# bruxy.com — SUSPICIOUS

> bruxy.com is a confirmed fake tech support scam site. Flagged by 0 of 95 VirusTotal vendors, check the full report.

## Summary
PhishDestroy identifies bruxy.com as an active fake tech support scam domain hosting fraudulent content mimicking legitimate technical support pages. The site is currently operational and poses a direct risk to visitors through deceptive claims of system infection, credential theft, or fraudulent payment solicitations. Users encountering unsolicited pop-ups or redirected traffic to this domain should treat it as hostile and avoid interaction.  The domain bruxy.com was registered on January 26, 2006, through NICENIC INTERNATIONAL GROUP CO., LIMITED and resolves to IP address 188.114.97.3. SSL encryption is provided via a Let’s Encrypt certificate, which does not indicate legitimacy. VirusTotal currently shows 0 detections out of 95 scanning vendors as of seed 823c2a, suggesting evasion of automated detection systems. Despite its age, the domain exhibits behaviors consistent with social engineering campaigns, targeting users through emotionally manipulative narratives such as “critical system errors” or “unauthorized access detected.”  This threat remains active and unblocked by major security platforms. Immediate recommendations include blocking DNS resolution for bruxy.com and IP 188.114.97.3 at the network perimeter. Users encountering this domain should clear browser cache, reset passwords under suspicious circumstances, and report encounters to their IT security team. Security teams are advised to monitor for inbound traffic to this domain and update firewall rules accordingly. Due diligence and user education remain critical in mitigating exposure to such low-signature, persistent scam infrastructure.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2006-01-26 09:33:00
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/b85afdb3-6a67-4ed9-9a4c-58bd15884240
- PhishDestroy: https://phishdestroy.io/domain/bruxy.com/
- LLM endpoint: https://phishdestroy.io/domain/bruxy.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/bruxy.com/
Last updated: 2026-03-28