# meta-cycle-c1i.pages.dev — MALICIOUS

> meta-cycle-c1i.pages.dev is flagged as a phishing threat. Avoid interacting with it and ensure your device is protected from social engineering attacks.

## Summary
PhishDestroy identifies meta-cycle-c1i.pages.dev as a high-risk phishing domain designed to deceive users into revealing sensitive information. Classified under generic phishing, this domain poses significant danger by leveraging social engineering tactics that trick users into compromising their credentials or personal data.

The domain was registered recently on February 21, 2026, through Cloudflare, Inc., which provides anonymity and hosting services. It resolved to IP address 172.66.47.79 and was flagged by Google Safe Browsing for social engineering. Additionally, 14 out of 95 security engines on VirusTotal detected malicious activity associated with this domain, and it appeared on at least one security blocklist. The Cloudflare-hosted landing page displayed a warning indicating a suspected phishing site, confirming its malicious intent.

Currently, meta-cycle-c1i.pages.dev is offline and inaccessible, mitigating immediate risk to users. Users are urged not to visit or interact with this domain if encountered elsewhere and to maintain robust security measures, including up-to-date antivirus software and phishing filters. PhishDestroy recommends vigilance and reporting suspicious domains to prevent exposure to phishing attacks linked to this site.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.47.79
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["keaton.ns.cloudflare.com", "brenda.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["Criminal IP", "BitDefender", "CyRadar", "ESET", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Google Safebrowsing", "Kaspersky", "Lionic", "Phishing Database", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ce391-0156-74ae-a953-d1724ea95dbb.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/78c56531-690e-4d12-a44b-6c5025be58b0
- PhishDestroy: https://phishdestroy.io/domain/meta-cycle-c1i.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/meta-cycle-c1i.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/meta-cycle-c1i.pages.dev/
Last updated: 2026-03-19