ScanMalware.com

Security Scan Report: drupal-ag-prod.cloud.entreda.net

Redirected to: https://advisorgroup.entreda.com/user/login

Site favicon
Submitted: Jan 31, 2026, 5:45:24 AMCompleted: Jan 31, 2026, 5:47:00 AMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 1 country across 5 domains to perform 25 HTTP transactions. The main domain is advisorgroup.entreda.com and was registered NaN years ago.

Submitted URL: https://drupal-ag-prod.cloud.entreda.net

Effective URL: https://advisorgroup.entreda.com/user/loginRedirected

The Cisco Umbrella rank of the primary domain is #728,341 of the top 1 million websites

AI Security Verdict

Low Risk

Confidence: 88%

2
Risk Score

Login page lacks a username field; while the domain is well‑established, the form design is suspicious.

Risk Factors
Password field without accompanying username/email field (potential credential harvesting pattern)
Safety Factors
Domain is over 15 years old (well‑established)
Hosted on standard web hosting, not IPFS or cloud storage
No noindex meta tags
No external domains or third‑party links
No malicious Indicators of Compromise detected
Domain age information unavailable

Details

Page Title

User account | Entreda

Scan Type

public

Language

🇺🇸

English

(63% confidence)

Category

technology software

(30%)

Domain Information

The domain name 'drupal-ag-prod.cloud.entreda.net' uses the network infrastructure generic top-level domain (.net), featuring subdomain 'drupal-ag-prod.cloud'. Its registrable label 'entreda' stretches across 7 characters split between 3 vowels and 4 consonants. Tokenizing the label suggests two words: entre, da. Average segment length settles at 3.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://drupal-ag-prod.cloud.entreda.net

Page Load Overview

4.81s
Total Load Time
30
HTTP Requests
7
Domains
461 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:63%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:63%
Script Type:Latin
Text Length:206 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software30% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

technology software
30%
social media
15%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
652.12.31.160Boardman, Oregon, United States
AS16509Amazon.com, Inc.
6142.250.201.67United States
AS16509
635.85.116.214Boardman, Oregon, United States
AS16509Amazon.com, Inc.
6142.250.184.234United StatesUnknown
6142.251.127.100United StatesUnknown
305--

Detected Technologies7

PasswordField
100%
Google-AnalyticsvUniversal
100%
Drupal
85%
Google Analytics
55%
PHP
50%
HSTS
40%
jQuery
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1E9423F0B28B94F7341477BCBF2F9B09AD88BD1EAE910D558D2DE784488E1D6904936E8

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:Og8NRI2OsK2NT6ajVJh5Y8RuTki888jXUIF+Vv+6IorGXnoh1no3Yvy3c:Og8NZOA9jVJh5Y8RuTki88rth1s3c

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:12261:hUgRxgQQkW7QChSSghJoKBJwBEEQgQEBMoLJSIMzEuKhAFEaEepACCKgQgCfOcCQjGAEpBLlHAqRIh4IICBbsBUgpgUEwFUo

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:cfffe7e7e7e7ffff
Perceptual Hash:b3389c32389c3377
Difference Hash:30000c0c0c0c0008
Wavelet Hash:c2f2c6c606063e3e
Color Hash:#bf8040

Other Hashes

Crop Resistant:30000c0c0c0c0008

Scan History

Scan history not available

Unable to load historical scan data