# celestefinluxor.net — MALICIOUS

> celestefinluxor.net is flagged for phishing and social engineering risks. Avoid interacting; the domain is currently offline and blocked.

## Summary
PhishDestroy identifies celestefinluxor.net as a high-risk phishing domain associated with fraudulent trading platforms. The site, titled "Céleste Finluxor - Plateforme officielle | Trading IA 2025 | Plus de 10 000 avis," was designed to deceive users with fake investment promises.

The domain was registered on February 21, 2026, through PDR Ltd. d/b/a PublicDomainRegistry.com and resolves to IP 188.114.96.3. It appears on multiple security blocklists and is flagged by Google Safe Browsing for social engineering. VirusTotal analysis shows 15 out of 95 security vendors detecting malicious activity.

Currently, celestefinluxor.net is taken offline, reducing immediate threat exposure. Users are advised to avoid this domain and report suspicious trading websites. Continuous monitoring is recommended as phishing campaigns often shift infrastructure rapidly.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Céleste Finluxor - Plateforme officielle | Trading IA 2025 | Plus de 10 000 avis

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Expires: 2027-01-16 00:00:00
- Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com
- Country: IN
- IP: 188.114.96.3
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: melissa.ns.cloudflare.com sterling.ns.cloudflare.com
- SSL Issuer: none

## Detection Status
- VirusTotal: 15 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "CRDF", "CyRadar", "ESET", "Forcepoint ThreatSeeker", "G-Data", "Google Safebrowsing", "Gridinsoft", "Lionic", "Seclookup", "SOCRadar", "Sophos", "VIPRE"]
- Google Safe Browsing: FLAGGED
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "MetaMask"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019bd2dc-aff9-773a-b28f-401538968da5.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/5e029434-7eb8-41d8-a978-3be127bf09cc
- PhishDestroy: https://phishdestroy.io/domain/celestefinluxor.net/
- LLM endpoint: https://phishdestroy.io/domain/celestefinluxor.net/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/celestefinluxor.net/
Last updated: 2026-03-19