# web3-trexzr-login.gitbook.io — MALICIOUS

> Discover why web3-trexzr-login.gitbook.io is a high-risk phishing site targeting your hardware wallet login info. Stay protected with PhishDestroy.

## Summary
PhishDestroy identifies web3-trexzr-login.gitbook.io as a dangerous credential phishing site impersonating the official Trezor login page. Users risk exposing their sensitive wallet information if they enter details here.

This scam site mimics the Trezor hardware wallet login interface to trick visitors into submitting their private credentials. It resolves to an IP linked with Cloudflare, masking its true location, and has been flagged by multiple security vendors, highlighting its malicious intent.

If you have visited this domain, immediately change your Trezor passwords and check for unauthorized activity. Avoid interacting with suspicious links and report the site to cybersecurity platforms to prevent further harm.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Target brand: Trezor
- Page title: Trezor @Login - Connecting Safe. | Hardware Wallet (Official)

## Domain Intelligence
- Registered: 2014-03-30 06:09:09
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 104.18.40.47
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: dahlia.ns.cloudflare.com hugh.ns.cloudflare.com
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Emsisoft", "Fortinet", "G-Data", "Kaspersky", "Lionic", "Netcraft", "OpenPhish", "Sophos", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cd2a6-1e9f-726c-a606-420ec2a10ef5.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/9d1a70c4-8466-4fdb-bfcc-e6ff4abe50cf
- PhishDestroy: https://phishdestroy.io/domain/web3-trexzr-login.gitbook.io/
- LLM endpoint: https://phishdestroy.io/domain/web3-trexzr-login.gitbook.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/web3-trexzr-login.gitbook.io/
Last updated: 2026-03-19