ScanMalware.com

Security Scan Report: elifanderen.site

Redirected to: https://elifanderen.site/wp-login.php?redirect_to=https%3A%2F%2Felifanderen.site%2Fwp-admin%2F&reauth=1

Submitted: Nov 5, 2025, 3:14:57 AMCompleted: Nov 5, 2025, 3:16:02 AMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 2 countries across 5 domains to perform 12 HTTP transactions. The main domain is elifanderen.site and was registered NaN years ago.

Submitted URL: https://elifanderen.site/wp-admin/

Effective URL: https://elifanderen.site/wp-login.php?redirect_to=https%3A%2F%2Felifanderen.site%2Fwp-admin%2F&reauth=1Redirected

AI Security Verdict

High Risk

Confidence: 85%

10
Risk Score

New, unranked domain hosting a compromised WordPress admin page – likely a phishing site.

Risk Factors
Compromised WordPress site used on a brand‑new domain
Domain age less than 7 days (critical risk)
Unranked domain with no reputable reputation
Potential credential harvesting flow (recaptcha form) on a suspicious site
Domain age information unavailable

Details

Bot Protection Detected

This website is protected by captcha bot protection. Our scanner was challenged or blocked during access.

Page Title

Bot Verification

Scan Type

public

Language

🇺🇸

English

(64% confidence)

Category

unknown

(0%)

Domain Information

Within the .site top-level domain, 'elifanderen.site' is registered while skipping any subdomain. Count 11 characters in 'elifanderen' holding five vowels versus six consonants. It segments into five words: el, if, and, e, ren. Average segment length settles at two characters. 'el' most strongly signals Italian. It also appears in Albanian and Spanish contexts.

Screenshot

Security scan screenshot of https://elifanderen.site/wp-admin/

Page Load Overview

11.13s
Total Load Time
12
HTTP Requests
5
Domains
38 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:64%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:64%
Script Type:Latin
Text Length:54 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: static
Method: structural

All Detected Categories

No categories detected

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
4212.68.34.228Turkey
AS212219Hosting Dunyam Bilisim Teknolojileri Ticaret Limited Sirketi
4104.19.230.21United States
AS13335CLOUDFLARENET
4104.19.229.21United States
AS13335CLOUDFLARENET
123--

Detected Technologies4

X-UA-Compatible
100%
hCaptcha
45%
HTTP/3
40%
reCAPTCHA
30%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T17D91EA74159304181C53D288A2FD67CAA3336207F68A8C58B1CD67219FCEDFF8457B59

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:35lVmpK7AxGJIi+Kg4OSjCL7HkjkyQrtCSjCLcd1515:33VmpK7kGJIKPg51HdHH

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:4510:AQiBQFAAQASZCEQJEAAEKSiEIAIEACLBAAtoQMAAgGSFEAAgAAQCAgSIWAAhEoB9BVAAYRIkoAAQAgCghKgMUhGIAiAhKFBQ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffe7e7ffffffffff
Perceptual Hash:b3338bcccccc8c33
Difference Hash:000c0c0000000000
Wavelet Hash:3f0303030f0f0f0f
Color Hash:#2d8643

Other Hashes

Crop Resistant:000c0c0000000000

Scan History

Scan history not available

Unable to load historical scan data