login-ladgr.pages[.]dev
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of login-ladgr.pages[.]dev
The domain login-ladgr.pages[.]dev appears to host a webpage themed around Ledger, the cryptocurrency hardware wallet brand. The page title, “Ledger Login — Getting Started™ with Ledger,” and the visible content suggest it is presenting setup and login guidance for managing crypto assets, including device initialization, PIN creation, and recovery phrase handling.
Based on the domain structure, this page is served from a pages.dev subdomain, which commonly indicates content deployed on a cloud hosting platform rather than an official branded corporate domain. The hostname uses a misspelled brand-like string (“ladgr” instead of “ledger”), which may indicate an attempt to resemble Ledger-related content while not being operated from Ledger’s known primary web presence.
The site appears to target cryptocurrency users seeking Ledger login or onboarding information. Given the branding cues and the crypto-wallet context, the page may be intended to attract visitors looking for account access or wallet setup assistance, although the available scan data does not independently verify the operator’s identity.
Safety Assessment for login-ladgr.pages[.]dev
Multiple security signals raise concerns about this page at the time of the scan. It was flagged by 13 out of 94 security engines, with several classifying it as phishing or otherwise suspicious. In addition, it appeared on blacklist and threat-database entries associated with social-engineering activity. While a malware file scan did not detect malicious files in the small set of scanned resources, phishing pages often rely on deceptive content rather than downloadable malware.
The domain name itself closely resembles the Ledger brand while using a misspelled variation in a hosted subdomain, which may be a look-alike intended to confuse visitors. The page title and on-page text repeatedly reference Ledger login and crypto-wallet setup, increasing the possibility that the site is attempting to imitate a legitimate cryptocurrency service or intercept sensitive wallet-related information.
Because this is a cryptocurrency-themed page on a non-official-looking hosted subdomain, with numerous phishing-related detections and blacklist listings, the overall risk profile appears elevated. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site was served over HTTPS with a valid TLS certificate issued by a mainstream certificate authority, and the infrastructure appears to be behind Cloudflare hosting and web services. The resolved server IP was 188.114.96.2, geolocated to Toronto, Canada, and the nameservers were Cloudflare-operated. The domain is not newly created, with an age of roughly 5 years, though that age applies to the pages.dev subdomain namespace context and does not by itself establish legitimacy.
DNSSEC was reported as unsigned, which is not uncommon but does mean DNS responses do not benefit from that additional integrity layer. No external links, referenced domains, or iframes were identified in the provided scan, and the malware scan did not flag embedded files. The primary technical concern here is not malware delivery but the apparent use of brand-themed content on a hosted subdomain that may support phishing or social-engineering activity.
Share your experience with this website. Was it safe? Did you encounter any issues?