ScanMalware.com

Security Scan Report: drfgt5y.pages.dev

Site favicon
Submitted: Jan 1, 2026, 2:26:44 PMCompleted: Jan 1, 2026, 2:28:18 PMpubliccompleted
Loading additional data...

Summary

This website contacted 20 IPs in 3 countries across 15 domains to perform 53 HTTP transactions. The main domain is drfgt5y.pages.dev and was registered NaN years ago.

Submitted URL: https://drfgt5y.pages.dev/nl

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

Site impersonates Speedtest and matches malicious Indicators of Compromise – high risk phishing.

Risk Factors
Primary domain matches malicious Indicator of Compromise
Brand impersonation of Ookla Speedtest on an untrusted domain
Unranked domain with low reputation
Lack of legitimate content; error page may be used to lure users
Domain age information unavailable

Details

Page Title

Speedtest door Ookla - De wereldwijde breedbandsnelheidstest

Scan Type

public

Language

🇳🇱

Dutch

(80% confidence)

Category

technology software

(80%)

Domain Information

The domain 'drfgt5y.pages.dev' uses the developer-focused generic top-level domain (.dev) and includes subdomain 'drfgt5y'. The second-level label 'pages' is 5 characters long containing two vowels alongside three consonants. Word splitting yields one word: pages. Median word length comes out to five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://drfgt5y.pages.dev/nl

Page Load Overview

5.19s
Total Load Time
56
HTTP Requests
17
Domains
2.7 MB
Total Size

Language Analysis

Primary Language

🇳🇱Dutch
Code: nl
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:nl
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:nl
Text Length:3,786 chars
Detector Agreement:60%

Website Classification

Primary Category

technology software80% confidence
Type: spa
Method: ml+structural

All Detected Categories

technology software
80%
documentation technical
75%
download file sharing
65%
government public service
44%
corporate
25%

Detected Features

Search
OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1818.245.31.92Germany
AS54113
234.120.133.55Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
213.226.244.23France
AS20940
223.56.202.65Frankfurt am Main, Hesse, Germany
AS16625AKAMAI-AS
2108.177.15.84Unknown
AS16276
2188.114.97.3United States
AS13335CLOUDFLARENET
2142.250.186.170Unknown
AS396982
2142.250.185.162Unknown
AS13335
218.245.31.9Unknown
AS14618
244.219.128.126Ashburn, Virginia, United States
AS14618AMAZON-AES
5620--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1CEF308F522BC535D908B875DEF36B608630FE0B7B5A689D5BB5D8F644B839E4E803840

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:EsM+QzH4yvZs0xE6J/CgbcVKzoKeMXKLnpI6dDcPXE+ymj6aslNzlbsjq0Aok3sW:UDbZbagbcVMaWUZD+3UbwnZLu

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:168431:ArpAAhAdDk5XIAGCSEkQZoQBxAUE2AIDoykIkqIUJhIAoMT6YAEGmXkQQMChGAQCYGFgHoGQrBR06UQgKxycDESCFJGSq9AM

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffffffffffff0100
Perceptual Hash:aad52af133c58a55
Difference Hash:9971616111010101
Wavelet Hash:7f3b3b3b073f0100
Color Hash:#911f93

Other Hashes

Crop Resistant:9971616111010101

Scan History

Scan history not available

Unable to load historical scan data