Domain > baidu200.com

More information on this domain is in AlienVault OTX

Property	Value
Email	770747@qq.com
NameServer	NS2.360WZB.COM
Created	2010-08-17 00:00:00
Changed	2015-08-19 00:00:00
Expires	2016-08-17 00:00:00
Registrar	HICHINA ZHICHENG TEC

DNS Resolutions

Date	IP Address
2013-04-23	117.41.237.217 (ClassC)
2013-08-08	101.226.4.27 (ClassC)
2013-12-09	61.160.224.173 (ClassC)
2015-05-05	183.56.173.72 (ClassC)
2017-05-19	23.235.160.135 (ClassC)
2017-09-02	120.55.25.25 (ClassC)
2019-05-12	104.24.100.193 (ClassC)
2019-05-12	104.24.101.193 (ClassC)
2019-07-31	103.100.210.50 (ClassC)
2019-09-19	47.91.170.222 (ClassC)
2019-12-09	23.244.56.231 (ClassC)
2020-12-03	104.160.174.186 (ClassC)
2020-12-03	104.160.174.184 (ClassC)
2021-02-09	104.160.174.178 (ClassC)
2021-02-09	64.32.28.241 (ClassC)
2021-02-17	64.32.28.249 (ClassC)
2021-02-22	104.160.174.188 (ClassC)
2023-08-30	173.232.38.161 (ClassC)
2024-04-05	107.149.3.47 (ClassC)
2024-08-07	137.175.40.241 (ClassC)
2024-09-21	108.186.203.113 (ClassC)
2024-11-04	107.149.120.111 (ClassC)
2024-11-17	45.192.17.187 (ClassC)
2024-11-29	45.192.22.251 (ClassC)
2025-01-04	107.149.9.134 (ClassC)
2025-01-20	172.65.190.172 (ClassC)
2025-07-11	172.67.129.54 (ClassC)
2025-08-02	104.21.1.122 (ClassC)

Port 80

HTTP/1.1 200 OKServer: nginx/1.17.10Date: Mon, 22 Feb 2021 06:42:02 GMTContent-Type: text/html; charsetUTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingX-Powered-By: PHP/7.3.15

html dirltr>    head>        title>/title>meta nameviewport contentwidthdevice-width, initial-scale1.0, minimum-scale1.0, maximum-scale1.0, user-scalableno/>script srchttp://libs.baidu.com/jquery/1.9.0/jquery.js>/script>script>$(document).ready(function(){if(window.screen.height700){$(*).css({width:auto,height:auto,background-image:none,position:static});$(p).css(color,black);$(.stencil-tip).css(line-height,30px);}});/script>    /head>    body>        p>        title>baidu200.com/title>meta nameviewport contentwidthdevice-width, initial-scale1.0, minimum-scale1.0, maximum-scale1.0, user-scalableno/>script srchttp://libs.baidu.com/jquery/1.9.0/jquery.js>/script>script>$(document).ready(function(){if(window.screen.height700){$(*).css({width:auto,height:auto,background-image:none,position:static});$(p).css(color,black);$(.stencil-tip).css(line-height,30px);}});/script>        meta contentbaidu200.com namekeywords />        meta contentbaidu200.com namedescription />        meta contenttext/html; charsetutf-8 http-equivContent-Type />        link hrefhttp://www.4.cn/img/style.css typetext/css relstylesheet />        link hrefhttp://www.4.cn/template/stencil.css typetext/css relstylesheet />/p>        div classa-header>        div classa-banner stencil-overall>        div classname>        h2 classdomain-name>baidu200.com/h2>        p>The domain is on BIN Sales and available for purchase. 您访问的域名正在一口价出售中！/p>        /div>        div>        div classl>        p>一口价出售中！/p>        p>span>域名i>Domain Name:/i>/span>em>baidu200.com/em>/p>        p>span>售价i>Listing Price:/i>/span>em>CNY 1280.00/em>/p>        p>a classbuy titleBuy Now stylefloat: left hrefhttp://www.4.cn/search/detail/pid/18349632/ref/28514>立即购买i>>>/i>/a>    a classbuy titleBuy Now stylefloat: left hrefhttp://www.4.cn/search/detail/pid/18349632/ref/28514>BUY NOWi>>>/i>/a>/p>        /div>        /div>        /div>        /div>        p styletext-align: center>script typetext/jav

Subdomains

Date	Domain	IP
www.baidu200.com	2014-03-05	61.160.224.232

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

MD5	A/V
e029b70709c1a093ef39d212cc3f82eb	[Trojan/Farfli.vm] [Trojan.Symmi.D47E1] [W32/Heuristic-119!Eldorado] [WS.Reputation.1] [Trojan.DownLoader8.49159] [W32/Heuristic-119!Eldorado] [Heur:Backdoor/PcClient] [Backdoor:Win32/Zegost.BY] [BScope.Trojan.SvcHorse.01643] [Backdoor.Win32.Farfli] [W32/Farfli.SE!tr] [Trj/CI.A]
c15834fc1134739e348c866b2c8a8ed7	[Trojan.Strictor.DD06] [Trojan.Win32.Baidu.iidnc] [Trojan.Dropper] [Trojan.Win32.A.PSW-Magania.1913020.A[h]] [PE:Trojan.Win32.Fednu.tpm!1607535[F1]] [BehavesLike.Win32.Dropper.gc] [Trojan/Win32.Zegost] [Win32.HeurC.KVM007.a.(kcloud)] [TrojanDropper:Win32/Demekaf.A] [Artemis!C15834FC1134] [Trojan.Win32.Jorik] [W32/Mdrop.CPG!tr] [Win32/Trojan.9c9]

Domain > baidu200.com

Is this malicious?

Files that talk to baidu200.com

Whois

DNS Resolutions

Port 80

Subdomains