# robi-hood-log.webflow.io — MALICIOUS

> Avoid robi-hood-log.webflow.io—high-risk phishing domain now offline but previously flagged. Stay alert and verify before clicking links.

## Summary
PhishDestroy has identified the domain robi-hood-log.webflow.io as a high-risk phishing threat. Although currently offline, this domain was used to deceive users, potentially compromising sensitive information. Phishing remains a critical threat as attackers impersonate legitimate services to steal credentials and financial data.

The domain was registered recently on March 4, 2026, and resolved to the IP address 104.18.36.248, associated with known malicious infrastructure. It appeared on one security blocklist, and VirusTotal analysis flagged it by 16 out of 95 security vendors, confirming its suspicious nature. The website itself displayed a '404 - Page not found' error, indicating it has been taken offline.

Users should remain vigilant and avoid interacting with links or attachments from suspicious sources, especially those resembling robi-hood-log.webflow.io. Always verify the authenticity of URLs before submitting personal information. Security teams are encouraged to update their blocklists and educate users about this threat to prevent potential phishing attacks.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 404)
- Page title: 404 - Page not found

## Domain Intelligence
- Registered: 2026-03-04 15:07:01
- IP: 104.18.36.248
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: NS_NOT_FOUND
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 16 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "CyRadar", "DNS8", "Emsisoft", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Gridinsoft", "Kaspersky", "Lionic", "Netcraft", "OpenPhish", "Sophos", "Trustwave", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cb915-6fe6-707e-9ca1-b3c384b5edd8.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/42f415ce-7c79-48b9-bf60-7a4df63ccbcf
- Wayback Machine: https://web.archive.org/web/https://robi-hood-log.webflow.io
- PhishDestroy: https://phishdestroy.io/domain/robi-hood-log.webflow.io/
- LLM endpoint: https://phishdestroy.io/domain/robi-hood-log.webflow.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/robi-hood-log.webflow.io/
Last updated: 2026-03-19