# es-ldger.co — MALICIOUS

> es-ldger.co is active fake 'generic phishing' site; VirusTotal flags 18/95 security vendors. Full risk report here.

## Summary
PhishDestroy identifies es-ldger.co as an active generic phishing page designed to steal login credentials or install malware. The site mimics legitimate business portals, financial platforms, or utility logins, tricking visitors into entering sensitive information. Generic phishing refers to wide-cast campaigns using standardized templates rather than targeted social engineering. This campaign casts a broad net, hoping unsuspecting users enter their credentials on a spoofed login page hosted at es-ldger.co.

This domain was flagged by 18 of 95 VirusTotal security vendors, indicating high suspicion among the threat intelligence community. It was registered on November 06, 2025 through NameCheap, Inc., and resolves to IP address 162.241.123.35 with a valid Let’s Encrypt SSL certificate. The combination of recent creation, low detection count relative to age, and high-risk hosting profile strongly suggests malicious intent.

If you visited es-ldger.co, stop using any credentials entered there immediately. Delete cookies and cached data related to the site. Run a full antivirus scan on your device. If you reused passwords elsewhere, change them on other accounts using unique, strong passwords. Report the domain to your IT team or security provider. Avoid clicking any links from unsolicited messages referencing this domain.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2025-11-06 09:06:32
- Registrar: NameCheap, Inc.
- IP: 162.241.123.35

## Detection Status
- VirusTotal: 18 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/fc8d36f1-32ab-4f76-896d-f74c209742b9
- PhishDestroy: https://phishdestroy.io/domain/es-ldger.co/
- LLM endpoint: https://phishdestroy.io/domain/es-ldger.co/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/es-ldger.co/
Last updated: 2026-03-23