# learn-coinku-en.pages.dev — MALICIOUS

> Avoid learn-coinku-en.pages.dev—flagged for phishing and now offline. Do not enter personal data or credentials on this site.

## Summary
PhishDestroy identifies learn-coinku-en.pages.dev as a high-risk generic phishing domain designed to deceive users into divulging sensitive information. Such phishing threats pose significant risks including identity theft, financial loss, and unauthorized access to personal accounts, making awareness and caution critical.

The domain was registered on February 21, 2026, through Cloudflare, Inc., and resolves to the IP address 172.66.47.87. It was detected on three security blocklists and flagged by 15 out of 95 VirusTotal security vendors, indicating multiple independent detections of malicious activity. Currently, the domain has been taken offline, reducing immediate risk but underscoring the importance of vigilance against similar threats.

Users are strongly advised to avoid interacting with this domain or providing any personal information if encountered. Employ updated antivirus tools, enable phishing filters on browsers, and report suspicious links to security teams or platforms like PhishDestroy. Staying informed and cautious remains the best defense against evolving phishing campaigns.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.47.87
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["henrik.ns.cloudflare.com", "olga.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 15 vendors flagged
  Vendors: ["ADMINUSLabs", "ChainPatrol", "Criminal IP", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Kaspersky", "Lionic", "Phishing Database", "Sophos", "VIPRE"]
- Google Safe Browsing: clean
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ce491-92a3-764e-91cc-0e81fe899c9e.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/b2a2fbb6-391a-41a6-8b75-f8c38e625530
- PhishDestroy: https://phishdestroy.io/domain/learn-coinku-en.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/learn-coinku-en.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/learn-coinku-en.pages.dev/
Last updated: 2026-03-19