ScanMalware.com

Security Scan Report: www.domstol.se

Site favicon
Submitted: May 11, 2026, 7:34:49 PMCompleted: May 11, 2026, 7:36:02 PMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 2 countries across 4 domains to perform 24 HTTP transactions. The main domain is domstol.se and was registered NaN years ago.

Submitted URL: https://www.domstol.se/nacka-tingsratt/

The Cisco Umbrella rank of the primary domain is #778,263 of the top 1 million websites

AI Security Verdict

Moderate Risk

Confidence: 78%

4
Risk Score

The site is a well‑established government domain but exhibits malicious JavaScript and a critical IDS alert, indicating possible malware activity; proceed cautiously.

Risk Factors
Critical network IDS alert for possible data exfiltration
Obfuscated JavaScript with high entropy and unescape usage
Domain rank far below typical top‑10K for well‑known brands
Safety Factors
Domain age > 25 years (well‑established)
Meta tags and site title match the domain (self‑branding, not impersonation)
No malicious Indicators of Compromise detected in threat intelligence feeds
No credential‑stealing forms or payment fields
Domain age information unavailable

Details

Page Title

Nacka tingsrätt

Scan Type

public

Language

🇸🇪

Swedish

(80% confidence)

Category

adult content

(91%)

Domain Information

The domain name 'www.domstol.se' uses the Swedish country-code top-level domain (.se); it also runs on subdomain 'www'. Its registrable label 'domstol' stretches across 7 characters holding two vowels versus five consonants. Splitting it apart reveals two words: dom, stol. Median word length is 3.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.domstol.se/nacka-tingsratt/

Page Load Overview

1.05s
Total Load Time
21
HTTP Requests
4
Domains
288 KB
Total Size

Language Analysis

Primary Language

🇸🇪Swedish
Code: sv
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:sv
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:sv
Text Length:4,029 chars
Detector Agreement:100%

Website Classification

Primary Category

adult content91% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

adult content
91%
government public service
90%
documentation technical
77%
education learning
54%
government
40%

Detected Features

Search
OG: website
Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
7159.60.158.251United States
AS35280F5 Networks SARL
7159.190.0.45Stockholm, Stockholm County, Sweden
AS1257Tele2 SWIPnet
7103.81.140.95Sweden
AS42695Cleura AB
213--

Detected Technologies3

X-UA-Compatible
100%
Open-Graph-Protocolvwebsite
100%
HSTS
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T197B3C730D2146C7B42975ADE65E17E1591ADA20FC6920D54FB9CCF1C0BEBCF4BA2260B

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:5S02OQk998ZdUizLcsUJxlo3Da/wIgqQ3EfRAs/WDqKblg:5SsQNjSeDqKi

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:111070:whZwMQwAgYQAJFABooqJEFRRKJjxGAiwwIBywQiAKwzQioYQwwIAMAiQUUtAAIlNEKGXdSYMIIQPoGoZAQUBIUiqMggVBq2s

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00ffe3e7e3e1e1eb
Perceptual Hash:e396186994671d67
Difference Hash:714d0f4f4f4b4b0b
Wavelet Hash:00e5e3e3e1e1e1e3
Color Hash:#c58f87

Other Hashes

Crop Resistant:714d0f4f4f4b4b0b,0101259494842185,9cbc9cacbbba1988

Scan History

Scan history not available

Unable to load historical scan data