# armnet.pages.dev — SUSPICIOUS > armnet.pages.dev detected for generic phishing via Cloudflare Pages; resolves to 172.66.44.247. Users should avoid clicking links or submitting data. ## Summary PhishDestroy identifies armnet.pages.dev as a domain actively engaged in generic phishing activities as of the latest investigation cycle. The domain remains in an 'under_investigation' status, indicating ongoing scrutiny by threat intelligence teams. No specific brand impersonation has been reported at this time; however, the generic nature of the phishing threat suggests potential targeting of unsuspecting users through deceptive web content or credential harvesting schemes. This domain was flagged by 0 of 95 VirusTotal vendors during automated scanning, indicating that signature-based detection mechanisms have not yet flagged its infrastructure. Registered through Cloudflare, Inc., armnet.pages.dev resolves to IP address 172.66.44.247 and operates under a Google Trust Services SSL certificate, which may lend an air of legitimacy to unsuspecting visitors. The absence of blocklist entries and low detection rate suggests this threat may be newly active or employing evasion tactics to bypass initial screening layers. As the domain remains active and under investigation, PhishDestroy recommends exercising extreme caution when encountering armnet.pages.dev. Users should avoid clicking any links or downloading files associated with this domain. Organizations are advised to block IP 172.66.44.247 and the domain armnet.pages.dev at the network perimeter. Additionally, users should verify the legitimacy of any unexpected communications purporting to originate from this domain, especially those soliciting sensitive information. Continuous monitoring is recommended, as this domain may escalate in threat sophistication as detection efforts intensify. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 172.66.44.247 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/armnet.pages.dev - PhishDestroy: https://phishdestroy.io/domain/armnet.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/armnet.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/armnet.pages.dev/ Last updated: 2026-04-03