# macxds.com — SUSPICIOUS

> macxds.com poses as a legitimate site but is a phishing scam. Resolves to 104.21.38.130. Avoid sharing personal data. Report immediately.

## Summary
PhishDestroy identifies macxds.com as an active phishing domain with a confirmed Google Trust SSL certificate exploiting user trust. The site resolves to IP address 104.21.38.130 and was registered on March 16, 2026 through GoDaddy.com, LLC. Despite zero detections on VirusTotal (0/95), the domain remains unlisted on major blocklists, suggesting a recently deployed attack vector leveraging Google’s certificate authority to appear authentic.  This domain was flagged under a generic phishing threat profile during a routine domain safety audit. All available intelligence points to a low-detectability, high-trust impersonation campaign targeting users expecting secure connections. The SSL certificate issued by Google Trust Services (valid and unrevoked as of latest scan) creates a deceptive facade, increasing the likelihood of successful credential harvesting or malware delivery.  Users must avoid interacting with macxds.com and report the domain to their browser providers and anti-phishing platforms. Network administrators should block traffic to 104.21.38.130 and inspect SSL handshake logs for matching certificate fingerprints. Disable automatic trust for newly registered domains with Google Trust certificates until further behavioral analysis confirms legitimacy. Monitor for typosquat variants or similar domains registered post-incident using seed f62495 for correlation.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-16 18:50:03
- Registrar: GoDaddy.com, LLC
- IP: 104.21.38.130

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/01d71750-4088-458b-b164-fc7968927b2b
- PhishDestroy: https://phishdestroy.io/domain/macxds.com/
- LLM endpoint: https://phishdestroy.io/domain/macxds.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/macxds.com/
Last updated: 2026-03-28