ScanMalware.com

Security Scan Report: 1-32b.pages.dev

Site favicon
Submitted: Jan 5, 2026, 2:34:03 AMCompleted: Jan 5, 2026, 2:35:03 AMpubliccompleted
Loading additional data...

Summary

This website contacted 21 IPs in 3 countries across 15 domains to perform 70 HTTP transactions. The main domain is 1-32b.pages.dev and was registered NaN years ago.

Submitted URL: https://1-32b.pages.dev/es

AI Security Verdict

High Risk

Confidence: 95%

8
Risk Score

High‑risk phishing site impersonating Ookla Speedtest on a malicious pages.dev domain.

Risk Factors
Malicious Indicators of Compromise on primary domain
Brand impersonation of a well‑known service
Unranked domain with low reputation
Multiple redirects indicating possible URL manipulation
Mismatch between displayed brand and actual domain
Domain age information unavailable

Details

Page Title

Speedtest por Ookla - La prueba de velocidad de banda ancha global

Scan Type

public

Language

🇪🇸

Spanish

(80% confidence)

Category

technology software

(59%)

Domain Information

The domain '1-32b.pages.dev' uses the developer-focused generic top-level domain (.dev), featuring subdomain '1-32b'. Count 5 characters in 'pages' split between 2 vowels and three consonants. Breaking it apart gives 1 word: pages. Median word length comes out to five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://1-32b.pages.dev/es

Page Load Overview

2.71s
Total Load Time
48
HTTP Requests
17
Domains
2.1 MB
Total Size

Language Analysis

Primary Language

🇪🇸Spanish
Code: es
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:es
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:es
Text Length:2,412 chars
Detector Agreement:50%

Website Classification

Primary Category

technology software59% confidence
Type: spa
Method: ml+structural

All Detected Categories

technology software
59%
government public service
28%
documentation technical
27%
corporate
25%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
852.201.222.1Germany
AS15169
252.72.119.204United States
AS54113
2172.217.18.10France
AS20940
218.245.31.9Unknown
AS16625
2162.19.138.119Unknown
AS16276
2108.177.15.84Unknown
AS44788
234.120.133.55Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
2142.251.141.106Unknown
AS13335
2178.250.1.12France
AS44788Criteo Technology SAS
244.193.128.80Unknown
AS16509
4821--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1111408F162B8536D808B979DEF36A618770FE0A7F99649D5B79D8B644B83CE0EC03404

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:26meCnD4yv7s0xE6J/CgbcVKzoKeMXKLnpI6dDcPXE+ymj6aslNzlbsjq0Aok3g4:uZb7bagbcVMaWUZD+3UbwnZD6MpH9u

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:195787:SbZkQp8ADXKCwCVkhTg3EiA4cAwADIohCGwgE2AVFRuIJgSARQAgkiZjJ4QBSC0EAAEAOigMgLBsyAIwAAL3JIHryBJ1ciBA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:6fb9ddfdfdfd0101
Perceptual Hash:aad532f30ad562d1
Difference Hash:9925353131352131
Wavelet Hash:6f3f3d3d39110101
Color Hash:#ac6953

Other Hashes

Crop Resistant:2d2d2d2d2c2d2ded,9925353131352131

Scan History

Scan history not available

Unable to load historical scan data