74.125.226.203

lga15s28-in-f11.1e100.net

IP Address Information

The Internet Service Provider (ISP) that owns the network address of 74.125.226.203 is Google Inc. and located in California within the United States. The IP Address resolves to the DNS record of lga15s28-in-f11.1e100.net. Currently there are 44 domain names that utilize this address. The primary domain hosted by this IP is googledrive.com along with 43 other domains which are known malware distribution web sites. This IP belongs to Google and resides on their public network "1e100.net is a Google-owned domain name used to identify the servers in our network. Most typical Internet users will never see 1e100.net, but we picked a Googley name for it just in case (1e100 is scientific notation for 1 googol)".
Scanner detections:
Malware distribution  (63% detected)

Scan engine
Details
Detections

Trend Micro House Call
TROJ_GEN.F47V0516, Suspicious_GEN.F47V0818, TROJ_GEN.R0C1H07IG14, TROJ_GEN.R0E5C0EAG15, Suspicious_GEN.F47V1230, TROJ_GEN.R047H09AN15
69.70%

Emsisoft Anti-Malware
Trojan.Win32.Agent, Trojan.Generic.11665020, Gen:Variant.Symmi.46836, Trojan.Generic.12478905, Gen:Variant.Symmi.49919, Gen:Variant.Kazy.539234
66.67%

avast!
Win32:Malware-gen, Win32:Rootkit-gen [Rtk], Win32:Dropper-gen [Drp], AutoIt:MalOb-HT [Trj], Win32:Banker-LWE [Trj]
63.64%

McAfee
Artemis!4EE67DA9B613, Artemis!C8639604A744, Artemis!7C21B7ED6425, RDN/Generic Downloader.x!mk, RDN/Generic Downloader.x!mg, Artemis!BCCBEBBB7DCC, Artemis!EE995A3D703F, Artemis!493252F63F27
63.64%

G Data
Win32.Trojan.Agent.D3J0Z5, Trojan.Generic.11665020, Gen:Variant.Symmi.46836, Trojan.Generic.12478905, Gen:Variant.Symmi.49919
60.61%

IKARUS anti.virus
Trojan.ExtenBro, Trojan-Ransom.Win32.Blocker, Trojan-Dropper.Win32.Agent, Trojan.SuspectCRC, Trojan-Downloader, Win32.SuspectCrc
60.61%

Avira AntiVirus
TR/ExtenBro.Z, TR/Symmi.46836.2, TR/Downloader.A.11550, TR/Crypt.cfi.besd, TR/Kazy.684032.11, TR/Ransom.36908, TR/Dropper.VB.24877
57.58%

McAfee Web Gateway
BehavesLike.Win32.BadFile.bc, Artemis, BehavesLike.Win32.BadFile.gc, BehavesLike.Win32.Yahlover.jc, BehavesLike.Win32.Dropper.dh
54.55%

Kaspersky
Trojan-Ransom.Win32.Blocker, Trojan-Dropper.Win32.Agent, UDS:DangerousObject.Multi.Generic, Trojan-Downloader.Win32.Autoit, HEUR:Trojan.Win32.Generic
54.55%

Bitdefender
Trojan.Generic.11665020, Gen:Variant.Symmi.46836, Trojan.Generic.12478905, Gen:Variant.Symmi.49919, Gen:Variant.Kazy.539234
54.55%

The following domains resolved to the IP address 74.125.226.203.

File URLs download from 74.125.226.203.

4 / 68      (Malware)
http://storage.googleapis.com/.../teracopy3a3.exe  (60e4549f5e59bb205cab607d7abf687c)

27 / 68    (Malware)

10 / 68    (PUP)

31 / 68    (Malware)

24 / 68    (Malware)

20 / 68    (Malware)

27 / 68    (Malware)

0 / 68
http://storage.googleapis.com/.../directfolders.exe  (5246d0227d213d97f3984c21d6f7be20)

9 / 68      (Malware)
http://storage.googleapis.com/.../VIDEOYU IZLE.exe  (5511c6f4e71becb72ee95a5ab7a9368e)

31 / 68    (Malware)
http://storage.googleapis.com/.../Adobe Flash Player.exe  (beae33919a514e60bb8f59cf84e4aec8)

28 / 68    (Malware)
http://storage.googleapis.com/.../Update_Google.exe  (ed1301feeef6ff89bd276ef96608391e)

13 / 68    (Malware)
http://storage.googleapis.com/.../Youtube_Watch_Video.exe  (493252f63f27bcace91e9b25a5125c19)

5 / 68      (inconclusive)

7 / 68      (Malware)
http://storage.googleapis.com/.../Update_Google.exe  (6a5f4a9feb9d45d0a4618b40fa200a59)

28 / 68    (Malware)
http://storage.googleapis.com/.../FlashPlayer16.exe  (ee995a3d703fc26365f14d91f8ef8a27)

7 / 68      (Malware)
http://storage.googleapis.com/.../teracopy3a2.exe  (e134b99fa6c9f52dea665b7cb957b5ae)

1 / 68
https://storage.googleapis.com/.../teracopy.exe  (b55e9c2af04144538e41a00ddc10b9e9)

0 / 68

0 / 68
http://storage.googleapis.com/.../tsetup.0.4.6.exe  (7837f80651d68c7cc3012f65f0fe4493)

0 / 68
http://storage.googleapis.com/.../setup.exe  (c87f5c30968c7a5f993a7636583b35b7)

0 / 68
https://storage.googleapis.com/.../tsetup.0.6.2.exe  (46059f8215facdaf39128afcc8920467)

0 / 68

21 / 68    (Malware)

0 / 68
http://storage.googleapis.com/.../setup_1_1_1006.exe  (ac130b40529a6c3851529beffef51cc5)

 
Latest 30 of 122,759 download URLs

The geographical location of this IP address.

Country:
United States (US)

Region:
California

City:
Mountain View

Coordinates:
37.406, -122.079

The ARIN network assigned organization for IP address 74.125.226.203.

Org name:
Google Inc.

Org identifier:
GOGL

Org country:
United States (US)

Org region:
California

Org city:
Mountain View

Org address:
1600 Amphitheatre Parkway

ARIN WHOIS:
NetRange: 74.125.0.0 - 74.125.255.255
CIDR: 74.125.0.0/16
OriginAS:
NetName: GOOGLE
NetHandle: NET-74-125-0-0-1
Parent: NET-74-0-0-0-0
NetType: Direct Allocation
RegDate: 2007-03-13
Updated: 2012-02-24
Ref: http://whois.arin.net/rest/net/NET-74-125-0-0-1


OrgName: Google Inc.
OrgId: GOGL
Address: 1600 Amphitheatre Parkway
City: Mountain View
StateProv: CA
PostalCode: 94043
Country: US
RegDate: 2000-03-30
Updated: 2013-08-07
Ref: http://whois.arin.net/rest/org/GOGL

OrgAbuseHandle: ZG39-ARIN
OrgAbuseName: Google Inc
OrgAbusePhone: +1-650-253-0000
OrgAbuseEmail: arin-contact@google.com
OrgAbuseRef: http://whois.arin.net/rest/poc/ZG39-ARIN

OrgTechHandle: ZG39-ARIN
OrgTechName: Google Inc
OrgTechPhone: +1-650-253-0000
OrgTechEmail: arin-contact@google.com
OrgTechRef: http://whois.arin.net/rest/poc/ZG39-ARIN


Autonomous System Assignment
ASNumber:
15169

ASName:
GOOGLE - Google Inc.

ASHandle:
AS15169

Remove Malware from 74.125.226.203 - Powered by Reason Core Security