Security Scan Report: mezcaldonotero.com

Redirected to:
https://mezcaldonotero.com/wp-login.php?redirect_to=https%3A%2F%2Fmezc...
Submitted: Feb 9, 2026, 12:09:20 PMCompleted: Feb 9, 2026, 12:11:38 PMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 3 HTTP transactions. The main domain is mezcaldonotero.com and was registered NaN years ago.

Submitted URL: https://mezcaldonotero.com/wp-admin/

Effective URL: https://mezcaldonotero.com/wp-login.php?redirect_to=https%3A%2F%2Fmezcaldonotero.com%2Fwp-admin%2F&reauth=1Redirected

AI Security Verdict

Confirmed Scam

Confidence: 92%

9
Risk Score

New, unranked WordPress site with login page – likely phishing; do not provide credentials.

Risk Factors
New domain (<90 days) increases phishing likelihood
Unranked domain with no established reputation
Compromised WordPress site detected via system paths
Credential collection page (wp-login.php) on a newly registered site
Bot verification page suggests attempt to hide malicious activity
Domain age information unavailable

Details

Primary Scan Blocked — Fallback Capture Shown

The primary scanner could not load this page (possible bot protection). The screenshot and page details shown were captured by a fallback browser that loaded the page successfully.

Page Title

mezcaldonotero.com

Scan Type

public

Language

🇺🇸

English

(65% confidence)

Category

unknown

(0%)

Domain Information

Domain 'mezcaldonotero.com' uses the commercial generic top-level domain (.com). The core label 'mezcaldonotero' covers 14 characters containing 6 vowels alongside eight consonants. Segmentation suggests five words: mez, cal, do, not, ero. Median word length is 3 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://mezcaldonotero.com/wp-admin/

Page Load Overview

41.88s
Total Load Time
5
HTTP Requests
3
Domains
1 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:65%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:65%
Script Type:Latin
Text Length:54 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: static
Method: structural

All Detected Categories

No categories detected

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
550.31.177.135Chicago, Illinois, United States
AS23352DEFT.COM
51--

Detected Technologies4

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1FB048F773296063986558498F05B83099F20B143F506C9BCB9BCBAD9BFDED06107BB78

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:ifQho9PKBb9Js3q9Jzbs6tlg3SBKwdQWgceIszo2bMy8Olda:ZhoC9JSqzzbs6o3Sj3gcrsk2eAw

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:184508:zIAAQ4oAeJUEwGYAIIDCEGgAmFFKoQ+AAKcoJIDPPFTiEjAgKEBMAKREgJ54DiESUIr0EmOAo5AhIAUwTRgqCYCNEEIAiSHZ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffcfc7c7ffffffff
Perceptual Hash:b331cccccc273333
Difference Hash:00180c1400000000
Wavelet Hash:3313030f0f0f0f0f
Color Hash:#87b2c5

Other Hashes

Crop Resistant:00180c1400000000

Scan History

Scan history not available

Unable to load historical scan data