# bgrhtwh.click — MALICIOUS

> bgrhtwh.click was flagged for phishing activities and is now offline. Stay alert and avoid interacting with this domain to protect your data.

## Summary
PhishDestroy identifies bgrhtwh.click as a medium-risk phishing domain. The site was involved in generic phishing attempts targeting unsuspecting users. Although the threat level is moderate, users should remain cautious due to its deceptive nature.

The domain was registered on March 05, 2026, via NameSilo, LLC, and resolved to IP address 104.225.130.131. It appeared on three security blocklists and was flagged by five out of 95 VirusTotal security vendors. The page title 'Index of /' suggests limited content, possibly a placeholder or misconfigured page, but the domain’s presence on blocklists indicates malicious intent.

Currently, bgrhtwh.click is offline, reducing immediate risk. Users and organizations are advised to maintain updated blocklists and avoid clicking on suspicious links associated with this domain. Continuous monitoring and user education remain essential to mitigate phishing threats emerging from similar sources.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 0)
- Page title: Index of /

## Domain Intelligence
- Registered: 2026-03-05 07:07:02
- Registrar: NameSilo, LLC
- Country: US
- IP: 104.225.130.131
- IP Country: US
- IP City: Jacksonville
- IP Org: AS395092 Shock Hosting LLC
- Nameservers: ns3.loominost.com ns4.loominost.com ns7.loominost.com ns8.loominost.com
- SSL Issuer: none

## Detection Status
- VirusTotal: 5 vendors flagged
  Vendors: ["Fortinet", "Gridinsoft", "SOCRadar", "Trustwave", "URLQuery"]
- Google Safe Browsing: clean
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://i.ibb.co/FkYNzKMd/f90f815541c4.png
- Cloudflare Radar: https://radar.cloudflare.com/domains/bgrhtwh.click
- PhishDestroy: https://phishdestroy.io/domain/bgrhtwh.click/
- LLM endpoint: https://phishdestroy.io/domain/bgrhtwh.click/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/bgrhtwh.click/
Last updated: 2026-03-19