# ouyich.cc — SUSPICIOUS

> ouyich.cc hosts a fake login portal stealing credentials. 1/95 antivirus engines detected this phishing page. Check the full report.

## Summary
PhishDestroy identifies ouyich.cc as an active fake login portal phishing domain designed to harvest user credentials under the guise of a legitimate service.

This domain was flagged by only 1 of 95 VirusTotal security vendors, was registered through DYNADOT LLC on July 31, 2025, and resolves to the IP address 54.215.31.113. The domain uses a Let’s Encrypt SSL certificate to appear trustworthy, giving it a deceptive sense of legitimacy. Despite low detection rates, the absence from major blocklists and recent creation date suggest a rapidly evolving threat.

Users should avoid entering any login credentials on this domain. Organizations are advised to block ouyich.cc at the network perimeter and monitor DNS logs for related activity. Always verify URLs before submitting sensitive information and use multi-factor authentication to reduce the impact of credential theft.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2025-07-31 18:50:36
- Registrar: DYNADOT LLC
- IP: 54.215.31.113

## Detection Status
- VirusTotal: 1 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/5cde0bbc-f301-47d8-a2df-53a697bc164f
- PhishDestroy: https://phishdestroy.io/domain/ouyich.cc/
- LLM endpoint: https://phishdestroy.io/domain/ouyich.cc/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ouyich.cc/
Last updated: 2026-03-29