Security Scan Report: eswch.top

Redirected to:
https://www.amazon.com/
Submitted: Apr 30, 2026, 5:56:23 PMCompleted: Apr 30, 2026, 5:57:48 PMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 2 countries across 4 domains to perform 1 HTTP transaction. The main domain is amazon.com and was registered NaN years ago.

Submitted URL: http://eswch.top/

Effective URL: https://www.amazon.com/Redirected

AI Security Verdict

Moderate Risk

Confidence: 92%

5
Risk Score

The site impersonates Amazon using meta tags and redirects, with strong phishing indicators despite its age; avoid and report.

Risk Factors
Brand impersonation with domain mismatch
Unranked domain on a major brand name
Critical IDS alert for obfuscation
DevTools blocking
Redirects to legitimate site (potential lure)
Safety Factors
Domain age >30 years (well‑established)
No malicious Indicators of Compromise detected
No credential or payment forms present
No JavaScript malware YARA matches
Established domain (11502 days old) with no strong malicious indicators — risk clamped from 8 to 5
Domain age information unavailable

Details

Page Title

Amazon.com. Spend less. Smile more.

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

e-commerce shopping

(82%)

Domain Information

You're looking at domain 'eswch.top' on the .top top-level domain without a subdomain. Count 5 characters in 'eswch' with one vowel and four consonants. It segments into three words: es, w, ch. Median word length comes out to two characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://eswch.top/

Page Load Overview

1.62s
Total Load Time
423
HTTP Requests
50
Domains
3.7 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-us
Text Length:6,374 chars
Detector Agreement:80%

Website Classification

Primary Category

e-commerce shopping82% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

e-commerce shopping
82%
documentation technical
41%
technology software
33%
entertainment media
33%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
108192.166.225.79Netherlands
AS63023GTHost
105104.18.94.41United States
AS13335Cloudflare, Inc.
10518.67.13.22United States
AS16509Amazon.com, Inc.
10513.33.52.208New York, New York, United States
AS16509Amazon.com, Inc.
4234--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1E241938B9DF0C0852123792ACE67A10E5EA1D66B124EE8007DCDD0191F987CB8D8B3AD

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

48:TmJ223o9LDrfgcUM9YwBIt6N2k+iwkfWzYdpoj:TmJG9TfZyIH2kIkfpvoj

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:2006:ABICAgAEEBQAAAQAAAAABQAQgAAgABQAAAAAEACAAAAMAABgQQACBIAEAJiCAAAAAggAAEAIAAAkBAQACCAgAAIIAAAAAAoA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:008dbdff8f8ffff7
Perceptual Hash:bf51421f61c05e5b
Difference Hash:815971727b756865
Wavelet Hash:008999bf8b81bfb3
Color Hash:#931f8f

Scan History

Scan history not available

Unable to load historical scan data