ScanMalware.com

Security Scan Report: msoid.ote-godaddy.cn

Redirected to: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=639038124073610244.YjdmMDQ1N2YtN2JmZC00ZmI1LWFmNWYtNzJiMTFmMzljOWVjNWQyZDgzMzgtMzM5My00OTMyLWExZGMtZjk0MmZhMTliNjYw&ui_locales=en-US&mkt=en-US&client-request-id=3157cdd8-c325-476b-8391-e8ae3e8d3a5e&state=92jyWJl8zYTPzsIP3Vj72wTQTJbDHRcABxG4tloDTw0JP2pfpbFZc_Lgzx3pY0HzyHVwJLQfZEAyca1gi3M2MRKrJGNbbu7PDkoveLDbY2gr_PeaH-QqdJwvABZGDd1KX1Qsn3hT-KigtbaKthX_Kv1ooirkOSWT2ZuULz_FXh45Kk2bOK9_ZrSkXJwKvJCnEK8Z3Y7d41LAB2qbPY28xPgYxbM4w_xvowCRHtUEGcenhnIUzBEVWJSlfPEuQvsN4xxIfffS6iz13tCIbQVd39-C4j4T_-VIpkSjbCtS9ec&x-client-SKU=ID_NET8_0&x-client-ver=8.5.0.0&sso_reload=true

Submitted: Jan 12, 2026, 10:56:41 AMCompleted: Jan 12, 2026, 11:01:31 AMpubliccompleted
Loading additional data...

Summary

This website contacted 6 IPs in 3 countries across 6 domains to perform 30 HTTP transactions. The main domain is login.microsoftonline.com and was registered NaN years ago.

Submitted URL: https://msoid.ote-godaddy.cn

Effective URL: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=639038124073610244.YjdmMDQ1N2YtN2JmZC00ZmI1LWFmNWYtNzJiMTFmMzljOWVjNWQyZDgzMzgtMzM5My00OTMyLWExZGMtZjk0MmZhMTliNjYw&ui_locales=en-US&mkt=en-US&client-request-id=3157cdd8-c325-476b-8391-e8ae3e8d3a5e&state=92jyWJl8zYTPzsIP3Vj72wTQTJbDHRcABxG4tloDTw0JP2pfpbFZc_Lgzx3pY0HzyHVwJLQfZEAyca1gi3M2MRKrJGNbbu7PDkoveLDbY2gr_PeaH-QqdJwvABZGDd1KX1Qsn3hT-KigtbaKthX_Kv1ooirkOSWT2ZuULz_FXh45Kk2bOK9_ZrSkXJwKvJCnEK8Z3Y7d41LAB2qbPY28xPgYxbM4w_xvowCRHtUEGcenhnIUzBEVWJSlfPEuQvsN4xxIfffS6iz13tCIbQVd39-C4j4T_-VIpkSjbCtS9ec&x-client-SKU=ID_NET8_0&x-client-ver=8.5.0.0&sso_reload=trueRedirected

AI Security Verdict

High Risk

Confidence: 88%

8
Risk Score

Phishing page impersonating Microsoft on an unranked domain; high risk of credential theft.

Risk Factors
Brand impersonation on an unranked domain
Credential‑harvesting login form on a suspicious domain
Typographical anomalies suggesting a spoofed page
Unranked domain used for a Microsoft‑branded login page
Domain age information unavailable

Details

Page Title

Sign in to your account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

The domain name 'msoid.ote-godaddy.cn' uses the Chinese country-code top-level domain (.cn), featuring subdomain 'msoid'. The second-level label 'ote-godaddy' is 11 characters long holding four vowels versus 6 consonants, plus one hyphen. Breaking it apart gives 2 words: ote, godaddy. Median word length comes out to five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://msoid.ote-godaddy.cn

Page Load Overview

21.51s
Total Load Time
30
HTTP Requests
6
Domains
469 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:133 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: webapp
Method: structural

All Detected Categories

No categories detected

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
520.190.160.128Amsterdam, North Holland, Netherlands
AS8075MICROSOFT-CORP-MSN-AS-BLOCK
513.107.246.44Netherlands
AS8075
513.107.6.156United States
AS8068MICROSOFT-CORP-MSN-AS-BLOCK
52.16.241.207Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
540.126.31.1UnknownUnknown
540.126.31.129UnknownUnknown
306--

Detected Technologies4

X-UA-Compatible
100%
PasswordField
100%
Meta-Refresh-Redirect
100%
Ghost
15%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T140836BDA7EB32D3B864A41B5B4716E02AB3A5D039D4CCC68F29CC8842FF73498167657

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:jcys8GLGGmlt7NFR6gyq4+DozTEyqU6MVnvnaloMPttEfii40/C:Qys8Llt7NFR6gyqBDXyS2E0/C

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:86821:BQUYUotiIM8BIQAlJ6IIqACJUdsQhM8QXKgW7AIgqTKKMgFgLIBxZMGGICRhjIheASR4ioWIMQIIMgYERAGeg0IICkJYkZgB

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0010393b373f373f
Perceptual Hash:845971764699d96e
Difference Hash:88e4d2d3e5e6e6e6
Wavelet Hash:00003b3b373f373f
Color Hash:#40bfbd

Other Hashes

Crop Resistant:88e4d2d3e5e6e6e6

Scan History

Scan history not available

Unable to load historical scan data