Help RSS API Feed Maltego Contact                        

Domain > open.baidu.com

Welcome! Right click nodes and scroll the mouse to navigate the graph.
More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to open.baidu.com
MD5A/V
e1184fb04077fc067ed56fcfeb335c3a[Riskware/FlyStudio]
a22cb71c1bb17056cf4098aba35e8c12[Win32/Oflwr.A!crypt] [Riskware/FlyStudio] [Win32.SuspectCrc] [Spyware.OnlineGames]
9a86793dc0c302f412ab8e9039c0a87a[W32/QQPass.ELG!tr.pws]
0444b1a5456f8e9ad79151067a44bfa3[TR/Spy.16384.1288]
60f42ddd3ce52f5571edd8674975a15f[Riskware/FlyStudio]
561d57a2a179c594f61ec91e050bccc2[Win32/Oflwr.A!crypt] [Riskware/FlyStudio]
4d6ce3a22438ebba1dee13736e7247db[TR/Rogue.251082] [Riskware/FlyStudio] [Spyware.OnlineGames]
d83926578e8c7e4da13a1d0b0d99e420[Riskware/FlyStudio_Packed]
942ecab1b80babb10fd4bfe005dba16c[Riskware/FlyStudio] [Win32.SuspectCrc] [Spyware.OnlineGames]
4af2acfd8d46f8f9e8eb9c1f69dc0475[Riskware/FlyStudio_Packed]
1095357e7e2ca728031c34ab85e39a96[W32/OnLineGames.AJN!tr]
e5b59f900b193cbb5d1b3ca27560eb54[W32/Trojan.CPKD-7179] [W32/Multi.MULTIPACKED!tr]
2e5512b276607a1b137aae84f19dbe7f[Win32/Oflwr.A!crypt] [Riskware/FlyStudio] [Spyware.OnlineGames]
c8539db43fed5e56a19785461b4d6315[HW32.CDB.72d9] [RDN/PWS-Mmorpg!kn] [WS.Reputation.1] [OnLineGames.LWBP] [Packed/PECompact] [PE:Stealer.QQpass!6.9C2] [Trojan.SuspectCRC]
9514649e788577c15029497e63a8d73d[Win32/Oflwr.A!crypt] [Riskware/FlyStudio_Packed] [Trojan.SuspectCRC]
0be3e4ef2201a1d0595c7073f8369075[TR/Rogue.1523712.6] [Trojan.SuspectCRC] [Downloader.Win32.AdLoad.psmm] [Spyware.OnlineGames] [Mal/VMProtBad-A]
193ebf0a492eb372c61ef7abef4b0d11[TR/Rogue.1339392.11] [Win32/ASuspect.HHDZV] [Win.Trojan.Clons-350] [Trojan.MulDrop3.50568] [Riskware/FlyStudio] [Spyware.OnlineGames] [Pasta]
4e43e3c4e561f5258791c44d2c4fb191[W32.Clod6e5.Trojan.2b15] [Artemis!4E43E3C4E561] [W32/Behav-Heuristic-065] [Backdoor] [Trojan.Win32.BlackHole.dleio] [WS.Reputation.1] [UnclassifiedMalware] [Trojan.DownLoader3.50526] [Heuristic.BehavesLike.Win32.Suspicious-BAY.G] [Backdoor/Blackhole.bux] [Trojan:Win32/Sisproc] [Backdoor.Win32.BlackHole] [Trojan.Win32.Sisproc.AL]
035e97965bac9f0f50eb084a49d29853
2015390e0a03774d54c9e2ba79cac51a[Riskware/FlyStudio_Packed]

Whois
PropertyValue
Email domainmaster@baidu.com
NameServer NS2.BAIDU.COM
Created 1999-10-11 00:00:00
Changed 2013-10-14 00:00:00
Expires 2015-10-11 00:00:00
Registrar MARKMONITOR INC.

DNS Resolutions
DateIP Address
2013-08-19123.125.114.102 (ClassC)
2013-10-11220.181.111.157 (ClassC)
2014-01-24123.125.114.102 (ClassC)
2018-11-0314.215.177.43 (ClassC)
2018-12-0561.135.185.41 (ClassC)
2018-12-0561.135.169.112 (ClassC)
2018-12-20220.181.57.155 (ClassC)
2018-12-20220.181.57.154 (ClassC)
2018-12-2714.215.178.31 (ClassC)
2018-12-2714.215.178.33 (ClassC)
2019-05-21111.206.223.79 (ClassC)
2019-05-21112.80.248.26 (ClassC)
2019-05-21112.80.248.27 (ClassC)
2019-05-21157.255.77.16 (ClassC)
2019-05-21111.206.223.77 (ClassC)
2019-05-21157.255.77.17 (ClassC)
2019-07-19180.101.49.159 (ClassC)
2019-07-19180.101.49.160 (ClassC)
2019-08-02183.232.231.220 (ClassC)
2019-08-02183.232.231.219 (ClassC)
2019-10-01220.181.107.248 (ClassC)
2019-10-01220.181.107.249 (ClassC)
2019-11-22182.61.200.165 (ClassC)
2024-06-14103.235.46.119 (ClassC)
2024-06-17103.235.46.116 (ClassC)
2025-04-0845.113.194.127 (ClassC)
2025-05-1745.113.194.189 (ClassC)

Port 80

Port 443

Subdomains
DateDomainIP
0.baidu.com2016-09-20112.80.248.165
100.baidu.com2024-09-21180.97.94.12
f10.baidu.com2020-06-201.71.157.36
sf10.baidu.com2024-03-23106.225.194.38
i10.baidu.com2020-07-20113.113.67.36
t10.baidu.com2020-02-271.193.147.48
g20.baidu.com2025-05-15110.242.71.103
g0.baidu.com2024-05-11180.76.5.78
img0.baidu.com2024-01-16171.214.23.35
gimg0.baidu.com2024-02-20103.235.47.165
dj0.baidu.com2020-03-21112.34.111.158
offmap0.baidu.com2025-04-26104.193.90.80
dapp0.baidu.com2024-05-30111.177.8.47
sp0.baidu.com2015-03-09180.76.3.151
gsp0.baidu.com2025-04-23103.235.47.251
pics0.baidu.com2023-12-22104.193.90.80
mms0.baidu.com2024-08-13117.33.185.38
gips0.baidu.com2024-01-31171.214.23.38
ss0.baidu.com2025-05-12104.193.90.87
gss0.baidu.com2024-03-13180.76.5.109
qpst01.baidu.com2025-05-12110.242.69.147
11.baidu.com2025-03-06182.61.62.50
1111.baidu.com2019-02-07123.125.112.65
f11.baidu.com2020-02-271.193.147.48
g11.baidu.com2024-11-11110.242.68.12
i11.baidu.com2020-07-20113.113.67.36
t11.baidu.com2020-02-271.193.147.48
g1.baidu.com2025-05-08110.242.71.103
img1.baidu.com2023-08-05110.185.186.35
ucimg1.baidu.com2024-08-27118.180.40.48
gimg1.baidu.com2023-12-10180.97.64.36
i1.baidu.com2020-06-301.81.3.36
dj1.baidu.com2020-03-05112.34.111.158
m1.baidu.com2019-02-04103.235.47.34
offmap1.baidu.com2025-05-17104.193.90.80
sp1.baidu.com2020-05-12103.235.47.102
gsp1.baidu.com2024-07-04103.235.46.45
q1.baidu.com2019-05-15103.235.47.127
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information