# get-io-deskledger.pages.dev — SUSPICIOUS

> PhishDestroy flags get-io-deskledger.pages.dev as an active crypto drainer domain with 0/95 VirusTotal detections—verify immediately.

## Summary
PhishDestroy identifies get-io-deskledger.pages.dev as an active **crypto drainer** domain posing a direct threat to cryptocurrency wallet users.  This domain operates under Cloudflare, Inc. hosting and resolves to IP 188.114.96.3 behind a valid Google Trust Services SSL certificate. VirusTotal currently shows **0/95** detection engines flagging the domain, indicating it is not yet widely recognized as malicious, which increases the risk of undetected compromise. The domain's Cloudflare registration and Pages.dev hosting infrastructure are typically abused to rapidly deploy malicious pages that impersonate legitimate services.  PhishDestroy rates the risk as **under_investigation**, acknowledging potential escalation as cybersecurity defenses catch up. The domain’s recent deployment and low detection rate suggest it may be part of a targeted or automated attack campaign. Given the active status and absence of blocks, users who have visited this domain—especially those interacting with cryptocurrency interfaces—should assume exposure and take immediate, proactive steps.  If you accessed get-io-deskledger.pages.dev, cease all crypto-related activities involving connected wallets or browser extensions. Run a full antivirus scan and revoke any active session tokens via wallet dashboards. Visit PhishDestroy.com for automated verification and real-time blocking. Monitor wallet transaction histories for unauthorized transfers and report suspicious activity to your platform provider immediately.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/156ebb27-ea53-49f2-a32e-b7d38e1064be
- PhishDestroy: https://phishdestroy.io/domain/get-io-deskledger.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/get-io-deskledger.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/get-io-deskledger.pages.dev/
Last updated: 2026-04-13