Security Scan Report: ngnets.top

Redirected to:
https://ngnets.top/wp-login.php?redirect_to=https%3A%2F%2Fngnets.top%2...
Submitted: Jan 18, 2026, 7:44:51 AMCompleted: Jan 18, 2026, 7:46:28 AMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 2 countries across 3 domains to perform 5 HTTP transactions. The main domain is ngnets.top and was registered NaN years ago.

Submitted URL: https://ngnets.top/wp-admin/

Effective URL: https://ngnets.top/wp-login.php?redirect_to=https%3A%2F%2Fngnets.top%2Fwp-admin%2F&reauth=1Redirected

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

New, unranked WordPress admin page likely used for credential harvesting – treat as confirmed phishing scam.

Risk Factors
Very new domain (<30 days) with login page
Compromised WordPress site paths
Unranked / low‑reputation domain
Potential credential‑harvesting form
Domain age information unavailable

Details

Primary Scan Blocked — Fallback Capture Shown

The primary scanner could not load this page (possible bot protection). The screenshot and page details shown were captured by a fallback browser that loaded the page successfully.

Page Title

Bot Verification

Scan Type

public

Language

🇺🇸

English

(65% confidence)

Category

unknown

(0%)

Domain Information

The domain 'ngnets.top' uses the .top top-level domain and has no subdomain. Its registrable label 'ngnets' stretches across 6 characters containing one vowel alongside 5 consonants. Splitting it apart reveals 2 words: ng, nets. Expect three characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://ngnets.top/wp-admin/

Page Load Overview

2.57s
Total Load Time
5
HTTP Requests
3
Domains
2 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:65%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:65%
Script Type:Latin
Text Length:54 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: static
Method: structural

All Detected Categories

No categories detected

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3142.250.184.195United States
AS15169GOOGLE
1195.88.211.170Jakarta, Jakarta, Indonesia
AS214882Hadi Santosa
1172.217.23.99United States
AS15169GOOGLE
53--

Detected Technologies3

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1B85194F71CB340059C138AA597F37705AC868503E04ACCD178DC6298EFE8EAAC497B58

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

48:Lx/rA8lkl/H+C6cgUbCoWlbEQE6UmUCqh7AxGJIi+WNxQRhQ:LrlklWJmye76UmpK7AxGJIi+KKRW

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:2610:AAAEEEAAAAAAgCAAAAABAAEIQQgAIAEAgSwRCDgAAAEAAAgEUSCAATgACAEAAAEAgIEAQAgABAAQGCgAAAQAAAABAACAABAC

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffe7e7ffffffffff
Perceptual Hash:b33399cccccc6433
Difference Hash:000c0c0000000000
Wavelet Hash:3f03033f0f0f0f0f
Color Hash:#53ac6b

Other Hashes

Crop Resistant:000c0c0000000000

Scan History

Scan history not available

Unable to load historical scan data