www[.]astesrdex[.]claims
“Aster airdrop”
Infrastructure analysis reveals www[.]astesrdex[.]claims is registered via NICENIC INTERNATIONAL GROUP CO., LIMITED, registered approximately 2 months ago. The resolved IP address is 104.21.11.213. The domain is listed on PhishDestroy, MetaMask, SEAL security blocklists.
www[.]astesrdex[.]claims has been successfully taken offline. PhishDestroy continues to monitor for potential reactivation or clone domains that may use similar infrastructure.
See also these related threats: Other suspicious domains registered via NICENIC INTERNATIONAL GROUP CO., LIMITED: [unlock-wlfi.xyz](/domain/unlock-wlfi.xyz), [season1-dreamcash.com](/domain/season1-dreamcash.com).
Threat Response Pipeline
Public Blocklist Status
Evidence Capture
Domain Intelligence
anirban.ns.cloudflare.com
VirusTotal Analysis
Evidence & External Reports
Were You Affected by This Site?
If you have interacted with this domain, entered personal information, or connected a cryptocurrency wallet — take immediate action. Below are resources to help you report the incident and protect yourself.
Report to Your Local Authorities
Select your country to see local cybercrime reporting contacts and complaint templates.
Related Domain Reports
Other Domains on 104.21.11.213
More Domains at NICENIC INTERNATIONAL GROUP CO., LIMITED
Airdrop Scam Campaign Domains
Part of the Airdrop Scam phishing campaign. View all campaign domains →
About This Report: www.astesrdex.claims
This domain security report for www.astesrdex.claims is maintained by PhishDestroy's automated threat intelligence pipeline. Our system continuously monitors this domain across 95 security vendors on VirusTotal, URLScan.io.
The site displays a page titled “Aster airdrop”.
www.astesrdex.claims has been flagged by 6 security vendors as of February 28, 2026.
If you believe this listing is inaccurate, you can submit an appeal. For more information about our methodology, visit our FAQ page.
Stay Informed, Stay Safe
Monitor live threats or contest this listing if you believe it's a false positive



URLScan Report