# dor-ledgrlive-dekstop-eng.pages.dev — SUSPICIOUS

> This fake Microsoft login page (dor-ledgrlive-dekstopen-eng.pages.dev) steals credentials. Resolves to 188.114.96.3 with 0/95 VirusTotal detections.

## Summary
PhishDestroy identifies dor-ledgrlive-dekstop-eng.pages.dev as a fraudulent Microsoft credential phishing page designed to steal login details under the guise of a legitimate service.

This domain was flagged during routine monitoring and currently shows zero detections out of 95 scanners on VirusTotal according to seed 844c7c. The page resolves to IP address 188.114.96.3 and leverages Google Trust Services SSL certificates while operating through Cloudflare's registrar infrastructure. While the exact creation date remains undetermined, the combination of legitimate certificate authority validation and zero initial detections demonstrates why sophisticated phishing tactics continue to evade traditional detection methods.

If you accessed this site and entered any credentials, immediately change your Microsoft account password using Microsoft's official password reset portal. Scan your device with updated antivirus software and enable multi-factor authentication on all critical accounts. Consider revoking any sensitive permissions granted to unknown applications during this session. Report the incident to Microsoft Security Response Team through their official Phishing Report portal to help protect other users from this active threat.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/dor-ledgrlive-dekstop-eng.pages.dev
- PhishDestroy: https://phishdestroy.io/domain/dor-ledgrlive-dekstop-eng.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/dor-ledgrlive-dekstop-eng.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/dor-ledgrlive-dekstop-eng.pages.dev/
Last updated: 2026-04-05