# testfixpanel.pages.dev — SUSPICIOUS

> testfixpanel.pages.dev is a Cloudflare-hosted domain pushing fake tech support scams. Resolves to 172.66.47.4 and has 0/95 VirusTotal detections.

## Summary
PhishDestroy identifies testfixpanel.pages.dev as an ACTIVE fake tech support scam domain currently under investigation for phishing. The page presents itself as a legitimate Microsoft or Apple support portal but delivers fraudulent pop-ups claiming the user’s device is infected. Users who call the listed “support” number are directed to install remote-access tools, enabling credential theft and financial fraud. This domain should be treated as HIGH RISK until proven otherwise.

This domain was flagged with a generic phishing payload on seed 5cac5d. Intelligence shows it is registered via Cloudflare, Inc., resolves to IP 172.66.47.4, and currently shows zero detections out of 95 VirusTotal engines. The SSL certificate is issued by Google Trust Services, indicating basic encryption but not legitimacy. No public blocklist entries were found at the time of analysis, and the domain age remains undetermined due to Cloudflare’s privacy protection masking registration dates.

Mitigation for this fake tech support scam is immediate: block testfixpanel.pages.dev at the network and DNS levels. Users must avoid clicking any pop-ups, banners, or in-page alerts claiming system infection or support urgency. If exposed, do not call any listed numbers; instead, close the browser tab, clear cookies, and run a full antivirus scan. Report the domain to your organization’s security team and file a complaint with the FTC via reportfraud.ftc.gov to aid in takedown efforts.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.47.4

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/37cc31c1-4378-49cc-a3ae-d20f149d7fe9
- PhishDestroy: https://phishdestroy.io/domain/testfixpanel.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/testfixpanel.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/testfixpanel.pages.dev/
Last updated: 2026-03-22