ScanMalware.com

Security Scan Report: afshinpanel.pages.dev

Submitted: Dec 15, 2025, 10:39:49 PMCompleted: Dec 15, 2025, 10:42:09 PMpubliccompleted
Loading additional data...

Summary

This website contacted 143 IPs in 7 countries across 55 domains to perform 128 HTTP transactions. The main domain is afshinpanel.pages.dev and was registered NaN years ago.

Submitted URL: https://afshinpanel.pages.dev/sv

AI Security Verdict

High Risk

Confidence: 88%

7
Risk Score

Impersonates Ookla Speedtest on an unranked domain; likely phishing.

Risk Factors
Brand impersonation of Ookla Speedtest on an unrelated domain
Unranked domain presenting a well‑known brand
Multiple redirects without clear purpose
Domain age information unavailable

Details

Page Title

Speedtest av Ookla - Det globala hastighetstestet för bredband

Scan Type

public

Language

🇸🇪

Swedish

(80% confidence)

Category

technology software

(44%)

Domain Information

The domain 'afshinpanel.pages.dev' uses the developer-focused generic top-level domain (.dev), featuring subdomain 'afshinpanel'. Count 5 characters in 'pages' holding 2 vowels versus 3 consonants. Splitting it apart reveals one word: pages. Average segment length settles at five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://afshinpanel.pages.dev/sv

Page Load Overview

49.09s
Total Load Time
128
HTTP Requests
55
Domains
3.4 MB
Total Size

Language Analysis

Primary Language

🇸🇪Swedish
Code: sv
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:sv
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:sv
Text Length:3,678 chars
Detector Agreement:60%

Website Classification

Primary Category

technology software44% confidence
Type: spa
Method: ml+structural

All Detected Categories

technology software
44%
documentation technical
34%
download file sharing
33%
government public service
30%
corporate
25%

Detected Features

Search
OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
128104.18.87.42United States
AS13335CLOUDFLARENET
035.207.138.134Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
0104.18.32.137United States
AS13335CLOUDFLARENET
034.120.133.55Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
023.36.162.8Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
035.244.159.8Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
0188.114.97.3United States
AS13335CLOUDFLARENET
034.36.209.34Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
069.173.156.138United States
AS26667RUBICONPROJECT
054.81.7.177Ashburn, Virginia, United States
AS14618AMAZON-AES
128143--

Detected Technologies4

Open-Graph-Protocolvwebsite
100%
HTTP/3
40%
Cloudflare Bot Management
40%
Cloudflare
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1CE1408F162B8536D908B879CEF36AA18670FE0B7F99649D5B79D8F644B83DD0E803404

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:P1g5DokB4yv6s0xE6J/CgbcVKzoKeMXKLnpI6dDcPXE+ymj6aslNzlbsjq0Aok3I:2Tb6bagbcVMaWUZD+3UbwnZmaN9j

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:192271:TDIBAYnxNkFQwAsJhYQBCCagpIgpi5YWAAQLRj6gwIABgskM0RHMSItRDRAYRkEGigHlCLRRoJgkEgI0ImiCoJAXMAoBizBO

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:N/A
Perceptual Hash:N/A
Difference Hash:N/A
Wavelet Hash:N/A
Color Hash:N/A

Other Hashes

Crop Resistant:N/A

Scan History

Scan history not available

Unable to load historical scan data