Domain > zhdns.net

More information on this domain is in AlienVault OTX

Files that talk to zhdns.net

MD5	A/V
bb883133ee3d6d9cde6c3a35a9af2bc9	[TR/Rogue.169488] [Trojan.Rogue] [Trojan-Downloader.Win32.Bitmin.ajr]
4c8406b0e22cd477e3b5a3b0e24ff980	[W32/Trojan.CCVP-2258] [Hider.SNQ.dropper]
320469f2a471c940ced7a4c2ca0c548b	[W32/Bitmin.AIX!tr.dldr] [Trojan-Downloader.Win32.Bitmin] [Trojan-Downloader.Win32.Bitmin.aix]
2dbc02e5948889f8b136a654be580e44	[DLOADER.Trojan] [W32/Bitmin.AJM!tr.dldr] [Trojan-Downloader.Win32.Bitmin] [Trojan-Downloader.Win32.Bitmin.ajm] [RDN/Downloader.a!uh]
cb650a8cc997a22b22e29a96a62dba61	[TR/Rogue.169488] [Trojan.Rogue]
0b898fa1ca8288308bba33566ba2e4a6	[TR/Rogue.169488] [Win32/Oflwr.A!crypt] [Riskware/FlyStudio] [Win32/DH{QS4TFDZSAGc1gRKBEyUJATg5ZE8}] [Trojan.Win32.StartPage*Trojan-Downloader.Win32.Bitmin.ajk] [RDN/PWS-Mmorpg!ms]
35943ee457eaaec51f9e42dbf44da335	[TR/Rogue.12043344] [Trojan.SuspectCRC] [Mal/Behav-034]
7dc26a045181edc18be33b05d98c5c0f	[W32/Backdoor.TEUD-7026] [Trojan.DownLoader11.4394] [Win32/HideProc] [Riskware/HideProc] [Trojan.Win32.Spy] [BackDoor-CCT.dll] [RootKit.Win32.HideProc.af] [Backdoor.Nibu]
8b184185f693ac03c6ba4f975ef915aa	[W32/Trojan.FSVC-6132] [Win32/HideProc] [W32/BDoor.CCT!tr.bdr] [Trojan.Win32.Spy] [BackDoor-CCT.dll] [RootKit.Win32.HideProc.af] [BScope.Trojan.Diple]
4c4bb518a8caa20d687b322d1e5dd00b	[W32/Bitmin.AIX!tr.dldr] [Trojan-Downloader.Win32.Bitmin] [Trojan-Downloader.Win32.Bitmin.aix]
17cb74f86ec5fb073d93a8d064147aff	[W32/Bitmin.AIX!tr.dldr] [Trojan-Downloader.Win32.Bitmin.aix]
ade6eb5d57dc62066b7e2182fea553eb	[Trojan-Downloader.Win32.Bitmin] [Trojan-Downloader.Win32.Bitmin.aix]
42cfa495fb40329fa706b98f4fa55fc4	[W32/Bitmin.AIX!tr.dldr] [Trojan-Downloader.Win32.Bitmin] [Trojan-Downloader.Win32.Bitmin.aix]
1af7519cc99c59c7e3ed19071612c0b5	[DLOADER.Trojan] [W32/Bitmin.AJQ!tr.dldr] [Trojan-Downloader.Win32.Bitmin] [Trojan-Downloader.Win32.Bitmin.ajq] [RDN/Downloader.a!uk]
74d9ee6346a276e8c8343138e67391f5	[Trojan-Downloader.Win32.Bitmin.akd]
a201122cfe69414e27731132975a40e6	[DLOADER.Trojan] [W32/Bitmin.AJY!tr.dldr] [Trojan-Downloader.Win32.Bitmin] [Trojan-Downloader.Win32.Bitmin.ajy] [RDN/Downloader.a!ul]
0078c696c3bbebb7117c47ceb61c5e50	[W32/Trojan.OPKO-8864] [Win32/DfInject.WDGSBDD] [Win.Trojan.Injector-12102] [BackDoor.Pigeon1.7050] [Win32/Injector.FUT] [W32/Injector.GUC!tr] [W32/Trojan2.ONXE] [Inject.AJPK] [Trojan-Dropper.Win32.Dunik] [Trojan-Dropper.Win32.Injector.jksa] [Mal/Delf-Y] [MalwareScope.Trojan-PSW.Game.16]

Whois

Property	Value
Email	ythappyboy@tom.com
NameServer	NS4.DNSV4.COM
Created	2014-05-04 00:00:00
Changed	2014-05-28 00:00:00
Expires	2019-05-04 00:00:00
Registrar	ENAME TECHNOLOGY CO.

DNS Resolutions

Date	IP Address
2025-08-06	172.67.172.19 (ClassC)

HTTP/1.1 403 ForbiddenDate: Thu, 19 Jun 2025 06:20:13 GMTContent-Type: text/html; charsetUTF-8Transfer-Encoding: chunkedConnection: keep-aliveX-Frame-Options: SAMEORIGINReferrer-Policy: same-originCac

!DOCTYPE html>!--if lt IE 7> html classno-js ie6 oldie langen-US> !endif-->!--if IE 7>    html classno-js ie7 oldie langen-US> !endif-->!--if IE 8>    html classno-js ie8 oldie langen-US> !endif-->!--if gt IE 8>!--> html classno-js langen-US> !--!endif-->head>title>Attention Required! | Cloudflare/title>meta charsetUTF-8 />meta http-equivContent-Type contenttext/html; charsetUTF-8 />meta http-equivX-UA-Compatible contentIEEdge />meta namerobots contentnoindex, nofollow />meta nameviewport contentwidthdevice-width,initial-scale1 />link relstylesheet idcf_styles-css href/cdn-cgi/styles/cf.errors.css />!--if lt IE 9>link relstylesheet idcf_styles-ie-css href/cdn-cgi/styles/cf.errors.ie.css />!endif-->style>body{margin:0;padding:0}/style>!--if gte IE 10>!-->script>  if (!navigator.cookieEnabled) {    window.addEventListener(DOMContentLoaded, function () {      var cookieEl  document.getElementById(cookie-alert);      cookieEl.style.display  block;    })  }/script>!--!endif-->/head>body>  div idcf-wrapper>    div classcf-alert cf-alert-error cf-cookie-error idcookie-alert data-translateenable_cookies>Please enable cookies./div>    div idcf-error-details classcf-error-details-wrapper>      div classcf-wrapper cf-header cf-error-overview>        h1 data-translateblock_headline>Sorry, you have been blocked/h1>        h2 classcf-subheadline>span data-translateunable_to_access>You are unable to access/span> zhdns.net/h2>      /div>!-- /.header -->      div classcf-section cf-highlight>        div classcf-wrapper>          div classcf-screenshot-container cf-screenshot-full>                          span classcf-no-screenshot error>/span>                      /div>        /div>      /div>!-- /.captcha-container -->      div classcf-section cf-wrapper>        div classcf-columns two>          div classcf-column>            h2 data-translateblocked_why_headline>Why have I been blocked?/h2>            p data-translateblocked_why_detail>This website is using a security service to protect itself from online attacks. The action y

Port 443

Subdomains

Date	Domain	IP
c01ct01.zhdns.net	2015-01-21	122.226.181.102
c02ct01.zhdns.net	2014-12-10	115.238.246.235
c01ct08.zhdns.net	2014-12-07	58.218.211.249
cdct.zhdns.net	2015-02-02	122.225.98.220
cxct.zhdns.net	2014-12-15	222.186.58.13
czct.zhdns.net	2025-06-13	172.67.172.19

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]