# ledgrliv-io-gude.pages.dev — SUSPICIOUS

> PhishDestroy identifies ledgrliv-io-gude.pages.dev as a Google Docs phishing site with 0/95 VirusTotal detections.

## Summary
PhishDestroy identifies ledgrliv-io-gude.pages.dev as a Google Docs credential phishing lure designed to trick users into submitting login details. This fraudulent domain mimics Google Documents sharing pages, often distributed via deceptive emails or messages that claim the victim must verify access to a shared file. Attackers leverage legitimate-looking domains and SSL certificates (issued by Google Trust Services) to appear credible, while Cloudflare infrastructure (IP 172.66.44.129) hosts the malicious page.  This domain was flagged through PhishDestroy’s automated monitoring pipeline. It has not yet been detected by VirusTotal scanners (0/95 engines as of detection), and it is registered under Cloudflare, Inc. via a subdomain on pages.dev—commonly used for development and staging environments but now abused for phishing. The use of a Google Trust Services SSL certificate is a tactic to bypass browser warnings and increase trust.  If you visited ledgrliv-io-gude.pages.dev and entered any credentials, assume your login details have been compromised. Immediately change passwords on all related accounts (especially Google/Gmail), enable two-factor authentication, and scan devices for malware. Report the domain to your email provider and use PhishDestroy’s takedown portal to help remove it from the internet.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.44.129

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/916c0d42-48b1-45c9-9f9c-e0460ae8746b
- PhishDestroy: https://phishdestroy.io/domain/ledgrliv-io-gude.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/ledgrliv-io-gude.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ledgrliv-io-gude.pages.dev/
Last updated: 2026-03-26