# cyberphish.tanmay.pro — MALICIOUS

> Examine cyberphish.tanmay.pro, an active high-risk phishing domain flagged by multiple security vendors.

## Summary
PhishDestroy identifies cyberphish.tanmay.pro as an active domain associated with a high-level generic phishing threat. The domain is designed to deceive users into divulging sensitive information by mimicking legitimate services or interfaces. Due to its nature, it poses significant risk to individuals and organizations, who may suffer financial loss or data breaches if they interact with it.

Technical analysis shows that cyberphish.tanmay.pro resolves to IP address 103.86.177.98, a hosting provider often linked to malicious activity. VirusTotal scans flag this domain by 13 out of 95 security vendors, indicating a recognized threat consensus in the cybersecurity community. The use of a subdomain under tanmay.pro suggests possible hosting on a domain that might be less regulated or monitored. The page title directly matches the domain name, a common tactic to maintain deceptive consistency.

Currently, cyberphish.tanmay.pro remains active and should be treated with caution. Users are strongly advised not to enter any personal or financial information on this site. Network defenders should consider blocking access to this domain and monitoring related traffic. Continuous monitoring and threat intelligence sharing are recommended to mitigate potential impacts stemming from this phishing infrastructure.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 526)
- Page title: cyberphish.tanmay.pro

## Domain Intelligence
- Registered: 2026-03-10 13:07:01
- Registrar: REGISTRAR_NOT_FOUND
- IP: 103.86.177.98
- IP Country: IN
- IP City: Mumbai
- IP Org: AS135222 MilesWeb Internet Services Pvt Ltd
- Nameservers: NS_NOT_FOUND
- SSL Issuer: Let's Encrypt / E7

## Detection Status
- VirusTotal: 13 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "CRDF", "CyRadar", "Ermes", "Emsisoft", "Fortinet", "G-Data", "Netcraft", "Sophos", "Trustwave", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cd7ab-9fc6-7795-9c1f-19e989f4d666.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/055274d1-6484-4b6c-be88-5881e95c5c86
- PhishDestroy: https://phishdestroy.io/domain/cyberphish.tanmay.pro/
- LLM endpoint: https://phishdestroy.io/domain/cyberphish.tanmay.pro/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/cyberphish.tanmay.pro/
Last updated: 2026-03-15