# meta-restoredesk-io.onrender.com — MALICIOUS

> Meta-restoredesk-io.onrender.com is flagged for high phishing risk. Avoid sharing personal info and stay alert against social engineering tactics.

## Summary
PhishDestroy identifies meta-restoredesk-io.onrender.com as a high-risk phishing domain. Classified under generic phishing threats, it aims to deceive users into revealing sensitive data.

The domain resolves to IP 216.24.57.7 and is registered via Render Services Inc. It is flagged by Google Safe Browsing for social engineering and appears on multiple security blocklists. Additionally, 16 out of 95 VirusTotal vendors mark it suspicious.

Currently active, this domain poses a credible threat. Users should exercise caution and avoid interaction. PhishDestroy recommends blocking and monitoring for further phishing attempts linked to this infrastructure (seed: aecb07).

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 503)
- Target brand: MetaMask
- Page title: Metamask | Support

## Domain Intelligence
- Registered: 2026-03-08 19:07:01
- Registrar: Render Services Inc.
- Country: US
- IP: 216.24.57.7
- IP Country: US
- IP City: San Francisco
- IP Org: AS397273 Render
- Nameservers: NS_NOT_FOUND
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 17 vendors flagged
  Vendors: ["ADMINUSLabs", "ChainPatrol", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Emsisoft", "Fortinet", "G-Data", "Google Safebrowsing", "Kaspersky", "Lionic", "Netcraft", "Sophos", "Trustwave", "VIPRE", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "MetaMask"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ccea1-819b-703b-8748-b2521769c315.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/cbb60fa6-61f3-49e3-9483-fe80d0df3eda
- Wayback Machine: https://web.archive.org/web/https://meta-restoredesk-io.onrender.com
- PhishDestroy: https://phishdestroy.io/domain/meta-restoredesk-io.onrender.com/
- LLM endpoint: https://phishdestroy.io/domain/meta-restoredesk-io.onrender.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/meta-restoredesk-io.onrender.com/
Last updated: 2026-03-19