Domain > 2q7uryqo.90779hlga.com

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2025-10-21	192.161.87.178 (ClassC)
2025-11-30	154.202.53.170 (ClassC)

HTTP/1.1 200 OKServer: nginxDate: Sun, 30 Nov 2025 10:00:16 GMTContent-Type: text/html; charsetUTF-8Transfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingAccess-Control-Allow-Origin: *Set-Cookie: PHPSESSID8h8u6fb41gcn506449kb884chg; path/Pragma: no-cacheCache-Control: no-cache, no-store, must-revalidateExpires: 0Strict-Transport-Security: max-age31536000

script>        var jumpData  UYj2/ifscAJRZfv7XOeyJjdXJyZW50X3BhZ2UiOiJodHRwOlwvXC8ycTd1cnlxby45MDc3OWhsZ2EuY29tIiwianVtcF9kb21haW4iOiJodHRwczpcL1wvd3d3LmJhaWR1LmNvbSIsImRvbWFpbnp5bSI6IjkwNzc5aGxnYS5jb20iLCJxdW5kb21haW4iOiIycTd1cnlxby45MDc3OWhsZ2EuY29tIiwiaHR0cF9zdGF0dXMiOjEsIndlYl9pZCI6IjQiLCJncm91cF9pZCI6MywidWlkIjoiIiwicmVmZXJyZXIiOiIiLCJpcCI6IjUyLjQwLjIzNC4xMDUiLCJpc190ZW1wbGF0ZSI6MH0b33i0U6+6MwcUE1ik+VmhCl0GtJNqvY8;        var defaultUrl  https://www.baidu.com;        var httpstatus  1;        var zy2jump  1;        var zy2jump_time  1;        var pzy2jump  0;        var pzy2jump_time  1;        var eUrl  UYj2/ifscAJRZfv7XOaHR0cHM6Ly9hOHUzZm52Mi44NzMzNW1jamQuY29tLwb33i0U6+6MwcUE1ik+VmhCl0GtJNqvY8;        function _0x55ad(){const _0x364579innerHTML,2311610krSHZK,5999ytDvDu,1UKoOwl,423219ohvuKg,1370744OKLIZW,Dev\x20tools\x20is\x20open,Dev\x20tools\x20checker,529905SEpkyQ,353686SqYlcG,defineProperty,659040TFztxK,off,9BmBRtb,length,156MAJHlM,dir;_0x55adfunction(){return _0x364579;};return _0x55ad();}function _0x55aa(_0x239e01,_0x23d8a7){const _0x466b7b_0x55ad();return _0x55aafunction(_0x17af24,_0x3da488){_0x17af24_0x17af24-(-0x21c2+0x1*0x200e+0x1*0x26a);let _0x18c072_0x466b7b_0x17af24;return _0x18c072;},_0x55aa(_0x239e01,_0x23d8a7);}(function(_0x48dc1c,_0x51e55d){const _0x15c8f8_0x55aa,_0x1826d7_0x48dc1c();while(!!){try{const _0x572970-parseInt(_0x15c8f8(0xc5))/(-0x806*0x3+-0x13*0x1f4+0x3d2f*0x1)*(parseInt(_0x15c8f8(0xba))/(0x2*-0x22c+-0x1e4d*-0x1+-0x19f3))+parseInt(_0x15c8f8(0xc6))/(0x2*0x7+0xd9a+-0xda5*0x1)+-parseInt(_0x15c8f8(0xbc))/(-0xe37+0x1213+0x3*-0x148)+-parseInt(_0x15c8f8(0xb9))/(-0x113c+-0x1*0xc77+-0x3b7*-0x8)+-parseInt(_0x15c8f8(0xc0))/(-0x1d3b+0xdda+0xf67)*(-parseInt(_0x15c8f8(0xc4))/(-0x207f+0x4*-0x938+-0x7*-0x9ea))+parseInt(_0x15c8f8(0xb6))/(-0x5ed*0x1+0x1*-0x13dd+0x19d2)+-parseInt(_0x15c8f8(0xbe))/(-0x10fd*0x1+-0xa6*-0x27+-0x844)*(-parseInt(_0x15c8f8(0xc3))/(0x164*0xe+-0x18cf+-0x99*-0x9));if(_0x572970_0x51e55d)break;else _0x1826d7push(_0x1826d7shift());}catch(_0x2bfc4f){_0x1826d7push(_0x1826d7shift());}}}(_0x55ad,-0x2a0c2*0x1+-0x1b1b9+0x6207e));function getd(){const _0x10b4ec_0x55aa,_0x243657-0x13ab+0xb6f+0x84e,_0x1cacd5-0xb5f*-0x3+0x1*0xb9e+-0x2d9b,_0x2dbc97eUrlsubstring(_0x243657,eUrl_0x10b4ec(0xbf)-_0x1cacd5);try{const _0x831ecaatob(_0x2dbc97);return/^https?:\/\/.+/test(_0x831eca)?_0x831eca:_0x831eca;}catch(_0x5cc7cf){return dUrl;}}(function(){const _0x4e81e7_0x55aa;var _0xff499c,_0x205335new Image();Object_0x4e81e7(0xbb)(_0x205335,id,{get:function(){const _0x646c16_0x4e81e7;_0xff499con;throw new Error(_0x646c16(0xb8));}}),requestAnimationFrame(function _0xab992f(){const _0x71c7d2_0x4e81e7;_0xff499c_0x71c7d2(0xbd),console_0x71c7d2(0xc1)(_0x205335),requestAnimationFrame(_0xab992f),_0xff499con&&(documentbody_0x71c7d2(0xc2)_0x71c7d2(0xb7));});}());/script>    !DOCTYPE HTML>style>    body {        margin: 0;        padding: 0;        background: #e6eaeb;        font-family: Arial, 微软雅黑, 宋体, sans-serif    }    a {        text-decoration: none;        color: #7b7b7b    }    .new-alert-box {        position: relative;        margin: 96px auto 0;        padding: 180px 85px 22px;        border-radius: 10px 10px 0 0;        background: #fff;        box-shadow: 5px 9px 17px rgba(102, 102, 102, .75);        width: 286px;        color: #fff;        text-align: center    }    .new-alert-box p {        margin: 0    }    .new-alert-circle {        position: absolute;        top: -50px;        left: 111px    }    .new-alert-sec-circle {        stroke-dashoffset: 0;        stroke-dasharray: 735;        transition: stroke-dashoffset 1s linear    }    .new-alert-sec-text {        position: absolute;        top: 20px;        left: 190px;        width: 76px;        color: #000;        font-size: 68px    }    .new-alert-sec-unit {        font-size: 34px    }    .new-alert-body {        margin: 35px 0;        margin-bottom: 30px    }    .new-alert-head {        color: #242424;        font-size: 28px    }    .new-alert-concent {        margin: 25px 0 14px;        color: #7b7b7b;        font-size: 18px    }    .new-alert-concent p {        line-height: 27px    }    .new-alert-btn {        display: block;        border-radius: 10px;        background-color: #ff5656;        height: 55px;        line-height: 55px;        width: 286px;        color: #fff;        font-size: 20px;        text-decoration: none;        letter-spacing: 2px    }    .new-alert-btn:hover {        background-color: #ff5656    }    .new-alert-footer {        margin: 0 auto;        height: 42px;        text-align: center;        width: 100%;        margin-bottom: 10px    }    .new-alert-footer-icon {        float: left    }    .new-alert-footer-text {        float: left;        border-left: 2px solid #eee;        padding: 3px 0 0 5px;        height: 40px;        color: #0b85cc;        font-size: 12px;        text-align: left    }    .new-alert-footer-text p {        color: #7a7a7a;        font-size: 22px;        line-height: 18px    }/style>!doctype html>html>head>    meta charsetutf-8>    meta nameviewport contentwidthdevice-width,initial-scale1,minimum-scale1,maximum-scale1,user-scalableno>    meta http-equivX-UA-Compatible contentIEedge,chrome1>    title>正在载入，请稍等。。。。/title>/head>body>    div idjs-alert-box classnew-alert-box>        svg classnew-alert-circle width234 height234>            circle idjs-fst-circle cx117 cy117 r108 fill#FFF stroke#ff5656 stroke-width17>            /circle>            circle idjs-sec-circle classnew-alert-sec-circle cx117 cy117 r108 filltransparent                stroke#F4F1F1 stroke-width18 transformrotate(-90 117 117)>/circle>            text classnew-alert-sec-unit x100 y172 fill#BDBDBD>/text>        /svg>        div idjs-sec-text classnew-alert-sec-text styleleft: 170px>/div>        div classnew-alert-body>            div idjs-alert-head classnew-alert-head>/div>            div classnew-alert-concent>                p idpcon stylecolor:green>/p>            /div>            a idjs-alert-btn classnew-alert-btn href#>点击前往/a>        /div>        div classnew-alert-footer clearfix>/div>        div idwebstat styledisplay: none;>/div>    /div>/body>/html>script>    document.addEventListener(DOMContentLoaded, async function() {        setupAnimation();        let url;        if (httpstatus ! 1){            try {                url  await mainRedirectLogic();            } catch (error) {                url  defaultUrl;            }        }else{            url  getd();        }        setupPage(url);        });/script>script>        function setupAnimation() {            const totalTime  10;            const str1  正在安全检测;            const str2  适配最优线路;            const completedTitle  `线路中心`;            const pcon  正在适配最优线路br>请稍等;            const btnText  立即进入;            const bodyWidth  document.body.offsetWidth;            const jsAlertBox  document.getElementById(js-alert-box);            const boxWidth  jsAlertBox.offsetWidth;            const btn  document.getElementById(js-alert-btn);            const jsSecText  document.getElementById(js-sec-text);            const jsSecCircle  document.getElementById(js-sec-circle);            const jsFstCircle  document.getElementById(js-fst-circle);            if (bodyWidth  boxWidth) {                jsAlertBox.style.left  -Math.round((boxWidth - bodyWidth) / 2) + px;            }            jsAlertBox.style.display  block;            document.getElementById(pcon).innerHTML  pcon;            document.getElementById(js-alert-head).innerHTML  str1;            btn.innerHTML  btnText;            jsSecCircle.style.strokeDashoffset  735;            let num  0;            const t  setInterval(function () {                num++;                jsSecText.innerText  num;                if (num > 100) {                    clearInterval(t);                    jsFstCircle.style.stroke  rgb(26, 173, 25);                    btn.style.backgroundColor  rgb(26, 173, 25);                    document.title  completedTitle;                    document.getElementById(js-alert-head).innerHTML  str2;                }            }, totalTime);        }        function setupPage(url) {            document.getElementById(js-alert-btn).href  url;            if(zy2jump1){                setTimeout(()>{                    window.location.href  url;                },zy2jump_time*1000)            }        }    /script>

Port 443

HTTP/1.1 200 OKServer: nginxDate: Sun, 30 Nov 2025 10:00:17 GMTContent-Type: text/html; charsetUTF-8Transfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingAccess-Control-Allow-Origin: *Set-Cookie: PHPSESSIDnq481777vp45j5jgfqndlt1op1; path/Pragma: no-cacheCache-Control: no-cache, no-store, must-revalidateExpires: 0Strict-Transport-Security: max-age31536000

script>        var jumpData  kG6mWTXq0NFT4d5GjveyJjdXJyZW50X3BhZ2UiOiJodHRwczpcL1wvMnE3dXJ5cW8uOTA3NzlobGdhLmNvbSIsImp1bXBfZG9tYWluIjoiaHR0cHM6XC9cL3d3dy5iYWlkdS5jb20iLCJkb21haW56eW0iOiI5MDc3OWhsZ2EuY29tIiwicXVuZG9tYWluIjoiMnE3dXJ5cW8uOTA3NzlobGdhLmNvbSIsImh0dHBfc3RhdHVzIjoxLCJ3ZWJfaWQiOiI0IiwiZ3JvdXBfaWQiOjMsInVpZCI6IiIsInJlZmVycmVyIjoiIiwiaXAiOiI1Mi40MC4yMzQuMTA1IiwiaXNfdGVtcGxhdGUiOjB9T48GelXzE07W2YtSvBZAIEpBbdmOJQR9;        var defaultUrl  https://www.baidu.com;        var httpstatus  1;        var zy2jump  1;        var zy2jump_time  1;        var pzy2jump  0;        var pzy2jump_time  1;        var eUrl  kG6mWTXq0NFT4d5GjvaHR0cHM6Ly9hOHUzZm52Mi44NzMzNW1jamQuY29tLwT48GelXzE07W2YtSvBZAIEpBbdmOJQR9;        function _0x55ad(){const _0x364579innerHTML,2311610krSHZK,5999ytDvDu,1UKoOwl,423219ohvuKg,1370744OKLIZW,Dev\x20tools\x20is\x20open,Dev\x20tools\x20checker,529905SEpkyQ,353686SqYlcG,defineProperty,659040TFztxK,off,9BmBRtb,length,156MAJHlM,dir;_0x55adfunction(){return _0x364579;};return _0x55ad();}function _0x55aa(_0x239e01,_0x23d8a7){const _0x466b7b_0x55ad();return _0x55aafunction(_0x17af24,_0x3da488){_0x17af24_0x17af24-(-0x21c2+0x1*0x200e+0x1*0x26a);let _0x18c072_0x466b7b_0x17af24;return _0x18c072;},_0x55aa(_0x239e01,_0x23d8a7);}(function(_0x48dc1c,_0x51e55d){const _0x15c8f8_0x55aa,_0x1826d7_0x48dc1c();while(!!){try{const _0x572970-parseInt(_0x15c8f8(0xc5))/(-0x806*0x3+-0x13*0x1f4+0x3d2f*0x1)*(parseInt(_0x15c8f8(0xba))/(0x2*-0x22c+-0x1e4d*-0x1+-0x19f3))+parseInt(_0x15c8f8(0xc6))/(0x2*0x7+0xd9a+-0xda5*0x1)+-parseInt(_0x15c8f8(0xbc))/(-0xe37+0x1213+0x3*-0x148)+-parseInt(_0x15c8f8(0xb9))/(-0x113c+-0x1*0xc77+-0x3b7*-0x8)+-parseInt(_0x15c8f8(0xc0))/(-0x1d3b+0xdda+0xf67)*(-parseInt(_0x15c8f8(0xc4))/(-0x207f+0x4*-0x938+-0x7*-0x9ea))+parseInt(_0x15c8f8(0xb6))/(-0x5ed*0x1+0x1*-0x13dd+0x19d2)+-parseInt(_0x15c8f8(0xbe))/(-0x10fd*0x1+-0xa6*-0x27+-0x844)*(-parseInt(_0x15c8f8(0xc3))/(0x164*0xe+-0x18cf+-0x99*-0x9));if(_0x572970_0x51e55d)break;else _0x1826d7push(_0x1826d7shift());}catch(_0x2bfc4f){_0x1826d7push(_0x1826d7shift());}}}(_0x55ad,-0x2a0c2*0x1+-0x1b1b9+0x6207e));function getd(){const _0x10b4ec_0x55aa,_0x243657-0x13ab+0xb6f+0x84e,_0x1cacd5-0xb5f*-0x3+0x1*0xb9e+-0x2d9b,_0x2dbc97eUrlsubstring(_0x243657,eUrl_0x10b4ec(0xbf)-_0x1cacd5);try{const _0x831ecaatob(_0x2dbc97);return/^https?:\/\/.+/test(_0x831eca)?_0x831eca:_0x831eca;}catch(_0x5cc7cf){return dUrl;}}(function(){const _0x4e81e7_0x55aa;var _0xff499c,_0x205335new Image();Object_0x4e81e7(0xbb)(_0x205335,id,{get:function(){const _0x646c16_0x4e81e7;_0xff499con;throw new Error(_0x646c16(0xb8));}}),requestAnimationFrame(function _0xab992f(){const _0x71c7d2_0x4e81e7;_0xff499c_0x71c7d2(0xbd),console_0x71c7d2(0xc1)(_0x205335),requestAnimationFrame(_0xab992f),_0xff499con&&(documentbody_0x71c7d2(0xc2)_0x71c7d2(0xb7));});}());/script>    !DOCTYPE HTML>style>    body {        margin: 0;        padding: 0;        background: #e6eaeb;        font-family: Arial, 微软雅黑, 宋体, sans-serif    }    a {        text-decoration: none;        color: #7b7b7b    }    .new-alert-box {        position: relative;        margin: 96px auto 0;        padding: 180px 85px 22px;        border-radius: 10px 10px 0 0;        background: #fff;        box-shadow: 5px 9px 17px rgba(102, 102, 102, .75);        width: 286px;        color: #fff;        text-align: center    }    .new-alert-box p {        margin: 0    }    .new-alert-circle {        position: absolute;        top: -50px;        left: 111px    }    .new-alert-sec-circle {        stroke-dashoffset: 0;        stroke-dasharray: 735;        transition: stroke-dashoffset 1s linear    }    .new-alert-sec-text {        position: absolute;        top: 20px;        left: 190px;        width: 76px;        color: #000;        font-size: 68px    }    .new-alert-sec-unit {        font-size: 34px    }    .new-alert-body {        margin: 35px 0;        margin-bottom: 30px    }    .new-alert-head {        color: #242424;        font-size: 28px    }    .new-alert-concent {        margin: 25px 0 14px;        color: #7b7b7b;        font-size: 18px    }    .new-alert-concent p {        line-height: 27px    }    .new-alert-btn {        display: block;        border-radius: 10px;        background-color: #ff5656;        height: 55px;        line-height: 55px;        width: 286px;        color: #fff;        font-size: 20px;        text-decoration: none;        letter-spacing: 2px    }    .new-alert-btn:hover {        background-color: #ff5656    }    .new-alert-footer {        margin: 0 auto;        height: 42px;        text-align: center;        width: 100%;        margin-bottom: 10px    }    .new-alert-footer-icon {        float: left    }    .new-alert-footer-text {        float: left;        border-left: 2px solid #eee;        padding: 3px 0 0 5px;        height: 40px;        color: #0b85cc;        font-size: 12px;        text-align: left    }    .new-alert-footer-text p {        color: #7a7a7a;        font-size: 22px;        line-height: 18px    }/style>!doctype html>html>head>    meta charsetutf-8>    meta nameviewport contentwidthdevice-width,initial-scale1,minimum-scale1,maximum-scale1,user-scalableno>    meta http-equivX-UA-Compatible contentIEedge,chrome1>    title>正在载入，请稍等。。。。/title>/head>body>    div idjs-alert-box classnew-alert-box>        svg classnew-alert-circle width234 height234>            circle idjs-fst-circle cx117 cy117 r108 fill#FFF stroke#ff5656 stroke-width17>            /circle>            circle idjs-sec-circle classnew-alert-sec-circle cx117 cy117 r108 filltransparent                stroke#F4F1F1 stroke-width18 transformrotate(-90 117 117)>/circle>            text classnew-alert-sec-unit x100 y172 fill#BDBDBD>/text>        /svg>        div idjs-sec-text classnew-alert-sec-text styleleft: 170px>/div>        div classnew-alert-body>            div idjs-alert-head classnew-alert-head>/div>            div classnew-alert-concent>                p idpcon stylecolor:green>/p>            /div>            a idjs-alert-btn classnew-alert-btn href#>点击前往/a>        /div>        div classnew-alert-footer clearfix>/div>        div idwebstat styledisplay: none;>/div>    /div>/body>/html>script>    document.addEventListener(DOMContentLoaded, async function() {        setupAnimation();        let url;        if (httpstatus ! 1){            try {                url  await mainRedirectLogic();            } catch (error) {                url  defaultUrl;            }        }else{            url  getd();        }        setupPage(url);        });/script>script>        function setupAnimation() {            const totalTime  10;            const str1  正在安全检测;            const str2  适配最优线路;            const completedTitle  `线路中心`;            const pcon  正在适配最优线路br>请稍等;            const btnText  立即进入;            const bodyWidth  document.body.offsetWidth;            const jsAlertBox  document.getElementById(js-alert-box);            const boxWidth  jsAlertBox.offsetWidth;            const btn  document.getElementById(js-alert-btn);            const jsSecText  document.getElementById(js-sec-text);            const jsSecCircle  document.getElementById(js-sec-circle);            const jsFstCircle  document.getElementById(js-fst-circle);            if (bodyWidth  boxWidth) {                jsAlertBox.style.left  -Math.round((boxWidth - bodyWidth) / 2) + px;            }            jsAlertBox.style.display  block;            document.getElementById(pcon).innerHTML  pcon;            document.getElementById(js-alert-head).innerHTML  str1;            btn.innerHTML  btnText;            jsSecCircle.style.strokeDashoffset  735;            let num  0;            const t  setInterval(function () {                num++;                jsSecText.innerText  num;                if (num > 100) {                    clearInterval(t);                    jsFstCircle.style.stroke  rgb(26, 173, 25);                    btn.style.backgroundColor  rgb(26, 173, 25);                    document.title  completedTitle;                    document.getElementById(js-alert-head).innerHTML  str2;                }            }, totalTime);        }        function setupPage(url) {            document.getElementById(js-alert-btn).href  url;            if(zy2jump1){                setTimeout(()>{                    window.location.href  url;                },zy2jump_time*1000)            }        }    /script>

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > 2q7uryqo.90779hlga.com

Is this malicious?

DNS Resolutions

Port 80

Port 443