review
Dangeroustrust1
barclays-banking.net
19m ago
Read the review
Dangeroustrust33
jjj195.com
1h ago
Read the review
Dangeroustrust12
account.remote-otp.com
1h ago
Read the review
Dangeroustrust1
72264.xyz
1h ago
Read the review
Dangeroustrust24
uuuu.com
1h ago
Read the review
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.