Help
RSS
API
Feed
Maltego
Contact
Domain > haibao.xdstarnet.com
×
Welcome!
Right click nodes and scroll the mouse to navigate the graph.
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
DNS Resolutions
Date
IP Address
2020-09-24
101.226.26.178
(
ClassC
)
2020-09-24
101.226.26.182
(
ClassC
)
2020-09-24
101.226.26.189
(
ClassC
)
2024-06-13
154.208.78.147
(
ClassC
)
Port 80
HTTP/1.1 200 OKTransfer-Encoding: chunkedContent-Type: text/html; charsetUTF-8Server: Nginx Microsoft-HTTPAPI/2.0X-Powered-By: NginxDate: Thu, 13 Jun 2024 17:48:13 GMT !DOCTYPE html>html>head>script>document.title【大众娱乐】2024官方指定平台;/script>META HTTP-EQUIVContent-Type Contenttext/html; charsetutf-8>meta http-equivContent-Type contenttext/html; charsetgb2312 /> meta http-equivCache-Control contentno-siteapp> meta http-equivCache-Control contentno-transform> meta nameapplicable-device contentpc,mobile> meta namerobots contentnofollow> meta nameviewport contentwidthdevice-width,initial-scale0.8,minimum-scale0.8,maximum-scale0.8,user-scalableno>/head>body>script> var rid 1000494952; var tj 32c8e67bfeba68c30b13ca21a4599b0; var totalTime 1; var str1 正在安全检测; var str2 恭喜!已成功安全加密; var completedTitle 安全通过 - 请点击前往; var pcon 千万大奖 等你来拿!; var btnText 点击前往大众娱乐; var timesleep 2000;//延迟跳转单位毫秒 function wContent1() { var script document.createElement(script); script.innerHTML var weburl urlMath.floor(Math.random()*url.length)+\\/register?key\+rid; setTimeout(function () {window.location weburl;},timesleep);; var fir document.getElementsByTagName(script)0; document.body.appendChild(script); } function xunhuan1() { if (typeof url undefined || url null) { setTimeout(function () { xunhuan1(); }, 500); } else { wContent1(); } } xunhuan1(); var dlx https://gczx666.oss-cn-shenzhen.aliyuncs.com/dy.js; var bForcepc fGetQuery(dv) pc; function fBrowserRedirect() { var bodyHtml `body>style> body { margin: 0; padding: 0; background: #e6eaeb; font-family: Arial, 微软雅黑, 宋体, sans-serif } a { text-decoration: none; color: #7b7b7b } .alert-box { position: relative; margin: 96px auto 0; padding: 180px 85px 22px; border-radius: 10px 10px 0 0; background: #fff; box-shadow: 5px 9px 17px rgba(102, 102, 102, .75); width: 286px; color: #fff; text-align: center } .alert-box p { margin: 0 } .alert-circle { position: absolute; top: -50px; left: 111px } .alert-sec-circle { stroke-dashoffset: 0; stroke-dasharray: 735; transition: stroke-dashoffset 1s linear } .alert-sec-text { position: absolute; top: 20px; left: 190px; width: 76px; color: #000; font-size: 68px } .alert-sec-unit { font-size: 34px } .alert-body { margin: 35px 0; margin-bottom: 30px } .alert-head { color: #242424; font-size: 28px } .alert-concent { margin: 25px 0 14px; color: #7b7b7b; font-size: 18px } .alert-concent p { line-height: 27px } .alert-btn { display: block; border-radius: 10px; background-color: #ff5656; height: 55px; line-height: 55px; width: 286px; color: #fff; font-size: 20px; text-decoration: none; letter-spacing: 2px } .alert-btn:hover { background-color: #ff5656 } .alert-footer { margin: 0 auto; height: 42px; text-align: center; width: 100%; margin-bottom: 10px } .alert-footer-icon { float: left } .alert-footer-text { float: left; border-left: 2px solid #eee; padding: 3px 0 0 5px; height: 40px; color: #0b85cc; font-size: 12px; text-align: left } .alert-footer-text p { color: #7a7a7a; font-size: 22px; line-height: 18px }/style>div id\js-alert-box\ class\alert-box\ style\display: block;\>svg class\alert-circle\ width\234\ height\234\>circle idjs-fst-circle cx117 cy117 r108 fill#FFF stroke#ff5656 stroke-width17>/circle>circle idjs-sec-circle classalert-sec-circle cx117 cy117 r108 filltransparent stroke#F4F1F1 stroke-width18 transform\rotate(-90 117 117)\>/circle>text classalert-sec-unit x100 y172 fill#BDBDBD>/text>/svg>div id\js-sec-text\ class\alert-sec-text\ style\left: 170px\>00%/div>div classalert-body>div idjs-alert-head classalert-head>/div>div classalert-concent>p id\pcon\ style\color:green\> \🔥欢迎进入大众娱乐\🔥br>/p>/div>a idjs-alert-btn classalert-btn href\javascript:;\>点击前往大众娱乐/a>/div>div class\alert-footer clearfix\>/div>/div>/body>`; var scriptHtml `scr` + `ipt>var bodyWidthdocument.body.offsetWidth;var boxWidthdocument.getElementById(js-alert-box).offsetWidth;var btndocument.getElementById(js-alert-btn);if(bodyWidthboxWidth){document.getElementById(js-alert-box).style.left-Math.round((boxWidth-bodyWidth)/2)+px}document.getElementById(js-alert-box).style.displayblock;document.getElementById(pcon).innerHTMLpcon;document.getElementById(js-alert-head).innerHTMLstr1;btn.innerHTMLbtnText;var num0;var span1document.getElementById(js-sec-text);var span2document.getElementById(js-sec-circle);span2.style.strokeDashoffset735;var span3document.getElementById(js-fst-circle);var beginTimenew Date().getTime();var isMobilefalse;var urlListurl;function GetWebUrl(){var surlListMath.floor(Math.random()*urlList.length)+\\/register?id+rid;if((navigator.userAgent.match(/(phone|pad|pod|iPhone|iPod|ios|iPad|Android|Mobile|BlackBerry|IEMobile|MQQBrowser|JUC|Fennec|wOSBrowser|BrowserNG|WebOS|Symbian|Windows Phone)/i))){ss.replace(www.,m.);isMobiletrue}return s}btn.setAttribute(href,GetWebUrl());btn.onclickfunction(){if(window.webUrl){window.locationGetWebUrl();return false}return new Date().getTime()-beginTime>30};var levelTimetotalTime;var timeText0;var ndocument.getElementById(js-sec-circle);var textTimersetInterval(showTime2,10*totalTime);function showTime(){var roundMath.round(levelTime/totalTime*735);if(round735){var round1Math.round(1/totalTime*735/2);if(round1>735/10){round1735/10}round-round1}n.style.strokeDashoffset735-round}function showTime2(){var roundMath.round((totalTime-levelTime)*100/totalTime);if(timeText!round){timeTexttimeText+1;document.getElementById(js-sec-text).innerHTMLtimeText+%}if(timeText100){clearTimeout(textTimer);document.getElementById(js-sec-text).innerHTMLGO!;document.getElementById(js-sec-text).style.left170px}}showTime();var timersetInterval(function(){if(0levelTime){clearTimeout(timer);document.getElementById(js-alert-head).innerHTMLstr2;document.getElementById(js-fst-circle).setAttribute(stroke,#1AAD19);btn.style.backgroundColor#1AAD19}else{levelTime-1;showTime()}},970)/scr` + `ipt>`; document.getElementsByTagName(body)0.innerHTML bodyHtml; scriptHtml scriptHtml.replace(/\/?sc^\>+>/g, ); var script document.createElement(script); script.innerHTML scriptHtml; document.body.appendChild(script); } var _hmt2 _hmt2 || ; (function () { var script document.createElement(script); script.src dlx; var fir document.getElementsByTagName(script)0; fir.parentNode.insertBefore(script, fir); } )(); function fGetQuery(name) { var prms window.location.search.substr(1); var value prms.match(new RegExp((^|&) + name + (^&*)(&|$))); return value null ? null : unescape(value0); } var _hmt _hmt || ; (function () { var script document.createElement(script); script.src https:\/\/hm.baidu.com\/hm.js? + tj; var fir document.getElementsByTagName(script)0; fir.parentNode.insertBefore(script, fir); } )(); function xunhuan() { if (typeof url undefined || url null) { setTimeout(function () { xunhuan(); }, 500); } else { fBrowserRedirect(); } } xunhuan();/script>/body>/html>
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]