# qrandpasha-girisi.com — SUSPICIOUS

> qrandpasha-girisi.com is a phishing domain currently offline. Learn why it was flagged and how to protect yourself from potential scams.

## Summary
PhishDestroy identifies qrandpasha-girisi.com as a low-risk generic phishing domain. While the threat level is currently considered low, phishing domains like this remain a concern because they attempt to deceive users into divulging sensitive information, potentially leading to identity theft or financial loss.

This domain was registered recently on February 27, 2026, through NiceNIC International Group Co., Limited. It resolved to the IP address 104.21.58.230 and was found on one security blocklist. VirusTotal analysis shows that only 2 out of 95 security vendors flagged it. The domain is currently offline, suggesting possible takedown or abandonment after detection. The page title "Just a moment..." indicates it might have been used to delay or mask malicious activity.

Users should remain vigilant and avoid interacting with suspicious links or domains, including qrandpasha-girisi.com, even if they are offline. It is advisable to keep security software updated, verify URLs carefully, and report any phishing attempts to authorities or security platforms like PhishDestroy. Staying informed and cautious helps mitigate risks posed by emerging phishing threats.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: dead (HTTP 403)
- Page title: Just a moment...

## Domain Intelligence
- Registered: 2026-02-27 05:00:02
- Expires: 2027-02-23 00:00:00
- Registrar: NiceNIC International Group Co., Limited
- Country: HK
- IP: 104.21.58.230
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: evelyn.ns.cloudflare.com peyton.ns.cloudflare.com
- SSL Issuer: none

## Detection Status
- VirusTotal: 2 vendors flagged
  Vendors: ["Fortinet", "SOCRadar"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://i.ibb.co/rR1ZsSj2/1220f229f83a.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/0869e4e7-8994-40e6-aa34-985d91fa4338
- PhishDestroy: https://phishdestroy.io/domain/qrandpasha-girisi.com/
- LLM endpoint: https://phishdestroy.io/domain/qrandpasha-girisi.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/qrandpasha-girisi.com/
Last updated: 2026-03-19