Help RSS API Feed Maltego Contact                        

Domain > hi.baidu.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to hi.baidu.com

MD5A/V
1a1828bc7b54cdbc844593d2a454cad1[W32/A-8128ee96!Eldorado]
115ecce965247f8ed9ca6cdb69a3a131[Backdoor.Hupigon.275309] [TR/Offend.6266912] [Win32/Oflwr.A!crypt] [Trojan.Danginex.A2] [Worm.Autorun-4618] [BackDoor.BlackHole.19996] [W32/Hupigon.PUG!tr] [SHeur3.CJCC] [Backdoor.Win32.Hupigon] [Trojan*Win32/Danginex] [Trojan.Gnail!484E] [Troj/Danginex-A] [TROJ_AG.DBF0A141] [Backdoor.Hupigon]
e6246a4a1d58f8591ddd0971ac981b9c[TR/Alyak.C.1] [Trojan.Alyak.B3] [Trojan.DownLoader6.58829] [Win32/Alyak.C] [Trojan.Win32.Alyak] [PWS-OnlineGames.lq] [TrojanDownloader*Win32/Kanav.H] [Trojan.DL.Kanav!56EF] [Mal/GamerPWS-D] [TROJ_ALYAK.SMAE] [BScope.Trojan.Win32.Inject.2]
e9ed5a2ba483785c4258446a05112b81[W32/Badur.LKGQ!tr] [Trojan.Win32.Badur.lkgq]
d7aabf05ec9d618b561540a420102bb2[TR/Benban.xt]
61a7ad7b261c51c00bea4275c555685a[Heur.W32] [W32/A-8128ee96!Eldorado] [Win32/Heur]
77a4c556cbe75d4b8f22885b1da99cb9
0e4043d71b63742c750c059acf5d8d6f[TR/Rogue.3690496] [Trojan.DownLoader11.11699] [Riskware/FlyStudio] [Trojan-FDRA!0E4043D71B63]
E64CB214EA2C3C967C2A312057E23958
e1184fb04077fc067ed56fcfeb335c3a[Riskware/FlyStudio]
91a66f47ef7a8a00fe07aea1fdc0a5b7[Win32/Packed.VMProtect.AAA] [W32/FlyStudio_Packed.A] [Win32/Blacked] [VirTool*Win32/Obfuscator.XZ] [Mal/VMProtBad-A]
d62eba31475b6fcf83b1a06bf5bd62f2[Riskware/FlyStudio]
a81760cdf227705a0e17c196114e595f[Riskware/Qhost] [Trojan*W32/DelfInject.R] [HackTool.Sniffer.WpePro]
244b45e8d20744e32852f0c409e5f914[W32/A-cf2e9719!Eldorado] [TR/Graftor.142484.1] [Win32/Tnega.GHHKGOC] [Trojan.Badur.48] [Win32/TrojanDownloader.Raykmerd.A] [W32/Raykmerd.A!tr.dldr] [Trojan-Downloader.Win32.Raykmerd] [Trojan.Win32.Badur.hsua] [RDN/Downloader.a!tx] [TrojanDownloader*Win32/Raykmerd.A] [Trojan.Badur]
dffbeee5a82a1f96bcc5ed68a8ab2e0f[W32/Trojan.CEDF-7582] [TR/Rogue.565865] [Win.Trojan.Expone] [PossibleThreat] [Trojan.Win32.Reconyc.dnro] [Trojan.Dropper]
7e5815ac57ab0ae2029bad3e006082b4[TR/Obfuscate.XZ.12842] [Win32/Oflwr.A!crypt] [Riskware/Qhost] [Trojan*W32/DelfInject.R] [Trojan.Win32.Pincav] [Trojan.Win32.Invader] [VirTool*Win32/Obfuscator.XZ]
1aabb8a3a6ae4eb143635344dbcbbfd9[Mal/VMProtBad-A] [TrojanDropper.Mudrop]
a22cb71c1bb17056cf4098aba35e8c12[Win32/Oflwr.A!crypt] [Riskware/FlyStudio] [Win32.SuspectCrc] [Spyware.OnlineGames]
23B39B1BC8F33A69F5C313CAD18F4371
f898579ed879ae09da0e170b8a7bf8cd

Whois

PropertyValue
Email domainmaster@baidu.com
NameServer NS2.BAIDU.COM
Created 1999-10-11 00:00:00
Changed 2013-10-14 00:00:00
Expires 2015-10-11 00:00:00
Registrar MARKMONITOR INC.

DNS Resolutions

DateIP Address
2013-04-01123.125.115.35 (ClassC)
2013-04-0161.135.185.69 (ClassC)
2013-07-13220.181.112.155 (ClassC)
2013-07-25220.181.163.38 (ClassC)
2013-08-09180.149.132.155 (ClassC)
2013-08-09119.75.219.44 (ClassC)
2013-08-13111.13.12.63 (ClassC)
2013-10-18123.125.65.19 (ClassC)
2013-10-1961.135.162.106 (ClassC)
2013-12-01180.76.2.41 (ClassC)
2014-03-1661.135.162.106 (ClassC)
2015-02-02180.76.2.41 (ClassC)
2015-11-07123.125.114.169 (ClassC)
2017-06-18180.149.144.125 (ClassC)
2017-09-21111.202.114.169 (ClassC)
2017-11-28111.202.114.168 (ClassC)
2017-11-29106.120.159.182 (ClassC)
2018-10-04180.149.131.103 (ClassC)
2020-07-18127.0.28.1 (ClassC)
2020-09-08220.181.107.149 (ClassC)
2020-10-11103.235.47.123 (ClassC)
2020-10-30112.34.111.74 (ClassC)
2020-11-04111.202.114.163 (ClassC)
2020-12-25124.237.176.132 (ClassC)
2021-04-24110.242.68.176 (ClassC)
2021-05-02112.34.111.75 (ClassC)
2021-09-02180.101.50.118 (ClassC)
2021-09-02180.97.34.138 (ClassC)
2022-04-03153.3.236.151 (ClassC)
2022-04-03157.0.148.24 (ClassC)
2022-04-21110.242.68.177 (ClassC)
2022-04-27183.232.231.225 (ClassC)
2022-05-01220.181.107.148 (ClassC)
2022-05-0514.215.177.34 (ClassC)
2022-05-08110.242.68.178 (ClassC)
2022-06-19111.206.209.163 (ClassC)
2022-08-13111.206.209.161 (ClassC)
2023-04-17202.83.24.75 (ClassC)
2025-04-14104.193.88.125 (ClassC)
2025-05-12104.193.88.126 (ClassC)

Port 80

Port 443

Subdomains

DateDomainIP
0.baidu.com2016-09-20112.80.248.165
100.baidu.com2024-09-21180.97.94.12
f10.baidu.com2020-06-201.71.157.36
sf10.baidu.com2024-03-23106.225.194.38
i10.baidu.com2020-07-20113.113.67.36
t10.baidu.com2020-02-271.193.147.48
g20.baidu.com2025-04-29110.242.71.103
g0.baidu.com2024-05-11180.76.5.78
img0.baidu.com2024-01-16171.214.23.35
gimg0.baidu.com2024-02-20103.235.47.165
dj0.baidu.com2020-03-21112.34.111.158
offmap0.baidu.com2025-04-26104.193.90.80
dapp0.baidu.com2024-05-30111.177.8.47
sp0.baidu.com2015-03-09180.76.3.151
gsp0.baidu.com2025-04-23103.235.47.251
pics0.baidu.com2023-12-22104.193.90.80
mms0.baidu.com2024-08-13117.33.185.38
gips0.baidu.com2024-01-31171.214.23.38
ss0.baidu.com2025-05-12104.193.90.87
gss0.baidu.com2024-03-13180.76.5.109
qpst01.baidu.com2025-04-26110.242.69.147
11.baidu.com2025-03-06182.61.62.50
1111.baidu.com2019-02-07123.125.112.65
f11.baidu.com2020-02-271.193.147.48
g11.baidu.com2024-11-11110.242.68.12
i11.baidu.com2020-07-20113.113.67.36
t11.baidu.com2020-02-271.193.147.48
g1.baidu.com2025-05-08110.242.71.103
img1.baidu.com2023-08-05110.185.186.35
ucimg1.baidu.com2024-08-27118.180.40.48
gimg1.baidu.com2023-12-10180.97.64.36
i1.baidu.com2020-06-301.81.3.36
dj1.baidu.com2020-03-05112.34.111.158
m1.baidu.com2019-02-04103.235.47.34
offmap1.baidu.com2025-03-29104.193.90.80
sp1.baidu.com2020-05-12103.235.47.102
gsp1.baidu.com2024-07-04103.235.46.45
q1.baidu.com2019-05-15103.235.47.127
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information