# top-dm.info — SUSPICIOUS

> top-dm.info is an active phishing domain linked to darknet market scams. Avoid interacting with this site to protect your data and privacy.

## Summary
PhishDestroy identifies top-dm.info as an active phishing domain posing a medium risk to users. The site masquerades as a portal listing top darknet markets for 2026, potentially luring victims seeking illicit services or information. Phishing threats like this are significant because they exploit trust to steal sensitive data or facilitate fraud, impacting both individuals and organizations.

This domain was registered recently on March 13, 2026, through NiceNIC International Group Co., Limited, a registrar occasionally linked to malicious domains. It resolves to IP address 104.21.84.194 and currently appears on one security blocklist. VirusTotal analysis shows that 3 out of 95 security vendors have flagged it, indicating emerging suspicion but not widespread consensus. Despite this, the domain remains active and accessible, which heightens the risk of user exposure.

Users are strongly advised to avoid visiting top-dm.info or engaging with any content it hosts. If contacted or prompted to enter credentials or payment information, exercise extreme caution as this could lead to identity theft or financial loss. Employ updated security software, enable browser protections, and report suspicious domains to your security team or services like PhishDestroy to mitigate potential harm.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP 530)
- Page title: Top Darknet Markets 2026 | Best Dark Web Markets | Top 10 Darknet Markets List

## Domain Intelligence
- Registered: 2026-03-13 03:07:02
- Expires: 2027-03-09 09:03:41
- Registrar: NiceNIC International Group Co., Limited
- Country: HK
- IP: 104.21.84.194
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ken.ns.cloudflare.com ximena.ns.cloudflare.com
- SSL Issuer: Let's Encrypt / E7

## Detection Status
- VirusTotal: 3 vendors flagged
  Vendors: ["Fortinet", "Gridinsoft", "SOCRadar"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ce543-2747-74f7-a0d1-e2b0c45ce9e9.png
- PhishDestroy: https://phishdestroy.io/domain/top-dm.info/
- LLM endpoint: https://phishdestroy.io/domain/top-dm.info/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/top-dm.info/
Last updated: 2026-03-19