ScanMalware.com

Security Scan Report: www.domstol.se

Site favicon
Submitted: May 11, 2026, 12:23:58 AMCompleted: May 11, 2026, 12:25:10 AMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 2 countries across 4 domains to perform 22 HTTP transactions. The main domain is domstol.se and was registered NaN years ago.

Submitted URL: https://www.domstol.se/vanersborgs-tingsratt/

The Cisco Umbrella rank of the primary domain is #778,263 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 80%

7
Risk Score

The site shows critical malware‑related IDS alerts and heavily obfuscated JavaScript despite being an old, legitimate‑looking government domain, indicating a high‑risk malware distribution threat.

Risk Factors
Critical network IDS alert indicating possible malware/data exfiltration
Highly obfuscated JavaScript code
Very low domain reputation ranking
Inconsistent content classification (adult content) for a government site
No legitimate credential or payment forms, but suspicious activity present
Domain age information unavailable

Details

Page Title

Vänersborgs tingsrätt

Scan Type

public

Language

🇸🇪

Swedish

(80% confidence)

Category

adult content

(94%)

Domain Information

The domain name 'www.domstol.se' uses the Swedish country-code top-level domain (.se); it also runs on subdomain 'www'. Its registrable label 'domstol' stretches across 7 characters containing 2 vowels alongside five consonants. Splitting it apart reveals 2 words: dom, stol. Average segment length settles at 3.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.domstol.se/vanersborgs-tingsratt/

Page Load Overview

1.29s
Total Load Time
19
HTTP Requests
4
Domains
243 KB
Total Size

Language Analysis

Primary Language

🇸🇪Swedish
Code: sv
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:sv
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:sv
Text Length:3,971 chars
Detector Agreement:100%

Website Classification

Primary Category

adult content94% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

adult content
94%
government public service
82%
education learning
47%
government
40%
corporate
25%

Detected Features

Search
OG: website
Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
7159.190.0.45Stockholm, Stockholm County, Sweden
AS1257Tele2 SWIPnet
6159.60.158.251United States
AS35280F5 Networks SARL
6103.81.140.95Sweden
AS42695Cleura AB
193--

Detected Technologies3

X-UA-Compatible
100%
Open-Graph-Protocolvwebsite
100%
HSTS
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1A0B3E73092045C7B42578AEA64D17F5591ED920FCAA20D54FB9CCF1D0BEBCF8B62660E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:Tota+TO6k998DdUiXLceUJHlo3DUJh6iOQ3EfRAuabDFDlg:Tota96uRQabDFK

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:108388:wwkCXRFCUBDVIWYwwnFKIwLAISJgYIQl1SAhSpD8IAMAQE0CSIRFwAkAcUmFSjJIIVtYQUFFshYSBDoyhIgkmkPOYIijlAME

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00fbe1e1e1e1e1ff
Perceptual Hash:eb1c96631c73631c
Difference Hash:2d230343434b4b32
Wavelet Hash:00f1e1e1e1e1e1fb
Color Hash:#8440bf

Other Hashes

Crop Resistant:2d230343434b4b32,0101259494842185,a5c68696dddd0298

Scan History

Scan history not available

Unable to load historical scan data