Domain > retailer-auth.1receipt.io

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2024-07-22	108.157.150.7 (ClassC)
2024-09-28	18.67.65.17 (ClassC)
2024-10-14	18.154.206.45 (ClassC)
2024-11-22	18.67.65.121 (ClassC)
2024-12-27	18.67.65.71 (ClassC)
2025-01-21	18.67.65.13 (ClassC)
2025-05-17	3.166.96.49 (ClassC)
2025-06-19	18.238.109.86 (ClassC)
2025-07-30	3.169.231.95 (ClassC)
2025-08-21	3.166.96.38 (ClassC)
2025-09-15	18.155.202.102 (ClassC)
2025-10-05	3.169.231.90 (ClassC)
2025-11-03	18.155.202.88 (ClassC)

HTTP/1.1 200 OKContent-Type: text/html;charsetUTF-8Transfer-Encoding: chunkedConnection: keep-aliveDate: Thu, 31 Aug 2023 13:44:35 GMTSet-Cookie: XSRF-TOKEN1ee12fce-dfde-4d3c-b794-37f9501f6753; Path/;

!DOCTYPE html>html langen>head>head>    link hrefnull/null/css/bootstrap.min.css relstylesheet        mediascreen />    link hrefnull/null/css/cognito-login.css relstylesheet        mediascreen />        title>Signin/title>    script srcnull/null/js/amazon-cognito-advanced-security-data.min.js >/script>    script>    function getAdvancedSecurityData(formReference) {        if (typeof AmazonCognitoAdvancedSecurityData  undefined) {            return true;        }        // UserpoolId is not available on frontend for springboard. We do not use userPoolId        // anyway other than put in context data.         var userPoolId  ;        var clientId  getUrlParameter(client_id);        var username  ;        var usernameInput  document.getElementsByName(username)0;        if (usernameInput && usernameInput.value) {            username  usernameInput.value;        }        var asfData  AmazonCognitoAdvancedSecurityData.getData(username, userPoolId, clientId);        if (typeof asfData  undefined) {            return true;        }        if (formReference && formReference.cognitoAsfData) {            formReference.cognitoAsfData.value  asfData        }        return true;    }    function getUrlParameter(name) {        name  name.replace(//, \).replace(//, \);        var regex  new RegExp(\?& + name + (^&#*));        var results  regex.exec(location.search);        return results  null ?  : decodeURIComponent(results1.replace(/+/g,  ));    }    function onSubmit(evt, formRef) {        formRef.querySelector(buttontypesubmit).disabled  true;        if (!!formRef.submitted) {            evt.preventDefault();            return false;        } else {            formRef.submitted  true;            return getAdvancedSecurityData(formRef);        }    }/script>    meta nameviewport contentwidthdevice-width, initial-scale1>/head>/head>body spellcheckfalse>    div classcontainer>        div classmodal-dialog>            div classmodal-content background-customizable modal-content-mobile visible-xs visible-sm>                div

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > retailer-auth.1receipt.io

Is this malicious?

DNS Resolutions

Port 80

Port 443