Domain > elsevier.com

More information on this domain is in AlienVault OTX

Is this malicious?

Files that talk to elsevier.com

MD5	A/V
d42c1a59b111316f7481770349e653db	[HW32.CDB.87f3] [Malware.Packer.OCD]
971d6821a96e8f41da919db02ebc60da	[Malware.Packer.FFS] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan/Win32.Yakes] [W32/Kelihos.BCEB!tr]
1929530a1f2d6d48a87aac928220e460	[HW32.CDB.4199] [Backdoor.Hlux.r3] [Trojan.Win32.Hlux.cwwgjj] [Kryptik.CCFN] [Backdoor.Win32.Hlux.crc] [Backdoor.Hlux!GJ0f5FTmyog] [UnclassifiedMalware] [BackDoor.Slym.14056] [Heuristic.LooksLike.Win32.Suspicious.E] [Mal/Kelihos-A] [Trojan[Backdoor]/Win32.Hlux] [Trojan:Win32/Sisron] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Win32.SuspectCrc] [W32/Hlux.BWUN!tr.bdr] [Crypt_s.GJB] [Trojan.Win32.Kryptik.BZWV] [Win32/Trojan.e55]
5ee74c52944265c5a84f878040e02331	[HW32.CDB.27c8] [Trojan.Win32.Hlux.cxadam] [Kryptik.CCFN] [Backdoor.Win32.Hlux.dlza] [Backdoor.Hlux!t6Evi7JomQk] [TrojWare.Win32.Kryptik.CASU] [BackDoor.Slym.13362] [Heuristic.BehavesLike.Win32.Suspicious-BAY.G] [Mal/FakeAV-UF] [Trojan[Backdoor]/Win32.Hlux] [VirTool:Win32/Obfuscator.WT] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Backdoor.Win32.Hlux.AHTW] [Win32/Kryptik.CASL] [Win32.Backdoor.Hlux.Tbjb] [Backdoor.Win32.Kelihos] [W32/Hlux.CASL!tr.bdr]
4b93f892d9249b70508ee222e37ee1c6	[HW32.CDB.E823] [TrojanPSW.Tepfer.r3] [Trojan.Win32.Kryptik.cxbvtz] [WS.Reputation.1] [Kryptik.CCFN] [Trojan-PSW.Win32.Tepfer.txbj] [Trojan.PWS.Tepfer!TcJrQOwJyhs] [Mal/FakeAV-UF] [BackDoor.Slym.13348] [Heuristic.LooksLike.Win32.Suspicious.E] [Trojan[PSW]/Win32.Tepfer] [Backdoor:Win32/Kelihos.F] [Trojan/Win32.Tepfer] [Heur.Trojan.Hlux] [Trojan.Win32.Kryptik.CAUP] [Trojan.Crypt_s] [W32/Tepfer.CAUP!tr.pws] [Crypt_s.GMK]
30faa031b0c6122bc91cff8996474b4a	[HW32.CDB.E594] [Trojan.Inject2]
129893be541a5853da63c69a90dc7fa6	[HW32.CDB.6488] [Packed.Win32.Katusha.3!O] [Trojan.Win32.Slym.cxvgrz] [WS.Reputation.1] [Kryptik.CCFN] [Backdoor.Win32.Hlux.dtmi] [TrojWare.Win32.Kryptik.CBCJ] [BackDoor.Slym.13011] [VirTool:Win32/Obfuscator.WT] [Trojan/Win32.MalPacked] [Heur.Trojan.Hlux] [Trojan.Crypt_s] [W32/Kryptik.BD!tr] [Crypt_s.GNC] [Trojan.Win32.Kryptik.CBLX]
fe734b28009c7dd5389f64d72722bb21

Whois

Property	Value
Email	domainsupport@elsevier.com
NameServer	NS0-E.DNS.PIPEX.NET
Created	1993-07-02 00:00:00
Changed	2014-07-01 00:00:00
Expires	2016-07-01 00:00:00
Registrar	SAFENAMES LTD

DNS Resolutions

Date	IP Address
2012-06-23	145.36.215.180 (ClassC)
2013-01-12	207.24.42.180 (ClassC)
2013-04-18	213.129.83.155 (ClassC)
2013-11-06	145.36.215.237 (ClassC)
2014-01-16	187.45.195.29 (ClassC)
2014-03-24	176.65.66.66 (ClassC)
2014-06-06	198.185.19.18 (ClassC)
2014-06-24	74.117.207.245 (ClassC)
2014-11-27	212.70.64.183 (ClassC)
2014-12-15	176.65.66.66 (ClassC)
2015-02-12	154.44.182.23 (ClassC)
2024-01-27	43.245.43.18 (ClassC)
2024-02-21	52.30.56.110 (ClassC)
2025-04-18	52.212.180.87 (ClassC)
2025-05-10	34.243.46.252 (ClassC)
2025-05-13	54.195.96.253 (ClassC)

Port 80

Port 443

Subdomains

Date	Domain	IP
sftp-opsbank2.elsevier.com	2024-09-10	34.243.182.71
external.gba.elsevier.com	2025-04-05	52.212.182.211
schema.elsevier.com	2024-11-28	99.84.66.33
beta.elsevier.com	2024-11-09	104.16.58.61
refhub.elsevier.com	2019-10-22	13.224.29.127
linkinghub.elsevier.com	2024-10-10	34.207.27.207
authorhub.elsevier.com	2023-08-16	3.232.243.213
track.authorhub.elsevier.com	2024-10-22	99.84.66.129
ssc.elsevier.com	2025-04-12	104.18.35.46
dev-ssc.elsevier.com	2025-04-07	172.64.155.99
feedback.recs.d.elsevier.com	2024-03-30	108.139.10.117
dev.d.elsevier.com	2024-08-19	44.208.198.26
secure-ecsd.elsevier.com	2024-05-15	3.163.24.69
access-global.id-uat.ae.elsevier.com	2025-04-19	3.13.0.169
id-dev-global-access.id-dev.ae.elsevier.com	2025-03-23	18.223.90.223
gtm-osmosis.staging.webpresence.elsevier.com	2024-07-22	54.171.134.70
search-app.prod.ecommerce.elsevier.com	2025-03-11	52.211.218.166
global-components.prod.ecommerce.elsevier.com	2024-05-14	34.249.138.151
account.staging.ecommerce.elsevier.com	2025-03-10	52.212.161.131
sso.healthcare.elsevier.com	2024-03-15	104.16.216.241
apps.healthcare.elsevier.com	2023-08-16	104.18.172.88
patientpass.healthcare.elsevier.com	2025-02-20	104.16.133.12
pure.elsevier.com	2024-01-31	52.209.2.118
doc.pure.elsevier.com	2024-07-22	108.128.149.164
share.pure.elsevier.com	2024-06-03	52.214.4.35
eurosense.elsevier.com	2024-07-24	3.163.24.16
educate.elsevier.com	2025-04-14	104.18.41.39
booksite.elsevier.com	2025-04-28	52.17.200.174
www.booksite.elsevier.com	2024-10-23	18.200.76.236
labsuite.elsevier.com	2024-03-16	54.231.134.65
evolve.elsevier.com	2014-08-21	54.243.205.136
www.evolve.elsevier.com	2025-05-01	104.17.38.96
cdn-funding.elsevier.com	2024-07-07	104.16.57.61
api.funding.elsevier.com	2024-05-27	63.32.63.157
submit-staging.elsevier.com	2025-01-25	104.18.40.243
confidenceinresearch.elsevier.com	2024-08-17	52.42.122.102
eewpvip.cert.ea.health.elsevier.com	2025-05-04	192.0.66.91
bookshelf.health.elsevier.com	2023-08-16	104.17.81.55
assessment-player.dev.authess.health.elsevier.com	2025-01-13	99.86.38.96
caliper-lmb.prod.frost.health.elsevier.com	2021-02-28	54.230.126.34
ap.prod.frost.health.elsevier.com	2024-08-28	99.84.66.74
ap.cert.frost.health.elsevier.com	2024-10-22	18.238.217.57
api.elsevier.com	2024-12-21	104.16.58.61
editorial.elsevier.com	2024-07-05	54.157.252.18
perpetual.elsevier.com	2024-04-30	54.231.134.1
m.pharma.email.elsevier.com	2024-04-12	63.32.200.66
res.pharma.email.elsevier.com	2024-07-07	99.84.66.56
t.pharma.email.elsevier.com	2024-04-13	63.32.200.66
m.research.email.elsevier.com	2025-01-03	52.17.239.147
res.research.email.elsevier.com	2024-03-08	18.161.6.58
t.research.email.elsevier.com	2024-12-23	52.30.201.80
m.health.email.elsevier.com	2024-10-02	54.74.174.250
res.health.email.elsevier.com	2024-08-08	204.246.191.86
t.health.email.elsevier.com	2024-08-16	34.249.72.119
res.info.email.elsevier.com	2024-08-28	99.84.66.66
m.author.email.elsevier.com	2024-12-31	18.202.14.118
t.author.email.elsevier.com	2024-10-11	34.251.181.88
m.cellpress.email.elsevier.com	2024-10-16	34.248.26.200
res.cellpress.email.elsevier.com	2024-11-04	204.246.191.124
t.cellpress.email.elsevier.com	2025-04-19	34.241.50.169
m.thelancet.email.elsevier.com	2024-09-16	34.241.181.118
res.thelancet.email.elsevier.com	2024-11-20	99.84.66.119
t.thelancet.email.elsevier.com	2025-04-14	54.155.225.9
saml.elsevier.com	2024-08-18	18.65.229.36
cdn.elsevier.com	2013-12-12	108.161.189.4
patiented-cdn.elsevier.com	2024-06-22	18.161.6.123
click.notification.elsevier.com	2024-02-29	13.227.74.31
alb.eaq-beta-005.lo.elsevier.com	2024-08-08	35.174.26.183
help.elsevier.com	2024-08-06	3.163.24.4
loadrc-shibauth-np.elsevier.com	2024-08-25	54.83.236.243
bookart-np.elsevier.com	2025-01-27	104.18.42.198
uatnp.vtw-np.elsevier.com	2024-05-27	52.31.104.103
sitnp.vtw-np.elsevier.com	2024-07-30	52.19.179.232
devnp.vtw-np.elsevier.com	2023-10-13	3.248.97.215
cn.webshop.elsevier.com	2024-12-27	18.161.6.123
resources.webshop.elsevier.com	2023-08-31	52.92.19.137
reader.elsevier.com	2019-05-27	13.32.255.109

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]