# start-ledggr-en.pages.dev — SUSPICIOUS

> start-ledggr-en.pages.dev mimics a Ledger login portal. PhishDestroy identifies 1/95 vendors detecting this fake Ledger login scam. Check the full report.

## Summary
PhishDestroy identifies start-ledggr-en.pages.dev as a fake Ledger login page designed to steal cryptocurrency wallet credentials. The page uses Cloudflare Pages to mimic an official Ledger interface, tricking visitors into entering their 24-word recovery phrase or seed phrase. Scammers often host these pages on free subdomains like .pages.dev to bypass basic domain-blocking tools and create a false sense of legitimacy.

This domain was flagged by 1 out of 95 security vendors on VirusTotal and is hosted on Cloudflare’s infrastructure, resolving to IP address 188.114.96.3 via Google Trust Services SSL. The page was detected early due to its use of a known phishing template targeting Ledger wallet users, a common tactic in crypto scams where victims lose funds irreversibly once credentials are exposed.

If you visited start-ledggr-en.pages.dev, immediately disconnect from the internet and check your Ledger device for any unauthorized transactions. Do not enter any seed phrases, passwords, or recovery information on this site. Revoke any session tokens or browser permissions granted to the domain. Scan your device with updated antivirus software and consider transferring remaining assets to a newly initialized wallet. Report the domain to PhishDestroy and your local cybercrime unit to help warn others.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 1 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/a1129517-7346-4a5e-83f8-dad8432098fd
- PhishDestroy: https://phishdestroy.io/domain/start-ledggr-en.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/start-ledggr-en.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/start-ledggr-en.pages.dev/
Last updated: 2026-03-30