MalwareTips
DANGEROUS

Critical risk detected

19 of 92 antivirus engines flag this page as malicious. Our security stack flagged multiple threat indicators on this website. Don't enter personal information, deposit money, or download files.

Security Review

Is ledhgyd-vbchdhj.pages.dev legit or a scam?

Our verdict:Dangerous· 1/100

Phishing page created today on a legitimate hosting service, flagged by six antivirus engines including BitDefender and CyRadar.

Top reasons
Domain registered today (0 days old) — classic phishing infrastructure pattern.Six antivirus engines flag as phishing: ADMINUSLabs, alphaMountain.ai, BitDefender, Criminal IP, CyRadar, Emsisoft.No legitimate business registration, contact information, or service description.
ledhgyd-vbchdhj.pages.devScanned 1h ago
Post Facebook
0
Trust score
DANGEROUS
Heuristics 0·MT 18
Category tags
phishing#Phishing#Data Harvester92% MT confidence

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence
19/92
Engines flagged this URL
Domain Age
0 days old
Registration date unknown
MT Intelligence
Dangerous
Critical likelihood · 92% confidence

MT Intelligence

Advanced threat intelligence
MT Security Analyst
Critical scam likelihoodengineMT · Guardiantrust18/100
MT AgentLive web researchVisual inspection
0%
Confidence
This domain was registered today and shows all hallmarks of a phishing attack. Six established antivirus engines—ADMINUSLabs, alphaMountain.ai, BitDefender, Criminal IP, CyRadar, and Emsisoft—independently flagged it as phishing. The domain has zero traffic ranking, no business registration, and privacy protection disabled, yet the registrar information is hidden. The SSL certificate is valid but newly issued (63 days to expiry), a common tactic for short-lived phishing campaigns. The hosting IP has a clean abuse score but carries two abuse reports, suggesting the platform has hosted malicious content before. The combination of same-day registration, multiple phishing detections, and zero legitimate business signals points to an active credential-harvesting operation.
Full dossier
Analysis complete

Page Content

No legitimate business information, no product or service description, and no contact details. The page appears designed to harvest credentials or personal data rather than conduct legitimate commerce or provide a service.

Infrastructure

Hosted on a legitimate platform (pages.dev) but abused for phishing. The SSL certificate is valid and issued by Let's Encrypt, a free provider commonly used by both legitimate and malicious sites. IP 172.66.44.57 has a clean abuse score (0/100) but carries two prior abuse reports, indicating the hosting provider has seen malicious activity from this IP range.

Domain History

Registered 0 days ago—this is a brand-new domain created specifically for this attack. WHOIS privacy is disabled but registrar details are hidden, a red flag for throwaway phishing infrastructure. The domain has no traffic ranking and no indexed pages.

Web Reputation

Six major antivirus engines flag this as phishing. No positive reviews or trust signals exist. Independent review aggregators have no data on this domain, which is expected for a same-day registration.

Risk Factors
7
  • Domain registered today (0 days old) — classic phishing infrastructure pattern.
  • Six antivirus engines flag as phishing: ADMINUSLabs, alphaMountain.ai, BitDefender, Criminal IP, CyRadar, Emsisoft.
  • No legitimate business registration, contact information, or service description.
  • Hosting IP carries two prior abuse reports despite current clean score.
  • SSL certificate newly issued (63 days to expiry) — typical for short-lived phishing campaigns.
  • Zero traffic ranking and no indexed pages — site exists only to harvest data.
  • WHOIS privacy disabled but registrar hidden — inconsistent transparency pattern.
Positive Signals
3
  • SSL certificate is valid and properly issued by Let's Encrypt.
  • Hosting IP abuse score is currently clean (0/100).
  • No malware detected in our sandbox analysis.
AI Recommendation
Do not enter any personal information, passwords, or payment details on this page. Report the URL to your email provider or the service being impersonated. If you received a link to this site in an email or message, mark it as phishing and delete it.
Next-gen fraud intelligence
Evidence-backedCross-checked

Website Preview

Screenshot of ledhgyd-vbchdhj.pages.dev
LIVE RENDER
ledhgyd-vbchdhj.pages.dev

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for ledhgyd-vbchdhj.pages.dev, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age
0 days
Brand-new domains are higher-risk by default.
Web mentions
No scam reports found
No complaints, no negative coverage turned up in our sweep.
Research summary
Narrative write-up from our AI analyst

No scam reports or complaints found in public sources for this domain, which is expected given its same-day creation.

Antivirus Engines

Detection matrix · live
19 engines flagged this URL

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. Each detection is listed below by engine name — even a single hit is a meaningful signal.

19Malicious0Suspicious46Harmless92Engines
0
of 92
ADMINUSLabs
Malicious· malicious
alphaMountain.ai
Malicious· phishing
BitDefender
Malicious· phishing
Criminal IP
Malicious· phishing
CyRadar
Malicious· phishing
Emsisoft
Malicious· phishing
Ermes
Malicious· phishing
ESET
Malicious· phishing
Forcepoint ThreatSeeker
Malicious· phishing
Fortinet
Malicious· phishing
G-Data
Malicious· phishing
Gridinsoft
Malicious· phishing
LevelBlue
Malicious· phishing
Lionic
Malicious· phishing
Netcraft
Malicious· malicious
Rising
Malicious· phishing
Sophos
Malicious· phishing
VIPRE
Malicious· phishing
Webroot
Malicious· malicious

19 antivirus engines flagged this URL. Even a single detection is a meaningful signal — treat this site with extra caution and avoid entering credentials, payment info, or downloading any files.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Sandbox Render
Sandbox capture incomplete — no traffic recorded
Requests made0
Unique IPs0
Countries0
Detected brandsNone

Domain & Encryption

Domain History
Age0 days old
RegistrarHidden
RegisteredUnknown
ExpiresUnknown
Owner privacyVisible
Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerLet's Encrypt · E8
ExpiresAug 11, 2026 (63d)
Self-signedNo
Hosting & Technology
HostingCloudflare, Inc.
Server locationUS

Server Reputation

Hosting
CountryUnknown
NetworkUnknown
IP addressUnknown
Abuse Intelligence
Confidence score0%
Reports on file2
ISPCloudflare, Inc.
Usage typeContent Delivery Network

Scam-Type Likelihood

1 scam-type patterns detected
Scam-Type Likelihood

1 of 13 categories showed signals

We check every URL against 13 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.

Top match: Phishing
Phishing
Low-level signals
10/100
  • AI analyst tagged this as phishing.

Phishing site — act fast

This page shows signs of attempting to steal credentials or impersonate a trusted brand.

  • Do not interact with ledhgyd-vbchdhj.pages.dev

    Do not enter credentials, deposit money, download files, or install browser extensions from this site.

  • If you already typed your password — change it now

    Change the password on the legitimate site and anywhere else you re-used it. Turn on two-factor authentication. Review recent account activity.

  • Report the phishing URL

    APWG (Anti-Phishing Working Group) accepts phishing reports at reportphishing@apwg.org. Google Safe Browsing reports help protect other users.

    Open
  • Get help on the forum

    MalwareTips members can help you assess damage and next steps.

    Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
ListedCheck ↗
AbuseIPDB
Not listedCheck ↗
Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Safety FAQ

Common questions about this site, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

  • Our automated security review flags ledhgyd-vbchdhj.pages.dev as dangerous. Multiple threat indicators were detected — treat the site as a scam until proven otherwise.
  • No — ledhgyd-vbchdhj.pages.dev scored 1/100 on our trust scale. We detected active threat indicators, so we recommend avoiding the site entirely.
  • Yes. ledhgyd-vbchdhj.pages.dev presents a valid TLSv1.3 certificate issued by Let's Encrypt · E8, expiring in 63 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.
  • ledhgyd-vbchdhj.pages.dev is 0 days old. Scam domains are often freshly registered — a site under 6 months old warrants extra caution.
  • 19 out of 92 antivirus engines in our malware network flagged ledhgyd-vbchdhj.pages.dev as malicious or suspicious (19 outright malicious). Even one detection is a meaningful signal.
  • No. ledhgyd-vbchdhj.pages.dev is not currently listed on the major browser blocklist feeds that modern browsers use.
  • ledhgyd-vbchdhj.pages.dev resolves to an IP operated by Cloudflare, Inc. in US (usage type: Content Delivery Network). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.
  • We cache results for 24 hours. Signed-in MalwareTips members can trigger a manual rescan at any time using the "Rescan" button on the report page, which re-runs every check from scratch and refreshes this page.

Final Verdict

0
Trust / 100
Final Verdict·ledhgyd-vbchdhj.pages.dev
DANGEROUS

A brand-new phishing page hosted on a legitimate platform. Six major antivirus engines flag it as phishing, and the domain was registered today with no legitimate business presence.

Do not enter any personal information, passwords, or payment details on this page. Report the URL to your email provider or the service being impersonated. If you received a link to this site in an email or message, mark it as phishing and delete it.

AV engines
92
MT passes
2
Net signals
0
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Dangerous reports

Browse all reports
Dangeroustrust33
jjj195.com
6m ago
Read the review
Dangeroustrust12
account.remote-otp.com
8m ago
Read the review
Dangeroustrust1
72264.xyz
11m ago
Read the review
Dangeroustrust24
uuuu.com
13m ago
Read the review
Dangeroustrust1
almarabeaunited.com
13m ago
Read the review
Dangeroustrust1
ghanapoest.eu.cc
15m ago
Read the review
Dangeroustrust1
nyjfv.xyz
16m ago
Read the review
Dangeroustrust1
mitaomaodou.com
17m ago
Read the review
Dangeroustrust1
coin-bse-app.zapier.app
18m ago
Read the review
Dangeroustrust1
web-git-05-20-featwebshowread-onlytokeninfoforex-4642a4-uniswap.vercel.app
18m ago
Read the review
Dangeroustrust45
cedarbureau.digital
20m ago
Read the review
Dangeroustrust1
scriptapi.dev
20m ago
Read the review
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.