# tr.wwwpadisahbet.vip — MALICIOUS

> tr.wwwpadisahbet.vip is a high-risk phishing domain now offline. Avoid interaction and verify site legitimacy before sharing personal info.

## Summary
PhishDestroy identifies tr.wwwpadisahbet.vip as a high-risk generic phishing domain targeting users with fraudulent content mimicking a betting platform. The site’s page title "Padişahbet | Güvenilir Bahis Deneyiminin Yeni Adresi — Padişahbet Giriş" suggests an attempt to deceive visitors into trusting the site for betting-related activities. Such phishing attempts aim to steal sensitive user credentials or financial information, posing significant risks to victims.

The domain was registered through NiceNIC International Group Co., Limited on March 12, 2026, and resolved to the IP address 188.114.97.3. It has been flagged on one security blocklist and detected by 10 out of 95 security vendors on VirusTotal, confirming its malicious nature. The domain’s infrastructure and hosting details indicate a setup typical of phishing operations designed to impersonate legitimate services and capture user data.

Currently, tr.wwwpadisahbet.vip is offline, mitigating immediate risk; however, users should remain vigilant against similar phishing attempts. It is recommended to avoid visiting suspicious URLs, verify website authenticity through trusted sources, and employ up-to-date security solutions. PhishDestroy advises users to report any suspicious activity related to this domain and refrain from sharing personal or financial information on unverified sites.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Padişahbet | Güvenilir Bahis Deneyiminin Yeni Adresi — Padişahbet Giriş

## Domain Intelligence
- Registered: 2026-03-12 13:07:01
- Registrar: NiceNIC International Group Co., Limited
- Country: HK
- IP: 188.114.97.3
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["ainsley.ns.cloudflare.com", "lamar.ns.cloudflare.com"]
- SSL Issuer: Let's Encrypt / E8

## Detection Status
- VirusTotal: 10 vendors flagged
  Vendors: ["ADMINUSLabs", "CRDF", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Gridinsoft", "Kaspersky", "OpenPhish", "SOCRadar", "Sophos"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ce223-8c54-77e8-90f8-1effc7a1faf9.png
- PhishDestroy: https://phishdestroy.io/domain/tr.wwwpadisahbet.vip/
- LLM endpoint: https://phishdestroy.io/domain/tr.wwwpadisahbet.vip/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/tr.wwwpadisahbet.vip/
Last updated: 2026-03-19