# pc.puprimecfdindnh.cc — MALICIOUS

> pc.puprimecfdindnh.cc hosts a deceptive PuPrime CFD phishing site. VirusTotal flags 5/95 vendors; check the full report for IOCs and mitigation steps.

## Summary
PhishDestroy identifies pc.puprimecfdindnh.cc as an active fake PuPrime Contracts-For-Difference (CFD) portal designed to harvest trading credentials and payment data from victims posing as the legitimate broker PuPrime.

This domain was flagged by 5 of 95 VirusTotal security vendors, registered through Gname.com Pte. Ltd. on March 11, 2026, and resolves to IP 188.114.97.3 under a Let’s Encrypt SSL certificate. Historical telemetry places this host on emerging phishing blocklists within 72 hours of creation, indicating rapid takedown evasion tactics.

If you clicked links from emails, ads, or social posts leading to pc.puprimecfdindnh.cc, immediately change any reused passwords and revoke permissions for saved payment methods. Disable browser autofill for forms on this domain, clear cached credentials, and run a full antivirus scan. Report the incident to your financial institutions and consider a credit freeze to limit fraudulent transactions.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-11 08:23:45
- Registrar: Gname.com Pte. Ltd.
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 5 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/pc.puprimecfdindnh.cc
- PhishDestroy: https://phishdestroy.io/domain/pc.puprimecfdindnh.cc/
- LLM endpoint: https://phishdestroy.io/domain/pc.puprimecfdindnh.cc/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/pc.puprimecfdindnh.cc/
Last updated: 2026-04-10