Help RSS API Feed Maltego Contact                        

Domain > cpro.baidu.com

Welcome! Right click nodes and scroll the mouse to navigate the graph.
More information on this domain is in AlienVault OTX

Is this malicious?

Reports
https://raw.githubusercontent.com/citizenlab/malwa...    

Files that talk to cpro.baidu.com
MD5A/V
89b2a2610c0ffaa9c508a110f8477642[W32.WasamalaX.Trojan] [Trojan-Dropper.Win32.Injector!O] [Trojan-FBJW!89B2A2610C0F] [Trojan.Downloader] [Trojan.Win32.KillProc.bfqtoc] [Trojan-Dropper.Win32.Injector.hxbu] [Trojan.DR.Injector!Mc8RzOmk1XU] [Dropper.A.Injector.992768.D] [Trojan.KillProc.21800] [TR/Rogue.KDZ.6932.325] [TrojanDropper.Injector.bmmj] [Trojan[Dropper]/Win32.Injector] [Dropper/Win32.Injector] [TrojanDropper.Injector] [Trojan.Win32.Injector.ajF] [PE:Trojan.Flg!1.66BE] [Trojan.Crypt] [Win32/Trojan.Dropper.11a]
C1C832076B2D74418351DE52A2A476E9
4933d182c57489078047aa42f4fc2f42[BHO.JCL.dropper] [TR/Danglo.A.579]
173f4a0191582cc21c52489b8e5c5541[W32.Clodf2b.Trojan.2825] [Packer.Expressor.B] [Trojan.Dyname.r4] [Trojan.Win32.Obfuscator.qloar] [W32/Heuristic-210!Eldorado] [Backdoor.Hupigon!/J8BjCWOZTk] [Backdoor.Win32.Hupigon.~d023] [TR/Obfuscator.F] [Heuristic.BehavesLike.Win32.Suspicious-BAY.G] [Backdoor/Hupigon.boih] [Trojan[:HEUR]/Win32.Unknown] [Trojan:Win32/Dynamer!dtc] [Win-Trojan/Hupigon.441600.C] [BScope.HackTool.Sniffer.WpePro] [Trj/CI.A] [Packer.Expressor] [PossibleThreat] [BackDoor.Hupigon5.BITV] [Win32/Trojan.b7f]
607407aa5b4422df919582a915c55cf8[Startpage.WTF]
711ED43CE2417BE3BF49CE6CB298606F
4a3530ed68e64f411cd0b66cc98ef058[Artemis!4A3530ED68E6] [Trojan.Downloader.cn] [WS.Reputation.1] [Startpage.ITJD] [Trojan.Win32.Badur.gcyr] [Heuristic.BehavesLike.Win32.Suspicious-PKR.S] [Win32.Troj.Badur.gc.(kcloud)] [PUP/Win32.StartPage] [Trojan.NSIS] [W32/Badur.GCYR!tr] [SHeur4.ALHH]
072E873E7DFD9112751ABD32C5AEF472
D70F0E863A80A28146BC2270B6A0F821
70063b2e822505ac81a7e88b2c634002[Downloader-BLA!hv.b]
9898A8A7314101A30B820974C9FC087C
1c23270509e91b978e95ab80119387d6[W32.Clodcc7.Trojan.fcc7] [Packer.Malware.Lighty.F] [Packed.Win32.Katusha.1!O] [Downloader-BOI] [Backdoor.UltimateDefender.Win32.732] [Trojan.Win32.Katusha.blvpqm] [W32/Downldr2.HQKP] [Packed.Win32.Katusha.o] [Trojan.DL.Renos!8GaQ0G7lv14] [PE:Trojan.DL.Win32.DelfCode.ao!1075273810] [Trojan.Fakealert.10714] [TROJ_FAKEALE.SME] [Backdoor/UltimateDefender.alg] [Trojan[Packed]/Win32.Katusha] [TrojanDownloader:Win32/Renos.FJ] [Trojan/Win32.FakeAV] [W32/Downloader.MJPN-4182] [Win32.Packed.Katusha.Dygp] [Trojan-Spy.Win32.Zbot] [W32/FraudLoad.E!tr.dldr] [FakeAlert.KH] [Trojan.Win32.Katusha.a]
17459d6b3fb45f88efadfb17025e5944[BHO.JCL.dropper]
14bd0fa7aa7b71c27ee8f5612191c6af[W32/Risk.BXWB-4986] [Win32/Adclicker.ADI] [Trojan.Isbar.866] [W32/NtRootK.GF!tr] [Trojan-Spy.Win32.Sincom] [Downloader-BLA!hv.b] [Troj/NtRootK-GF] [Trojan.Adclicker] [Backdoor.Hupigon.Win32.66319]
45a60cb941aa5fa1fc16f9a6283c3951[W32.HfsIframe.1d28]
7b8a7b149e7b367c8d2d42653273f284[Artemis!7B8A7B149E7B] [WS.Reputation.1] [Startpage.WTF]
f9959417ac8d938452948c66891853ce[BehavesLike.Win32.BadFile.fc] [Win32.Trojan.Fresh.Hcsr] [PossibleThreat.SB!tr.dldr]
3E7917F6E2E4B28C5E18F5AE814AB397
2E0B2B94F91028868856DA54861CA394
A7D18DCA8F33B3C7CA2B8B2224EC00BC

Whois
PropertyValue
Email domainmaster@baidu.com
NameServer NS2.BAIDU.COM
Created 1999-10-11 00:00:00
Changed 2013-10-14 00:00:00
Expires 2015-10-11 00:00:00
Registrar MARKMONITOR INC.

DNS Resolutions
DateIP Address
2010-03-09202.108.23.61 (ClassC)
2013-10-19123.125.115.75 (ClassC)
2013-11-16123.125.115.75 (ClassC)
2014-06-16123.125.70.108 (ClassC)
2014-12-13123.125.70.108 (ClassC)
2015-02-02115.239.211.17 (ClassC)
2015-02-10180.97.33.93 (ClassC)
2015-08-15180.149.131.13 (ClassC)
2015-08-2558.217.200.77 (ClassC)
2015-11-30115.239.217.81 (ClassC)
2016-04-05112.80.255.212 (ClassC)
2016-06-11115.239.217.164 (ClassC)
2016-07-15183.232.231.136 (ClassC)
2016-09-16111.202.114.36 (ClassC)
2016-09-17183.232.231.107 (ClassC)
2017-02-06180.97.36.19 (ClassC)
2018-02-26106.39.162.35 (ClassC)
2018-05-30180.97.104.75 (ClassC)
2018-07-1114.215.177.186 (ClassC)
2018-10-11119.75.222.190 (ClassC)
2019-01-1758.217.200.132 (ClassC)
2019-06-22115.239.217.134 (ClassC)
2019-08-19182.61.200.102 (ClassC)
2019-08-30182.61.62.39 (ClassC)
2025-12-10180.101.49.201 (ClassC)

Port 80

Port 443

Subdomains
DateDomainIP
0.baidu.com2016-09-20112.80.248.165
100.baidu.com2024-09-21180.97.94.12
f10.baidu.com2020-06-181.81.3.36
sf10.baidu.com2024-03-23106.225.194.38
g10.baidu.com2025-12-08110.242.71.103
i10.baidu.com2020-07-20113.113.67.36
t10.baidu.com2020-02-271.193.147.48
g20.baidu.com2025-12-08110.242.71.103
g0.baidu.com2024-05-11180.76.5.78
img0.baidu.com2024-01-16171.214.23.35
gimg0.baidu.com2024-02-20103.235.47.165
dj0.baidu.com2020-03-21112.34.111.158
offmap0.baidu.com2025-12-05104.193.90.80
dapp0.baidu.com2024-05-30111.177.8.47
sp0.baidu.com2015-03-09180.76.3.151
gsp0.baidu.com2019-12-13103.235.46.45
pics0.baidu.com2023-12-22104.193.90.80
mms0.baidu.com2024-08-13117.33.185.38
gips0.baidu.com2024-02-23117.68.52.38
ss0.baidu.com2025-11-13104.193.90.87
gss0.baidu.com2024-03-13180.76.5.109
qpst01.baidu.com2025-12-09110.242.69.147
11.baidu.com2025-03-06182.61.62.50
1111.baidu.com2019-02-07123.125.112.65
f11.baidu.com2020-02-271.193.147.48
g11.baidu.com2024-11-11110.242.68.12
i11.baidu.com2020-07-20113.113.67.36
t11.baidu.com2020-02-271.193.147.48
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information