# meta-sphere-641.pages.dev — MALICIOUS

> Discover the safety status of meta-sphere-641.pages.dev. Learn why this high-risk phishing domain is offline and how to protect yourself.

## Summary
PhishDestroy identifies meta-sphere-641.pages.dev as a high-risk phishing domain that was taken offline after being flagged for malicious activity. Phishing sites like this are designed to deceive users by pretending to be trustworthy, aiming to steal sensitive information such as passwords or financial details. Users encountering such domains risk exposing their personal data to cybercriminals.

This phishing domain was registered recently through Cloudflare, Inc. and resolved to an IP address known for hosting potentially harmful content. The domain was detected on one security blocklist and flagged by multiple security vendors, indicating coordinated recognition of the threat. Typically, these sites mimic legitimate services or platforms, enticing visitors to submit confidential information under false pretenses.

If you have visited meta-sphere-641.pages.dev, it is recommended to immediately change any passwords that may have been entered and enable two-factor authentication where possible. Running a full antivirus scan and monitoring your financial accounts for suspicious activity is also advisable. Staying vigilant and verifying website authenticity before sharing sensitive data is essential to avoid falling victim to such scams.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.47.113
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["josephine.ns.cloudflare.com", "nico.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["ADMINUSLabs", "Criminal IP", "BitDefender", "CyRadar", "ESET", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Kaspersky", "Lionic", "Phishing Database", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019bbbd0-622f-74dd-8562-e0dddf566409.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/74a7fca3-767d-47c2-a833-c637dcbb7f9d
- PhishDestroy: https://phishdestroy.io/domain/meta-sphere-641.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/meta-sphere-641.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/meta-sphere-641.pages.dev/
Last updated: 2026-03-19