| st.aircsgo.com/login/?redir=explore/&redir_ssl=1 |  210.74.226.205 | 200 | 9.4 kB |
URL User Request GET HTTP/1.1st.aircsgo.com/login/?redir=explore/&redir_ssl=1 IP210.74.226.205:443 ASN#4812 China Telecom Group
CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (2988), with CRLF, LF line terminators Hashf5da258aed6604e7b7a39352c2d59551 b756a16d5dfb2e059f74f172703b200a8da50c1c b9e5f0e97bb169bd4c299d5f562b4bc0f31a0610dca659b788bb2ed7138c46ec
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Steam | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET /login/?redir=explore/&redir_ssl=1 HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:00 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 9445
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Method: *
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Origin: https://st.aircsgo.com
Access-Control-Expose-Headers: X-eresult,X-error_message
Cache-Control: no-cache
Content-Encoding: gzip
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Origin: https://st.aircsgo.com
Set-Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; Path=/; Secure; SameSite=None;Domain=st.aircsgo.com
steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; Path=/; Secure; HttpOnly; SameSite=None;Domain=st.aircsgo.com
uid=ae568618-868a-4882-872a-c338ae4d90db; Path=/; Domain=st.aircsgo.com
Vary: Accept-Encoding
X-Frame-Options: DENY
X-Proxy-Hostname: steam-session-cluster-6c6fc676d6-nhgz6
traceId: eaac1cf3ad17141913398238105d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/motiva_sans.css?v=-DH0xTYpnVe2&l=english | 210.74.226.205 | 200 | 2.7 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/motiva_sans.css?v=-DH0xTYpnVe2&l=english IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeASCII text, with CRLF line terminators Hashf831f4c536299d57b63c0d0ead9c09f0 43f71d89a47bdd1869ff4d411f04357926d21be8 e2c41580fda72865b4c75053f974ee6c0f4ff7034f1c97fbd6d55a88e7fc55fe
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Steam | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/shared/css/motiva_sans.css?v=-DH0xTYpnVe2&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:00 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 2682
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "-DH0xTYpnVe2"
Vary: Accept-Encoding
Cache-Control: public, max-age=4833217
Expires: Sat, 15 Jun 2024 14:13:46 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3b017136276090297764d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/buttons.css?v=PUJIfhtcQn7W&l=english | 210.74.226.205 | 200 | 34 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/buttons.css?v=PUJIfhtcQn7W&l=english IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeASCII text, with CRLF, LF line terminators Hash3d42487e1b5c427ed66f2be54948561b 450b970e36aeb1375844c48a412be7caf5d5c447 60a5b96dd853a80363de37ae72b72ceada056cf781cd9dd2ac74869030d6f76d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/shared/css/buttons.css?v=PUJIfhtcQn7W&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:00 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 33754
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "PUJIfhtcQn7W"
Vary: Accept-Encoding
Cache-Control: public, max-age=13387006
Expires: Sun, 22 Sep 2024 14:16:55 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ac17136276090221237d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/home.css?v=pTH-Ya7jG3VB&l=english | 210.74.226.205 | 200 | 15 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/home.css?v=pTH-Ya7jG3VB&l=english IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeASCII text, with CRLF, LF line terminators Hasha531fe61aee31b7541223b0191cada79 ab7bdf44b91e067ac02378dbeb9380cb1618d878 0d79433fbf1fd92a6010b9af93e8da20774483c2b79efaedc8fed3782c9239d2
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/css/skin_1/home.css?v=pTH-Ya7jG3VB&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:01 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 14878
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "pTH-Ya7jG3VB"
Vary: Accept-Encoding
Cache-Control: public, max-age=13444738
Expires: Thu, 26 Sep 2024 12:58:46 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3af17139117881931576d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/login.css?v=q2b2ZBI1X2Yj&l=english | 210.74.226.205 | 200 | 18 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/login.css?v=q2b2ZBI1X2Yj&l=english IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeassembler source, ASCII text, with CRLF, LF line terminators Hashab66f66412355f6623d31b87b391e4a3 071daed245dba7d1ee2dfe990ff3d36876fff43b fee753fb2578225fc36d43fcd266a52371e723ab45321de9ce473c89847f2df3
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Steam | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/shared/css/login.css?v=q2b2ZBI1X2Yj&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:01 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 18015
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "q2b2ZBI1X2Yj"
Vary: Accept-Encoding
Cache-Control: public, max-age=13907919
Expires: Thu, 03 Oct 2024 20:33:46 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3b017140797071337667d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/shared_responsive.css?v=sHIIcMzCffX6&l=english | 210.74.226.205 | 200 | 19 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/shared_responsive.css?v=sHIIcMzCffX6&l=english IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (1667), with CRLF, LF line terminators Hashb0720870ccc27df5fa6d1669cc098251 8800fa19f2eca67bbdd0cde15ac5e300f0240382 ed913aa6f584d262be7eae0f789e88bcfd93bbaddd59a37a3fe39d6ee96880d5
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Steam | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/shared/css/shared_responsive.css?v=sHIIcMzCffX6&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:01 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 19096
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "sHIIcMzCffX6"
Vary: Accept-Encoding
Cache-Control: public, max-age=15550773
Expires: Sun, 20 Oct 2024 23:31:15 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3b017139163023076253d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/globalv2.css?v=PAcV2zMBzzSV&l=english | 210.74.226.205 | 200 | 40 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/globalv2.css?v=PAcV2zMBzzSV&l=english IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (4009), with CRLF, LF line terminators Hash3c0715db3301cf349532fa80d8e7b2cc 972aa75768e81dfd5d52c0c5de148e2163dd4c3d ceeb54d7faf219eaddfc96a4f88e85e8905b216f84419645312b45128d3c1792
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/css/globalv2.css?v=PAcV2zMBzzSV&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:02 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 39562
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "PAcV2zMBzzSV"
Vary: Accept-Encoding
Cache-Control: public, max-age=13417982
Expires: Sun, 22 Sep 2024 22:53:11 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3b017136276095637766d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/header.css?v=NFoCa4OkAxRb&l=english | 210.74.226.205 | 200 | 13 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/header.css?v=NFoCa4OkAxRb&l=english IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (629), with CRLF line terminators Hash345a026b83a403145ba4bc5e12256354 cd76023c54c8e6dec853441088c388ca6a0bdecd 7585f3131ab2ebf7fd36a5a239f4b1089f9a70869099cb0f073c605941ace3fc
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Steam | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/css/skin_1/header.css?v=NFoCa4OkAxRb&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:02 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 12764
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "NFoCa4OkAxRb"
Vary: Accept-Encoding
Cache-Control: public, max-age=11695477
Expires: Tue, 03 Sep 2024 00:24:48 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ae17136276111467731d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0 | 210.74.226.205 | 200 | 16 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0 IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hash72938851e7c2ef7b63299eba0c6752cb b75196bd3a6f9f4dfc1bbf5e43e96874bcd9ce4e e2d4e0e1d3e162fdc815f16dfff9ae9b0a967949f0f3ae371f947d730a3f0661
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0 HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:03 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 16087
Connection: keep-alive
Last-Modified: Tue, 22 Mar 2022 23:23:42 GMT
ETag: ".zYHOpI1L3Rt0"
Vary: Accept-Encoding
Cache-Control: public, max-age=5784240
Expires: Wed, 26 Jun 2024 14:24:11 GMT
Content-Disposition: inline;filename=f.txt
traceId: d2654854-3e80-4571-bc0e-b72a12aa87e7
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/prototype-1.7.js?v=.55t44gwuwgvw | 210.74.226.205 | 200 | 169 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/prototype-1.7.js?v=.55t44gwuwgvw IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Size169 kB (169399 bytes) Hash6a39e0b509fecb928d47b8a2643fed2a f67fa6cb1d09963d10ba117d6553c8e7d5bc7863 d8bdea7fff893dbdbeaf6c2affec091a77483b9ec10e7958486bc3b6cc170c96
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Steam | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/javascript/prototype-1.7.js?v=.55t44gwuwgvw HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:02 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 169399
Connection: keep-alive
Last-Modified: Fri, 05 Jan 2018 01:34:51 GMT
ETag: ".55t44gwuwgvw"
Vary: Accept-Encoding
Cache-Control: public, max-age=8628697
Expires: Mon, 29 Jul 2024 12:31:47 GMT
Content-Disposition: inline;filename=f.txt
traceId: 1b251adc-b4ac-4fee-901c-14096e6a8ddc
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/jquery-1.11.1.min.js?v=.isFTSRckeNhC | 210.74.226.205 | 200 | 96 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/jquery-1.11.1.min.js?v=.isFTSRckeNhC IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32086), with CRLF line terminators Hash4dc834d16a0d219d5c2b8a5b814569e4 4fbe0563917d6f6289e4e1b4a0a8758e4e43bda9 91222f96f34735ebc88df208017e54d4329b9202e3e52367fb8b149698a1a5ef
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/javascript/jquery-1.11.1.min.js?v=.isFTSRckeNhC HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:02 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 95790
Connection: keep-alive
Last-Modified: Fri, 05 Jan 2018 01:34:51 GMT
ETag: ".isFTSRckeNhC"
Vary: Accept-Encoding
Cache-Control: public, max-age=6926818
Expires: Tue, 09 Jul 2024 19:47:09 GMT
Content-Disposition: inline;filename=f.txt
traceId: 50f44295-a273-4327-8e04-9aaa91f79016
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/global.js?v=B7Vsdo1okyaC&l=english | 210.74.226.205 | 200 | 104 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/global.js?v=B7Vsdo1okyaC&l=english IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (9521), with CRLF line terminators Size104 kB (103580 bytes) Hash275016d406b60e0719ae064c52b3c996 24e3ae578404f9b758e3515a7df22aa4dccbadc3 637b2adb9363a48186d003315fd00e1f8aeef6a7711c3c2785cd193af956b1f6
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Steam | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/javascript/global.js?v=B7Vsdo1okyaC&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:02 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 103580
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "B7Vsdo1okyaC"
Vary: Accept-Encoding
Cache-Control: public, max-age=13417939
Expires: Sun, 22 Sep 2024 22:52:30 GMT
Content-Disposition: inline;filename=f.txt
traceId: ada33bb7-782e-4499-99b5-25accff330c4
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english | 210.74.226.205 | 200 | 25 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with CRLF line terminators Hasha52bc800ab6e9df5a05a5153eea29ffb 8661643fcbc7498dd7317d100ec62d1c1c6886ff 57cfaf9b92c98541f769090cd0229a30013cea7cfafc18519ca654bfae29e14e
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:03 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 24657
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "pSvIAKtunfWg"
Vary: Accept-Encoding
Cache-Control: public, max-age=12897552
Expires: Mon, 16 Sep 2024 22:19:24 GMT
Content-Disposition: inline;filename=f.txt
traceId: 495291d9-ab64-491a-8850-04dfebd4ddf6
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/scriptaculous/_combined.js?v=OeNIgrpEF8tL&l=english&load=effects,controls,slider,dragdrop | 210.74.226.205 | 200 | 122 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/scriptaculous/_combined.js?v=OeNIgrpEF8tL&l=english&load=effects,controls,slider,dragdrop IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Size122 kB (122171 bytes) Hash39e34882ba4417cb4b1b84916dabb770 0d0ca081fb60c8aad337091bafcbe84f966c38b0 da708635da162ea493874627775c3520a42145b79c73bf787b5113bf87c0b27c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/javascript/scriptaculous/_combined.js?v=OeNIgrpEF8tL&l=english&load=effects,controls,slider,dragdrop HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:02 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 122171
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "OeNIgrpEF8tL"
Vary: Accept-Encoding
Cache-Control: public, max-age=5176843
Expires: Wed, 19 Jun 2024 13:40:53 GMT
Content-Disposition: inline;filename=f.txt
traceId: 2e618821-12a6-43dc-aa60-6551ebf28b91
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/login.js?v=zwJNDF7PJXPu&l=english | 210.74.226.205 | 200 | 61 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/login.js?v=zwJNDF7PJXPu&l=english IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (24693), with CRLF line terminators Hash69a272c90b52c57b9015f047638f9597 94863b3a3ba7d50443db47413492b63cd8eb4d3a 84f22c39b05d7e557ee2b04c7b38c7069249900b138b20b6b3a9a426c47508a4
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Steam | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/shared/javascript/login.js?v=zwJNDF7PJXPu&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:03 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 60793
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "zwJNDF7PJXPu"
Vary: Accept-Encoding
Cache-Control: public, max-age=15551237
Expires: Wed, 23 Oct 2024 06:31:43 GMT
Content-Disposition: inline;filename=f.txt
traceId: aeb71516-7c10-4b2a-a056-990f81186f70
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/shared_global.css?v=SPpMitTYp6ku&l=english | 210.74.226.205 | 200 | 87 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/shared_global.css?v=SPpMitTYp6ku&l=english IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (1819), with CRLF, LF line terminators Hash48fa4c8ad4d8a7a92eaebdb95672b9b3 588360ab7833fc79333286df86626afec74957e6 9c0be6f47b381e31d7feeb42a035ca4b32ef2990c15724e589a74ec2d3293b1e
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/shared/css/shared_global.css?v=SPpMitTYp6ku&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:01 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 87128
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "SPpMitTYp6ku"
Vary: Accept-Encoding
Cache-Control: public, max-age=14626638
Expires: Sun, 06 Oct 2024 22:37:27 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ac17136276093731240d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/manifest.js?v=98m_FpmX2IGz&l=english | 210.74.226.205 | 200 | 16 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/manifest.js?v=98m_FpmX2IGz&l=english IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (15579), with CRLF, LF line terminators Hashb057ddb95a4bf0f2fe68d54a75ce9c08 3de8c1e49a847fbe5f4ea98e84fbb5464e937299 6903b38c7b5e4f29f93955c731db9f114f4f64c2612ed6a5e82635af90dcfb9c
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Steam | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/manifest.js?v=98m_FpmX2IGz&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:03 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 15747
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "98m_FpmX2IGz"
Vary: Accept-Encoding
Cache-Control: public, max-age=15551999
Expires: Wed, 23 Oct 2024 16:10:31 GMT
Content-Disposition: inline;filename=f.txt
traceId: 6f9f0a30-104d-4280-98fe-12e490485590
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/applications/community/main.css?v=EyWBqDQS-6jg&l=english | 210.74.226.205 | 200 | 120 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/applications/community/main.css?v=EyWBqDQS-6jg&l=english IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (26986), with CRLF, LF line terminators Size120 kB (120179 bytes) Hash132581a83412fba8e0fc7e66a84b6ffb 5586269078c874f74b513b2b6aa29ffd2fa8f57e 8ea529711fbd58d915bae3c1905b0676fe1464c2173620576a3e188273e502b0
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Steam | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/css/applications/community/main.css?v=EyWBqDQS-6jg&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:03 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 120179
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "EyWBqDQS-6jg"
Vary: Accept-Encoding
Cache-Control: public, max-age=15550684
Expires: Sun, 20 Oct 2024 23:29:46 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ae17139163022066517d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/main.js?v=c4UneKQJS7M3&l=english | 210.74.226.205 | 200 | 588 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/main.js?v=c4UneKQJS7M3&l=english IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65368), with CRLF, LF line terminators Size588 kB (587803 bytes) Hashfc6617689197d4f7796e8a057de98244 2288e9052bb195bdf1fdbd63cdf09182b2f347ed 8b97e93a1f1e87bd51fde3483cb8aa88bae028b77a9e89516472f9978e23bb8c
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Steam | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/main.js?v=c4UneKQJS7M3&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:04 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 587803
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "c4UneKQJS7M3"
Vary: Accept-Encoding
Cache-Control: public, max-age=15550737
Expires: Sun, 20 Oct 2024 23:30:40 GMT
Content-Disposition: inline;filename=f.txt
traceId: 65e7c0d2-afb0-425f-86cf-d456528beb77
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/shared_global.js?v=1_BxDGVvfXwv&l=english | 210.74.226.205 | 200 | 154 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/shared_global.js?v=1_BxDGVvfXwv&l=english IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (2642), with CRLF line terminators Size154 kB (154429 bytes) Hash0a63e53efda5f9cbeb2f30aede57b074 b07356680c833577f61c5e393f76c292c6e3fd38 1ea50d98ff15f2b9431415858e88be952658f4b943829f6223ad0e42f058c79b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/shared/javascript/shared_global.js?v=1_BxDGVvfXwv&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:04 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 154429
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "1_BxDGVvfXwv"
Vary: Accept-Encoding
Cache-Control: public, max-age=14626611
Expires: Sun, 06 Oct 2024 22:37:02 GMT
Content-Disposition: inline;filename=f.txt
traceId: 55774b9a-840d-4ec9-a52b-e2221a0673ef
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| community.akamai.steamstatic.com/public/images/skin_1/footerLogo_valve.png?v=1 |  23.36.76.241 | 200 OK | 3.7 kB |
URL GET HTTP/1.1community.akamai.steamstatic.com/public/images/skin_1/footerLogo_valve.png?v=1 IP23.36.76.241:443 ASN#20940 Akamai International B.V.
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerLet's Encrypt Subjectcdn.akamai.steamstatic.com FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74 ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT
File typePNG image data, 96 x 26, 8-bit/color RGBA, non-interlaced Hash1626f52addb7c56fe3679d82108c62e9 2b414092d66ecff528950093a655f755c3c7f3b5 ae9f6c61e25d15882bf57bde193d10d375bd315c9741cabda11d700fd1bb7dd1
GET /public/images/skin_1/footerLogo_valve.png?v=1 HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 3737
Last-Modified: Fri, 05 Jan 2018 01:34:51 GMT
ETag: "5a4ed63b-e99"
Accept-Ranges: bytes
Date: Sat, 27 Apr 2024 03:59:07 GMT
Connection: keep-alive
|
|
| community.akamai.steamstatic.com/public/shared/images/responsive/header_menu_hamburger.png | 23.36.76.241 | 200 OK | 3.8 kB |
URL GET HTTP/1.1community.akamai.steamstatic.com/public/shared/images/responsive/header_menu_hamburger.png IP23.36.76.241:443 ASN#20940 Akamai International B.V.
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerLet's Encrypt Subjectcdn.akamai.steamstatic.com FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74 ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT
File typePNG image data, 244 x 212, 8-bit/color RGBA, non-interlaced Hasheabc76eb57feae44add7faead028521e 4e3e53938fad15661d2d046a868338841a95db19 fc9e6260a2706ae146282d77e67bc1b74688435f8912ab4c1932641eec28bffa
GET /public/shared/images/responsive/header_menu_hamburger.png HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 3777
Last-Modified: Fri, 05 Jan 2018 01:35:16 GMT
ETag: "5a4ed654-ec1"
Accept-Ranges: bytes
Date: Sat, 27 Apr 2024 03:59:07 GMT
Connection: keep-alive
|
|
| community.akamai.steamstatic.com/public/shared/images/responsive/logo_valve_footer.png | 23.36.76.241 | 200 OK | 1.8 kB |
URL GET HTTP/1.1community.akamai.steamstatic.com/public/shared/images/responsive/logo_valve_footer.png IP23.36.76.241:443 ASN#20940 Akamai International B.V.
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerLet's Encrypt Subjectcdn.akamai.steamstatic.com FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74 ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT
File typePNG image data, 92 x 26, 8-bit/color RGBA, non-interlaced Hash574c350c7b23ae794d5276f8580e0838 235c7b35c3468f8915eca01f7abdb43d34079609 8b97ba0dac22fe6704c1f6d95fe79613f33017804f256abb9006df0442491787
GET /public/shared/images/responsive/logo_valve_footer.png HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 1846
Last-Modified: Fri, 05 Jan 2018 01:35:16 GMT
ETag: "5a4ed654-736"
Accept-Ranges: bytes
Date: Sat, 27 Apr 2024 03:59:07 GMT
Connection: keep-alive
|
|
| community.akamai.steamstatic.com/public/shared/images/responsive/header_logo.png | 23.36.76.241 | 200 OK | 11 kB |
URL GET HTTP/1.1community.akamai.steamstatic.com/public/shared/images/responsive/header_logo.png IP23.36.76.241:443 ASN#20940 Akamai International B.V.
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerLet's Encrypt Subjectcdn.akamai.steamstatic.com FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74 ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT
File typePNG image data, 744 x 171, 8-bit/color RGBA, non-interlaced Hasha4e79c73ee13cb25b60fc4b0ba1f690c b690c31b2eb1b0eb085e91aaae7e79f03debe7c1 6cb869df089146c12efb5e9c968e911c314842624ba6f052a11346ac734cadc8
GET /public/shared/images/responsive/header_logo.png HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 10863
Last-Modified: Fri, 05 Jan 2018 01:35:16 GMT
ETag: "5a4ed654-2a6f"
Accept-Ranges: bytes
Date: Sat, 27 Apr 2024 03:59:07 GMT
Connection: keep-alive
|
|
| community.akamai.steamstatic.com/public/shared/images/header/logo_steam.svg?t=962016 | 23.36.76.241 | 200 OK | 1.7 kB |
URL GET HTTP/1.1community.akamai.steamstatic.com/public/shared/images/header/logo_steam.svg?t=962016 IP23.36.76.241:443 ASN#20940 Akamai International B.V.
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerLet's Encrypt Subjectcdn.akamai.steamstatic.com FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74 ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT
File typeSVG Scalable Vector Graphics image Hashb7a7e43284e2ffe806ac1bc27c1f6a87 e8196489e2ae99ec6eb33995b5a3e108d6e44de0 c3a7c646a1305017f22423030cb5a12acc9f96b64013dcef7aeb80567b542cbb
GET /public/shared/images/header/logo_steam.svg?t=962016 HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/svg+xml
Last-Modified: Tue, 17 Nov 2020 23:34:54 GMT
ETag: "5fb45e1e-e64"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1736
Date: Sat, 27 Apr 2024 03:59:07 GMT
Connection: keep-alive
|
|
| community.akamai.steamstatic.com/public/shared/images/header/btn_header_installsteam_download.png?v=1 | 23.36.76.241 | 200 OK | 291 B |
URL GET HTTP/1.1community.akamai.steamstatic.com/public/shared/images/header/btn_header_installsteam_download.png?v=1 IP23.36.76.241:443 ASN#20940 Akamai International B.V.
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerLet's Encrypt Subjectcdn.akamai.steamstatic.com FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74 ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT
File typePNG image data, 15 x 13, 8-bit/color RGBA, non-interlaced Hasha2796187c58c7e948159e37d6990ecc2 4209cd85add507247f9ce5a87a8c9095b54ee417 23341256db7f44b1f3811880fa2bae6b7748bbf6b62c544a162e38cf0d5c5082
GET /public/shared/images/header/btn_header_installsteam_download.png?v=1 HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 291
Last-Modified: Wed, 21 Mar 2018 00:07:17 GMT
ETag: "5ab1a235-123"
Accept-Ranges: bytes
Date: Sat, 27 Apr 2024 03:59:07 GMT
Connection: keep-alive
|
|
| community.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Regular.ttf?v=4.015 | 23.36.76.241 | 200 OK | 123 kB |
URL GET HTTP/1.1community.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Regular.ttf?v=4.015 IP23.36.76.241:443 ASN#20940 Akamai International B.V.
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerLet's Encrypt Subjectcdn.akamai.steamstatic.com FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74 ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT
File typeTrueType Font data, digitally signed, 18 tables, 1st "DSIG", 22 names, Macintosh, Copyright � 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansRegular4.015;Plau;MotivaSan Size123 kB (122684 bytes) Hash57613e143ff3dae10f282e84a066de28 88756cc8c6db645b5f20aa17b14feefb4411c25f 19b8db163bcc51732457efa40911b4a422f297ff3cd566467d87eab93cef0c14
GET /public/shared/fonts/MotivaSans-Regular.ttf?v=4.015 HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://st.aircsgo.com
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/octet-stream
Content-Length: 122684
Last-Modified: Tue, 28 Jul 2020 23:16:28 GMT
ETag: "5f20b1cc-1df3c"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Sat, 27 Apr 2024 03:59:07 GMT
Connection: keep-alive
|
|
| community.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Medium.ttf?v=4.015 | 23.36.76.241 | 200 OK | 124 kB |
URL GET HTTP/1.1community.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Medium.ttf?v=4.015 IP23.36.76.241:443 ASN#20940 Akamai International B.V.
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerLet's Encrypt Subjectcdn.akamai.steamstatic.com FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74 ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT
File typeTrueType Font data, digitally signed, 18 tables, 1st "DSIG", 24 names, Macintosh, Copyright � 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansMedium4.015;Plau;MotivaSans Size124 kB (124048 bytes) Hash2d64caa5ecbf5e42cbb766ca4d85e90e 147420abceb4a7fd7e486dddcfe68cda7ebb3a18 045b433f94502cfa873a39e72d616c73ec1b4c567b7ee0f847f442651683791f
GET /public/shared/fonts/MotivaSans-Medium.ttf?v=4.015 HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://st.aircsgo.com
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/octet-stream
Content-Length: 124048
Last-Modified: Tue, 28 Jul 2020 23:16:28 GMT
ETag: "5f20b1cc-1e490"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Sat, 27 Apr 2024 03:59:07 GMT
Connection: keep-alive
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~b28b7af69.js?v=VGtvPLNviurP&l=english | 210.74.226.205 | 200 | 927 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~b28b7af69.js?v=VGtvPLNviurP&l=english IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65368), with CRLF, LF line terminators Size927 kB (926675 bytes) Hashaaa2b4c9a67fb3338514be5552fa9203 8315a289e5509a42cc87ff670cf6d155f1bb44a6 1bde7c2c72c06b16f9c35712fc269da2ab6d6ca2b1dc8a50787c35f189933c0e
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Steam | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~b28b7af69.js?v=VGtvPLNviurP&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:03 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 926675
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "VGtvPLNviurP"
Vary: Accept-Encoding
Cache-Control: public, max-age=14626599
Expires: Sun, 06 Oct 2024 22:36:51 GMT
Content-Disposition: inline;filename=f.txt
traceId: acdb3cb6-1920-466b-a99e-772ae21ce919
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| community.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Black.ttf?v=4.015 | 23.36.76.241 | 200 OK | 121 kB |
URL GET HTTP/1.1community.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Black.ttf?v=4.015 IP23.36.76.241:443 ASN#20940 Akamai International B.V.
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerLet's Encrypt Subjectcdn.akamai.steamstatic.com FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74 ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT
File typeTrueType Font data, digitally signed, 18 tables, 1st "DSIG", 24 names, Macintosh, Copyright � 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansBlack4.015;Plau;MotivaSans- Size121 kB (120816 bytes) Hash4f7c668ae0988bf759b831769bfd0335 280a11e29d10bb78d6a5b4a1f512bf3c05836e34 32d4c8dc451e11db315d047306feea0376fbdc3a77c0ab8f5a8ab154164734d1
GET /public/shared/fonts/MotivaSans-Black.ttf?v=4.015 HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://st.aircsgo.com
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/octet-stream
Content-Length: 120816
Last-Modified: Tue, 28 Jul 2020 23:16:27 GMT
ETag: "5f20b1cb-1d7f0"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Sat, 27 Apr 2024 03:59:08 GMT
Connection: keep-alive
|
|
| community.akamai.steamstatic.com/public/shared/images/joinsteam/new_login_bg_strong_mask.jpg | 23.36.76.241 | 200 OK | 124 kB |
URL GET HTTP/1.1community.akamai.steamstatic.com/public/shared/images/joinsteam/new_login_bg_strong_mask.jpg IP23.36.76.241:443 ASN#20940 Akamai International B.V.
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerLet's Encrypt Subjectcdn.akamai.steamstatic.com FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74 ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3 Size124 kB (124529 bytes) Hash48b805d8fa321668db4ce8dfd96db5b9 e0ded2606559c8100ef544c1f1c704e878a29b92 9a75f8cc40bbe9c9499e7b2d3bab98a447685a361489357a111479517005c954
GET /public/shared/images/joinsteam/new_login_bg_strong_mask.jpg HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/jpeg
Content-Length: 124529
Last-Modified: Wed, 24 Aug 2022 00:07:59 GMT
ETag: "63056bdf-1e671"
Accept-Ranges: bytes
Date: Sat, 27 Apr 2024 03:59:08 GMT
Connection: keep-alive
|
|
| st.aircsgo.com/favicon.ico | 210.74.226.205 | 200 | 39 kB |
URL GET HTTP/1.1st.aircsgo.com/favicon.ico IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeMS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel Hash231913fdebabcbe65f4b0052372bde56 553909d080e4f210b64dc73292f3a111d5a0781f 9f890a9debcdfccc339149a7943be9aff9e4c9203c2fa37d5671a5b2c88503ad
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Steam | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db; timezoneOffset=0,0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:08 GMT
Content-Type: image/x-icon
Content-Length: 38554
Connection: keep-alive
Last-Modified: Tue, 18 Sep 2018 23:32:59 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Method: *
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Origin: https://st.aircsgo.com
Access-Control-Expose-Headers: X-eresult,X-error_message
Cache-Control: public,max-age=86400
Expires: Sun, 31 Dec 2023 06:26:13 GMT
Origin: https://st.aircsgo.com
Set-Cookie: uid=ae568618-868a-4882-872a-c338ae4d90db; Path=/; Domain=st.aircsgo.com
X-Proxy-Hostname: steam-session-cluster-6c6fc676d6-nhgz6
traceId: eaac1cf3ae17141913486485598d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/shared_english-json.js?contenthash=5ecf6a2294724519e96b | 210.74.226.205 | 200 | 186 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/shared_english-json.js?contenthash=5ecf6a2294724519e96b IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65253), with CRLF, LF line terminators Size186 kB (186349 bytes) Hash4ff2db6f1547ca0a1f0334b98300af26 da73d11eab8701db977543717d5fc279fa9bb12a 70df8238fa0019c4c0dbf4eddc715eb05b0a195ce72ccde4d8f930855cfe88fb
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Steam | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/shared_english-json.js?contenthash=5ecf6a2294724519e96b HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:08 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 23 Apr 2024 23:29:53 GMT
ETag: "2n42joPoAF7E"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=233196
Expires: Mon, 29 Apr 2024 16:18:23 GMT
Content-Disposition: inline;filename=f.txt
traceId: 25970a1c-8f6a-48db-a4de-c6f7182293b1
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/main_english-json.js?contenthash=03150db7371206f48099 | 210.74.226.205 | 200 | 217 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/main_english-json.js?contenthash=03150db7371206f48099 IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65355), with CRLF, LF line terminators Size217 kB (217282 bytes) Hashca5b9410df6a8e05b7290b0bc2ed7242 7069427f3d913895f33e1f561b22dd0d2611a7cd 147d1648f1557ea7aefdd9c7b06b75066423fd53d2daec1a837a991dbb81aac4
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/main_english-json.js?contenthash=03150db7371206f48099 HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:08 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 26 Apr 2024 16:09:14 GMT
ETag: "nSLVg8vraVkW"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=259099
Expires: Mon, 29 Apr 2024 16:08:57 GMT
Content-Disposition: inline;filename=f.txt
traceId: 59c823d2-9e7f-4b4d-95e0-185651309fd7
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/sales_english-json.js?contenthash=78c2664709aeddc975e5 | 210.74.226.205 | 200 | 172 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/sales_english-json.js?contenthash=78c2664709aeddc975e5 IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (64901), with CRLF, LF line terminators Size172 kB (171845 bytes) Hashe099d2588434045a112d2d874b2fa43c 6aeb98a544e3e6a63e90cd7a1b16d616a4d84ea5 5ab7d9b773379ec8bb4514251830670c4c21b8bae4fc36766822b5b110ac386b
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Steam | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/sales_english-json.js?contenthash=78c2664709aeddc975e5 HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:08 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 171845
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 23:43:35 GMT
ETag: "U2Px6UXjBWDe"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=233281
Expires: Mon, 29 Apr 2024 02:08:05 GMT
Content-Disposition: inline;filename=f.txt
traceId: 884429c9-54d0-40ed-9ba0-0b52a0c5ebc7
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/navevents.js?contenthash=637ad4060aaa08d3ae85 | 210.74.226.205 | 200 | 14 kB |
URL GET HTTP/1.1st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/navevents.js?contenthash=637ad4060aaa08d3ae85 IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (14143), with CRLF, LF line terminators Hash2d823c7e07736ed93735a205fde2567a 056181e2a7f57a7dc46d65e66189e8f44156afc9 f402cfc53c8a3924955d0de30f3d3a23f37ec72ca68292f00669be9dea3e61d6
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/navevents.js?contenthash=637ad4060aaa08d3ae85 HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:11 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 14311
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 23:43:35 GMT
ETag: "MsgvU2O4ZYEo"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=231668
Expires: Mon, 29 Apr 2024 02:08:57 GMT
Content-Disposition: inline;filename=f.txt
traceId: d2d70a36-12d7-4e1b-8591-1cdebc19458f
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| st.aircsgo.com/steamapi/IClientMetricsService/ReportClientError/v1 | 210.74.226.205 | 200 | 0 B |
URL POST HTTP/1.1st.aircsgo.com/steamapi/IClientMetricsService/ReportClientError/v1 IP210.74.226.205:443 ASN#4812 China Telecom Group
Requested byhttps://st.aircsgo.com/login/?redir=explore/&redir_ssl=1 CertificateIssuerDigiCert Inc Subjectst.aircsgo.com Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Steam | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
POST /steamapi/IClientMetricsService/ReportClientError/v1 HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------260961424719345656792771767970
Content-Length: 3375
Origin: https://st.aircsgo.com
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/?redir=explore/&redir_ssl=1
Cookie: sessionid=8a93ac58b4230aeb2d4b67a1; steamCountry=HK%7Cacc9c642ab630b219d3736af6f9a3fbb; uid=ae568618-868a-4882-872a-c338ae4d90db; timezoneOffset=0,0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Sat, 27 Apr 2024 03:59:19 GMT
Content-Type: application/json
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Method: *
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Origin: https://st.aircsgo.com
Access-Control-Expose-Headers: X-eresult,X-error_message
Cache-Control: max-age=0, no-cache, no-store
Expires: Sat, 27 Apr 2024 03:59:19 GMT
Origin: https://st.aircsgo.com
Pragma: no-cache
Set-Cookie: uid=ae568618-868a-4882-872a-c338ae4d90db; Path=/; Domain=st.aircsgo.com
Vary: Origin
X-Proxy-Hostname: steam-session-cluster-6c6fc676d6-nhgz6
traceId: eaac1cf3af17141913590175419d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|