# prinvesment.com — MALICIOUS

> prinvesment.com is a medium-risk phishing domain linked to suspicious activity. Stay informed and protect your data from potential threats.

## Summary
PhishDestroy has identified prinvesment.com as a phishing domain exhibiting medium risk characteristics. Classified under generic phishing, this domain aims to deceive users by mimicking legitimate entities to steal sensitive information. Its recent creation and suspicious registrant details raise concerns about its intent.

Technical analysis reveals that prinvesment.com resolves to the IP address 104.21.58.230 and is registered through Ultahost, Inc. VirusTotal flags this domain with 9 detections out of 95 security vendors, indicating a notable level of suspicion. The domain was created on August 20, 2025, suggesting it is relatively new and possibly part of a broader phishing campaign leveraging fresh, untrusted infrastructure.

Currently, prinvesment.com remains active and poses a potential threat to users. PhishDestroy recommends monitoring this domain closely and exercising caution when encountering any communications or websites linked to it. Defensive measures such as blocking, user awareness, and further forensic investigation are advised to mitigate risks associated with this domain.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 200)
- Page title: prinvesment.com – Secure transactions

## Domain Intelligence
- Registered: 2025-08-20 17:52:09
- Registrar: Ultahost, Inc.
- IP: 104.21.58.230
- Nameservers: damiete.ns.cloudflare.com ivy.ns.cloudflare.com

## Detection Status
- VirusTotal: 11 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "CRDF", "CyRadar", "Fortinet", "G-Data", "Kaspersky", "Sophos"]
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Screenshot: https://urlscan.io/screenshots/019d01d3-cd53-7449-ac2d-250b6b224b7c.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/a802125a-7188-461e-8e1c-5753dd9a8188
- PhishDestroy: https://phishdestroy.io/domain/prinvesment.com/
- LLM endpoint: https://phishdestroy.io/domain/prinvesment.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/prinvesment.com/
Last updated: 2026-03-19