# leviahub.free-products-site.com — MALICIOUS

> leviahub.free-products-site.com poses a medium phishing risk. Exercise caution and avoid sharing personal info on this site to stay protected.

## Summary
PhishDestroy identifies leviahub.free-products-site.com as a medium-risk generic phishing threat. The domain aims to deceive users by mimicking legitimate services to steal sensitive information.

Registered via GoDaddy.com, LLC on June 2, 2020, the domain resolves to IP 15.197.129.158. VirusTotal analysis shows limited detection, but combined with its suspicious naming and hosting, it warrants caution.

Currently active, users are advised to avoid interacting with leviahub.free-products-site.com and refrain from submitting personal or financial data. Monitoring and blocking this domain is recommended to mitigate potential phishing attacks.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 200)
- Page title: Leviahub Spa

## Domain Intelligence
- Registered: 2026-03-07 13:07:01
- Registrar: GoDaddy.com, LLC
- IP: 15.197.129.158
- Nameservers: ns1.dnsimple.com ns2.dnsimple.com ns3.dnsimple.com ns4.dnsimple.com

## Detection Status
- VirusTotal: 11 vendors flagged
  Vendors: ["ADMINUSLabs", "CRDF", "Cluster25", "CyRadar", "G-Data", "Gridinsoft", "MalwareURL", "SOCRadar", "Sophos", "Webroot", "alphaMountain.ai"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Live Page Content

### Page Text
Leviahub Spa Information Security Awareness Log in Administrative login

### External Scripts
- https://kit.fontawesome.com/665a57b5d1.js
- https://cdn.takesecurity.com/static/assets2/plugins/global/plugins.bundle.js
- https://cdn.takesecurity.com/static/assets2/plugins/custom/prismjs/prismjs.bundle.js
- https://cdn.takesecurity.com/static/assets2/js/scripts.bundle.js
- https://cdn.takesecurity.com/static/assets/global/plugins/js.cookie.min.js
- https://cdn.takesecurity.com/static/assets/global/plugins/bootstrap-hover-dropdown/bootstrap-hover-dropdown.min.js
- https://cdn.takesecurity.com/static/assets/global/plugins/jquery.blockui.min.js
- https://cdn.takesecurity.com/static/assets/pages/scripts/general.js
- https://cdn.takesecurity.com/static/assets/global/plugins/bootstrap-daterangepicker/daterangepicker.min.js
- https://cdn.takesecurity.com/static/assets/pages/scripts/extras/messages.js

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cc850-d118-7073-bc14-9a16ebbb5f98.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/6b42dcd8-ea24-4fdd-a0c6-942a52648c94
- PhishDestroy: https://phishdestroy.io/domain/leviahub.free-products-site.com/

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/leviahub.free-products-site.com/
Last updated: 2026-03-14