ldgre-liv-en.pages[.]dev
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.
Description of ldgre-liv-en.pages[.]dev
The domain ldgre-liv-en.pages[.]dev appears to present itself as a cryptocurrency-related developer or onboarding page associated with Ledger Live, using branding, page titles, and outbound links that reference Ledger documentation, support resources, and developer materials. The screenshot shows a dark-themed page discussing wallet integration, device confirmation, and security guidance, which suggests the site is attempting to resemble a technical documentation or setup portal for crypto wallet users or developers.
Based on the domain structure, this page is hosted on a pages.dev subdomain rather than on Ledger’s primary corporate domain. The wording in the title and metadata indicates an apparent focus on helping users get started with Ledger Live Wallet integrations, but the hostname itself does not appear to be an official Ledger-owned web property. That mismatch may be relevant when assessing authenticity, especially for a brand involved in cryptocurrency wallets and account access.
Safety Assessment for ldgre-liv-en.pages[.]dev
This site raises notable concerns based on available scan data. At the time of this scan, 3 out of 91 security engines flagged the domain, with detections associated with phishing or malicious activity. In addition, the malware scan marked all 3 scanned files as malicious and identified a flagged external reference involving walletconnect.com. While a single flagged external domain does not by itself prove harmful behavior, the combination of multiple engine detections and malicious file findings increases the level of caution warranted.
The page also appears to imitate Ledger branding and references official Ledger resources, yet it is hosted on a third-party pages.dev subdomain with a shortened, look-alike style name rather than an apparent official Ledger domain. That kind of branding mismatch may indicate an attempt to resemble a legitimate crypto service. In cryptocurrency contexts, unofficial pages that mimic wallet setup, support, or developer documentation may be used to solicit wallet connections, credentials, or seed phrases.
Although some blacklist databases showed no listing at the time of this scan, that does not outweigh the phishing-related detections and the apparent resemblance to Ledger materials. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site is served over HTTPS with a valid TLS certificate issued by Google Trust Services and is fronted by Cloudflare infrastructure, resolving to an IP associated with Cloudflare in Toronto, Canada. The domain has been present since 2020 and is registered through CloudFlare, Inc., which means it is not a newly created hostname, although pages.dev subdomains can still host user-generated content that is unrelated to the brand being referenced. DNSSEC appears to be unsigned.
From a security perspective, the main concerns are not the certificate or CDN setup, but the content and reputation signals: multiple security-engine detections, malicious findings on scanned files, and the use of a brand-referencing page on a non-official host. The page title, metadata, and outbound links appear designed to reinforce legitimacy, which may be consistent with phishing-style social engineering at the time of this scan.
Share your experience with this website. Was it safe? Did you encounter any issues?