Domain > 9n2gupnh4vetcm.xyz

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2025-01-01	104.21.69.39 (ClassC)

HTTP/1.1 200 OKDate: Wed, 01 Jan 2025 13:20:28 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: keep-aliveLast-Modified: Sat, 28 Dec 2024 09:53:25 GMTVary: Accept-Encodingcf-cache-status: DYNAMICReport-To: {endpoints:{url:https:\/\/a.nel.cloudflare.com\/report\/v4?s59%2BwvjEtKLKqAdWHg5YGuNdnPALXMht41QZAHAYyHJ5CttBLaXwrNZw6MWGZ%2BMgxhcRTOTAS1NKOUcwmPLAhYwcFVCYRQYtKFKQFcC89NVzmuyr7CvZDw%2F8UBT5yHcz1l2lOKdU%3D},group:cf-nel,max_age:604800}NEL: {success_fraction:0,report_to:cf-nel,max_age:604800}Server: cloudflareCF-RAY: 8fb2ce948eea2f61-PDXalt-svc: h3:443; ma86400server-timing: cfL4;desc?protoTCP&rtt6333&min_rtt6333&rtt_var3166&sent1&recv3&lost0&retrans0&sent_bytes0&recv_bytes57&delivery_rate0&cwnd248&unsent_bytes0&cid0000000000000000&ts0&x0

!DOCTYPE html>html langen>head>meta charsetutf-8>meta nameviewport contentwidthdevice-width,initial-scale1>meta http-equivpragram contentno-cache>meta http-equivcache-control contentno-cache, no-store, must-revalidate>meta http-equivexpires content0>link hrefstatic/20241228143359/css/chunk-vendors.css relpreload asstyle>link hrefstatic/20241228143359/css/share_301.css relpreload asstyle>link hrefstatic/20241228143359/js/chunk-vendors.js relpreload asscript>link hrefstatic/20241228143359/js/share_301.js relpreload asscript>link hrefstatic/20241228143359/css/chunk-vendors.css relstylesheet>link hrefstatic/20241228143359/css/share_301.css relstylesheet>/head>body stylebackground-color: #000>div idapp>div stylefont-size: 18px;    text-align: center;    color: #fff;    position: absolute;    top: 30%;    left: 50%;    transform: translateX(-50%) translateY(-50%);>页面跳转中.../div>/div>script srcstatic/20241228143359/js/chunk-vendors.js>/script>script srcstatic/20241228143359/js/share_301.js>/script>/body>/html>

Port 443

HTTP/1.1 200 OKDate: Wed, 01 Jan 2025 13:20:29 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: keep-aliveLast-Modified: Sat, 28 Dec 2024 09:27:12 GMTVary: Accept-Encodingcf-cache-status: DYNAMICReport-To: {endpoints:{url:https:\/\/a.nel.cloudflare.com\/report\/v4?sASPpQ4CywQtqBF4qTv9cSq69gD7JmPZejYr269Q8p3EDkmO9%2FKMmYEdQxSgppqE3rJchxHasNgWfEPvaXqCmKyXTy5vfILuTYpWi%2FD8Knht057AooQntMeqy%2Fz2WmHLABLbNZRw%3D},group:cf-nel,max_age:604800}NEL: {success_fraction:0,report_to:cf-nel,max_age:604800}Server: cloudflareCF-RAY: 8fb2ce955c552f49-PDXalt-svc: h3:443; ma86400server-timing: cfL4;desc?protoTCP&rtt5954&min_rtt5754&rtt_var1727&sent5&recv6&lost0&retrans0&sent_bytes2871&recv_bytes729&delivery_rate503302&cwnd252&unsent_bytes0&cid23a89b5b8ab6a03e&ts174&x0

!DOCTYPE html>html langzh-CN>head>meta charsetutf-8>meta http-equivX-UA-Compatible contentIEedge>meta nameviewport contentwidthdevice-width,initial-scale1,maximum-scale1,minimum-scale1,user-scalableno>meta namereferrer contentno-referrer>meta nametheme-color content#ffffff>meta nameapple-mobile-web-app-capable contentyes>meta nameapple-mobile-web-app-status-bar-style contentblack>meta nameformat-detection contenttelphoneno, emailno>meta namerenderer contentwebkit>meta nameHandheldFriendly contenttrue>meta nameMobileOptimized content320>meta namescreen-orientation contentportrait>meta namex5-orientation contentportrait>meta namefull-screen contentyes>meta namex5-fullscreen contenttrue>meta namebrowsermode contentapplication>meta namex5-page-mode contentapp>meta namemsapplication-tap-highlight contentno>link relicon href./favicon.ico>title>/title>script>window\x64\x6f\x63\x75\x6d\x65\x6e\x74\x74\x69\x74\x6c\x65  \x50\u7ad9\u89c6\u9891        window.parent.postMessage({ type: child }, *);        var pathIndex  getCookie(pathIndex) || 0;        var hadSetNext  false;        function setCookie(name, value) {          document.cookie  name +  + encodeURI(value);        }        function getCookie(name) {          let arr, reg  new RegExp((^| ) + name + (^;*)(;|$));          if (arr  document.cookie.match(reg)) {            return decodeURI(arr2);          } else {            return null;          }        }        function loadError() {          if (hadSetNext) return;          if (pathIndex > pathList.length - 1) {            if (pathListpathIndex  ./) {              return;            }            pathIndex  0;          } else {            pathIndex++;          }          hadSetNext  true;          setCookie(pathIndex, pathIndex);          window.location.reload();        };/script>style typetext/css>html,        body {          font-family: Microsoft YaHei;          background-color: #000;        }        #appLoading {          font-size: 18px;          text-align: center;          color: #fff;          position: absolute;          top: 30%;          left: 50%;          transform: translateX(-50%) translateY(-50%);        }/style>link hrefstatic/cdn/css/nprogress.css?v4.6.0 relstylesheet>link hrefstatic/20241228132831/css/chunk-vendors.css relstylesheet>link hrefstatic/20241228132831/css/styles.css relstylesheet>link hrefstatic/20241228132831/css/app.css relstylesheet>/head>body>div idapp>div idappLoading>页面加载中.../div>/div>script srcstatic/cdn/js/crypto-js.min.js?v4.6.0>/script>script srcstatic/cdn/js/axios.min.js?v4.6.0>/script>script srcstatic/cdn/js/lodash.min.js?v4.6.0>/script>script srcstatic/cdn/js/nprogress.js?v4.6.0>/script>script srcstatic/cdn/js/hls.min.js?v4.6.0>/script>script srcstatic/cdn/js/artplayer.js?v4.6.0>/script>script srcstatic/cdn/js/DPlayer.min.js?v4.6.0>/script>script srcstatic/cdn/js/jsjiami.js?v4.6.0>/script>script>var osType  `h5`,              googletagmanager  osType  h5 ? G-VSYFB4DK6Y : G-403XVWWB0G,              immediately  true;            window.onload  function () {              setTimeout(() > {                loadJS(https://www.googletagmanager.com/gtag/js?id + googletagmanager, true)                window.dataLayer  window.dataLayer || ;                function gtag() { dataLayer.push(arguments); }                gtag(js, new Date());                gtag(config, googletagmanager);              }, 1000)            }            function loadJS(url, bol  false) {              var script  document.createElement(script)              script.setAttribute(src, url);              if (bol) {                script.setAttribute(async, async);              }              var first  document.getElementsByTagName(script);              var here  firstfirst.length - 1;              here.parentNode.appendChild(script);            }            function loadCSS(url) {              var link  document.createElement(link),                head  document.head || document.getElementsByTagName(head)0;              link.setAttribute(rel, stylesheet);              link.setAttribute(href, url);              head.appendChild(link);            }/script>script srcstatic/20241228132831/js/chunk-vendors.js>/script>script srcstatic/20241228132831/js/styles.js>/script>script srcstatic/20241228132831/js/app.js>/script>/body>/html>

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > 9n2gupnh4vetcm.xyz

Is this malicious?

DNS Resolutions

Port 80

Port 443