# bovirentix-fin.net — SUSPICIOUS

> bovirentix-fin.net is under investigation for phishing risks. Stay cautious and avoid sharing personal info until more details are confirmed.

## Summary
PhishDestroy has identified bovirentix-fin.net as a domain potentially involved in generic phishing activities, currently classified as under investigation. Although the risk level remains uncertain, users should exercise caution given the domain's suspicious context.

The domain was registered recently, on March 3, 2026, through NameCheap, Inc., a registrar often exploited by malicious actors for quick setup. Despite the lack of detection by any security vendors on VirusTotal, bovirentix-fin.net resolves to the IP address 172.67.157.111, which is associated with infrastructure sometimes leveraged in phishing campaigns. The absence of immediate detection suggests the threat may be emerging or in the early stages of operation, warranting close monitoring.

Users are advised to remain vigilant and refrain from interacting with this domain, especially avoiding entering sensitive information. PhishDestroy continues to track bovirentix-fin.net's activity and will update its risk assessment as new intelligence surfaces. Meanwhile, organizations should consider blocking or flagging traffic to this domain until further analysis confirms its safety.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: dead (HTTP 0)
- Page title: BovirentixFin | Investimento automatizzato con IA per investitori di oggi

## Domain Intelligence
- Registered: 2026-03-06 21:07:02
- Registrar: NameCheap, Inc.
- Country: US
- IP: 172.67.157.111
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: nico.ns.cloudflare.com zariyah.ns.cloudflare.com
- SSL Issuer: none

## Detection Status
- VirusTotal: 1 vendors flagged
  Vendors: ["Gridinsoft"]
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "MetaMask"]

## Evidence
- Screenshot: https://i.ibb.co/ycqBcWnw/f49607d39e7a.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/fc0f1a32-311f-46e7-b99a-c87d43381a3b
- PhishDestroy: https://phishdestroy.io/domain/bovirentix-fin.net/
- LLM endpoint: https://phishdestroy.io/domain/bovirentix-fin.net/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/bovirentix-fin.net/
Last updated: 2026-03-19