# php-3c34e.wasmer.app — MALICIOUS

> Check the safety status of php-3c34e.wasmer.app. Learn why this high-risk phishing domain is offline and what to do if you encountered it.

## Summary
PhishDestroy identifies php-3c34e.wasmer.app as a high-risk phishing domain that has been taken offline after detection. Phishing is a cybercrime where attackers impersonate legitimate websites to steal sensitive information such as passwords, financial details, or personal data. Users encountering such domains risk exposing themselves to identity theft or financial loss.

This particular domain was registered recently and flagged on a security blocklist, with 14 out of 95 VirusTotal antivirus engines identifying suspicious activity. While the domain currently displays an "App Disabled" page, it previously hosted phishing content designed to mislead users into entering confidential information. The domain resolved to IP 62.210.172.162 and was registered through Squarespace Domains II LLC, common for quickly deployed phishing sites.

If you have visited php-3c34e.wasmer.app, it is important to avoid providing any credentials or personal data. Immediately scan your devices with updated antivirus software and consider changing passwords for accounts that might have been compromised. Remain cautious of unsolicited links and verify website authenticity before sharing any information to reduce phishing risks in the future.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 410)
- Page title: App Disabled

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Squarespace Domains II LLC.
- Country: US
- IP: 62.210.172.162
- IP Country: FR
- IP City: Paris
- IP Org: AS12876 SCALEWAY S.A.S.
- Nameservers: ["alpha.ns.wasmernet.com", "beta.ns.wasmernet.com"]
- SSL Issuer: Let's Encrypt / E7

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["ADMINUSLabs", "Criminal IP", "alphaMountain.ai", "CyRadar", "ESET", "Forcepoint ThreatSeeker", "Fortinet", "Kaspersky", "Lionic", "Phishing Database", "SOCRadar", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ce573-15b3-733c-8582-85fa59af1f01.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/5031b221-9e1e-417b-ae02-9b66b3ecbc18
- PhishDestroy: https://phishdestroy.io/domain/php-3c34e.wasmer.app/
- LLM endpoint: https://phishdestroy.io/domain/php-3c34e.wasmer.app/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/php-3c34e.wasmer.app/
Last updated: 2026-03-19