Domain > 31121.co

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2024-11-14	23.23.176.56 (ClassC)
2025-10-17	5.254.129.9 (ClassC)

HTTP/1.1 200 OKContent-Type: text/htmlLast-Modified: Sat, 16 Aug 2025 13:33:45 GMTAccept-Ranges: bytesETag: deb7f963b2edc1:0Server: Microsoft-IIS/7.5Date: Fri, 17 Oct 2025 01:35:27 GMTContent-Length: 8838

!DOCTYPE html>html>	head>		meta http-equivContent-Type contenttext/html; charsetutf-8 />		meta http-equivX-UA-Compatible contentIEEdge,chrome1 />		meta namerenderer contentwebkit />		meta			nameviewport			contentwidthdevice-width,initial-scale1,maximum-scale1		/>		meta nameapple-mobile-web-app-capable contentyes />		meta nameformat-detection contenttelephoneno />		title>开启财富之门/title>		meta namekeywords content关键词 />		meta namedescription content描述 />		link relshortcut icon hrefimages/h5icon.ico typeimage/x-icon />		link hrefcss/swiper.min.css relstylesheet typetext/css />		link hrefcss/css.css relstylesheet typetext/css />		link hrefcss/media.css relstylesheet typetext/css />		script typetext/javascript>			var oWidth 				document.documentElement.clientWidth || document.body.clientWidth;			if (oWidth  1024) {				window.location.href  wap/index.html;			} else {			}			window.addEventListener(				orientationchange,				function () {					var oWidth 						document.documentElement.clientWidth || document.body.clientWidth;					if (oWidth  1024) {						window.location.href  wap/index.html;					}				},				false			);			window.addEventListener(				resize,				function () {					var oWidth 						document.documentElement.clientWidth || document.body.clientWidth;					if (oWidth  1180) {						window.location.href  wap/index.html;					}				},				false			);		/script>			/head>	body>				div classmain>						div classbottom>				div classweb>					ul>						li>							span classtext								>img srcimages/webicon01.png alt />线路 一/span							>							span classtext2 ms idlineMs0>读取中.../span>							span classtext2 site idline0>读取中.../span>							a href# idlink0 target_blank>立即进入/a>						/li>						li>							span classtext								>img srcimages/webicon02.png alt />线路 二/span							>							span classtext2 ms idlineMs1>读取中.../span>							span classtext2 site idline1>读取中.../span>							a href# idlink1 target_blank>立即进入/a>						/li>						li>							span classtext								>img srcimages/webicon03.png alt />线路 三/span							>							span classtext2 ms idlineMs2>读取中.../span>							span classtext2 site idline2>读取中.../span>							a href# idlink2 target_blank>立即进入/a>						/li>						li>							span classtext								>img srcimages/webicon04.png alt />线路 四/span							>							span classtext2 ms idlineMs3>读取中.../span>							span classtext2 site idline3>读取中.../span>							a href# idlink3 target_blank>立即进入/a>						/li>						li>							span classtext								>img srcimages/webicon05.png alt />线路 五/span							>							span classtext2 ms idlineMs4>读取中.../span>							span classtext2 site idline4>读取中.../span>							a href# idlink4 target_blank>立即进入/a>						/li>					/ul>				/div>				div classcontent>				div classlogo>img srcimages/logo.png alt />/div>				div classmenu>					span						classm01 download-btn					>						span classicon>/span>						span classtext>							span classcn>官方APP下载/span>							span classen>Download APP/span>						/span>					/span>					span						classm02						idgetMoney						onclickgetRandomevent(money)					>						span classicon>/span>						span classtext>							span classcn>全民推广赚钱/span>							span classen>Promote to Earn/span>						/span>					/span>					span						classm03						idcenter						onclickgetRandomevent(center)					>						span classicon>/span>						span classtext>							span classcn>优惠活动中心/span>							span classen>Promotions/span>						/span>					/span>					span						classm04 kf online					>						span classicon>/span>						span classtext>							span classcn>7x24H在线客服/span>							span classen>Customer Service/span>						/span>					/span>				/div>			/div>			/div>		/div>		script src./sdks/cg-download-lib.umd.js>/script>	script>		setInterval(() > {			changeCheck();		}, 3000);		//默认开始显示域名		var autourldefault  			https://146.103.79.89:5001,			https://211.43.148.25:5001,			https://138.113.7.236:5001,			https://138.113.7.215:5001,			https://www25s-ws.45000022.com:20067,			https://wwwss5s-sedb.45000044.com:20067,			https://wwws56-ss8.45001188.com:8090,			https://www.45001155.com:8090,			https://wwws23-s56.45001199.com:8090,			https://www450-00k.45001166.com:8090,			https://wwwss5s-sedb.45000044.com:20067,			https://wwws56-ss8.45001188.com:8090,		;		//泛解析域名		var mdomain  				//默认渠道ID		var domainKeys  {			127.0.0.1: 654321,		};		var currentDomain  window.location.hostname;		var reparams  {			cid: domainKeyscurrentDomain || 2304096 //默认CID		};		function changeCheck() {			var list  document.querySelectorAll(.ms);			var getparam  getUrlParam()			list.forEach((item) > {				item.innerHTML  getRandom(10, 20) + ms;			});			var listSITE  document.querySelectorAll(.site);			var lobby_domain  window.COMBODOMAIN || autourldefault			var listdomain  lobby_domain.concat(mdomain)			listSITE.forEach((item, index) > {				var rand  getRandom(0, listdomain.length - 1)				var doma  listdomainrand				if(doma.indexOf(://) ! -1){					doma  listdomainrand.split(:)1.replace(//, )				}				item.innerHTML  doma;				var urldomain  listdomainrand				if (index  5) {					var link  document.getElementById(`link${index}`);					if(mdomain.includes(doma)){						urldomain  //www+ generateDomain() + . + doma					}					var isgetcid   getparam.cid ? ?cid + getparam.cid : ?cid + reparams.cid					link.href  urldomain + isgetcid ;				}			});		}		//随机生成临时域名 自动生成前缀5-16位字母+数字组合域名，且 不可修改		function generateDomain() {			var randomNumber  getRandom(5,16)			return randomString(randomNumber)		}		/**		 * 随机生成字符串		 */		function randomString(letterNumber  4) {			var getNum  			for (let i  0; i  letterNumber; i++) {				//生成小写字母				var ranNum  Math.ceil(Math.random() * 25)				var downerCase  String.fromCharCode(97 + ranNum)				//生成随机0-9的数字				var numberCase  Math.floor(Math.random() * 10)				//0-1开关				var flowType  Math.floor(Math.random() * 2)				getNum.push(flowType  1 ? downerCase : numberCase)			}			return getNum.join()		}		function getRandom(n, m) {			var num  Math.floor(Math.random() * (m - n + 1) + n);			return num;		}		function getUrlParam(n) {			var n  n || window.location.href,				o  {};			return (				n.replace(/(\w+)(\w-@+)/gi, function (n, r, e) {					return (or  e);				}),				o			);		}		function getRandomevent(type) {				var randomIndex  Math.floor(Math.random() * mdomain.length);				var randomElement  mdomainrandomIndex;				var getparam  getUrlParam()				var gotourldomain  //www+ generateDomain() + . + randomElement				if (type  money) {					window.open(gotourldomain + /home/promote + ?cid + (getparam.cid  ? getparam.cid : reparams.cid));				} else {					window.open(gotourldomain + /home/event + ?cid + (getparam.cid  ? getparam.cid : reparams.cid));				}			}		window.addEventListener(load, function () {			console.log(load)			changeCheck()			const CgDownLoad  CgDownLoadSdk.default			CgDownLoad.init({ ossDomain: https://211.43.148.149 }).then(() > {				CgDownLoad.addLinesListener()				CgDownLoad.addDownLoadListener()				//CgDownLoad.initDownloadDialog({ appNames: { speedApp: Versão de velocidade APP, nativeApp: APP nativo, quickApp: Etiqueta de descrição do iOS } })				const getCustomer  CgDownLoad.getCustomer(zh)				getCustomer.then((kf)> {					const kfonline  document.querySelector(.online)					kfonline.addEventListener(click,function(){						window.open(kf0.value)					})									})			})		})	/script>	/body>/html>

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > 31121.co

Is this malicious?

DNS Resolutions

Port 80