# jaoao.pages.dev — SUSPICIOUS

> PhishDestroy identifies jaoao.pages.dev as a fake login portal scam with 0/95 VirusTotal detections. Check the full report.

## Summary
PhishDestroy identifies jaoao.pages.dev as an active fake login portal designed to harvest user credentials. This domain poses a direct threat to individuals who may input sensitive login details, as it mimics legitimate services to deceive visitors into surrendering personal information. The site leverages Cloudflare’s infrastructure to obscure its origins while hosting malicious content on IP 172.66.44.103, which is currently unblocked by all major security vendors according to VirusTotal’s 0/95 detection ratio.

This domain was flagged by PhishDestroy’s automated analysis pipeline and is currently under investigation for hosting phishing content. Registered through Cloudflare, Inc., the domain benefits from Google Trust Services’ SSL certificate, which may temporarily lend it an air of legitimacy to unsuspecting users. Despite its recent appearance in threat feeds, the domain has yet to be added to any public blocklists, leaving it accessible to potential victims.

If you visited jaoao.pages.dev, especially if you entered any login credentials, change those passwords immediately and enable multi-factor authentication where possible. Scan your device for malware using reputable antivirus software and monitor accounts for suspicious activity. Report the domain to your IT administrator or security team if you’re on a managed network. Avoid revisiting the site entirely—block it at the network level if feasible to prevent further exposure.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.44.103

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/ffa59500-1723-40a0-89b3-92f0aa4c5211
- PhishDestroy: https://phishdestroy.io/domain/jaoao.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/jaoao.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/jaoao.pages.dev/
Last updated: 2026-04-01