# live-en-ladgor.pages.dev — SUSPICIOUS > Live-en-ladgor.pages.dev is a credential theft site with just 1/95 VirusTotal detections. Avoid this crypto drainer phishing domain immediately. ## Summary PhishDestroy identifies live-en-ladgor.pages.dev as an active credential theft site operating as a crypto drainer. This domain mimics legitimate services to trick visitors into revealing wallet credentials or transferring cryptocurrency to attacker-controlled addresses. The site was recently flagged by only 1 out of 95 security vendors on VirusTotal, indicating low detection rates despite clear malicious intent. Registered through Cloudflare and using a Google Trust Services SSL certificate, the domain resolves to IP 172.66.47.178 and remains operational at the time of this assessment. This threat falls under the elevated risk category due to its combination of low detection rates and active deployment. The site's structure and branding suggest it may be targeting users involved in cryptocurrency transactions, particularly those who might confuse the page.dev subdomain with legitimate service pages. Security researchers note that such domains often appear in social media campaigns or fraudulent advertisements, where the promise of free tokens or account access lures victims into inputting sensitive information. The use of Cloudflare’s infrastructure adds a layer of legitimacy while obscuring the true origin of the site. If you have visited live-en-ladgor.pages.dev, immediately disconnect from the internet and scan all connected devices with updated antivirus software. Revoke any session tokens or API keys that may have been exposed and transfer any remaining cryptocurrency assets to a newly generated wallet. Monitor transactions closely for unauthorized withdrawals and report the domain to your wallet provider or exchange. Avoid reusing passwords or private keys across multiple platforms, as credential theft often leads to broader account compromise. For ongoing protection, consider using hardware wallets and enabling multi-factor authentication wherever possible. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 172.66.47.178 ## Detection Status - VirusTotal: 1 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/live-en-ladgor.pages.dev - PhishDestroy: https://phishdestroy.io/domain/live-en-ladgor.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/live-en-ladgor.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/live-en-ladgor.pages.dev/ Last updated: 2026-04-09