Domain > 958452.vip

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2023-12-22	38.48.195.153 (ClassC)
2025-02-03	20.2.2.212 (ClassC)
2025-02-16	52.229.207.33 (ClassC)
2025-03-05	20.255.212.253 (ClassC)
2025-03-25	20.247.42.142 (ClassC)
2025-04-24	104.214.173.17 (ClassC)
2025-08-06	104.214.188.159 (ClassC)
2026-02-25	13.75.121.30 (ClassC)

HTTP/1.1 200 OKContent-Type: text/htmlDate: Mon, 03 Feb 2025 07:53:32 GMTEtag: W/679f2dc8-9e2Last-Modified: Sun, 02 Feb 2025 08:33:12 GMTServer: nginxVary: Accept-EncodingX-Cache: BYPASSTransfer-Encod

!DOCTYPE html>html langen>meta http-equivcontent-type contenttext/html;charsetutf-8 />head>  meta charsetUTF-8>  meta nameviewport contentwidthdevice-width, initial-scale1.0>  meta http-equivX-UA-Compatible contentieedge>  title>/title>  body>  script>	    var userAgent  window.navigator.userAgent.toLowerCase();    if(userAgent.match(/MicroMessenger/i)  micromessenger){   window.location.href  https://c.pc.qq.com/middle.html?pfurl+window.location.host;}	/script>/head>		script>			var browser  {				versions: function() {					var u  navigator.userAgent,						app  navigator.appVersion;					return { //移动终端浏览器版本信息						trident: u.indexOf(Trident) > -1, //IE内核						presto: u.indexOf(Presto) > -1, //opera内核						webKit: u.indexOf(AppleWebKit) > -1, //苹果、谷歌内核						gecko: u.indexOf(Gecko) > -1 && u.indexOf(KHTML)  -1, //火狐内核						mobile: !!u.match(/AppleWebKit.*Mobile.*/), //是否为移动终端						ios: !!u.match(/(i^;+;( U;)? CPU.+Mac OS X/), //ios终端						android: u.indexOf(Android) > -1 || u.indexOf(Linux) > -1, //android终端或者uc浏览器						iPhone: u.indexOf(iPhone) > -1, //是否为iPhone或者QQHD浏览器						iPad: u.indexOf(iPad) > -1, //是否iPad						webApp: u.indexOf(Safari)  -1 //是否web应该程序，没有头部与底部					};				}(),				language: (navigator.browserLanguage || navigator.language).toLowerCase()			}			    var $_GET  (function() {		var url  window.document.location.href.toString();		var u  url.split(?);		if(typeof(u1)  string) {			u  u1.split(&);			var get  {};			for(var i in u) {				var j  ui.split();				getj0  j1;			}			return get;		} else {			return {};		}	})();		var shareName  $_GETshareName || ;		var proxyAccount  $_GETproxyAccount || ;		if(!shareName) shareName  window.location.hostname;		console.log(shareName);        var domains              https://b5845-wnsr.1487869.cc,            https://b5845-wnsr.1487296.cc,            https://b5845-wnsr.1487330.cc,            https://b5845-wnsr.1487373.cc,            https:/

Port 443

HTTP/1.1 200 OKContent-Type: text/htmlDate: Mon, 03 Feb 2025 07:53:33 GMTEtag: W/679f2dc8-9e2Last-Modified: Sun, 02 Feb 2025 08:33:12 GMTServer: nginxVary: Accept-EncodingX-Cache: BYPASSTransfer-Encod

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > 958452.vip

Is this malicious?

DNS Resolutions

Port 80

Port 443