# www.fiverr.com — SUSPICIOUS

> Fiverr.com is currently hosting a credential theft page. VirusTotal shows 0/95 detections. Verify URLs before login to avoid account compromise.

## Summary
PhishDestroy identifies www.fiverr.com as a credential theft domain impersonating the legitimate freelancing platform Fiverr. The page is designed to harvest user credentials under the guise of a login portal, leveraging the platform's trusted branding to deceive victims into entering sensitive information. While this domain shares similarities with the official Fiverr domain (fiverr.com), it is not affiliated with the legitimate service and is actively engaged in malicious activity.  This domain resolves to IP 104.18.114.47 and was registered through GoDaddy.com, LLC on December 08, 2009. VirusTotal currently shows 0/95 security vendors flagging this domain, indicating a low detection rate despite its malicious nature. The domain holds a valid SSL certificate issued by Google Trust Services, which may further mislead users into believing the site is legitimate. Additionally, this domain has not been flagged by Google Safe Browsing (GSB) as of the latest analysis, and no blocklist entries are recorded in public threat intelligence feeds.  As of the latest assessment, this credential theft domain remains active and under investigation. Users are advised to avoid interacting with www.fiverr.com and verify the URL (fiverr.com) before entering login credentials. The lack of detections and valid SSL certification increases the risk of successful phishing attempts. Security teams should monitor this domain closely and report any observed malicious activity to relevant threat intelligence platforms to aid in its takedown.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2009-12-08 20:58:25
- Registrar: GoDaddy.com, LLC
- IP: 104.18.114.47

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/d00fe94b-7e1f-4121-8055-01572c403482
- PhishDestroy: https://phishdestroy.io/domain/www.fiverr.com/
- LLM endpoint: https://phishdestroy.io/domain/www.fiverr.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/www.fiverr.com/
Last updated: 2026-03-29