Discussions

Google subdomains, like aistudio.google.com are blocked as “malware IP”. Blocking Google domains as ads, trackers or by filters (e.g. Hagezi) is ok but blocking important services from one of the top 5 tech companies as “malware IP” must be a bug.

I was going to attach an image to illustrate the issue, but since images cannot be attached here, I created the description of the image by AI. As they say, a picture is worth a thousand words.

Description:

• The screenshot shows a list view from a DNS/firewall app where several Google and Google APIs hostnames are being blocked, with a red “blocked” icon next to each entry.[1]
• Each row displays the protocol badge on the left (mix of DoH/DoT), an “A” status toggle, a red blocked symbol, small icons for IP/category, and then the domain and a gray circular site initial.[1]
• Blocked hostnames visible in the list include: aistudio.google.com, update.googleapis.com, taskassist-pa.googleapis.com, googleads.g.doubleclick.net, androidwearcloudsync-pa.googleapis.com, googlehomefoyer-pa.googleapis.com, clients2.google.com, www.googleapis.com, clients4.google.com, footprints-pa.googleapis.com, and firebaselogging-pa.googleapis.com.[1]
• One row (googleads.g.doubleclick.net) has a small pencil/edit indicator to the right, suggesting a custom rule or override is possible.[1]
• Several entries show different service initials in gray circles (G, U, T, A, F) and some rows have a small “shield” or “eye” style icon indicating category or privacy status; all are marked as blocked.[1]
• There are duplicate entries for aistudio.google.com appearing at two different positions in the list, both blocked.[1]
• The overall context implies the security tool is categorizing or filtering these as ad/tracking or potential “malware IP,” resulting in connectivity failures to standard Google services (updates, Firebase logging, Wear OS sync, Google Home, and AI Studio).[1]