ScanMalware.com

Security Scan Report: nicktrenton.com

Site favicon
Submitted: Oct 26, 2025, 9:38:24 AMCompleted: Oct 26, 2025, 9:39:03 AMpubliccompleted
Loading additional data...

Summary

This website contacted 15 IPs in 2 countries across 8 domains to perform 41 HTTP transactions. The main domain is nicktrenton.com and was registered NaN years ago.

Submitted URL: https://nicktrenton.com/wp-content/plugins/updraftplus/vendor/guzzle/guzzle/src/Guzzle/Http/Curl/ValidateData/viewer-ms-do/email-plugin-read/aW9ub3Nlcw**/attach-viewer-main/ZnJvbnRkZXNrQGNhc2FlbnRyZWRvc2FndWFzLmVz

AI Security Verdict

High Risk

Confidence: 92%

9
Risk Score

Phishing page on a compromised WordPress site impersonating IONOS webmail – high risk.

Risk Factors
Compromised WordPress site used for phishing
Credential harvesting form (email + password)
Brand impersonation of IONOS on a non‑official domain
UNRANKED domain with low reputation
WordPress internal directory paths in the URL
Domain age information unavailable

Details

Page Title

Webmail » Acceso al correo electrónico

Scan Type

public

Language

🇪🇸

Spanish

(50% confidence)

Category

technology software

(47%)

Domain Information

Within the commercial generic top-level domain (.com), 'nicktrenton.com' is registered. The registrable portion 'nicktrenton' spans 11 characters containing 3 vowels alongside eight consonants. Breaking it apart gives 2 words: nick, trenton. Median word length is 5.5 characters. 'nick' is most common in Danish usage. Secondary signals appear in Indonesian and Icelandic.

Screenshot

Security scan screenshot of https://nicktrenton.com/wp-content/plugins/updraftplus/vendor/guzzle/guzzle/src/Guzzle/Http/Curl/ValidateData/viewer-ms-do/email-plugin-read/aW9ub3Nlcw**/attach-viewer-main/ZnJvbnRkZXNrQGNhc2FlbnRyZWRvc2FndWFzLmVz

Page Load Overview

20.21s
Total Load Time
41
HTTP Requests
8
Domains
321 KB
Total Size

Language Analysis

Primary Language

🇪🇸Spanish
Code: es
Confidence:50%
Script:Latin
Direction:ltr

Detection Details

Language Code:es
Detection Confidence:50%
Script Type:Latin
Text Length:864 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software47% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

technology software
47%
government public service
41%
cryptocurrency blockchain
28%

Detected Features

Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
13217.160.86.59Germany
AS8560IONOS SE
2217.160.86.48Germany
AS8560IONOS SE
2217.160.86.26Germany
AS8560IONOS SE
2217.160.86.135Germany
AS8560IONOS SE
2108.138.7.61United States
AS16509AMAZON-02
2213.165.66.58Germany
AS8560IONOS SE
2108.167.141.116Phoenix, Arizona, United States
AS46606UNIFIEDLAYER-AS-1
2217.160.86.136Germany
AS8560IONOS SE
2217.160.86.74Germany
AS8560IONOS SE
2108.138.7.72United States
AS16509AMAZON-02
4115--

Detected Technologies4

PasswordField
100%
WordPress
75%
PHP
50%
MySQL
50%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T134A2C7274A84CBAF8675A6D5B3B4EB25A4E2D847EC6290C0B7FC8048D7ECCD8541F91D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:u8T8Zk8B868e48/8j838Ac8a8C8ZR8K8e8p8ygVm8rmW5KNWgYW5KNWL8W8p828Z:WJvsgm

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:23006:wFQjMkIgUQaQDfoMIahgNAOTEXAAQ4PiUkqptBoiIs5lgICsgAoBAIwl2cIqwAgYG4nwACADeZGrSWWEQIBIAIP0CVoCxWgm

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:N/A
Perceptual Hash:N/A
Difference Hash:N/A
Wavelet Hash:N/A
Color Hash:N/A

Other Hashes

Crop Resistant:N/A

Scan History

Scan history not available

Unable to load historical scan data