Help
RSS
API
Feed
Maltego
Contact
Domain > 12345vip8.com
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
DNS Resolutions
Date
IP Address
2023-09-01
45.207.4.46
(
ClassC
)
2023-12-06
45.207.4.103
(
ClassC
)
2025-03-30
43.199.96.133
(
ClassC
)
Port 80
HTTP/1.1 301 Moved PermanentlyServer: openrestyDate: Sun, 30 Mar 2025 01:31:19 GMTContent-Type: text/htmlContent-Length: 166Connection: keep-aliveLocation: https://12345vip8.com/ html>head>title>301 Moved Permanently/title>/head>body>center>h1>301 Moved Permanently/h1>/center>hr>center>openresty/center>/body>/html>
Port 443
HTTP/1.1 200 OKServer: openrestyDate: Sun, 30 Mar 2025 01:31:20 GMTContent-Type: text/html; charsetutf-8Content-Length: 4766Connection: keep-aliveVary: Accept-Encodingx-amz-id-2: 7f1eNuzhFJZIL+8jw+0n6OidFOKlL2sLssyZccft9vyaVyE94ubTRUYh1uCqtwNH5DAHZBn/Iwi4EECdQ92MAwx-amz-request-id: ZNESWXJVMF415GWCLast-Modified: Mon, 24 Mar 2025 17:19:01 GMTETag: 33eac1a8ee9361b3fbf7340a2e07d816x-amz-server-side-encryption: AES256Accept-Ranges: bytesCache-Control: no-store, no-cache, must-revalidate, proxy-revalidatePragma: no-cacheExpires: 0 !DOCTYPE html>head> meta charsetutf-8> meta namecolor-scheme contentlight dark> meta nametheme-color content#fff> meta nameviewport contentwidthdevice-width, initial-scale1.0, maximum-scale1.0, user-scalableno> style> body { margin: 0; font-family: Arial, sans-serif; } /* 顶部加载进度条的样式 */ .loading-bar { position: fixed; top: 0; left: 0; width: 0%; height: 3px; background-color: #4caf50; /* 绿色进度条 */ z-index: 9999; } /style> /head>body idt classneterror stylefont-family: Segoe UI,Arial,Microsoft Yahei,sans-serif; font-size: 75% jstcache0>div classloading-bar idloadingBar>/div>/body>script srchttps://code.bdstatic.com/npm/jquery@3.6.0/dist/jquery.min.js>/script>script> let siteList Mo03gE/dLVajuE74VcWyJodHRwOi8vaG0uYjAyNjIuc2hvcC8zMjc2MC5odG1sIiwiaHR0cDovL2htMS5iMDI2Mi5zaG9wLzMyNzYwLmh0bWwiLCJodHRwOi8vaG0yLmIwMjYyLnNob3AvMzI3NjAuaHRtbCJd0xE65DeyeK3pqmpw1jT9XyxGLwzSUv/S; let agent ; function mainRedirectLogic() { try { checkDomains(parseSites(siteList)); } catch { console.error(An error occurred:); } } function parseSites(siteList) { let _0x4b2752 siteListsubstring(0x12, siteListlength - 0x20); return _0x4b2752 atob(_0x4b2752), JSONparse(_0x4b2752); } function OK() { console.log(This is good!); } function checkDomainByJsonp(domainUrl) { return new Promise((resolve, reject) > { //这里为了防止出现跨协议的报错,http访问https的问题,将协议给去除,下面这个方法保留域名的端口 let checkUrl // + new URL(domainUrl).host; $.ajax({ url: checkUrl + /check, dataType: jsonp, timeout: 4000, jsonpCallback: OK, complete: function (response) { if (response.status 200) { setupPage(domainUrl); resolve({ domain: domainUrl, status: reachable}); } else { reject({ domain: domainUrl, status: blocked or not reachable }); } } }); }); } // 并行检测多个域名 function checkDomains(domains) { const checkPromises domains.map(domain > { return checkDomainByJsonp(domain).catch(() > {}); }); // 使用 Promise.all 发起所有请求,但不等待结果 Promise.all(checkPromises); } function isEmptyStr(str) { return str null || str undefined || str.trim().length 0; }/script>script> document.addEventListener(DOMContentLoaded, async function () { try { simulateLoading(); await mainRedirectLogic(); } catch (error) { console.error(An error occurred in mainRedirectLogic:, error.message); } }); const loadingBar document.getElementById(loadingBar); let progress 0; function simulateLoading() { if (progress 100) { progress + Math.random() * 10; // 模拟加载速度 loadingBar.style.width Math.min(progress, 100) + %; setTimeout(simulateLoading, 50); } else { loadingBar.style.transition opacity 0.5s; loadingBar.style.opacity 0; setTimeout(() > { loadingBar.style.display none; }, 500); } } let isRunning false; function setupPage(jumpUrl) { if (isRunning) return; // 给方法加锁 isRunning true; let rcCode; let route window.location.pathname; if (!isEmptyStr(route) && route.startsWith(/r/)) { rcCode route.split(/r/)1; } if (!isEmptyStr(agent) && isEmptyStr(rcCode)) { rcCode agent; } if (isEmptyStr(rcCode)) { let url new URL(window.location.href); let params new URLSearchParams(url.search); rcCode params.get(rcCode); } if (isEmptyStr(rcCode)) { rcCode document.location.host; } jumpUrl (jumpUrl.includes(.html)) ? jumpUrl + ?rcCode + rcCode : jumpUrl + /r/ + rcCode; jumpUrl jumpUrl.replace(http:, https:); setTimeout(function () { window.location.replace(jumpUrl); }, 300); }/script>
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]