# exosdus-web3-io.pages.dev — MALICIOUS

> Exosdus-web3-io.pages.dev was flagged for phishing and is now offline. Learn why this domain posed a high risk and how to stay protected.

## Summary
PhishDestroy identifies exosdus-web3-io.pages.dev as a high-risk generic phishing domain. It was actively engaged in deceptive activities designed to steal sensitive user information, posing significant danger to internet users.

The domain was first registered on March 9, 2026, and resolved to the IP address 188.114.96.3. It appeared on two separate security blocklists and was flagged by 10 out of 95 security vendors on VirusTotal, confirming its malicious nature. The domain was registered through Cloudflare, Inc. and was known to serve a phishing page, which has since been taken offline as indicated by the Cloudflare-hosted warning page.

Users are advised to avoid interacting with exosdus-web3-io.pages.dev or entering any sensitive data. PhishDestroy recommends continuing to rely on updated security tools and blocklists to prevent access to such threats. As of now, the domain is offline and no longer serves phishing content, reducing immediate risk.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-03-09 13:07:02
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 188.114.96.3
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: paloma.ns.cloudflare.com sterling.ns.cloudflare.com
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 10 vendors flagged
  Vendors: ["ADMINUSLabs", "ChainPatrol", "BitDefender", "CyRadar", "ESET", "Fortinet", "G-Data", "Lionic", "Phishing Database", "Sophos"]
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "MetaMask"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cd26b-c2ec-731a-9ac8-c57e6f3c6c37.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/7ca792b6-f70e-40a4-a85e-a81a566fc1ca
- PhishDestroy: https://phishdestroy.io/domain/exosdus-web3-io.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/exosdus-web3-io.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/exosdus-web3-io.pages.dev/
Last updated: 2026-03-19