# harmonybitspire-ki.net — MALICIOUS

> Review the safety status of harmonybitspire-ki.net, a phishing domain now offline. Learn about risks and protective steps against scams linked to this site.

## Summary
PhishDestroy identifies harmonybitspire-ki.net as an active phishing domain designed to deceive users through social engineering tactics. Phishing attacks pose significant risks by tricking individuals into revealing sensitive information such as login credentials or financial data, which can lead to identity theft and financial loss.

This domain was registered on March 12, 2026, through PDR Ltd. d/b/a PublicDomainRegistry.com and resolved to IP address 172.67.193.99. It appeared on two security blocklists and was flagged by Google Safe Browsing for social engineering activity. VirusTotal analysis indicated that 5 of 95 security vendors detected malicious behavior associated with the domain. Currently, the site is offline and displays a Cloudflare warning page indicating suspected phishing activity, which suggests it has been taken down or suspended.

Users are advised to avoid visiting harmonybitspire-ki.net and to remain vigilant against unsolicited links received via email or messaging platforms. It is crucial to verify the legitimacy of websites before submitting any personal information. Employing updated security software and enabling browser phishing protection features can help reduce exposure to similar threats. Reporting suspicious domains to security services supports efforts to mitigate phishing risks.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-03-12 21:07:01
- Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com
- Country: IN
- IP: 172.67.193.99
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["kayleigh.ns.cloudflare.com", "terin.ns.cloudflare.com"]
- SSL Issuer: Let's Encrypt / E8

## Detection Status
- VirusTotal: 5 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "Google Safebrowsing", "Gridinsoft", "SOCRadar"]
- Google Safe Browsing: FLAGGED
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "MetaMask"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ce383-adee-73ca-86cd-cfa0a8d96d67.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/8bb71c4c-c22b-4bfc-be0b-2b4eae8fb6a0
- PhishDestroy: https://phishdestroy.io/domain/harmonybitspire-ki.net/
- LLM endpoint: https://phishdestroy.io/domain/harmonybitspire-ki.net/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/harmonybitspire-ki.net/
Last updated: 2026-03-19