# eni-top.website — SUSPICIOUS

> eni-top.website hosts a credential harvesting phishing page. 1/95 security vendors flagged this domain—immediately check the full report.

## Summary
PhishDestroy identifies eni-top.website as an active credential-harvesting phishing domain posing an elevated risk to end users who may unwittingly submit login credentials.

This domain was flagged by exactly 1 out of 95 VirusTotal security vendors at the time of analysis. The domain resolves to IP address 172.67.180.203, was registered through Dynadot Inc., and secured with a Let’s Encrypt SSL certificate. The domain itself was created on March 23, 2026.

Organizations should immediately block both the domain and its resolved IP in DNS and firewall rules. User awareness training should emphasize verifying URLs before entering credentials and favoring multi-factor authentication wherever possible. Monitor proxy logs for outbound connections to this domain or IP as indicators of compromise.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-23 04:34:03
- Registrar: Dynadot Inc
- IP: 172.67.180.203

## Detection Status
- VirusTotal: 1 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/118bc98b-222a-4317-8000-bde63149f4bd
- PhishDestroy: https://phishdestroy.io/domain/eni-top.website/
- LLM endpoint: https://phishdestroy.io/domain/eni-top.website/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/eni-top.website/
Last updated: 2026-03-29