Domain > www.513zj.com

More information on this domain is in AlienVault OTX

Files that talk to www.513zj.com

MD5	A/V
1e526975871b216a7a8299da428fa3c1	[W32.Clod045.Trojan.f831] [Win32.Worm.Delf.BP] [Artemis!1E526975871B] [W32/Delf.bo] [W32.Reyds.A] [Malware.OEZD] [INF/Emerleox.DK] [Trojan.Delf-1164] [Worm.Win32.Delf.bo] [Worm.Delf!uoiWAFHKh5E] [PE:Worm.Death.p!492940] [Win32.HLLW.Sishen] [Worm.Delf.Win32.1346] [Mal_Otorun5] [Heuristic.BehavesLike.Win32.ModifiedUPX.J!81] [Mal/EncPK-LL] [TrojanDownloader.Delf.blj] [Worm/Win32.Delf] [Worm:Win32/Datheens.A] [BScope.Trojan-Spy.Zbot] [Bck/Hupigon.KDF] [Trojan-Downloader.Win32.Delf] [W32/Delf.BO!tr] [Win32/DH{OgkDZw99IHgL}] [Worm.Win32.Delf.aI]
59361f18063a3ebb31d4768eb49fe0de	[W32.Clode85.Trojan.3ce6] [Trojan.Downloader.Delf.OM] [Worm.Delf.ag] [W32/Delf.ag] [Worm.Delf.AZV] [Trojan.KillAV] [Downloader] [Trojan.QQRob-18] [Worm.Win32.Delf.ah] [Trojan.Win32.Delf.emjg] [Worm.Win32.Delf.AG] [Trojan.DownLoader.13457] [KIT/Delf.AG.2.A] [Mal/DelpDldr-C] [Backdoor/Delf.kf] [Worm/Win32.Delf] [Win32.Troj.Ad_small.(kcloud)] [Win32/Xema.worm.23552.C] [Worm.Delf] [Trj/Downloader.MDW] [Win32/Delf.AG] [Trojan-Downloader.Win32.Delf] [W32/Delf.AG!tr.dldr] [Worm/Delf.3.Y] [Worm.Win32.Delf.APnx]

Whois

Property	Value
NameServer	NS12.XINCACHE.COM
Created	2015-12-31 00:00:00
Changed	2015-12-31 00:00:00
Expires	2016-12-31 00:00:00
Registrar	XIN NET TECHNOLOGY C

DNS Resolutions

Date	IP Address
2019-09-07	211.149.219.72 (ClassC)
2024-01-08	167.88.180.85 (ClassC)
2024-03-09	172.65.237.18 (ClassC)
2025-04-12	75.2.18.233 (ClassC)
2025-08-05	154.201.158.213 (ClassC)

HTTP/1.1 200 OKCache-Control: privateContent-Length: 3193Content-Type: text/html; charsetutf-8Server: Microsoft-IIS/7.5X-AspNet-Version: 2.0.50727X-Powered-By: ASP.NETDate: Sat, 07 Sep 2019 10:13:45 G

!DOCTYPE html PUBLIC -//W3C//DTD XHTML 1.0 Transitional//EN http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd>html xmlnshttp://www.w3.org/1999/xhtml>head>meta http-equivContent-Type contenttext/html; charsetutf-8 />title>广州主角教育科技有限公司/title>link typetext/css relstylesheet hrefcss/style.css />link hrefcss/skitter.styles.css typetext/css mediaall relstylesheet />script typetext/javascript languagejavascript srcjs/jquery-2.1.1.js>/script>script typetext/javascript languagejavascript srcjs/jquery.easing.1.3.js>/script>script typetext/javascript languagejavascript srcjs/jquery.skitter.js>/script>script typetext/javascript srcjs/chat.js>/script>script typetext/javascript srcjs/login.js>/script>/head>script typetext/javascript languagejavascript>		$(document).ready(function() {			$(.box_skitter_large).skitter({				theme: clean,				numbers_align: center,				progressbar: false, 				dots: true, 				preview: false			});		});	/script>body>form nameform1 methodpost actionzjsy.aspx idform1>input typehidden name__VIEWSTATE id__VIEWSTATE value/wEPDwUJOTg2ODYxNjM4ZGRjw7s5luV6NxetRF+KKRIdqmMXcQ />input typehidden name__VIEWSTATEGENERATOR id__VIEWSTATEGENERATOR valueBE540A14 />	div classheader>    	div classw1000>        	a classlogo hrefmschool.html>img srcimages/logo.png />/a>            div classlogo-btn>                a hrefhttp://www.513zj.com/login.html>登陆/a>                           /div>        /div>    /div>    div classbox_skitter box_skitter_large>		ul>		li>a hrefhttp://www.sohu.com>img srcupimg/2018030823089316.JPG classcube />/a>/li>li>a hrefhttp://www.sina.com.cn>img srcupimg/2018030822447792.JPG classcube />/a>/li>li>a hrefhttp://www.baidu.com>img srcupimg/2018030822329150.JPG classcube />/a>/li>li>a hrefhttp://www.baidu.com>img srcupimg/2018030822213710.JPG classcube />/a>/li>					/ul>	/div>	div classw1000>        div classmk-con>        	div classindex-content>            	ul>                	li>a hrefhttp://www.513zj.com/login.html>span classmk-title>公开课/span>div classmk-bo

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > www.513zj.com

Is this malicious?

Files that talk to www.513zj.com

Whois

DNS Resolutions

Port 80