ScanMalware.com

Security Scan Report: neyant.pages.dev

Site favicon
Submitted: Nov 24, 2025, 11:28:00 AMCompleted: Nov 24, 2025, 11:32:05 AMpubliccompleted
Loading additional data...

Summary

This website contacted 161 IPs in 7 countries across 53 domains to perform 123 HTTP transactions. The main domain is neyant.pages.dev.

Submitted URL: https://neyant.pages.dev/ru

AI Security Verdict

High Risk

Confidence: 88%

7
Risk Score

High‑risk phishing site impersonating Ookla Speedtest on an unranked domain.

Risk Factors
Brand impersonation/typosquatting detected (Speedtest branding on a non‑official domain)
UNRANKED domain with no established reputation
Domain does not match the brand being displayed
Domain age information unavailable

Details

Bot Protection Detected

This website is protected by rate_limit bot protection. Our scanner was challenged or blocked during access.

Page Title

Speedtest от Ookla - Глобальный тест скорости широкополосного доступа

Scan Type

public

Language

🇷🇺

Russian

(80% confidence)

Category

documentation technical

(74%)

Domain Information

Domain 'neyant.pages.dev' uses the developer-focused generic top-level domain (.dev) with subdomain 'neyant'. Count 5 characters in 'pages' containing 2 vowels alongside three consonants. Tokenizing the label suggests one word: pages. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://neyant.pages.dev/ru

Page Load Overview

0.89s
Total Load Time
123
HTTP Requests
53
Domains
3.3 MB
Total Size

Language Analysis

Primary Language

🇷🇺Russian
Code: ru
Confidence:80%
Script:Cyrillic
Direction:ltr

Detection Details

Language Code:ru
Detection Confidence:80%
Script Type:Cyrillic
HTML Lang Attribute:ru
Text Length:3,954 chars
Detector Agreement:60%

Website Classification

Primary Category

documentation technical74% confidence
Type: spa
Method: ml+structural

All Detected Categories

documentation technical
74%
technology software
72%
government public service
48%
corporate
25%

Detected Features

Search
OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
12335.186.253.211United States
AS396982GOOGLE-CLOUD-PLATFORM
20146.75.122.219Frankfurt am Main, Hesse, Germany
AS54113FASTLY
11188.114.96.3United States
AS13335CLOUDFLARENET
6104.18.86.42United States
AS13335CLOUDFLARENET
618.203.133.140Dublin, Leinster, Ireland
AS16509AMAZON-02
63.71.105.21Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
62.16.110.42Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
5216.239.34.36United States
AS15169GOOGLE
544.209.250.203Ashburn, Virginia, United States
AS14618AMAZON-AES
4142.250.185.194United States
AS15169GOOGLE
123161--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1D00429F553B8534C908B975DEF36AA08631FE0B7F59689D4BB5D8F648B839E4E803840

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:tlkbYtdh4yvcwldn44hs0xE6J/CgbcVKzoKeMXKLnpI6dDcPXE+ymj6aslNzlbs8:AirbNhbagbcVMaWUZD+3UbwnZpyyc

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:184705:TQSCgAhHABQKDygFw4IIALIAEVASRNDg0AgSVi9hT0ECgAZg08AMyA90UA8mF0YTACBQCZkTmpYoBiMRhAApFJpgGoZEFAAg

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffffffffffff0100
Perceptual Hash:aad52af132d58a55
Difference Hash:9971616111010101
Wavelet Hash:7f7b3b3b03130100
Color Hash:#2da6d2

Other Hashes

Crop Resistant:9971616111010101

Scan History

Scan history not available

Unable to load historical scan data