Domain > alimama.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to alimama.com

MD5	A/V
d38a3646d932d062528aea48d2122315
14bfd82cc98684fb9c3e91971d2490b1	[HW32.CDB.Eb32] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [UnclassifiedMalware] [BackDoor.Slym.13873] [Win32.Troj.Undef.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Win32.Kryptik.CBCJ] [Trojan.Crypt_s] [W32/Kryptik.BD!tr] [Crypt_s.GNC]
27e05563b5f0f1bdc9d097366d310273	[W32.WasamalaX.Trojan] [Trojan-Dropper.Win32.Injector!O] [TrojanDropper.Injector.hbpw] [Trojan-FBJW!27E05563B5F0] [Trojan.Downloader] [Trojan.Win32.Injector.bfoddr] [Trojan.ADH] [Injector.DPRG] [Trojan-Dropper.Win32.Injector.hbpw] [Trojan.DR.Injector!gsCTkM0Q+bA] [Trojan.Spambot.11925] [TR/Rogue.8645848.368] [Heuristic.BehavesLike.Win32.Suspicious-BAY.K] [TrojanDropper.Injector.bcqk] [Trojan[Dropper]/Win32.Injector] [Win32.Troj.Injector.hb.(kcloud)] [Dropper.A.Injector.595456.C] [Dropper/Win32.Injector] [TrojanDropper.Injector] [Trojan.Win32.Injector.aEBR] [Trojan-Dropper.Win32.Injector]
A8AFB3FCB20520F6976072F8A2605466
4865f0ecbf918efdce432b38041e855e
e8baa9d588fd4969d194eb14f3490d27	[W32.WasamalaX.Trojan] [Trojan-Dropper.Win32.Injector!O] [Trojan.Orsam.A5] [Trojan-FBJW!E8BAA9D588FD] [Trojan.Downloader] [Trojan.Llac.Win32.38707] [Trojan.Win32.KillProc.bfqtoc] [TrojanDownloader.D] [Win32/EXEEmbedded.HORAMQD] [Trojan-Dropper.Win32.Injector.hxbu] [Trojan.DR.Injector!+LoCaqxpzbs] [Trojan.KillProc.21800] [TR/Graftor.65786] [TrojanDropper.Injector.bmmj] [Trojan[Dropper]/Win32.Injector] [Win32.Troj.Undef.(kcloud)] [Trojan:Win32/Sisproc] [Dropper/Win32.Injector] [W32/Trojan.NXES-2340] [TrojanDropper.Injector] [Trojan.Win32.Injector.al] [Adware.Win32.Dropper]
2b7809c589a059c4bb04b8f582f267e7
961c0ed105b1f4ade335051a3a1b0816
85b25059df5981ea867f17dfd30a0790	[W32.AcLuC.PE] [Win32.Almanahe.D] [Virus/W32.Alman.B] [Virus.Win32.Almanahe.2!O] [W32.Almanahe.B] [W32/Almanahe.c] [Win32.Alman.B] [W32/Alman.C] [W32.Almanahe.B!inf] [Alman.D] [Win32/Almanahe.F!x386] [PE_CORELINK.C-1] [Win32:Alman] [W32.Alman-2] [Virus.Win32.Alman.b] [Virus.Win32.Alman.xyevp] [Virus.Win32.Magister.a] [Virus.Win32.Alman.A] [Win32.Alman.1] [W32/Alman.BB] [W32/Alman-C] [Win32/Almana.c] [Virus/Win32.Alman.b] [Worm.DLan.c.79872] [Virus:Win32/Almanahe.B] [Win32/Alman.C] [Virus.Win32.Alman.B] [Virus.Win32.Alman.$NAB] [Win32/Alman.NAB] [PE:Worm.Magistr.g!497223] [Virus.Win32.Alman] [W32/Alman.DB] [Win32/Alman] [W32/Almanahe.C] [Virus.Win32.Alman.C]
4bebfb11c158e326b13f5d9790b19296	[W32.AcLuC.PE] [Win32.Almanahe.D] [Virus/W32.Alman.B] [Virus.Win32.Almanahe.2!O] [W32.Almanahe.B] [W32/Almanahe.c] [Win32.Alman.B] [W32/Alman.C] [W32.Almanahe.B!inf] [Alman.B] [Win32/Almanahe.F!x386] [PE_CORELINK.C-1] [Win32:Alman] [W32.Alman-4] [Virus.Win32.Alman.b] [Virus.Win32.Alman.xyevp] [PE:Worm.Magistr.g!497223] [Virus.Win32.Alman.A] [Win32.Alman.1] [Virus.Alman.Win32.2] [W32/Almanahe.B] [W32/Alman-C] [Win32/Almana.c] [Virus/Win32.Alman.b] [Worm.DLan.c.79872] [Virus:Win32/Almanahe.B] [Win32/Alman.C] [Virus.Win32.Alman.B] [W32/Almanahe.C] [Win32/Alman.NAB] [Virus.Win32.Magister.a] [Virus.Win32.Almanahe] [W32/Alman.DB] [Win32/Alman] [Virus.Win32.Alman.$NAB] [Virus.Win32.Alman.C]

Whois

Property	Value
Email	dnsadmin@hk.alibaba-inc.com
NameServer	NS5.TAOBAO.COM
Created	1999-04-21 00:00:00
Changed	2012-06-05 00:00:00
Expires	2016-04-21 00:00:00
Registrar	MARKMONITOR INC.

DNS Resolutions

Date	IP Address
2010-06-27	119.42.227.247 (ClassC)
2010-07-28	119.42.233.243 (ClassC)
2012-03-16	110.75.5.51 (ClassC)
2012-03-16	119.42.233.241 (ClassC)
2012-05-04	110.75.24.10 (ClassC)
2012-08-26	110.75.39.9 (ClassC)
2012-10-27	110.75.70.2 (ClassC)
2013-02-06	101.226.178.40 (ClassC)
2013-02-06	114.80.174.240 (ClassC)
2013-05-28	110.75.19.50 (ClassC)
2013-10-31	110.75.74.73 (ClassC)
2014-06-18	42.156.167.55 (ClassC)
2014-09-15	195.59.70.250 (ClassC)
2014-11-04	110.75.83.48 (ClassC)
2025-04-19	106.11.130.216 (ClassC)
2025-06-04	59.82.31.200 (ClassC)
2025-07-11	59.82.31.141 (ClassC)
2025-08-06	106.11.23.107 (ClassC)

Port 80

Port 443

Subdomains

Date	Domain	IP
1111.alimama.com	2023-11-16	59.82.31.200
gdsns1.alimama.com	2025-07-09	47.88.74.38
1688.alimama.com	2024-08-21	203.119.169.229
adsz.wagbridge.1688.alimama.com	2024-08-18	106.11.23.119
adsh.wagbridge.alibaba.alimama.com	2024-10-15	59.82.44.180
media.alimama.com	2024-04-19	59.82.31.142
bld-yartb.alimama.com	2024-07-31	59.82.31.175
pub.alimama.com	2014-07-07	140.205.136.8
c.alimama.com	2024-11-21	59.82.31.175
static.alimama.com	2013-10-18	66.102.255.50
acookie.alimama.com	2014-06-17	110.75.69.71
pcookie.alimama.com	2025-08-03	59.82.14.134
taoke.alimama.com	2014-06-17	110.75.98.51
adsettle.alimama.com	2024-06-11	59.82.23.55
college-live.alimama.com	2024-06-09	61.170.80.248
cheng.alimama.com	2024-01-08	163.181.66.53
afpeng.alimama.com	2024-04-23	106.11.130.216
afpapi.alimama.com	2019-11-02	140.205.243.64
afptrack.alimama.com	2024-07-12	106.11.23.108
cpc.click.alimama.com	2025-08-03	119.42.239.26
global.alimama.com	2024-12-22	47.246.137.13
adsz.wagbridge.tmall.alimama.com	2025-01-29	106.11.23.3
m.alimama.com	2024-02-21	59.82.31.175
ai.m.alimama.com	2024-06-16	8.48.85.251
magellan.alimama.com	2024-10-02	59.82.120.52
www.google.com.tw-www.swiftcapital.boardsenable.taobao.com.comsmtp164-testeranne	2024-09-28	199.59.148.229
www.google.com.tw-www.swiftcapital.cloudmcsg-com-walswiftcapital.taobao.com.coms	2024-08-20	199.59.148.229
www.google.com.tw-www.swiftcapitalnl.sandbox-com.19-permitsdevomenbaijialerty.cd	2024-09-28	199.16.158.8
imggen.alimama.com	2024-07-22	59.82.31.141
open.alimama.com	2024-05-29	59.82.23.55
rta.open.alimama.com	2025-03-05	59.82.23.82
majibao.alimama.com	2024-12-24	59.82.43.1
adsh.wagbridge.taobao.alimama.com	2024-07-30	59.82.31.142
adsz.wagbridge.taobao.alimama.com	2024-07-29	59.82.31.200
wao.alimama.com	2024-09-04	8.38.121.229
college-video.alimama.com	2024-09-13	180.163.147.221
afp.alimama.com	2024-12-24	59.82.44.239
afpssp.alimama.com	2025-03-31	106.11.130.219
banner.alimama.com	2024-07-30	59.82.23.63
trace.thor.alimama.com	2024-09-16	203.119.169.175
ckmonitor.alimama.com	2025-06-13	47.246.136.214
pub.gds.alimama.com	2014-11-27	140.205.136.8
themis.alimama.com	2025-05-24	59.82.112.188
pass.alimama.com	2025-04-06	47.246.137.72
tt.alimama.com	2015-04-07	66.102.255.40
u.alimama.com	2014-06-17	110.75.98.51
www.alimama.com	2015-06-04	140.205.136.16
adx.alimama.com	2025-02-27	203.119.169.82
tanx.alimama.com	2024-09-08	47.246.137.76
ad-sh-sz-zb.wagbridge.tanx.alimama.com	2023-08-15	59.82.31.179
adsz.wagbridge.tanx.alimama.com	2024-07-30	106.11.130.219
z.alimama.com	2014-07-21	110.75.83.48

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]