Domain > dodo-tools.cloud

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2022-05-21	52.85.75.117 (ClassC)
2026-02-07	35.92.202.170 (ClassC)

HTTP/1.1 200 OKDate: Sat, 07 Feb 2026 16:32:54 GMTContent-Type: text/htmlContent-Length: 7064Connection: keep-aliveVary: Accept-EncodingLast-Modified: Fri, 06 Feb 2026 22:51:07 GMTETag: 6986705b-1b98Cache-control: max-age0, stale-while-revalidate86400X-Content-Type-Options: nosniffReferrer-Policy: no-referrer-when-downgradeCross-Origin-Opener-Policy: same-origin-allow-popupsX-Robots-Tag: noindexAccept-Ranges: bytesStrict-Transport-Security: max-age31536000; includeSubDomains

!DOCTYPE html>html langen>  head>    meta charsetutf-8 />    meta namereferrer contentorigin />    meta nametheme-color content#fff />    meta nameviewport contentwidthdevice-width, initial-scale1 />        link idpwa-manifest-placeholder relmanifest href />    script>            window.RETOOL_FRONTEND_FAKE_BACKEND_MODE  false;            // #PageVisibility      // Here we detect if user has suspended the browser page / tab since loading      // See https://developer.mozilla.org/en-US/docs/Web/API/Page_Visibility_API      window.RETOOL_PAGE_SUSPEND_DETECTED  document.visibilityState  hidden      function _detectVisibilityChange() {        if (document.visibilityState  hidden) {          window.RETOOL_PAGE_SUSPEND_DETECTED  true          // Remove listener because we only detect it once          document.removeEventListener(visibilitychange, _detectVisibilityChange)        }      }      // Only listen for change if page is not already hidden      if (document.visibilityState  visible) {        document.addEventListener(visibilitychange, _detectVisibilityChange)      }    /script>    script>      // https://stackoverflow.com/a/24103596      function _getCookie(name) {        var nameEq  (name + )        var ca  document.cookie.split(;)        for (var i  0; i  ca.length; i++) {          var c  cai          while (c.charAt(0)   ) c  c.substring(1, c.length)          if (c.indexOf(nameEq)  0) return c.substring(nameEq.length, c.length)        }      }      // Here we do an eager fetch of user data as a performance optimization. By doing the      // fetch here, in an inline script, we can fire it asap while the initial webpack      // bundle loads and evals. This is strictly for performance optimization and non-essential,      // if this fails to run or has errors then the normal application flow will handle the      // fetch for user data.      if (        !RETOOL_FRONTEND_FAKE_BACKEND_MODE &&        _getCookie(xsrfToken) && // presence of xsrf token means user is already authed        window.fetch ! undefined && // make sure fetch api is available        !new URL(location.origin).host.startsWith(login.) // avoid special login domain      ) {        window.RETOOL_USER_FETCH  fetch(/api/user, {          credentials: same-origin,          headers: {            Accept: application/json,            Content-Type: application/json,            Relax-Login-Subdomain-Restrictions: false,            X-Xsrf-Token: _getCookie(xsrfToken),            X-Retool-Client-Version: 3.337.0-7683f33 (Build 302750),          },        }).then((r) > {          if (r.ok) {            return r.json()          }          return        })      }    /script>    script>      function parseAsBool(envValue, defaultValue) {        if (envValue  true) {          return true        } else if (envValue  false) {          return false        } else {          return defaultValue        }      }      // Webpack uses slightly unconventional EJS templating which is why we need to duplicate this      // snippet. ViteJS does it the right way and will be the what we keep once migration to      // Vite is done, so lets just keep this duplicated for now.            SANDBOX_DOMAIN  https://retool-edge.com      ALLOW_SAME_ORIGIN_OPTION  parseAsBool(true, false)      MAIN_DOMAIN  retool.com      SAML_ENABLED  parseAsBool(false, false)      CLIENT_ID  716367306867-d861tjqj92gjb0uphcjt8gu2nvtf6e9t.apps.googleusercontent.com      RESTRICTED_DOMAIN        DISABLE_USER_PASS_LOGIN  parseAsBool(false, false)      INCLUDE_COOKIES_IN_API_CALLS        VERSION_CONTROL_LOCKED  parseAsBool(false, false)      IS_ADMIN  parseAsBool(false, false)      WEBPACK_SHARED_BUILD_VERSION  302750_7683f33      STATSD_HOST  __STATSD_HOST__      RETOOL_APP_VARIANT  vite      const retoolVersionForServiceWorker  3.337.0-7683f33 (Build 302750)      console.log(Running ViteJS Retool app variant)      // To get replaced during vite prod build with hash filename      VITE_RUNTIME_HTML  runtime.NGUzMGI3.html            // Eager fetch of global experiments. Since global experiments can affect rendering they      // should be loaded before initial render. Because of that it is best to start fetching      // as early as possible to avoid blocking the initial render.      window.RETOOL_EXPERIMENTS_ID_COOKIE_NAME  experimentsId      const credentials  INCLUDE_COOKIES_IN_API_CALLS || same-origin      if (_getCookie(window.RETOOL_EXPERIMENTS_ID_COOKIE_NAME) ! undefined) {        // Only make the request if the experiments id idempotency cookie in order to get        // deterministic values on each call        window.RETOOL_GLOBAL_EXPERIMENTS_FETCH  fetch(/api/experiments, {          credentials,          headers: {            Accept: application/json,            Content-Type: application/json,            X-Retool-Client-Version: 3.337.0-7683f33 (Build 302750),          },        })      }      window.htmlLoadedAt  performance.now()    /script>            link relmodulepreload crossorigin hrefhttps://retool-edge.com/assets_vjs/routeAssumptions-CDHswiHu.js>    link relmodulepreload crossorigin hrefhttps://retool-edge.com/assets_vjs/main-Bf8rIz_M.js>    link relstylesheet crossorigin hrefhttps://retool-edge.com/assets_vjs/main-CYEVdsHA.css>  /head>  body>    script>var entrypointChunk  https://retool-edge.com/assets_vjs/src-index-BLEg8qAP.js/script>    div idroot styleheight: 100%>/div>    div      idtranslationToolDetectionId      styleposition: absolute; left: -9999px; top: -9999px; visibility: hidden; z-index: -100    >      This is some invisible text to see if a translation tool is being used    /div>    script>          /script>         script>      function errorHandler() {        var url  this._url        var retryCount        var storedRetryCount  localStorage.getItem(entrypoint-chunk-retry-count)        if (storedRetryCount ! null) {          retryCount  parseInt(storedRetryCount)        } else {          retryCount  0        }        if (retryCount  5) {          localStorage.setItem(entrypoint-chunk-retry-count, retryCount + 1)          window.location.reload()        }      }      function createScriptElement(url) {        var scriptTag  document.createElement(script)        scriptTag.onerror  errorHandler        scriptTag.type  module        scriptTag.crossorigin  crossorigin        scriptTag._url  url        scriptTag.src  url        scriptTag.setAttribute(data-marker, entrypoint-chunk)        return scriptTag      }      if (entrypointChunk ! undefined) {        document.body.appendChild(createScriptElement(entrypointChunk))      }    /script>      /body>/html>

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > dodo-tools.cloud

Is this malicious?

DNS Resolutions

Port 80

Port 443