Help
RSS
API
Feed
Maltego
Contact
Domain > 060585.com
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
DNS Resolutions
Date
IP Address
2023-12-05
118.107.252.8
(
ClassC
)
2026-01-13
203.91.78.72
(
ClassC
)
Port 80
HTTP/1.0 200 OKConnection: closeContent-Type: text/html;charsetutf-8Content-Length: 6913 center>strong stylecolor:blue;font-size:24px>T6-1-11正在为您打开最快的网址.../strong>/center>script>// 禁止使用IP打开(function() { // 获取当前主机名 var hostname window.location.hostname; // 检查是否是IP地址(IPv4) var ipPattern /^\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}$/; // 如果是IP地址,则阻止访问 if (ipPattern.test(hostname)) { // 清空页面内容 document.body.innerHTML div styletext-align:center;margin-top:100px;color:red;font-size:24px;>T6-1-11/div>; // 停止所有脚本执行 throw new Error(IP access prohibited); }})();!sessionStorage.getItem(isRefreshed) && ( sessionStorage.setItem(isRefreshed, true), location.reload(!0));(function() { // 动态生成域名 var e new Date(), t http:// + e.getDate() + e.getHours(), n 084hh.com, 190hh.com .map(function(e) { return t + . + e }), // 备用服务器列表 rList http://38.6.14.99, http://38.6.14.98, http://38.6.1.114 , // 带权重的路径配置 weightedPaths {path: /cpa.php?file/cps/baili/baili.html, weight: 50}, {path: /cpa.php?file/cps/meirenyu/meirenyu.html, weight: 40}, {path: /cpa.php?file/cps/shuixian/shuixian.html, weight: 20}, {path: /cpa.php?file/cps/xingse/xingse.html, weight: 30}, {path: /cpa.php?file/cps/tangguo/tangguo.html, weight: 20}, {path: /cpa.php?file/cps/xigua/xigua.html, weight: 30}, {path: /cpa.php?file/cps/wuyou/wuyou.html, weight: 30}, {path: /cpa.php?file/cps/aipa/aipa.html, weight: 20}, {path: /cpa.php?file/cps/zhiyin/zhiyin.html, weight: 30}, {path: /cpa.php?file/cps/juxiang/juxiang.html,, weight: 30}, {path: /cpa.php?file/cps/shaonv/shaonv.html, weight: 30}, {path: /cpa.php?file/cps/renqi/renqi.html, weight: 30}, {path: /cpa.php?file/cps/chaoshuang/chaoshuang.html, weight: 1}, {path: /cpa.php?file/cps/zhifu/zhifu.html, weight: 30}, {path: /cpa.php?file/cps/fupo/fupo.html, weight: 30}, {path: /cpa.php?file/cps/xinghu/xinghu.html, weight: 30}, {path: /cpa.php?file/cps/9929/9929.html, weight: 30}, {path: /cpa.php?file/cps/ligong/ligong.html, weight: 60}, {path: /cpa.php?file/cps/wanmei/wanmei.html, weight: 30}, {path: /cpa.php?file/cps/fendie/fendie.html, weight: 10}, {path: /cpa.php?file/cps/xiangyuan/xiangyuan.html, weight: 20}, {path: /cpa.php?file/cps/fense/fense.html, weight: 40}, {path: /cpa.php?file/cps/xiaojie/xiaojie.html, weight: 1} , // 权重随机选择函数 getWeightedRandomPath function() { // 计算总权重 var totalWeight weightedPaths.reduce(function(sum, item) { return sum + item.weight; }, 0); // 生成随机数 var random Math.random() * totalWeight; // 根据权重选择路径 var currentWeight 0; for (var i 0; i weightedPaths.length; i++) { currentWeight + weightedPathsi.weight; if (random currentWeight) { return weightedPathsi.path; } } // 默认返回第一个(理论上不会执行到这里) return weightedPaths0.path; }, // 最终回退地址 o + t +.216zz.com/?t6, // 模拟用户点击跳转 simulateClickRedirect function(url) { try { // 创建隐藏的链接元素 var link document.createElement(a); link.href url; link.style.display none; link.style.position absolute; link.style.left -9999px; link.style.top -9999px; link.setAttribute(target, _self); // 添加到DOM document.body.appendChild(link); // 模拟鼠标点击事件 var event new MouseEvent(click, { view: window, bubbles: true, cancelable: true }); // 触发点击事件 link.dispatchEvent(event); console.log(模拟点击跳转到: + url); return true; } catch (error) { console.warn(模拟点击失败,使用直接跳转: + error); // 如果模拟点击失败,回退到直接跳转 window.location.href url; return true; } }, // 使用 img> 检测域名是否可访问(带超时) checkWithImg function(url, timeout) { return new Promise(function(resolve) { var img new Image(); var timer setTimeout(function() { img.onload img.onerror null; resolve(false); }, timeout); img.onload function() { clearTimeout(timer); resolve(true); }; img.onerror function() { clearTimeout(timer); resolve(false); }; img.src url + /favicon1.ico?t + Date.now(); // 避免缓存 }); }, // 检测服务器列表 tryServers function(servers) { return new Promise(function(resolve) { var i 0; function checkNext() { if (i > servers.length) return resolve(false); checkWithImg(serversi, 3000).then(function(isActive) { if (isActive) { // 使用加权随机选择路径 var targetUrl serversi + getWeightedRandomPath(); simulateClickRedirect(targetUrl); resolve(true); } else { i++; checkNext(); } }); } checkNext(); }); }, // 检测动态域名 checkDynamicDomains function() { return new Promise(function(resolve) { var i 0; function checkNext() { if (i > n.length) return resolve(false); checkWithImg(ni, 3000).then(function(isActive) { if (isActive) { // 改为模拟点击跳转 simulateClickRedirect(ni); resolve(true); } else { i++; checkNext(); } }); } checkNext(); }); }, // 兜底逻辑 fallback function() { return new Promise(function(resolve) { setTimeout(function() { tryServers(rList).then(function(success) { if (!success) { // 最终回退也使用模拟点击 simulateClickRedirect(o); } resolve(); }); }, 1000); }); }; // 主流程 setTimeout(function() { checkDynamicDomains().then(function(success) { if (!success) fallback(); }); }, 1000);})();/script>script srchttp://45.12.89.93:1688/tongji/xbl2.js>/script>
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]