Help RSS API Feed Maltego Contact                        

Domain > otf.msn.com

More information on this domain is in AlienVault OTX

Is this malicious?
Most users have voted this as not malicious

Files that talk to otf.msn.com
MD5A/V
3d3c316bd1e112f3b9c532d8b9939bdc
1dc63a529c0d0f5bc896e9d3cbe69968
3de5f82fa8f4b1a62c889d2b56a52470[W32.FamVT.Nimnul.PE] [Win32.Ramnit.N] [Virus/W32.SpyEye] [Virus.Win32.Ramit.1!O] [W32.Ramnit.BA] [Spyware.Zbot] [W32/Ramnit.E] [W32.Ramnit.B!inf] [Ramnit.Q] [Win32/Ramnit.C] [PE_RAMNIT.DEN] [Win32:RmnDrp] [W32.Ramnit-1] [Virus.Win32.Nimnul.a] [Virus.Win32.Nimnul.bmnup] [Win32.Nimnul.A[h]] [Worm.Win32.AutoRun.aaa] [Virus.Win32.Ramnit.K] [Trojan.Packed.140] [Virus.Nimnul.Win32.2] [BehavesLike.Win32.PWSZbot.bc] [W32/Ramnit-A] [Win32/IRCNite.wi] [W32/Ramnit.C] [Virus/Win32.Nimnul.a] [Win32.Ramnit.lx.30720] [Trojan:Win32/Ramnit] [Win32/Ramnit.J] [Virus.Win32.Nimnul.b] [W32/Nimnul.A] [Win32.Ramnit.H] [Win32/Ramnit.H] [PE:Win32.Mgr.b!1594784] [W32/Kryptik.KLV!tr] [Win32/Zbot.G] [Virus.Win32.Nimnul.$a] [Virus.Win32.Ramnit.A]
d91d0fd883f0e9f759c43c4310bc8505[Suspicious.Cloud.5] [Trojan-Dropper.Win32.Injector.larn] [Worm/Kolab.elw]
bce5c7b84d3b7084496f66b7afa98eb1[Worm/Kolab.elw]
4c12f6d84db7438a4f9d2830703f1e6b[Trojan.PWS.Stealer.13336] [Evilware.Outbreak]
317120496f8105f6c6cc78422c9c7100[W32.Sality.PE] [Win32.Sality.3] [Virus/W32.Sality.D] [Trojan.Win32.Krap.1!O] [W32.Sality.U] [Spyware.Zbot] [Win32.Sality.BL] [W32.Sality.AE] [Sality.ZHB] [Win32/Sality.AA] [TSPY_ZBOT.SMHA] [Win32:SaliCode] [Trojan.Ramnit-4] [Worm.Win32.Autorun.icp] [Virus.Win32.Sality.beygb] [Win32.Sality.N[h]] [Worm.Win32.AutoRun.aaa] [Trojan.Packed.140] [Virus.Sality.Win32.20] [BehavesLike.Win32.PWSZbot.ft] [Mal/Sality-D] [W32/Sality.AT] [Virus:Win32/Sality.AT] [Win32/Kashu.E] [Virus.Win32.Sality.bakc] [W32/Sality.AA] [Win32.Sality] [Win32/Sality.NBA] [PE:Win32.KUKU.kt!1591113] [W32/Kryptik.KLV!tr] [Win32/Sality] [Virus.Win32.Sality.$Emu] [Win32/Virus.4fd]
313431393a7dd753bf6f6ab0aae277f9[Win32.Outbreak]
af744ad7617c6af09093bf5e8ce1fbe0[Monitor.Win32.SpectorPro!O] [Trojan.SuspectCRC]
007b2f2f1e987c82021e2e48f21645d0[W32.AcLuC.PE] [Win32.Almanahe.D] [Virus/W32.Alman.B] [Virus.Win32.Almanahe.2!O] [W32.Almanahe.B] [W32/Almanahe.c] [Virus.Alman.Win32.2] [Win32.Alman.B] [W32/Alman.C] [W32.Almanahe.B!inf] [Alman.D] [Win32/Almanahe.F!x386] [PE_CORELINK.C-1] [Win32:Alman] [W32.Alman-2] [Virus.Win32.Alman.b] [Virus.Win32.Alman.xyevp] [PE:Worm.Magistr.g!497223] [Virus.Win32.Alman.A] [Win32.Alman.1] [BehavesLike.Win32.Almanahe.ch] [W32/Alman-C] [Win32/Almana.c] [W32/Alman.BB] [Virus/Win32.Alman.b] [Worm.DLan.c.79872] [Virus:Win32/Almanahe.B] [Win32.Alman.B[h]] [Win32/Alman.C] [Virus.Win32.Alman.B] [W32/Almanahe.C] [Win32.Alman.NAB] [Win32/Alman.NAB] [Virus.Win32.Magister.a] [Virus.Win32.Alman] [W32/Alman.B] [Win32/Alman] [Virus.Win32.Alman.$NAB] [Virus.Win32.Alman.C]
db55b884a8af39331063befe356da54f[W32.BMW.PE] [W32/Stayt.a] [Trojan.Pakes.Win32.18095] [Trojan/Pakes.ago] [W32/Downldr2.BAIE] [W32.Stayt.A!inf] [DLoader.GEJX] [Win32/Bomvot.A] [Win32.Stayt.A] [Virus.Win32.Heur.c] [Virus.Win32.WyCao.b] [W32/Stayt-A] [Win32.HLLW.Autoruner.681] [BehavesLike.Win32.Backdoor.kh] [W32/Downloader.MIGG-9109] [Win32/BMW.a] [W32/Stayt.A] [Win32.BMW.a.57347] [Virus:Win32/Setha.A] [Win32/Stayt] [PE:Win32.BMW.a!1376646] [Backdoor.Win32.Bifrose] [Win32/Small.CU]
f5ef46fe958270b89b552a5f2cfb8e8e[Heur.Win32.Obfuscated.1!O] [Mal/EncPk-ABH] [Worm/Kolab.elw] [W32/Kryptik.BWOY!tr]
43cd42fe47af2256e4414264f49af1a8[Heuristic.BehavesLike.Win32.Suspicious.A]
88dfc4fd2760764b9f802accfaa2a5f7[HW32.Packed.D9F2] [Heur.Win32.Obfuscated.1!O] [HEUR:Trojan.Win32.Invader] [Trojan.Win32.Invader.almo]
116d58d437078411ff24648016a04181[W32.Sality.PE] [Win32.Sality.3] [Virus/W32.Sality.D] [Trojan.Win32.Krap.1!O] [W32.Sality.U] [Spyware.Zbot] [Win32.Sality.BL] [W32.Sality.AE] [Sality.ZHB] [Win32/Sality.AA] [TSPY_ZBOT.SMHA] [Win32:Sality] [Trojan.Ramnit-4] [Worm.Win32.Autorun.icp] [Virus.Win32.Sality.beygb] [Win32.Sality.N[h]] [PE:Win32.KUKU.kt!1591113] [Trojan.Packed.140] [Worm.Zhelatin.Win32.2] [BehavesLike.Win32.PWSZbot.ft] [Mal/Sality-D] [W32/Sality.AT] [Virus:Win32/Sality.AT] [Win32/Kashu.E] [Virus.Win32.Sality.bakc] [W32/Sality.AA] [Win32.Sality] [Win32/Sality.NBA] [Worm.Win32.AutoRun.aaa] [W32/Kryptik.KLV!tr] [Win32/Sality] [Virus.Win32.Sality.$Emu] [Win32/Trojan.1ef]
83ada84c66b72594e0389693d49eaf90[Trojan.Banker.CPL] [Trojan.PWS.ChePro!] [TROJ_BANKER.XXVS] [Trojan-Banker.Win32.ChePro.ink] [Trojan.Win32.ChePro.djyqgf] [UnclassifiedMalware] [BehavesLike.Win32.Pykse.cc] [W32/PWS.MHDJ-2170] [TR/Spy.Banker.135680.2] [Trojan/Win32.Banload] [RDN/PWS-Banker!do] [TrojanBanker.ChePro] [Trojan-Banker.Win32.ChePro] [W32/ChePro.INK!tr] [Downloader.Banload2.UPV]
0006f6d6004c6e31fa92ab049dcc16a6[W32.HfsAutoA.EEC1] [Win32.Almanahe.D] [Virus/W32.Alman.B] [Virus.Win32.Almanahe.2!O] [W32.Almanahe.B] [Win32.Alman.B] [W32/Alman.C] [W32.Almanahe.B!inf] [Alman.D] [Win32/Almanahe.F!x386] [PE_CORELINK.C-1] [Win32:Alman] [W32.Alman-2] [Virus.Win32.Alman.b] [Virus.Win32.Alman.xyevp] [Win32.Alman.B[h]] [PE:Worm.Magistr.g!497223] [Virus.Win32.Alman.A] [Win32.Alman.1] [Virus.Alman.Win32.2] [BehavesLike.Win32.Alisa.gm] [W32/Alman-C] [Win32/Almana.c] [W32/Alman.BB] [Virus/Win32.Alman.b] [Worm.DLan.c.79872] [Virus:Win32/Almanahe.B] [Win32/Alman.C] [W32/Almanahe.c] [Virus.Win32.Alman.B] [W32/Almanahe.C] [Win32.Alman.NAB] [Win32/Alman.NAB] [Virus.Win32.Magister.a] [Virus.Win32.Alman] [W32/Alman.B] [Win32/Alman] [Virus.Win32.Alman.$NAB] [Virus.Win32.Alman.C]
45bf6ed989a903cf9c6de6c5300081ee
6079452bdec695b9d0cca6d6b3d2298b[Trojan-Dropper.Win32.Injector.lafh] [Virus.Win32.Heur.l] [Mal/EncPk-ABH] [W32/Kryptik.BWOY!tr]
07c8bb105ab8f6da3699573616a3a84c[W32.Clodf1c.Trojan.3ce6] [W32.Downloader.B] [Artemis!07C8BB105AB8] [W32/Dianyz.a] [Trojan.Win32.Dianyz.onei] [W32/Vimes.A] [W32.Fubalca] [DLoader.KURC] [BKDR_CECKNO1.A] [Win32:Vimes] [Trojan.Small-1571] [Worm.Win32.Dianyz.a] [Win32.Barime.A] [W32/Whld-B] [Worm.Win32.Dianyaz.A] [Win32.HLLP.Tongji] [Heuristic.LooksLike.Win32.SuspiciousPE.J] [Worm/Dianyz.h] [Win32.msmig.c.2048] [Virus:Win32/Vimes.C] [Worm.Win32.A.Dianyz.316928] [Win32/Douate.A] [Worm.Fujack] [Worm.Win32.Dianyz.AP] [PE:Worm.Win32.Autorun.fqh!1075223717] [Trojan-PWS.Win32.OnLineGames] [W32/Whld.B!tr.bdr] [Worm/Butileg.M] [Trj/CI.A] [Virus.Win32.Vimes.A]

Whois
PropertyValue
Email domains@microsoft.com
NameServer NS2.MSFT.NET
Created 1994-11-10 00:00:00
Changed 2014-10-08 00:00:00
Expires 2022-06-04 00:00:00
Registrar MARKMONITOR INC.

DNS Resolutions
DateIP Address
2014-09-08168.63.138.84 (ClassC)
2014-09-09138.91.89.250 (ClassC)
2014-10-04137.116.81.24 (ClassC)
2014-10-10138.91.89.250 (ClassC)
2014-10-13137.135.179.251 (ClassC)
2014-11-12137.135.179.251 (ClassC)
2015-07-28104.43.164.43 (ClassC)
2015-07-30104.47.153.35 (ClassC)
2015-12-17191.238.172.117 (ClassC)
2016-01-1123.98.150.94 (ClassC)
2019-01-2340.127.142.76 (ClassC)
2019-04-30104.40.210.32 (ClassC)
2019-05-26104.43.203.255 (ClassC)
2020-10-2040.118.160.210 (ClassC)
2020-11-2540.114.54.223 (ClassC)
2025-08-11204.79.197.203 (ClassC)

Subdomains
DateDomainIP
0.msn.com2025-08-09204.79.197.203
cimail200.msn.com2025-08-04207.46.179.200
stb00.msn.com2013-11-0723.199.237.123
estb00.msn.com2015-01-30191.238.42.36
g00.msn.com2025-08-05204.79.197.203
tu9srvbirvvtnsrwci1iac55ynauewfob28uy29t.g00.msn.com2019-10-09192.33.31.80
c-5uwzmx78pmca09x24aiux2euavx2ekwu.g00.msn.com2025-08-04204.79.197.203
stbjp00.msn.com2013-11-0723.204.157.123
stbkr00.msn.com2013-11-07204.2.222.34
vod.olympics2010.msn.com2024-11-1923.219.78.77
cimail210.msn.com2025-07-11207.46.179.210
arc10.msn.com2025-08-10204.79.197.203
toshiba17win10.msn.com2025-08-08204.79.197.203
panasonic17win10.msn.com2025-07-11204.79.197.203
lg17win10.msn.com2025-08-11204.79.197.203
dell17win10.msn.com2025-08-05204.79.197.203
oem17win10.msn.com2025-08-05204.79.197.203
lenovo17win10.msn.com2025-08-03204.79.197.203
hp17win10.msn.com2025-08-06204.79.197.203
acer17win10.msn.com2025-08-07204.79.197.203
3dacer17win10.msn.com2025-08-02204.79.197.203
asus17win10.msn.com2025-08-04204.79.197.203
fujitsu17win10.msn.com2025-07-10204.79.197.203
dell17prewin10.msn.com2025-08-05204.79.197.203
lenovo17prewin10.msn.com2025-07-16204.79.197.203
hp17prewin10.msn.com2025-08-06204.79.197.203
dell17swin10.msn.com2025-08-05204.79.197.203
lenovo17swin10.msn.com2025-07-12204.79.197.203
acer17swin10.msn.com2025-07-30204.79.197.203
asus17swin10.msn.com2025-07-17204.79.197.203
jwe-irissmtp10.msn.com2025-08-07204.79.197.203
ns10.msn.com2025-08-07207.68.149.145
cimail230.msn.com2025-07-12207.46.179.230
0330.msn.com2025-08-11204.79.197.203
cimail170.msn.com2025-07-20207.46.179.170
cimail190.msn.com2025-08-04207.46.179.190
settings.location.1.msn.com2014-05-1865.55.17.76
cimail201.msn.com2025-07-10207.46.179.201
cpdcsmtpb01.msn.com2025-08-07207.46.208.152
stb01.msn.com2013-11-0723.204.157.123
estb01.msn.com2013-11-0723.204.157.123
ch1gmehub01.msn.com2025-08-11207.46.200.25
cpdcpubc01.msn.com2025-08-07207.46.208.170
jwe-irissmtp01.msn.com2025-08-06204.79.197.203
stbkr01.msn.com2013-11-07204.0.87.51
arc11.msn.com2025-07-12204.79.197.203
acdmtest11.msn.com2025-08-07207.46.179.250
acdmtest21.msn.com2025-08-10207.46.179.252
cimail231.msn.com2025-08-04207.46.179.231
cimail171.msn.com2025-08-05207.46.179.171
msnbcmedia1.msn.com2014-07-2765.126.84.25
arc1.msn.com2015-09-1765.55.2.6
h1.msn.com2014-01-08207.46.206.11
smtpa-co1.msn.com2025-08-05204.79.197.203
smtpi-co1.msn.com2018-08-2165.55.52.236
login.secure.co1.msn.com2014-12-25191.238.42.36
socialcf.co1.msn.com2014-10-10191.238.42.36
sps.co1.msn.com2025-08-0752.250.90.187
go1.msn.com2025-08-06204.79.197.203
hp1.msn.com2013-06-1765.54.80.245
ntp1.msn.com2025-08-06204.79.197.203
ads1.msn.com2014-10-08204.160.124.125
a.ads1.msn.com2014-07-078.27.246.126
b.ads1.msn.com2014-02-118.27.84.254
ecnads1.msn.com2025-01-0172.21.81.200
accounts1.msn.com2025-08-11204.79.197.203
int1.msn.com2025-05-05150.171.28.12
superapp-int1.msn.com2025-06-0223.55.168.137
ntp-int1.msn.com2025-02-0523.210.40.20
windows-int1.msn.com2025-02-14204.79.197.203
msniadekv1.msn.com2025-08-06204.79.197.203
msniakeyvaultv1.msn.com2025-08-06204.79.197.203
jwe-irissmtp02.msn.com2021-12-2520.63.210.193
12.msn.com2025-08-03204.79.197.203
cimail212.msn.com2025-08-04207.46.179.212
ch1gmehub12.msn.com2025-07-10207.46.200.16
acdmtest12.msn.com2025-07-12207.46.179.251
22.msn.com2025-08-10204.79.197.203
acdmtest22.msn.com2025-07-10207.46.179.253
cimail232.msn.com2025-08-04207.46.179.232
cimail172.msn.com2025-08-06207.46.179.172
cimail182.msn.com2025-07-17207.46.179.182
msnbcmedia2.msn.com2014-07-1665.126.84.25
1238468-db2.msn.com2025-08-03204.79.197.203
expdb2.msn.com2025-08-05204.79.197.203
ac2.msn.com2025-08-07204.79.197.203
arc2.msn.com2025-08-10204.79.197.203
cf2.msn.com2024-07-0852.179.238.226
texreg2.msn.com2013-12-03157.56.65.27
wlid-ids-texreg2.msn.com2025-08-09204.79.197.203
h2.msn.com2013-06-1865.54.80.249
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information