ScanMalware.com

Security Scan Report: mehdisanayi.pages.dev

Site favicon
Submitted: Jan 16, 2026, 7:44:46 AMCompleted: Jan 16, 2026, 7:46:14 AMpubliccompleted
Loading additional data...

Summary

This website contacted 16 IPs in 5 countries across 16 domains to perform 1 HTTP transaction. The main domain is mehdisanayi.pages.dev and was registered NaN years ago.

Submitted URL: https://mehdisanayi.pages.dev/pl

AI Security Verdict

High Risk

Confidence: 78%

7
Risk Score

Site impersonates BT brand on an unrelated domain; high‑risk phishing.

Risk Factors
Brand impersonation (BT) on a non‑official, unranked domain
Domain does not match the advertised brand
Domain age information unavailable

Details

Page Title

Speedtest od Ookla - globalny test prędkości łącza szerokopasmowego

Scan Type

public

Language

🇵🇱

Polish

(80% confidence)

Category

technology software

(52%)

Domain Information

The domain name 'mehdisanayi.pages.dev' uses the developer-focused generic top-level domain (.dev); it also runs on subdomain 'mehdisanayi'. The second-level label 'pages' is 5 characters long holding 2 vowels versus 3 consonants. Tokenizing the label suggests one word: pages. Average segment length settles at 5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://mehdisanayi.pages.dev/pl

Page Load Overview

3.61s
Total Load Time
79
HTTP Requests
27
Domains
3.4 MB
Total Size

Language Analysis

Primary Language

🇵🇱Polish
Code: pl
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:pl
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:pl
Text Length:2,399 chars
Detector Agreement:50%

Website Classification

Primary Category

technology software52% confidence
Type: spa
Method: ml+structural

All Detected Categories

technology software
52%
government public service
28%
documentation technical
28%
corporate
25%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
19197.253.67.125Germany
AS15169
434.120.133.55Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
4178.250.1.12Netherlands
AS20940
4162.19.138.83Ireland
AS16625
423.56.202.65United States
AS16276
423.36.162.25France
AS44788
413.226.244.7Unknown
AS396982
4142.251.140.170Unknown
AS13335
498.90.170.160Ashburn, Virginia, United States
AS14618AMAZON-AES
43.217.134.118Unknown
AS16509
7916--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1531408F562B8436D808B979CEF36A718630FE1B7F9964AD5B79D8B644B83DD0E803404

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:GGj2eo9f4klbs0xE6J/CgbcVKzoKeMXKLnpI6dDcPXE+ymj6aslNzlbsjq0Aok3W:7UXbbagbcVMaWUZD+3UbwnZyA7fY96

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:197104:QQU5CQAEbpA8BStGCTGUAJGjSgLoiUAgHghWAKqAuBHUBRFGh1SfmUAEgjQgSSQQQPTMIINBEYOCciCACF4CWkhThBJjqAEq

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:6fb9ddfdfdfd1101
Perceptual Hash:aad533f30ad522d1
Difference Hash:9935353131352171
Wavelet Hash:6f3b1b1b3f1f0101
Color Hash:#bf8240

Other Hashes

Crop Resistant:2d2d2d2d2c2d2ded,9935353131352171

Scan History

Scan history not available

Unable to load historical scan data