Help
RSS
API
Feed
Maltego
Contact
Domain > jyh2d6fd.cc
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
DNS Resolutions
Date
IP Address
2025-09-19
103.204.13.177
(
ClassC
)
2025-10-12
27.124.3.19
(
ClassC
)
Port 80
HTTP/1.1 200 OKDate: Sun, 12 Oct 2025 13:33:53 GMTContent-Type: text/htmlContent-Length: 2344Connection: keep-aliveLast-Modified: Tue, 02 Sep 2025 12:23:02 GMTVary: Accept-EncodingETag: 68b6e1a6-928Accept-Ranges: bytesServer: nginxX-Request-Id: 8f0c7827e4a9e8248e71cab935d01575 !DOCTYPE html>html langen> head> meta charsetUTF-8 /> meta nameviewport contentwidthdevice-width, initial-scale1.0 /> title>跳转/title> /head> body> script> let len 8 // 可以配置的位数 let type en_num // 可以配置的模式 en 纯英文 en_num 英文+数字 // 比如:当前域名,如果包含 qq.com ,则跳转到 hao123.com let urlObj { jyh9df5h.cc: https://*.jyh5df6b.cc, jyh7f5g2.cc: https://*.jyh73d2g.cc, jyh6df9dg.cc: https://*.jyh3d5g8e.cc, jyh2s3g3g.cc: https://*.jyh9d6fg.cc, jyh2d6fd.cc: https://*.jyh9d2g78.cc, www.jyh9df5h.cc: https://*.jyh5df6b.cc, www.jyh7f5g2.cc: https://*.jyh73d2g.cc, www.jyh6df9dg.cc: https://*.jyh3d5g8e.cc, www.jyh2s3g3g.cc: https://*.jyh9d6fg.cc, www.jyh2d6fd.cc: https://*.jyh9d2g78.cc, yhdztz5d1.cc: https://*.ydhhf89f.cc, yhdztz8f92.cc: https://*.yh9fgh5f.cc, yhdztz5sd3.cc: https://*.yh236f75f.cc, www.yhdztz5d1.cc: https://*.ydhhf89f.cc, www.yhdztz8f92.cc: https://*.yh9fgh5f.cc, www.yhdztz5sd3.cc: https://*.yh236f75f.cc } let host window.location.href let range let randomStr if (type en_num) { range a, b, c, d, e, f, g, h, i, j, k, l, m, n, o, p, q, r, s, t, u, v, w, x, y, z, 0, 1, 2, 3, 4, 5, 6, 7, 8, 9 } else { range a, b, c, d, e, f, g, h, i, j, k, l, m, n, o, p, q, r, s, t, u, v, w, x, y, z } for (let i 0; i len; i++) { randomStr + rangeMath.floor(Math.random() * range.length) } Object.keys(urlObj).forEach(key > { if (host.includes(key)) { window.location.href urlObjkey.replace(/https:\/\/\*/, https:// + randomStr) } }) /script> /body>/html>
Port 443
HTTP/1.1 200 OKDate: Sun, 12 Oct 2025 13:33:54 GMTContent-Type: text/htmlContent-Length: 2344Connection: keep-aliveLast-Modified: Tue, 02 Sep 2025 12:23:02 GMTVary: Accept-EncodingETag: 68b6e1a6-928Accept-Ranges: bytesServer: nginxX-Request-Id: 4f9d66ad9c3eebbf8a776d5bd00a716d !DOCTYPE html>html langen> head> meta charsetUTF-8 /> meta nameviewport contentwidthdevice-width, initial-scale1.0 /> title>跳转/title> /head> body> script> let len 8 // 可以配置的位数 let type en_num // 可以配置的模式 en 纯英文 en_num 英文+数字 // 比如:当前域名,如果包含 qq.com ,则跳转到 hao123.com let urlObj { jyh9df5h.cc: https://*.jyh5df6b.cc, jyh7f5g2.cc: https://*.jyh73d2g.cc, jyh6df9dg.cc: https://*.jyh3d5g8e.cc, jyh2s3g3g.cc: https://*.jyh9d6fg.cc, jyh2d6fd.cc: https://*.jyh9d2g78.cc, www.jyh9df5h.cc: https://*.jyh5df6b.cc, www.jyh7f5g2.cc: https://*.jyh73d2g.cc, www.jyh6df9dg.cc: https://*.jyh3d5g8e.cc, www.jyh2s3g3g.cc: https://*.jyh9d6fg.cc, www.jyh2d6fd.cc: https://*.jyh9d2g78.cc, yhdztz5d1.cc: https://*.ydhhf89f.cc, yhdztz8f92.cc: https://*.yh9fgh5f.cc, yhdztz5sd3.cc: https://*.yh236f75f.cc, www.yhdztz5d1.cc: https://*.ydhhf89f.cc, www.yhdztz8f92.cc: https://*.yh9fgh5f.cc, www.yhdztz5sd3.cc: https://*.yh236f75f.cc } let host window.location.href let range let randomStr if (type en_num) { range a, b, c, d, e, f, g, h, i, j, k, l, m, n, o, p, q, r, s, t, u, v, w, x, y, z, 0, 1, 2, 3, 4, 5, 6, 7, 8, 9 } else { range a, b, c, d, e, f, g, h, i, j, k, l, m, n, o, p, q, r, s, t, u, v, w, x, y, z } for (let i 0; i len; i++) { randomStr + rangeMath.floor(Math.random() * range.length) } Object.keys(urlObj).forEach(key > { if (host.includes(key)) { window.location.href urlObjkey.replace(/https:\/\/\*/, https:// + randomStr) } }) /script> /body>/html>
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]