ScanMalware.com

Security Scan Report: www.domstol.se

Site favicon
Submitted: May 9, 2026, 9:28:10 PMCompleted: May 9, 2026, 9:29:24 PMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 2 countries across 4 domains to perform 22 HTTP transactions. The main domain is domstol.se and was registered NaN years ago.

Submitted URL: https://www.domstol.se/norrkopings-tingsratt/

The Cisco Umbrella rank of the primary domain is #778,263 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 80%

7
Risk Score

The site shows a critical malware alert and heavily obfuscated JavaScript despite being an old, self‑branded domain, indicating high risk of malicious activity.

Risk Factors
Critical IDS alert indicating possible malware/data exfiltration
Highly obfuscated JavaScript code
Low domain reputation ranking
Domain age information unavailable

Details

Page Title

Norrköpings tingsrätt

Scan Type

public

Language

🇸🇪

Swedish

(80% confidence)

Category

government public service

(90%)

Domain Information

The domain name 'www.domstol.se' uses the Swedish country-code top-level domain (.se) and includes subdomain 'www'. Count 7 characters in 'domstol' split between 2 vowels and five consonants. Segmentation suggests two words: dom, stol. Median word length comes out to 3.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.domstol.se/norrkopings-tingsratt/

Page Load Overview

1.22s
Total Load Time
19
HTTP Requests
4
Domains
226 KB
Total Size

Language Analysis

Primary Language

🇸🇪Swedish
Code: sv
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:sv
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:sv
Text Length:2,969 chars
Detector Agreement:100%

Website Classification

Primary Category

government public service90% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

government public service
90%
documentation technical
77%
adult content
71%
education learning
46%
government
40%

Detected Features

Search
OG: website
Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
7159.60.158.251United States
AS35280F5 Networks SARL
6159.190.0.45Stockholm, Stockholm County, Sweden
AS1257Tele2 SWIPnet
6103.81.140.95Sweden
AS42695Cleura AB
193--

Detected Technologies3

X-UA-Compatible
100%
Open-Graph-Protocolvwebsite
100%
HSTS
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T17AA3E630D2155C3B43578AEA68D27E5591AD920FC6D21D14FB9CCF1D0BEACF8B63260A

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:JyVXEa2Ock9989dUiTLcwUJJlo3Do0NRDQ3EfRAkpnY2SQlg:JyVXEYc008SpnY2Sv

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:105149:UQUQ5YCAEKiIIS0BCCQRUZSIZQOJKYwhFIMRqVnB8plJMILs8QFmAHYoQOSOoQEoIEwhSsQpAeMKIMoBEYNgE0tYAhBMKqYo

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00ffe1e1e1e1e1ff
Perceptual Hash:eb189c27946a3b1d
Difference Hash:750b0b47474b4b70
Wavelet Hash:00e1e1e1e1e1e1ff
Color Hash:#87c5be

Other Hashes

Crop Resistant:750b0b47474b4b70,0101259494842185,89ca976d61736170,0c0ccc8eccf81898

Scan History

Scan history not available

Unable to load historical scan data