ScanMalware.com

Security Scan Report: b--p-230-8dfm-kd-l---34h08--sdac--rfg40o--w-edcn----ipoedf.pages.dev

Site favicon
Submitted: Dec 9, 2025, 10:51:01 AMCompleted: Dec 9, 2025, 10:52:53 AMpubliccompleted
Loading additional data...

Summary

This website contacted 125 IPs in 8 countries across 46 domains to perform 129 HTTP transactions. The main domain is b--p-230-8dfm-kd-l---34h08--sdac--rfg40o--w-edcn----ipoedf.pages.dev.

Submitted URL: https://b--p-230-8dfm-kd-l---34h08--sdac--rfg40o--w-edcn----ipoedf.pages.dev/de

AI Security Verdict

Confirmed Scam

Confidence: 95%

9
Risk Score

High‑risk phishing site impersonating Ookla Speedtest; newly created and unranked.

Risk Factors
Brand impersonation on a newly registered, unranked domain
Domain age < 90 days while mimicking a known service
Lack of verifiable legitimate content
Domain age information unavailable

Details

Page Title

Speedtest von Ookla - Der umfassende Breitband-Geschwindigkeitstest

Scan Type

public

Language

🇩🇪

German

(80% confidence)

Category

technology software

(60%)

Domain Information

Domain 'b--p-230-8dfm-kd-l---34h08--sdac--rfg40o--w-edcn----ipoedf.pages.dev' uses the developer-focused generic top-level domain (.dev) and includes subdomain 'b--p-230-8dfm-kd-l---34h08--sdac--rfg40o--w-edcn----ipoedf'. The core label 'pages' covers 5 characters with two vowels and 3 consonants. Splitting it apart reveals one word: pages. Average segment length settles at 5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://b--p-230-8dfm-kd-l---34h08--sdac--rfg40o--w-edcn----ipoedf.pages.dev/de

Page Load Overview

7.60s
Total Load Time
129
HTTP Requests
46
Domains
3.2 MB
Total Size

Language Analysis

Primary Language

🇩🇪German
Code: de
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:de
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:de
Text Length:3,733 chars
Detector Agreement:60%

Website Classification

Primary Category

technology software60% confidence
Type: spa
Method: ml+structural

All Detected Categories

technology software
60%
government public service
53%
documentation technical
46%
adult content
37%
download file sharing
35%

Detected Features

Search
OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
5141.95.33.120Germany
AS16276OVH SAS
18.47.69.0United States
AS13335CLOUDFLARENET
152.212.75.82Dublin, Leinster, Ireland
AS16509AMAZON-02
123.56.202.65Frankfurt am Main, Hesse, Germany
AS16625AKAMAI-AS
13.174.113.12United States
AS16509AMAZON-02
134.240.33.144Dublin, Leinster, Ireland
AS16509AMAZON-02
13.120.141.171Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
169.173.144.137Frankfurt am Main, Hesse, Germany
AS26667RUBICONPROJECT
18.6.112.0United States
AS13335CLOUDFLARENET
13.164.206.73United States
AS16509AMAZON-02
129125--

Detected Technologies4

Open-Graph-Protocolvwebsite
100%
HTTP/3
40%
Cloudflare Bot Management
40%
Cloudflare
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1DB34F7A636A8531DD1CB875CAA3276047B0BA4ABFD7788DCB24D8B744FC6AE1DC03544

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:5wNbv5bagbcVMaWUZD+3UbwnZjKs5Uk99R:50bv86a/0ZZUw

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:247736:BMFAlbEShch4ghIqudVxIZdotAWyxALAyJZJTADBgKyoBIoCDjs6CkoFIggQgASQGKGApcCBJkSDgyhjAQ4BYQRhVGaH4UMu

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:N/A
Perceptual Hash:N/A
Difference Hash:N/A
Wavelet Hash:N/A
Color Hash:N/A

Other Hashes

Crop Resistant:N/A

Scan History

Scan history not available

Unable to load historical scan data