# gmpays.com — SUSPICIOUS

> gmpays.com is suspected of phishing attempts. Users should avoid sharing personal info and monitor accounts closely until further updates.

## Summary
PhishDestroy identifies gmpays.com as an active domain under investigation for generic phishing threats, with risk level currently marked as under investigation.

The domain was registered in early 2019 via GoDaddy Online Services Cayman Islands Ltd and resolves to IP 172.66.161.57. Despite no detections on VirusTotal scans, the domain’s infrastructure and suspicious activity warrant caution.

Users are advised to refrain from interacting with gmpays.com or submitting sensitive data. Monitoring and mitigation efforts continue as the investigation progresses.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP 200)
- Page title: gmpays.com

## Domain Intelligence
- Registered: 2019-02-27 14:00:12
- Registrar: GoDaddy Online Services Cayman Islands Ltd.
- IP: 172.66.161.57
- Nameservers: tina.ns.cloudflare.com vin.ns.cloudflare.com

## Detection Status
- VirusTotal: 0 vendors flagged
  Vendors: []
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Screenshot: https://i.ibb.co/27VFYwyJ/5425cbbbc1f3.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/e8d4580f-5b44-41ae-86a9-ba3e00e1f5aa
- PhishDestroy: https://phishdestroy.io/domain/gmpays.com/
- LLM endpoint: https://phishdestroy.io/domain/gmpays.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/gmpays.com/
Last updated: 2026-03-19