# uni-checkers.com — MALICIOUS

> Uni-checkers.com is a confirmed phishing site. Avoid interaction and report suspicious activity to protect your data and devices.

## Summary
PhishDestroy identifies uni-checkers.com as a high-risk phishing domain designed to deceive users and capture sensitive information. The domain's threat level is classified as high due to its malicious intent to impersonate legitimate services and trick users into revealing confidential data.

Supporting evidence for this classification includes detection by 14 out of 95 security vendors on VirusTotal, presence on three distinct security blocklists, and inclusion in an AlienVault OTX threat intelligence pulse. The domain was registered recently on February 21, 2026, through NiceNIC International Group Co., Limited, and resolves to IP address 188.114.97.3, which has been associated with suspicious activity. These factors strongly indicate coordinated phishing operations targeting unwary users.

Currently, uni-checkers.com has been taken offline to prevent further harm. Users are advised to avoid visiting this domain and to remain vigilant against phishing attempts that may originate from similar sources. Reporting any suspicious emails or links related to this domain to cybersecurity teams or authorities can aid in broader protective efforts. Maintaining updated security software and exercising caution with unsolicited communications are recommended best practices to mitigate risk.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: NiceNIC International Group Co., Limited
- Country: HK
- IP: 188.114.97.3
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["mallory.ns.cloudflare.com", "tony.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "Certego", "CRDF", "CyRadar", "ESET", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Gridinsoft", "Seclookup", "SOCRadar", "VIPRE"]
- Google Safe Browsing: clean
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019c7f9c-636b-7704-b796-2f24dbf1eb8f.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/89dc607a-ece9-4468-9870-4e54635ffa96
- PhishDestroy: https://phishdestroy.io/domain/uni-checkers.com/
- LLM endpoint: https://phishdestroy.io/domain/uni-checkers.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/uni-checkers.com/
Last updated: 2026-03-19