# liveledgr-download.pages.dev — SUSPICIOUS

> liveledgr-download.pages.dev is a fraudulent Google Pages domain hosting a phishing scam. Resolving to 188.114.97.3, it currently avoids 95 antivirus engines.

## Summary
PhishDestroy identifies liveledgr-download.pages.dev as an ACTIVE phishing domain weaponized to deliver counterfeit software installers under the guise of authentic downloads. The campaign currently presents a LOW TO MEDIUM risk while under investigation; however, its use of Google Trust Services certificates and Cloudflare hosting complicates immediate detection by both users and security tools.

This domain was flagged via automated analysis, revealing a 0/95 detection ratio on VirusTotal at the time of analysis, indicating that no antivirus vendors had yet blacklisted it. It resolves to IP address 188.114.97.3 and operates under Cloudflare, Inc. as the hosting provider. The SSL certificate is issued by Google Trust Services, which may lend false legitimacy to the fraudulent site. Notably, the domain uses Cloudflare Pages to host the phishing content, mimicking a legitimate Google-hosted service.

To mitigate exposure, users should immediately block inbound connections to 188.114.97.3 and the hostname liveledgr-download.pages.dev at the network perimeter. Enterprises should add this domain and IP to DNS sinkholes and proxy deny lists. Never download software from unexpected domains, even those using Google or Cloudflare branding, and verify the publisher through original vendor channels before installation.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/1c85e8bf-a877-408d-8900-b7489cb642ab
- PhishDestroy: https://phishdestroy.io/domain/liveledgr-download.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/liveledgr-download.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/liveledgr-download.pages.dev/
Last updated: 2026-04-11