# pvpgrams.com — SUSPICIOUS > Investigating pvpgrams.com for generic phishing hosting a fake login page. Domain registered Oct 21, 2024, resolving to IP 188.114.96. ## Summary PhishDestroy identifies pvpgrams.com as an active generic phishing domain under investigation for harvesting credentials via deceptive login interfaces. The domain poses a direct threat to users who may unknowingly submit sensitive information to spoofed forms. Initial analysis confirms registration through NICENIC INTERNATIONAL GROUP CO., LIMITED, creation on October 21, 2024, and resolution to IP 188.114.96.3 under a Google Trust Services SSL certificate. As of this report, VirusTotal shows 0/95 detection engines flagging the domain or its IP, indicating low prior scrutiny despite active malicious hosting. This domain was flagged for generic phishing due to its likely use in credential harvesting campaigns, where victims are lured via social engineering to input login details into counterfeit interfaces. Technical indicators include registration through a privacy-preserving registrar (NICENIC INTERNATIONAL GROUP CO., LIMITED), a recently created domain (October 21, 2024), and hosting on IP 188.114.96.3. The presence of a Google Trust Services SSL certificate suggests an attempt to appear legitimate, while the 0/95 VirusTotal detection ratio highlights the stealthy nature of this campaign. No blocklist entries were detected during initial analysis, further emphasizing the need for proactive monitoring. To mitigate risks associated with pvpgrams.com, users should avoid interacting with the domain or any subdomains. Organizations are advised to block IP 188.114.96.3 and the domain at network and endpoint levels. Implementing DNS filtering to block newly registered domains with low trust scores is critical. Users who may have entered credentials should immediately reset passwords, enable multi-factor authentication, and monitor for signs of account compromise. Reporting the domain to threat intelligence platforms and local CERT teams aids in disrupting ongoing campaigns. Proactive threat hunting for similar patterns is recommended given the domain’s recent registration and unflagged status. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2024-10-21 10:48:44 - Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED - IP: 188.114.96.3 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/43830b1a-cd46-478c-8ea5-160bf0e94310 - PhishDestroy: https://phishdestroy.io/domain/pvpgrams.com/ - LLM endpoint: https://phishdestroy.io/domain/pvpgrams.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/pvpgrams.com/ Last updated: 2026-03-27