# aircat.click — SUSPICIOUS

> AirCat.click is a live fake login phishing site posing as an Airline app. Block it now; 0 of 95 VirusTotal engines currently detect the threat.

## Summary
PhishDestroy identifies aircat.click as an active credential-harvesting site impersonating airline services. The domain was registered on March 23, 2026 through Sav.com, LLC and resolves to IP 172.67.148.73, yet remains undetected by all 95 VirusTotal engines as of today.  This domain is a generic phishing lure designed to steal usernames and passwords. Visitors who enter login details are immediately handing credentials to attackers who then take over accounts for fraud, account takeovers, or further phishing campaigns against contacts.  We know this threat is live because VirusTotal shows zero detections out of 95 scanners, the domain went live on March 23, 2026, and its registrar is Sav.com, LLC. If you visited aircat.click and entered any information, change those passwords immediately and enable multi-factor authentication on all linked accounts. Run a malware scan and monitor accounts for suspicious activity for at least 30 days.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-23 05:44:04
- Registrar: Sav.com, LLC
- IP: 172.67.148.73

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/4849c726-0c6d-4515-903f-1eb43f69d05a
- PhishDestroy: https://phishdestroy.io/domain/aircat.click/
- LLM endpoint: https://phishdestroy.io/domain/aircat.click/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/aircat.click/
Last updated: 2026-04-01