Domain > kaplan.com

More information on this domain is in AlienVault OTX

Files that talk to kaplan.com

MD5	A/V
d42c1a59b111316f7481770349e653db	[HW32.CDB.87f3] [Malware.Packer.OCD]
e21b3469b4fc1efddf76d8c89f1ebb2a	[Malware.Packer.HGX1] [Heuristic.LooksLike.Win32.Suspicious.E] [W32/Kryptik.AXUE!tr]
db5b440f6419090cd9567f3b33fd3ced	[Malware.Packer.HGX1] [BackDoor.SlymENT.1498] [Heuristic.LooksLike.Win32.Suspicious.E] [W32/Kryptik.AXUE!tr]
18e659efd6bd23972f0a9a6a9ecae920	[HW32.CDB.9c4f] [Trojan.Win32.Kryptik.cxapgj] [Kryptik.CCFN] [Backdoor.Win32.Hlux.dmyv] [Backdoor.Hlux!x5Q6ZTEiRSs] [BackDoor.Slym.13348] [Mal/FakeAV-UF] [Trojan[Backdoor]/Win32.Hlux] [VirTool:Win32/Obfuscator.WT] [Heur.Trojan.Hlux] [Win32/Kryptik.CASL] [Win32.SuspectCrc] [W32/Kryptik.BWUN!tr] [Crypt3.LQN] [Trojan.Win32.Kryptik.CASL] [Win32/Trojan.337]
860dd245cbecd656df047b97456d0ad0	[HW32.CDB.9069] [Malware.Packer.FFS] [Heuristic.LooksLike.Win32.Suspicious.E] [PE:Malware.AntiWare!1.9D9B] [W32/Kelihos.KK@mm]
1929530a1f2d6d48a87aac928220e460	[HW32.CDB.4199] [Backdoor.Hlux.r3] [Trojan.Win32.Hlux.cwwgjj] [Kryptik.CCFN] [Backdoor.Win32.Hlux.crc] [Backdoor.Hlux!GJ0f5FTmyog] [UnclassifiedMalware] [BackDoor.Slym.14056] [Heuristic.LooksLike.Win32.Suspicious.E] [Mal/Kelihos-A] [Trojan[Backdoor]/Win32.Hlux] [Trojan:Win32/Sisron] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Win32.SuspectCrc] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GJB] [Trojan.Win32.Kryptik.BZWV] [Win32/Trojan.e55]
37b9070bfbc74ee584b01de29d129911	[HW32.CDB.Ec9a] [Heur.Trojan.Hlux]
8835f7fb6071ec49aaac1e7a87231c81	[HW32.CDB.56ce] [Backdoor.Hlux.r3] [Backdoor.Hlux!1YBsnlQ+0io] [Kryptik.CCFN] [Backdoor.Win32.Hlux.dllz] [Trojan.Win32.Kryptik.cxcjig] [Trojan.Packed.26544] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BWUN!tr] [Trojan.Win32.Kryptik.CASU] [Win32/Trojan.337]
3223f61af50aa26a1c3bb96fe1779011	[HW32.CDB.D56b] [Packed.Win32.Katusha.3!O] [Backdoor.Hlux.r3] [Backdoor.Hlux.Win32.9065] [Trojan.Win32.Kryptik.czfnsp] [Trojan.FakeAV] [Kryptik.CCQY] [Backdoor.Win32.Hlux.dueu] [Backdoor.Hlux!DdFHfWii/ns] [UnclassifiedMalware] [TR/Kryptik.oenzk] [Backdoor:Win32/Kelihos] [Trojan/Win32.FakeAV] [Heur.Trojan.Hlux] [Backdoor.Win32.Hlux.cri] [Trojan.Crypt3] [W32/Kryptik.CBOM!tr] [Crypt3.ORV] [Backdoor.Win32.Hlux.Acmu] [Win32/Trojan.7bf]
0dd56a0b8ea7bedb57cebf9aacdac40f	[Malware.Packer.HGX1] [Heuristic.BehavesLike.Win32.Suspicious-BAY.G] [W32/Kryptik.AXUE!tr]
15d18c6131366d57c2dd18d866444746	[HW32.CDB.2393] [Packed.Win32.Katusha.3!O] [Trojan/Kryptik.djh] [Hlux.ZY] [Backdoor.Win32.Hlux.dtsu] [UnclassifiedMalware] [BackDoor.Slym.13011] [TR/Kryptik.oenzk] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos] [W32/Trojan.XKZV-6012] [Win32/Kryptik.CBNK] [Trojan.Crypt3] [W32/Hlux.DJH!tr.bdr] [Crypt3.OLP] [Backdoor.Win32.Hlux.Aq]
14bfd82cc98684fb9c3e91971d2490b1	[HW32.CDB.Eb32] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [UnclassifiedMalware] [BackDoor.Slym.13873] [Win32.Troj.Undef.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Win32.Kryptik.CBCJ] [Trojan.Crypt_s] [W32/Kryptik.BD!tr] [Crypt_s.GNC]
3ff79e59f23983931c7f8b78ff705df1	[HW32.CDB.6c99] [Kryptik.CCFN] [Win32/Kelihos.SeNdHLB] [Backdoor.Win32.Hlux.dlkp] [Backdoor.Hlux!oUNizOsy5vo] [TrojWare.Win32.Kryptik.CASU] [Trojan.Packed.26544] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Backdoor.Win32.Hlux.At] [Trojan-Downloader.Win32.Waledac] [W32/Hlux.AGWI!tr] [Win32/Trojan.337]
3209b25b5988bb055d56e1b1e6382e40	[HW32.CDB.53d8] [Kryptik.CCFN] [Trojan-PSW.Win32.Tepfer.twjg] [Mal/FakeAV-UF] [TrojWare.Win32.Kryptik.CASU] [Trojan.Packed.26544] [Trojan[PSW]/Win32.Tepfer] [Backdoor:Win32/Kelihos] [Trojan/Win32.Tepfer] [W32/Trojan.ELDJ-0755] [Heur.Trojan.Hlux] [Win32/Kryptik.CASL] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GPK] [Trojan.Win32.InfoStealer.As]
c86f315b840f993b805369f3a29ba797	[HW32.CDB.9f50] [Packed.Win32.Katusha.3!O] [Crypt_s.GNC]
427481f8e79f0ee33385c9da2fe00111	[HW32.CDB.16f0] [Backdoor.Hlux!hl4OBD+jyQw] [Kryptik.CCFN] [Backdoor.Win32.Hlux.djqf] [Trojan.Win32.Hlux.cxbctj] [TrojWare.Win32.Kryptik.BZOO] [Mal/Kelihos-A] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GHE] [Trojan.Win32.Kryptik.BZIX]
14b43203abd10b893244fc8ac8d5f531	[HW32.CDB.F55f] [Packed.Win32.Katusha.3!O] [WS.Reputation.1] [Kryptik.CDQY] [UnclassifiedMalware] [BackDoor.Slym.13873] [Win32.Troj.Undef.(kcloud)] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BD!tr] [Crypt_s.GNC] [Win32/Trojan.0de]
56b02dc8b8072c1f787058a56eae64f0	[HW32.CDB.9b1c] [Backdoor.Hlux.r3] [Trojan.Win32.Hlux.cwhrmp] [Kryptik.CCFN] [Backdoor.Win32.Hlux.djkd] [Mal/Kelihos-A] [TrojWare.Win32.Kryptik.BZOO] [Trojan.DownLoad3.28912] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GHE] [Trojan.Win32.Kryptik.BZIX] [Win32/Trojan.ef7]
24a034d09222c5370365c4cdadde0f65	[HW32.CDB.Da0d] [Packed.Win32.Katusha.3!O] [Kryptik.CDQY] [TrojWare.Win32.Kryptik.CBCJ] [Trojan.Packed.26581] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BD!tr] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CBCJ] [Win32/Trojan.0de]
a480649c0695ca403c2650c2f5ec4796	[HW32.CDB.6149] [Packed.Win32.Katusha.1!O] [Trojan.FakeAV] [Kryptik.CCFN] [Win32/Kelihos.QbYCJQ] [Backdoor.Win32.Hlux.dqiv] [Backdoor.Hlux!zx6Z3QU4CJg] [Backdoor.Win32.Hlux.DUHE] [Trojan.Packed.26581] [Trojan[Backdoor]/Win32.Hlux] [Backdoor:Win32/Kelihos.F] [W32/Trojan.TGXU-8116] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Win32.Backdoor.Hlux.Lmai] [Trojan.Crypt_s] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GNC] [Trojan.Win32.Kryptik.bCBCJ]

Whois

Property	Value
Name	Host Master
Organization	Kaplan Inc.
Email	hostmaster@kaplan.com
Address	395 Hudson Street
Zip Code	10014
City	New York
State	NY
Country	US
Phone	+1.2124925800
Fax	+1.6463653216
NameServer	ns2.kaplan.com
Created	1994-03-01 05:00:00
Changed	2014-01-20 18:36:03
Expires	2020-03-02 00:00:00
Registrar	CSC CORPORATE DOMAIN

DNS Resolutions

Date	IP Address
2013-05-16	107.21.12.211 (ClassC)
2013-06-01	107.21.16.88 (ClassC)
2014-03-24	107.21.16.88 (ClassC)
2015-05-17	107.21.12.211 (ClassC)
2015-12-18	45.79.137.163 (ClassC)
2019-12-13	146.148.107.116 (ClassC)
2021-10-28	142.250.152.27 (ClassC)
2021-10-28	173.194.77.27 (ClassC)
2021-10-28	108.177.98.27 (ClassC)
2021-10-28	172.253.113.27 (ClassC)
2021-10-28	64.233.171.27 (ClassC)
2021-10-31	142.250.115.27 (ClassC)
2021-10-31	172.253.113.26 (ClassC)
2021-10-31	142.250.152.26 (ClassC)
2021-10-31	74.125.197.26 (ClassC)
2021-11-13	74.125.195.27 (ClassC)
2021-11-15	74.125.195.26 (ClassC)
2021-11-15	64.233.171.26 (ClassC)
2021-11-15	74.125.142.26 (ClassC)
2021-11-17	142.250.115.26 (ClassC)
2021-11-17	74.125.142.27 (ClassC)
2021-11-17	74.125.135.26 (ClassC)
2021-11-27	173.194.77.26 (ClassC)
2021-11-28	74.125.197.27 (ClassC)
2021-11-29	74.125.20.27 (ClassC)
2021-12-01	108.177.98.26 (ClassC)
2021-12-04	142.250.107.27 (ClassC)
2022-01-12	142.250.141.27 (ClassC)
2022-02-01	74.125.20.26 (ClassC)
2022-02-15	173.194.202.26 (ClassC)
2022-08-21	142.250.99.27 (ClassC)
2022-08-26	52.84.125.123 (ClassC)
2022-08-26	52.84.125.43 (ClassC)
2022-08-26	52.84.125.88 (ClassC)
2022-08-26	52.84.125.105 (ClassC)
2022-08-28	18.64.236.15 (ClassC)
2022-08-28	18.64.236.51 (ClassC)
2022-08-28	18.64.236.111 (ClassC)
2022-08-30	54.230.225.64 (ClassC)
2022-08-30	18.160.200.81 (ClassC)
2022-08-30	54.230.225.97 (ClassC)
2022-08-30	18.160.200.113 (ClassC)
2022-08-30	54.230.225.19 (ClassC)
2022-08-30	18.160.200.3 (ClassC)
2022-08-30	54.230.225.33 (ClassC)
2022-08-30	18.160.200.6 (ClassC)
2022-09-01	52.222.158.18 (ClassC)
2022-09-02	52.222.149.106 (ClassC)
2022-09-09	143.204.165.93 (ClassC)
2022-09-09	13.249.120.65 (ClassC)
2022-09-09	13.249.120.93 (ClassC)
2022-09-09	143.204.165.119 (ClassC)
2022-09-09	143.204.165.49 (ClassC)
2022-09-09	13.249.120.25 (ClassC)
2022-09-09	143.204.165.79 (ClassC)
2022-09-09	13.249.120.35 (ClassC)
2022-09-12	54.230.18.50 (ClassC)
2022-09-12	54.230.18.68 (ClassC)
2022-09-12	54.230.18.83 (ClassC)
2022-09-12	54.230.18.122 (ClassC)
2022-09-12	108.156.107.121 (ClassC)
2022-09-14	18.160.225.89 (ClassC)
2022-09-14	18.160.225.123 (ClassC)
2022-09-14	18.160.225.20 (ClassC)
2022-09-14	108.156.91.16 (ClassC)
2022-09-14	18.160.225.30 (ClassC)
2022-09-23	216.137.45.51 (ClassC)
2022-09-23	108.156.107.126 (ClassC)
2022-09-23	216.137.45.53 (ClassC)
2022-09-23	108.156.107.39 (ClassC)
2022-09-23	216.137.45.6 (ClassC)
2022-09-23	108.156.107.62 (ClassC)
2022-09-23	216.137.45.10 (ClassC)
2022-10-17	18.160.60.104 (ClassC)
2022-10-17	18.160.60.44 (ClassC)
2022-10-17	18.160.60.46 (ClassC)
2022-10-17	18.160.60.73 (ClassC)
2022-10-18	99.84.160.24 (ClassC)
2022-10-18	99.84.160.57 (ClassC)
2022-10-18	99.84.160.100 (ClassC)
2022-10-18	99.84.160.118 (ClassC)
2023-01-07	13.249.85.36 (ClassC)
2023-04-27	13.249.85.90 (ClassC)
2023-04-27	13.249.85.13 (ClassC)
2023-04-27	13.249.85.33 (ClassC)
2023-05-31	52.222.139.62 (ClassC)
2023-05-31	52.222.139.80 (ClassC)
2023-05-31	52.222.139.122 (ClassC)
2023-05-31	52.222.139.123 (ClassC)
2023-07-04	13.249.9.35 (ClassC)
2023-07-13	18.173.154.38 (ClassC)
2023-08-14	65.8.49.116 (ClassC)
2023-08-14	65.8.49.84 (ClassC)
2023-08-14	65.8.49.91 (ClassC)
2023-08-14	65.8.49.100 (ClassC)
2023-09-08	65.8.248.31 (ClassC)
2023-09-08	65.8.248.64 (ClassC)
2023-09-08	65.8.248.96 (ClassC)
2023-09-08	65.8.248.109 (ClassC)
2023-10-29	18.173.166.125 (ClassC)
2023-10-29	18.173.166.51 (ClassC)
2023-10-29	18.173.166.61 (ClassC)
2023-10-29	18.173.166.84 (ClassC)
2023-11-06	3.163.101.110 (ClassC)
2023-11-06	3.163.101.12 (ClassC)
2023-11-06	3.163.101.62 (ClassC)
2023-11-06	3.163.101.93 (ClassC)
2023-11-16	18.165.122.107 (ClassC)
2023-11-27	13.249.9.44 (ClassC)
2024-06-28	18.165.98.51 (ClassC)
2024-06-28	18.165.98.68 (ClassC)
2024-06-28	18.165.98.69 (ClassC)
2024-06-28	18.165.98.97 (ClassC)
2024-07-06	18.238.136.2 (ClassC)
2024-07-06	18.238.136.22 (ClassC)
2024-07-06	18.238.136.29 (ClassC)
2024-07-06	18.238.136.53 (ClassC)
2024-07-11	18.66.27.108 (ClassC)
2024-08-11	108.157.52.125 (ClassC)
2024-08-20	3.166.160.41 (ClassC)
2024-08-20	3.166.160.66 (ClassC)
2024-08-20	3.166.160.10 (ClassC)
2024-08-20	3.166.160.39 (ClassC)
2024-08-21	18.239.183.16 (ClassC)
2024-08-21	18.239.183.37 (ClassC)
2024-08-21	18.239.183.49 (ClassC)
2024-08-21	18.239.183.83 (ClassC)
2024-08-30	13.226.204.24 (ClassC)
2024-08-30	13.226.204.72 (ClassC)
2024-08-30	13.226.204.8 (ClassC)
2024-08-30	13.226.204.106 (ClassC)
2024-09-13	108.157.142.99 (ClassC)
2024-09-16	18.154.101.123 (ClassC)
2024-09-16	18.154.101.15 (ClassC)
2024-09-16	18.154.101.109 (ClassC)
2024-09-16	18.154.101.119 (ClassC)
2024-09-18	108.138.192.119 (ClassC)
2024-09-18	108.138.192.25 (ClassC)
2024-09-18	108.138.192.79 (ClassC)
2024-09-18	108.138.192.86 (ClassC)
2024-10-31	3.171.139.89 (ClassC)
2024-10-31	3.171.139.98 (ClassC)
2024-10-31	3.171.139.19 (ClassC)
2024-10-31	3.171.139.33 (ClassC)
2024-12-19	3.164.92.113 (ClassC)
2024-12-19	3.164.92.38 (ClassC)
2024-12-19	3.164.92.74 (ClassC)
2024-12-19	3.164.92.110 (ClassC)
2025-02-16	18.161.6.88 (ClassC)
2025-02-23	3.163.165.66 (ClassC)
2025-03-09	3.163.165.57 (ClassC)
2025-03-16	18.161.6.111 (ClassC)
2025-03-28	18.161.6.14 (ClassC)
2025-04-01	18.161.6.47 (ClassC)
2025-05-02	3.162.38.43 (ClassC)
2025-06-22	3.163.165.126 (ClassC)
2025-06-28	3.163.165.46 (ClassC)
2025-07-05	3.161.213.64 (ClassC)
2025-07-31	3.175.34.51 (ClassC)
2025-08-07	3.175.34.68 (ClassC)
2025-12-28	3.175.34.46 (ClassC)
2026-01-06	3.175.34.90 (ClassC)

HTTP/1.1 403 ForbiddenServer: CloudFrontDate: Sun, 13 Aug 2023 23:27:39 GMTContent-Type: text/htmlContent-Length: 919Connection: keep-aliveX-Cache: Error from cloudfrontVia: 1.1 185f4b03b711932fc7e735

!DOCTYPE HTML PUBLIC -//W3C//DTD HTML 4.01 Transitional//EN http://www.w3.org/TR/html4/loose.dtd>HTML>HEAD>META HTTP-EQUIVContent-Type CONTENTtext/html; charsetiso-8859-1>TITLE>ERROR: The request could not be satisfied/TITLE>/HEAD>BODY>H1>403 ERROR/H1>H2>The request could not be satisfied./H2>HR noshade size1px>Request blocked.We cant connect to the server for this app or website at this time. There might be too much traffic or a configuration error. Try again later, or contact the app or website owner.BR clearall>If you provide content to customers through CloudFront, you can find steps to troubleshoot and help prevent this error by reviewing the CloudFront documentation.BR clearall>HR noshade size1px>PRE>Generated by cloudfront (CloudFront)Request ID: lskg6EaUSNlz4CdYiWwjzpwxxgVi_y-w_veLP9w4HERwsMYdFPKG7A/PRE>ADDRESS>/ADDRESS>/BODY>/HTML>

Subdomains

Date	Domain	IP
ns1.kaplan.com	2025-11-12	54.208.129.148
NS2.KAPLAN.COM	2025-12-01	72.166.181.220
api.kaplan.com	2025-10-07	52.0.85.32
flintco.kaplan.com	2015-04-15	173.194.196.121
kbr.kaplan.com	2024-02-10	52.54.228.73
www.kaplan.com	2024-02-15	18.155.192.110
arrowheadacademy.kaplan.com	2015-06-24	74.125.142.121
community.kaplan.com	2025-06-28	162.159.128.79

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > kaplan.com

Is this malicious?

Files that talk to kaplan.com

Whois

DNS Resolutions

Port 80

Port 443

Subdomains