# goosevpn.world — SUSPICIOUS > goosevpn.world linked to credential phishing, detected March 30, 2026. Virustotal score 0/95. Review full threat report now. ## Summary PhishDestroy identifies goosevpn.world as a recently registered domain actively involved in credential phishing attempts. The domain does not align with any legitimate VPN provider and shows no association with known VPN brands or drainer toolkits. Its naming convention leverages a generic ‘VPN’ theme, a tactic frequently exploited by threat actors to lend superficial legitimacy to phishing pages targeting user login credentials. The technical fingerprint of this domain is highly suspect. goosevpn.world resolves to IP address 147.45.44.133 and is currently protected by a Let’s Encrypt SSL certificate—often abused to trick users into believing the site is secure. Registrant details point to PDR Ltd. d/b/a PublicDomainRegistry.com, a registrar commonly used to anonymize phishing infrastructure. Domain creation occurred on March 30, 2026, making it exceptionally fresh and likely part of a fast-moving campaign. As of this analysis, VirusTotal shows zero detections (0/95 engines), and the domain remains unlisted on Google Safe Browsing (GSB) and major threat blocklists, suggesting it has evaded broad detection. This domain is currently active and under active observation. No automated blocking measures are yet in place across global networks. Immediate response includes network-level blocking of 147.45.44.133 and domain quarantine at the DNS resolver level. However, due to the low VT coverage and absence from blocklists, users remain vulnerable to accidental exposure. Remaining risk is assessed as high given the domain’s freshness, lack of historical scrutiny, and current undetected status. Users and organizations are strongly advised to block goosevpn.world and its resolving IP immediately and monitor for inbound credential submission attempts. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-03-30 19:10:29 - Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com - IP: 147.45.44.133 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/goosevpn.world - PhishDestroy: https://phishdestroy.io/domain/goosevpn.world/ - LLM endpoint: https://phishdestroy.io/domain/goosevpn.world/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/goosevpn.world/ Last updated: 2026-04-03