# div-terzoro-en.pages.dev — SUSPICIOUS

> Domain div-terzoro-en.pages.dev linked to Google Trust Services SSL hosts a generic phishing scam detected by 0 of 95 VirusTotal vendors.

## Summary
PhishDestroy identifies div-terzoro-en.pages.dev as a domain currently hosting a generic phishing campaign under active investigation.

This domain was flagged by 0 of 95 VirusTotal vendors, registered through Cloudflare, Inc., and resolves to IP address 188.114.96.3. Security telemetry shows no detections yet despite the suspicious nature of the content, suggesting either a zero-day deployment or evasion tactics. No brand names are explicitly impersonated in the available intelligence, but the structure mirrors known phishing lures that harvest user credentials or payment details. The absence of detections on VirusTotal may indicate a newly registered resource with low historical reputation.

The current status remains under investigation, but the lack of antivirus flags and presence on Cloudflare’s platform should not be misconstrued as safety. Users accessing this domain risk exposure to credential theft, malware download, or social engineering attacks. It is recommended that all visitors block access to div-terzoro-en.pages.dev immediately. Organizations are advised to update firewall rules, email filters, and browser blocklists using the IP 188.114.96.3 and domain string as hard blocks. Monitor network traffic for outbound connections to this IP. If credentials or sensitive data were entered, initiate password resets, enable MFA, and scan local systems for compromise using up-to-date endpoint protection.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/div-terzoro-en.pages.dev
- PhishDestroy: https://phishdestroy.io/domain/div-terzoro-en.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/div-terzoro-en.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/div-terzoro-en.pages.dev/
Last updated: 2026-04-03