Report Overview
Visitedpublic
2025-12-27 15:02:03
Tags
Submit Tags
URL
aff.easypaisy.site/visit/94a85805-d101-4536-b4e0-6bcaf4804819
Finishing URL
daily2prize.site/ke-vault/?mc_attr=c%3D94a85805-d101-4536-b4e0-6bcaf4804819..m%3Dmjofi3ggv2ulbnbrnyjrjhy85q..d%3D0-0-0-0-0..l%3D17668477012..e%3D#
IP / ASN
63.180.95.19
Title
MPESA Wallet Promo – Kenya
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
5
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
aff.easypaisy.site 2 alert(s) on this Host | unknown | 2025-03-10 | 2025-04-16 | 2025-11-11 | 529 B | 11 kB | 63.180.95.19 |  |
daily2prize.site 9 alert(s) on this Host | unknown | 2025-03-25 | 2025-10-13 | 2025-12-21 | 1.8 kB | 19 kB |  138.68.168.84 |    |
backunder.com | 358523 | 2022-12-13 | 2022-12-14 | 2025-12-20 | 412 B | 1.9 kB |  188.114.97.1 |  |
Nginx (Web servers, Reverse proxies)
Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.WordPress (CMS, Blogs)
WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.MySQL (Databases)
MySQL is an open-source relational database management system.PHP (Programming languages)
PHP is a general-purpose scripting language used for web development.Cloudflare (CDN)
Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.Related reports
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| Hagezi Threat Feed | aff.easypaisy.site | malicious | Sinkholed |
| DNS4EU | aff.easypaisy.site | malicious | Sinkholed |
| Hagezi Threat Feed | daily2prize.site | malicious | Sinkholed |
| DNS4EU | daily2prize.site | malicious | Sinkholed |
| DNS0 Zero | daily2prize.site | malicious | Sinkholed |
JavaScript (3)
No JavaScripts
HTTP Transactions (5)
| URL | IP | Response | Size |
|---|