Potentially Malicious Activity
paypa1.com
"The primary reason is strong typosquatting, with the domain `paypa1.com` clearly impersonating PayPal, combined with proof of malicious intent. This pattern is consistent with brand impersonation and phishing attempts. The dynamic content agent's benign verdict is overruled due to the undeniable evidence of malicious intent."
Note: This finding is based on scans of specific URLs on the domain, not necessarily the root domain itself.
URLert analyzed recent scan activity for paypa1.com and found 7 results.
| Status | Target URL | Type | Time |
|---|---|---|---|
| Dangerous | https://paypa1.com/ | 2d ago | |
| Dangerous | https://paypa1.com/ | 2d ago | |
| Malicious | https://paypa1.com/ | 4w ago | |
| Malicious | https://paypa1.com/ | 4w ago | |
| Malicious | https://paypa1.com/ | 4w ago | |
| Malicious | https://paypa1.com/ | 1mo ago | |
| Malicious | https://paypa1.com/ | 1mo ago |
Historical and current IP address mappings for this domain.
| IP Address / Infrastructure | Status | Subdomains | Last Seen |
|---|---|---|---|
AMAZON-02 - Amazon.com, Inc. (AS16509) | Active | paypa1.com | Today |
Run a real-time investigation to understand the specific threats on any URL from this domain.
This assessment is based on automated analysis and may not be definitive.
Always verify independently before taking action.
Real experiences from people who visited this domain