# meteora-ag.net — SUSPICIOUS > PhishDestroy identifies meteora-ag.net as an active phishing domain using Google Trust Services SSL. VirusTotal 0/95 detections. Check the full report. ## Summary meteora-ag.net is an active phishing domain posing as a legitimate entity to harvest sensitive user credentials and financial information. This domain leverages a valid SSL certificate issued by Google Trust Services to establish false credibility, tricking victims into believing the site is secure. The absence of detections on VirusTotal (0/95 engines) underscores the stealthy nature of this campaign, as threat intelligence platforms have yet to flag the infrastructure. The domain resolves to IP 188.114.96.3 and was registered through Name.com, Inc. on July 10, 2025, indicating a recent and hastily deployed operation designed to evade detection. Technical analysis reveals multiple red flags consistent with phishing infrastructure. The domain’s creation date (July 10, 2025) is highly suspicious, as threat actors often register domains shortly before launching campaigns to minimize exposure. The SSL certificate, while issued by a trusted provider, does not corroborate the domain’s legitimacy, as Google Trust Services does not validate the domain’s ownership or business authenticity. The IP address (188.114.96.3) is associated with hosting providers known for tolerating malicious activity, further increasing the risk of this domain being weaponized. Despite its recent registration, the domain has yet to be added to public blocklists, leaving users and organizations vulnerable to exploitation. Users who have visited meteora-ag.net should immediately cease any interaction with the site and avoid entering credentials or sensitive information. If credentials were submitted, change passwords immediately and enable multi-factor authentication on all associated accounts. Report the domain to your IT security team or relevant authorities, such as the Anti-Phishing Working Group (APWG) or your national cybercrime unit. Organizations should consider blocking the domain and IP address (188.114.96.3) at the network level to prevent further infections. Monitor accounts linked to this domain for unusual activity, as threat actors may retain access to compromised credentials for follow-on attacks. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2025-07-10 18:08:35 - Registrar: Name.com, Inc. - IP: 188.114.96.3 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/892d24c5-ca4a-4d89-9e73-03c33fa58a33 - PhishDestroy: https://phishdestroy.io/domain/meteora-ag.net/ - LLM endpoint: https://phishdestroy.io/domain/meteora-ag.net/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/meteora-ag.net/ Last updated: 2026-03-25