# project-lezerr-liv-dsktp-us.pages.dev — SUSPICIOUS

> project-lezerr-liv-dsktp-us.pages.dev is a Cloudflare Pages phishing kit impersonating software downloads, currently undetected on VirusTotal (0/95).

## Summary
PhishDestroy identifies an active phishing campaign hosted on the domain project-lezerr-liv-dsktp-us.pages.dev, currently under investigation by cybersecurity teams for deploying a generic phishing kit designed to harvest credentials and deliver malware under the guise of legitimate software.  This domain resolves to IP 172.66.47.98 and is registered via Cloudflare, Inc., leveraging Google Trust Services for its SSL certificate. Critically, VirusTotal analysis shows 0 detections out of 95 engines as of the latest scan, meaning traditional antivirus tools do not yet flag it. This highlights the risk of zero-day phishing infrastructure that bypasses initial detection layers. The low detection rate suggests the campaign is either newly deployed or carefully crafted to evade signature-based defenses.  Users who have accessed this domain should treat it as a high-confidence threat. If credentials or sensitive data were entered, immediately change passwords and enable multi-factor authentication on relevant accounts. Scan all connected devices with updated antivirus and anti-malware tools. Report the domain to your security team or file a complaint with organizations like Google Safe Browsing or the Anti-Phishing Working Group to help block this infrastructure globally. Exercise heightened caution with unsolicited software download links, as this campaign appears to be leveraging decoy packages to deliver malicious payloads.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.47.98

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/00b2e844-0b90-4547-a987-1ca293da50f3
- PhishDestroy: https://phishdestroy.io/domain/project-lezerr-liv-dsktp-us.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/project-lezerr-liv-dsktp-us.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/project-lezerr-liv-dsktp-us.pages.dev/
Last updated: 2026-03-25