# xtweep.com — SUSPICIOUS

> xtweep.com is flagged for generic phishing with low risk. Exercise caution and avoid sharing sensitive info on this active domain.

## Summary
PhishDestroy identifies xtweep.com as a domain associated with generic phishing activities, currently assessed at a low risk level. The domain was registered recently, on January 26, 2025, which can be indicative of potential malicious intent as threat actors often use fresh domains to evade detection. Although the threat level is low, vigilance is advised when interacting with this website.

The domain xtweep.com is registered through Ultahost, Inc. and resolves to the IP address 192.142.10.138. VirusTotal analysis shows that 2 out of 95 security vendors have flagged this domain, suggesting limited but noteworthy suspicion. The infrastructure details imply the domain is hosted on shared or potentially low-reputation hosting services that are commonly abused for phishing campaigns.

Currently, xtweep.com remains active and should be treated with caution. Users and organizations are recommended to avoid inputting any sensitive information on this site and to monitor for any phishing attempts originating from it. Security teams should consider blocking or flagging this domain within their defensive tools to mitigate potential exposure. Continuous monitoring and further investigation are advised as the domain’s activities evolve.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP 200)
- Page title: Install Xtweep

## Domain Intelligence
- Registered: 2025-01-26 09:18:14
- Registrar: Ultahost, Inc.
- Country: US
- IP: 192.142.10.138
- Nameservers: ns1.ultahost.com ns2.ultahost.com ns3.ultahost.com ns4.ultahost.com

## Detection Status
- VirusTotal: 2 vendors flagged
  Vendors: ["Fortinet", "Seclookup"]
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Screenshot: https://i.ibb.co/prrL3TmV/7f295acdb592.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/e10fdbc1-391c-4004-be39-8f7e13ce3019
- PhishDestroy: https://phishdestroy.io/domain/xtweep.com/
- LLM endpoint: https://phishdestroy.io/domain/xtweep.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/xtweep.com/
Last updated: 2026-03-19