# scotlacomp.cc — MALICIOUS

> PhishDestroy flags scotlacomp.cc as a high-risk phishing domain now offline. Learn what led to its takedown and how to stay protected.

## Summary
PhishDestroy identifies scotlacomp.cc as a high-risk generic phishing domain designed to deceive users and harvest credentials or sensitive data. The domain's phishing activity posed significant risks of data compromise, warranting urgent attention.

Supporting intelligence reveals that scotlacomp.cc was registered recently through NICENIC INTERNATIONAL GROUP CO., LIMITED, with creation dated October 13, 2025. It appeared in 13 AlienVault OTX pulses and was listed on multiple security blocklists, confirming widespread detection. VirusTotal analysis flagged the domain by 17 out of 95 security vendors, underscoring its malicious nature and corroborating the associated phishing threat.

Currently, scotlacomp.cc has been taken offline and no longer serves phishing content, representing a positive mitigation outcome. However, users and organizations should remain vigilant against new phishing infrastructures leveraging similar tactics. Employing robust email filtering, endpoint protection, and user awareness training remains essential to prevent exposure to evolving phishing campaigns.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 530)
- Page title: Scotia Connect | Premium ATV Rental Services Canada | Adventure Tours 2025

## Domain Intelligence
- Registered: 2025-10-13 22:16:11
- Registrar: NiceNIC International Group Co., Limited
- Country: HK
- IP: 193.46.217.224
- Nameservers: ["a.dnspod.com", "c.dnspod.com"]
- SSL Issuer: R13

## Detection Status
- VirusTotal: 17 vendors flagged
  Vendors: ["alphaMountain.ai", "BitDefender", "CRDF", "CyRadar", "ESET", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Gridinsoft", "Lionic", "Phishing Database", "Seclookup", "SOCRadar", "Sophos", "Trustwave", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 5 hits
  Lists: ["PhishDestroy", "Polkadot", "Enkrypt", "Codeesura", "PhishingDB"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019b3af4-8f97-770e-a576-8f660bc757d9.png
- PhishDestroy: https://phishdestroy.io/domain/scotlacomp.cc/
- LLM endpoint: https://phishdestroy.io/domain/scotlacomp.cc/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/scotlacomp.cc/
Last updated: 2026-03-19