# trexosuite.wixstudio.com — SUSPICIOUS > trexosuite.wixstudio.com impersonates a legitimate service to steal login credentials. Only 0 out of 95 VirusTotal engines flagged it. Check the full report. ## Summary PhishDestroy identifies trexosuite.wixstudio.com as an active credential-theft portal designed to harvest user login details under false pretenses. This Wix-hosted subdomain mimics a trusted platform, tricking visitors into entering sensitive information that is immediately harvested by attackers. The domain leverages the trust associated with Wix’s domain infrastructure to appear legitimate while operating as a malicious endpoint for phishing campaigns targeting both personal and corporate accounts. Users who interact with this page risk exposing usernames, passwords, and other authentication data to cybercriminals. This domain was flagged by PhishDestroy after analysis revealed a complete absence of detection on VirusTotal, with 0 out of 95 antivirus engines identifying the threat as of the latest scan. The domain resolves to IP address 34.144.206.118 and is secured with a valid Let’s Encrypt SSL certificate, which further enhances its deceptive appearance. While Wix domains are typically trusted, this particular subdomain (trexosuite.wixstudio.com) has been flagged for malicious content and is currently under investigation for hosting phishing materials. The lack of early detection underscores the sophistication of the campaign and the need for proactive monitoring by both users and security platforms. If you have visited trexosuite.wixstudio.com or entered any information on the site, immediately change your password on any accounts where you reused the same login details. Scan your device with updated antivirus software to check for malware or keyloggers that may have been installed during your visit. Avoid clicking any links or downloading files from this domain in the future. Report the incident to your organization’s security team if this occurred on a work device or account. For additional protection, enable multi-factor authentication (MFA) on all critical accounts to mitigate the risk of unauthorized access even if credentials are compromised. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: REGISTRAR_NOT_FOUND - IP: 34.144.206.118 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/trexosuite.wixstudio.com - PhishDestroy: https://phishdestroy.io/domain/trexosuite.wixstudio.com/ - LLM endpoint: https://phishdestroy.io/domain/trexosuite.wixstudio.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/trexosuite.wixstudio.com/ Last updated: 2026-04-08