# paidrev-coin.pages.dev — SUSPICIOUS

> PhishDestroy identifies paidrev-coin.pages.dev as a crypto drainer phishing domain flagged by 0 of 95 VirusTotal vendors. SSL certified by Google Trust Services.

## Summary
PhishDestroy identifies paidrev-coin.pages.dev as an active crypto drainer phishing domain currently under investigation. The domain is distributing malicious payloads designed to siphon cryptocurrency assets from unsuspecting users. This threat is operational and poses a direct financial risk to potential victims engaging with the fraudulent site.  

This domain was flagged by 0 of 95 VirusTotal vendors as of the latest scan, indicating a low immediate detection rate despite active malicious activity. The domain is registered through Cloudflare, Inc., resolves to IP address 188.114.97.3, and holds a valid SSL certificate issued by Google Trust Services. The infrastructure and certificate suggest an attempt to appear legitimate, possibly leveraging Cloudflare's reputation to evade scrutiny. Historical data indicates this domain has not yet been widely blacklisted, increasing its potential reach to victims.  

The current status of this domain is active and under investigation, with no confirmed takedown as of this report. Technical indicators include the use of a crypto drainer, a type of malware that automates the theft of digital assets by intercepting and replacing cryptocurrency wallet addresses during transactions. Users are strongly advised to avoid interacting with this domain or any associated links. Organizations should implement network-level blocking for the IP address 188.114.97.3 and domain paidrev-coin.pages.dev. Additionally, users should verify the authenticity of any cryptocurrency-related websites through official channels and employ hardware wallet solutions to mitigate the risk of asset loss.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/183ec9d2-cdec-4b15-83db-1a0f30fd92da
- PhishDestroy: https://phishdestroy.io/domain/paidrev-coin.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/paidrev-coin.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/paidrev-coin.pages.dev/
Last updated: 2026-03-31