Help
RSS
API
Feed
Maltego
Contact
Domain > btrnd.vip
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
DNS Resolutions
Date
IP Address
2025-10-01
172.67.209.209
(
ClassC
)
2026-02-04
104.21.93.117
(
ClassC
)
Port 80
HTTP/1.1 200 OKDate: Wed, 04 Feb 2026 18:19:02 GMTContent-Type: text/html; charsetUTF-8Transfer-Encoding: chunkedConnection: keep-aliveServer: cloudflareNel: {report_to:cf-nel,success_fraction:0.0,max_age:604800}Vary: Accept-EncodingCache-Control: no-cache, privateSet-Cookie: bcc1; path/; secure; httponly; samesitelaxAccess-Control-Expose-Headers: x-meta-countAccess-Control-Allow-Origin: *Access-Control-Allow-Methods: *Access-Control-Allow-Headers: Authorization, Content-Type, X-Auth-Token, cache-control, x-requested-withReport-To: {group:cf-nel,max_age:604800,endpoints:{url:https://a.nel.cloudflare.com/report/v4?sIFggT9t5OhNtUVy39JrMFnazUoLp%2F5pMOyGLl53%2Fv71j1O%2FW1rjgY4VgnvfDi7pSBOnOneIBzKIUanbA0e0%2Fs200dA8nHBt2%2FA%3D%3D}}cf-cache-status: DYNAMICCF-RAY: 9c8c2c89fdc3b876-PDXalt-svc: h3:443; ma86400 !DOCTYPE html>html>noscript> meta http-equivrefresh content0; url?noscript=1>/noscript>head> title>loading.../title> !-- Disable google read aloud --> meta namegoogle contentnopagereadaloud> style> html, body { background-color: #101114; } /style> script> let redirectUrl null; let errors {}; let mirrorFound false; const priorityMirror {host: , id: }; async function fetchWithTimeout(resource, options {}) { const { timeout 5000 } options; const controller new AbortController(); const id setTimeout(() > controller.abort(), timeout); try { const response await fetch(resource, { ...options, signal: controller.signal }); return response; } catch (error) { if (error.name AbortError) { throw new Error(Request timed out); } throw error; } finally { clearTimeout(id); } } function sendErrors() { if (Object.keys(errors).length 0) { return Promise.resolve(true); } const data { __tRid: d1561a1ecd31b99c2a0d7838bbf13854749564fff65a752d05d7b48b3367e8cb, errors: errors, }; return fetch( /saveErrors, { method: POST, headers: { Content-Type: application/json;charsetutf-8 }, body: JSON.stringify(data) } ) .then(function () { return true; }) .catch(function(error) { return false; }); } function pingPage(url) { const startTime Date.now(); return fetchWithTimeout( https:// + url.host + /ping?t + Date.now(), { method: GET, headers: { Content-Type: text/plain, }, }) .then(function(response) { if (response.status 200) { return response.text(); } else { throw new Error(Response status is not 200); } }) .then(function(data) { const currentTime Math.floor(Date.now() / 1000); const responseTime Math.floor(data / 1000); const isResponseNumeric !Number.isNaN(data); sendMirrorPingMetrics( url, Date.now() - startTime, currentTime - responseTime, true, url.id priorityMirror.id ); if ((currentTime - responseTime) 600) { return url; } else { if (isResponseNumeric && (currentTime - responseTime) 86400) { errorshid_+url.id The timestamp is older than 10 min. + currentTime + - + responseTime + + (currentTime - responseTime) return url; } else { throw new Error(The timestamp is not numeric or too old - + data + ( + currentTime + - + responseTime + + (currentTime - responseTime) + ) ); } } }) .catch(function(error) { const endTime Date.now(); const duration endTime - startTime; if (mirrorFound false) { errorshid_+url.id error.toString() + duration: + duration + ms, + windowHeight: + window.innerHeight; } sendMirrorPingMetrics( url, duration, null, false, url.id priorityMirror.id ); throw error; }); } function pingPage3Times(url) { return waitForTwoOfThree(pingPage(url), pingPage(url), pingPage(url)); } function checkLinks(urls, priorityMirror) { return Promise.any(urls.map(function(url) { return pingPage3Times(url); })) .then(function(result) { const params {successMirror: result.id}; if (priorityMirror.id ! ) { paramsfailedMirror priorityMirror.id; } return redirectWithExtraParams(params); }) .catch(function(error) { const rlc getRLC() if (!isFetchWorkingParam() || (rlc > 0 && rlc % 10 0)) { var fetchWorking true; return fetch( https://mc.yandex.com/metrika/metrika_match.html, { method: GET, } ).then(function (response) { if (response.status 200) { return response.text(); } else { throw new Error(Response status is not 200); } }).catch(function (error) { fetchWorking false; errorstest_fetch_url error.toString(); }).finally(function () { return redirectWithExtraParams({failedMirror: urls.map(function (u) {return u.id;}).join(,)}, fetchWorking); }); } else { return redirectWithExtraParams({failedMirror: urls.map(function (u) {return u.id;}).join(,)}); } }); } function isOnlyNumbersAndCommas(str) { return /^0-9,+$/.test(str); } function redirectWithExtraParams(params, fetchWorking null) { return new Promise(function(resolve) { const url new URL(window.location.href); if (!isOnlyNumbersAndCommas(url.searchParams.get(failedMirror) ?? )) { url.searchParams.delete(failedMirror); } for (const param in params) { if (param failedMirror) { let oldParam url.searchParams.get(param); if (oldParam) { paramsparam uniqueArray((oldParam + , + paramsparam).split(,)).join(,); } } url.searchParams.set(param, paramsparam); } url.searchParams.set(stt, 38717454541); url.searchParams.set(rlc, 1); url.searchParams.set(rs_id, ec9261e4-d4e3-408d-a4f6-8937e7024f87); url.searchParams.set(__tRid, d1561a1ecd31b99c2a0d7838bbf13854749564fff65a752d05d7b48b3367e8cb); url.searchParams.set(cookieEnabled, checkCookiesEnabled() ? 1 : 0); mirrorFound true; sendErrors().then(function(saveErrorsResult) { if (saveErrorsResult false) { url.searchParams.set(_fetchWrk, 0); } else { if (fetchWorking null) { fetchWorking (url.searchParams.get(_fetchWrk) ?? 1) 1; } url.searchParams.set(_fetchWrk, fetchWorking true ? 1 : 0); } redirectUrl url.toString(); window.location.href redirectUrl; resolve(); }); }); } function uniqueArray(arr) { const maxLen 10; var skipN arr.length - maxLen; if (skipN 0) { skipN 0; } var a ; for (var i 0, l arr.length; i l; i++) { if (skipN > 0) { skipN--; continue; } if (a.indexOf(arri) -1 && arri ! ) { a.push(arri); } } return a; } function checkCookiesEnabled() { try { const testCookieName _mc_cookie_test_ + Date.now(); document.cookie `${testCookieName}1; path/; SameSiteStrict`; const cookiesEnabled document.cookie.indexOf(testCookieName) ! -1; document.cookie `${testCookieName}; expiresThu, 01 Jan 1970 00:00:00 UTC; path/; SameSiteStrict`; return cookiesEnabled; } catch (e) { console.error(Error on cookie set:, e); errorscookieTest e.toString(); return true; } } function waitForTwoOfThree(promises) { return new Promise(function(resolve, reject) { let resolvedCount 0; let results ; promises.forEach(function(promise, index) { promise .then(function(result) { resolvedCount++; resultsindex result; if (resolvedCount > 2) { resolve(result); } }) .catch(function(error) { resultsindex error; }); }); Promise.all(promises.map(function(p) { return p.catch(function(e) { return e; }); })) .then(function(errors) { if (resolvedCount 2) { reject(errors); } }); }); } function isFetchWorkingParam() { const url new URL(window.location.href); return url.searchParams.has(_fetchWrk); } function getRLC() { const url new URL(window.location.href); return parseInt(url.searchParams.get(rlc) ?? 0); } function promiseWithTimeout(ms, promise) { return new Promise((resolve, reject) > { const timer setTimeout(() > { reject(new Error(TIMEOUT)) }, ms) promise .then(value > { clearTimeout(timer) resolve(value) }) .catch(reason > { clearTimeout(timer) reject(reason) }) }) } function sendBiRotationMetric() { const biMetricUrl https://bi-metrics.aramuz.net; const brand betonred; if (biMetricUrl || brand ) { return Promise.resolve(); } const data { rotation_session_id: ec9261e4-d4e3-408d-a4f6-8937e7024f87, timestamp: Date.now(), system: rotator_availability_checker, event_type: rotation_session_step, brand: brand, country_name: US, }; let playerId -1; let cxId ; if (cxId ! ) { datacx_id cxId; } else { datacx_id null; } if (playerId ! -1) { dataplayer_id playerId; } else { dataplayer_id null; } if (navigator.userAgent) { datauser_agent navigator.userAgent; } const endpointUrl biMetricUrl + /topics/rotation?asynctrue; if (!navigator.sendBeacon) { fetch( endpointUrl, { method: POST, headers: { Content-Type: application/vnd.kafka.json.v2+json }, keepalive: true, body: JSON.stringify({ records: { value: data, } }) } ) } else { navigator.sendBeacon( endpointUrl, JSON.stringify({ records: { value: data, } }), ) } return Promise.resolve(true); } function sendPageLoadMetrics() { return; // Disabled for now, caused by cloudflare issues const perf performance.getEntriesByType(navigation)0; let pageLoadMs null; let domRenderMs null; if (perf) { domRenderMs perf.domContentLoadedEventEnd - perf.responseEnd; pageLoadMs (perf.loadEventEnd > 0) ? perf.loadEventEnd - perf.startTime : null; } if (pageLoadMs null || pageLoadMs 0) { const t performance.timing; pageLoadMs t.loadEventEnd > 0 ? t.loadEventEnd - t.navigationStart : Date.now() - t.navigationStart; } fetch(/pageLoadMetrics, { method: POST, headers: { Content-Type: application/json }, keepalive: true, body: JSON.stringify({ hostname: window.location.hostname, pageLoadMs: pageLoadMs, domRenderMs: domRenderMs, timestampMs: Date.now() }) }); } function sendConnectionMetrics() { return; // Disabled for now, caused by cloudflare issues const perf performance.getEntriesByType(navigation)0; if (!perf) return; fetch(/connectionMetrics, { method: POST, headers: { Content-Type: application/json }, keepalive: true, body: JSON.stringify({ hostname: window.location.hostname, dnsMs: perf.domainLookupEnd - perf.domainLookupStart, connectionMs: perf.connectEnd - perf.connectStart, responseMs: perf.responseEnd - perf.requestStart, timestampMs: Date.now() }) }); } function sendMirrorPingMetrics(url, durationMs, responseAgeSec, isSuccess, isMainMirror) { return; // Disabled for now, caused by cloudflare issues fetch(/mirrorPingMetrics, { method: POST, headers: { Content-Type: application/json }, keepalive: true, body: JSON.stringify({ isMainMirror: isMainMirror, mirrorId: url.id, hostname: url.host, durationMs, responseAgeSec, isSuccess: isSuccess, timestampMs: Date.now() }) }); } function main() { if (priorityMirror.host ! ) { let working false; pingPage3Times(priorityMirror) .then(function() { working true; }) .catch(function() { working false; }) .finally(function() { if (working) { redirectWithExtraParams({successMirror: priorityMirror.id}).then(function() { return; }); } else { const pageUrls {host: 40betonred22.com, id: 774669859634290783}, {host: 79betonred72.com, id: 774669859634286107}, {host: 48betonred33.com, id: 774669859634300105}, ; checkLinks(pageUrls, priorityMirror).then(function() { return; }); } }); } else { const pageUrls {host: 40betonred22.com, id: 774669859634290783}, {host: 79betonred72.com, id: 774669859634286107}, {host: 48betonred33.com, id: 774669859634300105}, ; checkLinks(pageUrls, priorityMirror).then(function() { return; }); } } sendBiRotationMetric().catch(function(error) { errorsbiMetric error.toString(); }).finally(function () { main(); }); window.addEventListener(load, () > { sendPageLoadMetrics(); sendConnectionMetrics(); }); window.addEventListener(pageshow, function(event) { if (event.persisted) { if (redirectUrl ! null) { window.location.href redirectUrl; } else { window.location.reload(); } } }); /script>/head>body>/body>/html>
Port 443
HTTP/1.1 200 OKDate: Wed, 04 Feb 2026 18:19:03 GMTContent-Type: text/html; charsetUTF-8Transfer-Encoding: chunkedConnection: keep-aliveServer: cloudflareNel: {report_to:cf-nel,success_fraction:0.0,max_age:604800}Vary: Accept-EncodingCache-Control: no-cache, privateSet-Cookie: bcc1; path/; secure; httponly; samesitelaxAccess-Control-Expose-Headers: x-meta-countAccess-Control-Allow-Origin: *Access-Control-Allow-Methods: *Access-Control-Allow-Headers: Authorization, Content-Type, X-Auth-Token, cache-control, x-requested-withReport-To: {group:cf-nel,max_age:604800,endpoints:{url:https://a.nel.cloudflare.com/report/v4?sjQbzHcNaPg8MBezPqOxynjl6T%2FE%2BQWJz64NB8RK9HYFaUsEpT9bx46R7aGaoQ%2FpHjwiS78enk5u8PbznxXN7Vkn9zytPktnX9g%3D%3D}}cf-cache-status: DYNAMICCF-RAY: 9c8c2c8cdc0958c2-PDXalt-svc: h3:443; ma86400 !DOCTYPE html>html>noscript> meta http-equivrefresh content0; url?noscript=1>/noscript>head> title>loading.../title> !-- Disable google read aloud --> meta namegoogle contentnopagereadaloud> style> html, body { background-color: #101114; } /style> script> let redirectUrl null; let errors {}; let mirrorFound false; const priorityMirror {host: , id: }; async function fetchWithTimeout(resource, options {}) { const { timeout 5000 } options; const controller new AbortController(); const id setTimeout(() > controller.abort(), timeout); try { const response await fetch(resource, { ...options, signal: controller.signal }); return response; } catch (error) { if (error.name AbortError) { throw new Error(Request timed out); } throw error; } finally { clearTimeout(id); } } function sendErrors() { if (Object.keys(errors).length 0) { return Promise.resolve(true); } const data { __tRid: e7958e39439e2a428b8e104bb8f53421b64eedd557c74f3899e661fd12dff6ed, errors: errors, }; return fetch( /saveErrors, { method: POST, headers: { Content-Type: application/json;charsetutf-8 }, body: JSON.stringify(data) } ) .then(function () { return true; }) .catch(function(error) { return false; }); } function pingPage(url) { const startTime Date.now(); return fetchWithTimeout( https:// + url.host + /ping?t + Date.now(), { method: GET, headers: { Content-Type: text/plain, }, }) .then(function(response) { if (response.status 200) { return response.text(); } else { throw new Error(Response status is not 200); } }) .then(function(data) { const currentTime Math.floor(Date.now() / 1000); const responseTime Math.floor(data / 1000); const isResponseNumeric !Number.isNaN(data); sendMirrorPingMetrics( url, Date.now() - startTime, currentTime - responseTime, true, url.id priorityMirror.id ); if ((currentTime - responseTime) 600) { return url; } else { if (isResponseNumeric && (currentTime - responseTime) 86400) { errorshid_+url.id The timestamp is older than 10 min. + currentTime + - + responseTime + + (currentTime - responseTime) return url; } else { throw new Error(The timestamp is not numeric or too old - + data + ( + currentTime + - + responseTime + + (currentTime - responseTime) + ) ); } } }) .catch(function(error) { const endTime Date.now(); const duration endTime - startTime; if (mirrorFound false) { errorshid_+url.id error.toString() + duration: + duration + ms, + windowHeight: + window.innerHeight; } sendMirrorPingMetrics( url, duration, null, false, url.id priorityMirror.id ); throw error; }); } function pingPage3Times(url) { return waitForTwoOfThree(pingPage(url), pingPage(url), pingPage(url)); } function checkLinks(urls, priorityMirror) { return Promise.any(urls.map(function(url) { return pingPage3Times(url); })) .then(function(result) { const params {successMirror: result.id}; if (priorityMirror.id ! ) { paramsfailedMirror priorityMirror.id; } return redirectWithExtraParams(params); }) .catch(function(error) { const rlc getRLC() if (!isFetchWorkingParam() || (rlc > 0 && rlc % 10 0)) { var fetchWorking true; return fetch( https://mc.yandex.com/metrika/metrika_match.html, { method: GET, } ).then(function (response) { if (response.status 200) { return response.text(); } else { throw new Error(Response status is not 200); } }).catch(function (error) { fetchWorking false; errorstest_fetch_url error.toString(); }).finally(function () { return redirectWithExtraParams({failedMirror: urls.map(function (u) {return u.id;}).join(,)}, fetchWorking); }); } else { return redirectWithExtraParams({failedMirror: urls.map(function (u) {return u.id;}).join(,)}); } }); } function isOnlyNumbersAndCommas(str) { return /^0-9,+$/.test(str); } function redirectWithExtraParams(params, fetchWorking null) { return new Promise(function(resolve) { const url new URL(window.location.href); if (!isOnlyNumbersAndCommas(url.searchParams.get(failedMirror) ?? )) { url.searchParams.delete(failedMirror); } for (const param in params) { if (param failedMirror) { let oldParam url.searchParams.get(param); if (oldParam) { paramsparam uniqueArray((oldParam + , + paramsparam).split(,)).join(,); } } url.searchParams.set(param, paramsparam); } url.searchParams.set(stt, 38717455122); url.searchParams.set(rlc, 1); url.searchParams.set(rs_id, 755ca0d5-36c8-49fb-9097-ba35c028c101); url.searchParams.set(__tRid, e7958e39439e2a428b8e104bb8f53421b64eedd557c74f3899e661fd12dff6ed); url.searchParams.set(cookieEnabled, checkCookiesEnabled() ? 1 : 0); mirrorFound true; sendErrors().then(function(saveErrorsResult) { if (saveErrorsResult false) { url.searchParams.set(_fetchWrk, 0); } else { if (fetchWorking null) { fetchWorking (url.searchParams.get(_fetchWrk) ?? 1) 1; } url.searchParams.set(_fetchWrk, fetchWorking true ? 1 : 0); } redirectUrl url.toString(); window.location.href redirectUrl; resolve(); }); }); } function uniqueArray(arr) { const maxLen 10; var skipN arr.length - maxLen; if (skipN 0) { skipN 0; } var a ; for (var i 0, l arr.length; i l; i++) { if (skipN > 0) { skipN--; continue; } if (a.indexOf(arri) -1 && arri ! ) { a.push(arri); } } return a; } function checkCookiesEnabled() { try { const testCookieName _mc_cookie_test_ + Date.now(); document.cookie `${testCookieName}1; path/; SameSiteStrict`; const cookiesEnabled document.cookie.indexOf(testCookieName) ! -1; document.cookie `${testCookieName}; expiresThu, 01 Jan 1970 00:00:00 UTC; path/; SameSiteStrict`; return cookiesEnabled; } catch (e) { console.error(Error on cookie set:, e); errorscookieTest e.toString(); return true; } } function waitForTwoOfThree(promises) { return new Promise(function(resolve, reject) { let resolvedCount 0; let results ; promises.forEach(function(promise, index) { promise .then(function(result) { resolvedCount++; resultsindex result; if (resolvedCount > 2) { resolve(result); } }) .catch(function(error) { resultsindex error; }); }); Promise.all(promises.map(function(p) { return p.catch(function(e) { return e; }); })) .then(function(errors) { if (resolvedCount 2) { reject(errors); } }); }); } function isFetchWorkingParam() { const url new URL(window.location.href); return url.searchParams.has(_fetchWrk); } function getRLC() { const url new URL(window.location.href); return parseInt(url.searchParams.get(rlc) ?? 0); } function promiseWithTimeout(ms, promise) { return new Promise((resolve, reject) > { const timer setTimeout(() > { reject(new Error(TIMEOUT)) }, ms) promise .then(value > { clearTimeout(timer) resolve(value) }) .catch(reason > { clearTimeout(timer) reject(reason) }) }) } function sendBiRotationMetric() { const biMetricUrl https://bi-metrics.aramuz.net; const brand betonred; if (biMetricUrl || brand ) { return Promise.resolve(); } const data { rotation_session_id: 755ca0d5-36c8-49fb-9097-ba35c028c101, timestamp: Date.now(), system: rotator_availability_checker, event_type: rotation_session_step, brand: brand, country_name: US, }; let playerId -1; let cxId ; if (cxId ! ) { datacx_id cxId; } else { datacx_id null; } if (playerId ! -1) { dataplayer_id playerId; } else { dataplayer_id null; } if (navigator.userAgent) { datauser_agent navigator.userAgent; } const endpointUrl biMetricUrl + /topics/rotation?asynctrue; if (!navigator.sendBeacon) { fetch( endpointUrl, { method: POST, headers: { Content-Type: application/vnd.kafka.json.v2+json }, keepalive: true, body: JSON.stringify({ records: { value: data, } }) } ) } else { navigator.sendBeacon( endpointUrl, JSON.stringify({ records: { value: data, } }), ) } return Promise.resolve(true); } function sendPageLoadMetrics() { return; // Disabled for now, caused by cloudflare issues const perf performance.getEntriesByType(navigation)0; let pageLoadMs null; let domRenderMs null; if (perf) { domRenderMs perf.domContentLoadedEventEnd - perf.responseEnd; pageLoadMs (perf.loadEventEnd > 0) ? perf.loadEventEnd - perf.startTime : null; } if (pageLoadMs null || pageLoadMs 0) { const t performance.timing; pageLoadMs t.loadEventEnd > 0 ? t.loadEventEnd - t.navigationStart : Date.now() - t.navigationStart; } fetch(/pageLoadMetrics, { method: POST, headers: { Content-Type: application/json }, keepalive: true, body: JSON.stringify({ hostname: window.location.hostname, pageLoadMs: pageLoadMs, domRenderMs: domRenderMs, timestampMs: Date.now() }) }); } function sendConnectionMetrics() { return; // Disabled for now, caused by cloudflare issues const perf performance.getEntriesByType(navigation)0; if (!perf) return; fetch(/connectionMetrics, { method: POST, headers: { Content-Type: application/json }, keepalive: true, body: JSON.stringify({ hostname: window.location.hostname, dnsMs: perf.domainLookupEnd - perf.domainLookupStart, connectionMs: perf.connectEnd - perf.connectStart, responseMs: perf.responseEnd - perf.requestStart, timestampMs: Date.now() }) }); } function sendMirrorPingMetrics(url, durationMs, responseAgeSec, isSuccess, isMainMirror) { return; // Disabled for now, caused by cloudflare issues fetch(/mirrorPingMetrics, { method: POST, headers: { Content-Type: application/json }, keepalive: true, body: JSON.stringify({ isMainMirror: isMainMirror, mirrorId: url.id, hostname: url.host, durationMs, responseAgeSec, isSuccess: isSuccess, timestampMs: Date.now() }) }); } function main() { if (priorityMirror.host ! ) { let working false; pingPage3Times(priorityMirror) .then(function() { working true; }) .catch(function() { working false; }) .finally(function() { if (working) { redirectWithExtraParams({successMirror: priorityMirror.id}).then(function() { return; }); } else { const pageUrls {host: 47betonred35.com, id: 774669859634300113}, {host: 55betonred99.com, id: 774669859634290792}, {host: 15betonred89.com, id: 774669859634290788}, ; checkLinks(pageUrls, priorityMirror).then(function() { return; }); } }); } else { const pageUrls {host: 47betonred35.com, id: 774669859634300113}, {host: 55betonred99.com, id: 774669859634290792}, {host: 15betonred89.com, id: 774669859634290788}, ; checkLinks(pageUrls, priorityMirror).then(function() { return; }); } } sendBiRotationMetric().catch(function(error) { errorsbiMetric error.toString(); }).finally(function () { main(); }); window.addEventListener(load, () > { sendPageLoadMetrics(); sendConnectionMetrics(); }); window.addEventListener(pageshow, function(event) { if (event.persisted) { if (redirectUrl ! null) { window.location.href redirectUrl; } else { window.location.reload(); } } }); /script>/head>body>/body>/html>
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]