# guide-us-ledgerr-live-desktop.pages.dev — SUSPICIOUS > guide-us-ledgerr-live-desktop.pages.dev is a crypto drainer site with 1/95 VirusTotal detections. Users should avoid this domain to prevent cryptocurrency theft. ## Summary PhishDestroy identifies guide-us-ledgerr-live-desktop.pages.dev as an active crypto drainer posing elevated risk to users. This domain specifically targets cryptocurrency wallets through deceptive tactics designed to siphon funds. Users interacting with this site risk immediate financial loss. This domain was flagged by VirusTotal with 1 out of 95 security vendors detecting malicious activity. It resolves to IP address 172.66.45.7 and operates through Cloudflare, Inc. as the registrar. The SSL certificate issued by Google Trust Services lends a false appearance of legitimacy to unsuspecting victims. Despite these superficial trust indicators, this domain remains unlisted on major blocklists as of current analysis, allowing continued operation. The seed identifier 11ec34 confirms tracking of this specific threat variant. Mitigation requires immediate avoidance of all interactions with guide-us-ledgerr-live-desktop.pages.dev. Users should verify destination domains before engaging with wallet connections or transaction prompts. Blocking the associated IP 172.66.45.7 at the network perimeter prevents further exploitation attempts. Security teams should consider this domain as an active indicator of compromise and distribute blocking rules across organizational defenses. Enhanced monitoring for outbound connections to this IP is recommended to detect potential compromise within your environment. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 172.66.45.7 ## Detection Status - VirusTotal: 1 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/b8dba37d-fe6c-45c0-ac17-d4ddb311e16c - PhishDestroy: https://phishdestroy.io/domain/guide-us-ledgerr-live-desktop.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/guide-us-ledgerr-live-desktop.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/guide-us-ledgerr-live-desktop.pages.dev/ Last updated: 2026-03-22