# fqaopense.pages.dev — SUSPICIOUS

> PhishDestroy identifies fqaopense.pages.dev as a Microsoft365 phishing page with 0/95 VirusTotal detections.

## Summary
PhishDestroy identifies an active Microsoft365 phishing page hosted at fqaopense.pages.dev that attempts to harvest user login credentials under the guise of a fake Microsoft service portal.


This domain was flagged by PhishDestroy analysts after VT engines returned zero detections out of 95 scanners on 2024-03-18. The site is registered through Cloudflare, Inc., resolving to IP address 172.66.47.80 and protected by a Google Trust Services SSL certificate issued 2024-03-14. It impersonates Microsoft Office 365 login workflows to trick visitors into surrendering corporate or personal account credentials.


If you visited fqaopense.pages.dev DO NOT enter any credentials. Close the browser tab immediately, clear cached passwords for Microsoft domains, and scan your device with updated antivirus software. Report the domain to PhishDestroy and your IT security team to help block future attacks.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.47.80

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/f71014e6-1ac5-43c2-a0ef-f34f2b48d365
- PhishDestroy: https://phishdestroy.io/domain/fqaopense.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/fqaopense.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/fqaopense.pages.dev/
Last updated: 2026-03-25