Help RSS API Feed Maltego Contact                        

Domain > smtp1.state.or.us

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to smtp1.state.or.us
MD5A/V
69105950b2bb95843dea5937bea0e8f0[HW32.CDB.5919] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [TrojWare.Win32.Kryptik.CBCJ] [BackDoor.Slym.13873] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CBCJ]
ebbf2139fa265c6896be78fe8bbd44f7
971d6821a96e8f41da919db02ebc60da[Malware.Packer.FFS] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan/Win32.Yakes] [W32/Kelihos.BCEB!tr]
3fb83eaf2a665f71ac2065f5f6956d50[HW32.CDB.5da2] [Packed.Win32.Katusha.1!O] [Trojan.Win32.Hlux.cynagk] [Trojan.FakeAV] [Kryptik.CDQY] [Win32/Kelihos.GeEUUIB] [Backdoor.Win32.Hlux.dqkq] [Backdoor.Hlux!m6CCC6SKjdo] [Win32.Backdoor.Hlux.Lose] [Backdoor.Win32.Hlux.DUHE] [Trojan.Packed.26581] [Trojan[Backdoor]/Win32.Hlux] [Win32.Hack.Hlux.dq.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GNC] [Backdoor.Win32.Hlux.aDM]
833009a54c295a72ad64ab0941f482fe[Suspicious.Cloud.5] [Kryptik.CCFN] [TrojWare.Win32.Kryptik.BZOO] [Trojan.DownLoad3.28912] [TR/Crypt.EPACK.9220] [Heuristic.BehavesLike.Win32.Suspicious-BAY.K] [Mal/FakeAV-UF] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Win32.SuspectCrc] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GIF] [Trojan.Win32.Kryptik.BZOO]
c7bf064346fafe4fc55b43abcfe96b00[HW32.CDB.E6f3] [Backdoor.Kelihos.r3] [Backdoor.Hlux!zUFIktBYK3s] [Kryptik.CCFN] [Backdoor.Win32.Hlux.djfw] [Trojan.Win32.S.PSW-Tepfer.835600.AM] [UnclassifiedMalware] [BackDoor.Slym.14049] [Mal/Kelihos-A] [Backdoor:Win32/Kelihos] [Trojan/Win32.Tepfer] [W32/Trojan.QQUO-1304] [Backdoor.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BWUN!tr] [Crypt3.HUC] [Trojan.Win32.Kryptik.BZIX]
1cc0cfa5485d814b67ace50cb0a5b100[HW32.CDB.E978] [Kryptik.CDQY] [UnclassifiedMalware] [Trojan.Packed.26527] [Backdoor:Win32/Kelihos] [W32/Trojan.KUPJ-3598] [Heur.Trojan.Hlux] [Win32.SuspectCrc] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GKU]
2cea2302f3f5c4280a6990e4e1965a60[Backdoor.Hlux.r3] [Trojan.Win32.Hlux.cxceyl] [Kryptik.CCFN] [TROJ_SPNR.36DM14] [Backdoor.Win32.Hlux.djbj] [Backdoor.Hlux!4usFCOdA3iI] [Trojan.Win32.S.PSW-Tepfer.835600.DB] [Mal/Kelihos-A] [TrojWare.Win32.Kryptik.BLUU] [Trojan.PWS.Stealer.12891] [TR/Kryptik.oeons] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Win32.Kryptik.BZDO] [Trojan.Crypt_s] [W32/Hlux.BZDO!tr.bdr] [Crypt_s.GGV] [Win32/Trojan.fec]
5ee74c52944265c5a84f878040e02331[HW32.CDB.27c8] [Trojan.Win32.Hlux.cxadam] [Kryptik.CCFN] [Backdoor.Win32.Hlux.dlza] [Backdoor.Hlux!t6Evi7JomQk] [TrojWare.Win32.Kryptik.CASU] [BackDoor.Slym.13362] [Heuristic.BehavesLike.Win32.Suspicious-BAY.G] [Mal/FakeAV-UF] [Trojan[Backdoor]/Win32.Hlux] [VirTool:Win32/Obfuscator.WT] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Backdoor.Win32.Hlux.AHTW] [Win32/Kryptik.CASL] [Win32.Backdoor.Hlux.Tbjb] [Backdoor.Win32.Kelihos] [W32/Hlux.CASL!tr.bdr]
2c2371e95bb5d87ccd5d19a114492f70[HW32.CDB.18af] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [TrojWare.Win32.Kryptik.CBCJ] [BackDoor.Slym.13873] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Backdoor.Win32.Kelihos] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CBCJ] [Win32/Trojan.0de]
4b93f892d9249b70508ee222e37ee1c6[HW32.CDB.E823] [TrojanPSW.Tepfer.r3] [Trojan.Win32.Kryptik.cxbvtz] [WS.Reputation.1] [Kryptik.CCFN] [Trojan-PSW.Win32.Tepfer.txbj] [Trojan.PWS.Tepfer!TcJrQOwJyhs] [Mal/FakeAV-UF] [BackDoor.Slym.13348] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan[PSW]/Win32.Tepfer] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Win32.Kryptik.CAUP] [Trojan.Crypt_s] [W32/Tepfer.CAUP!tr.pws] [Crypt_s.GMK]
3223f61af50aa26a1c3bb96fe1779011[HW32.CDB.D56b] [Packed.Win32.Katusha.3!O] [Backdoor.Hlux.r3] [Backdoor.Hlux.Win32.9065] [Trojan.Win32.Kryptik.czfnsp] [Trojan.FakeAV] [Kryptik.CCQY] [Backdoor.Win32.Hlux.dueu] [Backdoor.Hlux!DdFHfWii/ns] [UnclassifiedMalware] [TR/Kryptik.oenzk] [Backdoor:Win32/Kelihos] [Trojan/Win32.FakeAV] [Heur.Trojan.Hlux] [Backdoor.Win32.Hlux.cri] [Trojan.Crypt3] [W32/Kryptik.CBOM!tr] [Crypt3.ORV] [Backdoor.Win32.Hlux.Acmu] [Win32/Trojan.7bf]
86122dbf79ec3a983d9ecb120470a00f[Artemis!86122DBF79EC] [Trojan.Win32.Yakes.fhyw] [TR/Changeling.A.3509] [Win32.Trojan.Yakes.Dyfy] [Trojan.Win32.Spammer] [Win32/Cryptor] [Trojan.Win32.Spammer.bAC] [Win32/Trojan.Multi.daf]
129893be541a5853da63c69a90dc7fa6[HW32.CDB.6488] [Packed.Win32.Katusha.3!O] [Trojan.Win32.Slym.cxvgrz] [WS.Reputation.1] [Kryptik.CCFN] [Backdoor.Win32.Hlux.dtmi] [TrojWare.Win32.Kryptik.CBCJ] [BackDoor.Slym.13011] [VirTool:Win32/Obfuscator.WT] [Trojan/Win32.MalPacked] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BD!tr] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CBLX]
20837cfed9fcc3df5a3e414c18eff646[Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [TrojWare.Win32.Kryptik.CBCJ] [BackDoor.Slym.13873] [Win32.Troj.Undef.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CBCJ]
0d42b2efd88f95f4d5af60b548d7290a[FraudTool.Security] [W32/Tepfer.MQ!tr] [Win32/Cryptor]

Whois
PropertyValue
NamePat Morgan
Organization State of Oregon
Email pat.morgan@state.or.us
Address 530 Airport Road
Zip Code 97301
City Salem
State OR
Country US
Phone +1.5033785273
Fax +1.5033782736
NameServer LION.STATE.OR.US
Created 2003-02-06 20:32:49
Changed 2015-03-24 01:30:51
Expires 2016-02-06 20:32:49
Registrar STATE OF OREGON

DNS Resolutions
DateIP Address
2014-06-18159.121.105.150 (ClassC)
2015-05-18159.121.105.150 (ClassC)
2024-09-22159.121.86.220 (ClassC)
2025-05-2352.101.9.19 (ClassC)
2025-06-0452.101.8.50 (ClassC)

Subdomains
DateDomainIP
smtp1.state.or.us2014-06-18159.121.105.150
mchweb.oha.state.or.us2025-06-04170.104.48.32
epiweb.oha.state.or.us2025-05-04170.104.48.52
epiwebtest.oha.state.or.us2025-06-04170.104.48.12
hciregistry-dev2.dhsoha.state.or.us2025-04-2513.107.253.70
visual-data.dhsoha.state.or.us2025-05-20170.104.63.151
tanfcalc.dhsoha.state.or.us2025-05-1613.107.253.70
pam-prod.dhsoha.state.or.us2025-05-12159.121.68.45
childwelfare.dhsoha.state.or.us2025-05-16170.104.48.18
orelap-lab-api.dhsoha.state.or.us2025-05-14170.104.48.49
servicedesk.dhsoha.state.or.us2025-05-13159.121.68.33
smtp.dhsoha.state.or.us2025-04-11170.104.148.21
lf-ds.dhsoha.state.or.us2025-05-1252.244.200.140
itservices.dhsoha.state.or.us2025-05-04159.121.68.42
sts.dhsoha.state.or.us2025-05-14170.104.63.103
proofpoint.dhsoha.state.or.us2025-06-04170.104.63.107
oep-eligibot.dhsoha.state.or.us2025-05-1040.112.243.103
tanfcalc-test.dhsoha.state.or.us2025-05-0413.107.246.70
childwelfare-test.dhsoha.state.or.us2025-05-17170.104.48.18
lf-test.dhsoha.state.or.us2025-06-0452.244.32.174
oparcrdmchat-test.dhsoha.state.or.us2025-05-2413.107.246.70
hciregistry-test.dhsoha.state.or.us2025-05-0413.107.253.70
thwregistry-test.dhsoha.state.or.us2025-05-0413.107.246.70
visual-datatest.dhsoha.state.or.us2025-06-04170.104.63.203
stackoverflowtest.dhsoha.state.or.us2025-06-04170.104.63.103
hciregistry-mo3-dev.dhsoha.state.or.us2025-05-1413.107.253.70
tanfcalc-dev.dhsoha.state.or.us2025-05-0413.107.246.70
lf-dev.dhsoha.state.or.us2025-05-1052.244.37.90
hciregistry-dev.dhsoha.state.or.us2025-04-1113.107.253.70
thwregistry-dev.dhsoha.state.or.us2025-05-1613.107.253.70
lf-records-cw.dhsoha.state.or.us2025-05-2252.244.205.28
stackoverflow.dhsoha.state.or.us2025-05-31170.104.63.103
secureemailmx.dhsoha.state.or.us2025-04-10170.104.63.13
hciregistry.dhsoha.state.or.us2025-04-1213.107.253.70
lf-erms-odhsoha.state.or.us2025-05-1252.126.50.26
lf-api.odhsoha.state.or.us2025-06-0452.126.43.220
columbia.state.or.us2025-05-10159.121.106.79
PUMA.STATE.OR.US2025-05-22198.232.202.40
ccb.state.or.us2025-06-04159.121.113.9
docpub.state.or.us2025-06-04159.121.101.38
autodiscover.cc.doc.state.or.us2025-04-1152.96.164.248
db.lcd.state.or.us2025-05-22159.121.120.199
gis.lcd.state.or.us2025-05-12159.121.120.213
ojdsmtpmail1.ojd.state.or.us2014-07-05159.121.96.239
ojdftpsqa.ojd.state.or.us2025-05-16205.235.200.13
hybrid.ojd.state.or.us2025-05-17205.235.194.104
ojdftps.ojd.state.or.us2025-05-24159.121.96.180
apiprod1.prd.state.or.us2025-05-15159.121.119.206
heritagedata.prd.state.or.us2025-05-12159.121.119.202
gis.prd.state.or.us2025-05-16159.121.119.208
maps.prd.state.or.us2025-05-15159.121.119.201
eac.ode.state.or.us2025-04-11151.101.130.37
odf.state.or.us2014-06-18159.121.101.116
mail.leg.state.or.us2025-06-04205.143.231.27
autodiscover.leg.state.or.us2025-04-1352.96.91.40
doj.state.or.us2014-07-1663.241.232.230
www2.doj.state.or.us2025-05-16204.44.205.5
www3.doj.state.or.us2025-05-1120.190.12.28
sellwood.doj.state.or.us2025-05-15159.121.117.182
mailsvr.doj.state.or.us2025-05-21159.121.117.12
morris.doj.state.or.us2025-05-25159.121.117.153
sts.doj.state.or.us2025-06-0252.244.68.221
www.doj.state.or.us2025-05-2269.12.80.92
felix.doj.state.or.us2025-05-15159.121.117.13
dsl.state.or.us2014-05-22159.121.119.116
libcal.osl.state.or.us2025-04-2518.213.162.18
digital.osl.state.or.us2025-05-16159.121.97.12
libguides.osl.state.or.us2025-04-2534.194.39.199
talkingbooks.osl.state.or.us2025-06-03159.121.97.10
proxy.osl.state.or.us2025-05-22159.121.122.35
terraform.state.or.us2025-05-11104.210.62.119
mybusinessoregon.state.or.us2025-05-13159.121.86.76
LION.STATE.OR.US2024-04-05192.149.16.131
xtraction.state.or.us2025-05-16198.177.16.33
elite.hlo.state.or.us2025-05-14170.104.63.243
aix-xweb1p.state.or.us2025-05-04159.121.138.140
orelap.state.or.us2025-05-25170.104.48.47
empportal.emp.state.or.us2025-05-1572.19.3.81
ccwebapp.state.or.us2025-06-04159.121.115.26
dasit-remsup.state.or.us2025-06-04159.121.110.45
oraqiapi.deq.state.or.us2025-05-0420.69.91.59
oraqi.deq.state.or.us2025-05-2220.69.91.59
orwater.deq.state.or.us2025-04-233.224.123.132
fs.deq.state.or.us2025-05-17159.121.87.127
osphlcopia.hr.state.or.us2025-05-04170.104.14.76
dhroc.hr.state.or.us2025-05-17170.104.30.33
asleds2kwebprod.hr.state.or.us2025-05-16170.104.62.170
dhrmf.hr.state.or.us2025-05-25170.104.128.11
or-vitalevents.hr.state.or.us2025-05-11159.121.68.46
oscarwebplus.hr.state.or.us2025-05-28170.104.63.224
or-vitaleventstest.hr.state.or.us2025-06-01159.121.68.48
oscarwebplusdev.hr.state.or.us2025-05-15170.104.51.123
secure.dor.state.or.us2025-05-15159.121.101.132
navigator.state.or.us2025-05-14159.121.110.55
columbia.das.state.or.us2025-04-25159.121.106.79
ftps.pandd.das.state.or.us2025-05-10159.121.110.18
dasprod.css.das.state.or.us2025-05-31159.121.106.79
cbs.state.or.us2025-05-14159.121.182.16
cbsweb2.cbs.state.or.us2025-06-04159.121.182.28
www4.cbs.state.or.us2025-06-04159.121.182.9
portal-wcb.cbs.state.or.us2025-05-24159.121.182.68
vessels-bcd.cbs.state.or.us2025-05-11159.121.182.70
boom.cbs.state.or.us2025-05-24159.121.182.33
dcbsfs.cbs.state.or.us2025-05-04159.121.87.121
dcbs-reports.cbs.state.or.us2025-05-17159.121.182.113
www4-alt.cbs.state.or.us2025-05-17159.121.182.53
licenseinfo-alt.cbs.state.or.us2025-05-13159.121.182.60
minorlabels-alt.cbs.state.or.us2025-06-04159.121.182.66
dcbs-reports-alt.cbs.state.or.us2025-05-21159.121.182.64
www.cbs.state.or.us2025-05-16159.121.182.16
nwrnbs.state.or.us2025-05-11170.104.14.74
hcs.state.or.us2014-06-20159.121.105.150
egov.hcs.state.or.us2025-05-17159.121.138.147
hybrid.opds.state.or.us2025-06-04159.121.206.162
access.opds.state.or.us2025-05-26205.235.194.49
jjis.state.or.us2025-05-04159.121.95.72
www.jjis.state.or.us2025-05-27159.121.95.75
sos.state.or.us2025-05-30159.121.172.123
secure.sos.state.or.us2025-05-22159.121.172.115
qa.secure.sos.state.or.us2025-05-17159.121.172.116
devl.secure.sos.state.or.us2025-06-04159.121.172.117
sos-ssl.sos.state.or.us2025-05-23159.121.168.68
smtp.sos.state.or.us2025-05-28159.121.172.103
qa.ocvr.sos.state.or.us2025-05-27192.4.0.62
ocvrws.ocvr.sos.state.or.us2025-05-15199.201.92.45
uatws.ocvr.sos.state.or.us2025-05-31192.4.0.63
uat.ocvr.sos.state.or.us2025-05-13192.4.0.61
www.ocvr.sos.state.or.us2025-05-24199.201.92.44
records.sos.state.or.us2025-05-1066.62.76.40
intranet.sos.state.or.us2025-05-1534.139.183.53
qa.intranet.sos.state.or.us2025-05-1734.139.183.53
egov.sos.state.or.us2025-05-22159.121.172.94
qa.egov.sos.state.or.us2025-04-25159.121.172.95
devl.egov.sos.state.or.us2025-05-16159.121.172.96
apps.state.or.us2025-04-25159.121.138.146
api.pers.state.or.us2025-06-0420.125.58.204
exprs.state.or.us2025-06-04159.121.103.64
aix-web9t.state.or.us2025-05-17159.121.103.63
ccwebuat.state.or.us2025-05-15159.121.115.13
remote.odot.state.or.us2025-05-17159.121.71.210
autodiscover.odot.state.or.us2025-04-1152.96.157.88
access.odot.state.or.us2025-06-04159.121.71.89
odot.odot.state.or.us2025-05-16167.131.4.2
mfttest.odot.state.or.us2025-05-1172.19.3.76
ordsvsstgext.odot.state.or.us2025-05-2572.19.3.76
ccwebtest.state.or.us2025-05-27159.121.115.21
mail2.ost.state.or.us2025-05-04159.121.112.206
github.ost.state.or.us2025-05-16159.121.112.212
aovpn.ost.state.or.us2025-05-04159.121.112.242
ftp.ost.state.or.us2025-05-12159.121.112.210
fs.ost.state.or.us2025-05-25159.121.112.245
ccwebtst.state.or.us2025-05-04159.121.115.13
connect2.dfw.state.or.us2025-05-04159.121.86.252
hqsma6210-2.connect2.dfw.state.or.us2025-05-13159.121.206.163
connect5.dfw.state.or.us2025-05-04159.121.86.239
eagle.dfw.state.or.us2025-05-27159.121.86.253
snipe.dfw.state.or.us2025-05-30159.121.86.241
wolf.dfw.state.or.us2025-05-16159.121.86.253
nrimp.dfw.state.or.us2025-05-04159.121.86.244
chukar.dfw.state.or.us2025-05-23159.121.87.93
compass.dfw.state.or.us2025-05-11138.91.64.26
www.compass.dfw.state.or.us2025-05-16138.91.64.26
www.dfw.state.or.us2025-05-10159.121.86.247
www.state.or.us2024-07-19199.107.32.19
genealogy.state.or.us2025-05-04159.121.172.76
library.state.or.us2025-01-22159.121.122.37
www.library.state.or.us2025-05-13159.121.122.37
View on OTX | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information