# csgottm.com — SUSPICIOUS

> Explore the risks linked to csgottm.com, a low-risk phishing domain active since 2025. Learn what makes it suspicious and how to stay protected.

## Summary
PhishDestroy has identified csgottm.com as a domain involved in generic phishing activities. Classified under a low-risk category, this domain is actively malicious but has limited threat indicators so far. Its recent creation date suggests it is a relatively new entrant in phishing campaigns.

Technical analysis shows that csgottm.com was registered on April 16, 2025, through NICENIC INTERNATIONAL GROUP CO., LIMITED, a known registrar. The domain resolves to the IP address 188.114.96.3. VirusTotal scans reveal minimal detection with only 2 out of 95 security vendors flagging it, indicating the domain is not widely recognized as harmful yet. These factors combined point to a potentially evolving phishing infrastructure aiming to evade detection.

Currently, csgottm.com remains active and under close observation by cybersecurity analysts. Although its risk level is assessed as low, users and organizations should remain vigilant when interacting with emails or links associated with this domain. PhishDestroy recommends updating security filters and monitoring access logs to mitigate any emerging threats linked to this domain.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP 530)
- Page title: CS MARKET - Покупайте КС:ГО (CS2) предметы - КС Маркет

## Domain Intelligence
- Registered: 2026-03-05 19:07:02
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- Country: HK
- IP: 188.114.96.3
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: jermaine.ns.cloudflare.com marge.ns.cloudflare.com
- SSL Issuer: none

## Detection Status
- VirusTotal: 1 vendors flagged
  Vendors: ["Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cbf36-44f1-736e-aacd-fbbfa634c582.png
- Cloudflare Radar: https://radar.cloudflare.com/domains/csgottm.com
- Wayback Machine: https://web.archive.org/web/https://csgottm.com
- PhishDestroy: https://phishdestroy.io/domain/csgottm.com/
- LLM endpoint: https://phishdestroy.io/domain/csgottm.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/csgottm.com/
Last updated: 2026-03-16