ScanMalware.com

Security Scan Report: www.update.as.159.195.59.55.nip.io

Redirected to: https://www.update.as.159.195.59.55.nip.io/

Site favicon
Submitted: Mar 1, 2026, 5:57:58 AMCompleted: Mar 1, 2026, 5:59:33 AMpubliccompleted
Loading additional data...

Summary

This website contacted 8 IPs in 2 countries across 8 domains to perform 1 HTTP transaction. The main domain is update.as.159.195.59.55.nip.io and was registered NaN years ago.

Submitted URL: http://www.update.as.159.195.59.55.nip.io/

Effective URL: https://www.update.as.159.195.59.55.nip.io/Redirected

The Cisco Umbrella rank of the primary domain is #376,334 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 78%

7
Risk Score

Site copies IXL brand meta data on an unrelated domain; treat as high‑risk brand impersonation.

Risk Factors
Brand impersonation via meta tags
Domain mismatch with claimed brand
Low ranking for a site claiming a well‑known brand
Domain age information unavailable

Details

Page Title

VAPOR v4

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

education learning

(87%)

Domain Information

Within the British Indian Ocean Territory country-code top-level domain (.io), 'www.update.as.159.195.59.55.nip.io' is registered, featuring subdomain 'www.update.as.159.195.59.55'. The second-level label 'nip' is 3 characters long holding 1 vowel versus two consonants. Segmentation suggests one word: nip. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://www.update.as.159.195.59.55.nip.io/

Page Load Overview

2.90s
Total Load Time
32
HTTP Requests
8
Domains
2.5 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:594 chars
Detector Agreement:100%

Website Classification

Primary Category

education learning87% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

education learning
87%
entertainment media
68%
technology software
28%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
4142.251.141.67United States
AS15169
4104.21.78.155United States
AS197540
4142.250.201.168United States
AS13335
4104.16.174.226United States
AS13335Cloudflare, Inc.
4104.21.92.33United StatesUnknown
4188.114.96.3United StatesUnknown
4142.250.186.42United StatesUnknown
4159.195.59.55Nuremberg, Bavaria, Germany
AS197540netcup GmbH
328--

Detected Technologies1

Google Analytics
35%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T18022D9A3A9F110374227A0DD7AFBF304B5A2900BDB15AC007E9D47941F96D66C1A37AD

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:IqL3aqL3A2XueczgYPzXrCqQz6BvCTBbJHIz:j1rmBKG

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:10867:0iMoCVYDMpECQQpgUMExHEg4jVdMSmDAk4gdAhMaoRAmKCFSRSmGAE5AiGmgJIwSHNxsAAR3RKRDUFDtBkQyBYoUyKKC6wjQ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0101191919190101
Perceptual Hash:8cb63333cc4cdc66
Difference Hash:370f3333b3330f33
Wavelet Hash:87071f1f1b1b031f
Color Hash:#87c5b7

Other Hashes

Crop Resistant:370f3333b3330f33

Scan History

Scan history not available

Unable to load historical scan data