# ostlium.click — MALICIOUS

> Discover why ostlium.click was flagged for phishing. Learn about its high-risk status, technical details, and current offline state to stay protected online.

## Summary
PhishDestroy identifies ostlium.click as a high-risk phishing domain. The domain was classified due to suspicious activity aimed at deceiving users, likely to capture sensitive credentials or financial information. It was registered recently on February 21, 2026, which is common in phishing setups to avoid long-term detection. The page title "6,783.38 | SPX/USD | Ostium" suggests an attempt to mimic financial trading or investment platforms, a common lure in phishing campaigns.

Technical indicators show ostlium.click resolved to the IP address 88.222.222.15 and was registered through Dynadot LLC. The domain appears on one security blocklist, and VirusTotal flagged it by 10 out of 95 security vendors, indicating notable but not overwhelming detection coverage. These factors, combined with the domain’s generic “.click” TLD, support its classification as a phishing threat. The page content and infrastructure suggest a generic phishing approach rather than a targeted brand impersonation.

Currently, ostlium.click is offline, reflecting a swift takedown response after detection. Its removal from active servers reduces immediate risk, but users should remain cautious of similar domains and phishing tactics. PhishDestroy recommends maintaining updated security software and avoiding unknown or suspicious URLs, especially those with newly registered domains mimicking financial services. Monitoring and blocking such domains remain critical to preventing credential theft and related cyber threats.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 0)
- Page title: 6,783.38 | SPX/USD | Ostium

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Dynadot LLC
- Country: US
- IP: 88.222.222.15
- IP Country: LT
- IP City: Kaunas
- IP Org: AS47583 Hostinger International Limited
- Nameservers: ["demi.ns.cloudflare.com", "vasilii.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 10 vendors flagged
  Vendors: ["alphaMountain.ai", "CRDF", "CyRadar", "Ermes", "Forcepoint ThreatSeeker", "Fortinet", "Gridinsoft", "SOCRadar", "Sophos", "Trustwave"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cb591-cd46-71eb-a1d0-4242065dc1a6.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/99ef657b-d96c-4a8b-bec0-e80e54908797
- PhishDestroy: https://phishdestroy.io/domain/ostlium.click/
- LLM endpoint: https://phishdestroy.io/domain/ostlium.click/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ostlium.click/
Last updated: 2026-03-19