# pochta.cx — SUSPICIOUS

> pochta.cx was flagged for phishing and is now offline. Avoid sharing personal info or clicking suspicious links from this site.

## Summary
PhishDestroy identifies pochta.cx as a low-risk phishing domain that was used to deceive users by mimicking legitimate online services. Although currently taken offline, this domain posed a threat by attempting to collect sensitive information from unsuspecting visitors. Its low trust score and presence on a security blocklist confirm its malicious intent.

This phishing site operated by presenting a fake interface labeled "ПОЧТА МАРКЕТ," likely aiming to trick users into entering credentials or personal data. The domain resolved to an IP address known for hosting suspicious content and was registered through CentralNic Ltd. Its brief activity period and low detection rate indicate it was either newly active or targeted a niche group.

If you visited pochta.cx, it is important to remain vigilant. Do not enter any personal or financial information on suspicious sites. If you have shared data, consider changing your passwords and monitoring your accounts for unauthorized activity. Utilizing updated security software and avoiding clicking on unknown links can help prevent further risks.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: dead (HTTP 0)
- Page title: ПОЧТА МАРКЕТ

## Domain Intelligence
- Registered: 2026-03-04 19:07:02
- Registrar: CentralNic Ltd
- Country: GB
- IP: 45.148.17.113
- IP Country: SE
- IP City: Stockholm
- IP Org: AS42675 Obehosting AB
- Nameservers: 1-you.njalla.no 2-can.njalla.in 3-get.njalla.fo
- SSL Issuer: none

## Detection Status
- VirusTotal: 2 vendors flagged
  Vendors: ["Fortinet", "SOCRadar"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://i.ibb.co/wh6WQsKM/fd5975004ff7.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/04cc37e2-91f2-48fc-98e1-55ff56eaa208
- Wayback Machine: https://web.archive.org/web/https://pochta.cx
- PhishDestroy: https://phishdestroy.io/domain/pochta.cx/
- LLM endpoint: https://phishdestroy.io/domain/pochta.cx/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/pochta.cx/
Last updated: 2026-03-19