Check server response of
Server response
NS records
Whois domain
301 Moved Permanently - 59f.com
HTTP Status: 301
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; [email protected])
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: PUT, GET, POST, DELETE, HEAD, OPTIONS, PATCH
Content-Length: 178
Content-Type: text/html
Date: Sat, 10 May 2025 18:39:46 GMT
Location: https://tyktruzci9e7jhacsv2apblgx.crb882.com:8888?uid=rxd7o60siuye&tid=f1425b7931bb76f9cd874769d3af7ea6
Server: nginx/1.18.0 (Ubuntu)
X-Cache: BYPASS
HTTP Code 301 Moved Permanently
301 Moved Permanently means that the requested resource has been permanently moved to a new URL. All future requests should use the new address.
When is Code 301 used?
- When changing a website domain
- When modifying URL structures
- When setting up redirects for SEO
What does Code 301 mean for the user?
The browser will automatically redirect the user to the new address, and search engines will update their indexes.
200 OK - https://59f.com/
HTTP Status: 200
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; [email protected])
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,x-spinach-agent,x-spinach-ver,x-spinach-decode-mode,X-Version
Access-Control-Allow-Methods: PUT, GET, POST, DELETE, HEAD, OPTIONS, PATCH
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: *
Access-Control-Max-Age: 86400
Apisix-Cache-Status: MISS
Content-Length: 13145
Content-Type: text/html; charset=utf-8
Server: APISIX/3.10.0
Set-Cookie: device_id=c82965f4ce8c2b9795061cd5f5d9cca1; SameSite=None; Secure
X-Cache: BYPASS
X-Spinach-Elapsed: 24 ms
Date: Sat, 10 May 2025 18:39:48 GMT
HTTP Code 200 OK
200 OK is a standard successful HTTP server response. It means that the client’s request (e.g., from a browser) was successfully processed, and the server is delivering the requested data.
When is Code 200 used?
- When loading a web page
- When successfully receiving an API response
- When processing a form or another HTTP request
What does Code 200 mean for the user?
The user receives content without errors, and the page or application functions properly. If Code 200 is accompanied by data, the browser or program processes and displays it to the user.
GET / HTTP/1.1 Host: 59f.com Accept: */* User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; [email protected])
<!DOCTYPE html>
<html lang="cn">
<head>
<meta charset="UTF-8">
<title>点击继续下一步</title>
<meta name="viewport"
content="width=device-width,initial-scale=1,minimum-scale=1,maximum-scale=1,user-scalable=no"/>
<style>
#page_one {
width: 100vw;
height: 100vh;
background: #fff;
overflow: hidden;
}
#page_one>div {
text-align: center;
margin-top: 220px;
}
#page_one>div>a {
background: #077727;
padding: 10px 40px;
margin: 15px;
color: #fff;
border-radius: 8px;
cursor: pointer;
text-decoration: none;
}
#page_two {
width: 100vw;
height: 100vh;
background: #fff;
overflow: hidden;
background: url("/static/hj/img/tom_blog/img/home_bg.342b00e4.jpg?1745824420");
background-attachment: fixed;
}
</style>
<style type="text/css">
/* 方法一、确定你的页面上所有正常样式都不是以 下划线 _ 开头的则可以这样处理 */
div[id^="_"] {
display: none !important;
}
/* 方法二、原理同样,稍微安全点的写法,我们隐藏掉他的两个iframe就好,他的 id 容易区分 */
iframe[id^="head__"] {
display: none !important;
}
iframe[id^="utp__"] {
display: none !important;
}
/* 方法三、也是用到 CSS 的正则选择器,我们直接屏蔽掉和 UC 相关的所有框架 */
iframe[src*="ucweb.com"] {
display: none !important;
}
/* 以上三种方法任选其一即可,但最终效果还是有些细微不同的,根据你网站的实际效果来选择吧,二三两种方法会有些UC残余垃圾代码会留在页面上,只是不明显,第一种就是容易误杀 */
</style>
<style type="text/css">
.wxtip {
background: rgba(0, 0, 0, 0.5);
text-align: center;
position: fixed;
left: 0;
top: 0;
width: 100%;
height: 100%;
z-index: 998;
display: none;
}
.wxtip-txt {
margin-top: 107px;
color: #fff;
font-size: 16px;
line-height: 1.5;
}
@font-face {
font-weight: normal;
font-style: normal;
font-family: "weui";
src: url("/static/hj/img/tom_blog/add.ttf?1745824420") format('truetype');
}
[class^="weui-icon-"],
[class*=" weui-icon-"] {
display: inline-block;
vertical-align: middle;
font: normal normal normal 14px/1 "weui";
font-size: inherit;
text-rendering: auto;
-webkit-font-smoothing: antialiased;
&:before {
display: inline-block;
margin-left: .2em;
margin-right: .2em;
}
}
.weui-icon-waiting:before {
content: "\EA09";
}
.weui-icon-success:before {
content: "\EA04"
}
.weui-btn_primary {
background-color: #1AAD19;
}
.weui-btn {
position: relative;
display: block;
margin-left: auto;
margin-right: auto;
padding-left: 14px;
padding-right: 14px;
box-sizing: border-box;
font-size: 18px;
font-weight: bold;
text-align: center;
text-decoration: none;
color: #FFFFFF;
line-height: 2.55555556;
border-radius: 5px;
-webkit-tap-highlight-color: rgba(0, 0, 0, 0);
overflow: hidden;
margin-bottom: 10px;
white-space: nowrap;
}
.weui-btn_default {
color: #000000;
background-color: #F8F8F8;
}
.weui-icon-waiting {
color: #10AEFF;
}
.weui-icon-success {
color: #1AAD19;
}
.icon {
font-size: 93px;
margin: 20px auto;
}
.actions {
padding: 0 30px;
}
.footer {
position: absolute;
bottom: 0;
width: 100%;
text-align: center;
color: #999;
font-size: 12px;
}
* {
margin: 0;
padding: 0;
}
img {
max-width: 100%;
height: auto;
}
</style>
<style>
.overlay {
position: fixed;
top: 0;
left: 0;
width: 100%;
height: 100%;
background-color: rgba(0, 0, 0, 0.2);
z-index: 999;
}
.overlay .modal {
position: absolute;
bottom: 0;
left: 50%;
transform: translateX(-50%);
}
.overlay .modal img {
max-width: 90vw;
max-height: 90vh;
}
.overlay .modal .close-btn {
position: absolute;
width: 26px;
height: auto;
right: 25px;
top: 25px;
cursor: pointer;
}
</style>
<!--
會員行為統計:
https://cf.iyes.dev/pages/viewpage.action?pageId=56427654
- 各跳轉動作url都加上 d_uuid
- 各操作統計url 加上 d_uuid=&status=
- 註冊完成 統計url 加上 d_uuid=&status= &u_plat=&user_id=
- d_uuid: 前端自創 & 儲存至 cookie
- status:
0001 成功進入挾持頁
0002 挾持頁註冊後跳轉至平台
0003 挾持頁無註冊後跳轉至平台
0004 挾持頁點擊客服
0005 挾持頁下載APP
0006 成功進入空白頁並跳轉至平台
0007 成功進入註冊頁 || 推廣頁
0008 註冊頁註冊後跳轉至平台
0009 註冊頁無註冊後跳轉至平台
0010 註冊頁點擊客服
0011 註冊頁下載APP
0012 成功由其他頁面跳轉至平台
0013 跳轉後於平台註冊
0014 跳轉後於平台充值
0015 跳轉後於平台遊戲
0016 成功進入易記域名
0017 成功進入下載APP
0018 下載APP頁面點擊下載
-->
<script
type="text/javascript"
src="/static/hj/js/js.cookie.js?1745824420"
></script>
<script type="text/javascript" src="/static/hj/js/uuid.js?1745824420"></script>
<script src="/static/hj/js/jquery-1.7.2.min.js?1745824420"></script>
<script src="https://cdn.jsdelivr.net/gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js"></script>
<script>
function uuidHandle() {
var d_uuid = Cookies.get('d_uuid')
if (!d_uuid) {
d_uuid = createdUUID()
Cookies.set('d_uuid', d_uuid)
}
return d_uuid
}
function uuidQueryStr(pre = '&') {
return pre + 'd_uuid=' + uuidHandle()
}
function urlAddUuidQueryStr(redirectUrl = '') {
var pre = '&'
if (redirectUrl.indexOf('?') < 0) {
pre = '?'
}
return redirectUrl + uuidQueryStr(pre)
}
function userTrackStatistics({
status = '',
user_id = '',
u_plat = '',
} = {}) {
return
console.log('userTrackStatistics status: ', status)
function queryStrHandle(params = {}) {
var str = ''
for (var kk in params) {
if (str !== '') {
str += '&'
}
str += kk + '=' + params[kk]
}
return str
}
var domain = 'https://ana.lingpaoxinxi.com/p/?'
var queryStr = queryStrHandle({
status: status,
user_id: user_id,
u_plat: u_plat,
d_uuid: uuidHandle(),
})
$.ajax({
url: domain + queryStr,
type: 'get',
})
}
</script>
</head>
<body>
<div id="page_one">
<div>
<a href="javascript:;" class="page_one_btn">浏览器安全检查通过,请点击进入</a>
</div>
</div>
<div id="page_two" style="display: none;">
<div style="height: 208px;display: flex;justify-content: center;align-items: center;flex-direction: column;">
<i class="weui-icon-waiting icon" id="icon"></i>
<p style="font-size:20px;color:#555;" id="iconText">已通过安全检测</p>
<p style="font-size:12px;color:#999;" id="subText"></p>
</div>
<div class="actions" id="goHome">
<a href="https://5sus0gx87rnhxjohkwbmyttfr.vxr882.com:8888?uid=q3wi2nqdfawj&tid=e5fcc4430f3d44b12fd9c2ef55eb709b" class="weui-btn weui-btn_primary" id="openSchemeLink">①线路→点击前往</a>
</div>
<div class="footer">
<p>提供安全技术支持</p>
<p>Copyright © 1998 -
<script>
document.write(new Date().getFullYear())
</script>2023. All Rights Reserved.
</p>
<br>
</div>
<div id="jcdiv" style="position: absolute;bottom: 0;left: 0;width: 0;height: 0;overflow: hidden;"></div>
</div>
<div class="overlay" id="overlay" style="display: none;">
<div class="modal">
<img src="/static/hj/img/tom_blog/img/bookmark.png?1745824420" alt="Description">
<img src="/static/hj/img/tom_blog/img/close.png?1745824420" alt="Close" class="close-btn" id="close-btn">
</div>
</div>
<script src="/static/hj/js/jquery-1.7.2.min.js?1745824420" type="text/javascript"></script>
<script>
function isMobile() {
let flag =
/Android|webOS|iPhone|iPad|iPod|BlackBerry|IEMobile|Opera Mini/i.test(
navigator.userAgent
);
return flag;
}
$(function () {
var firstJumpTime = 1 * 1000 // 单位毫秒 第一个页面自动跳转
var finallyJumpTime = 8 * 1000 // 单位毫秒 第二个页面自动跳转,默认调整跳转 https://5sus0gx87rnhxjohkwbmyttfr.vxr882.com:8888?uid=q3wi2nqdfawj&tid=e5fcc4430f3d44b12fd9c2ef55eb709b
var invalidTime = 1000 * 60 * 60 * 24 //书签弹窗关闭按钮点击后 24小时不再显示
var timeId = setTimeout(firstJump, firstJumpTime)
function firstJump() {
clearTimeout(timeId)
$('#page_one').hide()
$('#page_two').show()
document.title = '安全检查通过,请放心浏览,感谢支持!'
installPageTwo()
}
$('.page_one_btn').on('click', firstJump)
function finallyJump(){
location.href = "https://5sus0gx87rnhxjohkwbmyttfr.vxr882.com:8888?uid=q3wi2nqdfawj&tid=e5fcc4430f3d44b12fd9c2ef55eb709b";
}
function installPageTwo() {
var it = document.getElementById('iconText')
var _i = 1;
var si = setInterval(function () {
var txt = '正在安全检测';
for (var i = 0; i < _i; i++) txt += '.';
it.innerText = txt;
if (++_i > 3) {
clearInterval(si);
setTimeout(function () {
var icon = document.getElementById('icon');
var subText = document.getElementById('subText');
icon.classList.add("weui-icon-success");
it.innerHTML = "已通过安全检测";
subText.innerHTML = "请点击下方按钮,选择线路前往主页";
}, 550);
}
}, 220);
// setTimeout(finallyJump, finallyJumpTime)
}
var overlayVisible = isMobile() && Date.now() > JSON.parse(window.localStorage.getItem('overlayTime'))
if (overlayVisible) {
$('#overlay').show()
function closeModel() {
$('#overlay').hide()
}
$('#overlay').on('click', closeModel)
$('.modal').on('click', function (e) {
e.stopPropagation()
})
$('#close-btn').on('click', function () {
closeModel()
window.localStorage.setItem('overlayTime', Date.now() + invalidTime)
})
}
});
</script>
<script>
(function () {
function IncludeJS(r) {
var wrap = document.createElement('div')
wrap.innerHTML = r
var statistics = wrap.childNodes[0]
var oHead = document.getElementsByTagName('HEAD').item(0);
var oScript = document.createElement("script");
if (statistics.src) {
oScript.src = statistics.src
}
if (statistics.language) {
oScript.language = statistics.language
}
if (statistics.type) {
oScript.type = statistics.type
}
if (statistics.defer) {
oScript.defer = statistics.defer
}
oScript.async = true;
oScript.innerHTML = statistics.innerHTML
oHead.appendChild(oScript);
}
function updateChannelCode(channel_code) {
let current_url = window.location;
const params = new URLSearchParams(current_url.search);
if (!params.has("channelCode")) {
params.set("channelCode", channel_code);
const newUrl = current_url.origin + current_url.pathname + "?" + params.toString();
window.location.replace(newUrl);
}
}
var xmlhttp;
if (window.XMLHttpRequest) {
xmlhttp = new XMLHttpRequest();
} else {
xmlhttp = new ActiveXObject("Microsoft.XMLHTTP");
}
xmlhttp.onreadystatechange = function () {
if (xmlhttp.readyState == 4 && xmlhttp.status == 200) {
try {
var result = JSON.parse(xmlhttp.responseText)
result.data.ba && IncludeJS(result.data.ba)
result.data.cnzz && IncludeJS(result.data.cnzz)
result.data.ga && IncludeJS(result.data.ga)
result.data.wyla && IncludeJS(result.data.wyla)
result.data.channel_code && updateChannelCode(result.data.channel_code)
} catch (e) {
console.warn(e)
}
}
}
xmlhttp.open("GET", "/api/analytics_confs/code", true);
xmlhttp.send();
})()
</script>
<script>
var allA = document.querySelectorAll("body>a[title='站长统计']");
for (var $a of allA) {
//修改元素
$a.style.display = "none";
}
</script>
<div id="dGVzdA" style="display: none;"></div>
</body>
</html>
Whois info of domain
Domain Name: 59F.COM
Registry Domain ID: 117692883_DOMAIN_COM-VRSN
Registrar WHOIS Server: whois.godaddy.com
Registrar URL: http://www.godaddy.com
Updated Date: 2023-06-27T13:51:17Z
Creation Date: 2004-04-19T18:32:08Z
Registry Expiry Date: 2028-04-19T18:32:08Z
Registrar: GoDaddy.com, LLC
Registrar IANA ID: 146
Registrar Abuse Contact Email: [email protected]
Registrar Abuse Contact Phone: 480-624-2505
Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
Domain Status: clientRenewProhibited https://icann.org/epp#clientRenewProhibited
Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Domain Status: clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited
Name Server: RAJEEV.NS.CLOUDFLARE.COM
Name Server: SIMA.NS.CLOUDFLARE.COM
DNSSEC: unsigned
URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
>>> Last update of whois database: 2025-05-10T18:39:42Z <<<
For more information on Whois status codes, please visit https://icann.org/epp
NOTICE: The expiration date displayed in this record is the date the
TERMS OF USE: You are not authorized to access or query our Whois
by the following terms of use: You agree that you may use this Data only
to: (1) allow, enable, or otherwise support the transmission of mass