# toolsradar.com — SUSPICIOUS > toolsradar.com hosts a fake login phishing page mimicking a popular service. This domain has 0 detections on VirusTotal but is linked to credential theft risks. ## Summary PhishDestroy identifies toolsradar.com as an active fake login phishing domain impersonating a widely trusted service. Current threat status is marked as active with a risk level classified as under_investigation. This domain was detected distributing a fraudulent login interface designed to harvest user credentials, posing a direct risk to individuals or organizations accessing the impersonated platform through this site. This domain resolves to IP address 104.21.43.197 and was registered on June 28, 2018 through HOSTINGER operations, UAB. According to VirusTotal intelligence, toolsradar.com has received 0 detections out of 95 security vendor scans as of the latest update. The domain holds an SSL certificate issued by Google Trust Services, which may contribute to false trust among potential victims. Despite the absence of current blocklist entries, the age of the domain and the lack of detection signals suggest this infrastructure may be newly repurposed or lightly monitored by threat actors. PhishDestroy continues to monitor toolsradar.com as an active threat. Users who encounter this domain or believe they may have interacted with its content are strongly advised to immediately change passwords associated with the impersonated service and enable multi-factor authentication where available. Additionally, scanning devices for malware and reporting the domain through PhishDestroy’s verification portal can help mitigate further exposure. Organizations are recommended to block access to this domain at the network level and distribute internal advisories to prevent further compromise. This campaign remains under active investigation, and further indicators will be made available as new intelligence emerges. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2018-06-28 06:36:59 - Registrar: HOSTINGER operations, UAB - IP: 104.21.43.197 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/toolsradar.com - PhishDestroy: https://phishdestroy.io/domain/toolsradar.com/ - LLM endpoint: https://phishdestroy.io/domain/toolsradar.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/toolsradar.com/ Last updated: 2026-04-02