Domain > www2.darkspotsecret.com

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2023-07-26	172.64.150.119 (ClassC)
2024-12-28	172.64.149.88 (ClassC)

HTTP/1.1 200 OKDate: Sat, 28 Dec 2024 13:05:34 GMTContent-Type: text/html; charsetUTF-8Transfer-Encoding: chunkedConnection: keep-aliveCache-Control: public, max-age  31557600Last-Modified: Fri, 27 Dec 2024 18:34:08 GMTSet-Cookie: _csrfbx30kSma6iESw1dyIMDf4ZED; Path/Strict-Transport-Security: max-age15552000; includeSubDomainsVary: Accept-EncodingVia: 1.1 spaces-router (1ecc7701c0d4)X-Content-Type-Options: nosniffX-Dns-Prefetch-Control: offX-Download-Options: noopenX-Frame-Options: SAMEORIGINX-Xss-Protection: 1; modeblockCF-Cache-Status: DYNAMICSet-Cookie: _csrfNexl_Lfvb8yqbmLY7vzY8BIt; Path/Set-Cookie: XSRF-TOKENzoAhBLqS-mYXMgzIdGbXMU3YdynMl88FMM9Y; Path/; SecureSet-Cookie: __cf_bmjd4T8VwEBjWxZg1tQaWNiZZQuVJ1.u81aP3_6Sr8.4k-1735391134-1.0.1.1-1Qw6e0J__IKatBQ.ciGAGQf5Z7fmnCHxmUtVg9bTbEf_FgIPer51tEBXVymxhsNfJXcDcs_89mXzRk3FJvqgeg; path/; expiresSat, 28-Dec-24 13:35:34 GMT; domain.darkspotsecret.com; HttpOnly; SecureServer: cloudflareCF-RAY: 8f91c33fcd742f29-PDXalt-svc: h3:443; ma86400

!DOCTYPE html>html langen dirltr>head>  script data-ionicinject>    (function(w){var iw.Ionicw.Ionic||{};i.versionhttps://github.com/GoldenHippoMedia/ionic-angular.git#80e3cb3;i.angular5.2.11;i.staticDirbuild/;})(window);  /script>  !--Add VWO Script-->  meta http-equivContent-Security-Policy contentfont-src * self data:;>  !--script async typetext/javascript srchttps://js.stripe.com/v2/>/script>-->  !--script async typetext/javascript srchttps://payments.developers.google.com/js/apis/pay.js>/script>-->  base href/ />  meta charsetUTF-8 />  title idtitle>Gundry MD - Is There A Solution For Leaky Gut?/title>  meta nameviewport contentwidthdevice-width, initial-scale1.0, minimum-scale1.0, maximum-scale1.0, user-scalableno />  meta nameformat-detection contenttelephoneno />  meta namemsapplication-tap-highlight contentno />  link relicon typeimage/x-icon href/assets/img/favicon.ico?v2 />  link relmanifest href/manifest.json />  meta nametheme-color content#4e8ef7 />  meta nameapple-mobile-web-app-capable contentyes />  meta nameapple-mobile-web-app-status-bar-style contentblack />  meta namerobots contentnoindex,nofollow>  script>    // TOUC-7261    !function(e,r){objecttypeof exports&&objecttypeof module?module.exportsr():functiontypeof define&&define.amd?define(,r):objecttypeof exports?exports.roundHalfEvenr():e.roundHalfEvenr()}(undefined!typeof self?self:this,function(){return function(e){function r(n){if(tn)return tn.exports;var otn{i:n,l:!1,exports:{}};return en.call(o.exports,o,o.exports,r),o.l!0,o.exports}var t{};return r.me,r.ct,r.dfunction(e,t,n){r.o(e,t)||Object.defineProperty(e,t,{configurable:!1,enumerable:!0,get:n})},r.nfunction(e){var te&&e.__esModule?function(){return e.default}:function(){return e};return r.d(t,a,t),t},r.ofunction(e,r){return Object.prototype.hasOwnProperty.call(e,r)},r.p,r(r.s0)}(function(e,r,t){use strict;var nt(1),ofunction(e){return e&&e.__esModule?e:{default:e}}(n);e.exportso.default},function(e,r,t){use strict;var nfunction(e){return e%20},ofunction e(r){var targuments.length>1&&void 0!arguments1?arguments1:2;if(void 0r)throw new Error(value is required);if(number!typeof r)throw new Error(value must be a number type);if(r0)return-e(-r);if(0t)return 10*e(r/10,1);var o(+r).replace(/0+$/,),uo.indexOf(.);if(u0)return r;var fo.slice(0,u);0f.length&&(f0);var io.slice(u+1);if(i.lengtht)return r;var aparseInt(it,10);if(a5){var si.slice(0,t);return parseFloat(f+.+s)}if(5a){var li.slice(0,t+1);iparseInt(i.slice(t+1),10)>0?l+9:l}for(var cparseInt(ii.length-1,10),p0,di.length-1;d>t;d--){var vparseInt(id-1,10)+p;(c>5||5c&&!n(v))&&++v,v>9?(v-10,p1):p0,cv}for(var x,bt-2;b>0;b--){var yparseInt(ib,10)+p;y>9?(y-10,p1):p0,x+y+x}return fparseInt(f,10)+p,parseFloat(f+.+x+c)};e.exportso})});  /script>    script>    //  TOUC-3352 https://jsfiddle.net/6dof5nc2/    function hashCode(str) {      return str.split().reduce((prevHash, currVal) >        (((prevHash  5) - prevHash) + currVal.charCodeAt(0))|0, 0);    }    var dd  document.domain.toString();    if(document.location.pathname  / &&        (  hashCode(dd)  830201117 || hashCode(dd)  -1523811963 || hashCode(dd)   1096071537 ) ) {       document.location.pathname  /vsl201104a_ap;    } else if (document.location.pathname  / && hashCode(dd)  -223017228 ) {       // -223017228: www2.nomoredarkspot.com       document.location.pathname  /os230428a_ap;    } else if (document.location.pathname  / && (hashCode(dd)  -175035479)) {      document.location.pathname  /video230420a_ap;    } else if (document.location.pathname  / && (hashCode(dd)  -2058399380)) {      // -2058399380: www2.gundrygutcare.com      document.location.pathname  /fst/d_qs_tr_surveystart_html_ctv_qqq?experimentaltrue;    } else if (document.location.pathname  / && (hashCode(dd)  -131760835 || hashCode(dd)  2028129192)) {       // Prod www2.darkspotfix.com: -131760835      // Review app hash code TOUC-10501 https://gundry-touc-10501-p7v4ul3taxic.herokuapp.com: 2028129192      document.location.pathname  /os230428a_ap;    }  /script>  !--      un-comment this code to enable service worker      script>        if (serviceWorker in navigator) {          navigator.serviceWorker.register(service-worker.js)            .then(() > console.log(service worker installed))            .catch(err > console.error(Error, err));        }      /script>    -->  !-- un-comment this code to enable service worker  script>    if (serviceWorker in navigator) {      navigator.serviceWorker.register(service-worker.js)        .then(() > console.log(service worker installed))        .catch(err > console.error(Error, err));    }  /script>-->!--  script src/assets/gh-js/NewRelicBrowser.js?ver1227202418>/script> -->  script src/process_env.js?ver1227202418>/script>  script src/funnel_confs.js?ver1227202418>/script>  script src/countries.js?ver1227202418>/script>  !-- TOUC-2345 -->  script>    function getCookie(cname) { // TOUC-5682      var name  cname + ;      var decodedCookie  decodeURIComponent(document.cookie);      var ca  decodedCookie.split(;);      for(var i  0; i ca.length; i++) {        var c  cai;        while (c.charAt(0)   ) {          c  c.substring(1);        }        if (c.indexOf(name)  0) {          return c.substring(name.length, c.length);        }      }      return ;    }    try { // TOUC-5682      var getSearchParameters  function() {        var prmstr  window.location.search.substr(1);        return prmstr ! null && prmstr !  ? transformToAssocArray(prmstr) : {};      };      var transformToAssocArray  function(prmstr) {        var params  {},          prmarr  prmstr.split(&);        for (var i  0; i  prmarr.length; i++) {          var tmparr  prmarri.split();          paramstmparr0  tmparr1;        }        return params;      }    } catch (e) {      console.log(error setting up session:+e);    }    try { // TOUC-5682      if( navigator.userAgent.indexOf(Trident)  -1 ) {        console.log(override window.open);        window.open  function (open) {          return function (url, name, options) {            if(!url.startsWith(http) && url.indexOf(sessionid)  -1) {              var uriParams  getSearchParameters();              console.log(GH general sessionid:  + uriParams.sessionid);              if(typeof uriParams.sessionid ! undefined) {                var sep&;                if(url.indexOf(?)  -1) sep?;                url + sep + sessionid  + uriParams.sessionid;              }            }            return open.call(window, url, name, options );          };      }(window.open);      }    } catch (e) {      console.log(error setting up windows in IE:+e);    }    try {      if( navigator.userAgent.indexOf(Trident) > -1 ) {        console.log(override window.open for IE);        window.open  function (open) {          return function (url, name, options) {            options  options +,toolbaryes,scrollbarsyes,resizableyes || toolbaryes,scrollbarsyes,resizableyes;              return open.call(window, url, name, options );          };      }(window.open);      }    } catch (e) {      console.log(error setting up windows in IE:+e);    }  /script>  !-- TOUC-2949 -->  script>    !function(){var a,nfunction(a){for(var n{},_a.split(&),i0;i_.length;i++){var e_i.split();ne0e1}return n},_null!(awindow.location.search.substr(1))&&!a?n(a):{};if(TouchCRBase__UTM_Campaign_V2__c_.utm_campaign||,console.log(input value:+TouchCRBase__UTM_Campaign_V2__c),TouchCRBase__UTM_Campaign_V2__c.length10)return TouchCRBase__UTM_Campaign_V2__c;if(0!TouchCRBase__UTM_Campaign_V2__c.indexOf(GHOBFU-))return TouchCRBase__UTM_Campaign_V2__c;for(var i,e,t,o7;oTouchCRBase__UTM_Campaign_V2__c.length;o++)tTouchCRBase__UTM_Campaign_V2__c.substring(o,o+1),iabcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789-_.indexOf(t),e+i>-1?_-9876543210ZYXWVUTSRQPONMLKJIHGFEDCBAzyxwvutsrqponmlkjihgfedcba.substring(i,i+1):t;window.dataLayerwindow.dataLayer||,window.dataLayer.pushfunction(a){return console.log(GH dataLayer push ,a),a.affiliateInfo&&a.affiliateInfo.utmCampaign&&a.affiliateInfo.utmCampaign!e&&(a.affiliateInfo.utmCampaigne,console.log(GH dataLayer changed ,a)),Array.prototype.push.call(this,a)},window.dataLayer.push({utmCampaign:e}),window.dataLayer.push({affiliateInfo:{utmCampaign:e}}),window.dataLayer.push({eventType:appScreenView,affiliateInfo:{utmCampaign:e}}),window.dataLayer.push({event:utm_campaign,cipher:TouchCRBase__UTM_Campaign_V2__c,cleartext:e})}();  /script>    !-- Google Tag Manager -->  script>      if (process_env.GTM) {          (function (w, d, s, l, i) {              wl  wl || ; wl.push({                  gtm.start:                      new Date().getTime(), event: gtm.js              }); var f  d.getElementsByTagName(s)0,                  j  d.createElement(s), dl  l ! dataLayer ? &l + l : ; j.async  true; j.src                   https://www.googletagmanager.com/gtm.js?id + i + dl; f.parentNode.insertBefore(j, f);          })(window, document, script, dataLayer, window.process_env.GTM);      }  /script>  !-- End Google Tag Manager -->    !-- Google Tag Manager 2 -->  script>    (function(w,d,s,l,i){wlwl||;wl.push({gtm.start:    new Date().getTime(),event:gtm.js});var fd.getElementsByTagName(s)0,    jd.createElement(s),dll!dataLayer?&l+l:;j.asynctrue;j.src    https://www.googletagmanager.com/gtm.js?id+i+dl;f.parentNode.insertBefore(j,f);    })(window,document,script,dataLayer,GTM-5WLKKPD);  /script>    !-- End Google Tag Manager 2 -->/head>body>  !-- Ionics root component and where the app will load -->  ion-app>/ion-app>  script typeapplication/javascript>    try {      window.sessionStorage.setItem(StorageTest, );      window.sessionStorage.removeItem(StorageTest);    } catch (e) {      if (!windowgh) {        windowgh  {};      }    }/script>script>  // TOUC-5682 https://jsfiddle.net/y7j2q0gh/2/  function getPCIRandom(){if(objecttypeof window.crypto){var tnew Uint32Array(32);window.crypto.getRandomValues(t);let n1e17;for(var e0;et.length;e++)n+parseInt(te.toString());return parseFloat(0.+parseInt(n.toString().substr(0,16)))}{let tfunction(){let tDate.now(),eDate.now(),nDate.now(),rDate.now();return function(){let oe9,at+r;return r^e,e^n^t,t^r,n^o,rr11|r>>>21,(a>>>0)/4294967296}}(),e+new Date*t()+t()*t()+t().toString().substr(2);return parseFloat(0.+e.replace(/\./g,).substr(0,16))}}/script>  script typeapplication/javascript>    function getIP(json) {      try {        sessionStorage.setItem(ip, json.ip);        if (!windowgh) {          windowgh  {};        }        windowghip  json.ip;      } catch (e) {        if (!windowgh) {          windowgh  {};        }        windowghip  json.ip;      }      windowghip  json.ip;      windowip  json.ip;            try{		         sessionStorage.setItem(country, json.country);		         sessionStorage.setItem(eu, json.eu);		       } catch (e) {		         if(!windowgh) {		           windowgh  {};		         }		         windowghcountry  json.country;		         windowgheu  json.eu;		       }    }    var ipscript  document.createElement(script); //TOUC-826    ipscript.type  application/javascript;    if(windowprocess_env.NODE_ENV  production || location.port  ) {      ipscript.src  /request-ip;    } else {      ipscript.src  location.protocol + // + location.hostname  + :8080/request-ip;    }    var headtab  document.head || document.getElementsByTagName(head)0;    if(headtab) headtab.appendChild(ipscript);  /script>  script>    try { //TOUC-1243 - UAT testers and developer help mode      if(document.location.search.indexOf(debugModetrue) > -1) {        localStorage.setItem(debugMode, true); // you can also type this into the console on your test domain instead of a parameter to enable debugMode      }      if(location.protocol  https: &&  localStorage.getItem(debugMode) ! true) {        console.log  () > {}; // rather than drop_console:true in uglifiy config, drop console like this      }    } catch (e )  {      console.log(cant setup debugMode,e);    }  /script>    script>    //---Add script for amazon pay--    if (windowprocess_env.AMAZON_IS_ENABLED) {      var head  document.getElementsByTagName(head)0;      var script  document.createElement(script);      script.type  text/javascript;      if (!windowprocess_env.AMAZON_IS_SANDBOX) {        script.src  https://static-na.payments-amazon.com/OffAmazonPayments/us/js/Widgets.js;      } else {        script.src  https://static-na.payments-amazon.com/OffAmazonPayments/us/sandbox/js/Widgets.js;      }      script.async  true;      head.appendChild(script);    }    var sessionRequest  new XMLHttpRequest();    sessionRequest.withCredentials  true;    var url       windowprocess_env.NODE_ENV  production        ? /proxy/        : windowprocess_env.API_URL;    sessionRequest.open(GET, url + utils/getsession);    sessionRequest.setRequestHeader(x-brand, windowprocess_env.BRAND);    sessionRequest.onload  function() {      console.log(GH getsession onload);      windowtcrsessioncreated  true;    };    var token  windowprocess_env.TOKEN;    if (token) {      sessionRequest.setRequestHeader(Authorization, token);    }    sessionRequest.onload  function() {      console.log(GH getsession onload);      windowtcrsessioncreated  true;    };    sessionRequest.send();  /script>  !-- Loading scripts / important boot order -->  script defer src/build/polyfills.js?ver1227202418>/script>  script defer src/build/vendor.js?ver1227202418>/script>  script defer src/build/main.js?ver1227202418>/script>  script>    //---Add script for google pay--    if (process_env.GOOGLEPAY_IS_ENABLED || process_env.APPLEPAY_IS_ENABLED) {      var head  document.getElementsByTagName(head)0;      var script1  document.createElement(script);      script1.type  text/javascript;      script1.src  https://js.stripe.com/v2/;      script1.async  true;      head.appendChild(script1);           var script2  document.createElement(script);      script2.type  text/javascript;      script2.src  https://payments.developers.google.com/js/apis/pay.js;      script2.async  true;      head.appendChild(script2);    }  /script>    link hrefbuild/main.css?ver1227202418 relstylesheet>  !-- The polyfills js is generated during the build process -->  !-- The vendor js is generated during the build process       It contains all of the dependencies in node_modules -->  !-- The main bundle js is generated during the build process -->/body>/html>

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > www2.darkspotsecret.com

Is this malicious?

DNS Resolutions

Port 80

Port 443