# vuthisegweka.co.za — MALICIOUS

> vuthisegweka.co.za is linked to high-risk phishing activity. Avoid interacting with this domain and stay alert to protect your data.

## Summary
PhishDestroy identifies vuthisegweka.co.za as a high-risk generic phishing threat targeting users with a fake One Drive page. This domain poses a significant risk of credential theft and data compromise.

The domain was registered recently on March 13, 2026, through Cybersmart Ltd and resolves to IP 196.41.122.245. It appears on one security blocklist and is flagged by 18 out of 95 VirusTotal vendors, confirming its malicious intent. The page title mimics legitimate cloud storage to deceive users.

Currently, the domain is taken offline, reducing immediate risk. Users should remain cautious and avoid any interaction if encountered. Continuous monitoring and blocking of this domain are recommended to prevent phishing exposure.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 200)
- Page title: One Drive

## Domain Intelligence
- Registered: 2026-03-13 01:07:02
- Registrar: Cybersmart Ltd
- Country: GB
- IP: 196.41.122.245
- IP Country: ZA
- IP City: Cape Town
- IP Org: AS36874 Cybersmart
- Nameservers: ns1.mywebserver.co.za ns2.mywebserver.co.za ns3.mywebserver.co.za
- SSL Issuer: Let's Encrypt / R12

## Detection Status
- VirusTotal: 18 vendors flagged
  Vendors: ["Abusix", "ADMINUSLabs", "alphaMountain.ai", "Certego", "Chong Lua Dao", "Cluster25", "CRDF", "CyRadar", "DNS8", "ESET", "Fortinet", "G-Data", "Lionic", "MalwareURL", "SOCRadar", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ce2d7-d4a8-7360-ba5f-b4c61ce263bc.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/700e7a61-75ce-4813-9346-d65d8684d99d
- PhishDestroy: https://phishdestroy.io/domain/vuthisegweka.co.za/
- LLM endpoint: https://phishdestroy.io/domain/vuthisegweka.co.za/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/vuthisegweka.co.za/
Last updated: 2026-03-19