Domain > rapidssl-aia.geotrust.com

More information on this domain is in AlienVault OTX

Is this malicious?

Most users have voted this as not malicious

Files that talk to rapidssl-aia.geotrust.com

MD5	A/V
6df7b5c3bc535e99ecb9b61768677d93	[HW32.CDB.72f5] [Artemis!6DF7B5C3BC53] [Obfuscated_M.KOG] [Heuristic.LooksLike.Win32.Suspicious.N] [Win32/GameHack.OW] [PE:Malware.XPACK/RDM!5.1] [Skodna.GameHack.KKX] [Trojan.Win32.GameHack.OW]
384a104d528431337a864988b69d6e36	[Downloader-FYZ!384A104D5284] [Spyware.Fareit] [W32/Trojan3.HAW] [Downloader] [TROJ_UPATRE.JT] [Trojan-Dropper.Win32.Injector.jtns] [Troj/Zbot-HIK] [Trojan.DownLoader9.8407] [Win32.Malware!Drop] [TR/Injector.atk] [W32/Trojan.QGZM-0474] [Trojan/Win32.Zbot] [Win32/TrojanDownloader.Waski.A] [Trojan-Spy.Zbot] [Trojan.Downloader.JQHN] [Luhe.Fiha.A] [W32.Clod89f.Trojan.98f2] [Trojan-Dropper/W32.Injector.14336.D] [Trojan.Injector.jts] [RDN/Downloader.a!oq] [Trojan/Downloader.Waski.a] [Trojan.Win32.Waski.csjwmx] [Upatre.BD] [Win32/Upatre.KJUUOC] [Trojan.Win32.Zbot.14336] [UnclassifiedMalware] [Win32.Troj.Undef.(kcloud)] [TrojanDownloader:Win32/Upatre.L] [TrojanDropper.Injector] [Trj/Downloader.WKY] [W32/Injector.A!tr] [Trojan.Win32.Injector.alsT]
cb36444ef24aede7749207066c155278	[Artemis!CB36444EF24A] [PUP.Optional.OpenCandy] [Riskware.OpenCandy!] [Adware.Downware.3115] [Win32/JoyDownloader.A] [PE:PUF.OpenCandy!1.9DE5] [Downloader.ASQ]
bcd84af9f2d35d30f569ce9e954a36b7	[Trojan.MSIL]
f7ee649b521f60ff27991939b6e59b61
c2cd447fd9b19b7f062a5a8cf6299600	[Trojan.Dropper] [TROJ_UPATRE.SMS] [Heuristic.LooksLike.Win32.Suspicious.J!81] [TrojanDownloader.Upatre.a] [W32/Trojan3.GMT] [Trojan.Zbot] [Upatre.AH] [Win32/Upatre.SCfaVJ] [Trojan.Win32.Bublik.bksn] [Troj/DwnLdr-LEC] [TrojWare.Win32.Bublik.~O] [Trojan.DownLoad3.28161] [Win32.Malware!Drop] [Win32.Troj.Bublik.bk.(kcloud)] [TrojanDownloader:Win32/Upatre.A] [W32/Trojan.RYWQ-1315] [Trojan/Win32.Zbot] [Win32/TrojanDownloader.Small.AAB] [Trojan-Spy.Zbot] [W32/DwnLdr.LEC!tr] [Zbot.DNG]
5f84405568ab100a0ba3bec73f66b27f	[W32.Clod8e5.Trojan.7200] [Artemis!5F84405568AB] [Obfuscated_M.JWM] [Suspicious!SA] [Heuristic.LooksLike.Win32.Suspicious.N]

Whois

Property	Value
Name	Domain Manager
Organization	Symantec Corporation
Email	domains@symantec.com
Address	350 Ellis Street
Zip Code	94043
City	Mountain View
State	CA
Country	US
Phone	+1.6505278000
NameServer	l4.nstld.com
Created	1999-04-04 05:00:00
Changed	2015-03-31 05:23:52
Expires	2016-04-04 00:00:00
Registrar	CSC CORPORATE DOMAIN

DNS Resolutions

Date	IP Address
2013-04-01	199.7.54.190 (ClassC)
2013-04-29	199.7.51.190 (ClassC)
2013-04-30	199.7.55.190 (ClassC)
2013-05-25	23.50.69.163 (ClassC)
2013-06-05	23.52.149.163 (ClassC)
2013-06-21	23.4.181.163 (ClassC)
2013-07-16	23.53.181.163 (ClassC)
2013-08-08	23.38.85.163 (ClassC)
2013-08-13	2.22.133.163 (ClassC)
2013-08-16	23.43.133.163 (ClassC)
2013-09-24	23.35.165.163 (ClassC)
2013-10-17	23.60.133.163 (ClassC)
2013-10-22	23.61.69.163 (ClassC)
2013-10-24	23.61.181.163 (ClassC)
2013-10-31	23.49.133.163 (ClassC)
2013-11-14	23.36.149.163 (ClassC)
2014-01-04	23.65.5.163 (ClassC)
2014-01-08	23.52.53.163 (ClassC)
2014-01-08	23.51.117.163 (ClassC)
2014-03-15	23.43.69.163 (ClassC)
2014-04-19	23.5.245.163 (ClassC)
2014-05-21	23.13.165.163 (ClassC)
2014-05-27	23.9.117.163 (ClassC)
2014-06-12	23.64.165.163 (ClassC)
2014-07-20	23.7.69.163 (ClassC)
2016-04-23	23.41.69.163 (ClassC)
2018-04-06	23.37.37.163 (ClassC)
2018-05-16	23.4.53.163 (ClassC)
2018-07-02	93.184.220.29 (ClassC)
2021-01-14	72.21.91.29 (ClassC)
2023-06-12	192.229.221.95 (ClassC)
2024-12-24	192.229.211.108 (ClassC)
2025-07-22	23.196.145.101 (ClassC)
2025-08-01	23.55.219.46 (ClassC)

Subdomains

Date	Domain	IP
gtextval2-aia.geotrust.com	2014-07-28	23.9.85.163
rapidssl2-aia.geotrust.com	2025-07-23	23.49.131.209
gtssl2-aia.geotrust.com	2014-08-06	23.9.85.163
gtssldv2-aia.geotrust.com	2024-12-21	192.229.211.108
geotcca3-aia.geotrust.com	2024-12-22	192.229.211.108
gtextvalsha256-aia.geotrust.com	2024-12-03	192.229.211.108
gtssldsa-aia.geotrust.com	2024-12-22	192.229.211.108
rapidssl-aia.geotrust.com	2014-05-27	23.9.117.163
gtssl-aia.geotrust.com	2013-04-01	199.7.52.190
evssl-aia.geotrust.com	2014-10-03	23.9.85.163
gtssldv-aia.geotrust.com	2014-06-24	23.5.5.163
crl.geotrust.com	2013-05-15	199.7.52.190
gtextval2-crl.geotrust.com	2014-07-20	23.9.85.163
rapidssl2-crl.geotrust.com	2024-12-25	192.229.211.108
gtssl2-crl.geotrust.com	2014-07-26	23.9.85.163
gtssldv2-crl.geotrust.com	2024-12-22	192.229.211.108
gtextvalsha256-crl.geotrust.com	2024-12-22	192.229.211.108
gtssldsa-crl.geotrust.com	2024-09-11	192.229.211.108
android-crl.geotrust.com	2024-11-09	192.229.211.108
evsecure-crl.geotrust.com	2014-09-21	23.9.85.163
rapidssl-crl.geotrust.com	2013-05-15	199.7.52.190
gtssl-crl.geotrust.com	2014-08-10	23.9.85.163
evssl-crl.geotrust.com	2014-08-08	23.9.85.163
gtssldv-crl.geotrust.com	2014-08-10	23.9.85.163
smarticon.geotrust.com	2014-02-03	69.58.183.142
cdp.geotrust.com	2025-01-12	192.229.211.108
ocsp.geotrust.com	2014-07-20	23.7.75.27
gtextval2-ocsp.geotrust.com	2014-07-19	23.7.75.27
rapidssl2-ocsp.geotrust.com	2024-12-22	152.195.50.149
gtssl2-ocsp.geotrust.com	2014-07-19	23.7.75.27
gtssldv2-ocsp.geotrust.com	2024-12-22	152.195.50.149
pca-g3-ocsp.geotrust.com	2014-08-28	199.7.57.72
evsecure-ocsp.geotrust.com	2013-11-14	199.7.59.72
gtglobal-ocsp.geotrust.com	2014-06-17	23.52.59.27
rapidssl-ocsp.geotrust.com	2014-06-12	23.4.43.27

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]