# sideshift.eth-btc.pro — SUSPICIOUS

> Avoid sideshift.eth-btc.pro due to phishing risks. Do not enter personal info on this domain. Stay safe by verifying official sources.

## Summary
PhishDestroy identifies sideshift.eth-btc.pro as a low-risk generic phishing domain impersonating the legitimate SideShift.ai platform, which offers direct wallet crypto trading. The domain attempts to deceive users into divulging sensitive information, likely targeting cryptocurrency holders. Its creation in February 2026 suggests a recent attempt to exploit the growing interest in blockchain asset swaps.

From a technical standpoint, sideshift.eth-btc.pro resolves to the IP address 188.114.96.3 and is registered via NiceNIC International Group Co., Limited. The domain was flagged on one security blocklist and was detected by 2 out of 95 VirusTotal security vendors, indicating minimal but present suspicion among cybersecurity tools. The page title mimicked the genuine SideShift.ai service to enhance credibility and lure victims. This infrastructure reflects typical tactics used in phishing campaigns, such as domain spoofing and misuse of trusted brand names.

Currently, sideshift.eth-btc.pro is offline, mitigating immediate active threats. Nonetheless, users should remain cautious and avoid interacting with any variants or similar domains. PhishDestroy recommends validating URLs before entering credentials or sensitive data and relying only on official, verified platforms for cryptocurrency transactions. Continuous monitoring for related phishing attempts is advised to protect users from evolving scams.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: dead (HTTP 404)
- Page title: SideShift.ai - Direct to Wallet Trading

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Expires: 2026-09-16 00:00:00
- Registrar: NiceNIC International Group Co., Limited
- Country: HK
- IP: 188.114.96.3
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: mary.ns.cloudflare.com peyton.ns.cloudflare.com
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 2 vendors flagged
  Vendors: ["Fortinet", "SOCRadar"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019c5921-35f9-7737-a736-4ddd4c66b8f3.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/121a4e41-16a7-4234-b661-ce561c72fe18
- Wayback Machine: https://web.archive.org/web/https://sideshift.eth-btc.pro
- PhishDestroy: https://phishdestroy.io/domain/sideshift.eth-btc.pro/
- LLM endpoint: https://phishdestroy.io/domain/sideshift.eth-btc.pro/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/sideshift.eth-btc.pro/
Last updated: 2026-03-19