Help RSS API Feed Maltego Contact                        

Domain > hi.baidu.com

Welcome! Right click nodes and scroll the mouse to navigate the graph.
More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to hi.baidu.com

MD5A/V
1a1828bc7b54cdbc844593d2a454cad1[W32/A-8128ee96!Eldorado]
115ecce965247f8ed9ca6cdb69a3a131[Backdoor.Hupigon.275309] [TR/Offend.6266912] [Win32/Oflwr.A!crypt] [Trojan.Danginex.A2] [Worm.Autorun-4618] [BackDoor.BlackHole.19996] [W32/Hupigon.PUG!tr] [SHeur3.CJCC] [Backdoor.Win32.Hupigon] [Trojan*Win32/Danginex] [Trojan.Gnail!484E] [Troj/Danginex-A] [TROJ_AG.DBF0A141] [Backdoor.Hupigon]
e6246a4a1d58f8591ddd0971ac981b9c[TR/Alyak.C.1] [Trojan.Alyak.B3] [Trojan.DownLoader6.58829] [Win32/Alyak.C] [Trojan.Win32.Alyak] [PWS-OnlineGames.lq] [TrojanDownloader*Win32/Kanav.H] [Trojan.DL.Kanav!56EF] [Mal/GamerPWS-D] [TROJ_ALYAK.SMAE] [BScope.Trojan.Win32.Inject.2]
e9ed5a2ba483785c4258446a05112b81[W32/Badur.LKGQ!tr] [Trojan.Win32.Badur.lkgq]
d7aabf05ec9d618b561540a420102bb2[TR/Benban.xt]
61a7ad7b261c51c00bea4275c555685a[Heur.W32] [W32/A-8128ee96!Eldorado] [Win32/Heur]
77a4c556cbe75d4b8f22885b1da99cb9
0e4043d71b63742c750c059acf5d8d6f[TR/Rogue.3690496] [Trojan.DownLoader11.11699] [Riskware/FlyStudio] [Trojan-FDRA!0E4043D71B63]
E64CB214EA2C3C967C2A312057E23958
e1184fb04077fc067ed56fcfeb335c3a[Riskware/FlyStudio]
91a66f47ef7a8a00fe07aea1fdc0a5b7[Win32/Packed.VMProtect.AAA] [W32/FlyStudio_Packed.A] [Win32/Blacked] [VirTool*Win32/Obfuscator.XZ] [Mal/VMProtBad-A]
d62eba31475b6fcf83b1a06bf5bd62f2[Riskware/FlyStudio]
a81760cdf227705a0e17c196114e595f[Riskware/Qhost] [Trojan*W32/DelfInject.R] [HackTool.Sniffer.WpePro]
244b45e8d20744e32852f0c409e5f914[W32/A-cf2e9719!Eldorado] [TR/Graftor.142484.1] [Win32/Tnega.GHHKGOC] [Trojan.Badur.48] [Win32/TrojanDownloader.Raykmerd.A] [W32/Raykmerd.A!tr.dldr] [Trojan-Downloader.Win32.Raykmerd] [Trojan.Win32.Badur.hsua] [RDN/Downloader.a!tx] [TrojanDownloader*Win32/Raykmerd.A] [Trojan.Badur]
dffbeee5a82a1f96bcc5ed68a8ab2e0f[W32/Trojan.CEDF-7582] [TR/Rogue.565865] [Win.Trojan.Expone] [PossibleThreat] [Trojan.Win32.Reconyc.dnro] [Trojan.Dropper]
7e5815ac57ab0ae2029bad3e006082b4[TR/Obfuscate.XZ.12842] [Win32/Oflwr.A!crypt] [Riskware/Qhost] [Trojan*W32/DelfInject.R] [Trojan.Win32.Pincav] [Trojan.Win32.Invader] [VirTool*Win32/Obfuscator.XZ]
1aabb8a3a6ae4eb143635344dbcbbfd9[Mal/VMProtBad-A] [TrojanDropper.Mudrop]
a22cb71c1bb17056cf4098aba35e8c12[Win32/Oflwr.A!crypt] [Riskware/FlyStudio] [Win32.SuspectCrc] [Spyware.OnlineGames]
23B39B1BC8F33A69F5C313CAD18F4371
f898579ed879ae09da0e170b8a7bf8cd

Whois

PropertyValue
Email domainmaster@baidu.com
NameServer NS2.BAIDU.COM
Created 1999-10-11 00:00:00
Changed 2013-10-14 00:00:00
Expires 2015-10-11 00:00:00
Registrar MARKMONITOR INC.

DNS Resolutions

DateIP Address
2013-04-01123.125.115.35 (ClassC)
2013-04-0161.135.185.69 (ClassC)
2013-07-13220.181.112.155 (ClassC)
2013-07-25220.181.163.38 (ClassC)
2013-08-09180.149.132.155 (ClassC)
2013-08-09119.75.219.44 (ClassC)
2013-08-13111.13.12.63 (ClassC)
2013-10-18123.125.65.19 (ClassC)
2013-10-1961.135.162.106 (ClassC)
2013-12-01180.76.2.41 (ClassC)
2014-03-1661.135.162.106 (ClassC)
2015-02-02180.76.2.41 (ClassC)
2015-11-07123.125.114.169 (ClassC)
2017-06-18180.149.144.125 (ClassC)
2017-09-21111.202.114.169 (ClassC)
2017-11-28111.202.114.168 (ClassC)
2017-11-29106.120.159.182 (ClassC)
2018-10-04180.149.131.103 (ClassC)
2020-07-18127.0.28.1 (ClassC)
2020-09-08220.181.107.149 (ClassC)
2020-10-11103.235.47.123 (ClassC)
2020-10-30112.34.111.74 (ClassC)
2020-11-04111.202.114.163 (ClassC)
2020-12-25124.237.176.132 (ClassC)
2021-04-24110.242.68.176 (ClassC)
2021-05-02112.34.111.75 (ClassC)
2021-09-02180.101.50.118 (ClassC)
2021-09-02180.97.34.138 (ClassC)
2022-04-03153.3.236.151 (ClassC)
2022-04-03157.0.148.24 (ClassC)
2022-04-21110.242.68.177 (ClassC)
2022-04-27183.232.231.225 (ClassC)
2022-05-01220.181.107.148 (ClassC)
2022-05-0514.215.177.34 (ClassC)
2022-05-08110.242.68.178 (ClassC)
2022-06-19111.206.209.163 (ClassC)
2022-08-13111.206.209.161 (ClassC)
2023-04-17202.83.24.75 (ClassC)
2025-05-12104.193.88.126 (ClassC)
2025-05-24104.193.88.125 (ClassC)

Port 80

Port 443

Subdomains

DateDomainIP
0.baidu.com2016-09-20112.80.248.165
100.baidu.com2024-09-21180.97.94.12
f10.baidu.com2020-06-201.71.157.36
sf10.baidu.com2024-03-23106.225.194.38
i10.baidu.com2020-07-20113.113.67.36
t10.baidu.com2020-02-271.193.147.48
g20.baidu.com2025-05-15110.242.71.103
g0.baidu.com2024-05-11180.76.5.78
img0.baidu.com2024-01-16171.214.23.35
gimg0.baidu.com2024-02-20103.235.47.165
dj0.baidu.com2020-03-21112.34.111.158
offmap0.baidu.com2025-05-19104.193.90.80
dapp0.baidu.com2024-05-30111.177.8.47
sp0.baidu.com2015-03-09180.76.3.151
gsp0.baidu.com2025-04-23103.235.47.251
pics0.baidu.com2023-12-22104.193.90.80
mms0.baidu.com2024-08-13117.33.185.38
gips0.baidu.com2024-01-31171.214.23.38
ss0.baidu.com2025-05-19104.193.90.87
gss0.baidu.com2024-03-13180.76.5.109
qpst01.baidu.com2025-05-19110.242.69.147
11.baidu.com2025-03-06182.61.62.50
1111.baidu.com2019-02-07123.125.112.65
f11.baidu.com2020-02-271.193.147.48
g11.baidu.com2024-11-11110.242.68.12
i11.baidu.com2020-07-20113.113.67.36
t11.baidu.com2020-02-271.193.147.48
g1.baidu.com2025-05-08110.242.71.103
img1.baidu.com2023-08-05110.185.186.35
ucimg1.baidu.com2024-08-27118.180.40.48
gimg1.baidu.com2023-12-10180.97.64.36
i1.baidu.com2020-06-301.81.3.36
dj1.baidu.com2020-03-05112.34.111.158
m1.baidu.com2019-02-04103.235.47.34
offmap1.baidu.com2025-05-17104.193.90.80
sp1.baidu.com2020-05-12103.235.47.102
gsp1.baidu.com2024-07-04103.235.46.45
q1.baidu.com2019-05-15103.235.47.127
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information