# haiws.com — SUSPICIOUS

> Haiws.com is flagged for phishing and currently offline. Avoid sharing personal info or logging in on this suspicious site.

## Summary
PhishDestroy identifies haiws.com as a domain associated with generic phishing activity. Although the risk level is low and the site is now offline, users should remain cautious since phishing attempts aim to deceive individuals into providing sensitive information. The domain was registered recently on March 11, 2026, and has appeared on multiple security blocklists, indicating prior suspicions around its legitimacy.

This phishing operates by mimicking legitimate websites or services to trick visitors into entering personal details such as usernames, passwords, or financial data. Haiws.com resolved to an IP address (172.247.31.147) that does not inspire trust, and while VirusTotal only showed one out of 95 vendors flagging it, the presence on three blocklists confirms ongoing scrutiny. The registrar, West263 International Limited, is associated with some high-risk domain registrations, further supporting caution.

If a user visited haiws.com, it is recommended to avoid entering any credentials or sensitive information. Users who suspect they may have submitted personal data should immediately change passwords on affected accounts and monitor for any unauthorized activity. Employing updated antivirus software and running security scans can help detect and remove potential malware. Staying informed through resources like PhishDestroy can assist in recognizing and avoiding similar phishing threats in the future.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: dead (HTTP 200)

## Domain Intelligence
- Registered: 2026-03-11 17:07:02
- Registrar: West263 International Limited
- Country: HK
- IP: 172.247.31.147
- IP Country: HK
- IP City: Hong Kong
- IP Org: AS40065 CNSERVERS LLC
- Nameservers: ["ns1.myhostadmin.net", "ns2.myhostadmin.net", "ns3.myhostadmin.net", "ns4.myhostadmin.net", "ns5.myhostadmin.net", "ns6.myhostadmin.net"]
- SSL Issuer: Let's Encrypt / E7

## Detection Status
- VirusTotal: 1 vendors flagged
  Vendors: ["SOCRadar"]
- Google Safe Browsing: clean
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ce216-b81d-7374-aa49-d886779c131a.png
- PhishDestroy: https://phishdestroy.io/domain/haiws.com/
- LLM endpoint: https://phishdestroy.io/domain/haiws.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/haiws.com/
Last updated: 2026-03-19