Report - counter-strike2-faq.com/

Report Overview

Submitted URL
counter-strike2-faq.com/
IP
172.67.164.121
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-19 05:02:18
Access
public
Website Title
Домен не добавлен в панели
Final URL
counter-strike2-faq.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
files.reg.ru	unknown	2005-10-31	2022-11-17	2024-04-18	1.0 kB	206 kB	194.67.72.33
counter-strike2-faq.com	unknown	2023-09-08	2023-09-08	2023-09-30	858 B	324 kB	104.21.34.199

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-18	medium	counter-strike2-faq.com/	Steam
2024-04-18	medium	counter-strike2-faq.com/	Steam

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (5)

	URL	Size	First Seen	Last Seen
	counter-strike2-faq.com/	60 B	2023-03-07	2024-05-02
Pretty URL counter-strike2-faq.com/ IP 104.21.34.199 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:15:28 Last Seen2024-05-02 04:58:56 Times Seen494 Hash 9bae51b8e92fcd4a4ae6d8007b20907b 2d349dcc80d19591a083ac2989fa2b941e6e7001 d8a0560358c51b493362768b5e550e2a0f7e5403e9a5e58f37e0eb28ab75c594 Loading...

	counter-strike2-faq.com/	1.5 kB	2023-09-11	2024-05-02
Pretty URL counter-strike2-faq.com/ IP 104.21.34.199 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-11 03:57:05 Last Seen2024-05-02 04:58:56 Times Seen131 Hash 9a63aa02365d8405750e6c560d9afe95 1230597be75e20d8122dba9654522c876925c229 29e8ec6c70702ed0a9326625f4a7ed731293db9c1cc952a006249bda7c8827fe Loading...

	counter-strike2-faq.com/	45 kB	2023-09-11	2024-05-02
Pretty URL counter-strike2-faq.com/ IP 104.21.34.199 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-11 03:57:05 Last Seen2024-05-02 04:58:56 Times Seen131 Hash af5429b55f3a5d60b13742cfa3081b59 a2c20c24eab426ad07de5a108e561a197381eb9b be06fc492045064772f1cd9fd9ab54a2e7bda71872ce3c55aa63a6dc7324c522 Loading...

	counter-strike2-faq.com/	103 kB	2023-09-13	2024-05-02
Pretty URL counter-strike2-faq.com/ IP 104.21.34.199 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-13 18:18:18 Last Seen2024-05-02 04:58:56 Times Seen56 Hash 2ebff9fa0e3e3e6a06d331372b5e0253 38486a8084b24b1ac69c1d98c5fb3ab0092de952 d80aa3d775d1a73ea80c82219a801492f18fb0b29a2aa95751a4c94a0848a276 Loading...

	counter-strike2-faq.com/	886 B	2023-03-07	2024-05-02
Pretty URL counter-strike2-faq.com/ IP 104.21.34.199 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:15:28 Last Seen2024-05-02 04:58:56 Times Seen406 Hash f6d1b5e9093a97af8428a32d049a0382 875968619e5ffd0ef974f04dcf1efafd2035c143 f5c294a7f1b57123c7c6042ddb57cf996151eea436ea895117771fbf7527eb0a Loading...

HTTP Transactions (4)

URL IP Response Size

files.reg.ru/fonts/inter/Inter-Regular.woff2

194.67.72.33

200 OK

99 kB

URL GET HTTP/2
files.reg.ru/fonts/inter/Inter-Regular.woff2
IP
194.67.72.33:443
ASN
#197695 Domain names registrar REG.RU, Ltd

Requested by
https://counter-strike2-faq.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.reg.ru
Fingerprint33:E4:2B:56:55:E7:18:C3:BE:B7:69:ED:B2:D4:B8:9D:29:F1:A3:23
ValidityThu, 29 Feb 2024 06:29:54 GMT - Tue, 01 Apr 2025 06:29:53 GMT

File type
Web Open Font Format (Version 2), TrueType, length 98868, version 1.0
Size
99 kB (98868 bytes)
Hash
dc131113894217b5031000575d9de002
f96348260751ea78b1d23e9557db297290bdaf28
d612f1212b452af07f1a5defb2b672e76a91f7139e7499fa48bb9b2b985c22d6

HTTP Headers

GET /fonts/inter/Inter-Regular.woff2 HTTP/1.1
Host: files.reg.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://counter-strike2-faq.com
DNT: 1
Connection: keep-alive
Referer: https://counter-strike2-faq.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 19 Apr 2024 05:01:53 GMT
content-length: 98868
access-control-allow-credentials: true
access-control-allow-origin: https://counter-strike2-faq.com
access-control-expose-headers: Date, Etag, Server, Connection, Accept-Ranges, Content-Range, Content-Encoding, Content-Length, Content-Type, Content-Disposition, Last-Modified, Content-Language, Cache-Control, Retry-After, X-Amz-Bucket-Region, Expires, X-Amz*, X-Amz*, *
content-security-policy: block-all-mixed-content
etag: "dc131113894217b5031000575d9de002"
last-modified: Tue, 25 Oct 2022 11:42:32 GMT
vary: Accept-Encoding, Origin
x-xss-protection: 1; mode=block
x-amz-meta-mtime: 1666084006
expires: Thu, 10 Apr 2025 05:01:53 GMT
cache-control: max-age=30758400
content-type: font/woff2
accept-ranges: bytes
X-Firefox-Spdy: h2

files.reg.ru/fonts/inter/Inter-SemiBold.woff2

194.67.72.33

200 OK

106 kB

URL GET HTTP/2
files.reg.ru/fonts/inter/Inter-SemiBold.woff2
IP
194.67.72.33:443
ASN
#197695 Domain names registrar REG.RU, Ltd

Requested by
https://counter-strike2-faq.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.reg.ru
Fingerprint33:E4:2B:56:55:E7:18:C3:BE:B7:69:ED:B2:D4:B8:9D:29:F1:A3:23
ValidityThu, 29 Feb 2024 06:29:54 GMT - Tue, 01 Apr 2025 06:29:53 GMT

File type
Web Open Font Format (Version 2), TrueType, length 105804, version 1.0
Size
106 kB (105804 bytes)
Hash
007ad31a53f4ab3f58ee74f2308482ce
dfa9f8f3d79bf8a0001fe72eeadad0490cba59cc
152261291c938aa5aad6a56d52b47ffcb893d1c0387e76d7f270a7382ff786d5

HTTP Headers

GET /fonts/inter/Inter-SemiBold.woff2 HTTP/1.1
Host: files.reg.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://counter-strike2-faq.com
DNT: 1
Connection: keep-alive
Referer: https://counter-strike2-faq.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 19 Apr 2024 05:01:53 GMT
content-length: 105804
access-control-allow-credentials: true
access-control-allow-origin: https://counter-strike2-faq.com
access-control-expose-headers: Date, Etag, Server, Connection, Accept-Ranges, Content-Range, Content-Encoding, Content-Length, Content-Type, Content-Disposition, Last-Modified, Content-Language, Cache-Control, Retry-After, X-Amz-Bucket-Region, Expires, X-Amz*, X-Amz*, *
content-security-policy: block-all-mixed-content
etag: "007ad31a53f4ab3f58ee74f2308482ce"
last-modified: Tue, 25 Oct 2022 11:42:32 GMT
vary: Accept-Encoding, Origin
x-xss-protection: 1; mode=block
x-amz-meta-mtime: 1666084006
expires: Thu, 10 Apr 2025 05:01:53 GMT
cache-control: max-age=30758400
content-type: font/woff2
accept-ranges: bytes
X-Firefox-Spdy: h2

counter-strike2-faq.com/favicon.ico

104.21.34.199

200 OK

11 kB

URL GET HTTP/3
counter-strike2-faq.com/favicon.ico
IP
104.21.34.199:443
ASN
#13335 CLOUDFLARENET

Requested by
https://counter-strike2-faq.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcounter-strike2-faq.com
Fingerprint32:38:B0:F0:CF:EE:EA:8B:F9:AF:35:B2:AD:EE:40:AA:27:D4:ED:63
ValiditySun, 03 Mar 2024 01:36:27 GMT - Sat, 01 Jun 2024 01:36:26 GMT

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
11 kB (10734 bytes)
Hash
c54888e7d059fcceebcfb3f42685720a
15af3d4a73f8c56d2c308c8ea5ec083be1cbe716
bb2d32f7299ff0fc4e3b2c6d684939b92f61b552f947f037c9de518018b73372

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: counter-strike2-faq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://counter-strike2-faq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 05:01:53 GMT
content-type: image/x-icon
last-modified: Sat, 17 Nov 2018 07:28:28 GMT
etag: W/"5befc31c-3aee"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mRB54zHRdzVpK5NAtWeZsr9bD%2FxgCfy%2FXkinBMlFe4xmM%2F%2BirlJMOLbs8j%2Bs75YmCxn%2F7ztqQy4hCDxppExfkqceXVNd0qJVr6rAlPFN%2BBdSVE%2B17DeBXTt5gKvm%2B%2BAnXW2rhexDseXOEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876a56db8cb856be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

counter-strike2-faq.com/

104.21.34.199

200 OK

312 kB

URL GET HTTP/3
counter-strike2-faq.com/
IP
104.21.34.199:443
ASN
#13335 CLOUDFLARENET

Requested by
https://counter-strike2-faq.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcounter-strike2-faq.com
Fingerprint32:38:B0:F0:CF:EE:EA:8B:F9:AF:35:B2:AD:EE:40:AA:27:D4:ED:63
ValiditySun, 03 Mar 2024 01:36:27 GMT - Sat, 01 Jun 2024 01:36:26 GMT

File type

Size
312 kB (311789 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam

HTTP Headers

GET / HTTP/1.1
Host: counter-strike2-faq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://counter-strike2-faq.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 05:01:53 GMT
content-type: text/html
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oH%2BXsgoodc1qyh2b3VSPAHIUxFZp%2BWvPOWP%2FN%2BMWeRaUWL2RAxH22dqumsoZnG0MOCUVCIeFNk9z2t1LPUo5YZQjwp%2F8dUMC3UltZmeUAnzESEPmtxTBvNuqiSE3KU6269X10MRwpZcoGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876a56d98b3556be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (4)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers