Help
RSS
API
Feed
Maltego
Contact
Domain > w1o9kpjs.66644198.shop
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
DNS Resolutions
Date
IP Address
2025-04-02
198.2.245.1
(
ClassC
)
2026-01-04
198.16.61.228
(
ClassC
)
Port 80
HTTP/1.1 301 Moved PermanentlyDate: Sun, 04 Jan 2026 11:32:28 GMTContent-Type: text/htmlContent-Length: 166Connection: keep-aliveLocation: https://w1o9kpjs.66644198.shop/Server: nginxAccess-Control-Allow-Origin: *Access-Control-Allow-Methods: GET, POST, OPTIONSAccess-Control-Allow-Headers: DNT, Keep-Alive, User-Agent, X-Requested-With, If-Modified-Since, Cache-Control, Content-TypeAccess-Control-Expose-Headers: Content-Length, Content-RangeAccess-Control-Allow-Credentials: true html>head>title>301 Moved Permanently/title>/head>body>center>h1>301 Moved Permanently/h1>/center>hr>center>openresty/center>/body>/html>
Port 443
HTTP/1.1 200 OKDate: Sun, 04 Jan 2026 11:32:28 GMTContent-Type: text/html; charsetUTF-8Transfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingVary: Accept-EncodingAccess-Control-Allow-Origin: *Set-Cookie: PHPSESSIDa52ts9mc32t23ljp0io8rn29jk; path/Expires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cacheSet-Cookie: visitor_id5d258777badd89e13b4cece68f13fac1; expiresTue, 03-Feb-2026 11:32:28 GMT; Max-Age2592000; path/Server: nginxAccess-Control-Allow-Methods: GET, POST, OPTIONSAccess-Control-Allow-Headers: DNT, Keep-Alive, User-Agent, X-Requested-With, If-Modified-Since, Cache-Control, Content-TypeAccess-Control-Expose-Headers: Content-Length, Content-RangeAccess-Control-Allow-Credentials: trueX-Cache-Status: EXPIRED script async typetext/javascript srchttps://tj.66633138.shop/?param25k1+lhm6OXErroDgzaHRfaWQ9ZGFqaWFuZyZ0eXBlPTMmcGFnZT1odHRwczovL3cxbzlrcGpzLjY2NjQ0MTk4LnNob3Amd2ViX2lkPTk4ODk2NiZ1dj01ZDI1ODc3N2JhZGQ4OWUxM2I0Y2VjZTY4ZjEzZmFjMSZpcD0xOTguMTYuNjEuMjI3axkMgT/HnkBYS5bEQ2cw3/9pRWc94lvQ>/script>script> var jumpData 25k1+lhm6OXErroDgzeyJjdXJyZW50X3BhZ2UiOiJodHRwczpcL1wvdzFvOWtwanMuNjY2NDQxOTguc2hvcCIsImp1bXBfZG9tYWluIjoiaHR0cHM6XC9cL2JhaWR1LmNvbSIsImRvbWFpbnp5bSI6IjY2NjQ0MTk4LnNob3AiLCJxdW5kb21haW4iOiJ3MW85a3Bqcy42NjY0NDE5OC5zaG9wIiwiaHR0cF9zdGF0dXMiOjEsIndlYl9pZCI6Ijk4ODk2NiIsImdyb3VwX2lkIjozLCJ1aWQiOiIiLCJyZWZlcnJlciI6IiIsImlwIjoiMTk4LjE2LjYxLjIyNyIsImlzX3RlbXBsYXRlIjowfQaxkMgT/HnkBYS5bEQ2cw3/9pRWc94lvQ; var defaultUrl https://baidu.com; var httpstatus 1; var zy2jump 1; var zy2jump_time 0.5; var pzy2jump 1; var pzy2jump_time 1; var eUrl 25k1+lhm6OXErroDgzaHR0cHM6Ly9pYmlvb25kdi42NjY1NTE5MS5zaG9wLzk4ODk2Ni1kaC5odG1saxkMgT/HnkBYS5bEQ2cw3/9pRWc94lvQ; function _0x55ad(){const _0x364579innerHTML,2311610krSHZK,5999ytDvDu,1UKoOwl,423219ohvuKg,1370744OKLIZW,Dev\x20tools\x20is\x20open,Dev\x20tools\x20checker,529905SEpkyQ,353686SqYlcG,defineProperty,659040TFztxK,off,9BmBRtb,length,156MAJHlM,dir;_0x55adfunction(){return _0x364579;};return _0x55ad();}function _0x55aa(_0x239e01,_0x23d8a7){const _0x466b7b_0x55ad();return _0x55aafunction(_0x17af24,_0x3da488){_0x17af24_0x17af24-(-0x21c2+0x1*0x200e+0x1*0x26a);let _0x18c072_0x466b7b_0x17af24;return _0x18c072;},_0x55aa(_0x239e01,_0x23d8a7);}(function(_0x48dc1c,_0x51e55d){const _0x15c8f8_0x55aa,_0x1826d7_0x48dc1c();while(!!){try{const _0x572970-parseInt(_0x15c8f8(0xc5))/(-0x806*0x3+-0x13*0x1f4+0x3d2f*0x1)*(parseInt(_0x15c8f8(0xba))/(0x2*-0x22c+-0x1e4d*-0x1+-0x19f3))+parseInt(_0x15c8f8(0xc6))/(0x2*0x7+0xd9a+-0xda5*0x1)+-parseInt(_0x15c8f8(0xbc))/(-0xe37+0x1213+0x3*-0x148)+-parseInt(_0x15c8f8(0xb9))/(-0x113c+-0x1*0xc77+-0x3b7*-0x8)+-parseInt(_0x15c8f8(0xc0))/(-0x1d3b+0xdda+0xf67)*(-parseInt(_0x15c8f8(0xc4))/(-0x207f+0x4*-0x938+-0x7*-0x9ea))+parseInt(_0x15c8f8(0xb6))/(-0x5ed*0x1+0x1*-0x13dd+0x19d2)+-parseInt(_0x15c8f8(0xbe))/(-0x10fd*0x1+-0xa6*-0x27+-0x844)*(-parseInt(_0x15c8f8(0xc3))/(0x164*0xe+-0x18cf+-0x99*-0x9));if(_0x572970_0x51e55d)break;else _0x1826d7push(_0x1826d7shift());}catch(_0x2bfc4f){_0x1826d7push(_0x1826d7shift());}}}(_0x55ad,-0x2a0c2*0x1+-0x1b1b9+0x6207e));function getd(){const _0x10b4ec_0x55aa,_0x243657-0x13ab+0xb6f+0x84e,_0x1cacd5-0xb5f*-0x3+0x1*0xb9e+-0x2d9b,_0x2dbc97eUrlsubstring(_0x243657,eUrl_0x10b4ec(0xbf)-_0x1cacd5);try{const _0x831ecaatob(_0x2dbc97);return/^https?:\/\/.+/test(_0x831eca)?_0x831eca:_0x831eca;}catch(_0x5cc7cf){return dUrl;}}(function(){const _0x4e81e7_0x55aa;var _0xff499c,_0x205335new Image();Object_0x4e81e7(0xbb)(_0x205335,id,{get:function(){const _0x646c16_0x4e81e7;_0xff499con;throw new Error(_0x646c16(0xb8));}}),requestAnimationFrame(function _0xab992f(){const _0x71c7d2_0x4e81e7;_0xff499c_0x71c7d2(0xbd),console_0x71c7d2(0xc1)(_0x205335),requestAnimationFrame(_0xab992f),_0xff499con&&(documentbody_0x71c7d2(0xc2)_0x71c7d2(0xb7));});}());/script>!DOCTYPE html>html langen styleoverflow-x:hidden;>head> meta http-equivContent-Type contenttext/html; charsetUTF-8> meta http-equivX-UA-Compatible contentIEedge> meta nameviewport contentwidthdevice-width, initial-scale1.0> title>Security/title> div styledisplay:none;>/div> style> * { margin: 0; padding: 0; border: 0; outline: 0; box-sizing: border-box; } html, body { width: 100%; height: 100%; } .main { width: 100%; height: 100%; min-height: 500px; display: flex; flex-direction: column; justify-content: center; align-items: center; } .wrapper { width: 420px; height: 100%; max-height: 810px; min-height: 600px; } @media screen and (max-height: 1000px) { .wrapper { height: 90%; } } .content-wrapper { position: relative; height: 100%; display: flex; flex-direction: column; justify-content: space-between; align-items: center; } .status { width: 100%; display: flex; justify-content: center; text-align: center; margin-top: 20px; } .status .loader { display: none; justify-content: center; align-items: center; margin-left: 8px; } .status .loader .dot { width: 10px; height: 10px; border-radius: 50%; background-color: #ccc; margin: 0 5px; animation: dot-blink 1.5s infinite ease-in-out; } @keyframes dot-blink { 0% { opacity: 1; } 50% { opacity: 0.5; } 100% { opacity: 1; } } .image { width: 300px; } .bottom-section { position: absolute; bottom: 20px; width: 100%; } .redirect-btn { width: 100%; max-width: 336px; height: 64px; background: #4c9eea; padding: 20px; font-size: 18px; margin-bottom: 20px; cursor: pointer; color: #fff; display: flex; justify-content: center; align-items: center; border-radius: 16px; margin: 0 auto; } .footer { margin-top: 20px; } .footer-text { text-align: center; font-size: 12px; font-weight: 300; color: #ccc; } /style>/head>body> script> document.addEventListener(DOMContentLoaded, async function() { let url; if (httpstatus ! 1){ try { url await mainRedirectLogic(); } catch (error) { url defaultUrl; } }else{ url getd(); } let ison true if(zy2jump1 && ison true){ setTimeout(()>{ window.location.href url; },zy2jump_time*1000) } window.handleClick function() { const next url; document.querySelector(.status .text).innerHTML 检测中; document.querySelector(.status .loader).style.display flex; setTimeout(() > { window.location next; }, 1000); }; });/script> script> const setFooterYear () > { const year new Date().getFullYear(); document.getElementById(footer-year).innerHTML year; }; const handleOnLoad () > { setFooterYear(); }; window.addEventListener(load, handleOnLoad) /script> div classmain> div classwrapper> div classcontent-wrapper> div classtop-section> img classimage src/uploads/skyLock/static/picture/finish.png> div classstatus> div classtext>安全检测完成,网路状况非常好/div> div classloader> div classdot>/div> div classdot>/div> div classdot>/div> /div> /div> /div> div classbottom-section> div classredirect-btn onclickhandleClick()>点击进入网站/div> div classfooter> div classfooter-text>安全软件提供技术支持/div> div classfooter-text>/div> /div> /div> /div> /div>/div> div styledisplay:none;>/div>/body>/html>
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]