# noox.pro — MALICIOUS

> noox.pro is linked to high-risk phishing attacks. Stay protected and learn how to avoid this malicious domain now.

## Summary
PhishDestroy identifies noox.pro as a high-risk domain associated with generic phishing activity. This domain poses a significant threat to users by attempting to deceive them into revealing sensitive information.

The domain noox.pro has been flagged by multiple security tools and appears on several blocklists, indicating widespread recognition of its malicious nature. It was first registered on February 21, 2026, and remains active. AlienVault OTX data confirms its presence in threat intelligence feeds, reinforcing its involvement in ongoing phishing campaigns.

Users and organizations should remain vigilant and block access to noox.pro to reduce exposure. Employing updated security solutions and user awareness training can mitigate the risk. As the domain continues to operate, timely intervention is critical to prevent successful phishing attempts.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Noox | Proof of achievements for your Web3 life

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com
- Country: IN
- IP: 104.21.64.1
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["princess.ns.cloudflare.com", "armfazh.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 16 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "CRDF", "CyRadar", "ESET", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Kaspersky", "Lionic", "Seclookup", "SOCRadar", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "ScamSniffer", "Enkrypt"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019943c9-6d3d-75da-b31b-fafdeb2e2c63.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/5e8eaaa7-35d5-4930-9450-ad1ecf67727d
- PhishDestroy: https://phishdestroy.io/domain/noox.pro/
- LLM endpoint: https://phishdestroy.io/domain/noox.pro/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/noox.pro/
Last updated: 2026-03-19