# guide-ledgrr-liwe-us.pages.dev — SUSPICIOUS

> guide-ledgrr-liwe-us.pages.dev is a crypto drainer credential theft site flagged by 2 of 95 VirusTotal vendors. Cloudflare-hosted domain resolves to 188.114.97.

## Summary
PhishDestroy identifies guide-ledgrr-liwe-us.pages.dev as an active crypto drainer domain currently engaged in credential theft operations. The site has been classified under the threat type 'generic_phishing' with an elevated risk level, indicating direct user data compromise potential. This domain is currently online and operational, posing an immediate threat to visitors.


This domain was flagged by 2 of 95 VirusTotal security vendors, demonstrating extremely limited but concerning detection rates. Registered through Cloudflare, Inc., the domain resolves to IP address 188.114.97.3 and operates with a Google Trust Services SSL certificate. The technical infrastructure is deliberately obfuscated through Cloudflare's Pages service, making traditional takedown efforts more challenging. The low VirusTotal detection rate suggests this domain is either newly deployed or using sophisticated evasion techniques against automated scanning systems.


Given the elevated risk level and confirmed crypto drainer functionality, PhishDestroy strongly recommends immediate avoidance of guide-ledgrr-liwe-us.pages.dev. Users who may have already visited this domain should assume potential credential compromise and implement immediate account security measures including password resets and two-factor authentication activation. Domain blocking at network and browser levels is advised, and security teams should add 188.114.97.3 to firewall deny lists. Due to Cloudflare's infrastructure usage, traditional IP-based blocking may be less effective, requiring DNS-level or behavioral analysis solutions for comprehensive protection.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 2 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/329856c3-3ed0-457e-afc0-9cced3e175ac
- PhishDestroy: https://phishdestroy.io/domain/guide-ledgrr-liwe-us.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/guide-ledgrr-liwe-us.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/guide-ledgrr-liwe-us.pages.dev/
Last updated: 2026-03-26