Report - www.huawell-trade.com/product.php?lang=tw

Report Overview

Visited public
2023-10-21 10:34:40
Tags
URL
www.huawell-trade.com/product.php?lang=tw
Finishing URL
www.huawell-trade.com/product.php?lang=tw
IP / ASN
60.249.71.46
#3462 Data Communication Business Group
Title
DEHN | 鏵崴貿易有限公司

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2023-10-20 23:56:50	675 B	99 kB	151.101.130.137
60.249.71.46	unknown	unknown	2015-05-24 06:43:01	2023-03-17 17:19:06	9.1 kB	979 kB	60.249.71.46
www.huawell-trade.com	unknown	2012-10-22	2017-05-16 20:10:35	2023-07-14 12:36:37	950 B	25 kB	60.249.71.46

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed
2023-10-21	medium	60.249.71.46	Sinkholed

ThreatFox

No alerts detected

JavaScript (13)

	URL	From	Size	First Seen	Last Seen
	www.huawell-trade.com/product.php?lang=tw	ScriptElement	19 B	2023-03-09	2024-10-11
Pretty URL www.huawell-trade.com/product.php?lang=tw IP 60.249.71.46 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-09 06:04 Last Seen2024-10-11 08:51 Times Seen6 Hash ea54c5d0ca978fcceefaddbb87e0ea2f 7ee4d54a54f54493646aceeb0149505796e8a9a9 3fb617cc09a4403e7ecdf1f0f5aaa64c7395cbb9ed867e9aa530fde8497cfa0c Loading...

	www.huawell-trade.com/product.php?lang=tw	ScriptElement	1.1 kB	2023-03-07	2025-05-01
Pretty URL www.huawell-trade.com/product.php?lang=tw IP 60.249.71.46 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 23:24 Last Seen2025-05-01 02:09 Times Seen64 Hash 39be6e388ae1b47180f6bfdc42987fac 5786927b4ee5c4166bb88af3f652c1f18fe518ef 120c0ff5ef5a0e0c00b66740e31ad95dd813ae63d42ac9c19270df10e93a7897 Loading...

	code.jquery.com/jquery-1.7.min.js	ScriptElement	94 kB	2023-03-07	2025-05-14
Pretty URL code.jquery.com/jquery-1.7.min.js IP 151.101.130.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02 Last Seen2025-05-14 01:48 Times Seen929 Hash 25721ced154b3a99e818431446d7506d 3f1b0e9e54af1af2db2c8a639530448723462151 ff4e4975ef403004f8fe8e59008db7ad47f54b10d84c72eb90e728d1ec9157ce Loading...

	code.jquery.com/ui/1.11.4/jquery-ui.min.js	ScriptElement	240 kB	2023-03-07	2025-05-14
Pretty URL code.jquery.com/ui/1.11.4/jquery-ui.min.js IP 151.101.130.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:04 Last Seen2025-05-14 19:39 Times Seen3067 Hash d935d506ae9c8dd9e0f96706fbb91f65 7f650ee30c6a4d3eea04032039b20ff72997559b c4d8dbe77feb63e5a61bee0bead4e5f66e8fa6a927599bd1b74aced52467273c Loading...

	60.249.71.46/~webtech/web/js/jquery.carouFredSel-6.1.0-packed.js	ScriptElement	36 kB	2023-03-07	2025-05-10
Pretty URL 60.249.71.46/~webtech/web/js/jquery.carouFredSel-6.1.0-packed.js IP 60.249.71.46 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:10 Last Seen2025-05-10 13:20 Times Seen49 Hash 49d55fcf4e671b6f78f66d7c7c6ee1b1 a59db28997f065d0eb8d13e5a811ceeb4c508489 6144db533b86c931d04d63fb3392b8c5d9d1c6455ada6f03de1ccfde61e72fcc Loading...

	www.huawell-trade.com/product.php?lang=tw	ScriptElement	2.6 kB	2023-10-21	2024-09-19
Pretty URL www.huawell-trade.com/product.php?lang=tw IP 60.249.71.46 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-21 12:34 Last Seen2024-09-19 22:06 Times Seen4 Hash 57c5f2590476f7952f4acd502b49f7cf e6ea1444492561387907e1595ff838c55a7e0f1c e904f0d4fda5f7f7187f180524246c39392b11c2e86c6d7883aaf77c31efb723 Loading...

	www.huawell-trade.com/product.php?lang=tw	ScriptElement	220 B	2024-08-21	2024-08-21
Pretty URL www.huawell-trade.com/product.php?lang=tw IP 60.249.71.46 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 03:57 Last Seen2024-08-21 03:57 Times Seen1 Hash ae328fdc033a9fefb4e7dda2068a8df0 54681cb1a88145e8d0af56919857f78a6c2f9a73 4d1cc3dec54b9aa5b581e623ea8b86826caeb5960732a92625585f7ce8fd3a65 Loading...

	www.huawell-trade.com/product.php?lang=tw	ScriptElement	239 B	2023-10-21	2024-09-19
Pretty URL www.huawell-trade.com/product.php?lang=tw IP 60.249.71.46 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-21 12:34 Last Seen2024-09-19 22:06 Times Seen4 Hash e442a24db9ed455980760d91369cbb79 ec8fb4daf0f74fc22ba30489e4d758e1b28ceb9f 59772b195bcf319d3018c45fb2d0763337876b7825bb55d4f5f2d3af5cdd0603 Loading...

	www.huawell-trade.com/product.php?lang=tw	ScriptElement	333 B	2024-08-21	2024-08-21
Pretty URL www.huawell-trade.com/product.php?lang=tw IP 60.249.71.46 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 03:57 Last Seen2024-08-21 03:57 Times Seen1 Hash 7b7a27305077c5374a59578a39c0b0ae 78e118afd05087fe4c44c3393f4db402c3d3c2a5 61d4b4908425162e5434454bd8f4ab226de7c0ee2ef50ca15fcb7609e7c43331 Loading...

	www.huawell-trade.com/product.php?lang=tw	ScriptElement	152 B	2024-08-21	2024-08-21
Pretty URL www.huawell-trade.com/product.php?lang=tw IP 60.249.71.46 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 03:57 Last Seen2024-08-21 03:57 Times Seen1 Hash 150efa5bf2a35dbc5df5e19b385f9c55 314292766623c5464e2713edcc60465eee5dcc6d 2140f478480b6e55965ab35721e482844eef69de6a16011ebeaafd20c28887b3 Loading...

	60.249.71.46/~webtech/web/js/image.js	ScriptElement	1.0 kB	2023-03-07	2025-05-11
Pretty URL 60.249.71.46/~webtech/web/js/image.js IP 60.249.71.46 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10 Last Seen2025-05-11 20:09 Times Seen9 Hash d26ec5d9b93cc331f1414537938eb7c0 def08ae9564680d066b6a7e23c57c108db974c01 799a2be7541ca8198f379978f050031c67afa7331fda87f6b01dd41e6e4e31b5 Loading...

	60.249.71.46/~webtech/web/js/fancybox/jquery.fancybox-1.3.4.pack.js	ScriptElement	16 kB	2023-03-07	2025-05-08
Pretty URL 60.249.71.46/~webtech/web/js/fancybox/jquery.fancybox-1.3.4.pack.js IP 60.249.71.46 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42 Last Seen2025-05-08 03:05 Times Seen478 Hash 8bc36a08c46719377528d962966ce37c caeb31e930068ce5820b239d44d8415f95957138 d84bac3710c2842dc8d5d5ae6e324007443cbd8ae26b909dd89bc2bdc31c8561 Loading...

		Size	First Seen	Last Seen
	#1 Eval - dee5b90f7abec6c5cf6e127f30da1fc0	59 kB	2023-03-07 14:55	2025-05-10 13:20
Pretty Observations First Seen2023-03-07 14:55 Last Seen2025-05-10 13:20 Times Seen97 Hash dee5b90f7abec6c5cf6e127f30da1fc0 c18436be541dd5e84b8c042765d6a2a4e35d0ce5 6046a5f2b8a45e2639b4d107663172301f165f54f8b62ea803aa8e9907c6e5df Loading...

HTTP Transactions (27)

URL IP Response Size

code.jquery.com/jquery-1.7.min.js

151.101.130.137

200 OK

33 kB

URL GET HTTP/1.1
code.jquery.com/jquery-1.7.min.js
IP
151.101.130.137:80
ASN
#54113 FASTLY

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Size
33 kB (33254 bytes)
Hash
25721ced154b3a99e818431446d7506d
3f1b0e9e54af1af2db2c8a639530448723462151
ff4e4975ef403004f8fe8e59008db7ad47f54b10d84c72eb90e728d1ec9157ce

HTTP Headers

GET /jquery-1.7.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 33254
Server: nginx
Content-Type: application/javascript; charset=utf-8
Last-Modified: Fri, 18 Oct 1991 12:00:00 GMT
ETag: W/"28feccc0-16f44"
Cache-Control: public, max-age=31536000, stale-while-revalidate=604800
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 21 Oct 2023 10:34:23 GMT
Age: 3082259
X-Served-By: cache-lga21959-LGA, cache-bma1650-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 3773, 74
X-Timer: S1697884464.682798,VS0,VE0
Vary: Accept-Encoding

code.jquery.com/ui/1.11.4/jquery-ui.min.js

151.101.130.137

200 OK

64 kB

URL GET HTTP/1.1
code.jquery.com/ui/1.11.4/jquery-ui.min.js
IP
151.101.130.137:80
ASN
#54113 FASTLY

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
ASCII text, with very long lines (32035)
Size
64 kB (64296 bytes)
Hash
d935d506ae9c8dd9e0f96706fbb91f65
7f650ee30c6a4d3eea04032039b20ff72997559b
c4d8dbe77feb63e5a61bee0bead4e5f66e8fa6a927599bd1b74aced52467273c

HTTP Headers

GET /ui/1.11.4/jquery-ui.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 64296
Server: nginx
Content-Type: application/javascript; charset=utf-8
Last-Modified: Fri, 18 Oct 1991 12:00:00 GMT
ETag: W/"28feccc0-3ab2b"
Cache-Control: public, max-age=31536000, stale-while-revalidate=604800
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 21 Oct 2023 10:34:23 GMT
Age: 3082262
X-Served-By: cache-lga21924-LGA, cache-bma1662-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 20, 6949
X-Timer: S1697884464.688793,VS0,VE0
Vary: Accept-Encoding

60.249.71.46/~webtech/web/js/image.js

60.249.71.46

200 OK

1.0 kB

URL GET HTTP/1.1
60.249.71.46/~webtech/web/js/image.js
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
ASCII text
Size
1.0 kB (1042 bytes)
Hash
d26ec5d9b93cc331f1414537938eb7c0
def08ae9564680d066b6a7e23c57c108db974c01
799a2be7541ca8198f379978f050031c67afa7331fda87f6b01dd41e6e4e31b5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/js/image.js HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:55 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Tue, 29 Mar 2011 11:06:39 GMT
ETag: "1634f3e-412-49f9d0dea8dc0"
Accept-Ranges: bytes
Content-Length: 1042
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

www.huawell-trade.com/product.php?lang=tw

60.249.71.46

200 OK

24 kB

URL User Request GET HTTP/1.1
www.huawell-trade.com/product.php?lang=tw
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2143), with CRLF, LF line terminators
Size
24 kB (24066 bytes)
Hash
360ecd019e0a721436121a4f396c68a3
df2ba3835bbf110f6f33c9fab3aa68aaa8109f04
0318e8c5f96914f7c4ca6281243c6072606d84ab98498701f511fc80c3ab55ee

HTTP Headers

GET /product.php?lang=tw HTTP/1.1
Host: www.huawell-trade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:54 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html;charset=UTF-8
Set-Cookie: webtech=bgdqhdjbedhbn809k38gma0576; path=/
TS01b344d7=01bd9282d2a0feb6c6ffc5519b2554975b26c771ab46bf27683359e494620c701157ecf4b15ddf126f2bcbb6be0e3ba1e59aeacd6b; Path=/
Transfer-Encoding: chunked

60.249.71.46/~webtech/web/pageModel/0621/style.css?v=20231021

60.249.71.46

200 OK

9.3 kB

URL GET HTTP/1.1
60.249.71.46/~webtech/web/pageModel/0621/style.css?v=20231021
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
ASCII text, with CRLF line terminators
Size
9.3 kB (9306 bytes)
Hash
9d04515399133d9d170219bff1a506bb
baf84ced836b036f6eabc1fed31121b92fb6e43a
71833343c125908b5fc1940f0d1bbc403a5ecb7cd1bba44d3d2f419fee1360e6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/pageModel/0621/style.css?v=20231021 HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:55 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Fri, 20 Mar 2015 12:22:11 GMT
ETag: "163833c-245a-511b75d9fe2c0"
Accept-Ranges: bytes
Content-Length: 9306
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

60.249.71.46/~webtech/web/js/fancybox/jquery.fancybox-1.3.4.css

60.249.71.46

200 OK

8.9 kB

URL GET HTTP/1.1
60.249.71.46/~webtech/web/js/fancybox/jquery.fancybox-1.3.4.css
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
ASCII text, with CRLF line terminators
Size
8.9 kB (8852 bytes)
Hash
4638ce99ef00cf62bfb22d230f9924b8
dc79d46238a7dd0a7b63f640bce08ae52af73b36
b16dc95bb0dee2be9a35dd088b2624c26b574a51611cf64aa9f04e9464e054a9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/js/fancybox/jquery.fancybox-1.3.4.css HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:55 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Tue, 28 Jun 2011 01:48:54 GMT
ETag: "1634f63-2294-4a6bbdece4d80"
Accept-Ranges: bytes
Content-Length: 8852
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

60.249.71.46/~webtech/web/js/fancybox/jquery.fancybox-1.3.4.pack.js

60.249.71.46

200 OK

16 kB

URL GET HTTP/1.1
60.249.71.46/~webtech/web/js/fancybox/jquery.fancybox-1.3.4.pack.js
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
ASCII text, with very long lines (752)
Size
16 kB (15624 bytes)
Hash
8bc36a08c46719377528d962966ce37c
caeb31e930068ce5820b239d44d8415f95957138
d84bac3710c2842dc8d5d5ae6e324007443cbd8ae26b909dd89bc2bdc31c8561

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/js/fancybox/jquery.fancybox-1.3.4.pack.js HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:55 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Tue, 28 Jun 2011 01:48:54 GMT
ETag: "1634f65-3d08-4a6bbdece4d80"
Accept-Ranges: bytes
Content-Length: 15624
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

60.249.71.46/~webtech/web/js/jquery.carouFredSel-6.1.0-packed.js

60.249.71.46

200 OK

36 kB

URL GET HTTP/1.1
60.249.71.46/~webtech/web/js/jquery.carouFredSel-6.1.0-packed.js
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
ASCII text, with very long lines (36107)
Size
36 kB (36416 bytes)
Hash
49d55fcf4e671b6f78f66d7c7c6ee1b1
a59db28997f065d0eb8d13e5a811ceeb4c508489
6144db533b86c931d04d63fb3392b8c5d9d1c6455ada6f03de1ccfde61e72fcc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/js/jquery.carouFredSel-6.1.0-packed.js HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:55 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Fri, 22 Feb 2013 09:16:11 GMT
ETag: "1634f41-8e40-4d64ca4684cc0"
Accept-Ranges: bytes
Content-Length: 36416
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

60.249.71.46/~webtech/web/201200179/archive/weblogo/HUAWELL-5.png

60.249.71.46

200 OK

4.3 kB

URL GET HTTP/1.1
60.249.71.46/~webtech/web/201200179/archive/weblogo/HUAWELL-5.png
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
PNG image data, 350 x 29, 8-bit/color RGBA, non-interlaced\012- data
Size
4.3 kB (4343 bytes)
Hash
d260907c6babda77e4e2ccb60eff0586
f6c3ec6e99467f3ddf6fc5790cd647bedf90130e
a6dd7fd3405f3d981061ec1cda89114b6fc64c784c6fa2629c0c8edb5498ca31

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/201200179/archive/weblogo/HUAWELL-5.png HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:56 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Fri, 22 May 2015 03:56:13 GMT
ETag: "22f0017-10f7-516a3a4263140"
Accept-Ranges: bytes
Content-Length: 4343
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

60.249.71.46/~webtech/web/pageModel/0621/images/index_go04.jpg

60.249.71.46

200 OK

643 B

URL GET HTTP/1.1
60.249.71.46/~webtech/web/pageModel/0621/images/index_go04.jpg
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 28x21, components 3\012- data
Size
643 B (643 bytes)
Hash
b1135a15bef090ff62c7a429ec1dd7c9
b94591944776b6c9b53b1cad4eef7c787ab9e741
cee9666793356b817242ca7f0ec1268d15133dee58a7fcf65f589a753942b291

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/pageModel/0621/images/index_go04.jpg HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:56 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Wed, 03 Dec 2014 08:02:56 GMT
ETag: "16383d3-283-5094b45744c00"
Accept-Ranges: bytes
Content-Length: 643
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg

60.249.71.46/~webtech/web/pageModel/0621/images/indexbg01.jpg

60.249.71.46

200 OK

355 B

URL GET HTTP/1.1
60.249.71.46/~webtech/web/pageModel/0621/images/indexbg01.jpg
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1x375, components 3\012- data
Size
355 B (355 bytes)
Hash
de71e9d75dcf120c406e17d9284f5819
0eeb71b628b83fd2159108d322d3ee55898e5abf
8fa613d4968b78757721ec09112864b367771c5f8525a8732db70f39f04f5696

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/pageModel/0621/images/indexbg01.jpg HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://60.249.71.46/~webtech/web/pageModel/0621/style.css?v=20231021
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:56 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Wed, 03 Dec 2014 08:02:56 GMT
ETag: "16383da-163-5094b45744c00"
Accept-Ranges: bytes
Content-Length: 355
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg

60.249.71.46/~webtech/web/pageModel/0621/images/index_menu01.jpg

60.249.71.46

200 OK

2.1 kB

URL GET HTTP/1.1
60.249.71.46/~webtech/web/pageModel/0621/images/index_menu01.jpg
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 904x41, components 3\012- data
Size
2.1 kB (2103 bytes)
Hash
cf9ae129c52a1eb377cf6c38c336c8b3
8c0bcfc39768d2f8cf34dfc043b075ea770546d9
6453078c943c8d70d396844cefa50d27cf3ce2924ea2125b37f95416bfa6a777

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/pageModel/0621/images/index_menu01.jpg HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://60.249.71.46/~webtech/web/pageModel/0621/style.css?v=20231021
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:56 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Wed, 03 Dec 2014 08:02:56 GMT
ETag: "16383d5-837-5094b45744c00"
Accept-Ranges: bytes
Content-Length: 2103
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg

60.249.71.46/~webtech/web/pageModel/0621/images/inner_menu01.jpg

60.249.71.46

200 OK

3.9 kB

URL GET HTTP/1.1
60.249.71.46/~webtech/web/pageModel/0621/images/inner_menu01.jpg
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1002x44, components 3\012- data
Size
3.9 kB (3878 bytes)
Hash
6583ab6aa4f448845a67315320182d33
42c95e2ceb501e9c66ffd20f1cebc78b54b196a1
cb601b6299eeacc6d23e7ee85e99a9e12712cd78204069762afe187830c2dcbc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/pageModel/0621/images/inner_menu01.jpg HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:56 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Wed, 03 Dec 2014 08:02:56 GMT
ETag: "16383dd-f26-5094b45744c00"
Accept-Ranges: bytes
Content-Length: 3878
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg

60.249.71.46/~webtech/web/pageModel/0621/images/titlebg.jpg?v=1

60.249.71.46

200 OK

1.1 kB

URL GET HTTP/1.1
60.249.71.46/~webtech/web/pageModel/0621/images/titlebg.jpg?v=1
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 171x32, components 3\012- data
Size
1.1 kB (1065 bytes)
Hash
9090008be406e120807e0c89b774ab5f
d11d0ea046b8cd507f6bc79e2c1f5064656970b0
c897cd6ce8807e994ed9eeaf216dab040c8719f9f9ebbd2f6935f076d2e7133f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/pageModel/0621/images/titlebg.jpg?v=1 HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:56 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Wed, 03 Dec 2014 08:02:57 GMT
ETag: "16383f2-429-5094b45838e40"
Accept-Ranges: bytes
Content-Length: 1065
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg

60.249.71.46/~webtech/web/pageModel/0621/images/leftmenubg02.jpg

60.249.71.46

200 OK

1.7 kB

URL GET HTTP/1.1
60.249.71.46/~webtech/web/pageModel/0621/images/leftmenubg02.jpg
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 171x150, components 3\012- data
Size
1.7 kB (1690 bytes)
Hash
00d559a78d7a1031dca5b600e6838adb
6b27ae3a08dcbdc6e418c89d3e81a1a2036f3313
1ea39b5520dfb7189863a362a3e1cb6d34211d22ef0f98ddff86c3312f06c3b5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/pageModel/0621/images/leftmenubg02.jpg HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://60.249.71.46/~webtech/web/pageModel/0621/style.css?v=20231021
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:57 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Wed, 03 Dec 2014 08:02:56 GMT
ETag: "16383df-69a-5094b45744c00"
Accept-Ranges: bytes
Content-Length: 1690
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg

60.249.71.46/~webtech/web/201200179/archive/imagestyle/defaultIMG/tw/s/rotary.jpg

60.249.71.46

200 OK

140 kB

URL GET HTTP/1.1
60.249.71.46/~webtech/web/201200179/archive/imagestyle/defaultIMG/tw/s/rotary.jpg
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 1024x229, components 3\012- data
Size
140 kB (139838 bytes)
Hash
e66560499eb67b62a811628e53ae8b73
fc4e0a1d38e76105916abfe20c2245ddf889466c
58465a4f5e4ee085d384a7fc53881951b23a529c30326e7deaffdea2057f53b9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/201200179/archive/imagestyle/defaultIMG/tw/s/rotary.jpg HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:56 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Sat, 28 May 2022 12:52:41 GMT
ETag: "229c039-2223e-5e011e5fa3840"
Accept-Ranges: bytes
Content-Length: 139838
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg

60.249.71.46/~webtech/web/pageModel/0621/images/leftmenubg01.jpg

60.249.71.46

200 OK

1.9 kB

URL GET HTTP/1.1
60.249.71.46/~webtech/web/pageModel/0621/images/leftmenubg01.jpg
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 171x200, components 3\012- data
Size
1.9 kB (1893 bytes)
Hash
524c3ee0a437940bb19918e05937e945
9830f3e6d4e0b22fc50b0384c8f545b95ec1fa53
73a43de9fcfc3b9999f303b3969f29cb3e5b5b56b2bff2a44f15e4f3d4a9ea05

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/pageModel/0621/images/leftmenubg01.jpg HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://60.249.71.46/~webtech/web/pageModel/0621/style.css?v=20231021
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:57 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Wed, 03 Dec 2014 08:02:56 GMT
ETag: "16383de-765-5094b45744c00"
Accept-Ranges: bytes
Content-Length: 1893
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

60.249.71.46/~webtech/web/201200179/archive/product_cate/DEHNACI_JPG_thumb_149.jpg

60.249.71.46

200 OK

5.9 kB

URL GET HTTP/1.1
60.249.71.46/~webtech/web/201200179/archive/product_cate/DEHNACI_JPG_thumb_149.jpg
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 149x149, components 3\012- data
Size
5.9 kB (5919 bytes)
Hash
99c2fd9954ac80699eebda287b914dd6
f2b6ac4a4fdee0fbb9b0f047ad838978e1742da9
581c8f4d61678ce606cb81efbba79120c890535f637aab3231236e4375652abc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/201200179/archive/product_cate/DEHNACI_JPG_thumb_149.jpg HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:57 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Mon, 15 Jun 2020 13:40:35 GMT
ETag: "22ec054-171f-5a81f9244fac0"
Accept-Ranges: bytes
Content-Length: 5919
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

60.249.71.46/~webtech/web/201200179/archive/product_cate/ITjpg_thumb_149.jpg

60.249.71.46

200 OK

7.7 kB

URL GET HTTP/1.1
60.249.71.46/~webtech/web/201200179/archive/product_cate/ITjpg_thumb_149.jpg
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 149x149, components 3\012- data
Size
7.7 kB (7731 bytes)
Hash
44c2be5ad8e64ea944fc5d9187ad5a8e
164350abf6f9dabdd3bce8362e88138f84c98801
51c0eae3441f7cdddc9589b975a09263667353b8afe81bb3ba696e4863eff4c0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/201200179/archive/product_cate/ITjpg_thumb_149.jpg HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:57 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Mon, 15 Jun 2020 14:23:32 GMT
ETag: "22ec056-1e33-5a8202bdee100"
Accept-Ranges: bytes
Content-Length: 7731
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

60.249.71.46/~webtech/web/201200179/archive/imagestyle/defaultIMG/tw/s/idem.jpg

60.249.71.46

200 OK

184 kB

URL GET HTTP/1.1
60.249.71.46/~webtech/web/201200179/archive/imagestyle/defaultIMG/tw/s/idem.jpg
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 1024x226, components 3\012- data
Size
184 kB (184317 bytes)
Hash
eda5a7d0616673780b54a8dade0bcfcd
b193f90c69a9944ec6a03415af60e79095126133
f3910d37565f887d410b12d1bbdc86a60ef4bc0212e8e7c0a7a40b2836286558

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/201200179/archive/imagestyle/defaultIMG/tw/s/idem.jpg HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:56 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Sat, 28 May 2022 12:51:59 GMT
ETag: "229c037-2cffd-5e011e37959c0"
Accept-Ranges: bytes
Content-Length: 184317
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg

60.249.71.46/~webtech/web/201200179/archive/product_cate/2_thumb_149.jpg

60.249.71.46

200 OK

5.2 kB

URL GET HTTP/1.1
60.249.71.46/~webtech/web/201200179/archive/product_cate/2_thumb_149.jpg
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 149x149, components 3\012- data
Size
5.2 kB (5177 bytes)
Hash
1a34439e01f6ffbe1196ab4244c1a860
2667be3508b088c63123bd120b9f8a1fd6c17b53
286e3fc8a0ea45bc52f21cebb4460a497e7eea708d8a1b9b70b4ee82c9cbfd9b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/201200179/archive/product_cate/2_thumb_149.jpg HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:57 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Mon, 05 Nov 2012 06:35:45 GMT
ETag: "22ec023-1439-4cdb9b1f35240"
Accept-Ranges: bytes
Content-Length: 5177
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

60.249.71.46/~webtech/web/201200179/archive/product_cate/DEHNcarejpg_thumb_149.jpg

60.249.71.46

200 OK

7.0 kB

URL GET HTTP/1.1
60.249.71.46/~webtech/web/201200179/archive/product_cate/DEHNcarejpg_thumb_149.jpg
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 149x149, components 3\012- data
Size
7.0 kB (6970 bytes)
Hash
c96f283345af81a26943d2045adeb7fc
a82aab9926fa02c3035dc1bf17561f249f19355d
1fb9703e29e8b4ea7de0fa3a58ba1ee13391f03f65544da9bc33488b9aa9da2d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/201200179/archive/product_cate/DEHNcarejpg_thumb_149.jpg HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:57 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Mon, 15 Jun 2020 16:03:38 GMT
ETag: "22ec058-1b3a-5a82191db2a80"
Accept-Ranges: bytes
Content-Length: 6970
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

60.249.71.46/~webtech/web/pageModel/0621/images/index_go02.jpg

60.249.71.46

200 OK

634 B

URL GET HTTP/1.1
60.249.71.46/~webtech/web/pageModel/0621/images/index_go02.jpg
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 28x21, components 3\012- data
Size
634 B (634 bytes)
Hash
8b4779410c132684076de0629c0b1b86
a5314d1b57313848d856834ce38e938f0275a8c3
a4727adc94f33de917661153b83bba1537b1230ae385af552c0da267314722a0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/pageModel/0621/images/index_go02.jpg HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:58 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Wed, 03 Dec 2014 08:02:56 GMT
ETag: "16383d2-27a-5094b45744c00"
Accept-Ranges: bytes
Content-Length: 634
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

60.249.71.46/~webtech/web/201200179/archive/imagestyle/defaultIMG/tw/s/efd72d93339a5a9e.jpg

60.249.71.46

200 OK

172 kB

URL GET HTTP/1.1
60.249.71.46/~webtech/web/201200179/archive/imagestyle/defaultIMG/tw/s/efd72d93339a5a9e.jpg
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 1024x229, components 3\012- data
Size
172 kB (171494 bytes)
Hash
ac19548f71a942bfea6ce804356b0ee1
8833bb57c2123a9e35987c95acb949b93bbe3989
822df08ccfcafc228300d4e969d7ef25346755f4a07541a276ff571ec80084a9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/201200179/archive/imagestyle/defaultIMG/tw/s/efd72d93339a5a9e.jpg HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:57 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Wed, 13 Apr 2022 13:00:13 GMT
ETag: "229c036-29de6-5dc88c20f5140"
Accept-Ranges: bytes
Content-Length: 171494
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

60.249.71.46/~webtech/web/201200179/archive/imagestyle/defaultIMG/tw/s/dehn.jpg

60.249.71.46

200 OK

183 kB

URL GET HTTP/1.1
60.249.71.46/~webtech/web/201200179/archive/imagestyle/defaultIMG/tw/s/dehn.jpg
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 1024x229, components 3\012- data
Size
183 kB (183048 bytes)
Hash
d65eef7e8c8deef50822056f50569ab8
fbb8e50ebf554079782b5bbda98cf2e6864098ff
11639b8219baeeffa4db5db35550a94265825ff277a63734bf59299ea902ec91

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/201200179/archive/imagestyle/defaultIMG/tw/s/dehn.jpg HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:56 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Sat, 28 May 2022 12:51:48 GMT
ETag: "229c001-2cb08-5e011e2d18100"
Accept-Ranges: bytes
Content-Length: 183048
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg

www.huawell-trade.com/favicon.ico

60.249.71.46

404 Not Found

209 B

URL GET HTTP/1.1
www.huawell-trade.com/favicon.ico
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
209 B (209 bytes)
Hash
18ffb59b61525f781cf9251045be575d
bd7318b00b15b7a1c8a48524419fa2e5c27a5b6d
b6682cab65d3243b5b75efb7279dbf49491957484780f2ba0a87632cc0e25642

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.huawell-trade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/product.php?lang=tw
Cookie: webtech=bgdqhdjbedhbn809k38gma0576; TS01b344d7=01bd9282d2a0feb6c6ffc5519b2554975b26c771ab46bf27683359e494620c701157ecf4b15ddf126f2bcbb6be0e3ba1e59aeacd6b
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Sat, 21 Oct 2023 09:54:58 GMT
Content-Length: 209
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

60.249.71.46/~webtech/web/201200179/archive/imagestyle/defaultIMG/tw/s/load_cell.jpg

60.249.71.46

200 OK

179 kB

URL GET HTTP/1.1
60.249.71.46/~webtech/web/201200179/archive/imagestyle/defaultIMG/tw/s/load_cell.jpg
IP
60.249.71.46:80
ASN
#3462 Data Communication Business Group

Requested by
http://www.huawell-trade.com/product.php?lang=tw

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 1024x229, components 3\012- data
Size
179 kB (178595 bytes)
Hash
2bb01d9133f74c79d9e0aed87c926a18
487f0e508ae951ba7622683a72fef271a15710d5
a81e77eecb906316e4edee0e52785dba9df9c93844d7f55d35323375d0c95443

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /~webtech/web/201200179/archive/imagestyle/defaultIMG/tw/s/load_cell.jpg HTTP/1.1
Host: 60.249.71.46
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.huawell-trade.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Oct 2023 09:54:56 GMT
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.1p PHP/5.3.17
Last-Modified: Sat, 28 May 2022 12:52:18 GMT
ETag: "229c038-2b9a3-5e011e49b4480"
Accept-Ranges: bytes
Content-Length: 178595
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (13)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by