Domain > auth.polpbyedelvives.com

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2023-05-29	3.120.12.79 (ClassC)
2024-09-27	18.194.70.43 (ClassC)
2024-12-17	3.120.236.33 (ClassC)
2024-12-27	52.57.119.227 (ClassC)
2025-01-29	52.57.179.106 (ClassC)
2025-03-12	18.192.35.247 (ClassC)
2025-05-16	3.126.213.195 (ClassC)
2025-09-01	52.29.82.45 (ClassC)
2025-09-05	18.196.152.2 (ClassC)
2026-01-06	52.28.225.247 (ClassC)

HTTP/1.1 200 OKDate: Fri, 27 Sep 2024 23:52:01 GMTContent-Type: text/htmlContent-Length: 2860Connection: keep-aliveServer: nginxLast-Modified: Wed, 18 Sep 2024 14:09:39 GMTETag: 66eadf23-b2cStrict-Tra

!DOCTYPE html>html langen>head>  meta charsetUTF-8>  meta http-equivX-UA-Compatible contentIEedge>  meta nameviewport contentwidthdevice-width, initial-scale1.0>  title>Document/title>/head>body>/body>script srcconfig/environment.js>/script>script srcssolib.js>/script>script typetext/javascript>  const parent  window.parent  const url  new URL(window.location.href);  var sid  null;  var challenge  null;  try {    sid  url.searchParams.get(sid);    console.log(sid:,sid)    if (sid) {      setCookie(session_oraculo, sid, 1)      window.close()    }  }  catch (e) {    console.log(e)  }  class Message {    constructor(type, body) {      this.type  type      this.body  body    }  }  function sendMessage(windowObj, payload) {    if (windowObj) {      windowObj.postMessage(payload, *);    }  }  function receiveMessage(event) {    const { data }  event    const { type, body }  data    switch (type) {      case setup:        setup(body)        break      case check:        check(body)        break      case check-username:        checkUsername(body, checkUsernameCallback)        break      case check-global-session:        checkIframeGlobalSession()        break      case disconnect:        disconnect((error) > {          if (error) return sendError(error)          delCookie(session_oraculo)          sendMessage(parent, new Message(logout, true))        })        break      case save-global-session:        setCookie(session_oraculo, body, 1)        break;              default:        break;    }  }  function sendError(error) {    sendMessage(parent, new Message(error, error))  }  function handleToken(token_id) {    if (token_id) {      return sendMessage(parent, new Message(token, token_id))    }    sendMessage(parent, new Message(login, true))  }  function setup(options) {    //TODO: verify options    setFederatedApp(options)    checkSession(handleToken)  }  function check({ sid, token_id }) {    if (token_id)      return handleToken(token_id)    validateSession(sid, handleToken)  }  function checkUsernameCallback(err, u

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > auth.polpbyedelvives.com

Is this malicious?

DNS Resolutions

Port 80

Port 443