Domain > prod.auth.src.apis.discover.com

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2024-11-25	108.138.94.48 (ClassC)
2024-12-27	108.138.94.63 (ClassC)
2025-02-11	99.84.66.105 (ClassC)
2025-03-22	54.149.198.227 (ClassC)
2025-04-16	54.184.158.66 (ClassC)
2025-04-30	54.212.3.8 (ClassC)
2025-05-15	52.35.230.201 (ClassC)
2025-06-27	44.239.205.99 (ClassC)
2025-07-02	52.35.198.90 (ClassC)
2025-07-19	52.39.181.154 (ClassC)
2025-09-27	44.238.175.244 (ClassC)
2025-10-08	3.130.246.175 (ClassC)
2025-11-20	52.34.79.229 (ClassC)
2025-11-24	52.89.59.242 (ClassC)
2025-12-24	35.161.180.194 (ClassC)
2026-01-14	44.229.23.102 (ClassC)

HTTP/1.1 200 OKContent-Type: text/html;charsetUTF-8Transfer-Encoding: chunkedConnection: keep-aliveDate: Mon, 25 Nov 2024 01:01:07 GMTServer: ServerContent-Language: en-USSet-Cookie: XSRF-TOKEN13bcbe3

!DOCTYPE html>html langen>head>head>    link hrefnull/null/css/bootstrap.min.css relstylesheet        mediascreen />    link hrefnull/null/css/cognito-login.css relstylesheet        mediascreen />        title>Signin/title>    script srcnull/null/js/amazon-cognito-advanced-security-data.min.js >/script>    script>    function getAdvancedSecurityData(formReference) {        if (typeof AmazonCognitoAdvancedSecurityData  undefined) {            return true;        }        // UserpoolId is not available on frontend for springboard. We do not use userPoolId        // anyway other than put in context data.         var userPoolId  ;        var clientId  getUrlParameter(client_id);        var username  ;        var usernameInput  document.getElementsByName(username)0;        if (usernameInput && usernameInput.value) {            username  usernameInput.value;        }        var asfData  AmazonCognitoAdvancedSecurityData.getData(username, userPoolId, clientId);        if (typeof asfData  undefined) {            return true;        }        if (formReference && formReference.cognitoAsfData) {            formReference.cognitoAsfData.value  asfData        }        return true;    }    function getUrlParameter(name) {        name  name.replace(//, \).replace(//, \);        var regex  new RegExp(\?& + name + (^&#*));        var results  regex.exec(location.search);        return results  null ?  : decodeURIComponent(results1.replace(/+/g,  ));    }    function onSubmit(evt, formRef) {        formRef.querySelector(buttontypesubmit).disabled  true;        if (!!formRef.submitted) {            evt.preventDefault();            return false;        } else {            formRef.submitted  true;            return getAdvancedSecurityData(formRef);        }    }    function onSubmitLoginForm (formRef) {        formRef.querySelector(inputnamesignInSubmitButton).disabled  true;        getAdvancedSecurityData(formRef)    }/script>    meta nameviewport contentwidthdevice-width, initial-scale1>/head>/head>body spellcheckfalse>    div class

Subdomains

Date	Domain	IP
qa.src.apis.discover.com	2025-05-24	44.226.132.166
prod.auth.src.apis.discover.com	2024-11-25	108.138.94.48
cert.auth.src.apis.discover.com	2024-10-04	18.161.6.122
prod.mauth.src.apis.discover.com	2025-09-06	44.235.15.2
ops.src.apis.discover.com	2024-11-24	54.201.35.116
sbx.src.apis.discover.com	2024-05-14	3.140.180.39

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > prod.auth.src.apis.discover.com

Is this malicious?

DNS Resolutions

Port 80

Port 443

Subdomains