# quazinovus.net — MALICIOUS

> quazinovus.net flagged for phishing activity and now offline. Learn about its threat profile, infrastructure, and safety recommendations.

## Summary
PhishDestroy identifies quazinovus.net as a medium-risk phishing domain flagged for generic phishing attempts. The domain was created recently on March 7, 2026, and has been associated with suspicious activities that prompted security vendors to place it on blocklists. Its page title, "Suspected phishing site | Cloudflare," indicates interception by protective services, highlighting potential malicious intent to deceive users.

The domain resolved to the IP address 104.21.13.207 and was registered via PDR Ltd. d/b/a PublicDomainRegistry.com. Analysis through VirusTotal revealed that 7 out of 95 security engines detected malicious or phishing-related behavior linked to this domain. It appeared on two separate security blocklists, confirming its involvement in phishing campaigns and justifying the medium risk assessment. The infrastructure setup suggests usage of Cloudflare for proxying traffic, which is common in phishing operations to anonymize origin and evade detection.

Currently, quazinovus.net is offline and inaccessible, significantly reducing its threat potential to end users. PhishDestroy recommends continued monitoring for any resurgence under this or related domains and advises users to remain vigilant against phishing attempts, particularly from newly registered domains with limited reputations. Organizations should update their filters and blocklists accordingly to prevent exposure to similar threats.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-03-07 21:07:02
- Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com
- Country: IN
- IP: 104.21.13.207
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["dom.ns.cloudflare.com", "jean.ns.cloudflare.com"]
- SSL Issuer: none

## Detection Status
- VirusTotal: 7 vendors flagged
  Vendors: ["ADMINUSLabs", "CyRadar", "Fortinet", "Google Safebrowsing", "Gridinsoft", "Lionic", "SOCRadar"]
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "MetaMask"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cc9ce-467b-729c-bc9a-6ba47630e970.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/04216d4a-7bcd-481f-992c-0506642feb1b
- Wayback Machine: https://web.archive.org/web/https://quazinovus.net
- PhishDestroy: https://phishdestroy.io/domain/quazinovus.net/
- LLM endpoint: https://phishdestroy.io/domain/quazinovus.net/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/quazinovus.net/
Last updated: 2026-03-19