# live-desktop-app-en.pages.dev — SUSPICIOUS

> live-desktop-app-en.pages.dev mimics Microsoft login prompts to steal credentials; 0/95 VirusTotal detections, registered via Cloudflare.

## Summary
PhishDestroy identifies live-desktop-app-en.pages.dev as a Microsoft-branded phishing domain currently under investigation for generic credential harvesting. This site masquerades as a legitimate Windows desktop portal, aiming to trick users into surrendering Microsoft account credentials through deceptive login interfaces. Cloudflare-hosted infrastructure (IP 172.66.47.63) and Google Trust Services SSL certificates lend false legitimacy, while 0/95 VirusTotal detections indicate it remains undetected by antivirus engines at time of analysis.  

This domain was flagged through Cloudflare registrar (172.66.47.63) and shows 0/95 VirusTotal detections as of analysis, suggesting minimal antivirus coverage despite suspicious behavior patterns. The site leverages the legitimate pages.dev subdomain service to host fraudulent Microsoft login replicas, exploiting Microsoft's brand recognition to bypass user skepticism. Technical indicators include the absence of malicious payloads in initial scans, but behavioral analysis reveals high-risk redirection patterns toward credential-stealing forms.  

If you visited live-desktop-app-en.pages.dev, immediately audit all Microsoft accounts for unauthorized access and enable multi-factor authentication. Change passwords using a separate device, scan your system with reputable antivirus software, and report the domain to Microsoft's phishing reporting system. Avoid re-entering credentials until independent verification confirms the site's legitimacy, and consider blocking the domain via firewall rules or browser extensions.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.47.63

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/live-desktop-app-en.pages.dev
- PhishDestroy: https://phishdestroy.io/domain/live-desktop-app-en.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/live-desktop-app-en.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/live-desktop-app-en.pages.dev/
Last updated: 2026-04-04