Domain > ajax.aspnetcdn.com

More information on this domain is in AlienVault OTX

Is this malicious?

Most users have voted this as not malicious

Reports

https://otx.alienvault.com/pulse/56e701034637f24cb...

https://blogs.sophos.com/2016/01/06/the-current-st...

https://www.virustotal.com/en/file/e12405096f83b30...

Files that talk to ajax.aspnetcdn.com

MD5	A/V
cdb473292c17161bcc52d79b886aeaf8
545e00a63f86bc926f12abeff4b6f55b	[HW32.CDB.08f9] [Trojan.Dropper.WLW] [BackDoor-FBYQ!545E00A63F86] [Trojan.Win32.Simda.cwzntt] [WS.Reputation.1] [Simda.TGZ] [Win32/Simda.fGXWUID] [Backdoor.Win32.Simda.acni] [Backdoor.Simda!fVXCs6GH0vg] [Trojan.Rodricter.153] [TR/Drop.WLW] [Troj/Medfos-GA] [Trojan[Backdoor]/Win32.Simda] [Backdoor:Win32/Simda.AT] [Trojan/Win32.Simda] [Malware-Cryptor.ImgChk] [Win32/Simda.B] [PE:Malware.XPACK-LNR/Heur!1.5594] [Backdoor.Win32.Simda] [Simda.MF] [Trojan.Win32.Simda.B]
8496602e505914092cf8ed21b0fa1e36	[PUP.Optional.OpenCandy] [Trojan.Win32.OpenCandy.cumlgz] [Adware.OpenCandy.3] [Win32/OpenCandy]
DD63B9136B7A6D048FE844FC2170D7B0
cbd6f6848a393bc158d7ec3a4783992e	[Backdoor/W32.Bifrose.727040.B] [Heuristic.BehavesLike.Win32.Suspicious-BAY.G] [Application/ScreenSpy]
9b5d63c008d706b2060db322992e7369
040eddf711916114da3a0260463ca1eb	[W32.Pharoh.PE] [Virus/W32.Mabezat] [W32.Mabezat.B] [W32/Mabezat.a] [Trojan.FakeMS.ED] [Virus.Win32.Mazebat.rspj] [W32/Mabezat.A-1] [W32.Mabezat.B!inf] [Mabezat.B] [Win32/Mabezat.B] [PE_MABEZAT.B-2] [W32.Mabezat-1] [Worm.Win32.Mabezat.b] [Worm.Mabezat.C] [Win32.Mabezat.B] [Worm.Win32.Mabezat.b8] [Win32.HLLW.Tazebama] [Backdoor.PePatch.Win32.36590] [W32/Mabezat] [W32/Mabezat-B] [Win32/Mabezat.b] [Worm/Win32.Mabezat.b] [Win32.Mabezat.b.1038191] [Virus:Win32/Mabezat.B] [Win32/Mabezat] [Worm.Win32.Mabezat.A] [W32/Mabezat.C] [Win32/Mabezat.A] [PE:Win32.Mabezat.b!1331113] [Worm.Win32.Mabezat] [W32/Mabezat.B] [Virus.Win32.Mabezat.$b] [Virus.Win32.Mabezat.A]
91d2e7b6ba3e75cb04f4159f03e281dc
8a5422c7d2514d7ad0ed912593547009	[W32/Behav-Heuristic-CorruptFile-EP] [Kryptik.STUB] [not-a-virus:RiskTool.Win32.PwDump.e] [Heur.Corrupt.PE] [Trojan.PWS.Stealer.13336] [TrojanSpy:MSIL/Golroted.B] [Trojan/Win32.Golroted]
599d9dddd040ee1f4b38574d98ffdc78	[Simda.THQ] [Backdoor.Win32.Simda.acnl] [Trojan.Win32.Kryptik.CAMG] [PE:Malware.XPACK-LNR/Heur!1.5594]
b76e69ff5f46e5b2c588d0e7678e5e5e
7f594afe8f5ff84f97382880c321d62d
008d61c7e71f71815810ccacf54f4fc2
3912275669f578d91e93c683108d3e89
e22c61fcf2247d259f3f6433e307f39d	[Trojan.Win32.OpenCandy.cumlgz] [Adware.OpenCandy.3] [Win32/OpenCandy]
638ac362923372c589252f41b53ce2f7
39b23767ab02ccd7834a5050c17b2fff	[WebToolbar.Win32.RK!O]
8223ec1c2aa71503b431a0daabb23154
a33e9ab9be03cae562d38d97a2541e48	[HW32.CDB.E1df] [Backdoor/W32.Simda.678912.B] [Artemis!A33E9AB9BE03] [Backdoor.Simda!rP468Poch/A] [Simda.THU] [Win32/Simda.MCUJZaC] [Backdoor.Win32.Simda.acrh] [Trojan.Win32.Simda.cxghsc] [Trojan.Rodricter.153] [Trojan[Backdoor]/Win32.Simda] [Win32.Hack.Simda.ac.(kcloud)] [Backdoor:Win32/Simda.AT] [Win32/Simda.B] [PE:Malware.XPACK-LNR/Heur!1.5594] [W32/Simda.ACRH!tr]
a26c54127b1ef67f329f720e1dc1a3e6	[Packed.Win32.TDSS.1!O] [Simda.THQ] [Backdoor.Win32.Simda.acnm] [Trojan.Dropper.WMA] [Win32/Simda.B] [PE:Malware.XPACK-LNR/Heur!1.5594]

Whois

Property	Value
Email	domains@microsoft.com
NameServer	NS2.MSFT.NET
Created	2010-10-12 00:00:00
Changed	2014-11-04 00:00:00
Expires	2015-10-12 00:00:00
Registrar	MARKMONITOR INC.

DNS Resolutions

Date	IP Address
2013-04-01	65.54.80.210 (ClassC)
2013-04-01	65.54.81.45 (ClassC)
2013-04-01	65.54.81.122 (ClassC)
2013-04-01	65.54.80.203 (ClassC)
2013-04-01	65.54.81.175 (ClassC)
2013-04-01	65.54.81.161 (ClassC)
2013-04-01	65.54.93.36 (ClassC)
2013-04-01	65.54.81.189 (ClassC)
2013-04-01	65.54.81.85 (ClassC)
2013-04-01	65.54.80.208 (ClassC)
2013-04-01	65.54.81.38 (ClassC)
2013-04-01	65.54.81.112 (ClassC)
2013-04-01	65.54.93.80 (ClassC)
2013-04-01	65.54.81.4 (ClassC)
2013-04-01	65.54.81.12 (ClassC)
2013-04-06	65.54.81.162 (ClassC)
2013-04-21	65.54.89.230 (ClassC)
2013-05-02	65.54.81.66 (ClassC)
2013-05-02	213.199.148.160 (ClassC)
2013-05-04	65.54.80.209 (ClassC)
2013-05-15	65.54.81.166 (ClassC)
2013-05-15	213.199.148.163 (ClassC)
2013-05-16	65.54.80.184 (ClassC)
2013-05-17	65.54.93.22 (ClassC)
2013-05-17	65.54.92.147 (ClassC)
2013-05-20	65.54.93.16 (ClassC)
2013-05-20	65.54.81.101 (ClassC)
2013-05-20	65.54.93.46 (ClassC)
2013-05-20	213.199.149.71 (ClassC)
2013-05-20	65.54.93.145 (ClassC)
2013-05-22	65.54.93.82 (ClassC)
2013-05-24	65.54.80.204 (ClassC)
2013-05-26	213.199.149.87 (ClassC)
2013-05-27	65.54.89.235 (ClassC)
2013-05-29	65.54.80.214 (ClassC)
2013-06-03	65.54.80.182 (ClassC)
2013-06-05	213.199.149.159 (ClassC)
2013-06-05	213.199.149.19 (ClassC)
2013-06-05	65.54.89.159 (ClassC)
2013-06-06	213.199.148.134 (ClassC)
2013-06-07	65.54.89.166 (ClassC)
2013-06-07	65.54.89.216 (ClassC)
2013-06-09	213.199.149.56 (ClassC)
2013-06-10	213.199.149.117 (ClassC)
2013-06-11	65.54.89.117 (ClassC)
2013-06-15	65.54.81.172 (ClassC)
2013-06-16	65.54.89.225 (ClassC)
2013-06-17	65.54.80.202 (ClassC)
2013-06-18	65.54.81.86 (ClassC)
2013-06-19	65.54.89.212 (ClassC)
2013-07-01	65.55.87.91 (ClassC)
2013-07-01	213.199.149.252 (ClassC)
2013-07-04	65.55.87.25 (ClassC)
2013-07-08	65.54.89.155 (ClassC)
2013-07-08	65.54.89.218 (ClassC)
2013-07-09	65.54.89.157 (ClassC)
2013-07-10	65.55.87.227 (ClassC)
2013-07-10	65.55.87.149 (ClassC)
2013-07-11	65.54.89.40 (ClassC)
2013-07-11	65.54.89.5 (ClassC)
2013-07-19	213.199.149.158 (ClassC)
2013-07-21	213.199.148.243 (ClassC)
2013-07-23	213.199.149.106 (ClassC)
2013-07-25	213.199.148.150 (ClassC)
2013-07-25	207.46.206.151 (ClassC)
2013-07-28	207.46.206.24 (ClassC)
2013-07-29	213.199.149.60 (ClassC)
2013-07-30	213.199.149.29 (ClassC)
2013-07-31	213.199.149.81 (ClassC)
2013-08-08	65.54.89.172 (ClassC)
2013-08-13	207.46.206.114 (ClassC)
2013-08-13	207.46.206.28 (ClassC)
2013-08-14	65.54.89.113 (ClassC)
2013-08-14	65.55.87.177 (ClassC)
2013-08-14	65.54.89.150 (ClassC)
2013-08-14	213.199.149.241 (ClassC)
2013-08-15	213.199.149.133 (ClassC)
2013-08-16	213.199.148.142 (ClassC)
2013-08-16	213.199.148.137 (ClassC)
2013-08-17	65.54.89.134 (ClassC)
2013-08-19	65.55.87.47 (ClassC)
2013-08-24	65.55.87.182 (ClassC)
2013-08-24	65.55.87.55 (ClassC)
2013-08-24	65.55.87.214 (ClassC)
2013-08-25	65.55.87.178 (ClassC)
2013-08-25	65.55.87.223 (ClassC)
2013-08-26	65.55.87.228 (ClassC)
2013-08-27	65.55.87.213 (ClassC)
2013-08-27	65.55.87.218 (ClassC)
2013-08-29	65.55.87.224 (ClassC)
2013-09-02	65.55.87.117 (ClassC)
2013-09-13	65.55.87.215 (ClassC)
2013-09-17	65.55.87.59 (ClassC)
2013-09-23	65.55.87.74 (ClassC)
2013-09-25	65.55.87.46 (ClassC)
2013-09-27	207.46.206.163 (ClassC)
2013-09-28	207.46.206.7 (ClassC)
2013-10-04	65.54.89.126 (ClassC)
2013-10-07	207.46.206.10 (ClassC)
2013-10-09	207.46.206.45 (ClassC)
2013-10-10	207.46.206.56 (ClassC)
2013-10-10	207.46.206.136 (ClassC)
2013-10-11	207.46.206.30 (ClassC)
2013-10-12	207.46.206.18 (ClassC)
2013-10-13	207.46.206.31 (ClassC)
2013-10-15	207.46.206.153 (ClassC)
2013-10-17	207.46.206.57 (ClassC)
2013-10-19	207.46.206.53 (ClassC)
2013-10-21	207.46.206.137 (ClassC)
2013-10-25	207.46.206.140 (ClassC)
2013-10-27	207.46.206.127 (ClassC)
2013-10-29	65.54.89.40 (ClassC)
2013-11-04	207.46.206.141 (ClassC)
2013-11-06	65.55.87.34 (ClassC)
2013-11-10	207.46.206.165 (ClassC)
2013-11-11	65.55.87.21 (ClassC)
2013-11-11	65.55.87.120 (ClassC)
2013-11-14	65.55.87.212 (ClassC)
2013-11-14	65.55.87.217 (ClassC)
2013-11-14	65.54.89.218 (ClassC)
2013-11-14	65.55.87.164 (ClassC)
2013-11-16	65.55.87.216 (ClassC)
2013-11-18	65.55.87.103 (ClassC)
2013-11-18	65.55.87.183 (ClassC)
2013-11-19	65.55.87.81 (ClassC)
2013-11-20	65.55.87.128 (ClassC)
2013-11-22	65.55.87.147 (ClassC)
2013-11-25	65.54.89.79 (ClassC)
2013-11-25	65.55.87.20 (ClassC)
2013-11-27	207.46.206.177 (ClassC)
2013-11-27	207.46.206.179 (ClassC)
2013-12-04	207.46.206.154 (ClassC)
2013-12-05	207.46.206.16 (ClassC)
2013-12-05	207.46.206.32 (ClassC)
2013-12-08	207.46.206.47 (ClassC)
2013-12-10	207.46.206.70 (ClassC)
2013-12-10	207.46.206.123 (ClassC)
2013-12-10	207.46.206.102 (ClassC)
2013-12-10	207.46.206.78 (ClassC)
2013-12-10	207.46.206.39 (ClassC)
2014-01-17	65.54.89.216 (ClassC)
2014-01-26	65.54.89.63 (ClassC)
2014-01-26	65.54.89.192 (ClassC)
2014-01-29	65.54.89.225 (ClassC)
2014-02-01	65.54.89.62 (ClassC)
2014-02-07	65.54.89.244 (ClassC)
2014-02-08	65.54.89.134 (ClassC)
2014-02-14	65.55.87.176 (ClassC)
2014-03-02	65.54.89.146 (ClassC)
2014-03-06	207.46.206.109 (ClassC)
2014-03-12	65.54.89.235 (ClassC)
2014-03-19	207.46.206.105 (ClassC)
2014-03-25	93.184.215.200 (ClassC)
2014-03-25	93.184.215.201 (ClassC)
2014-05-16	68.232.34.201 (ClassC)
2014-06-19	68.232.34.200 (ClassC)
2014-06-24	68.232.34.200 (ClassC)
2014-12-10	93.184.215.200 (ClassC)
2017-09-08	117.18.232.200 (ClassC)
2018-03-30	93.184.221.200 (ClassC)
2018-04-17	152.199.20.1 (ClassC)
2018-04-18	93.184.221.201 (ClassC)
2018-11-08	72.21.81.200 (ClassC)
2019-05-25	152.199.19.160 (ClassC)
2019-10-20	192.16.48.200 (ClassC)
2025-01-14	152.199.4.33 (ClassC)
2025-01-24	104.96.203.9 (ClassC)
2025-01-24	184.25.119.145 (ClassC)
2025-02-06	23.43.242.120 (ClassC)
2025-02-11	104.98.118.171 (ClassC)
2025-02-25	23.213.34.172 (ClassC)
2025-02-26	72.247.182.80 (ClassC)
2025-03-05	23.216.145.154 (ClassC)
2025-03-11	23.39.46.25 (ClassC)
2025-03-16	23.46.228.43 (ClassC)
2025-03-30	23.206.171.43 (ClassC)
2025-04-07	23.46.228.17 (ClassC)
2025-04-22	23.216.147.33 (ClassC)
2025-04-28	104.96.203.18 (ClassC)
2025-05-12	104.96.203.48 (ClassC)
2025-06-02	23.46.228.48 (ClassC)
2025-06-05	23.206.171.49 (ClassC)

Port 80

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]