dz11.vip
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.
Description of dz11.vip
dz11.vip appears to be a Chinese-language navigation portal branded as “大众彩票” and “9335.com.” Based on the page title, banner graphics, and homepage layout, the site seems to present itself as a lottery-related directory or gateway page, with a search bar and icon links to various popular Chinese web services, shopping sites, media platforms, and games. The design resembles a link hub rather than a full standalone service with extensive original content.
The domain itself does not clearly identify a known organization, and the available registration details only show a registrar and technical hosting information rather than a transparent business operator. The use of lottery-themed branding, combined with a VIP-domain extension and a portal-style homepage, may indicate that the site is intended to attract users looking for gaming, lottery, or shortcut access to other online destinations.
Safety Assessment for dz11.vip
Multiple security signals raise concerns about this domain at the time of this scan. It was flagged by 8 out of 91 security engines, with several classifying it as phishing or malicious. In addition, web-classification sources associated the site with phishing and fraud-related activity. The homepage branding and layout also appear somewhat inconsistent with the domain name, which may increase uncertainty about the site’s legitimacy and purpose.
The malware scan produced suspicious findings, including flagged page elements and a referenced external IP-based URL marked as suspicious. While broader blacklist checks shown here were otherwise clean and no DNS-based mail-reputation listings were reported, the combination of multi-engine phishing detections and suspicious linked resources is a stronger signal than a clean DNSBL result. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site was reachable over HTTPS with a valid Let's Encrypt certificate that appears current until 2026-09-23. It is hosted on IP address 141.11.183.187, reportedly behind an nginx web server in Hong Kong, with hosting attributed to VANTIVA SA. The domain is about 1.6 years old, is not ranked in Tranco, and uses the nameservers ns1.domainnamedns.com and ns2.domainnamedns.com.
From a security-configuration perspective, DNSSEC appears to be unsigned, which means DNS responses may lack an additional layer of authenticity protection. The scan also noted suspicious linked content involving a direct IP-based external resource, which can be a technical red flag in phishing or low-trust setups, although this alone is not conclusive.
Share your experience with this website. Was it safe? Did you encounter any issues?