Fake pop-ups & scareware — don't click or call
9 of 92 antivirus engines flag this page (9 outright malicious). This page throws fake "you won a prize" or "your device is infected" pop-ups to push adware, browser-notification spam, unwanted extensions, or a fake "support" number. None of it is real — you didn't win, your device isn't infected, and every "Allow", "Download", or "Call" prompt leads to junkware or a scam. Close the tab, don't click "Allow" on any notification request, don't install anything, and never call a number it shows. If you already allowed notifications or installed something, revoke the permission and run a reputable adware / malware cleaner.
Is web-uphold-login-cdn.tem3.io legit or a scam?
Yes — this is almost certainly a scam.
Fake Uphold login page flagged by nine engines, hosted on an unregistered domain that pushes browser notifications.
Score breakdown
These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.
What this means for you
You were probably about to click 'Allow', 'Download', or a 'fix'/'claim' button.
Nothing is actually wrong with your device and you didn't win anything — those buttons install adware, spam notifications, or lead to a fake-support scam.
How this scam works
The trap, step by step
A pop-up screams “Congratulations, you won!” or “Your device is infected!”.
A fake countdown or alarm manufactures panic and urgency.
Clicking “Allow”, “Download”, “Scan now”, or “Call support” is the trap.
You get adware, spam notifications, and junk extensions — or a fake phone-support scam.
Recognising the pattern is the best defence — if a site follows these steps, close it and don't enter anything.
Analysis Summary
Intelligence
The page title and meta description directly copy Uphold branding while offering a login flow. BitDefender, ESET, Fortinet, Kaspersky and five other engines all classify the URL as phishing. The domain has no WHOIS record and is not indexed by any traffic-ranking service, which is typical for throwaway phishing infrastructure. The site loads scripts from multiple unrelated domains and immediately asks for push-notification permission, a known vector for further abuse. No contact details, business address, or phone number appear anywhere on the page. These signals together indicate the site exists to harvest credentials rather than provide legitimate access.
Web Research Findings
Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for web-uphold-login-cdn.tem3.io, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.
We searched scam-report databases, consumer-review sites, and general web sources for web-uphold-login-cdn.tem3.io and did not find scam reports, complaints, or impersonation signals. The domain age, registration record and aggregator reviews shown above are consistent with a legitimate site.
Threat Detection
Antivirus Engines
Security Scans
Checked against the major public blocklists used by browsers and security tools — no hits.
Reputation Sources
How this domain rates across independent threat-intelligence and blocklist providers.
Scam-Type Likelihood
1 scam-type patterns detected
1 of 21 categories showed signals
We check every URL against 21 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.
- Tagged as scareware / adware / malvertising.
- Scareware / adware / notification-spam language in the tags.
- Browser push-notification spam / 'click Allow' bait detected.
1 of 21 categories showed signals
We check every URL against 21 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.
- Tagged as scareware / adware / malvertising.
- Scareware / adware / notification-spam language in the tags.
- Browser push-notification spam / 'click Allow' bait detected.
Technical Details
domain · encryption · redirects · server reputation · referencedThe plumbing behind the site — who registered it, how it’s encrypted, where it’s hosted, and where it links out. A valid certificate or a calm server doesn’t mean the business is honest — scam sites pass these checks too. Use this to corroborate the verdict, not to overturn it.
Contact Verification
We fetched the page and looked for real-world contact details. Legitimate businesses almost always publish an email on their own domain, a phone number, and a postal address. Scam shops usually don't.
- No contact email found anywhere on the page.
- No phone number listed on the page.
- No postal address visible on the page.
- Page requests browser push-notification permission — common malvertising vector.
- Scam family match: Push-Notification Spam.
Domain & Encryption
Server Reputation
Referenced Domains
Outbound domains this page links to or loads resources from. Each links to its own security scan.
What to do
Fake pop-ups & scareware
This page uses fake "you won a prize" or "your device is infected" pop-ups to push adware, browser-notification spam, unwanted extensions, or a fake support number — none of it is real.
- Do not interact with web-uphold-login-cdn.tem3.io
Do not enter credentials, deposit money, download files, or install browser extensions from this site.
- Close the tab — don't click "Allow", "Download", or "Call"
You didn't win, and your device isn't infected. Every "Allow notifications", "Download", "Scan now", or "Call support" button leads to adware, junk extensions, or a scam. Just close the tab — or the whole browser.
- If you clicked "Allow", turn the notifications back off
Open your browser's Site Settings → Notifications, find the site, and set it to Block (or remove it). That stops the spam pop-ups it now pushes to your desktop.
- OpenRemove anything it installed, then run an adware scan
Uninstall any browser extension, "player", "codec", or app you added because of this page, and run a reputable free adware / malware cleaner (e.g. Malwarebytes) to clear leftover PUPs. And never call a number shown in a pop-up — real vendors don't do that.
Final Verdict
This page impersonates Uphold's login portal. Nine antivirus engines flagged it as phishing, the domain is unregistered in public records, and it requests push-notification permission.
Safety FAQ
Common questions, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.
- web-uphold-login-cdn.tem3.io is a scareware / fake-pop-up page — the kind that flashes "Congratulations, you won!" or "Your device is infected!" alerts to push adware, browser-notification spam, unwanted extensions, or a fake support number. 9 of 92 security engines flag it (9 as outright malicious). None of it is real — you didn't win, your device isn't infected, and its "Allow", "Download", and "Call" buttons all lead to junkware or a scam. Close the tab: don't click anything, don't allow notifications, and never call a number it shows.
- No — web-uphold-login-cdn.tem3.io scored just 1/100 on our trust scale, and we detected active threat indicators. We recommend avoiding it entirely: don't log in, pay, download anything, or connect a wallet.
- Almost certainly not from just loading it. web-uphold-login-cdn.tem3.io shows fake "you won a prize" or "your device is infected" pop-ups to scare or tempt you into clicking — the pop-up itself is the trick, not a real infection or a real prize. The danger is what happens if you act on it: clicking "Allow" turns on spam desktop notifications, and "Download", "Update", or "Scan now" buttons install adware, unwanted extensions, or PUPs. If you only saw the pop-ups and closed the tab, you're fine. If you clicked "Allow", block the site under your browser's Notifications settings; if you installed or downloaded anything, remove it and run a reputable free adware/malware cleaner (e.g. Malwarebytes). And never call a "support" number shown in a pop-up — that's a scam.
- No. The "Congratulations, you won!" and "Your device is infected!" pop-ups on web-uphold-login-cdn.tem3.io are fake — an automated ad-network page shows the same message to everyone who lands on it. You didn't win anything, and nothing actually scanned your device. The whole point is to get you to click: "Claim", "Allow", "Download", and "Call" all lead to adware, spam notifications, junk browser extensions, or a fake-support phone scam. Close the tab and don't click anything on the page.
- If you're getting pop-ups even after closing the page, you probably clicked "Allow" on a notification prompt — the spam now comes from your browser, not the site. Open your browser settings → Site Settings → Notifications, find web-uphold-login-cdn.tem3.io (and anything else you don't recognise), and set it to Block or remove it. Then uninstall any extension, "player", or app you added because of the page, and run a reputable free adware/malware cleaner (e.g. Malwarebytes) to clear leftover PUPs.
- Yes. 9 of 92 antivirus and blocklist engines in our malware network flagged web-uphold-login-cdn.tem3.io, 9 of them as outright malicious. Even a single detection from a reputable engine is a meaningful warning, and multiple detections rarely happen by accident.
- No — web-uphold-login-cdn.tem3.io is not currently on the major browser blocklist feeds that Chrome, Safari, Firefox, and Edge rely on. Note that blocklists can lag behind brand-new scam domains, so "not listed" is reassuring but not a guarantee on its own.
- web-uphold-login-cdn.tem3.io resolves to an IP operated by Cloudflare, Inc. in US (Content Delivery Network). Hosting location alone doesn't make a site good or bad — but hosting that doesn't match a brand's claimed country, or that sits on networks known for abuse, is one of the many signals we weigh alongside the verdict above.
- This report is a record of the scan run on July 15, 2026, and the verdict reflects that point in time. Scam sites change fast — they can go live, get flagged, or vanish within days — so if you believe something about web-uphold-login-cdn.tem3.io has changed, MalwareTips staff can run a fresh scan that re-checks every signal from scratch and republishes an updated verdict.
User reviews & comments(0)
Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.