# desktop-ldgerlive-web.pages.dev — SUSPICIOUS > desktop-ldgerlive-web.pages.dev impersonates a login portal to harvest credentials. VirusTotal shows 0/95 detections. Check the full report. ## Summary PhishDestroy identifies desktop-ldgerlive-web.pages.dev as an active credential phishing campaign masquerading as a legitimate service interface. The domain is currently categorized under investigation with a preliminary risk rating of under_investigation, indicating active malicious operations may still be unfolding. Affected users risk unauthorized access to sensitive accounts if credentials are entered on this fraudulent page. This domain exhibits multiple technical indicators of compromise tied to a credential harvesting operation. The page is hosted under Cloudflare Pages (desktop-ldgerlive-web.pages.dev) resolving to IP 172.66.46.242 (Cloudflare ASN). The SSL certificate is issued by Google Trust Services, likely used to lend false legitimacy. VirusTotal currently reports 0/95 detections via leading antivirus engines as of seed c759e6, suggesting low signature-based detection at this time. The domain leverages Cloudflare’s free tier to obscure origin infrastructure and impersonate a secure login environment. No confirmed placement on major blocklists (e.g., PhishTank, OpenPhish) was evident in initial scans, increasing exposure risk. The absence of detections and blocklist entries is concerning for defenders relying on reactive measures. Given the domain’s active status and use of a trusted CDN provider, organizations and individuals should treat any interaction as potentially malicious. Users who entered credentials are advised to immediately reset passwords, enable MFA, and audit related accounts for unauthorized access. Security teams should implement DNS filtering rules targeting the IP 172.66.46.242 and domain desktop-ldgerlive-web.pages.dev while monitoring for lateral credential reuse. Credential phishing via Cloudflare Pages represents a growing trend due to low operational cost and high abuse potential. Immediate user education on domain verification and secure login practices is critical. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 172.66.46.242 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/d20346fa-7353-4056-b49d-ed0a321e07ec - PhishDestroy: https://phishdestroy.io/domain/desktop-ldgerlive-web.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/desktop-ldgerlive-web.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/desktop-ldgerlive-web.pages.dev/ Last updated: 2026-03-22