# adminaganwa.com — MALICIOUS

> adminaganwa.com is a live credential-harvesting phishing site first seen 23 Feb 2026; 7/95 VirusTotal vendors flag it. Review the full report now.

## Summary
PhishDestroy identifies adminaganwa.com as an active credential-harvesting phishing site designed to trick visitors into entering usernames, passwords, or financial details that are immediately captured by attackers. The page mimics a login portal or account-update flow, and any information submitted is sent directly to an attacker-controlled server rather than the legitimate service it pretends to represent.

This domain was flagged by 7 of 95 VirusTotal security vendors, first appeared on blocklists in late February 2026, and was registered through NAMECHEAP INC just days before going live. Google Safe Browsing categorizes the page under SOCIAL_ENGINEERING, confirming its intent to deceive users. The site currently resolves to 149.28.146.49 and holds a valid Let’s Encrypt SSL certificate, giving it a veneer of legitimacy that can fool cautious users.

If you visited adminaganwa.com, assume any credentials entered were compromised. Rotate those passwords immediately and enable multi-factor authentication on all related accounts. Run a full antivirus scan and consider changing passwords from a separate, trusted device. Report the domain to your security team or the platform it impersonates so they can take further action.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-02-23 13:31:27
- Registrar: NAMECHEAP INC
- IP: 149.28.146.49

## Detection Status
- VirusTotal: 7 vendors flagged
- Google Safe Browsing: FLAGGED
- Blocklists: 1 hits
  Lists: ["InversionDNS"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/5e5434fc-3d5e-48c9-936a-b0e1c20b9e04
- PhishDestroy: https://phishdestroy.io/domain/adminaganwa.com/
- LLM endpoint: https://phishdestroy.io/domain/adminaganwa.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/adminaganwa.com/
Last updated: 2026-03-30