Report - 58.99.118.9/

Report Overview

Submitted URL
58.99.118.9/
IP
58.99.118.9
ASN
#18049 Taiwan Infrastructure Network Technologie
Submitted
2024-04-30 21:33:14
Access
public
Website Title
58.99.118.9/html/webplugin.html
Final URL
58.99.118.9/html/webplugin.html
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
38

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
58.99.118.9	unknown	unknown	No data	No data	6.5 kB	480 kB	58.99.118.9

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-30	medium	58.99.118.9	Sinkholed
2024-04-30	medium	58.99.118.9	Sinkholed
2024-04-30	medium	58.99.118.9	Sinkholed
2024-04-30	medium	58.99.118.9	Sinkholed
2024-04-30	medium	58.99.118.9	Sinkholed
2024-04-30	medium	58.99.118.9	Sinkholed
2024-04-30	medium	58.99.118.9	Sinkholed
2024-04-30	medium	58.99.118.9	Sinkholed
2024-04-30	medium	58.99.118.9	Sinkholed
2024-04-30	medium	58.99.118.9	Sinkholed
2024-04-30	medium	58.99.118.9	Sinkholed
2024-04-30	medium	58.99.118.9	Sinkholed
2024-04-30	medium	58.99.118.9	Sinkholed
2024-04-30	medium	58.99.118.9	Sinkholed
2024-04-30	medium	58.99.118.9	Sinkholed
2024-04-30	medium	58.99.118.9	Sinkholed
2024-04-30	medium	58.99.118.9	Sinkholed
2024-04-30	medium	58.99.118.9	Sinkholed
2024-04-30	medium	58.99.118.9	Sinkholed

ThreatFox

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	58.99.118.9/html/webplugin.html	0 B	2023-03-07	2024-05-22
Pretty URL 58.99.118.9/html/webplugin.html IP 58.99.118.9 ASN #18049 Taiwan Infrastructure Network Technologie Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-22 02:58:07 Times Seen37935840 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	29 B	2024-04-30	2024-04-30
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-30 23:33:20 Last Seen2024-04-30 23:33:20 Times Seen1 Hash 2429c33bd20e8a694488c6752af7b361 cbdebd198a67af817d253c8f8defab82cefa281d 3402d1679dd34d007e3a4f617c664b4ad5b41bacbb3cdd8caff95ac49afc0669 Loading...

	58.99.118.9/js/jquery-1.3.1.min.js	55 kB	2023-03-07	2024-05-18
Pretty URL 58.99.118.9/js/jquery-1.3.1.min.js IP 58.99.118.9 ASN #18049 Taiwan Infrastructure Network Technologie Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:00 Last Seen2024-05-18 00:10:55 Times Seen414 Hash 5018fce9eaf1431e83fca0de4a735ef4 75faa6183a02a2e15f6b918dc18d1ee8c4b5eb33 f862442d54bf6790ee4f0d931e9dca082fe40b1ac162f883708b0ef19f84e8bf Loading...

HTTP Transactions (19)

URL IP Response Size

58.99.118.9/

58.99.118.9

20 kB

URL
58.99.118.9/
IP
58.99.118.9:0
ASN
#18049 Taiwan Infrastructure Network Technologie

File type
HTML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
20 kB (20428 bytes)
Hash
acfcd8d9704761d8ea8ac22ed77e3579
fb494d2bc3922a8e9798a16e76349ab66b819864
385ab795411d8f13cbb7ea9750dfbf30544198e8e0a90adb04c13c98ea785ec6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 58.99.118.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 21:32:51 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=10, max=1000
Content-Length: 20428
Last-Modified: Tue, 15 Sep 2015 11:15:36 GMT
Content-Type: text/html

58.99.118.9/css/main.css

58.99.118.9

14 kB

URL
58.99.118.9/css/main.css
IP
58.99.118.9:0
ASN
#18049 Taiwan Infrastructure Network Technologie

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
14 kB (14164 bytes)
Hash
c90a8ebe7fa50907ff9b6a1b9d841e48
354875d90d8dbf128b6e896dea9af190a0df4c6f
77f44444285c28ed1ef66518398b2b74574f2be0a8575da43bf00b6d0c1d541b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/main.css HTTP/1.1
Host: 58.99.118.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://58.99.118.9/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 21:32:51 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=10, max=1000
Content-Length: 14164
Last-Modified: Tue, 15 Sep 2015 11:14:16 GMT
Content-Type: text/css

58.99.118.9/js/jcookie.js

58.99.118.9

1.8 kB

URL
58.99.118.9/js/jcookie.js
IP
58.99.118.9:0
ASN
#18049 Taiwan Infrastructure Network Technologie

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
1.8 kB (1818 bytes)
Hash
d0072919cda2dd83c34fffa4bc52af5f
9b9636d044d486ee55a8972a25496695097f1def
f86dfc60b279783a96a16464fbee13f562e50477e6492b249314a1afc7e81a46

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jcookie.js HTTP/1.1
Host: 58.99.118.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://58.99.118.9/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 21:32:52 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=10, max=1000
Content-Length: 1818
Last-Modified: Mon, 28 Jul 2014 04:24:46 GMT
Content-Type: application/javascript

58.99.118.9/js/common.js

58.99.118.9

24 kB

URL
58.99.118.9/js/common.js
IP
58.99.118.9:0
ASN
#18049 Taiwan Infrastructure Network Technologie

File type
JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Size
24 kB (24146 bytes)
Hash
b49f12a82d2b67e90795236f51c5b367
7a3998614176fe1ed6645e3af080e66d057743b4
cd11b150467b4e15b7fadd8cacd04d31eb855b2b5ae1402ca4b50b2d31a942f5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/common.js HTTP/1.1
Host: 58.99.118.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://58.99.118.9/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 21:32:52 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=10, max=1000
Content-Length: 24146
Last-Modified: Tue, 15 Sep 2015 10:15:38 GMT
Content-Type: application/javascript

58.99.118.9/js/class.js

58.99.118.9

41 kB

URL
58.99.118.9/js/class.js
IP
58.99.118.9:0
ASN
#18049 Taiwan Infrastructure Network Technologie

File type
JavaScript source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
41 kB (40977 bytes)
Hash
7f351693117052dbb918dabe355a084b
5e7cf83f2a4faadf82d092c93aae988f04ebc6cd
c38aeb7e1d3c97616a2e44d1b7c8fb23ad706c025d804b73f11de3892836a021

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/class.js HTTP/1.1
Host: 58.99.118.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://58.99.118.9/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 21:32:52 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=10, max=1000
Content-Length: 40977
Last-Modified: Tue, 15 Sep 2015 10:15:48 GMT
Content-Type: application/javascript

58.99.118.9/js/main.js

58.99.118.9

70 kB

URL
58.99.118.9/js/main.js
IP
58.99.118.9:0
ASN
#18049 Taiwan Infrastructure Network Technologie

File type
JavaScript source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
70 kB (70101 bytes)
Hash
8c0d5b90590e26369b45d13ce47754af
26e7c31b1c5b97b1f415dfc745c30ea301e36911
d9bcdae0c93eb640e73666853ced23593a1a96eacfa92010c4b46c8f930e98db

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/main.js HTTP/1.1
Host: 58.99.118.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://58.99.118.9/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 21:32:52 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=10, max=1000
Content-Length: 70101
Last-Modified: Tue, 15 Sep 2015 10:15:08 GMT
Content-Type: application/javascript

58.99.118.9/js/json.js

58.99.118.9

5.0 kB

URL
58.99.118.9/js/json.js
IP
58.99.118.9:0
ASN
#18049 Taiwan Infrastructure Network Technologie

File type
ASCII text
Size
5.0 kB (4955 bytes)
Hash
34f7231a0a213167e801318716261d1e
f9383563b79b1df26542b6ede395bb8d1213f904
5b7242ed8e6fe3e6afec7c014b7c66fc1bd68a7b2e0d2706ffaab7876ab8f94a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/json.js HTTP/1.1
Host: 58.99.118.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://58.99.118.9/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 21:32:52 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=10, max=999
Content-Length: 4955
Last-Modified: Tue, 27 Jan 2015 07:17:55 GMT
Content-Type: application/javascript

58.99.118.9/js/language.js

58.99.118.9

102 kB

URL
58.99.118.9/js/language.js
IP
58.99.118.9:0
ASN
#18049 Taiwan Infrastructure Network Technologie

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
102 kB (102288 bytes)
Hash
6193718ebab2d7b445627c7ff3f46a15
0ef84cfa8db13266866bf7e1dac51654570fcbf6
afea3b60e34d3bef2ef363d0acc33cda7624872f9f50581126382c5e5020136e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/language.js HTTP/1.1
Host: 58.99.118.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://58.99.118.9/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 21:32:52 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=10, max=1000
Content-Length: 102288
Last-Modified: Tue, 13 Oct 2015 03:37:56 GMT
Content-Type: application/javascript

58.99.118.9/js/jquery-1.11.1.min.js

58.99.118.9

96 kB

URL
58.99.118.9/js/jquery-1.11.1.min.js
IP
58.99.118.9:0
ASN
#18049 Taiwan Infrastructure Network Technologie

File type
JavaScript source, ASCII text, with very long lines (32086)
Size
96 kB (95786 bytes)
Hash
8101d596b2b8fa35fe3a634ea342d7c3
d6c1f41972de07b09bfa63d2e50f9ab41ec372bd
540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery-1.11.1.min.js HTTP/1.1
Host: 58.99.118.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://58.99.118.9/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 21:32:52 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=10, max=999
Content-Length: 95786
Last-Modified: Mon, 28 Jul 2014 04:24:46 GMT
Content-Type: application/javascript

58.99.118.9/images/head_bg.png

58.99.118.9

523 B

URL
58.99.118.9/images/head_bg.png
IP
58.99.118.9:0
ASN
#18049 Taiwan Infrastructure Network Technologie

File type
PNG image data, 19 x 40, 8-bit colormap, non-interlaced
Size
523 B (523 bytes)
Hash
4df95c97e94adc7b895cf103d46c18fd
1ceb0526082c423904da5817cc638db52dcd4248
d3a93ccad452bb6efe124d89b98e48c1b9909b2b05603ccdb187a8a0d7decbf3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/head_bg.png HTTP/1.1
Host: 58.99.118.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://58.99.118.9/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 21:32:53 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=10, max=999
Content-Length: 523
Last-Modified: Fri, 26 Jun 2015 04:23:27 GMT
Content-Type: image/png

58.99.118.9/images/sound.png

58.99.118.9

1.1 kB

URL
58.99.118.9/images/sound.png
IP
58.99.118.9:0
ASN
#18049 Taiwan Infrastructure Network Technologie

File type
PNG image data, 64 x 32, 8-bit/color RGBA, non-interlaced
Size
1.1 kB (1078 bytes)
Hash
8225798ffd84979203b436dd68fa06fe
b46505f69c501e5801efe1b0f8816dec038c4655
a184c9c26a1d790db5bc9d9fec9cc1cdc69c67781ee5411eba7b74b84035f671

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/sound.png HTTP/1.1
Host: 58.99.118.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://58.99.118.9/css/main.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 21:32:53 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=10, max=999
Content-Length: 1078
Last-Modified: Fri, 26 Jun 2015 04:23:28 GMT
Content-Type: image/png

58.99.118.9/images/zoom.png

58.99.118.9

2.2 kB

URL
58.99.118.9/images/zoom.png
IP
58.99.118.9:0
ASN
#18049 Taiwan Infrastructure Network Technologie

File type
PNG image data, 64 x 32, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2174 bytes)
Hash
66a23b9d809cb5c0ae2780bdf0c9c585
940e4ada6fdc801d95a22c6eb442b79cae9d6416
a2406b56a20de1f9978f7153e0646c68f417103427fd2dd2b02b814d5e52c6f1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/zoom.png HTTP/1.1
Host: 58.99.118.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://58.99.118.9/css/main.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 21:32:53 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=10, max=999
Content-Length: 2174
Last-Modified: Tue, 30 Dec 2014 08:34:54 GMT
Content-Type: image/png

58.99.118.9/images/loading.gif

58.99.118.9

1.8 kB

URL
58.99.118.9/images/loading.gif
IP
58.99.118.9:0
ASN
#18049 Taiwan Infrastructure Network Technologie

File type
GIF image data, version 89a, 32 x 32
Size
1.8 kB (1787 bytes)
Hash
50c5e3e79b276c92df6cc52caeb464f0
c641615e851254111e268da42d72ae684b3ce967
16ea0cf66d51efdbbc2a62b11ab0419fa72fb3320844f1d0d710480245ac9925

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/loading.gif HTTP/1.1
Host: 58.99.118.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://58.99.118.9/css/main.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 21:32:54 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=10, max=1000
Content-Length: 1787
Last-Modified: Fri, 26 Jun 2015 04:23:28 GMT
Content-Type: image/gif

58.99.118.9/images/live_icons.png

58.99.118.9

8.6 kB

URL
58.99.118.9/images/live_icons.png
IP
58.99.118.9:0
ASN
#18049 Taiwan Infrastructure Network Technologie

File type
PNG image data, 128 x 256, 8-bit/color RGBA, non-interlaced
Size
8.6 kB (8577 bytes)
Hash
bbccf090a6bbf6b8a4549fb9d2c3bcea
d90ffb44f1a3a1549cb3ff2fd3a8a012f205bb37
96656d998ea9c11066122e859d89258d7a88c2350f0fb619a6d6c3b209a15849

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/live_icons.png HTTP/1.1
Host: 58.99.118.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://58.99.118.9/css/main.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 21:32:53 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=10, max=998
Content-Length: 8577
Last-Modified: Fri, 26 Jun 2015 04:23:28 GMT
Content-Type: image/png

58.99.118.9/images/style.png

58.99.118.9

8.6 kB

URL
58.99.118.9/images/style.png
IP
58.99.118.9:0
ASN
#18049 Taiwan Infrastructure Network Technologie

File type
PNG image data, 100 x 350, 8-bit/color RGBA, non-interlaced
Size
8.6 kB (8593 bytes)
Hash
3e6187d01e8499e8749e19b475d88c73
eb63eb77d41f05a2641028978d84cd04e7741750
947d78fda40f95f3806c76019b7d50f44defd2c36325612da22734b75ced7a42

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/style.png HTTP/1.1
Host: 58.99.118.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://58.99.118.9/css/main.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 21:32:53 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=10, max=999
Content-Length: 8593
Last-Modified: Fri, 26 Jun 2015 04:23:27 GMT
Content-Type: image/png

58.99.118.9/html/webplugin.html

58.99.118.9

200 OK

2.5 kB

URL User Request GET HTTP/1.1
58.99.118.9/html/webplugin.html
IP
58.99.118.9:80
ASN
#18049 Taiwan Infrastructure Network Technologie

File type
HTML document, ASCII text, with CRLF line terminators
Size
2.5 kB (2515 bytes)
Hash
43397dd62a8a3ef24f21988099ba0360
07cd06488983611ee558e51bf07417273518464d
96c8b07fdebcb973dabe5d47277834f035f895ae4c2f7d5c68366ffac44945eb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /html/webplugin.html HTTP/1.1
Host: 58.99.118.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://58.99.118.9/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 21:32:54 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=10, max=998
Content-Length: 2515
Last-Modified: Mon, 14 Sep 2015 06:52:30 GMT
Content-Type: text/html

58.99.118.9/js/jquery-1.3.1.min.js

58.99.118.9

200 OK

55 kB

URL GET HTTP/1.1
58.99.118.9/js/jquery-1.3.1.min.js
IP
58.99.118.9:80
ASN
#18049 Taiwan Infrastructure Network Technologie

Requested by
http://58.99.118.9/html/webplugin.html

File type
JavaScript source, ASCII text, with very long lines (37973), with CRLF line terminators
Size
55 kB (55290 bytes)
Hash
5018fce9eaf1431e83fca0de4a735ef4
75faa6183a02a2e15f6b918dc18d1ee8c4b5eb33
f862442d54bf6790ee4f0d931e9dca082fe40b1ac162f883708b0ef19f84e8bf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery-1.3.1.min.js HTTP/1.1
Host: 58.99.118.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://58.99.118.9/html/webplugin.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 21:32:56 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=10, max=997
Content-Length: 55290
Last-Modified: Mon, 28 Jul 2014 04:24:46 GMT
Content-Type: application/javascript

58.99.118.9/cgi-bin/mediaport.cgi?t=1714512773380

58.99.118.9

8.4 kB

URL
58.99.118.9/cgi-bin/mediaport.cgi?t=1714512773380
IP
58.99.118.9:0
ASN
#18049 Taiwan Infrastructure Network Technologie

File type
data
Size
8.4 kB (8357 bytes)
Hash
68dd33131475fff6559048021ef752c2
180eb2c9344c58b04ea9bfc0c72c64eecebb2b9d
36fd1bcb4c4e96014126b5526651fead680ed65f63ef799d470a44cde1134edf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cgi-bin/mediaport.cgi?t=1714512773380 HTTP/1.1
Host: 58.99.118.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://58.99.118.9/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 21:32:54 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: close
Content-type: text/xml

58.99.118.9/favicon.ico

58.99.118.9

404 Not Found

11 kB

URL GET HTTP/1.1
58.99.118.9/favicon.ico
IP
58.99.118.9:80
ASN
#18049 Taiwan Infrastructure Network Technologie

Requested by
http://58.99.118.9/html/webplugin.html

File type
data
Size
11 kB (11424 bytes)
Hash
8d995c2a1f395c753c27789422fafdcf
ff98bdfecaa56ecee40475969767d6ca8362358b
6a31708cbf290c9b3d89546601d4182184371610a2391ce84ab4b9f859e3a521

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: 58.99.118.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://58.99.118.9/html/webplugin.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 30 Apr 2024 21:32:57 GMT
Server: Boa/0.94.14rc21
Accept-Ranges: bytes
Connection: close
Content-Type: text/html; charset=ISO-8859-1

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (19)

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL

IP

ASN