# base-terminal.pages.dev — MALICIOUS

> base-terminal.pages.dev is linked to potential phishing activity. Stay cautious and verify before interacting. Check latest updates on this domain now.

## Summary
PhishDestroy has identified base-terminal.pages.dev as a domain potentially involved in generic phishing activities. While currently classified under investigation, the domain exhibits traits often associated with phishing campaigns, warranting close monitoring and further analysis to confirm malicious intent using unique seed 2033d2.

This domain is registered via Cloudflare, Inc., a popular registrar that often hosts legitimate and malicious sites alike. It resolves to the IP address 188.114.97.3. Despite no detections from VirusTotal’s comprehensive scan, this lack of flags does not exclude the possibility of phishing, as new or low-volume threats sometimes evade immediate detection. The domain's structure and hosting environment suggest it could be used to mimic legitimate services or intercept user credentials.

Currently, base-terminal.pages.dev remains active and under scrutiny. PhishDestroy advises users and administrators to exercise caution when encountering this domain and to stay updated with ongoing investigations. Monitoring network traffic and employing layered defenses can help mitigate risks while further threat intelligence is gathered and verified.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP ?)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-03-06 11:07:01
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 188.114.97.3
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: jewel.ns.cloudflare.com kip.ns.cloudflare.com
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["ADMINUSLabs", "BitDefender", "CyRadar", "ESET", "Emsisoft", "Fortinet", "G-Data", "Google Safebrowsing", "Lionic", "Netcraft", "Phishing Database", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "MetaMask"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cc27c-ee3d-7528-a35e-2857b1b18056.png
- Cloudflare Radar: https://radar.cloudflare.com/domains/base-terminal.pages.dev
- Wayback Machine: https://web.archive.org/web/https://base-terminal.pages.dev
- PhishDestroy: https://phishdestroy.io/domain/base-terminal.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/base-terminal.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/base-terminal.pages.dev/
Last updated: 2026-03-19