# viada.xyz — SUSPICIOUS

> Viada.xyz shows signs of phishing activity. Risk level under investigation. Avoid interacting with this domain until further analysis is completed.

## Summary
PhishDestroy identifies viada.xyz as an active phishing threat currently under investigation. Although the domain has not yet been flagged by any security vendor, its classification as generic phishing and recent creation date contribute to a heightened risk level. Users should exercise caution when encountering this domain.

The domain viada.xyz was registered on January 30, 2026, through the registrar PDR Ltd. d/b/a PublicDomainRegistry.com and resolves to IP address 172.67.171.214. Despite a clean VirusTotal scan with zero detections across 95 engines, its recent registration and generic phishing association warrant scrutiny. The lack of current vendor detections suggests the campaign is either newly emerged or evading standard detection mechanisms. PhishDestroy continues to monitor related infrastructure and behavioral indicators tied to this domain.

To mitigate potential threats from viada.xyz, users and organizations are advised to avoid visiting the domain or interacting with any unsolicited communications originating from it. Security teams should update monitoring tools to flag any traffic involving this domain and consider blocking it preemptively. Since the campaign remains active and under evaluation, vigilance and proactive defensive measures remain essential as further intelligence is gathered.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: dead (HTTP 0)
- Page title: Axiom

## Domain Intelligence
- Registered: 2026-03-07 03:07:01
- Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com
- Country: IN
- IP: 172.67.171.214
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["may.ns.cloudflare.com", "sevki.ns.cloudflare.com"]
- SSL Issuer: none

## Detection Status
- VirusTotal: 2 vendors flagged
  Vendors: ["Gridinsoft", "SOCRadar"]
- Google Safe Browsing: clean
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cc5e9-129e-725f-b695-ff86f050eaa0.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/67fe7474-0b56-4537-ba7b-ec7d34db45d5
- Wayback Machine: https://web.archive.org/web/https://viada.xyz
- PhishDestroy: https://phishdestroy.io/domain/viada.xyz/
- LLM endpoint: https://phishdestroy.io/domain/viada.xyz/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/viada.xyz/
Last updated: 2026-03-19