Domain > dd.xn--rht782k.cn

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2023-10-07	123.12.235.196 (ClassC)
2025-11-01	207.148.46.41 (ClassC)

HTTP/1.1 200 OKDate: Sat, 01 Nov 2025 13:14:18 GMTContent-Type: text/html; charsetutf8Content-Length: 10067Connection: keep-aliveVary: Accept-EncodingLast-Modified: Wed, 27 Nov 2024 06:06:40 GMTVary: Accept-EncodingETag: 6746b6f0-2753Expires: Sat, 01 Nov 2025 13:14:18 GMTCache-Control: max-age0Cache-Control: no-cache, no-storeServer: cdnblX-Cache-Status: EXPIREDAccept-Ranges: bytes

!DOCTYPE html>html langen>head>    meta charsetUTF-8>    title>168-168/title>    script srcstatic/jquery.min.js>/script>    meta http-equivX-UA-Compatible contentIEedge,chrome1 />    meta namerenderer contentwebkit />    meta nameviewport contentwidthdevice-width,initial-scale1,maximum-scale1,minimum-scale1,user-scalableno />    meta nameapple-mobile-web-app-capable contentyes />    meta nameapple-mobile-web-app-status-bar-style contentblack />    meta nameformat-detection contenttelephoneno />    meta http-equivCache-Control contentno-cache, no-store, must-revalidate />    meta http-equivPragma contentno-cache />    meta http-equivExpires content0 />    style>        html,body,iframe{width: 100%;height: 100%;padding: 0;margin: 0}        #wrap{width: 100%;height: 100%;}        iframe{border: none;}        .van-dialog {            position: fixed;            top: 45%;            left: 50%;            width: 320px;            overflow: hidden;            font-size: 16px;            background-color: #fff;            border-radius: 16px;            -webkit-transform: translate3d(-50%, -50%, 0);            transform: translate3d(-50%, -50%, 0);            -webkit-backface-visibility: hidden;            backface-visibility: hidden;            -webkit-transition: .3s;            transition: .3s;            -webkit-transition-property: opacity, -webkit-transform;            transition-property: opacity, -webkit-transform;            transition-property: transform, opacity;            transition-property: transform, opacity, -webkit-transform;        }        #index .van-dialog__header {            font-weight: 700;            font-size: 1rem;        }        .van-dialog__header {            padding-top: 24px;            font-weight: 500;            line-height: 24px;            text-align: center;        }        .van-dialog {            position: fixed;            top: 50%;            left: 50%;            width: 320px;            overflow: hidden;            font-size: 16px;            background-color: #fff;            border-radius: 16px;            -webkit-transform: translate3d(-50%, -50%, 0);            transform: translate3d(-50%, -50%, 0);            -webkit-backface-visibility: hidden;            backface-visibility: hidden;            -webkit-transition: .3s;            transition: .3s;            -webkit-transition-property: opacity, -webkit-transform;            transition-property: opacity, -webkit-transform;            transition-property: transform, opacity;            transition-property: transform, opacity, -webkit-transform;        }        .van-dialog__content p {            display: block;            margin-block-start: 1em;            margin-inline-start: 0px;            margin-inline-end: 0px;            text-align: center;        }    /style>    script>        var CookieUtil  {            // 设置cookie            set : function (name, value, expires, domain, path, secure) {                var cookieText  ;                cookieText + encodeURIComponent(name) +  + encodeURIComponent(value);                if (expires instanceof Date) {                    cookieText + ; expires + expires.toGMTString();                }                if (path) {                    cookieText + ; path + path;                }                if (domain) {                    cookieText + ; domain + domain;                }                if (secure) {                    cookieText + ; secure;                }                document.cookie  cookieText;            },            // namevalue; expiresexpiration_time; pathdomain_path; domaindomain_name; secure            // 获取cookie            get : function (name) {                var cookieName  encodeURIComponent(name) + ,                    cookieStart  document.cookie.indexOf(cookieName),                    cookieValue  ;                if (cookieStart > -1) {                    var cookieEnd  document.cookie.indexOf (;, cookieStart);                    if (cookieEnd  -1) {                        cookieEnd  document.cookie.length;                    }                    cookieValue  decodeURIComponent(document.cookie.substring(cookieStart + cookieName.length, cookieEnd));                }                return cookieValue;            },            // 删除cookie            unset : function (name, domain, path, secure) {                this.set(name, , Date(0), domain, path, secure);            }        };    /script>/head>body stylebackground: #c18585>!--loading-->div roledialog aria-labelledby传媒 idandroid_text classvan-dialog load styledisplay:none;width: 70%; z-index: 2002;>    div classvan-dialog__header>加载中..../div>    div classvan-dialog__content>        p styletext-align: center>span stylecolor: #ed1111;font-weight: bold;>首次打开需等待1-3分钟/span>            br>长时间没反应，请刷新网页            br>span stylecolor: #ed1111;font-weight: bold;>十万部高清影片/span>            br>span stylecolor: #ed1111;font-weight: bold;>同城约会/span>        /p>        !--        img src./static/images/load.abb stylemargin-left:45%;margin-bottom:5%;width:10%>-->    /div>/div>!--iframe-->div idwrap>    iframe src idmainFrame frameborder0 scrollingauto>/iframe>/div>/body>script>    var host11https://h11.xn--tfrt10a2lr38y.cn;function getQueryString(name){var regnew RegExp((^|&)+name+(^&*)(&|$),i);var rwindow.location.search.substr(1).match(reg);if(r!null)return unescape(r2);return null}function uuid(){returnxxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx.replace(/xy/g,function(c){var rMath.random()*16|0,vcx?r:(r&0x3|0x8);return v.toString(16)})}function getdomaintype(){var domainwindow.location.href.toString();if(window.location.host.startsWith(dd88)){return 2}return 1}function getisOldDomain(){return 1}var device_idlocalStorage.getItem(device_id)||CookieUtil.get(device_id);var user_idlocalStorage.getItem(user_id)||CookieUtil.get(user_id);var tokenlocalStorage.getItem(token)||CookieUtil.get(token);var ishngetQueryString(ishn);var tdomaingetQueryString(d);var iszj0;if(tdomainnull||tdomainundefined||tdomain.trim()){var aidgetQueryString(id);$.ajax({url:/apix/dt/h5d,type:post,async:false,timeout:3000,data:{id:aid,d:window.location.hostname,},beforeSend:function(xhr){xhr.setRequestHeader(device_id,device_id)},success:function(data){console.log(返回数据---+data);datadata.replace(new RegExp(36aa8bb5b88a03d405bc1fd425d48a9f,g),);datawindow.atob(data);dataJSON.parse(data);if(data.code!undefined&&data.code0){if(data.data!undefined&&data.data.h5url!undefined&&data.data.h5url!&&data.data.h5url!null){tdomaindata.data.h5url}if(data.data!undefined&&data.data.iszj!undefined&&data.data.iszj!&&data.data.iszj!null){iszjdata.data.iszj}}},error:function(data){tdomainnull}})}if(tdomain!null&&tdomain!undefined&&tdomain.trim()!){if(tdomain.indexOf(https://)!-1){host11tdomain}}function goIframe(){var domaintype1getdomaintype();var domaintype2getdomaintype();var domainUrlwindow.location.href.toString();var hostUrlhost11+?user_id+user_id+&token+token+&device_id+device_id+&domiantype+domaintype1+&olddomain+getisOldDomain()+&ishn+ishn+&r+Math.random();if(iszj1){window.locationhostUrl;return}if(window.location.href.toString().indexOf(dd88.17o4c.com)!-1||domaintype22){var iframedocument.getElementById(mainFrame);iframe.srchostUrl;if(iframe.attachEvent){iframe.attachEvent(onload,()>{$(.load).hide()})}else{iframe.onload()>{$(.load).hide()}}return}else{window.locationhostUrl;return}}function initUserInfo(){console.log(开始注册用户---+device_id+ user_id+user_id+ token+token);var agentidgetQueryString(id);var device_id888device_id;if(agentid!null){device_id888device_id+&&&&+agentid}$.ajax({url:/apix/app/init_userinfo,type:post,data:{device_id:device_id888},beforeSend:function(xhr){xhr.setRequestHeader(device_id,device_id)},success:function(data){console.log(返回数据---+data);datadata.replace(new RegExp(36aa8bb5b88a03d405bc1fd425d48a9f,g),);datawindow.atob(data);dataJSON.parse(data);if(data.code!undefined&&data.code0){if(data.data.user_id!undefined&&data.data.user_id!&&data.data.user_id!null){user_iddata.data.user_id;localStorage.setItem(user_id,user_id);CookieUtil.set(user_id,user_id)}if(data.data.token!undefined&&data.data.token!&&data.data.token!null){tokendata.data.token;localStorage.setItem(token,token);CookieUtil.set(token,token)}goIframe()}},error:function(data){alert(请求失败，请尝试切换网络并且重启APP)}})}try{if(device_idnull||device_idundefined||device_id){device_iduuid();localStorage.setItem(device_id,device_id);CookieUtil.set(device_id,device_id)}}catch(e){}$(.load).show();setTimeout(function(){$(.load).hide()},10000);if((user_idnull||user_idundefined||user_id)&&(tokennull||tokenundefined||token)){initUserInfo()}else{goIframe()}function clearUserData(){}window.addEventListener(message,(e)>{console.log(收到消息----+e.data);var messagee.data;if(message.type1){if(message.token!undefined&&message.token!null&&message.token!&&message.user_id!undefined&&message.user_id!null&&message.user_id!){localStorage.setItem(token,message.token);localStorage.setItem(user_id,message.user_id);CookieUtil.set(token,message.token);CookieUtil.set(user_id,message.user_id);console.log(设置成功----+e.data);}}},false);/script>/html>

Port 443

HTTP/1.1 200 OKDate: Sat, 01 Nov 2025 13:14:19 GMTContent-Type: text/html; charsetutf8Content-Length: 10067Connection: keep-aliveVary: Accept-EncodingLast-Modified: Wed, 27 Nov 2024 06:06:40 GMTVary: Accept-EncodingETag: 6746b6f0-2753Expires: Sat, 01 Nov 2025 13:14:19 GMTCache-Control: max-age0Cache-Control: no-cache, no-storeServer: cdnblX-Cache-Status: EXPIREDAccept-Ranges: bytes

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > dd.xn--rht782k.cn

Is this malicious?

DNS Resolutions

Port 80

Port 443