# nulldomains.is — SUSPICIOUS

> Beware of nulldomains.is, a phishing domain now offline. Avoid interacting with it and secure your accounts if you visited this site.

## Summary
PhishDestroy identifies nulldomains.is as a medium-risk phishing domain that was used to deceive users. Such sites pose a danger by attempting to steal sensitive information like passwords or financial details.

This phishing domain operated by masquerading as a legitimate service, tricking visitors into entering personal data. Although now offline, it was flagged on one security blocklist and detected by 3 out of 95 VirusTotal scanners.

If you accessed nulldomains.is, immediately change any passwords you entered and monitor your accounts for suspicious activity. Use multi-factor authentication and report any unusual transactions to your service providers.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: dead (HTTP 666)
- Page title: Null Domains - домены, которые не банит.

## Domain Intelligence
- Registered: 2026-03-07 07:07:01
- IP: 188.114.96.3
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: chris.ns.cloudflare.com june.ns.cloudflare.com
- SSL Issuer: Let's Encrypt / E7

## Detection Status
- VirusTotal: 3 vendors flagged
  Vendors: ["Gridinsoft", "SOCRadar"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cc708-86cf-709f-a126-8a2bb97a6708.png
- Wayback Machine: https://web.archive.org/web/https://nulldomains.is
- PhishDestroy: https://phishdestroy.io/domain/nulldomains.is/
- LLM endpoint: https://phishdestroy.io/domain/nulldomains.is/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/nulldomains.is/
Last updated: 2026-03-19