Help RSS API Feed Maltego Contact                        

Domain > open.baidu.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to open.baidu.com
MD5A/V
e1184fb04077fc067ed56fcfeb335c3a[Riskware/FlyStudio]
a22cb71c1bb17056cf4098aba35e8c12[Win32/Oflwr.A!crypt] [Riskware/FlyStudio] [Win32.SuspectCrc] [Spyware.OnlineGames]
9a86793dc0c302f412ab8e9039c0a87a[W32/QQPass.ELG!tr.pws]
0444b1a5456f8e9ad79151067a44bfa3[TR/Spy.16384.1288]
60f42ddd3ce52f5571edd8674975a15f[Riskware/FlyStudio]
561d57a2a179c594f61ec91e050bccc2[Win32/Oflwr.A!crypt] [Riskware/FlyStudio]
4d6ce3a22438ebba1dee13736e7247db[TR/Rogue.251082] [Riskware/FlyStudio] [Spyware.OnlineGames]
d83926578e8c7e4da13a1d0b0d99e420[Riskware/FlyStudio_Packed]
942ecab1b80babb10fd4bfe005dba16c[Riskware/FlyStudio] [Win32.SuspectCrc] [Spyware.OnlineGames]
4af2acfd8d46f8f9e8eb9c1f69dc0475[Riskware/FlyStudio_Packed]
1095357e7e2ca728031c34ab85e39a96[W32/OnLineGames.AJN!tr]
e5b59f900b193cbb5d1b3ca27560eb54[W32/Trojan.CPKD-7179] [W32/Multi.MULTIPACKED!tr]
2e5512b276607a1b137aae84f19dbe7f[Win32/Oflwr.A!crypt] [Riskware/FlyStudio] [Spyware.OnlineGames]
c8539db43fed5e56a19785461b4d6315[HW32.CDB.72d9] [RDN/PWS-Mmorpg!kn] [WS.Reputation.1] [OnLineGames.LWBP] [Packed/PECompact] [PE:Stealer.QQpass!6.9C2] [Trojan.SuspectCRC]
9514649e788577c15029497e63a8d73d[Win32/Oflwr.A!crypt] [Riskware/FlyStudio_Packed] [Trojan.SuspectCRC]
0be3e4ef2201a1d0595c7073f8369075[TR/Rogue.1523712.6] [Trojan.SuspectCRC] [Downloader.Win32.AdLoad.psmm] [Spyware.OnlineGames] [Mal/VMProtBad-A]
193ebf0a492eb372c61ef7abef4b0d11[TR/Rogue.1339392.11] [Win32/ASuspect.HHDZV] [Win.Trojan.Clons-350] [Trojan.MulDrop3.50568] [Riskware/FlyStudio] [Spyware.OnlineGames] [Pasta]
4e43e3c4e561f5258791c44d2c4fb191[W32.Clod6e5.Trojan.2b15] [Artemis!4E43E3C4E561] [W32/Behav-Heuristic-065] [Backdoor] [Trojan.Win32.BlackHole.dleio] [WS.Reputation.1] [UnclassifiedMalware] [Trojan.DownLoader3.50526] [Heuristic.BehavesLike.Win32.Suspicious-BAY.G] [Backdoor/Blackhole.bux] [Trojan:Win32/Sisproc] [Backdoor.Win32.BlackHole] [Trojan.Win32.Sisproc.AL]
035e97965bac9f0f50eb084a49d29853
2015390e0a03774d54c9e2ba79cac51a[Riskware/FlyStudio_Packed]

Whois
PropertyValue
Email domainmaster@baidu.com
NameServer NS2.BAIDU.COM
Created 1999-10-11 00:00:00
Changed 2013-10-14 00:00:00
Expires 2015-10-11 00:00:00
Registrar MARKMONITOR INC.

DNS Resolutions
DateIP Address
2013-08-19123.125.114.102 (ClassC)
2013-10-11220.181.111.157 (ClassC)
2014-01-24123.125.114.102 (ClassC)
2018-11-0314.215.177.43 (ClassC)
2018-12-0561.135.185.41 (ClassC)
2018-12-0561.135.169.112 (ClassC)
2018-12-20220.181.57.155 (ClassC)
2018-12-20220.181.57.154 (ClassC)
2018-12-2714.215.178.31 (ClassC)
2018-12-2714.215.178.33 (ClassC)
2019-05-21111.206.223.79 (ClassC)
2019-05-21112.80.248.26 (ClassC)
2019-05-21112.80.248.27 (ClassC)
2019-05-21157.255.77.16 (ClassC)
2019-05-21111.206.223.77 (ClassC)
2019-05-21157.255.77.17 (ClassC)
2019-07-19180.101.49.159 (ClassC)
2019-07-19180.101.49.160 (ClassC)
2019-08-02183.232.231.220 (ClassC)
2019-08-02183.232.231.219 (ClassC)
2019-10-01220.181.107.248 (ClassC)
2019-10-01220.181.107.249 (ClassC)
2019-11-22182.61.200.165 (ClassC)
2024-06-14103.235.46.119 (ClassC)
2024-06-17103.235.46.116 (ClassC)
2025-08-0745.113.194.189 (ClassC)
2025-08-1245.113.194.127 (ClassC)

Port 80

Port 443

Subdomains
DateDomainIP
0.baidu.com2016-09-20112.80.248.165
100.baidu.com2024-09-21180.97.94.12
f10.baidu.com2020-06-181.81.3.36
sf10.baidu.com2024-03-23106.225.194.38
g10.baidu.com2025-07-25110.242.71.103
i10.baidu.com2020-07-20113.113.67.36
t10.baidu.com2020-02-271.193.147.48
g20.baidu.com2025-08-12110.242.71.103
g0.baidu.com2024-05-11180.76.5.78
img0.baidu.com2024-01-16171.214.23.35
gimg0.baidu.com2024-02-20103.235.47.165
dj0.baidu.com2020-03-21112.34.111.158
offmap0.baidu.com2025-08-06104.193.90.80
dapp0.baidu.com2024-05-30111.177.8.47
sp0.baidu.com2015-03-09180.76.3.151
gsp0.baidu.com2025-08-06103.235.47.251
pics0.baidu.com2023-12-22104.193.90.80
mms0.baidu.com2024-08-13117.33.185.38
gips0.baidu.com2024-02-23117.68.52.38
ss0.baidu.com2025-08-10104.193.90.87
gss0.baidu.com2024-03-13180.76.5.109
qpst01.baidu.com2025-08-07110.242.69.147
11.baidu.com2025-03-06182.61.62.50
1111.baidu.com2019-02-07123.125.112.65
f11.baidu.com2020-02-271.193.147.48
g11.baidu.com2024-11-11110.242.68.12
i11.baidu.com2020-07-20113.113.67.36
t11.baidu.com2020-02-271.193.147.48
g1.baidu.com2025-08-10110.242.71.103
img1.baidu.com2023-08-05110.185.186.35
ucimg1.baidu.com2024-08-27118.180.40.48
gimg1.baidu.com2023-12-10180.97.64.36
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information