Domain > dhr.state.ga.us

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to dhr.state.ga.us

MD5	A/V
e21b3469b4fc1efddf76d8c89f1ebb2a	[Malware.Packer.HGX1] [Heuristic.LooksLike.Win32.Suspicious.E] [W32/Kryptik.AXUE!tr]
971d6821a96e8f41da919db02ebc60da	[Malware.Packer.FFS] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan/Win32.Yakes] [W32/Kelihos.BCEB!tr]
27213d33434bf796a9f535ec98e8a918	[HW32.CDB.03b6]
860dd245cbecd656df047b97456d0ad0	[HW32.CDB.9069] [Malware.Packer.FFS] [Heuristic.LooksLike.Win32.Suspicious.E] [PE:Malware.AntiWare!1.9D9B] [W32/Kelihos.KK@mm]
9178327bacccfcfecea87948acbfe510	[HW32.CDB.7c44] [TrojanPSW.Tepfer.r3] [Trojan.Win32.Kryptik.cxaoho] [WS.Reputation.1] [Kryptik.CCFN] [Trojan-PSW.Win32.Tepfer.twuw] [Trojan.PWS.Tepfer!pez0E7sggU8] [Trojan.Packed.26544] [Heuristic.LooksLike.Win32.Suspicious.E] [Mal/FakeAV-UF] [Trojan[PSW]/Win32.Tepfer] [Trojan:Win32/Dynamer!ac] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Tepfer.CASU!tr.pws] [Crypt_s.GMK] [Trojan.Win32.Kryptik.CASU] [Win32/Trojan.e76]
61b408e2de1c4996c3708f1f46913d60	[HW32.CDB.C1b5] [Trojan.Kryptik!QyFpAm9uzfY] [Kryptik.CCFN] [Backdoor.Win32.Hlux.djft] [Trojan.Win32.S.PSW-Tepfer.835600.AI] [UnclassifiedMalware] [BackDoor.Slym.14044] [Mal/Kelihos-A] [Trojan[Backdoor]/Win32.Hlux] [Trojan/Win32.Tepfer] [W32/Trojan.AJYO-7526] [Backdoor.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BWUN!tr] [Crypt3.HUF] [Trojan.Win32.Kryptik.BZIX]
45e45d9707887dc0cc0da495b7968acd	[FakeSecTool-FCX!45E45D970788] [Malware.Packer.FFS] [BackDoor.SlymENT.2075] [Heuristic.LooksLike.Win32.Suspicious.E] [PE:Malware.XPACK/RDM!5.1]
427481f8e79f0ee33385c9da2fe00111	[HW32.CDB.16f0] [Backdoor.Hlux!hl4OBD+jyQw] [Kryptik.CCFN] [Backdoor.Win32.Hlux.djqf] [Trojan.Win32.Hlux.cxbctj] [TrojWare.Win32.Kryptik.BZOO] [Mal/Kelihos-A] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GHE] [Trojan.Win32.Kryptik.BZIX]
24a034d09222c5370365c4cdadde0f65	[HW32.CDB.Da0d] [Packed.Win32.Katusha.3!O] [Kryptik.CDQY] [TrojWare.Win32.Kryptik.CBCJ] [Trojan.Packed.26581] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BD!tr] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CBCJ] [Win32/Trojan.0de]
56bbeac9d1a70afb8bb8b80ec1387750	[HW32.CDB.39f5] [Backdoor.Hlux.r3] [Trojan.Win32.Hlux.cxcewe] [Kryptik.CCFN] [Backdoor.Win32.Hlux.djcw] [Backdoor.Hlux!yo75di6Nrfc] [TrojWare.Win32.Kryptik.BLUU] [BackDoor.Slym.14044] [TR/Kryptik.oeons] [Mal/Kelihos-A] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GGV] [Trojan.Win32.Kryptik.BZDO] [Win32/Trojan.fec]

Whois

Property	Value
Name	Steve Nichols
Organization	Georgia Technology Authority
Email	Steve.Nichols@gta.ga.gov
Address	47 Trinity Ave
Zip Code	30334
City	Atlanta
State	GA
Country	US
Phone	+1.4044634760
NameServer	STATENS2.STATE.GA.US
Created	2003-02-06 20:13:03
Changed	2015-01-17 12:47:26
Expires	2018-02-06 20:13:03
Registrar	US LOCALITY

DNS Resolutions

Date	IP Address
2013-05-16	23.23.200.90 (ClassC)
2015-05-19	-
2025-08-13	23.23.200.90 (ClassC)

Port 80

Subdomains

Date	Domain	IP
gis1.state.ga.us	2025-08-05	128.192.104.39
ns1.state.ga.us	2025-08-05	167.194.81.235
STATENS2.STATE.GA.US	2025-08-03	167.195.30.105
cprs2.state.ga.us	2025-01-15	18.205.129.16
wendigo.dca.state.ga.us	2014-06-18	167.200.36.51
autodiscover.opb.state.ga.us	2025-01-23	52.96.165.24
grec.state.ga.us	2025-08-13	52.21.191.88
ata.grec.state.ga.us	2025-07-25	167.199.233.70
autodiscover.grec.state.ga.us	2024-12-30	52.96.121.24
www.grec.state.ga.us	2025-08-13	52.21.191.88
gfcexchange.gfc.state.ga.us	2025-07-19	167.199.229.235
webconf.gfc.state.ga.us	2025-08-06	167.199.228.36
gfcmail.gfc.state.ga.us	2025-08-09	167.199.229.234
access.gfc.state.ga.us	2025-08-13	167.199.228.34
intranet.gfc.state.ga.us	2025-08-06	167.199.229.11
mail.dbf.state.ga.us	2025-08-05	167.199.246.26
hrweb.gbi.state.ga.us	2025-07-26	167.192.17.207
jts2000.djj.state.ga.us	2025-01-11	18.189.187.253
trainjts2000.djj.state.ga.us	2025-01-01	3.143.70.112
atl0611.djj.state.ga.us	2025-07-20	167.194.14.32
owa.djj.state.ga.us	2025-08-06	167.199.153.11
djjintraportal.djj.state.ga.us	2025-08-06	167.194.14.105
djjportal.djj.state.ga.us	2025-07-25	167.193.178.165
autodiscover.djj.state.ga.us	2024-12-30	52.96.223.56
djjabs.djj.state.ga.us	2025-08-07	167.194.14.118
intranet.djj.state.ga.us	2024-12-31	3.142.72.199
www.panda.decal.state.ga.us	2025-07-26	167.192.222.138
www.training.decal.state.ga.us	2025-07-30	167.192.222.136
dol.state.ga.us	2025-08-09	70.159.4.54
mail4.dol.state.ga.us	2014-05-30	70.159.4.12
staff.dol.state.ga.us	2025-08-07	70.159.4.55
www.dol.state.ga.us	2025-08-09	70.159.4.54
gceo.state.ga.us	2025-08-09	23.23.200.90
autodiscover.agr.state.ga.us	2025-01-20	52.96.164.88
dhr.state.ga.us	2013-05-16	23.23.200.90
mail2.dhr.state.ga.us	2013-12-02	167.193.142.12
mail.dhr.state.ga.us	2014-04-25	167.193.142.10
securemail.dhr.state.ga.us	2025-08-05	167.193.142.10
shines.dhr.state.ga.us	2025-08-09	167.192.39.46
gemsis.dhr.state.ga.us	2025-08-10	167.198.196.169
gdph-phinms.dhr.state.ga.us	2025-07-27	167.193.153.98
trips.dhr.state.ga.us	2025-08-07	167.192.38.240
dhsedwuat.dhr.state.ga.us	2025-08-10	167.192.39.34
dhsedw.dhr.state.ga.us	2025-08-13	167.192.38.125
web.dnr.state.ga.us	2025-07-26	167.193.49.15
crd.dnr.state.ga.us	2025-08-05	167.195.92.70
georgiawildlife.dnr.state.ga.us	2025-07-27	167.195.92.8
autodiscover.dnr.state.ga.us	2025-01-01	52.96.113.248
content.dnr.state.ga.us	2025-08-13	167.195.92.70
rupert.dnr.state.ga.us	2025-07-27	167.195.92.164
willow.dnr.state.ga.us	2025-08-13	167.195.92.9
autodiscover.dcor.state.ga.us	2025-01-01	40.97.223.120
webservices.dcor.state.ga.us	2025-08-10	167.195.96.81
tasgcic.doas.state.ga.us	2025-08-10	167.192.131.90
ssl.doas.state.ga.us	2024-12-31	3.16.242.20
www.gms.state.ga.us	2025-07-27	167.193.198.7
secure.sos.state.ga.us	2025-08-05	104.18.12.103
webmail.sos.state.ga.us	2025-08-06	50.232.155.166
gvrs.sos.state.ga.us	2025-07-21	104.18.12.103
sendss.state.ga.us	2024-12-30	18.116.93.10
secure.audits.state.ga.us	2025-08-13	168.29.232.55
www.grits.state.ga.us	2024-12-31	3.142.107.103
autodiscover.vs.state.ga.us	2024-12-30	52.96.113.232
gdot-go-edg2.dot.state.ga.us	2025-08-09	143.100.37.202
vpn2.dot.state.ga.us	2025-08-06	143.100.53.49
vpn.dot.state.ga.us	2025-08-13	143.100.53.49
gritstest.state.ga.us	2024-12-31	18.118.76.55
www.gritstest.state.ga.us	2024-12-31	3.131.6.187
route88qry.state.ga.us	2025-08-06	167.192.38.15
saofnqry.state.ga.us	2025-08-06	167.192.38.32

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]