Domain > ns1.oray.net

More information on this domain is in AlienVault OTX

Is this malicious?

Most users have voted this as MALICIOUS

Reports

https://otx.alienvault.com/pulse/55553e26b45ff5703...

https://www.mpi-sws.org/~stevens/pubs/sec14.pdf

https://www.usenix.org/system/files/conference/use...

Files that talk to ns1.oray.net

MD5	A/V
8455bbb9a210ce603a1b646b0d951bce	[Backdoor.Tranikpik] [BackDoor-FBSR] [Backdoor.ZXShell] [ZXProxy.AB] [Backdoor.Win32.S.ZxPlug.86016] [UnclassifiedMalware] [BDS/Tranikpik.A] [BKDR_ZXSHELL.V] [Troj/ZxShell-A] [Backdoor:Win32/Tranikpik.A] [Win-Trojan/Backdoor.86016.R] [BScope.Trojan.SvcHorse.01643] [Backdoor.Win32.Tranikpik]
eddfbf35ac07fa9ab25cc4c421e205fe
3532e0f9244c0b89e9fe426afc8226cb
84536c2157e9b22ac9d17b3a6e032121

Whois

Property	Value
Email	yezi@oray.com
NameServer	NS2.ORAY.NET
Created	1998-11-02 00:00:00
Changed	2011-08-19 00:00:00
Expires	2018-11-01 00:00:00
Registrar	SHANGHAI BEST ORAY I

DNS Resolutions

Date	IP Address
2013-04-01	220.170.79.231 (ClassC)
2013-04-18	220.170.79.233 (ClassC)
2013-04-30	122.226.163.8 (ClassC)
2013-06-21	183.136.132.170 (ClassC)
2014-02-24	220.170.79.229 (ClassC)
2014-02-24	183.136.132.170 (ClassC)
2014-08-21	199.193.253.110 (ClassC)
2015-01-05	61.174.40.200 (ClassC)
2015-04-27	220.170.79.229 (ClassC)
2015-07-03	103.44.145.246 (ClassC)
2015-07-22	115.29.234.127 (ClassC)
2018-10-16	103.46.128.51 (ClassC)
2019-06-21	103.46.128.52 (ClassC)
2019-07-12	120.26.12.130 (ClassC)
2019-08-31	47.91.136.105 (ClassC)
2024-07-02	114.117.32.113 (ClassC)
2024-07-08	116.62.241.133 (ClassC)
2024-09-27	47.115.57.253 (ClassC)
2025-05-22	101.37.15.183 (ClassC)
2025-05-26	134.175.75.248 (ClassC)

Reverse NameServers

Date	Domain
appleupdate.biz	2015-04-19
sygay.cn	2016-04-09
hagaku.cn	2016-04-09
chinajili.com.cn	2016-04-12
i64.biz	2016-06-16
aliviews.cn	2016-09-18
viewface.cn	2016-09-19
mallcctv.cn	2016-09-19
raytao.com.cn	2016-09-20
viewdows.com.cn	2016-09-21
hitvphone.cn	2016-09-21
cay.so	2016-09-28
yzkj.cc	2016-10-03
abcstudio.biz	2016-10-04

Subdomains

Date	Domain	IP
phtun-std0.oray.net	2015-01-01	120.24.223.57
phtun-prm0.oray.net	2014-11-21	202.105.21.213
phtun-biz0.oray.net	2014-11-06	202.105.21.213
ns1.oray.net	2015-01-05	61.174.40.200
NS1.ORAY.NET	2015-04-27	220.170.79.229
phservice2.oray.net	2023-12-22	115.236.153.182
phfwba-std-g2.oray.net	2025-05-27	115.236.153.172
ns2.oray.net	2013-11-18	115.238.186.55
NS2.ORAY.NET	2021-03-01	123.59.51.110
phfwba-std-g3.oray.net	2025-05-17	115.236.153.174
ns3.oray.net	2025-05-27	47.76.61.78
ns4.oray.net	2025-05-27	47.242.74.119
bb.oray.net	2014-12-25	199.193.253.110
billboard.oray.net	2025-04-01	38.145.211.157
hphwebservice.oray.net	2024-01-09	115.236.153.182
hphws-tp.oray.net	2020-02-24	175.6.228.198
client.oray.net	2013-11-05	220.170.79.233
www.oray.net	2025-05-27	47.110.142.43

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]