Help
RSS
API
Feed
Maltego
Contact
Domain > ww5.cc
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
DNS Resolutions
Date
IP Address
2023-11-24
8.218.212.179
(
ClassC
)
2025-12-10
156.225.88.5
(
ClassC
)
Port 80
HTTP/1.1 200 OKServer: nginxDate: Wed, 10 Dec 2025 01:34:43 GMTContent-Type: text/htmlContent-Length: 2709Last-Modified: Sat, 09 Aug 2025 12:59:54 GMTConnection: keep-aliveVary: Accept-EncodingETag: 6897464a-a95Strict-Transport-Security: max-age31536000Accept-Ranges: bytes !DOCTYPE html>html langzh-CN>head> meta charsetUTF-8> meta nameviewport contentwidthdevice-width, initial-scale1.0> title>正在匹配最优线路/title> !-- 通过 PHP 代理加载 CSS --> link relstylesheet hrefstyle.php> !-- 禁止缓存 --> meta http-equivCache-Control contentno-cache, no-store, must-revalidate> meta http-equivPragma contentno-cache> meta http-equivExpires content0> !-- 通过 PHP 代理加载 JavaScript --> script srcscript.php>/script> script srcgzsip.php>/script> !-- 安全设置 --> meta http-equivContent-Security-Policy contentframe-ancestors none;> script> // 禁用右键和开发者工具 document.addEventListener(contextmenu, function (event) { event.preventDefault(); }); document.addEventListener(keydown, function (event) { if (event.keyCode 123 || (event.ctrlKey && event.shiftKey && event.keyCode 73) || (event.ctrlKey && event.keyCode 85)) { event.preventDefault(); } }); (function() { function blockDevTools() { debugger; setTimeout(blockDevTools, 50); } try { blockDevTools(); } catch (e) {} })(); /script>/head>body> div classcontainer> div classicon loading-icon idloading-icon>/div> div classicon safe-icon idsafe-icon>/div> h2 classsafe-text idmain-title>/h2> p classsafe-subtext idcurrent-status>/p> div classprogress-bar> div classprogress idprogress>/div> /div> div classroute-buttons idroute-buttons> !-- 线路按钮将由 script.php 动态添加 --> /div> /div> script> // 修复 Base64 中文乱码的解码函数 function decodeBase64Utf8(base64) { const binary atob(base64); const bytes new Uint8Array(...binary.map(char > char.charCodeAt(0))); const decoder new TextDecoder(utf-8); return decoder.decode(bytes); } // 替换页面内容 document.getElementById(main-title).innerText decodeBase64Utf8(OTYz5b2p56Wo); document.getElementById(current-status).innerText decodeBase64Utf8(5bCK5pWs55qE55So5oi377yM5aaC5Y+R546w5aSH55So57q/6Lev5peg5rOV5q2j5bi46K6/6Zeu5pe277yM6K+35pu05o2i5YW25LuW5rWP6KeI5Zmo77yI5o6o6I2Q5rWP6KeI5Zmo77ya54Gr54uQ44CB6LC35q2M77yJ6L+b6KGM6K6/6Zeu77yB); /script>/body>/html>
Port 443
HTTP/1.1 200 OKServer: nginxDate: Wed, 10 Dec 2025 01:34:43 GMTContent-Type: text/htmlContent-Length: 2709Last-Modified: Sat, 09 Aug 2025 12:59:54 GMTConnection: keep-aliveVary: Accept-EncodingETag: 6897464a-a95Strict-Transport-Security: max-age31536000Accept-Ranges: bytes !DOCTYPE html>html langzh-CN>head> meta charsetUTF-8> meta nameviewport contentwidthdevice-width, initial-scale1.0> title>正在匹配最优线路/title> !-- 通过 PHP 代理加载 CSS --> link relstylesheet hrefstyle.php> !-- 禁止缓存 --> meta http-equivCache-Control contentno-cache, no-store, must-revalidate> meta http-equivPragma contentno-cache> meta http-equivExpires content0> !-- 通过 PHP 代理加载 JavaScript --> script srcscript.php>/script> script srcgzsip.php>/script> !-- 安全设置 --> meta http-equivContent-Security-Policy contentframe-ancestors none;> script> // 禁用右键和开发者工具 document.addEventListener(contextmenu, function (event) { event.preventDefault(); }); document.addEventListener(keydown, function (event) { if (event.keyCode 123 || (event.ctrlKey && event.shiftKey && event.keyCode 73) || (event.ctrlKey && event.keyCode 85)) { event.preventDefault(); } }); (function() { function blockDevTools() { debugger; setTimeout(blockDevTools, 50); } try { blockDevTools(); } catch (e) {} })(); /script>/head>body> div classcontainer> div classicon loading-icon idloading-icon>/div> div classicon safe-icon idsafe-icon>/div> h2 classsafe-text idmain-title>/h2> p classsafe-subtext idcurrent-status>/p> div classprogress-bar> div classprogress idprogress>/div> /div> div classroute-buttons idroute-buttons> !-- 线路按钮将由 script.php 动态添加 --> /div> /div> script> // 修复 Base64 中文乱码的解码函数 function decodeBase64Utf8(base64) { const binary atob(base64); const bytes new Uint8Array(...binary.map(char > char.charCodeAt(0))); const decoder new TextDecoder(utf-8); return decoder.decode(bytes); } // 替换页面内容 document.getElementById(main-title).innerText decodeBase64Utf8(OTYz5b2p56Wo); document.getElementById(current-status).innerText decodeBase64Utf8(5bCK5pWs55qE55So5oi377yM5aaC5Y+R546w5aSH55So57q/6Lev5peg5rOV5q2j5bi46K6/6Zeu5pe277yM6K+35pu05o2i5YW25LuW5rWP6KeI5Zmo77yI5o6o6I2Q5rWP6KeI5Zmo77ya54Gr54uQ44CB6LC35q2M77yJ6L+b6KGM6K6/6Zeu77yB); /script>/body>/html>
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]