# neartestresolve.pages.dev — MALICIOUS

> Avoid neartestresolve.pages.dev due to high phishing risk. The site is offline, but stay vigilant and never share personal info if encountered.

## Summary
PhishDestroy identifies neartestresolve.pages.dev as a high-risk phishing domain designed to deceive users into revealing sensitive information. Although the site is currently offline, it was flagged for social engineering by Google Safe Browsing and appears on multiple security blocklists. Such domains pose serious threats to personal and financial security, often mimicking legitimate services to trick unsuspecting visitors.

This phishing domain operated by impersonating trusted entities to lure victims into submitting credentials or other private data. The domain was registered recently through Cloudflare, Inc., which sometimes is used to obscure the origin of malicious sites. Detection by 16 security vendors on VirusTotal and a zero trust score from Gridinsoft further confirm its malicious intent. Phishing campaigns like this exploit urgency or trust to steal information that can be used for identity theft or financial fraud.

If a user has visited neartestresolve.pages.dev, it is critical to avoid entering any personal information and to run a comprehensive malware and virus scan on their device. Users should monitor their accounts for suspicious activity and consider changing passwords for any services that may have been compromised. Reporting the incident to IT or security professionals helps prevent further damage. Staying informed and cautious is key to protecting oneself against evolving phishing threats like this one.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- Nameservers: ["gannon.ns.cloudflare.com", "angela.ns.cloudflare.com"]

## Detection Status
- VirusTotal: 16 vendors flagged
  Vendors: ["ADMINUSLabs", "Criminal IP", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Google Safebrowsing", "Lionic", "Phishing Database", "Sophos", "Trustwave", "VIPRE", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "MetaMask"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cd10f-fc43-7499-9f1c-8f0339e596e4.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/c6d5df0e-b9c5-4c45-8db2-b724cf7418c5
- PhishDestroy: https://phishdestroy.io/domain/neartestresolve.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/neartestresolve.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/neartestresolve.pages.dev/
Last updated: 2026-03-19