Help RSS API Feed Maltego Contact                        

Domain > cs-g2-crl.thawte.com

More information on this domain is in AlienVault OTX

Is this malicious?

Most users have voted this as not malicious

Files that talk to cs-g2-crl.thawte.com

MD5A/V
88c48daab78eee9f856c8bff2141f09b[Trojan.Win32.Swizzor.cymcca]
F365EF8CF97BAA5CAB7477C7296FE5F7
49313ef68fd37aa0c78e26ba06cdef0b
52f716a9cd69d1a50d16f400780b6bc6[W32.UninstallOctLTA.PE] [Virus.Win32.Otwycal!O] [W32.Qvod.F] [W32/Simfect] [Virus.Win32.Otwycal.bopofk] [W32.Wapomi.C!inf] [Killav.NQF] [Win32/Wapomi.CD] [PE_WAPOMI.SM] [W32.Virus.Wapomi] [Virus.Win32.Otwycal.a] [PE:Worm.Win32.ShellCode.b!1594282] [W32/Patched-AG] [TrojWare.Win32.KillAV.iu] [Win32.HLLP.Protil.1] [W32/Etap] [Heuristic.LooksLike.Win32.SuspiciousPE.J] [Win32/Protil.e] [Virus/Win32.Otwycal.a] [Win32.ExeAggmg.a.30720] [Win32.Otwycal.A] [Win32/Viking.DR] [Virus.Otwycal.a] [Win32/Wapomi.U] [Virus.Win32.Dropper.a] [Virus.Win32.Wapomi] [Win32/Wapomi] [Virus.Win32.Otwycal.$a] [Virus.Win32.Downloader.Z]
c38ebbdb20fa62b20273ee9e7234213c[TR/Rogue.11928735] [PUP.Optional.ArcadeYum.A]
f12414de7c50f889cd30233b67fdd7bf[Artemis!F12414DE7C50] [PUP.Optional.OpenCandy] [Riskware.OpenCandy!] [OpenCandy] [Adware.Downware.1446] [ADW_OPENCANDY] [AdWare.OpenCandy] [Win32/JoyDownloader.A] [PE:PUF.OpenCandy!1.9DE5] [Downloader.ASQ]
9326336981ddd650f18c1e058251562f[Artemis!9326336981DD] [PUP.Optional.BubbleDock.A] [Win32/BubbleDock.A]
D8D04241B5C165FA769EEE376D530E25
F862C8BB73A04DBCAFC43B85236B8F01
ba0c9f7633d7be5b90b37a7b912ad281[Win32/Bundled.Toolbar.Google.E]
46f16a0203e00f9a64ba05cf76f81e41[W32.HfsAutoA.9678] [Win32.Viking.AZ] [Virus.Win32.Qvod!O] [W32.Pikroms.A] [W32/Fujacks.be] [Worm.AutoRun] [W32/Pikor.A] [W32.Imaut] [Killav.AWIG] [Win32/Wapomi.A] [PE_PIKOR.A] [Virus.Win32.Qvod.a] [Virus.Win32.Qvod.bmnus] [Win32.Qvod.C[h]] [Worm.Win32.Autorun.fnc] [MalCrypt.Indus!] [Trojan.StartPage.41341] [Virus.Qvod.Win32.4] [BehavesLike.Win32.Fujacks.ch] [W32/Jadtre-B] [W32/Viking.AT] [Virus/Win32.Qvod.a] [Win32.Section.e.1470464] [Virus:Win32/Jadtre.F] [Win32/Dellboy.BF] [Virus.Win32.Heur.d] [Virus.Win32.Qvod.$a] [I-Worm.Autoit.EB] [PE:Worm.VobfusEx!1.99DF] [Worm.Win32.AutoIt] [W32/Autorun.FNC!tr] [Win32/Wapomi.D] [Virus.Win32.Downloader.M]
661dda4dfdebd918e3785081f7cd2b28[W32/Koobface.pri]
5b50fb4b1e10609bf97f6979a7e7c370[PUP.Optional.BubbleDock.A] [Win32/BubbleDock.A]
356e2c1b879aae18e44c13f94f5f87e1
a05bf06eb476dc9e6caaa7982372c4cd[TR/Rogue.11928735] [PUP.Optional.ArcadeYum.A]
8689d86cede7b7db43793ddc2c230c62[TrojanDropper.FrauDrop.uic]
59c362f414f721bbef32b08c261db0b5[TR/Rogue.11928735] [PUP.Optional.ArcadeYum.A]
aa66897aff83dff9dcf33204ff1176e5[TR/Rogue.11928735] [PUP.Optional.ArcadeYum.A]
1e2ec410462847adfcbd97f945d36a6e
29417ca1ddec819144979b8c8b22fff0[W32.StChinCharA.PE] [Win32.Jadtre.E] [Virus/W32.Patched.P] [Virus.Win32.Qvod!O] [W32.Jadtre.I] [W32/Fujacks.be] [Virus.Win32.Qvod.bmnus] [W32/Jadtre.A] [W32.Wapomi.B!inf] [Killav.AWIG] [Win32/Wapomi.A] [PE_PIKOR.A] [Virus.Win32.Qvod.b] [Win32.Qvod.C] [MalCrypt.Indus!] [Trojan.DownLoader7.20513] [W32/Wapomi.B] [W32/Jadtre-B] [Virus/Win32.Qvod.b] [Virus:Win32/Jadtre.I] [Win32/Dellboy.BG] [W32/Bototer.D] [Win32/AutoRun.NAX] [PE:Win32.Fednu.e!1588847] [Worm.Win32.Pikorms] [W32/Krypt.C!tr.bdr] [Worm/AutoRun.JT] [Virus.Win32.Qvod.$b] [Virus.Win32.Downloader.AF]

Whois

PropertyValue
NameDomain Manager
Organization Symantec Corporation
Email domains@symantec.com
Address 350 Ellis Street
Zip Code 94043
City Mountain View
State CA
Country US
Phone +1.6505278000
NameServer g4.nstld.com
Created 1996-02-10 05:00:00
Changed 2015-02-07 06:24:57
Expires 2016-02-11 00:00:00
Registrar CSC CORPORATE DOMAIN

DNS Resolutions

DateIP Address
2013-04-18199.7.59.190 (ClassC)
2013-04-20199.7.55.190 (ClassC)
2013-04-27199.7.52.190 (ClassC)
2013-05-01199.7.48.190 (ClassC)
2013-05-02199.7.51.190 (ClassC)
2013-05-02199.7.71.190 (ClassC)
2013-05-03199.7.54.190 (ClassC)
2013-05-1723.5.245.163 (ClassC)
2013-05-1723.7.245.163 (ClassC)
2013-05-2223.4.37.163 (ClassC)
2013-06-0723.51.101.163 (ClassC)
2013-06-1223.52.149.163 (ClassC)
2013-06-2423.4.181.163 (ClassC)
2013-06-2523.34.85.163 (ClassC)
2013-07-1623.55.149.163 (ClassC)
2013-07-1723.38.213.163 (ClassC)
2013-07-1723.53.21.163 (ClassC)
2013-07-2623.37.37.163 (ClassC)
2013-07-2823.36.149.163 (ClassC)
2013-08-1523.43.133.163 (ClassC)
2013-08-162.22.133.163 (ClassC)
2013-08-1823.53.181.163 (ClassC)
2013-08-2323.38.85.163 (ClassC)
2013-08-2523.36.149.163 (ClassC)
2013-10-0723.65.5.163 (ClassC)
2013-10-1123.61.69.163 (ClassC)
2013-10-1523.61.181.163 (ClassC)
2013-10-1723.60.133.163 (ClassC)
2013-10-3123.49.133.163 (ClassC)
2014-05-2123.13.165.163 (ClassC)
2014-06-0623.50.69.163 (ClassC)
2014-06-1223.64.165.163 (ClassC)
2014-07-0723.5.5.163 (ClassC)
2014-07-0723.52.53.163 (ClassC)
2014-07-2123.7.69.163 (ClassC)
2014-08-0723.9.85.163 (ClassC)
2014-12-1223.5.245.163 (ClassC)
2015-07-1323.7.133.163 (ClassC)
2015-08-1223.47.21.163 (ClassC)
2016-02-2923.9.117.163 (ClassC)
2016-04-1823.59.133.163 (ClassC)
2016-04-1923.44.149.163 (ClassC)
2016-05-0223.41.69.163 (ClassC)
2017-06-2723.15.149.163 (ClassC)
2017-07-1523.52.85.163 (ClassC)
2017-09-2023.63.133.163 (ClassC)
2017-10-0623.50.149.163 (ClassC)
2018-04-0623.37.165.163 (ClassC)
2018-04-1023.51.117.163 (ClassC)
2018-04-1723.54.181.163 (ClassC)
2018-05-1023.35.165.163 (ClassC)
2018-05-1523.43.69.163 (ClassC)
2018-05-1623.4.53.163 (ClassC)
2019-06-2293.184.220.29 (ClassC)
2020-06-21117.18.237.29 (ClassC)
2021-02-2672.21.91.29 (ClassC)
2023-05-11192.229.221.95 (ClassC)
2025-01-08192.229.211.108 (ClassC)
2025-01-12152.195.50.149 (ClassC)
2025-03-1423.49.131.209 (ClassC)
2025-06-0223.198.106.123 (ClassC)
2025-07-2923.196.145.101 (ClassC)

Subdomains

DateDomainIP
cs-g2-aia.thawte.com2025-03-0623.221.103.101
ev-sha256-aia.thawte.com2024-08-30192.229.211.108
ov-sha256-aia.thawte.com2024-12-22192.229.211.108
svr-dsa-aia.thawte.com2024-12-22192.229.211.108
svr-sgc-aia.thawte.com2014-08-1023.9.85.163
evsecure-aia.thawte.com2024-11-10192.229.211.108
svr-dv-aia.thawte.com2014-08-0823.9.85.163
svr-ov-aia.thawte.com2013-04-01199.7.52.190
seal.thawte.com2014-06-16199.7.55.232
crl.thawte.com2013-05-02199.7.52.190
cs-g2-crl.thawte.com2013-04-27199.7.52.190
ev-sha256-crl.thawte.com2024-11-15192.229.211.108
svr-sgc-crl.thawte.com2014-07-1823.9.85.163
evsecure-crl.thawte.com2024-11-18192.229.211.108
tss-geotrust-crl.thawte.com2013-05-05199.7.52.190
svr-dv-crl.thawte.com2014-08-0923.9.85.163
svr-ov-crl.thawte.com2014-08-1023.9.85.163
cdp.thawte.com2025-01-12192.229.211.108
ocsp.thawte.com2014-01-16199.7.54.72
evsecure-ocsp.thawte.com2014-07-2023.7.75.27
fr.thawte.com2025-07-265.39.17.202
www.fr.thawte.com2025-07-245.39.17.202
forms.thawte.com2025-07-2569.58.180.44
cacerts.thawte.com2025-01-12192.229.211.108
status.thawte.com2025-01-12192.229.211.108
crl-test.thawte.com2025-01-02192.229.211.108
dcv.thawte.com2025-07-2545.60.121.229
www.thawte.com2025-07-2545.60.196.209
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information