# public---liveledger.pages.dev — SUSPICIOUS

> PhishDestroy identifies public---liveledger.pages.dev as an active crypto drainer posing as LiveLedger.

## Summary
PhishDestroy identifies public---liveledger.pages.dev as a live crypto drainer campaign impersonating the LiveLedger brand. This domain (unique seed: eb2aa5) is hosted on Cloudflare Pages and leverages Google Trust Services SSL certificates to appear legitimate. Users who interact with this domain risk unauthorized cryptocurrency transfers via malicious wallet drainers embedded in spoofed LiveLedger interfaces.  

This domain was flagged by 3 out of 95 VirusTotal security vendors, indicating low but notable detection rates likely due to its recent deployment. It resolves to IP 188.114.96.3 and is registered through Cloudflare, Inc., which provides anonymity protections often exploited by threat actors. The combination of a Google-issued SSL certificate, Cloudflare infrastructure, and crypto drainer payloads creates an elevated risk profile for visitors expecting legitimate LiveLedger services.  

If you visited public---liveledger.pages.dev, immediately disconnect from the internet, scan your device for malware, and revoke any cryptocurrency wallet connections you may have authorized. Verify all links using PhishDestroy’s URL checker before engaging. Report this domain to your security team and consider rotating all wallet credentials if you entered any information. Do not reuse passwords or wallet recovery phrases across services, as this campaign may collect such data for further exploitation.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 3 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/8ad7ae48-0f5c-4b86-95fa-21d77085df01
- PhishDestroy: https://phishdestroy.io/domain/public---liveledger.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/public---liveledger.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/public---liveledger.pages.dev/
Last updated: 2026-03-22