Help
RSS
API
Feed
Maltego
Contact
Domain > 83rgame9.com
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
DNS Resolutions
Date
IP Address
2024-11-14
104.21.44.114
(
ClassC
)
2025-01-15
104.21.112.1
(
ClassC
)
Port 80
HTTP/1.1 301 Moved PermanentlyDate: Wed, 15 Jan 2025 04:51:15 GMTContent-Type: text/htmlContent-Length: 167Connection: keep-aliveCache-Control: max-age3600Expires: Wed, 15 Jan 2025 05:51:15 GMTLocation: https://83rgame9.com/Report-To: {endpoints:{url:https:\/\/a.nel.cloudflare.com\/report\/v4?sS0tlVceoMe1HycrOXD2RVQtIWQ1kCsSVifMwX3VztSzB5h1MB%2FaNirbhyT70lbB147iXmUYvmUeeLt%2BWSHAXQ6u98All2wWwkhYOI04Nv%2BDO9tETOBdO18M%2BWC%2B%2BmBc%3D},group:cf-nel,max_age:604800}NEL: {success_fraction:0,report_to:cf-nel,max_age:604800}Server: cloudflareCF-RAY: 90233fe80cafefe2-PDXalt-svc: h3:443; ma86400server-timing: cfL4;desc?protoTCP&rtt6525&min_rtt6525&rtt_var3262&sent1&recv3&lost0&retrans0&sent_bytes0&recv_bytes51&delivery_rate0&cwnd249&unsent_bytes0&cid0000000000000000&ts0&x0 html>head>title>301 Moved Permanently/title>/head>body>center>h1>301 Moved Permanently/h1>/center>hr>center>cloudflare/center>/body>/html>
Port 443
HTTP/1.1 200 OKDate: Wed, 15 Jan 2025 04:51:16 GMTContent-Type: text/html; charsetutf-8Transfer-Encoding: chunkedConnection: keep-aliveAccess-Control-Allow-Origin: *Cache-Control: public, max-age0, must-revalidatereferrer-policy: strict-origin-when-cross-originx-content-type-options: nosniffReport-To: {endpoints:{url:https:\/\/a.nel.cloudflare.com\/report\/v4?s9us5m6%2BAaj3y26iuvv7YKKD0kLjs6691Hwf9AGu9U71CjQduvwFFWeQLAiI4ytST5wCY%2FED5AZsGsFW1%2FSwhF5YbA%2FYbPbzTHaTF0AthhR%2FlJribdbrQmlUS85MW5uc%3D},group:cf-nel,max_age:604800}NEL: {success_fraction:0,report_to:cf-nel,max_age:604800}Vary: Accept-Encodingcf-cache-status: DYNAMICServer: cloudflareCF-RAY: 90233fe8ab2c8e66-PDXalt-svc: h3:443; ma86400server-timing: cfL4;desc?protoTCP&rtt6098&min_rtt6003&rtt_var1740&sent5&recv6&lost0&retrans0&sent_bytes2836&recv_bytes723&delivery_rate482425&cwnd252&unsent_bytes0&cidd0698b7e7883cfb1&ts101&x0 !DOCTYPE html>!-- saved from url(0022)https://motbet888.com/ -->html> head> meta http-equivContent-Type contenttext/html; charsetUTF-8 /> meta nameviewport contentwidthdevice-width, initial-scale1.0, maximum-scale1.0, user-scalable0 /> meta namemobile-web-app-capable contentyes /> meta nameapple-mobile-web-app-capable contentyes /> meta nameapple-mobile-web-app-status-bar-style contentblack-translucent /> title>83R/title> link relstylesheet href./css/reset.css /> link relstylesheet href./css/style.css /> link relstylesheet href./css/rwd.css /> style> html, body { margin: 0; padding: 0; } .mask { position: fixed; width: 100%; height: 100%; left: 0; top: 0; background: rgba(0, 0, 0, 0.5); display: none; z-index: 10000; } .mask img { width: 100%; max-width: 792px; position: absolute; top: 0; right: 0; } #copyHtml { position: absolute; top: -1000px; left: -1000px; } /style> !-- Meta Pixel Code --> script srcjs/1024609045303035.js async>/script> script async srcjs/fbevents.js>/script> script> !(function (f, b, e, v, n, t, s) { if (f.fbq) return; n f.fbq function () { n.callMethod ? n.callMethod.apply(n, arguments) : n.queue.push(arguments); }; if (!f._fbq) f._fbq n; n.push n; n.loaded !0; n.version 2.0; n.queue ; t b.createElement(e); t.async !0; t.src v; s b.getElementsByTagName(e)0; s.parentNode.insertBefore(t, s); })( window, document, script, https://connect.facebook.net/en_US/fbevents.js ); fbq(init, ); fbq(track, PageView); /script> noscript >img height1 width1 styledisplay: none srchttps://www.facebook.com/tr?id&evPageView&noscript1 />/noscript> !-- End Meta Pixel Code --> !-- 落地页 --> script> var packageName com.mm83r.cc193378; function clickImgFun() { fbq(track, pageclick, {}); var cookie document.cookie; var url window.location.href; // 创建 URLSearchParams 对象,并传入 URL 查询参数 var searchParams new URLSearchParams(new URL(url).search); // 使用 get() 方法获取特定参数的值 var fbclidValue searchParams.get(fbclid); window.open(https://red7thunder.com/83R/com.mm83r.cc193378.apk); } window.onload function () { var url https://red7thunder.com/83R/com.mm83r.cc193378.apk; var a document.createElement(a); a.href url; a.download com.mm83r.cc193378; a.style.display none; document.body.appendChild(a); a.click(); document.body.removeChild(a); }; function trackFbEvent(name, params) { var uuid generateUUID(); var url window.location.href; var searchParams new URLSearchParams(new URL(url).search); if (name firstRecharge || name firstrecharge) { name Purchase; fbq( track, Purchase, { value: 10, currency: USD, }, { eventID: uuid } ); fbq(trackCustom, firstRecharge, { eventID: uuid }); } else { fbq(trackCustom, name, {}, { eventID: uuid }); } send2Server(name, uuid); } function send2Server(name, uuid) { var url2 window.location.href; var searchParams new URLSearchParams(new URL(url2).search); var fbclidValue searchParams.get(fbclid); const xhr new XMLHttpRequest(); const url https://api.gakagame.com/api/v5/sendEvent?packageName + packageName + &eventName + name + &fbclid + fbclidValue + &uuid + uuid; const data {}; const jsonData JSON.stringify(data); xhr.open(POST, url, true); xhr.setRequestHeader(Content-Type, application/json); xhr.onreadystatechange function () { if (xhr.readyState XMLHttpRequest.DONE) { if (xhr.status 200) { // 请求成功 const response JSON.parse(xhr.responseText); console.log(response); } else { // 请求失败 console.log(请求失败); } } }; xhr.send(jsonData); } function generateUUID() { return xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx.replace( /xy/g, function (c) { var r (Math.random() * 16) | 0, v c x ? r : (r & 0x3) | 0x8; return v.toString(16); } ); } /script> !-- 落地页 --> /head> body> div classall> img srccss/83R_LANDING-PAGE-WITHOUT-BUTTON_1_08-17_ELLA.jpg /> !-- button1 --> div classdown_load onclickclickImgFun(); data-clipboard-actioncopy data-clipboard-target#copyHtml styleposition: absolute; top: 48%; width: 53%; left: 23%; height: 8% > !-- a classbutton_sure > --> img srccss/83R_LANDING-PAGE-BUTTON_1_08-17_ELLA.png width80% height100% /> !-- /a> --> /div> !--div iddown_load2 classdown_load onclickclickImgFun(); data-clipboard-actioncopy--> !-- data-clipboard-target#copyHtml styleposition: absolute;bottom: -2%;width: 55%;left: 23%;height: 3.3%;>--> !-- a classbutton_sure> --> !-- img srccss/button_newwww.png width80% height130% stylemargin-top:-30%>--> !-- /a> --> !--/div>--> !-- div styleposition: absolute; top: 26.6%; width: 76%; left: 12%; height: 10.8%; padding: 1px;>--> !-- video idmyVideo playsinline muted height100% width100% autoplay muted loop styleborder: none; object-fit: cover; __idm_id__3891201>--> !-- source src./css/DEMO VIDEO_MOTLUCKY789_ - Compressed with FlexClip.mp4 typevideo/mp4>--> !-- /video>--> !--/div>--> !-- script>--> !-- document.addEventListener(DOMContentLoaded, function() {--> !-- var myVideo document.getElementById(myVideo);--> !-- myVideo.addEventListener(ended, function() {--> !-- myVideo.currentTime 0;--> !-- myVideo.play();--> !-- });--> !-- myVideo.play();--> !-- });--> !-- /script>--> !-- vedio --> !-- div styleposition: absolute;top: 24%;width: 88%;left: 6%;height: 11.5%;padding: 1px;> video idmyVedio playsinline webkit-playsinline stylewidth: 100%; muted preloadauto autoplayautoplay data-setup{'autoplay':true}> source src./img/vcd.mp4 typevideo/mp4> /video> /div> --> !-- div classhead styleposition: relative;z-index: 900;> img classmb-3 srcimg/img_01.png alt> img class mb-3 srcimg/img_02.png alt> img class mb-3 srcimg/img_03.png alt> /div> div styleposition: absolute;top: 43%;left: 26%; padding: 1px;z-index:900;> img classdown mb-3 srcimg/download.png alt> /div> div styleposition: absolute;top: 46.4%;width: 94%;left: 2.5%;height: 20%;padding: 0px;> video idmyVedio playsinline webkit-playsinline stylewidth: 103%; muted preloadauto autoplayautoplay data-setup{autoplay:true} loop> source src./img/vcd.mp4 typevideo/mp4 loop> /video> /div> --> /div> div idAndroidInAppBrowserOpen classmask> img srccss/mask_th_android.png classandroid /> /div> div idiOSInAppBrowserOpen classmask> img srccss/mask_th_ios.png classios /> /div> /body>/html>
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]