# lis-skhns.com — MALICIOUS

> lis-skhns.com is linked to medium-risk phishing activity. Learn about the threat and protect yourself from potential scams today.

## Summary
PhishDestroy identifies lis-skhns.com as a domain associated with generic phishing threats, posing a medium risk to users. This domain is designed to deceive victims by impersonating legitimate services or entities to steal sensitive information such as login credentials or financial data. Users encountering this domain should be cautious as it facilitates fraudulent schemes that can lead to identity theft or financial loss.

The domain lis-skhns.com was registered recently on May 26, 2025, through NICENIC INTERNATIONAL GROUP CO., LIMITED, a registrar sometimes linked to malicious registrations. It resolves to the IP address 188.114.97.3, which may be part of a hosting infrastructure commonly used by phishing campaigns. VirusTotal analysis shows that 5 out of 95 security vendors have flagged this domain, indicating emerging consensus about its malicious nature. These technical indicators highlight the domain’s involvement in phishing activities and its potential to harm unsuspecting users.

Currently, lis-skhns.com remains active and continues to pose a threat to internet users. PhishDestroy recommends avoiding interaction with this domain and urges organizations to implement robust email filtering and web-blocking measures to mitigate exposure. Users should verify URLs carefully and report suspicious sites to security teams. Continuous monitoring and timely response are essential to prevent the spread of phishing attacks related to this domain.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2025-05-26 17:50:26
- Registrar: NiceNIC International Group Co., Limited
- Country: HK
- IP: 188.114.97.3
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: gabe.ns.cloudflare.com sharon.ns.cloudflare.com
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 5 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "CyRadar", "Forcepoint ThreatSeeker", "Fortinet"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cd944-4f6a-74db-a31b-a98f1647760d.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/d67342fd-304d-4b2b-8a85-d4b5426ad12b
- PhishDestroy: https://phishdestroy.io/domain/lis-skhns.com/
- LLM endpoint: https://phishdestroy.io/domain/lis-skhns.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/lis-skhns.com/
Last updated: 2026-03-19