Help
RSS
API
Feed
Maltego
Contact
Domain > inprogress.hikezy.com
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
DNS Resolutions
Date
IP Address
2020-08-01
104.18.34.30
(
ClassC
)
2024-10-28
104.21.35.104
(
ClassC
)
Port 80
HTTP/1.1 200 OKDate: Mon, 28 Oct 2024 03:00:45 GMTContent-Type: application/cgiContent-Length: 2810Connection: keep-alivecf-cache-status: DYNAMICLast-Modified: Tue, 30 Jan 2024 18:37:05 GMTAccept-Ranges: bytesCache-Control: no-cache, no-store, must-revalidatePragma: no-cacheExpires: 0Report-To: {endpoints:{url:https:\/\/a.nel.cloudflare.com\/report\/v4?scQWQTqaJ3iIzGeJrnrdXLA0tXdGMpiH%2FXnddXreRsQbl8M9Wm0PQSmJg2zEAa8hDZ8y0ZYcRq7V08iiUSHhrSlckttszsGsE8ouNg6CmJRhLr4Cp4p1lLPOI8KwPG225QB83kpp2QbA%3D},group:cf-nel,max_age:604800}NEL: {success_fraction:0,report_to:cf-nel,max_age:604800}Server: cloudflareCF-RAY: 8d97ad69ed8fba09-SEAalt-svc: h3:443; ma86400server-timing: cfL4;desc?protoTCP&rtt10681&sent1&recv3&lost0&retrans0&sent_bytes0&recv_bytes60&delivery_rate0&cwnd242&unsent_bytes0&cid0000000000000000&ts0&x0 #!/usr/bin/php?php if ( (isset($_GETtestifworking)) && ($_GETtestifworking 1) ) { echo It works; exit; } //TODO: Replace portfolio ID with your Portfolio ID $portfolioId 5POJ5651L; $forwardDomain http://www.explorefreeresults.com; // // // DO NOT CHANGE BELOW THIS LINE // // error_reporting(0); $domain urlencode(isStringSet( safeReturn( $_SERVER, SERVER_NAME ) )?safeReturn( $_SERVER, SERVER_NAME ):safeReturn( $_SERVER, HTTP_HOST )); $domain_split explode(.,$_SERVERHTTP_HOST); if (( count($domain_split) > 2) && ( !preg_match(/^www\./, $_SERVERHTTP_HOST) ) || $_SERVERSERVER_PORT 443 ) { header(Location: /404.html); exit; } $user_agent urlencode(safeReturn( $_SERVER,HTTP_USER_AGENT)); $ipAddress urlencode(safeReturn( $_SERVER,REMOTE_ADDR)); $userAgent urlencode(safeReturn( $_SERVER,HTTP_USER_AGENT)); $xIP urlencode(safeReturn( $_SERVER,HTTP_X_FORWARDED_FOR )); $originalURL urlencode(http://.$_SERVERHTTP_HOST.$_SERVERREQUEST_URI); $languageHeader urlencode($_SERVERHTTP_ACCEPT_LANGUAGE); $referrer urlencode($_SERVERHTTP_REFERER); $url $forwardDomain./sk-park.php?dn.$domain.&ua.$userAgent.&requrl.$originalURL.&al.$languageHeader.&reqref.$referrer.&pid.$portfolioId.&ip.$ipAddress.&xfip.$xIP; try { echo getContentUsingCurl($url); } catch(Exception $e){ header(Location: .$forwardDomain./?dn.$domain.&pid.$portfolioId.&spfwd1); } function safeReturn($array, $index) { return isset($array$index)? $array$index : null; } function isStringSet($string) { return (! is_null($string) && $string ! ); } function getContentUsingCurl( $url ) { if(!function_exists(curl_init)) { throw new Exception ( No curl support ); } $curlResource curl_init (); if (!$curlResource) { throw new Exception ( Not able to initialise curl resource ); } $options array ( CURLOPT_CONNECTTIMEOUT > 3, CURLOPT_RETURNTRANSFER > true, CURLOPT_FOLLOWLOCATION > true, CURLOPT_MAXREDIRS > 3, CURLOPT_TIMEOUT > 6, CURLOPT_URL > $url ); curl_setopt_array ( $curlResource, $options ); $resultContent curl_exec($curlResource); curl_close($curlResource); if(!$resultContent) { throw new Exception ( Not able to fetch response . ); } return $resultContent; } function getContentUsingFGet($url) { if(!function_exists(file_get_contents)) { throw new Exception ( No file_get_contents() support ); } $resultContent file_get_contents($url); if(!isStringSet($resultContent)) { throw new Exception ( Not able to fetch response . ); } return $resultContent; }?>
Port 443
HTTP/1.1 200 OKDate: Mon, 28 Oct 2024 03:00:46 GMTContent-Type: application/cgiContent-Length: 2810Connection: keep-alivex-robots-tag: noindex, nofollowlast-modified: Tue, 30 Jan 2024 18:37:05 GMTaccept-ranges: bytesCache-Control: no-cache, no-store, must-revalidatepragma: no-cacheexpires: 0cf-cache-status: DYNAMICReport-To: {endpoints:{url:https:\/\/a.nel.cloudflare.com\/report\/v4?s1YAn2t%2FHNrCIJ2JsCS5HAJsgEeDORahc3X%2Fmu5MYNACHSe0YlOy7AUtXKxmDcg5su7Jjt5B1mEp3mXfnZ6x45Z8bdobQIrqGUBP0hA2ejoMXaXamATrOubmZ0lFjdOlHf3Ou6k5G3bo%3D},group:cf-nel,max_age:604800}NEL: {success_fraction:0,report_to:cf-nel,max_age:604800}Server: cloudflareCF-RAY: 8d97ad6b2a5da334-SEAalt-svc: h3:443; ma86400server-timing: cfL4;desc?protoTCP&rtt9426&sent5&recv6&lost0&retrans0&sent_bytes2846&recv_bytes732&delivery_rate308380&cwnd248&unsent_bytes0&cid0a04caf9988c7d27&ts229&x0 #!/usr/bin/php?php if ( (isset($_GETtestifworking)) && ($_GETtestifworking 1) ) { echo It works; exit; } //TODO: Replace portfolio ID with your Portfolio ID $portfolioId 5POJ5651L; $forwardDomain http://www.explorefreeresults.com; // // // DO NOT CHANGE BELOW THIS LINE // // error_reporting(0); $domain urlencode(isStringSet( safeReturn( $_SERVER, SERVER_NAME ) )?safeReturn( $_SERVER, SERVER_NAME ):safeReturn( $_SERVER, HTTP_HOST )); $domain_split explode(.,$_SERVERHTTP_HOST); if (( count($domain_split) > 2) && ( !preg_match(/^www\./, $_SERVERHTTP_HOST) ) || $_SERVERSERVER_PORT 443 ) { header(Location: /404.html); exit; } $user_agent urlencode(safeReturn( $_SERVER,HTTP_USER_AGENT)); $ipAddress urlencode(safeReturn( $_SERVER,REMOTE_ADDR)); $userAgent urlencode(safeReturn( $_SERVER,HTTP_USER_AGENT)); $xIP urlencode(safeReturn( $_SERVER,HTTP_X_FORWARDED_FOR )); $originalURL urlencode(http://.$_SERVERHTTP_HOST.$_SERVERREQUEST_URI); $languageHeader urlencode($_SERVERHTTP_ACCEPT_LANGUAGE); $referrer urlencode($_SERVERHTTP_REFERER); $url $forwardDomain./sk-park.php?dn.$domain.&ua.$userAgent.&requrl.$originalURL.&al.$languageHeader.&reqref.$referrer.&pid.$portfolioId.&ip.$ipAddress.&xfip.$xIP; try { echo getContentUsingCurl($url); } catch(Exception $e){ header(Location: .$forwardDomain./?dn.$domain.&pid.$portfolioId.&spfwd1); } function safeReturn($array, $index) { return isset($array$index)? $array$index : null; } function isStringSet($string) { return (! is_null($string) && $string ! ); } function getContentUsingCurl( $url ) { if(!function_exists(curl_init)) { throw new Exception ( No curl support ); } $curlResource curl_init (); if (!$curlResource) { throw new Exception ( Not able to initialise curl resource ); } $options array ( CURLOPT_CONNECTTIMEOUT > 3, CURLOPT_RETURNTRANSFER > true, CURLOPT_FOLLOWLOCATION > true, CURLOPT_MAXREDIRS > 3, CURLOPT_TIMEOUT > 6, CURLOPT_URL > $url ); curl_setopt_array ( $curlResource, $options ); $resultContent curl_exec($curlResource); curl_close($curlResource); if(!$resultContent) { throw new Exception ( Not able to fetch response . ); } return $resultContent; } function getContentUsingFGet($url) { if(!function_exists(file_get_contents)) { throw new Exception ( No file_get_contents() support ); } $resultContent file_get_contents($url); if(!isStringSet($resultContent)) { throw new Exception ( Not able to fetch response . ); } return $resultContent; }?>
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]