# lader-live-wllt.pages.dev — SUSPICIOUS

> lader-live-wllt.pages.dev is a fake login page scam flagged by 2 of 95 VirusTotal vendors. Avoid entering credentials. Check the full report.

## Summary
PhishDestroy identifies lader-live-wllt.pages.dev as an active fake login page scam designed to harvest user credentials. The domain is currently operational and poses an elevated risk to unsuspecting visitors. No specific brand impersonation has been confirmed at this stage, but the page mimics legitimate login interfaces to deceive users into submitting sensitive information.


This domain was flagged by 2 of 95 VirusTotal vendors, indicating a low but notable detection rate among security solutions. Registered through Cloudflare, Inc., the domain resolves to IP 172.66.44.134 and utilizes a Google Trust Services SSL certificate. While the exact creation date is not provided, the combination of registration details, hosting infrastructure, and detection metrics suggests a recently established threat actor-controlled page. The low VirusTotal detection rate (2.1%) may indicate evasion tactics or a lack of widespread awareness among security vendors.


Users are strongly advised to avoid interacting with this domain due to its confirmed malicious intent. Given the active status and SSL certificate, the risk of credential theft is significant. PhishDestroy recommends blocking lader-live-wllt.pages.dev at the network and endpoint levels. If exposure is suspected, immediately rotate credentials and enable multi-factor authentication on all associated accounts. Monitor for unusual activity and report the domain to relevant authorities for takedown efforts.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.44.134

## Detection Status
- VirusTotal: 2 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/2dd1db38-2bf7-4c96-aca6-1f6672a39dba
- PhishDestroy: https://phishdestroy.io/domain/lader-live-wllt.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/lader-live-wllt.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/lader-live-wllt.pages.dev/
Last updated: 2026-03-22