http://ubcoin.vip/Mgd9

Last Checked: Jan 14, 2022, 16:22 EST

IP Address: 37.1.209.150
ASN #: AS29802 HVC-AS, US
Location: Unknown, Unknown, Unknown
URL Reputation:
  • Unknown This URL is not identified as malicious in the PhishTank Database.
  • Unknown PhishCheck thinks this URL is likely not a phish.
  • Unknown OpenPhish: URL not in feed.

Other submissions on 37.1.209.150:

Other submissions on ubcoin.vip:

Previous checks:

                               Domain Name: UBCOIN.VIP
Registry Domain ID: D_02016C87_87798C22B6E0462CB09A94B4C5A8F071_000001789310B719-VIP
Registrar WHOIS Server: 
Registrar URL: 
Updated Date: 2021-04-14T03:20:11Z
Creation Date: 2021-04-02T14:50:49Z
Registry Expiry Date: 2023-04-02T14:50:49Z
Registrar: Go Canada Domains, LLC
Registrar IANA ID: 1150
Registrar Abuse Contact Email: abuse@godaddy.com
Registrar Abuse Contact Phone: +1.4806242505
Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
Domain Status: clientRenewProhibited https://icann.org/epp#clientRenewProhibited
Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Domain Status: clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited
Registry Registrant ID: REDACTED FOR PRIVACY
Registrant Name: REDACTED FOR PRIVACY
Registrant Organization: REDACTED FOR PRIVACY
Registrant Street: REDACTED FOR PRIVACY
Registrant Street: REDACTED FOR PRIVACY
Registrant Street: REDACTED FOR PRIVACY
Registrant City: REDACTED FOR PRIVACY
Registrant State/Province: Shaanxi
Registrant Postal Code: REDACTED FOR PRIVACY
Registrant Country: CN
Registrant Phone: REDACTED FOR PRIVACY
Registrant Fax: REDACTED FOR PRIVACY
Registrant Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.
Registry Admin ID: REDACTED FOR PRIVACY
Admin Name: REDACTED FOR PRIVACY
Admin Organization: REDACTED FOR PRIVACY
Admin Street: REDACTED FOR PRIVACY
Admin Street: REDACTED FOR PRIVACY
Admin Street: REDACTED FOR PRIVACY
Admin City: REDACTED FOR PRIVACY
Admin State/Province: REDACTED FOR PRIVACY
Admin Postal Code: REDACTED FOR PRIVACY
Admin Country: REDACTED FOR PRIVACY
Admin Phone: REDACTED FOR PRIVACY
Admin Fax: REDACTED FOR PRIVACY
Admin Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.
Registry Tech ID: REDACTED FOR PRIVACY
Tech Name: REDACTED FOR PRIVACY
Tech Organization: REDACTED FOR PRIVACY
Tech Street: REDACTED FOR PRIVACY
Tech Street: REDACTED FOR PRIVACY
Tech Street: REDACTED FOR PRIVACY
Tech City: REDACTED FOR PRIVACY
Tech State/Province: REDACTED FOR PRIVACY
Tech Postal Code: REDACTED FOR PRIVACY
Tech Country: REDACTED FOR PRIVACY
Tech Phone: REDACTED FOR PRIVACY
Tech Fax: REDACTED FOR PRIVACY
Tech Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.
Registry Billing ID: REDACTED FOR PRIVACY
Billing Name: REDACTED FOR PRIVACY
Billing Organization: REDACTED FOR PRIVACY
Billing Street: REDACTED FOR PRIVACY
Billing Street: REDACTED FOR PRIVACY
Billing Street: REDACTED FOR PRIVACY
Billing City: REDACTED FOR PRIVACY
Billing State/Province: REDACTED FOR PRIVACY
Billing Postal Code: REDACTED FOR PRIVACY
Billing Country: REDACTED FOR PRIVACY
Billing Phone: REDACTED FOR PRIVACY
Billing Fax: REDACTED FOR PRIVACY
Billing Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.
Name Server: ns1.alidns.com.
Name Server: ns2.alidns.com.
DNSSEC: unsigned
URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
>>> Last update of WHOIS database: 2022-01-14T21:22:11Z <<<

For more information on Whois status codes, please visit https://icann.org/epp

Terms and Conditions
The whois information provided on this site is intended to provide you with the relevant contact information for a domain name registrant and the identity of certain administrative and technical contacts associated with that domain name. The data in this record is provided by Minds + Machines Registry, a subsidiary of Minds + Machines Group Limited, formerly Top Level Domain Holdings Limited ("the Company"), for informational purposes only. Accuracy is not guaranteed. The Company is the authoritative source for whois information in top-level domains it operates under contract with the Internet Corporation for Assigned Names and Numbers. This service is intended only for query-based access. Note that the lack of a whois record for a particular domain does not indicate that the name is available for registration. By using this service, you agree that you will use any data presented for lawful purposes only and that under no circumstances will you use (a) data acquired for the purpose of allowing, enabling, or otherwise supporting the transmission by email, telephone, facsimile, or other communications mechanisms mass unsolicited, commercial, advertising, or solicitations to entities other than your existing customers; or (b) this service to enable high volume, automated, electronic processes that send queries or data to the systems of any registrar or any registry except as reasonably necessary to register domain names or to modify existing domain name registrations. The Company reserves the right to modify these terms at any time. By submitting this query, you agree to abide by this policy. All rights reserved.

                             
  • GET
    200 OK

    http://ubcoin.vip/Mgd9

  • GET
    200 OK

    http://detectportal.firefox.com/canonical.html

  • GET
    200 OK

    http://detectportal.firefox.com/success.txt?ipv4

  • GET
    200 OK

    http://detectportal.firefox.com/success.txt?ipv6

  • GET
    304 Not Modified

    https://content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-03-01-08-35-12.chain

  • POST
    200 OK

    https://cloud.antibot.cloud/antibot7.php

  • GET
    200 OK

    http://detectportal.firefox.com/canonical.html

  • GET
    200 OK

    http://detectportal.firefox.com/success.txt?ipv4

  • GET
    200 OK

    http://detectportal.firefox.com/success.txt?ipv6

  • GET
    200 OK

    http://detectportal.firefox.com/canonical.html

  • GET
    200 OK

    http://ubcoin.vip/favicon.ico

  • GET
    304 Not Modified

    https://content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-03-01-08-35-12.chain

  • GET
    200 OK

    http://detectportal.firefox.com/success.txt?ipv4

  • GET
    200 OK

    http://detectportal.firefox.com/success.txt?ipv6

  • GET
    302 Moved Temporarily

    https://counter.yadro.ru/hit;new124?t52.6;r;s1366*768*24;uhttp%3A//ubcoin.vip/Mgd9;hJust%20a%20moment...;0.38184124999461955

  • GET
    200 OK

    https://counter.yadro.ru/hit;new124?q;t52.6;r;s1366*768*24;uhttp%3A//ubcoin.vip/Mgd9;hJust%20a%20moment...;0.38184124999461955

  • https://counter.yadro.ru/hit;new124?t52.6;r;s1366*768*24;uhttp%3A//ubcoin.vip/Mgd9;hJust%20a%20moment...;0.38184124999461955 https://counter.yadro.ru/hit;new124?q;t52.6;r;s1366*768*24;uhttp%3A//ubcoin.vip/Mgd9;hJust%20a%20moment...;0.38184124999461955
<html dir="ltr" lang="en"><head>
  <meta charset="utf-8">
  <meta name="referrer" content="unsafe-url">
  <meta name="robots" content="noindex">
  <meta name="robots" content="noarchive">
  <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
  <link rel="dns-prefetch" href="https://cloud.antibot.cloud">
  <link rel="dns-prefetch" href="https://alt.antibot.cloud">
  <link rel="icon" href="/favicon.ico">
  <title>Just a moment...</title>
  <style>
html, body {width: 100%; height: 100%; margin: 0; padding: 0;}
body {background-color: #ffffff; font-family: Helvetica, Arial, sans-serif; font-size: 100%;}
h1 {font-size: 1.5em; color: #404040; text-align: center;}
p {font-size: 1em; color: #404040; text-align: center; margin: 10px 0 0 0;}
.btn-success {border: 2px solid transparent; background: #28a745; color: #ffffff; font-size: 18px; line-height: 15px; padding: 10px 10px; text-decoration: none; text-shadow: none; border-radius: 3px; box-shadow: none; transition: 0.25s; display: block; margin: 0 auto;}
.btn-success:hover {background-color: #218838;}
  </style>
</head>
<body>
  <table style="width:100%; height:100%; padding:20px;">
    <tbody><tr>
      <td style="vertical-align:middle; text-align:center;">
  <div id="cf-content">
    <p id="btn"><p style="font-size: 1.2em;">Are you not a robot? Click on the button to continue:</p><form action="/Mgd9" method="post"><input name="time" type="hidden" value="1642195327"><input name="antibot" type="hidden" value="8084fbc5947ab79cd58f6345c5517c9c"><input name="cid" type="hidden" value="1642195327.1306"><input style="cursor: pointer;" class="btn btn-success" type="submit" name="submit" value="I am human. Continue."></form></p>
    <p id="error" style="color:red;">0</p>
  </div>
      </td>
    </tr>
  </tbody></table>
<!-- -- counter code ----><style>
.btn-color {border: 2px solid transparent; cursor: pointer; font-size: 18px; line-height: 15px; padding: 15px 15px; text-decoration: none; text-shadow: none; border-radius: 3px; box-shadow: none; transition: 0.25s; display: block; margin: 0 auto;}
.btn-color:hover {line-height: 16px; padding: 16px 16px; border: 1px solid #ccc;}
</style>
<script>
if (window.location.hostname !== window.atob("dWJjb2luLnZpcA==") && window.location.hostname !== window.atob("")) {
window.location = window.atob("aHR0cDovL3ViY29pbi52aXAvTWdkOQ==");
throw "stop";
}

function b64_to_utf8(str) {
str = str.replace(/\s/g, '');    
return decodeURIComponent(escape(window.atob(str)));
}

setTimeout(Button, 4000);

var country = 'US';
var action = 'ubcoinvip';
var h1 = '8bf817906f856ad6043db21fea3758e6';
var h2 = '1e77b2526823b16ac208d75a74079f5c';
var ipfull = '142.93.23.27';
var ip = '142.93.23';
var via = '';
var v = '7.025';
var re = '0';
var rk = '6Lei7NsaAAAAAAxxI9cAS-RXWzzWfZZKWDC0U2xP';
var ho = '1';
var cid = '1642195327.1306';
var ptr = '142.93.23.27';
var width = screen.width;
var height = screen.height;
var cwidth = document.documentElement.clientWidth;
var cheight = document.documentElement.clientHeight;
var colordepth = screen.colorDepth;
var pixeldepth = screen.pixelDepth;
var phpreferrer = '';
var referrer = document.referrer;
if (referrer != '') {var referrer = document.referrer.split('/')[2].split(':')[0];}

function nore() {
//document.getElementById("btn").innerHTML = '✓✓✕';
var token = '0';
var data = 'country='+country+'&action='+action+'&token='+token+'&h1='+h1+'&h2='+h2+'&ipfull='+ipfull+'&ip='+ip+'&via='+via+'&v='+v+'&re='+re+'&rk='+rk+'&ho='+ho+'&cid='+cid+'&ptr='+ptr+'&w='+width+'&h='+height+'&cw='+cwidth+'&ch='+cheight+'&co='+colordepth+'&pi='+pixeldepth+'&ref='+referrer;
CloudTest(window.atob('aHR0cHM6Ly9jbG91ZC5hbnRpYm90LmNsb3VkL2FudGlib3Q3LnBocA=='), 5000, data, 0);
}
setTimeout(nore, 0000);

function Button() {
document.getElementById("btn").innerHTML = b64_to_utf8("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");	
}

function CloudTest(s, t, d, b){
var cloud = new XMLHttpRequest();
cloud.open("POST", s, true)
cloud.setRequestHeader('Content-type', 'application/x-www-form-urlencoded;');
cloud.timeout = t; // time in milliseconds

cloud.onload = function () {
if(cloud.status == 200) {
//document.getElementById("btn").innerHTML = '✓✓✓';
  console.log('good: '+cloud.status);
var obj = JSON.parse(this.responseText);
if (typeof(obj.error) == "string") {
document.getElementById("error").innerHTML = obj.error;
if (obj.error == "") {
var iframe = document.createElement('iframe');
iframe.style.display = "none";
iframe.src = "https://antibot.cloud/log.htm";
iframe.referrerPolicy = "no-referrer";
document.body.appendChild(iframe);
}
}
if (typeof(obj.cookie) == "string") {
document.getElementById("btn").innerHTML = "Loading page, please wait...";
var d = new Date();
d.setTime(d.getTime() + (10 * 24 * 60 * 60 * 1000));
var expires = "expires="+ d.toUTCString();
document.cookie = "antibot_8e4a19175ff1efa80bb486a146e32b29="+obj.cookie+"; " + expires + "; path=/;";
document.cookie = "lastcid="+obj.cid+"; " + expires + "; path=/;";
location.reload(true);
} else {
Button();
console.log('bad bot');
}
} else {
//document.getElementById("btn").innerHTML = '✓✓✕';
  console.log('other error');
  if (b == 1) {Button();} else {CloudTest(window.atob('aHR0cHM6Ly9hbHQuYW50aWJvdC5jbG91ZC9hbnRpYm90Ny5waHA='), 5000, d, 1);}
}
};
cloud.onerror = function(){
//document.getElementById("btn").innerHTML = '✓✓✕';
	console.log("error: "+cloud.status);
	if (b == 1) {Button();} else {CloudTest(window.atob('aHR0cHM6Ly9hbHQuYW50aWJvdC5jbG91ZC9hbnRpYm90Ny5waHA='), 5000, d, 1);}
}
cloud.ontimeout = function () {
  // timeout
//document.getElementById("btn").innerHTML = '✓✓✕';
  console.log('timeout');
  if (b == 1) {Button();} else {CloudTest(window.atob('aHR0cHM6Ly9hbHQuYW50aWJvdC5jbG91ZC9hbnRpYm90Ny5waHA='), 5000, d, 1);}
};
cloud.send(d);
}
</script>
<!--LiveInternet counter--><a href="https://www.liveinternet.ru/click;new124" target="_blank"><img id="licnt96F6" style="border:0" title="LiveInternet: показано число просмотров и посетителей за 24 часа" src="https://counter.yadro.ru/hit;new124?t52.6;r;s1366*768*24;uhttp%3A//ubcoin.vip/Mgd9;hJust%20a%20moment...;0.38184124999461955" alt="" width="88" height="31"></a><script>(function(d,s){d.getElementById("licnt96F6").src=
"https://counter.yadro.ru/hit;new124?t52.6;r"+escape(d.referrer)+
((typeof(s)=="undefined")?"":";s"+s.width+"*"+s.height+"*"+
(s.colorDepth?s.colorDepth:s.pixelDepth))+";u"+escape(d.URL)+
";h"+escape(d.title.substring(0,150))+";"+Math.random()})
(document,screen)</script><!--/LiveInternet-->


</body></html>

                             

Screenshot: