Domain > duke.edu

More information on this domain is in AlienVault OTX

Is this malicious?

Most users have voted this as not malicious

Files that talk to duke.edu

MD5	A/V
3220ab9b63a767c299000ea9d9e3a056	[HW32.CDB.1b0b] [Packed.Win32.Katusha.1!O] [Backdoor.Hlux!u8SUOkHyYnA] [Trojan.FakeAV] [Kryptik.CCFN] [Win32/Kelihos.RbUfAWB] [Backdoor.Win32.Hlux.dpoo] [Trojan.Win32.Hlux.cxxuzn] [TrojWare.Win32.Kryptik.CAUP] [BackDoor.Slym.12819] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Backdoor.Hlux] [Win32/Kryptik.CAXO] [Win32.Backdoor.Hlux.Lgjg] [Trojan.Crypt_s] [W32/Kryptik.CAXO!tr] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CAXO]
27213d33434bf796a9f535ec98e8a918	[HW32.CDB.03b6]
2cea2302f3f5c4280a6990e4e1965a60	[Backdoor.Hlux.r3] [Trojan.Win32.Hlux.cxceyl] [Kryptik.CCFN] [TROJ_SPNR.36DM14] [Backdoor.Win32.Hlux.djbj] [Backdoor.Hlux!4usFCOdA3iI] [Trojan.Win32.S.PSW-Tepfer.835600.DB] [Mal/Kelihos-A] [TrojWare.Win32.Kryptik.BLUU] [Trojan.PWS.Stealer.12891] [TR/Kryptik.oeons] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Win32.Kryptik.BZDO] [Trojan.Crypt_s] [W32/Hlux.BZDO!tr.bdr] [Crypt_s.GGV] [Win32/Trojan.fec]
8889d486a91b3448e8b429ef99a536d0	[HW32.CDB.1cb9] [Trojan.Win32.Kryptik.cwzoai] [Kryptik.CCFN] [Backdoor.Win32.Hlux.dnla] [Backdoor.Hlux!yM05ScK42o0] [Trojan.Packed.26544] [Mal/FakeAV-UF] [Backdoor:Win32/Kelihos] [Heur.Trojan.Hlux] [Win32/Kryptik.CASL] [Backdoor.Win32.Kelihos] [W32/Hlux.DNLA!tr.bdr] [Crypt_s.GMK] [Trojan.Win32.Kryptik.CASL] [Win32/Trojan.337]
9178327bacccfcfecea87948acbfe510	[HW32.CDB.7c44] [TrojanPSW.Tepfer.r3] [Trojan.Win32.Kryptik.cxaoho] [WS.Reputation.1] [Kryptik.CCFN] [Trojan-PSW.Win32.Tepfer.twuw] [Trojan.PWS.Tepfer!pez0E7sggU8] [Trojan.Packed.26544] [Heuristic.LooksLike.Win32.Suspicious.E] [Mal/FakeAV-UF] [Trojan[PSW]/Win32.Tepfer] [Trojan:Win32/Dynamer!ac] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Tepfer.CASU!tr.pws] [Crypt_s.GMK] [Trojan.Win32.Kryptik.CASU] [Win32/Trojan.e76]
4b93f892d9249b70508ee222e37ee1c6	[HW32.CDB.E823] [TrojanPSW.Tepfer.r3] [Trojan.Win32.Kryptik.cxbvtz] [WS.Reputation.1] [Kryptik.CCFN] [Trojan-PSW.Win32.Tepfer.txbj] [Trojan.PWS.Tepfer!TcJrQOwJyhs] [Mal/FakeAV-UF] [BackDoor.Slym.13348] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan[PSW]/Win32.Tepfer] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Win32.Kryptik.CAUP] [Trojan.Crypt_s] [W32/Tepfer.CAUP!tr.pws] [Crypt_s.GMK]
d2146bca3681a7a8f3a93946bdee1a4f	[Riskware] [Posible_Worm32] [WS.Reputation.1] [TROJ_SPNR.1AE313] [Backdoor.Win32.Androm.ptv] [Backdoor.Androm!NM4iXFfRb7U] [UnclassifiedMalware] [Trojan.Inject2.23] [BDS/Androm.ptv] [Heuristic.LooksLike.Win32.Suspicious.F!81] [Mal/ZboCheMan-N] [Worm:Win32/Gamarue.I] [Trojan/Win32.Tepfer] [W32/Backdoor.PRDM-5289] [Win32/TrojanDownloader.Wauchos.I] [Worm.Win32.Gamarue] [W32/Kryptik.AX!tr] [Trj/OCJ.E]
0d4fa9360c4139d1a33a6203f510f886	[HW32.CDB.07a1] [Packed.Win32.Katusha.1!O] [Trojan.Win32.Hlux.cymqun] [Trojan.FakeAV] [Kryptik.CCQY] [Backdoor.Win32.Hlux.cri] [Backdoor.Hlux!tlFvhPzYgZ0] [Win32.Backdoor.Hlux.Glz] [Backdoor.Win32.Hlux.DUHE] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos] [Heur.Trojan.Hlux] [Trojan.Crypt] [W32/Hlux.CCCY!tr.bdr] [Crypt_s.GRA] [Backdoor.Win32.Hlux.aNkU]
678bb0a16a1759084ec8ad7ab63c2c60	[W32.Clod856.Trojan.c21e] [Backdoor.PePatch.Win32.72235] [Virus.Win32.Heur.g] [HV_ASWT2FN_BK0839FC.TOMC] [Win.Trojan.9160616] [PE:Malware.RDM.39!5.2D[F1]] [TrojWare.MSIL.Crypt.BDED] [Trojan.Click2.51610] [Win32.Riskware.RemoteAccess.B] [Trojan.Win32.Spy]
6bc8f8de707fc97b48a2d4b59eb2f8cd
981a83b3f0d4a74b0b38becda7c8cb9c	[Artemis!981A83B3F0D4] [Trojan.Win32.Crypt.cxd] [W32/Yakes.FHJN!tr] [Win32/Cryptor]
30faa031b0c6122bc91cff8996474b4a	[HW32.CDB.E594] [Trojan.Inject2]
70c82520cbc8bacd1515d7e2650b19a1	[HW32.CDB.43cf] [Packed.Win32.Katusha.1!O] [Backdoor.Hlux!SzVtl6MNJ18] [Trojan.FakeAV] [Kryptik.CDQY] [Win32/Kelihos.JRJKMf] [Backdoor.Win32.Hlux.dqja] [Win32.Backdoor.Hlux.Aheu] [TrojWare.Win32.Kryptik.CAUP] [Trojan.Packed.26581] [Trojan[Backdoor]/Win32.Hlux] [Win32.Hack.Hlux.dq.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [W32/Trojan.WVTP-0899] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GNC] [Trojan.Win32.Kryptik.bCBCJ]
b36385662ebdaf40bc3d28f90b6a4751	[Spyware.Zbot.USBV] [Trojan] [BackDoor.SlymENT.1498] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan/Win32.Foreign]
df902d85a5aebee35007be327e9f54d2	[HW32.CDB.7c9b] [Malware.Packer.FFS] [Mal/FakeAV-UF] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan/Win32.Symmi]
2c05ffe297116df3062faac792c44c91	[HW32.CDB.B4b9] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [UnclassifiedMalware] [BackDoor.Slym.13873] [Win32.Troj.Undef.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BD!tr] [Crypt_s.GNC] [Win32/Trojan.0de]
69105950b2bb95843dea5937bea0e8f0	[HW32.CDB.5919] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [TrojWare.Win32.Kryptik.CBCJ] [BackDoor.Slym.13873] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CBCJ]
e2e0517aa380c0b89cd7c88a5328758b

Whois

Property	Value
Name	334 Blackwell St.
Email	help-oit@win.duke.edu
Address	Suite 2111
City	Durham, NC 27701
Country	UNITED STATES
NameServer	DNS-AUTH-02.OIT.DUKE.EDU
Created	1986-06-02 00:00:00
Changed	2014-09-05 00:00:00
Expires	2015-07-31 00:00:00

DNS Resolutions

Date	IP Address
2014-02-08	152.3.72.62 (ClassC)
2014-06-06	152.3.100.141 (ClassC)
2014-06-06	209.34.253.66 (ClassC)
2014-06-24	152.3.101.219 (ClassC)
2014-07-05	152.3.72.104 (ClassC)
2014-11-08	152.3.72.109 (ClassC)
2025-05-10	152.3.72.197 (ClassC)

HTTP/1.1 200 OKDate: Fri, 04 Aug 2023 19:44:38 GMTServer: ApacheLast-Modified: Fri, 04 Aug 2023 19:39:38 GMTETag: 168ae-6021e0eab7e6fAccept-Ranges: bytesContent-Length: 92334Vary: Accept-EncodingConne

!DOCTYPE html>!--if IE 7 >html langen classie ie7> !endif-->!--if IE 8 >html langen classie ie8> !endif-->!--if IE 9 >html langen classie ie9> !endif-->!--if (gt IE 9)|!(IE)>!-->html langen> !--!endif-->head>    meta charsetUTF-8>    title>Duke University/title>    meta nameviewport contentwidthdevice-width, initial-scale1/>    meta namefullCSS content/_themes/duke/css/duke.css?v1686772825>    meta namefullJS content/_themes/duke/js/duke.js?v1677775960>    meta namegoogle-translate-customization content1af4716bc6a84971-60dbf489f2531aea-g2c533cec394d48bb-8/>    meta http-equivX-UA-Compatible contentIEEdge/>    link relcanonical hrefhttps://duke.edu/ />    link relicon typeimage/png href/_themes/duke/img/favicon.ico />    link reldns-prefetch href//today.duke.edu/>    link reldns-prefetch href//i1.ytimg.com/>    link reldns-prefetch href//alertbar.oit.duke.edu/>    link relstylesheet typetext/css href//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.css />    style typetext/css>html{-webkit-font-smoothing:antialiased}*{box-sizing:border-box}blockquote,body,div,figure,footer,form,h1,h2,h3,h4,h5,h6,header,html,iframe,label,legend,li,nav,object,ol,p,section,table,ul{margin:0;padding:0}article,figure,footer,header,hgroup,nav,section{display:block}body{background-color:#011950;font-style:normal;font-variant:normal;font-weight:400;font-size:100%;line-height:1.5;font-family:Open Sans,Roboto,Helvetica Neue,Helvetica,sans-serif;color:#262626;position:relative;background-position:initial initial;background-repeat:initial initial}body::after{content:small;display:none}@media (min-width:29.75em){body::after{content:small,small-2}}@media (min-width:46.8em){body::after{content:small,small-2,medium}}@media (min-width:53em){body::after{content:small,small-2,medium,large}}h2{font-size:2.5em;color:#012169;font-weight:400}h3{font-size:1.8125em;font-weight:400;margin-bottom:.5em;margin-top:.5em}.delta{font-size:1.25em;font-weight:400}.epsilon{font-size:.9375em;font-weight:400;margin-bottom:.5625em}.lc{max-width:7

Subdomains

Date	Domain	IP
fuqua.duke.edu	2025-05-03	152.3.160.18
fsb-b08563d9.fuqua.duke.edu	2025-05-04	152.3.160.32
data-analytics.fuqua.duke.edu	2025-04-27	152.3.160.18
healthanalytics.fuqua.duke.edu	2025-05-03	152.3.160.18
events.fuqua.duke.edu	2024-12-27	152.3.160.22
www.fuqua.duke.edu	2025-05-08	152.3.160.18
papyri.lib.duke.edu	2025-04-22	152.3.238.78
mail.dumac.duke.edu	2025-04-23	152.3.70.25
nameserver2.mc.duke.edu	2025-04-18	152.16.1.12
assets.brand.duke.edu	2025-05-04	152.3.103.97
external.ingress.prod.okd4.fitz.cloud.duke.edu	2025-04-18	152.3.80.200
www.ace.duke.edu	2025-05-01	152.3.103.21
assets.styleguide.duke.edu	2025-05-04	152.3.103.97
humanitieswritlarge.duke.edu	2025-04-18	152.3.28.91
www.humanitieswritlarge.duke.edu	2025-05-04	152.3.28.91
online.duke.edu	2024-03-23	34.75.230.160
nicholasinstitute.duke.edu	2024-03-22	152.3.101.102
cps.nursing.duke.edu	2024-06-09	34.236.135.105
www.spiritualityandhealth.duke.edu	2024-04-07	152.3.72.140
cgi.duke.edu	2025-05-03	152.3.103.86
www.cgi.duke.edu	2025-05-03	152.3.103.86
haitiamber.fhi.duke.edu	2025-05-03	152.3.28.91
wiki.duke.edu	2024-03-25	152.3.100.223
bluebook.duke.edu	2025-04-27	4.151.52.197
congregation.chapel.duke.edu	2025-04-22	162.159.138.44
www.cattell.duke.edu	2024-12-25	152.3.28.91
dm.duke.edu	2014-06-03	152.16.195.46
ucgp2015.chem.duke.edu	2025-05-10	152.3.28.91
shop.duke.edu	2024-10-28	23.55.167.25
rsvp.duke.edu	2024-03-02	99.84.66.124
caaar.duke.edu	2025-04-27	152.3.28.91
www.caaar.duke.edu	2025-05-03	152.3.28.91
lemur.duke.edu	2024-08-31	70.32.91.97
aaas.duke.edu	2025-05-09	152.3.103.25
raceinspace.aaas.duke.edu	2025-05-04	152.3.28.91
blackthought.aaas.duke.edu	2024-12-26	152.3.28.91
www.blackthought.aaas.duke.edu	2025-05-03	152.3.28.91
www.aaas.duke.edu	2025-05-04	152.3.103.25
cs.duke.edu	2014-07-19	152.3.140.1
www2.cs.duke.edu	2025-05-09	152.3.140.31
hermes.cs.duke.edu	2014-07-19	152.3.140.47
dukeperformances.duke.edu	2025-01-14	34.75.230.160
space2place.classicalstudies.duke.edu	2025-04-27	152.3.28.91
cronicas.latinostudies.duke.edu	2025-04-30	152.3.28.91
notes.duke.edu	2013-04-18	152.16.18.51
apim-prd-nc1.duhs.duke.edu	2025-04-21	152.16.3.38
isoazapp2.duhs.duke.edu	2024-03-24	13.107.213.70
maestro-storeforward.duhs.duke.edu	2025-05-02	152.16.0.101
test-devguide.duhs.duke.edu	2025-05-07	20.75.69.175
apim-prd-fe.duhs.duke.edu	2025-05-06	152.16.2.69
airwds.duhs.duke.edu	2025-04-16	152.16.0.82
maestro-hsw.duhs.duke.edu	2025-05-10	152.16.3.190
health-apis.duke.edu	2025-05-03	152.16.3.38
prod-apim.health-apis.duke.edu	2025-05-03	152.16.3.38
test.iris.duke.edu	2024-05-13	52.72.28.150
bulletins.duke.edu	2025-05-06	18.219.161.17
fuqua.bulletins.duke.edu	2024-12-24	3.14.91.33
studentaffairs.duke.edu	2024-12-28	152.3.103.211
www.studentaffairs.duke.edu	2024-12-28	152.3.103.211
careerhub.students.duke.edu	2025-04-22	44.196.168.43
cdn.careerhub.students.duke.edu	2024-11-27	99.84.66.18
fuquaconnect.duke.edu	2025-04-27	13.68.101.62
ipyn-az-20.oit.duke.edu	2024-01-31	172.174.82.35
dns-auth-01.oit.duke.edu	2025-04-22	152.3.103.93
speedtest-docker-host-01.oit.duke.edu	2025-05-09	152.3.101.108
DNS-AUTH-02.OIT.DUKE.EDU	2025-04-24	152.3.105.232
ipyn-az-13.oit.duke.edu	2024-01-31	40.76.233.178
labs-az-15.oit.duke.edu	2024-01-31	52.146.16.105
ipyn-az-19.oit.duke.edu	2024-01-31	40.114.11.145
beacon.oit.duke.edu	2025-03-27	152.3.100.167
brandbar.oit.duke.edu	2025-04-14	152.3.72.46
alertbar.oit.duke.edu	2025-04-16	152.3.70.21
status.oit.duke.edu	2024-09-18	204.246.191.84
speedtest.oit.duke.edu	2025-04-27	152.3.101.108
faithandleadership-dev.oit.duke.edu	2025-04-30	152.3.103.186
mx.oit.duke.edu	2014-05-30	152.3.70.25
citrixtest.duke.edu	2025-04-19	152.16.2.109
nc1cb-15k-01.citrixtest.duke.edu	2025-04-23	152.16.0.7
fecb-15k-01.citrixtest.duke.edu	2025-05-03	152.16.2.152
nc1.citrixtest.duke.edu	2025-04-16	152.16.0.7
nc1cb.citrixtest.duke.edu	2025-02-01	152.16.0.58
fecb.citrixtest.duke.edu	2025-05-03	152.16.2.29
fe.citrixtest.duke.edu	2025-04-25	152.16.2.29
securetest.citrixtest.duke.edu	2025-03-27	152.16.47.48
www.duke.edu	2025-04-26	152.3.72.197
citrix.duke.edu	2025-04-23	152.16.2.99
nc1.citrix.duke.edu	2025-04-30	152.16.3.232
nc1cb-ctx-dmz2a.citrix.duke.edu	2025-04-28	152.16.3.232
fecb-ctx-dmz2a.citrix.duke.edu	2025-05-03	152.16.2.8
nc1cb.citrix.duke.edu	2025-05-02	152.16.0.221
fecb.citrix.duke.edu	2025-04-27	152.16.2.241
fe.citrix.duke.edu	2025-05-09	152.16.2.8
secure.citrix.duke.edu	2025-03-20	152.16.47.46
archive.linux.duke.edu	2024-03-24	152.3.72.12
staging.today.duke.edu	2025-05-02	152.3.100.181
anesthesiology.duke.edu	2025-04-27	152.16.0.235
sonicdictionary.duke.edu	2025-04-26	152.3.28.91
library.duke.edu	2025-04-27	152.3.80.200
guides.library.duke.edu	2025-04-14	34.194.39.199
blogs.library.duke.edu	2025-04-27	152.3.101.125
guides.mclibrary.duke.edu	2024-12-12	54.85.246.96
tts-flatland-multi1.trinity.duke.edu	2025-05-02	152.3.28.91
trajanspuzzle.trinity.duke.edu	2025-04-27	152.3.28.91
imagingkanto.trinity.duke.edu	2025-05-03	152.3.28.91
linguisticlandscapes.trinity.duke.edu	2025-05-09	152.3.28.91
migrationmemorials.trinity.duke.edu	2025-05-03	152.3.28.91
vmclass.trinity.duke.edu	2025-05-05	152.3.28.91
women-in-stats.trinity.duke.edu	2025-05-03	152.3.28.91
socialmovements.trinity.duke.edu	2025-05-03	152.3.28.91
digitaldurham-new.trinity.duke.edu	2025-04-27	152.3.28.91
assessment-survey.trinity.duke.edu	2025-05-09	152.3.28.91

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]