ScanMalware.com

Security Scan Report: 1-2qg.pages.dev

Site favicon
Submitted: Jan 2, 2026, 9:29:44 PMCompleted: Jan 2, 2026, 9:30:59 PMpubliccompleted
Loading additional data...

Summary

This website contacted 24 IPs in 3 countries across 15 domains to perform 53 HTTP transactions. The main domain is 1-2qg.pages.dev and was registered NaN years ago.

Submitted URL: https://1-2qg.pages.dev/sv

AI Security Verdict

High Risk

Confidence: 92%

10
Risk Score

Site impersonates Ookla Speedtest and matches a malicious domain indicator – treat as high‑risk phishing.

Risk Factors
Malicious Indicator of Compromise match on primary domain
Brand impersonation of Ookla Speedtest
Unranked/low‑reputation domain presenting a well‑known service
Multiple redirects without reaching an official brand site
Domain age information unavailable

Details

Page Title

Speedtest av Ookla - Det globala hastighetstestet för bredband

Scan Type

public

Language

🇸🇪

Swedish

(80% confidence)

Category

technology software

(42%)

Domain Information

Domain '1-2qg.pages.dev' uses the developer-focused generic top-level domain (.dev) and includes subdomain '1-2qg'. The core label 'pages' covers 5 characters containing 2 vowels alongside 3 consonants. Segmentation suggests one word: pages. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://1-2qg.pages.dev/sv

Page Load Overview

3.43s
Total Load Time
46
HTTP Requests
17
Domains
2.1 MB
Total Size

Language Analysis

Primary Language

🇸🇪Swedish
Code: sv
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:sv
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:sv
Text Length:2,396 chars
Detector Agreement:50%

Website Classification

Primary Category

technology software42% confidence
Type: spa
Method: ml+structural

All Detected Categories

technology software
42%
corporate
25%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2313.226.244.7Germany
AS15169
1108.177.15.84Sweden
AS54113
1142.250.185.66United States
AS20940
118.245.31.92United States
AS16509AMAZON-02
1146.75.122.219Unknown
AS16276
123.36.162.25Unknown
AS44788
134.233.186.231Unknown
AS396982
13.212.181.164Unknown
AS13335
152.201.222.1Ashburn, Virginia, United States
AS14618AMAZON-AES
1172.66.45.11United States
AS13335CLOUDFLARENET
4624--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T166F308F522B8535D908B875DEF36B608630FE0B7B5A689D5BB5D8F744B839E4E803840

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:z1g58GB4yv6s0xE6J/CgbcVKzoKeMXKLnpI6dDcPXE+ymj6aslNzlbsjq0Aok3wB:abb6bagbcVMaWUZD+3UbwnZmc

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:168451:AEZeEUpSDgyw5rIiExFXYAASCwIyjEiAHzNl+FHAIcVHOgiQIAKpEcwSCQ1CJICPwYAMwAnoghAsqCKehBgMAM1lRbSiLsBA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffffffffffff0100
Perceptual Hash:aad522f132c7ca55
Difference Hash:9971616111010101
Wavelet Hash:6f3b3b3b01390100
Color Hash:#5d1f93

Other Hashes

Crop Resistant:9971616111010101

Scan History

Scan history not available

Unable to load historical scan data