Domain > clients1.google.ca

More information on this domain is in AlienVault OTX

Files that talk to clients1.google.ca

MD5	A/V
cafd4b2d04b00279a9759724dcb24e2b	[WS.Reputation.1] [Trojan-Dropper.Win32.Sysn.babx] [Trojan.PWS.Multi.1730] [Artemis] [TR/Dropper.MSIL.37381] [Backdoor:Win32/IRCbot] [Trojan.Zusy.D241A1] [Spyware/Win32.Bancos] [Artemis!CAFD4B2D04B0] [Trj/CI.A] [Trojan.MSIL.Injector] [MSIL/Injector.KHB!tr] [MSIL8.AHXG] [Trojan.Win32.Dropper.babx]
b00601392fdb5061d79bbfaa8e76765d	[Artemis!B00601392FDB] [TROJ_SCAR.BMC] [BackDoor.Comet.2020] [TROJ_SCAR.BMC] [Artemis!Trojan] [Backdoor:Win32/Fynloski.K] [Trj/Chgt.O] [Win32.Trojan.Dropper.Pala] [Trojan.SuspectCRC] [Pakes2_c.AVQS]
aec40179bd7cce1be433607d9e6a7b3b	[Downloader] [BehavesLike.Win32.Downloader.vh] [Troj/Banloa-BXN] [Trj/Chgt.O] [W32/Banload.VYC!tr.dldr] [Trojan.Win32.Banload.VYC]
71bd3a1e43e001b8509f6b3fb923ab84	[Backdoor.Xtreme.r3] [WS.Reputation.1] [TROJ_FORUCON.BMC] [Backdoor.Win32.Xtreme.atil] [Trojan.Win32.Xtreme.dshdim] [TROJ_FORUCON.BMC] [BehavesLike.Win32.Trojan.cc] [Win32.Troj.Undef.(kcloud)] [Artemis!71BD3A1E43E0] [Trj/CI.A] [Trojan.MSIL.Injector] [W32/Xtreme.ATIL!tr.bdr] [MSIL8.NFK] [Backdoor.Win32.Xtreme.atil]
f2d127cf787871d0262922bdcc5e7992	[Trojan.Autoit.INJ] [PE:Trojan.Win32.Injector.fw!1075357566] [BackDoor.Comet.2276] [Backdoor.Androm] [Trojan.Win32.Injector] [Autoit]
1fbd0ab02ffbfbbd0350547aa08f558b
f61176cc56c696bb7cb193aca6b51322
46c6d604d2245408be541b71da319b7c	[W32.Clodd3f.Trojan.c9bf] [Trojan.Crypt.Delf.B] [Trojan.Crypt.Delf.B] [Trojan-Banker.Win32.Banker!O] [TrojanBanker.Banker.hqy] [Artemis!46C6D604D224] [Trojan.Win32.Banker.phbi] [Downloader.RYX] [Mal_Banker4] [Trojan-Banker.Win32.Banker.hqy] [Trojan.Crypt.Delf.B] [TrojanSpy.Banker!AhfzJPgG0nk] [Trojan.Crypt.Delf.B] [Trojan.Crypt.Delf.B] [Trojan.PWS.Banker.53359] [Mal_Banker4] [Artemis!46C6D604D224] [Win32.Troj.Banker.(kcloud)] [Trojan/Win32.Banker] [Trojan.Crypt.Delf.B] [Trj/CI.A] [Trojan.Win32.Cossta] [W32/Banker.DUU!tr] [Win32/DH{PSVXTi4gDwN8JCI}] [Trojan.Win32.Banker.ap]
3efff348c8825a89bc8454820f889c85	[W32.Clod4eb.Trojan.0012] [Trojan.Downloader.JKRW] [Trojan.Downloader.JKRW] [Virus.Win32.Sality!O] [Artemis!3EFFF348C882] [W32/Malware!e32e] [Downloader] [Trojan.Downloader.JKRW] [Trojan.Win32.Downloader.2981376] [Trojan.Downloader.JKRW] [TrojWare.Win32.Trojan.Banker.~d08] [Trojan.Downloader.JKRW] [Trojan.DownLoad1.40721] [Heuristic.BehavesLike.Win32.Suspicious-BAY.O] [Trojan:Win32/Porlist!rts] [Trojan.Downloader.JKRW] [W32/Risk.KSGT-0509] [Trj/Downloader.MDW] [Trojan.Win32.Downloader.aY]
bf7285e4213249fe56c4b9f9ce16691d	[Trojan.Delflob.A] [Trojan.Delflob.A] [TrojanDownloader.FraudLoad.r3] [Trojan.Delflob.A] [Trojan.FakeAlert] [Trojan.Delflob.A] [W32/Downldr2.FRRJ] [Trojan.Downloader-40441] [Trojan.Win32.A.Downloader.296960.AC[h]] [Trojan.Delflob.A] [Trojan.Delflob.A] [Trojan.Fakealert.948] [W32/Downloader.WAZG-9104] [TR/Delflob.A.9] [Trojan[Downloader]/Win32.FraudLoad] [Trojan:Win32/Delflob.P] [Trojan.Delflob.A] [Trojan.Delflob.A] [Artemis!BF7285E42132] [Trojan-Downloader.Win32.Peregar] [Trojan.Win32.Downloader.Ahev]
a522fdbd6f19b2d390dc51b547b8d4fb
f76c29cc62975f2743750844d1168a48	[BehavesLike.JS.Downloader.xv] [HEUR.JS.Trojan.b]
2fdf00fe9407242b839e16ab27ed08be	[PWSZbot-FACM!2FDF00FE9407] [Trojan.FakeSCR] [W32.W.Ridnu] [Trojan.Kazy.DAAA8D] [BehavesLike.Win32.Dropper.fh] [Worm:Win32/Rebhip!O] [MSIL/Injector.PE!tr] [Injector.XB]
1de40b41b676a43ba0c3e59f1e24eb0d
b3de5122078c2b11bbfebf4ac437eb14
5df0c7b64e0730be14e4b5a1e97591ca
1528436a5e30907d05ea91e9a2d63db1
af75f13322529d76d17e0636be404dcf
f79282151402ec6d9736f51e6c54d41d
04979c64ea925459e4898282ee96e99e

Whois

Property	Value
Name	Google Inc.
Email	ccops@markmonitor.com
NameServer	ns2.google.com
Created	2000-10-03 00:00:00
Changed	2015-03-27 00:00:00
Expires	2016-04-28 00:00:00
Registrar	MarkMonitor Internat

DNS Resolutions

Date	IP Address
2013-04-01	173.194.76.94 (ClassC)
2013-06-10	74.125.228.95 (ClassC)
2013-07-14	85.91.7.35 (ClassC)
2013-08-04	74.125.193.94 (ClassC)
2013-11-19	74.125.194.94 (ClassC)
2013-11-22	74.125.30.94 (ClassC)
2013-11-29	74.125.142.94 (ClassC)
2013-12-02	74.125.192.94 (ClassC)
2014-02-07	173.194.64.94 (ClassC)
2014-04-20	74.125.70.94 (ClassC)
2014-05-03	74.125.207.94 (ClassC)
2014-05-30	74.125.201.94 (ClassC)
2014-08-01	64.233.183.94 (ClassC)
2014-08-13	64.233.181.94 (ClassC)
2014-09-27	74.125.69.94 (ClassC)
2014-10-29	64.233.182.94 (ClassC)
2015-05-23	173.194.33.152 (ClassC)
2015-05-28	173.194.33.143 (ClassC)
2015-05-29	173.194.33.159 (ClassC)
2015-05-29	216.58.192.3 (ClassC)
2015-06-22	74.125.28.94 (ClassC)
2015-06-27	74.125.224.24 (ClassC)
2015-06-29	74.125.224.31 (ClassC)
2015-07-20	64.233.191.94 (ClassC)
2015-08-27	173.194.195.94 (ClassC)
2015-10-26	74.125.135.94 (ClassC)
2015-12-14	173.194.193.94 (ClassC)
2016-07-06	74.125.132.94 (ClassC)
2016-07-20	173.194.198.94 (ClassC)
2016-10-10	173.194.74.94 (ClassC)
2017-01-14	209.85.200.94 (ClassC)
2017-03-19	74.125.129.94 (ClassC)
2017-09-06	216.58.206.227 (ClassC)
2017-09-08	216.58.204.99 (ClassC)
2017-09-08	216.58.201.227 (ClassC)
2017-09-18	216.58.208.195 (ClassC)
2017-09-18	216.58.198.195 (ClassC)
2017-09-19	172.217.19.227 (ClassC)
2017-09-24	216.58.213.131 (ClassC)
2017-09-25	216.58.209.227 (ClassC)
2017-09-28	216.58.205.3 (ClassC)
2017-11-03	216.58.204.131 (ClassC)
2017-11-04	216.58.204.227 (ClassC)
2017-11-07	216.58.208.227 (ClassC)
2017-11-07	172.217.22.131 (ClassC)
2017-12-07	216.58.213.163 (ClassC)
2018-07-12	173.194.197.94 (ClassC)
2019-01-29	173.194.196.94 (ClassC)
2019-02-06	209.85.147.94 (ClassC)
2019-03-27	209.85.234.94 (ClassC)
2019-03-29	74.125.124.94 (ClassC)
2019-04-05	173.194.192.94 (ClassC)
2019-04-28	108.177.111.94 (ClassC)
2019-05-14	108.177.121.94 (ClassC)
2019-05-14	172.217.212.94 (ClassC)
2019-05-17	209.85.145.94 (ClassC)
2019-05-20	108.177.112.94 (ClassC)
2019-05-22	74.125.202.94 (ClassC)
2019-06-20	216.58.195.67 (ClassC)
2019-07-10	172.217.6.67 (ClassC)
2019-07-16	172.217.164.99 (ClassC)
2019-07-22	172.217.214.94 (ClassC)
2019-07-29	108.177.120.94 (ClassC)
2019-08-05	172.217.22.35 (ClassC)
2019-09-03	216.58.207.163 (ClassC)
2020-05-09	216.58.217.35 (ClassC)
2020-07-06	172.217.3.163 (ClassC)
2020-07-31	216.58.212.227 (ClassC)
2020-08-08	172.217.168.195 (ClassC)
2020-09-08	216.58.193.67 (ClassC)
2020-09-21	172.217.23.67 (ClassC)
2020-10-01	172.217.19.35 (ClassC)
2020-10-01	172.217.19.131 (ClassC)
2020-10-05	216.58.204.67 (ClassC)
2020-10-13	209.85.146.94 (ClassC)
2020-10-23	172.217.18.195 (ClassC)
2020-11-04	172.217.169.35 (ClassC)
2020-11-26	172.217.21.67 (ClassC)
2020-12-27	172.217.3.195 (ClassC)
2021-03-06	142.250.179.99 (ClassC)
2021-03-22	173.194.194.94 (ClassC)
2021-05-22	142.250.187.195 (ClassC)
2021-07-04	142.250.75.227 (ClassC)
2021-07-21	142.250.148.94 (ClassC)
2021-08-11	172.253.119.94 (ClassC)
2021-11-03	142.250.125.94 (ClassC)
2021-11-05	142.250.159.94 (ClassC)
2021-11-16	142.250.128.94 (ClassC)
2021-12-13	142.250.152.94 (ClassC)
2021-12-20	172.217.219.94 (ClassC)
2021-12-30	142.250.136.94 (ClassC)
2022-01-24	216.58.215.35 (ClassC)
2022-01-29	142.251.6.94 (ClassC)
2022-02-17	142.250.201.163 (ClassC)
2022-05-05	142.250.153.94 (ClassC)
2022-08-31	142.250.74.227 (ClassC)
2022-10-07	142.250.200.35 (ClassC)
2022-10-07	172.253.122.94 (ClassC)
2022-10-07	142.250.145.94 (ClassC)
2022-10-07	173.194.79.94 (ClassC)
2022-10-07	172.217.2.99 (ClassC)
2022-12-25	142.250.1.94 (ClassC)
2022-12-25	108.177.119.94 (ClassC)
2022-12-25	142.250.31.94 (ClassC)
2023-01-18	142.251.161.94 (ClassC)
2023-05-06	216.58.213.67 (ClassC)
2023-07-09	142.251.171.94 (ClassC)
2023-07-20	74.125.126.94 (ClassC)
2023-07-22	142.251.172.94 (ClassC)
2023-09-18	172.253.114.94 (ClassC)
2024-06-20	142.250.178.131 (ClassC)
2024-07-18	172.217.14.195 (ClassC)
2025-03-04	142.251.211.227 (ClassC)
2025-03-21	172.217.14.227 (ClassC)
2025-04-28	142.250.69.195 (ClassC)
2025-05-17	142.251.33.99 (ClassC)
2025-06-02	142.250.217.67 (ClassC)
2025-06-09	142.251.215.227 (ClassC)
2025-07-06	142.250.73.67 (ClassC)
2025-07-09	142.250.217.99 (ClassC)
2025-07-13	142.250.73.99 (ClassC)
2025-07-23	142.250.69.163 (ClassC)
2025-07-26	142.250.73.131 (ClassC)
2025-08-06	142.251.33.67 (ClassC)

Port 443

HTTP/1.1 404 Not FoundContent-Type: text/html; charsetUTF-8Referrer-Policy: no-referrerContent-Length: 1561Date: Sun, 26 May 2019 11:12:44 GMTAlt-Svc: quic:443; ma2592000; v46,44,43,39

!DOCTYPE html>html langen>  meta charsetutf-8>  meta nameviewport contentinitial-scale1, minimum-scale1, widthdevice-width>  title>Error 404 (Not Found)!!1/title>  style>    *{margin:0;padding:0}html,code{font:15px/22px arial,sans-serif}html{background:#fff;color:#222;padding:15px}body{margin:7% auto 0;max-width:390px;min-height:180px;padding:30px 0 15px}* > body{background:url(//www.google.com/images/errors/robot.png) 100% 5px no-repeat;padding-right:205px}p{margin:11px 0 22px;overflow:hidden}ins{color:#777;text-decoration:none}a img{border:0}@media screen and (max-width:772px){body{background:none;margin-top:0;max-width:none;padding-right:0}}#logo{background:url(//www.google.com/images/branding/googlelogo/1x/googlelogo_color_150x54dp.png) no-repeat;margin-left:-5px}@media only screen and (min-resolution:192dpi){#logo{background:url(//www.google.com/images/branding/googlelogo/2x/googlelogo_color_150x54dp.png) no-repeat 0% 0%/100% 100%;-moz-border-image:url(//www.google.com/images/branding/googlelogo/2x/googlelogo_color_150x54dp.png) 0}}@media only screen and (-webkit-min-device-pixel-ratio:2){#logo{background:url(//www.google.com/images/branding/googlelogo/2x/googlelogo_color_150x54dp.png) no-repeat;-webkit-background-size:100% 100%}}#logo{display:inline-block;height:54px;width:150px}  /style>  a href//www.google.com/>span idlogo aria-labelGoogle>/span>/a>  p>b>404./b> ins>That’s an error./ins>  p>The requested URL code>//code> was not found on this server.  ins>That’s all we know./ins>

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > clients1.google.ca

Is this malicious?

Files that talk to clients1.google.ca

Whois

DNS Resolutions

Port 80

Port 443