# check.lat — SUSPICIOUS

> check.lat is a newly created domain (March 20, 2026) posing a generic phishing threat. Resolves to IP 104.21.46.36.

## Summary
PhishDestroy identifies check.lat as a domain engaged in generic phishing activity with an active status and under investigation. The domain has not been conclusively verified as a scam but exhibits early-stage indicators of malicious intent.  This domain was flagged by 0 of 95 VirusTotal vendors, registered through Dynadot LLC on March 20, 2026, and resolves to IP 104.21.46.36. It holds a Let's Encrypt SSL certificate, indicating no immediate blocklisting or reputation-based detections as of the latest scan.  Current status remains under investigation due to limited threat intelligence. Users are advised to avoid interacting with check.lat, refrain from entering sensitive information, and report any suspicious activities to relevant cybersecurity authorities. Exercise heightened caution if the domain appears in unsolicited emails or messages.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-20 15:35:21
- Registrar: Dynadot LLC
- IP: 104.21.46.36

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/ebd9065b-7711-4aca-af34-6d804f5a6a7a
- PhishDestroy: https://phishdestroy.io/domain/check.lat/
- LLM endpoint: https://phishdestroy.io/domain/check.lat/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/check.lat/
Last updated: 2026-03-21