storage.googleapis.com

Google Inc.

Domain Information

The domain storage.googleapis.com registered by Google Inc. was initially registered in January of 2005 through MARKMONITOR INC.. Currently this domain has been known to host various forms of malware. The hosted servers are located in Mountain View, California within the United States which resides on the Google Inc. network.
Remove Malware from storage.googleapis.com - Powered by Reason Core Security
Registrar:
MARKMONITOR INC.

Server location:
California, United States (US)

Create date:
Tuesday, January 25, 2005

Expires date:
Wednesday, January 25, 2017

Updated date:
Thursday, December 24, 2015

ASN:
AS15169 GOOGLE - Google Inc.,US

Root domain:

Scanner detections:
Malware distribution  (94% detected)

Scan engine
Details
Detections

G Data
MSIL.Adware.OfferInstaller, Gen:Variant.Graftor.144719, Trojan.GenericKD.2541342, Trojan.GenericKD.2550561, Gen:Variant.Graftor.219166
53.19%

Bitdefender
Gen:Variant.Graftor.144719, Trojan.GenericKD.2541342, Trojan.GenericKD.2550561, Gen:Variant.Graftor.219166, Gen:Variant.Jaik.8042
53.19%

Emsisoft Anti-Malware
Gen:Variant.Graftor.144719, Trojan.GenericKD.2541342, Trojan.GenericKD.2550561, Gen:Variant.Graftor.219166, Gen:Variant.Jaik.8042
53.19%

ESET NOD32
Win32/Downloader.Agent.AI (variant), MSIL/Adware.Imali (variant), probably unknown NewHeur_PE, Win32/TrojanDownloader.Banload.WAY (variant), Win32/InstallCore.ACZ potentially unwanted (variant)
51.06%

Lavasoft Ad-Aware
Gen:Variant.Graftor.144719, Trojan.GenericKD.2541342, Trojan.GenericKD.2550561, Gen:Variant.Graftor.219166, Gen:Variant.Jaik.8042
51.06%

avast!
Win32:Adware-gen [Adw], Win32:Dropper-gen [Drp], Win32:GenMaliciousA-IBX [PUP], Win32:Malware-gen, Win32:Banker-LYZ [Trj]
48.94%

MicroWorld eScan
Gen:Variant.Graftor.144719, Trojan.GenericKD.2541342, Trojan.GenericKD.2550561, Gen:Variant.Graftor.219166, Gen:Variant.Jaik.8042, Gen:Variant.Zusy.158404, Gen:Variant.Graftor.241815, Trojan.GenericKD.2719663, Gen:Variant.Graftor.249117, Trojan.Downloader.JSGY, Gen:Variant.Graftor.249255, Gen:Variant.Graftor.165690, Gen:Variant.Symmi.56650, Gen:Variant.Zusy.169301, Trojan.GenericKD.2444696, Gen:Variant.Symmi.56529, Trojan.GenericKD.2495801, Gen:Variant.Strictor.87507, Trojan.GenericKD.2363061, Trojan.GenericKD.2594430
48.94%

F-Secure
Gen:Variant.Graftor.144719, Trojan.GenericKD.2541342, Trojan.GenericKD.2550561, Gen:Variant.Graftor.219166, Gen:Variant.Zusy.158404
48.94%

Baidu Antivirus
Adware.MSIL.Imali, Trojan.Win32.Ransom, Trojan.Win32.Banload, Adware.Win32.InstallCore, Trojan.MSIL.Banload, Adware.MSIL.iBryte
46.81%

Arcabit
Trojan.Generic.D26C71E, Trojan.Generic.D26EB21, Trojan.Graftor.D3581E, Trojan.Jaik.D1F6A, Trojan.Kazy.DB237E, Trojan.Zusy.D26AC4
44.68%

Avira AntiVirus
TR/Dldr.Agent.216048, TR/Dropper.MSIL.Gen, TR/Ransom.1579008, TR/Dldr.Banload.2204160, TR/Dldr.Banload.3077120, TR/Dldr.Agent.204288.9
40.43%

IKARUS anti.virus
PUA.MSIL.Downloader, Trojan-Ransom.Win32.Mor, Virus.Win32.DelfInject , Trojan-Downloader.Win32.Banload, Trojan-Downloader.MSIL.Banload
38.30%

K7 Gateway Antivirus
DoS-Trojan , Trojan-Downloader , Hacktool , Riskware , Adware
36.17%

Kaspersky
Trojan-Downloader.Win32.Genome, Trojan-Ransom.Win32.Mor, not-a-virus:HEUR:Adware.NSIS.ConvertAd, HEUR:Trojan.Win32.Generic
36.17%

Fortinet FortiGate
W32/VB.ZIL!tr.dldr, W32/Banload.WAY!tr.dldr, W32/Banload.WCL!tr.dldr, W32/Banload.WIW!tr.dldr, MSIL/Banload.ER!tr.dldr, W32/Banload.WOV!tr.dldr
36.17%

The domain storage.googleapis.com has been seen to resolve to the following 67 IP addresses.

lga25s40-in-f16.1e100.net
February 8, 2016

iad23s43-in-f16.1e100.net
February 6, 2016

January 28, 2016

qj-in-f128.1e100.net
September 16, 2015

qk-in-f128.1e100.net
August 19, 2015

August 12, 2015

ql-in-f128.1e100.net
July 19, 2015

qg-in-f128.1e100.net
June 30, 2015

qb-in-f128.1e100.net
June 19, 2015

qd-in-f128.1e100.net
June 19, 2015

qh-in-f128.1e100.net
June 19, 2015

vl-in-f128.1e100.net
June 19, 2015

yb-in-f128.1e100.net
June 18, 2015

lga15s47-in-f11.1e100.net
May 5, 2015

lga15s47-in-f12.1e100.net
May 5, 2015

lga15s47-in-f10.1e100.net
May 5, 2015

lga25s41-in-f1.1e100.net
May 4, 2015

lga25s40-in-f1.1e100.net
May 3, 2015

iad23s25-in-f10.1e100.net
February 26, 2015

iad23s25-in-f12.1e100.net
February 26, 2015

iad23s25-in-f11.1e100.net
February 26, 2015

iad23s06-in-f10.1e100.net
November 29, 2014

iad23s06-in-f12.1e100.net
November 29, 2014

iad23s06-in-f11.1e100.net
November 29, 2014

qh-in-f132.1e100.net
November 10, 2014

iad23s08-in-f10.1e100.net
September 5, 2014

iad23s08-in-f12.1e100.net
September 5, 2014

iad23s08-in-f11.1e100.net
September 5, 2014

iad23s26-in-f12.1e100.net
September 4, 2014

iad23s26-in-f11.1e100.net
September 4, 2014

 
Showing 30 of 67 IP Addresses

File downloads found at URLs served by storage.googleapis.com.

7 / 68      (Adware)

1 / 68      (PUP)
http://storage.googleapis.com/.../Adobe_Flash_Player.exe  (5db214bdf856cc3553813b05cc876f6c)

0 / 68

35 / 68    (Malware)
https://storage.googleapis.com/.../Adobe Flash Player.exe  (2e5dfd97559e7f69eded024256c84c12)

1 / 68      (PUP)

1 / 68      (PUP)
http://storage.googleapis.com/.../Adobe_Flash_Player.exe  (56ebcc861513888579ec61200b598dee)

36 / 68    (Malware)
https://storage.googleapis.com/.../DSC9839.jpg.exe  (bff5551fe95b633e5f02da68db1d821d)

28 / 68    (Malware)
https://storage.googleapis.com/.../Malware_bytes.exe  (847a6b961bb5abd625a52f1fae8e4194)

16 / 68    (Malware)

1 / 68      (PUP)

1 / 68      (PUP)
https://storage.googleapis.com/.../installer.exe  (d1a541d228641bb55255e3d5aed54cbc)

40 / 68    (Malware)
https://storage.googleapis.com/.../ContratoAssinar.exe  (4f266ee3109d8332d3810fae51865220)

1 / 68      (PUP)
https://storage.googleapis.com/.../installer.exe  (c6d63da0df1bfa245a864c063facfbe1)

19 / 68    (Malware)
http://storage.googleapis.com/.../Abrir Anexo.exe#ccbaccd  (17292bf9957355636430e5bd5e008bc7)

18 / 68    (Malware)

35 / 68    (PUP)
http://storage.googleapis.com/.../NotificacaoDetran.exe  (869146f5254ba8fb8aad6ae1872d2a9f)

1 / 68      (PUP)
https://storage.googleapis.com/.../installer.exe  (4e1fd2329acb1acc80d6cf5d67eac4b8)

1 / 68      (Adware)
http://storage.googleapis.com/.../Adobe_Flash_Player.exe  (a195cebcc8d5e0985435b6eb1baf98e1)

6 / 68      (PUP)

17 / 68    (Malware)
http://storage.googleapis.com/.../Adobe Flash Player.exe  (07c2467af0e63f745eaf187cdc207a0d)

10 / 68    (Malware)

9 / 68      (Malware)

6 / 68      (Malware)

27 / 68    (Malware)

19 / 68    (Malware)

11 / 68    (Malware)

6 / 68      (Malware)

11 / 68    (Malware)

9 / 68      (Malware)

 
Latest 30 of 371 download URLs

The following 43 files have been seen to comunicate with storage.googleapis.com in live environments.

 
Latest 20 of 114 files

URL:
http://storage.googleapis.com/

SSL certificate subject:
CN=*.storage.googleapis.com, O=Google Inc, L=Mountain View, S=California, C=US

SSL certificate issuer:
CN=Google Internet Authority G2, O=Google Inc, C=US

Web server:
UploadServer

Facebook:
Likes:  2,524
Shares:  2,734
Comments:  2,565

Statistics are for the previous month.

Remove Malware from storage.googleapis.com - Powered by Reason Core Security