ScanMalware.com

Security Scan Report: www.investor.gov

Site favicon
Submitted: Dec 10, 2025, 1:41:34 AMCompleted: Dec 10, 2025, 1:42:45 AMpubliccompleted
Loading additional data...

Summary

This website contacted 39 IPs in 4 countries across 11 domains to perform 64 HTTP transactions. The main domain is investor.gov and was registered NaN years ago.

Submitted URL: https://www.investor.gov/

The Cisco Umbrella rank of the primary domain is #174,010 of the top 1 million websites

AI Security Verdict

Safe Website

Confidence: 95%

0
Risk Score

Legitimate US government site with no security concerns.

Safety Factors
Official United States government website
Well‑established domain age
No malicious Indicators of Compromise detected
No credential‑harvesting or payment forms
Domain age information unavailable

Details

Page Title

Home | Investor.gov

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

government public service

(63%)

Domain Information

Domain 'www.investor.gov' uses the United States government-restricted top-level domain (.gov) with subdomain 'www'. The core label 'investor' covers 8 characters containing three vowels alongside five consonants. It segments into 1 word: investor. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.investor.gov/

Page Load Overview

32.02s
Total Load Time
64
HTTP Requests
11
Domains
1.4 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:5,547 chars
Detector Agreement:100%

Website Classification

Primary Category

government public service63% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

government public service
63%
government
48%
adult content
28%
finance banking
25%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2620.140.56.69San Antonio, Texas, United States
AS8070MICROSOFT-CORP-MSN-AS-BLOCK
1216.58.209.202United States
AS15169GOOGLE
1216.239.34.36United States
AS15169GOOGLE
1172.65.90.26United States
AS13335CLOUDFLARENET
118.165.140.122United States
AS16509AMAZON-02
1216.58.209.206United States
AS15169GOOGLE
1216.239.32.36United States
AS15169GOOGLE
166.117.61.24Manassas, Virginia, United States
AS29748QTS-ASH
1172.65.90.25United States
AS13335CLOUDFLARENET
1216.58.209.195United States
AS15169GOOGLE
6439--

Detected Technologies5

Google-AnalyticsvUniversal
100%
PHP
50%
HSTS
40%
Drupal
40%
Akamai
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T161734F1158E12437825391C16A34FB2AEBD6D987DF0A0584F3FC178A9FCBE42CE9711A

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:qZkc4OcyovuYVced2VuIRDMQ6rqhjlOoMgxV1BphsMERwAHPew2n2VzuVdMERSa5:0kc4SIchMAZ5xLokn1PRt5ig8J99p3WP

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:75793:AIqdsDCWAMEXgwsUMI0NAAUFWVJaDqoC2gUOMEAQCACxbzBANTIECkAgnEihB5YyEhjjBETRyQFUU2BgLgEBKgYxCEAeH4CC

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Scan History

Scan history not available

Unable to load historical scan data