# web3-founders-hub-org.pages.dev — SUSPICIOUS > PhishDestroy flags web3-founders-hub-org.pages.dev as a live crypto scam hosted on Cloudflare. This site poses as a Web3 founders’ hub—users should avoid. ## Summary PhishDestroy identifies web3-founders-hub-org.pages.dev as an ACTIVE cryptocurrency scam page masquerading as a founder accelerator. The domain leverages Cloudflare Pages hosting to obfuscate its origin while rapidly evolving to evade detection, which is a known tactic among low-duration crypto lures. At the time of analysis, VirusTotal reported 0 detections out of 95 scanners, indicating a fledgling campaign still under the radar. The site resolves to IP 188.114.97.3 via a Let’s Encrypt SSL certificate, and its Cloudflare registrar obscures the registrant’s identity, making attribution difficult. This domain was flagged on seed c0ef35 and remains active with no confirmed listings on major blocklists or trust-score downgrades at this time. Registrant details are shielded by Cloudflare’s privacy service, and the page’s creation date falls within the last 30 days—aligning with the typical lifecycle of opportunistic crypto phishing pages. Although SSL encryption is present, the absence of Extended Validation (EV) certificates and the use of a subdomain under pages.dev further erode authenticity, a pattern consistent with fraudulent “hub” or “founder” impersonations targeting blockchain enthusiasts. Without proactive blocking, end users risk wallet drainers or credential harvesting disguised as networking opportunities. To mitigate exposure, PhishDestroy recommends blocking IP 188.114.97.3 and the domain web3-founders-hub-org.pages.dev at the network perimeter or via DNS sinkholing. Users should treat any Web3 “founder” solicitations—especially those arriving via social media or email—with heightened skepticism and verify project legitimacy through official project channels before engaging. Wallet extension users are urged to review permissions monthly and revoke any suspicious dApp connections immediately. Organizations should deploy browser isolation for crypto-curious staff and maintain up-to-date blocklists incorporating emerging Cloudflare Pages phishing pages to prevent initial access. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 188.114.97.3 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/web3-founders-hub-org.pages.dev - PhishDestroy: https://phishdestroy.io/domain/web3-founders-hub-org.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/web3-founders-hub-org.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/web3-founders-hub-org.pages.dev/ Last updated: 2026-04-03