# advertising-account-activity-dashboard-b1y.pages.dev — MALICIOUS

> Warning: advertising-account-activity-dashboard-b1y.pages.dev was flagged for credential phishing. Avoid entering personal info; the domain is now offline.

## Summary
PhishDestroy identifies advertising-account-activity-dashboard-b1y.pages.dev as a high-risk credential phishing domain designed to steal user credentials. This type of threat is particularly dangerous because it impersonates legitimate services to deceive victims into revealing sensitive account information, potentially leading to financial loss or identity theft.

The domain was registered on March 3, 2026, through Cloudflare, Inc., and resolved to IP address 172.66.44.76. It was flagged by Google Safe Browsing for social engineering tactics and detected by 11 out of 95 security vendors on VirusTotal. This domain appeared on at least one security blocklist and was subsequently taken offline, indicating active threat mitigation efforts.

Users should never enter login credentials or personal data on this domain or similar suspicious URLs. If you suspect you interacted with this phishing site, immediately change your passwords and enable multi-factor authentication where possible. Always verify website legitimacy by checking URLs carefully and use updated security tools to block phishing attempts.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-03-03 01:00:02
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.44.76
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: clayton.ns.cloudflare.com romina.ns.cloudflare.com
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 11 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "CyRadar", "DNS8", "Emsisoft", "Fortinet", "Google Safebrowsing", "Gridinsoft", "Netcraft", "Sophos", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cb10e-c34d-778f-b353-fb28cace74e1.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/68efe529-8cc3-4d11-9ff3-93c6f0e03021
- PhishDestroy: https://phishdestroy.io/domain/advertising-account-activity-dashboard-b1y.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/advertising-account-activity-dashboard-b1y.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/advertising-account-activity-dashboard-b1y.pages.dev/
Last updated: 2026-03-19