# in-ledger-desk.pages.dev — SUSPICIOUS

> Learn about the in-ledger-desk.pages.dev crypto drainer scam. This fraudulent site lures victims with fake crypto services. Block the domain resolving to 172.66.

## Summary
PhishDestroy identifies the domain in-ledger-desk.pages.dev as an active crypto drainer scam under investigation for fraudulent cryptocurrency transactions. This deceptive platform masquerades as a legitimate crypto ledger service to trick users into connecting wallets and authorizing unauthorized token transfers.  

This domain was flagged by 0 of 95 VirusTotal vendors at the time of analysis, indicating it remains undetected by most antivirus solutions despite its malicious intent. Registered through Cloudflare, Inc., it operates under a Google Trust Services SSL certificate and resolves to IP address 172.66.47.139. The infrastructure’s lack of detection combined with its Cloudflare protection highlights a sophisticated evasion technique likely designed to bypass traditional security measures. As the threat evolves, the absence of blocklist entries underscores the urgency for proactive defense.  

Users must treat in-ledger-desk.pages.dev as a HIGH-RISK domain and discontinue all interactions immediately. Avoid visiting, clicking links, or entering any credentials. Block traffic to 172.66.47.139 at the network level and update browser security settings to reject pages resolving to this IP. Report any wallet interactions to relevant blockchain security teams and local cybercrime units. Monitor accounts for unauthorized transactions and enable wallet-specific fraud alerts. Exercise extreme caution with unsolicited crypto service offers and verify domains through official channels before engaging.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.47.139

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/in-ledger-desk.pages.dev
- PhishDestroy: https://phishdestroy.io/domain/in-ledger-desk.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/in-ledger-desk.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/in-ledger-desk.pages.dev/
Last updated: 2026-04-03