# pc.executevip.vip — SUSPICIOUS

> pc.executevip.vip is linked to medium-risk phishing activity. Avoid interaction and report suspicious emails referencing this domain.

## Summary
PhishDestroy identifies pc.executevip.vip as an active domain engaged in generic phishing activities, posing a medium-level risk to users. The domain is designed to deceive victims into divulging sensitive information, potentially leading to financial loss or identity theft. Due to its recent creation and suspicious behavior patterns, users should exercise caution when encountering this domain in emails or online.

The domain pc.executevip.vip resolves to the IP address 188.114.96.3 and was registered on June 9, 2025, through Gname.com Pte. Ltd. VirusTotal analysis shows that 3 out of 95 security vendors have flagged this domain, indicating some level of detection but not widespread consensus. The domain’s fresh registration date and hosting details suggest it is part of a newly established phishing infrastructure possibly designed to evade early detection.

Currently, pc.executevip.vip remains active and continues to be a threat vector in phishing campaigns. PhishDestroy recommends users avoid clicking on links or opening attachments associated with this domain. Organizations should update email filters and endpoint protections to detect and block communications involving pc.executevip.vip. Continuous monitoring is advised to track any evolution in its tactics or expansion of its malicious activity.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP 200)
- Page title: Learnfx

## Domain Intelligence
- Registered: 2025-06-09 07:18:25
- Registrar: Gname.com Pte. Ltd.
- Country: SG
- IP: 188.114.96.3
- Nameservers: autumn.ns.cloudflare.com cory.ns.cloudflare.com

## Detection Status
- VirusTotal: 3 vendors flagged
  Vendors: ["ADMINUSLabs", "Google Safebrowsing", "LevelBlue"]
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cf6fb-77e4-775e-b55a-7e2c7332ec40.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/3c441b4b-7739-4983-b08e-16a6c78badca
- PhishDestroy: https://phishdestroy.io/domain/pc.executevip.vip/
- LLM endpoint: https://phishdestroy.io/domain/pc.executevip.vip/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/pc.executevip.vip/
Last updated: 2026-03-19