ScanMalware.com

Security Scan Report: validate.perfdrive.com

Submitted: Jan 24, 2026, 8:38:50 PMCompleted: Jan 24, 2026, 8:40:18 PMpubliccompleted
Loading additional data...

Summary

This website contacted 10 IPs in 2 countries across 12 domains to perform 16 HTTP transactions. The main domain is validate.perfdrive.com and was registered NaN years ago.

Submitted URL: https://validate.perfdrive.com/5e975472fcf167bd1130d74f0fb9a2f7/?ssa=019c4d3b-f812-403d-b4a9-77c0316fc8c7&ssb=39790293754&ssc=https%3A%2F%2Fwww.dmo.gov.uk%2F&ssi=29eea971-bhbz-420b-9c37-a618454b5e2b&[email protected]&ssm=57340898995232118165222568820462&ssn=f4ab0533e9f5b832e7ccefa1b8393b9f454e43bb2338-2c7a-48aa-a5f097&sso=1466549d-490aafa9d2bdbefd33855b8b7e5b9fd2048aa889d99af79f&ssp=61892172621769298586176926813605213&ssq=84959148712979211187108189627014975268578&ssr=MTc4LjYzLjE2LjIyNA==&sst=Mozilla/5.0%20(Windows%20NT%2010.0;%20Win64;%20x64)%20AppleWebKit/537.36%20(KHTML,%20like%20Gecko)%20Chrome/124.0.0.0%20Safari/537.36&ssu=&ssv=&ssw=&ssx=eyJfX3V6bWYiOiI3ZjkwMDA0M2JiMjMzOC0yYzdhLTQ4YWEtYTQ5ZC00OTBhYWZhOWQyYmQyLTE3NjkyMDgxODkwMzE3ODk0MDU2Ny0wMDI1Yjc3MmMxZTFlYWUxODk2MTYiLCJyZCI6ImRtby5nb3YudWsiLCJ1em14IjoiN2Y5MDAwM2M5YjQ3MWMtMDM1Ni00ZTJkLWJmYzctZGQyYTc4OGE5MzE4Mi0xNzY5MjA4MTg5MDMxNzg5NDA1NjctZWNjYzc2OGU5YWZjYTdmNTE2In0=

The Cisco Umbrella rank of the primary domain is #14,110 of the top 1 million websites

AI Security Verdict

Safe Website

Confidence: 96%

0
Risk Score

The page is a legitimate captcha from ShieldSquare; no security threats detected.

Safety Factors
Well‑established domain (>11 years old)
High Cisco Umbrella ranking (top 10k)
Absence of malicious Indicators of Compromise
No sensitive data collection forms
Legitimate bot‑detection service (ShieldSquare) used by a government agency
Domain age information unavailable

Details

Page Title

ShieldSquare Captcha

Scan Type

public

Language

🇺🇸

English

(58% confidence)

Category

government public service

(57%)

Domain Information

You're looking at domain 'validate.perfdrive.com' on the commercial generic top-level domain (.com), featuring subdomain 'validate'. The second-level label 'perfdrive' is 9 characters long holding 3 vowels versus 6 consonants. Breaking it apart gives 3 words: per, f, drive. Median word length comes out to 3 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://validate.perfdrive.com/5e975472fcf167bd1130d74f0fb9a2f7/?ssa=019c4d3b-f812-403d-b4a9-77c0316fc8c7&ssb=39790293754&ssc=https%3A%2F%2Fwww.dmo.gov.uk%2F&ssi=29eea971-bhbz-420b-9c37-a618454b5e2b&ssk=support@shieldsquare.com&ssm=57340898995232118165222568820462&ssn=f4ab0533e9f5b832e7ccefa1b8393b9f454e43bb2338-2c7a-48aa-a5f097&sso=1466549d-490aafa9d2bdbefd33855b8b7e5b9fd2048aa889d99af79f&ssp=61892172621769298586176926813605213&ssq=84959148712979211187108189627014975268578&ssr=MTc4LjYzLjE2LjIyNA==&sst=Mozilla/5.0%20(Windows%20NT%2010.0;%20Win64;%20x64)%20AppleWebKit/537.36%20(KHTML,%20like%20Gecko)%20Chrome/124.0.0.0%20Safari/537.36&ssu=&ssv=&ssw=&ssx=eyJfX3V6bWYiOiI3ZjkwMDA0M2JiMjMzOC0yYzdhLTQ4YWEtYTQ5ZC00OTBhYWZhOWQyYmQyLTE3NjkyMDgxODkwMzE3ODk0MDU2Ny0wMDI1Yjc3MmMxZTFlYWUxODk2MTYiLCJyZCI6ImRtby5nb3YudWsiLCJ1em14IjoiN2Y5MDAwM2M5YjQ3MWMtMDM1Ni00ZTJkLWJmYzctZGQyYTc4OGE5MzE4Mi0xNzY5MjA4MTg5MDMxNzg5NDA1NjctZWNjYzc2OGU5YWZjYTdmNTE2In0=

Page Load Overview

1.43s
Total Load Time
16
HTTP Requests
12
Domains
44 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:58%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:58%
Script Type:Latin
Text Length:614 chars
Detector Agreement:100%

Website Classification

Primary Category

government public service57% confidence
Type: static
Method: ml+structural

All Detected Categories

government public service
57%
phishing scam
55%
government
48%
technology software
43%
cryptocurrency blockchain
34%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
734.117.2.119Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
1104.19.230.21United States
AS13335CLOUDFLARENET
1104.18.12.205United States
AS13335CLOUDFLARENET
1172.217.18.3United States
AS15169GOOGLE
135.241.15.240Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
1130.211.29.114United States
AS396982GOOGLE-CLOUD-PLATFORM
166.22.63.144Ashburn, Virginia, United States
AS25773RADWARE-CLOUD-SERVICES
1172.217.23.106United States
AS15169GOOGLE
1104.19.229.21United States
AS13335CLOUDFLARENET
166.22.32.2Frankfurt am Main, Hesse, Germany
AS48851Radware Ltd
1610--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T18682D65133D0280413974BA7731BB9CAF967A85B7E85488AF41CED007B8AB66DFE3570

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:+UcDKcuP/FnX16OW3OGRz3apKZJri2bZcFMKYbWJmjoRIC37iCbHWe:+UcDVuPtF6OW3OGRz3aoZJrisnjWrlb

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:18048:cYHBUIAECAAhEIgpIH4X6oe9CBBxjGAECghIIiIRAlHVvCQqRAUAFVIKMWAJBw4LRBJrLCQbANICCIFBECAAUAABU0H8LpAG

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:e7e7c7c7e7e7ffff
Perceptual Hash:b233c9c38f983ccc
Difference Hash:080c0c0c0c0c0000
Wavelet Hash:e7c3838320200c0c
Color Hash:#e06c96

Other Hashes

Crop Resistant:080c0c0c0c0c0000

Scan History

Scan history not available

Unable to load historical scan data