Domain > jhbaxter.com

More information on this domain is in AlienVault OTX

Files that talk to jhbaxter.com

MD5	A/V
d42c1a59b111316f7481770349e653db	[HW32.CDB.87f3] [Malware.Packer.OCD]
e21b3469b4fc1efddf76d8c89f1ebb2a	[Malware.Packer.HGX1] [Heuristic.LooksLike.Win32.Suspicious.E] [W32/Kryptik.AXUE!tr]
971d6821a96e8f41da919db02ebc60da	[Malware.Packer.FFS] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan/Win32.Yakes] [W32/Kelihos.BCEB!tr]
4211b2d7121c11d5f032e6620030a384	[HW32.CDB.Cd7e] [Packed.Win32.Katusha.3!O] [Hlux.ZY] [VirTool:Win32/Obfuscator.WT]
db5b440f6419090cd9567f3b33fd3ced	[Malware.Packer.HGX1] [BackDoor.SlymENT.1498] [Heuristic.LooksLike.Win32.Suspicious.E] [W32/Kryptik.AXUE!tr]
315325f544912a68464bf38e3edf6371	[HW32.CDB.9e5e] [Backdoor/W32.Hlux.829456.H] [Packed.Win32.Katusha.3!O] [Backdoor.Hlux.r3] [Backdoor.Hlux!aauIqdu764w] [Trojan.FakeAV] [Kryptik.CDQY] [Backdoor.Win32.Hlux.dqyy] [Win32.Backdoor.Hlux.Lhdb] [UnclassifiedMalware] [Trojan.Packed.26581] [Win32.Hack.Hlux.dq.(kcloud)] [Backdoor:Win32/Kelihos.F] [Backdoor.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BWUN!tr] [Crypt_s.GNC] [Backdoor.Win32.Hlux.aZvR] [Win32/Trojan.337]
75147b8dd7796762a48bd315293f0817	[FakeSecTool-FCI!75147B8DD779] [Malware.Packer.FFS] [Heuristic.LooksLike.Win32.Suspicious.E] [W32/Kryptik.BDPK!tr] [Crypt_s.EPS]
4b93f892d9249b70508ee222e37ee1c6	[HW32.CDB.E823] [TrojanPSW.Tepfer.r3] [Trojan.Win32.Kryptik.cxbvtz] [WS.Reputation.1] [Kryptik.CCFN] [Trojan-PSW.Win32.Tepfer.txbj] [Trojan.PWS.Tepfer!TcJrQOwJyhs] [Mal/FakeAV-UF] [BackDoor.Slym.13348] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan[PSW]/Win32.Tepfer] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Win32.Kryptik.CAUP] [Trojan.Crypt_s] [W32/Tepfer.CAUP!tr.pws] [Crypt_s.GMK]
d38a3646d932d062528aea48d2122315
1623be5a046aa215162665c5067332e0	[HW32.CDB.Db63] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [Trojan-PSW.Win32.Tepfer.tybm] [Trojan.PWS.Tepfer!sA6n+JUlMF8] [UnclassifiedMalware] [Trojan.Packed.26581] [Backdoor:Win32/Kelihos.F] [W32/Trojan.YSDP-3009] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BWUN!tr] [Crypt_s.GNC] [Trojan.Win32.InfoStealer.aRBP]
3223f61af50aa26a1c3bb96fe1779011	[HW32.CDB.D56b] [Packed.Win32.Katusha.3!O] [Backdoor.Hlux.r3] [Backdoor.Hlux.Win32.9065] [Trojan.Win32.Kryptik.czfnsp] [Trojan.FakeAV] [Kryptik.CCQY] [Backdoor.Win32.Hlux.dueu] [Backdoor.Hlux!DdFHfWii/ns] [UnclassifiedMalware] [TR/Kryptik.oenzk] [Backdoor:Win32/Kelihos] [Trojan/Win32.FakeAV] [Heur.Trojan.Hlux] [Backdoor.Win32.Hlux.cri] [Trojan.Crypt3] [W32/Kryptik.CBOM!tr] [Crypt3.ORV] [Backdoor.Win32.Hlux.Acmu] [Win32/Trojan.7bf]
0d42b2efd88f95f4d5af60b548d7290a	[FraudTool.Security] [W32/Tepfer.MQ!tr] [Win32/Cryptor]
fe734b28009c7dd5389f64d72722bb21
18e1ec2d3092fa3be2c970ce91ef31a0	[HW32.CDB.4548] [RDN/q2z-art6.s_318383!a] [Trojan.Win32.Slym.cxaqmr] [Kryptik.CCFN] [Backdoor.Win32.Hlux.dnxw] [BackDoor.Slym.13348] [Mal/FakeAV-UF] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos] [Heur.Trojan.Hlux] [Win32/Kryptik.CASL] [W32/Hlux.BWUN!tr.bdr] [Trojan.Win32.Kryptik.CASL] [Win32/Trojan.337]
14a2291e48bd02b528d0c018fee03e86	[HW32.CDB.A3eb] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [TrojWare.Win32.Kryptik.CBCJ] [Trojan.Packed.26581] [Win32.Troj.Undef.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [W32/Trojan.XULT-7356] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Kryptik.CBCJ!tr] [Crypt_s.GNC]

Whois

Property	Value
Name	PERFECT PRIVACY, LLC
Email	sz7t79vw8xh@networksolutionsprivateregistration.com
Address	12808 Gran Bay Parkway West
Zip Code	32258
City	Jacksonville
State	FL
Country	US
Phone	+1.5707088780
NameServer	NS82.WORLDNIC.COM
Created	1996-02-13 05:00:00
Changed	2015-01-28 23:28:30
Expires	2016-02-14 00:00:00
Registrar	NETWORK SOLUTIONS, L

DNS Resolutions

Date	IP Address
2014-03-24	38.113.115.176 (ClassC)
2015-05-17	-
2025-08-11	74.220.207.205 (ClassC)

HTTP/1.1 200 OKDate: Tue, 02 Apr 2024 02:12:00 GMTServer: ApacheUpgrade: h2,h2cConnection: UpgradeLast-Modified: Tue, 08 Feb 2022 17:12:02 GMTAccept-Ranges: bytesContent-Length: 2382Vary: Accept-Encod

!DOCTYPE html>html>head>meta charsetutf-8>	title>/title>	style typetext/css>@import url(https://fonts.googleapis.com/css2?familyPoppins&displayswap);	body {  font-family: Poppins, sans-serif;  line-height: 30px;  font-size: 15px;}	.conatiner {	width: 1280px;	margin: 0 auto;}ul {	padding-left: 12px;}	/style>/head>body>div classconatiner>p aligncenter>span stylefont-size:20px;>strong>Statement to Our Employees and Community/strong>/span>/p>p aligncenter>span stylefont-size:20px;>strong>January 31, 2022/strong>/span>/p>p aligncenter>/p>p>br />span stylefont-size:16px;>After more than 70 years of employing generations of families in Eugene, J.H. Baxter and Company has made a business decision to mothball its 33-acre facility, effective January 31, 2022./span>/p>p>span stylefont-size:16px;>The company began wholesaling lumber in 1896 on the docks of San Francisco Bay.  After the San Francisco earthquake in 1906, Baxter expanded its operations and acquired sailing ships and later steam ships to distribute raw wood to West Coast sawmills.  Baxter expanded again with a wood preserving facility in 1915.  Baxter continued its expansion into that industry until the late 1970’s when operating costs began to rise.  Since then, we’ve also faced market volatility, and diminished margins. It simply doesn’t make financial sense to continue our current operation at the Eugene facility./span>/p>p>span stylefont-size:16px;>We will keep a skeleton crew at the Eugene facility to manage groundwater and stormwater systems to comply with environmental requirements, as well as oversee the site’s other assets. Some employees will also help customers pick up their products. /span>/p>p>span stylefont-size:16px;>We’re proud that over the years, Baxter maintained high quality control standards that met or exceeded those of the American Wood Protection Association. In addition, independent inspection agencies provided a third-party overview of quality control samples, equipment and product

Port 443

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > jhbaxter.com

Is this malicious?

Files that talk to jhbaxter.com

Whois

DNS Resolutions

Port 80

Port 443