# rpcconnect.info — MALICIOUS

> rpcconnect.info is a live fake RPC portal phishing domain flagged by 5/95 VirusTotal scanners. Immediate risk detected. Check the full report.

## Summary
PhishDestroy identifies rpcconnect.info as an active phishing domain impersonating an RPC portal service, posing an elevated threat to users seeking remote procedure connections. This domain (risk level: elevated) leverages deceptive branding to harvest authentication credentials or deploy malware under the guise of legitimate RPC toolkits. Users attempting access to this domain are at high risk of credential theft or system compromise.  

This domain was flagged by 5 of 95 VirusTotal security vendors, resolving to IP address 195.179.236.67. Registered on March 25, 2026 through HOSTINGER operations UAB, it utilizes a Let's Encrypt SSL certificate to appear legitimate. The domain has not yet been widely listed on major blocklists but exhibits low trust scores due to its recent creation and suspicious naming conventions.  

To mitigate risk, immediately block rpcconnect.info at network and endpoint levels using DNS filtering or host file modifications. Avoid all interactions with this domain, including clicking links or downloading files. Report any accidental exposure to your security team for incident response. If you suspect credential compromise, revoke affected RPC portal access tokens immediately and audit authentication logs for anomalies.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-25 19:42:13
- Registrar: HOSTINGER operations, UAB
- IP: 195.179.236.67

## Detection Status
- VirusTotal: 5 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/4d2ee379-6f4f-4be9-a868-ca2b8c8c0671
- PhishDestroy: https://phishdestroy.io/domain/rpcconnect.info/
- LLM endpoint: https://phishdestroy.io/domain/rpcconnect.info/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/rpcconnect.info/
Last updated: 2026-03-28