# extnsion-metmsk-learn.pages.dev — MALICIOUS

> extnsion-metmsk-learn.pages.dev is flagged for phishing and social engineering. Avoid this domain to protect your data and privacy.

## Summary
PhishDestroy identifies extnsion-metmsk-learn.pages.dev as a high-risk phishing domain involved in social engineering attacks targeting unsuspecting users. This domain attempts to steal sensitive information by mimicking legitimate services.

The domain was registered through Cloudflare, Inc. on February 21, 2026, and is associated with IP 172.66.44.236. It appears on multiple security blocklists and is flagged by Google Safe Browsing for social engineering, with 14 out of 95 VirusTotal vendors also marking it suspicious.

Currently, the domain is offline and inaccessible. Users are advised to avoid visiting this site or interacting with any content from it. Maintaining updated security software and exercising caution with unfamiliar links is recommended to stay protected.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.44.236
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["ernest.ns.cloudflare.com", "meera.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["ADMINUSLabs", "ChainPatrol", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Fortinet", "G-Data", "Google Safebrowsing", "Kaspersky", "Lionic", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019a7ddb-da12-767e-98b1-609ea415b36f.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/dc7e2299-a9b9-4595-91c8-923dba5f7e54
- PhishDestroy: https://phishdestroy.io/domain/extnsion-metmsk-learn.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/extnsion-metmsk-learn.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/extnsion-metmsk-learn.pages.dev/
Last updated: 2026-03-19