Help
RSS
API
Feed
Maltego
Contact
Domain > drugreturns.com
×
Welcome!
Right click nodes and scroll the mouse to navigate the graph.
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
DNS Resolutions
Date
IP Address
2025-01-10
75.131.63.18
(
ClassC
)
Port 80
HTTP/1.1 200 OKCache-Control: privateContent-Type: text/html; charsetutf-8Server: Microsoft-IIS/8.0X-UA-Compatible: IEedgeX-AspNet-Version: 4.0.30319X-Powered-By: ASP.NETAccess-Control-Allow-Origin: h !DOCTYPE html>html>head idHead1>link relstylesheet typetext/css href/DXR.axd?r1_7,1_8,1_1,1_4,1_2-kwHh8 />title> Return Solutions/title>meta http-equivX-Frame-Options contentallow />script typetext/javascript srcScripts/Demo.js>/script> script typetext/javascript> window.location.href http://drugreturns.com/home/; if (!(window.location.href.toLowerCase().indexOf(drugreturnsold) > 0) && !(window.location.href.toLowerCase().indexOf(default.aspx) > 0)){// //window.location.href https://avandergrif3.wixsite.com/drugreturns; } if (window.location.href.toLowerCase().indexOf(mymedcollect) > 0){// window.location.href https://mymedcollect.com/home/; } if ((location.host.toLowerCase().substring(0, 3) ! www) && (location.host.toLowerCase().substring(0, 3) ! 192) && (location.host.toLowerCase().substring(0, 3) ! loc) && (location.host.toLowerCase().substring(0, 12) ! 75.131.63.18)) {// location.href location.href.replace(////, //www.); } //window.location.href http://75.131.63.18/home//script> link relshortcut icon hreffavicon.ico typeimage/x-icon /> script typetext/javascript srcjQuery/jQuery.js>/script> script typetext/javascript srcencrypt.htm>/script>script typetext/javascript>var new1 0; if (location.host.toLowerCase().substring(0, 3) ! www) {// location.href location.href.replace(////, //www.); }if (window.location.href.toLowerCase().indexOf(home) > 0){ //String(window.location.host).replace(/^www./,); new1 1; }if (getParameterByName(new)1){ new1 1;// window.location.href /home/index.php;}function getParameterByName(name) { name name.replace(//, \).replace(//, \); var regex new RegExp(\?& + name + (^&#*)), results regex.exec(location.search); return results null ? : decodeURIComponent(results1.replace(/+/g, ));} function detectIpad() { //var agent navigator.userAgent; var agent navigator.userAgent.toLowerCase(); // if ( agent.match(/(iPhone|iPod|iPad|Blackberry|Android)/) ) { //if (agent.match(/(iPad|iPod)/)) {
Port 443
HTTP/1.1 200 OKCache-Control: privateContent-Type: text/html; charsetutf-8Server: Microsoft-IIS/8.0X-UA-Compatible: IEedgeX-AspNet-Version: 4.0.30319X-Powered-By: ASP.NETAccess-Control-Allow-Origin: h !DOCTYPE html>html>head idHead1>link relstylesheet typetext/css href/DXR.axd?r1_7,1_8,1_1,1_4,1_2-kwHh8 />title> Return Solutions/title>meta http-equivX-Frame-Options contentallow />script typetext/javascript srcScripts/Demo.js>/script> script typetext/javascript> window.location.href http://drugreturns.com/home/; if (!(window.location.href.toLowerCase().indexOf(drugreturnsold) > 0) && !(window.location.href.toLowerCase().indexOf(default.aspx) > 0)){// //window.location.href https://avandergrif3.wixsite.com/drugreturns; } if (window.location.href.toLowerCase().indexOf(mymedcollect) > 0){// window.location.href https://mymedcollect.com/home/; } if ((location.host.toLowerCase().substring(0, 3) ! www) && (location.host.toLowerCase().substring(0, 3) ! 192) && (location.host.toLowerCase().substring(0, 3) ! loc) && (location.host.toLowerCase().substring(0, 12) ! 75.131.63.18)) {// location.href location.href.replace(////, //www.); } //window.location.href http://75.131.63.18/home//script> link relshortcut icon hreffavicon.ico typeimage/x-icon /> script typetext/javascript srcjQuery/jQuery.js>/script> script typetext/javascript srcencrypt.htm>/script>script typetext/javascript>var new1 0; if (location.host.toLowerCase().substring(0, 3) ! www) {// location.href location.href.replace(////, //www.); }if (window.location.href.toLowerCase().indexOf(home) > 0){ //String(window.location.host).replace(/^www./,); new1 1; }if (getParameterByName(new)1){ new1 1;// window.location.href /home/index.php;}function getParameterByName(name) { name name.replace(//, \).replace(//, \); var regex new RegExp(\?& + name + (^&#*)), results regex.exec(location.search); return results null ? : decodeURIComponent(results1.replace(/+/g, ));} function detectIpad() { //var agent navigator.userAgent; var agent navigator.userAgent.toLowerCase(); // if ( agent.match(/(iPhone|iPod|iPad|Blackberry|Android)/) ) { //if (agent.match(/(iPad|iPod)/)) {
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]