# ad-account-detection-system-hub.pages.dev — MALICIOUS

> ad-account-detection-system-hub.pages.dev was flagged for credential phishing and is now offline. Learn how this scam works and what to do if you visited.

## Summary
PhishDestroy identifies ad-account-detection-system-hub.pages.dev as a high-risk credential phishing site designed to steal sensitive login information. This domain was flagged by Google Safe Browsing for social engineering and appears on multiple security blocklists, posing a significant danger to users who may unknowingly enter their credentials.

This phishing scam typically mimics legitimate account detection or verification systems to trick users into submitting their usernames and passwords. The domain was registered through Cloudflare and resolved to an IP address known for hosting suspicious content. By impersonating trusted services, it aims to harvest login credentials for malicious use.

Although the domain is currently offline, anyone who visited the site should immediately change any passwords they may have entered and enable two-factor authentication where possible. Users are advised to remain vigilant for suspicious emails or messages referencing this or similar domains and report any fraudulent activity to their service providers.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-03-03 01:00:02
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 188.114.97.3
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: algin.ns.cloudflare.com sara.ns.cloudflare.com
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 13 vendors flagged
  Vendors: ["ADMINUSLabs", "BitDefender", "DNS8", "Emsisoft", "Fortinet", "G-Data", "Google Safebrowsing", "Gridinsoft", "Lionic", "Netcraft", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cb118-5a08-73ee-b9b1-1b4d2b53cd0d.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/722f2cf3-e542-4d29-9833-ba5558014fff
- Wayback Machine: https://web.archive.org/web/https://ad-account-detection-system-hub.pages.dev
- PhishDestroy: https://phishdestroy.io/domain/ad-account-detection-system-hub.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/ad-account-detection-system-hub.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ad-account-detection-system-hub.pages.dev/
Last updated: 2026-03-19