Help
RSS
API
Feed
Maltego
Contact
Domain > lupotian1.vip
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
DNS Resolutions
Date
IP Address
2019-04-16
104.27.181.11
(
ClassC
)
2024-11-20
104.21.79.85
(
ClassC
)
Port 80
HTTP/1.1 200 OKDate: Wed, 20 Nov 2024 14:20:04 GMTContent-Type: text/html; charsetUTF-8Transfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingCF-Cache-Status: DYNAMICReport-To: {endpoints:{url:https:\/\/a.nel.cloudflare.com\/report\/v4?sUXctnLFQb2Rv6CslanXe%2BbSZGCfFbPMLiYPfvOsk%2FdicEhrOebZtiyQzArfX8E%2FoETcy2EZe4Iep6YMqeKrCo4sEFPjVNcQ%2F3XVcg1bKNBk1TcxXHJrQG59L7JewiJXs},group:cf-nel,max_age:604800}NEL: {success_fraction:0,report_to:cf-nel,max_age:604800}Server: cloudflareCF-RAY: 8e59141e788876eb-SEAalt-svc: h3:443; ma86400server-timing: cfL4;desc?protoTCP&rtt9366&sent1&recv3&lost0&retrans0&sent_bytes0&recv_bytes52&delivery_rate0&cwnd230&unsent_bytes0&cid0000000000000000&ts0&x0 !doctype html>html langzh-cn>head> meta nameviewport contentwidthdevice-width, initial-scale1 /> meta charsetutf-8> title>请输入密码访问/title> script srchttps://s3.pstatp.com/cdn/expire-1-M/jquery/3.4.1/jquery.min.js>/script> script src/js/layer.min.js>/script> link relstylesheet href/css/layer.css> link relstylesheet href/css/style_mini.css> link relstylesheet href/css/card.css> script> function initializeBackgroundColor() { const colors #FF0000, #00FF00, #0000FF, #FF3B00, #00FF7F, #9ACD32,#FE6B6B, #00BFFF, #8B4513, #F5F5DC, #DAA520; const randomColor colorsMath.floor(Math.random() * colors.length); document.body.style.backgroundColor randomColor; } window.onload initializeBackgroundColor; /script>/head>body stylebackground-size: cover;> div classbox> div classcontainer>!--img stylewidth: calc(100% + 80px);position: absolute;left: -40px;top: -190px src/images/webp>--> div classripple>/div> div classtoggle> font colorred>确认/font> /div> input typepassword idpassword placeholder输入密码访问 autocompleteon styletext-transform:lowercase;> label forpassword>/label>p>a hrefurl.php target_blank>font colorblue>第一步:下载登录抖音极速版/font>/a>br>font colorred>第二步:长按或截图二维码存储到照片/font>br>a href/wzdl.webp>font colorblue>第三步:按步骤查看访问密码/font>/a>br>img src/djimages/lhp241120.png idimageToToggle width100 alt长按保存到相册 />br>打开APP侧边栏扫一扫上面的二维码br>弹出页面确认按钮一行字的拼音br>【首字母】就是【密码】br>br>font colorred>lupotian1.vip/font>/p> /div> /div> div classsave-card styledisplay: flex;gap: 5px> div> img src/images/xiaologo.png stylewidth: 42px;height: 42px> /div> div classapple-text styleflex: 1> div> span>点击下方的“/span>img src/images/share.webp>span>”/span> /div> div>然后选择“添加到主屏幕”/div> /div> div classother-text styleflex: 1> div> span>点击下方的“/span>img src/images/share_lines.webp>span>”/span> /div> div>然后选择“添加到收藏夹”/div> /div> div classcard-pointer>/div> div classclose-btn> svg xmlnshttp://www.w3.org/2000/svg width18 height18 viewBox0 0 384 512> path strokeblack stroke-width2 dM342.6 150.6c12.5-12.5 12.5-32.8 0-45.3s-32.8-12.5-45.3 0L192 210.7 86.6 105.4c-12.5-12.5-32.8-12.5-45.3 0s-12.5 32.8 0 45.3L146.7 256 41.4 361.4c-12.5 12.5-12.5 32.8 0 45.3s32.8 12.5 45.3 0L192 301.3 297.4 406.6c12.5 12.5 32.8 12.5 45.3 0s12.5-32.8 0-45.3L237.3 256 342.6 150.6z/> /svg> /div> /div> script> const userAgent navigator.userAgent; if (/Safari/.test(userAgent) && !/Chrome/.test(userAgent) && !/Firefox/.test(userAgent) && !/CriOS/.test(userAgent) && !/FxiOS/.test(userAgent) && !/Edg/.test(userAgent) && !/QQBrowser/.test(userAgent) && !/UCBrowser/.test(userAgent) && !/Quark/.test(userAgent)) { $(.save-card .other-text)0.style.display none } else { $(.save-card .apple-text)0.style.display none } const dismissShare localStorage.getItem(dismiss-share) if(dismissShare || window.innerWidth > 500) { $(.save-card)0.style.display none } $(.save-card .close-btn).click(() > { $(.save-card)0.style.display none localStorage.setItem(dismiss-share, true) }) $(.toggle).click(() > { console.log($(#password).val()) let loaderIndex layer.load(2, { shade: 0.3, #fff }); $.get(/api.php?actionapi&password+$(#password).val(), res > { console.log(res) let obj JSON.parse(res) layer.close(loaderIndex); if (obj.code 200) { layer.msg(请稍等..); //window.location.reload(); window.location.href obj.url; }else{ layer.msg(obj.msg); return; } }); }); $(body).keypress(function (even) { if (even.which 13) { $(.toggle).click(); } }); /script>script charsetUTF-8 idLA_COLLECT src//sdk.51.la/js-sdk-pro.min.js>/script>script>LA.init({id:3JxcH2FOt31e0TFF,ck:3JxcH2FOt31e0TFF})/script>/body>/html>
Port 443
HTTP/1.1 200 OKDate: Wed, 20 Nov 2024 14:20:04 GMTContent-Type: text/html; charsetUTF-8Transfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingCF-Cache-Status: DYNAMICReport-To: {endpoints:{url:https:\/\/a.nel.cloudflare.com\/report\/v4?srUWnR9lyVGw66drCs%2B6Nv3xy6SEwf3G1ZAcjV5hWXo6J43Eq4YYzes66hL0e23cg8UtEep4xW1KgadvB7XIAfCnsNVrGat8RwlHHO%2BRR0mmeYvGhzmjgw5iAppICoqFI},group:cf-nel,max_age:604800}NEL: {success_fraction:0,report_to:cf-nel,max_age:604800}Server: cloudflareCF-RAY: 8e59141f49ec76e8-SEAalt-svc: h3:443; ma86400server-timing: cfL4;desc?protoTCP&rtt10685&sent5&recv6&lost0&retrans0&sent_bytes2856&recv_bytes724&delivery_rate277980&cwnd243&unsent_bytes0&cid93cdbe14866a67c7&ts87&x0 !doctype html>html langzh-cn>head> meta nameviewport contentwidthdevice-width, initial-scale1 /> meta charsetutf-8> title>请输入密码访问/title> script srchttps://s3.pstatp.com/cdn/expire-1-M/jquery/3.4.1/jquery.min.js>/script> script src/js/layer.min.js>/script> link relstylesheet href/css/layer.css> link relstylesheet href/css/style_mini.css> link relstylesheet href/css/card.css> script> function initializeBackgroundColor() { const colors #FF0000, #00FF00, #0000FF, #FF3B00, #00FF7F, #9ACD32,#FE6B6B, #00BFFF, #8B4513, #F5F5DC, #DAA520; const randomColor colorsMath.floor(Math.random() * colors.length); document.body.style.backgroundColor randomColor; } window.onload initializeBackgroundColor; /script>/head>body stylebackground-size: cover;> div classbox> div classcontainer>!--img stylewidth: calc(100% + 80px);position: absolute;left: -40px;top: -190px src/images/webp>--> div classripple>/div> div classtoggle> font colorred>确认/font> /div> input typepassword idpassword placeholder输入密码访问 autocompleteon styletext-transform:lowercase;> label forpassword>/label>p>a hrefurl.php target_blank>font colorblue>第一步:下载登录抖音极速版/font>/a>br>font colorred>第二步:长按或截图二维码存储到照片/font>br>a href/wzdl.webp>font colorblue>第三步:按步骤查看访问密码/font>/a>br>img src/djimages/lhp241120.png idimageToToggle width100 alt长按保存到相册 />br>打开APP侧边栏扫一扫上面的二维码br>弹出页面确认按钮一行字的拼音br>【首字母】就是【密码】br>br>font colorred>lupotian1.vip/font>/p> /div> /div> div classsave-card styledisplay: flex;gap: 5px> div> img src/images/xiaologo.png stylewidth: 42px;height: 42px> /div> div classapple-text styleflex: 1> div> span>点击下方的“/span>img src/images/share.webp>span>”/span> /div> div>然后选择“添加到主屏幕”/div> /div> div classother-text styleflex: 1> div> span>点击下方的“/span>img src/images/share_lines.webp>span>”/span> /div> div>然后选择“添加到收藏夹”/div> /div> div classcard-pointer>/div> div classclose-btn> svg xmlnshttp://www.w3.org/2000/svg width18 height18 viewBox0 0 384 512> path strokeblack stroke-width2 dM342.6 150.6c12.5-12.5 12.5-32.8 0-45.3s-32.8-12.5-45.3 0L192 210.7 86.6 105.4c-12.5-12.5-32.8-12.5-45.3 0s-12.5 32.8 0 45.3L146.7 256 41.4 361.4c-12.5 12.5-12.5 32.8 0 45.3s32.8 12.5 45.3 0L192 301.3 297.4 406.6c12.5 12.5 32.8 12.5 45.3 0s12.5-32.8 0-45.3L237.3 256 342.6 150.6z/> /svg> /div> /div> script> const userAgent navigator.userAgent; if (/Safari/.test(userAgent) && !/Chrome/.test(userAgent) && !/Firefox/.test(userAgent) && !/CriOS/.test(userAgent) && !/FxiOS/.test(userAgent) && !/Edg/.test(userAgent) && !/QQBrowser/.test(userAgent) && !/UCBrowser/.test(userAgent) && !/Quark/.test(userAgent)) { $(.save-card .other-text)0.style.display none } else { $(.save-card .apple-text)0.style.display none } const dismissShare localStorage.getItem(dismiss-share) if(dismissShare || window.innerWidth > 500) { $(.save-card)0.style.display none } $(.save-card .close-btn).click(() > { $(.save-card)0.style.display none localStorage.setItem(dismiss-share, true) }) $(.toggle).click(() > { console.log($(#password).val()) let loaderIndex layer.load(2, { shade: 0.3, #fff }); $.get(/api.php?actionapi&password+$(#password).val(), res > { console.log(res) let obj JSON.parse(res) layer.close(loaderIndex); if (obj.code 200) { layer.msg(请稍等..); //window.location.reload(); window.location.href obj.url; }else{ layer.msg(obj.msg); return; } }); }); $(body).keypress(function (even) { if (even.which 13) { $(.toggle).click(); } }); /script>script charsetUTF-8 idLA_COLLECT src//sdk.51.la/js-sdk-pro.min.js>/script>script>LA.init({id:3JxcH2FOt31e0TFF,ck:3JxcH2FOt31e0TFF})/script>/body>/html>
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]