# extnsion-metasck.pages.dev — MALICIOUS

> extnsion-metasck.pages.dev flagged for social engineering phishing. Avoid this domain and stay protected. Learn more and secure your data now.

## Summary
PhishDestroy identifies extnsion-metasck.pages.dev as a high-risk phishing domain designed to deceive users into revealing sensitive information. This site was flagged for social engineering tactics and has appeared on multiple security blocklists, indicating a clear threat to online safety. The domain was created recently, which often correlates with fraudulent activities, and it is currently offline to prevent further harm.

Phishing sites like extnsion-metasck.pages.dev typically mimic legitimate services or platforms to trick visitors into submitting personal data such as login credentials, financial information, or other private details. This domain was flagged by Google Safe Browsing for social engineering, meaning it likely attempted to impersonate trusted entities or manipulate users into unsafe actions. The domain resolved to an IP address associated with Cloudflare, a common hosting provider, but its association with Cloudflare does not guarantee legitimacy.

If you have visited extnsion-metasck.pages.dev, it is crucial to remain vigilant. Immediately change any passwords or sensitive information you may have entered on the site. Enable multi-factor authentication where possible and monitor your accounts for unusual activity. Users should also run a comprehensive antivirus scan and consider reporting the incident to their organization's IT security team or relevant authorities. Staying informed and cautious helps mitigate risks from deceptive domains like this one.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.46.220
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["joan.ns.cloudflare.com", "henry.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["ADMINUSLabs", "ChainPatrol", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Fortinet", "G-Data", "Google Safebrowsing", "Kaspersky", "Lionic", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019b5894-9b89-721d-9d76-df331a2a811e.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/ab91ada7-cace-4f42-a7fc-3d3dd620de79
- PhishDestroy: https://phishdestroy.io/domain/extnsion-metasck.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/extnsion-metasck.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/extnsion-metasck.pages.dev/
Last updated: 2026-03-19