# myhome-ldxzr-logis.pages.dev — SUSPICIOUS > PhishDestroy identifies myhome-ldxzr-logis.pages.dev as a crypto drainer phishing domain with 0/95 VirusTotal detections. ## Summary PhishDestroy identifies the domain myhome-ldxzr-logis.pages.dev as an ACTIVE crypto drainer phishing threat currently under investigation. This domain was flagged for its malicious intent to deceive users into unknowingly transferring cryptocurrency to attacker-controlled wallets. The risk level is classified as active due to the presence of suspicious scripts and redirection patterns commonly associated with automated crypto drainers. Unlike generic phishing pages that harvest credentials, this threat specifically targets blockchain wallets by exploiting wallet connection prompts, signature requests, or fake transaction confirmations to drain funds. Users interacting with this domain may experience unauthorized transfers, wallet compromise, or loss of digital assets without explicit confirmation. This domain resolves to IP 172.66.44.77 and is registered through Cloudflare, Inc., leveraging Google Trust Services for its SSL certificate to appear legitimate. As of the latest assessment, VirusTotal reports 0 detections out of 95 scanners, indicating it remains undetected by most antivirus engines. The domain is hosted on Cloudflare Pages, a legitimate service often abused for agility and evasion. It has not yet been widely listed on major threat intelligence blocklists such as Google Safe Browsing or PhishTank, contributing to its stealthy operation. The registration through Cloudflare complicates takedown efforts, as Cloudflare’s abuse policies require multiple verified reports before intervention. Despite the lack of blacklist coverage, behavioral analysis reveals patterns consistent with crypto drainers, including dynamic script injection and wallet interaction deception. To mitigate exposure to this crypto drainer, users should immediately avoid visiting myhome-ldxzr-logis.pages.dev and scan their devices with updated antivirus software. Cryptocurrency users must verify all wallet connection requests and never approve unknown transactions or signature requests, even if prompted by a legitimate-looking site. Enable hardware wallet signing, use transaction simulation tools, and monitor wallet activity for unauthorized outflows. Organizations should deploy browser security policies to block known malicious domains and implement DNS filtering based on threat intelligence feeds. If exposure has occurred, disconnect the device from the internet, revoke any unauthorized wallet connections, and transfer remaining funds to a secure, offline wallet. Report the domain to Cloudflare Abuse (abuse.cloudflare.com) and submit samples to VirusTotal for enhanced detection coverage. Stay vigilant: crypto drainers evolve rapidly, and trust must be verified, not assumed. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 172.66.44.77 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/41bae935-1295-49e1-b741-01c215d939fb - PhishDestroy: https://phishdestroy.io/domain/myhome-ldxzr-logis.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/myhome-ldxzr-logis.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/myhome-ldxzr-logis.pages.dev/ Last updated: 2026-03-24