Report - st.aircsgo.com/my/inventory/login/home/?goto=/my/inventory//login/home/?goto=/my/inventory/login/home/?goto=/my/inventory//login/home/?goto=/my/inventory/login/home/?goto=/my/inventory//login/home/?goto=/my/inventory/login/home/?goto=/my/inventory/

Report Overview

Submitted URL
st.aircsgo.com/my/inventory/login/home/?goto=/my/inventory//login/home/?goto=/my/inventory/login/home/?goto=/my/inventory//login/home/?goto=/my/inventory/login/home/?goto=/my/inventory//login/home/?goto=/my/inventory/login/home/?goto=/my/inventory/
IP
210.74.226.205
ASN
#4812 China Telecom Group
Submitted
2024-04-25 23:30:55
Access
public
Website Title
Sign In
Final URL
st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
170

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
st.aircsgo.com	unknown	unknown	No data	No data	42 kB	3.5 MB	210.74.226.205
community.akamai.steamstatic.com	15488	2013-11-07	2021-01-05	2024-04-24	5.0 kB	517 kB	23.36.76.241

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam
2024-04-20	medium	st.aircsgo.com/	Steam

PhishTank

Scan Date	Severity	Indicator	Alert
2024-04-22	medium	st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/motiva_sans.css?v=-DH0xTYpnVe2&l=english	Other
2024-04-22	medium	st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/header.css?v=NFoCa4OkAxRb&l=english	Other
2024-04-22	medium	st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/shared_responsive.css?v=sHIIcMzCffX6&l=english	Other
2024-04-22	medium	st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/login.css?v=q2b2ZBI1X2Yj&l=english	Other
2024-04-22	medium	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/prototype-1.7.js?v=.55t44gwuwgvw	Other
2024-04-22	medium	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/global.js?v=B7Vsdo1okyaC&l=english	Other
2024-04-22	medium	st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/applications/community/main.css?v=EyWBqDQS-6jg&l=english	Other
2024-04-22	medium	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/manifest.js?v=EL8POrEv0mo4&l=english	Other
2024-04-22	medium	st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/login.js?v=0BCNfXbnL2BC&l=english	Other
2024-04-22	medium	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~b28b7af69.js?v=VGtvPLNviurP&l=english	Other
2024-04-22	medium	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/main.js?v=c4UneKQJS7M3&l=english	Other
2024-04-22	medium	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/shared_english-json.js?contenthash=5ecf6a2294724519e96b	Other
2024-04-22	medium	st.aircsgo.com/favicon.ico	Other
2024-04-22	medium	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/sales_english-json.js?contenthash=78c2664709aeddc975e5	Other
2024-04-22	medium	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~f036ce556.js?contenthash=4aeaa7f3e9a9fc232310	Other
2024-04-22	medium	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/login.js?contenthash=3f5d4d1eea08fcdfe1a3	Other
2024-04-22	medium	st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/applications/community/login.css?contenthash=a66289e969ece5d1faad	Other
2024-04-22	medium	st.aircsgo.com/steamlogin/jwt/ajaxrefresh	Other
2024-04-22	medium	st.aircsgo.com/steamapi/IAuthenticationService/BeginAuthSessionViaQR/v1	Other
2024-04-22	medium	st.aircsgo.com/steamapi/IAuthenticationService/PollAuthSessionStatus/v1	Other
2024-04-22	medium	st.aircsgo.com/steamapi/IClientMetricsService/ReportClientError/v1	Other
2024-04-22	medium	st.aircsgo.com/steamapi/IAuthenticationService/PollAuthSessionStatus/v1	Other
2024-04-22	medium	st.aircsgo.com/steamapi/IAuthenticationService/PollAuthSessionStatus/v1	Other

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed
2024-04-25	medium	aircsgo.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (28)

	URL	Size	First Seen	Last Seen
	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/global.js?v=B7Vsdo1okyaC&l=english	104 kB	2024-04-25	2024-04-27
Pretty URL st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/global.js?v=B7Vsdo1okyaC&l=english IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 06:15:03 Last Seen2024-04-27 08:03:28 Times Seen16 Hash 275016d406b60e0719ae064c52b3c996 24e3ae578404f9b758e3515a7df22aa4dccbadc3 637b2adb9363a48186d003315fd00e1f8aeef6a7711c3c2785cd193af956b1f6 Loading...

	st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F	374 B	2023-03-12	2024-05-05
Pretty URL st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 09:45:05 Last Seen2024-05-05 19:41:44 Times Seen1229 Hash b70da133ca779ab3e43a34b27582022a 43c146ab15416cc77dadea9d17dbd69b4b001b4b 9b7266c903d26b60f47edbf7647ebe6fe6810e4e06c0cf06f1348944ee585b2c Loading...

	st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F	521 B	2023-03-12	2024-05-05
Pretty URL st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 09:45:05 Last Seen2024-05-05 07:38:37 Times Seen1227 Hash 1ca437221076a602c053146ac451e9a2 605ca877765dcd8a7420d4e3df5a644f5468b5e7 1ce28f3f9525bda804d49ef59149ff51b079c28dfdee7a6b86107bcd0350538f Loading...

	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/manifest.js?v=EL8POrEv0mo4&l=english	16 kB	2024-04-26	2024-04-26
Pretty URL st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/manifest.js?v=EL8POrEv0mo4&l=english IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 01:26:05 Last Seen2024-04-26 06:08:43 Times Seen14 Hash 35b856e0906a2c42857273aa4a00da0d 142966cf9f6481597391a4b7783003d54b50f8f4 846f92ea33a2ab91d45abdbc1a54397ed4a791c8f90f01bd41c4c3b5172b6900 Loading...

	st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/login.js?v=0BCNfXbnL2BC&l=english	61 kB	2024-04-26	2024-04-26
Pretty URL st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/login.js?v=0BCNfXbnL2BC&l=english IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 01:31:03 Last Seen2024-04-26 06:01:30 Times Seen4 Hash 061d22797311f0da2709616827367d86 d07865262ef477ea7aa14ad8eef0ec9132cce34d 827e2962761ef1f0d8389b5efc67c15ebe1713a914a9aa71927b690f9c68330b Loading...

	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~f036ce556.js?contenthash=4aeaa7f3e9a9fc232310	90 kB	2024-04-25	2024-04-27
Pretty URL st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~f036ce556.js?contenthash=4aeaa7f3e9a9fc232310 IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 06:15:01 Last Seen2024-04-27 08:03:29 Times Seen20 Hash 00980fbe21d99d69334e7c3fdfd18e25 84cebab4a14e0db8465af1a88ccb0d38399cb3be b41656f3ffaea7983c4735caae7cbee7f3ed324b48d271045fe959dd1a4343c1 Loading...

	st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0	16 kB	2023-03-07	2024-05-05
Pretty URL st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0 IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-05-05 19:41:45 Times Seen5208 Hash 72938851e7c2ef7b63299eba0c6752cb b75196bd3a6f9f4dfc1bbf5e43e96874bcd9ce4e e2d4e0e1d3e162fdc815f16dfff9ae9b0a967949f0f3ae371f947d730a3f0661 Loading...

	st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F	89 B	2024-04-25	2024-04-27
Pretty URL st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 06:15:02 Last Seen2024-04-27 08:03:27 Times Seen8 Hash 764bd4c2e055970587b284f0efb7c6a9 c70866fbfd50d3f05431cca697fe31b39396a77f 75c68721a599e21c10a85c590711d26b832bfca8e88d5d86b5cd255cbd90d8aa Loading...

	st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/shared_global.js?v=1_BxDGVvfXwv&l=english	154 kB	2024-04-25	2024-04-27
Pretty URL st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/shared_global.js?v=1_BxDGVvfXwv&l=english IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 06:15:04 Last Seen2024-04-27 08:03:28 Times Seen16 Hash 0a63e53efda5f9cbeb2f30aede57b074 b07356680c833577f61c5e393f76c292c6e3fd38 1ea50d98ff15f2b9431415858e88be952658f4b943829f6223ad0e42f058c79b Loading...

	st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F	114 B	2023-03-07	2024-05-05
Pretty URL st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:51 Last Seen2024-05-05 19:41:44 Times Seen1381 Hash 16f8c3f24c03dd22c268f120ecbb7d9c 0fc91d904a8d38ad4588344a0191af727fd09311 61c71b0ebf72ea0d8fc27d307870302ea163aa9bd344b3ba1402a2e894721925 Loading...

	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/jquery-1.11.1.min.js?v=.isFTSRckeNhC	96 kB	2023-03-07	2024-05-05
Pretty URL st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/jquery-1.11.1.min.js?v=.isFTSRckeNhC IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-05-05 07:38:38 Times Seen6214 Hash 4dc834d16a0d219d5c2b8a5b814569e4 4fbe0563917d6f6289e4e1b4a0a8758e4e43bda9 91222f96f34735ebc88df208017e54d4329b9202e3e52367fb8b149698a1a5ef Loading...

	st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F	293 B	2024-04-25	2024-04-27
Pretty URL st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 06:15:02 Last Seen2024-04-27 08:03:27 Times Seen8 Hash c6049978bb2f513a14112ca6fc8fbcd1 cc14061be056a821837a6de9c68abaed7b4c4ec8 9c4bef35a264aff4c9df5a405d81eb01e4b5450b4a396e333017b35c83b4a1b6 Loading...

	st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F	138 B	2023-03-07	2024-05-05
Pretty URL st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:51 Last Seen2024-05-05 07:38:37 Times Seen1181 Hash 9f44e1f62e772303b2e525ddb1612081 e4a96a617321364bc3a043575388a6ceb1c0f4c9 9bde39c62b2614c2823a872c6c9d049d0752a22d1ed9474b8bf0cd318001d288 Loading...

	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/main_english-json.js?contenthash=3c031c8e5ba8767bb473	217 kB	2024-04-26	2024-04-26
Pretty URL st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/main_english-json.js?contenthash=3c031c8e5ba8767bb473 IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 01:26:04 Last Seen2024-04-26 06:08:44 Times Seen14 Hash e0dd0bf97735f086cb20a509bad241d6 a7036a85fca0509570636fa43e7f22122985eac3 003cdeedbb65d2fffc9eae4d02a37317c8dbc764d0b9cdd0a0ea7e8c1a7dff24 Loading...

	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/chunk~906a41d8e.js?contenthash=bc65a674fca36dfbad5e	18 kB	2024-04-25	2024-04-27
Pretty URL st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/chunk~906a41d8e.js?contenthash=bc65a674fca36dfbad5e IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 06:15:03 Last Seen2024-04-27 08:03:30 Times Seen20 Hash cb6f54ce456e92e1ad708f342076b397 0e979d48ffc37e4981327e398480573e78f9443a 95be3d0fcac5633fc039aba02f42ea683c2da8a926c845e399e90ca19df43f94 Loading...

	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/prototype-1.7.js?v=.55t44gwuwgvw	169 kB	2023-03-07	2024-05-05
Pretty URL st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/prototype-1.7.js?v=.55t44gwuwgvw IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:12:12 Last Seen2024-05-05 19:41:45 Times Seen4581 Hash 6a39e0b509fecb928d47b8a2643fed2a f67fa6cb1d09963d10ba117d6553c8e7d5bc7863 d8bdea7fff893dbdbeaf6c2affec091a77483b9ec10e7958486bc3b6cc170c96 Loading...

	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/scriptaculous/_combined.js?v=OeNIgrpEF8tL&l=english&load=effects,controls,slider,dragdrop	122 kB	2023-03-07	2024-05-05
Pretty URL st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/scriptaculous/_combined.js?v=OeNIgrpEF8tL&l=english&load=effects,controls,slider,dragdrop IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-05-05 07:38:38 Times Seen4126 Hash 39e34882ba4417cb4b1b84916dabb770 0d0ca081fb60c8aad337091bafcbe84f966c38b0 da708635da162ea493874627775c3520a42145b79c73bf787b5113bf87c0b27c Loading...

	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~b28b7af69.js?v=VGtvPLNviurP&l=english	927 kB	2024-04-25	2024-04-27
Pretty URL st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~b28b7af69.js?v=VGtvPLNviurP&l=english IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 06:15:02 Last Seen2024-04-27 08:03:29 Times Seen22 Hash aaa2b4c9a67fb3338514be5552fa9203 8315a289e5509a42cc87ff670cf6d155f1bb44a6 1bde7c2c72c06b16f9c35712fc269da2ab6d6ca2b1dc8a50787c35f189933c0e Loading...

	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/login.js?contenthash=3f5d4d1eea08fcdfe1a3	845 B	2024-04-26	2024-04-26
Pretty URL st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/login.js?contenthash=3f5d4d1eea08fcdfe1a3 IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 01:31:03 Last Seen2024-04-26 06:05:49 Times Seen10 Hash 11c26fd8c339b00d1ef9b8babfd04768 4800d5bb400d3e4c8b6aa6a9952e4c7a05d82375 913a32237f68d3f605a9ce8633b6e2c4db36c180af8c1f3adc117e0ea1580f35 Loading...

	st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F	295 B	2023-06-21	2024-05-05
Pretty URL st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-21 01:00:33 Last Seen2024-05-05 19:41:44 Times Seen1144 Hash 6004c14868a256e4cae4dec3db42e6d7 48b9c9cef4ebb49a77da2a00b57c3b2c9d86472b 2c550300a61671a67a72219fc89acad93ea8c8cb54d5468ec6f891eda7f30e96 Loading...

	st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english	25 kB	2023-03-08	2024-05-05
Pretty URL st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:04:23 Last Seen2024-05-05 07:38:38 Times Seen3003 Hash a52bc800ab6e9df5a05a5153eea29ffb 8661643fcbc7498dd7317d100ec62d1c1c6886ff 57cfaf9b92c98541f769090cd0229a30013cea7cfafc18519ca654bfae29e14e Loading...

	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/navevents.js?contenthash=637ad4060aaa08d3ae85	14 kB	2024-04-25	2024-04-27
Pretty URL st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/navevents.js?contenthash=637ad4060aaa08d3ae85 IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 06:15:05 Last Seen2024-04-27 08:03:30 Times Seen22 Hash 2d823c7e07736ed93735a205fde2567a 056181e2a7f57a7dc46d65e66189e8f44156afc9 f402cfc53c8a3924955d0de30f3d3a23f37ec72ca68292f00669be9dea3e61d6 Loading...

	st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F	825 B	2024-04-26	2024-04-26
Pretty URL st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 01:31:03 Last Seen2024-04-26 01:31:03 Times Seen1 Hash 46cc49481752723b2f4cd8f53707508a 1c617314b1d2ee82ea8eae9b2d6a3fefe44a29c5 2869325a7ebbb6754dca8205d1dbd35399ce29fdc9d0eca39fea70fe661028c5 Loading...

	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/main.js?v=c4UneKQJS7M3&l=english	588 kB	2024-04-25	2024-04-27
Pretty URL st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/main.js?v=c4UneKQJS7M3&l=english IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 06:15:04 Last Seen2024-04-27 08:03:29 Times Seen22 Hash fc6617689197d4f7796e8a057de98244 2288e9052bb195bdf1fdbd63cdf09182b2f347ed 8b97e93a1f1e87bd51fde3483cb8aa88bae028b77a9e89516472f9978e23bb8c Loading...

	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/sales_english-json.js?contenthash=78c2664709aeddc975e5	172 kB	2024-04-25	2024-04-27
Pretty URL st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/sales_english-json.js?contenthash=78c2664709aeddc975e5 IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 06:15:04 Last Seen2024-04-27 08:03:28 Times Seen11 Hash 0b971180bd0c1da612b5f6a203212f09 4f2a8954bc6110159050ccbba737e74700fd488a cff2db81f602a2b3cda722c48e20d6dfd557b129ccc8e1e555ccbac47e5c8dda Loading...

	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/chunk~f036ce556.js?contenthash=2ce1adc8a382f77bdf57	89 kB	2024-04-25	2024-04-27
Pretty URL st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/chunk~f036ce556.js?contenthash=2ce1adc8a382f77bdf57 IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 06:15:01 Last Seen2024-04-27 08:03:30 Times Seen20 Hash f08ed755ce667d4afb0a2a95befde1d3 a479b356f3017d7bbe3955cacb73ac2320f134bf c5895019e18a159f82c432c043ad7dea5235365a4026767f8fac7d76f4b25c76 Loading...

	st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F	744 B	2024-04-26	2024-04-26
Pretty URL st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 01:31:03 Last Seen2024-04-26 01:31:03 Times Seen1 Hash 060adaf418928f3bfeffd6bf6824b92c 7096ab0d380461b00da65fae5dde469c1fe96df4 8d73b4a1279bb73c082427f1c1070a89ae9d4cddc4a56490320b85f82f77a87e Loading...

	st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/shared_english-json.js?contenthash=5ecf6a2294724519e96b	186 kB	2024-04-25	2024-04-27
Pretty URL st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/shared_english-json.js?contenthash=5ecf6a2294724519e96b IP 210.74.226.205 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 06:15:05 Last Seen2024-04-27 08:03:29 Times Seen22 Hash 4ff2db6f1547ca0a1f0334b98300af26 da73d11eab8701db977543717d5fc279fa9bb12a 70df8238fa0019c4c0dbf4eddc715eb05b0a195ce72ccde4d8f930855cfe88fb Loading...

HTTP Transactions (49)

URL IP Response Size

st.aircsgo.com/my/inventory/login/home/?goto=/my/inventory//login/home/?goto=/my/inventory/login/home/?goto=/my/inventory//login/home/?goto=/my/inventory/login/home/?goto=/my/inventory//login/home/?goto=/my/inventory/login/home/?goto=/my/inventory/

210.74.226.205

302

0 B

URL User Request GET HTTP/1.1
st.aircsgo.com/my/inventory/login/home/?goto=/my/inventory//login/home/?goto=/my/inventory/login/home/?goto=/my/inventory//login/home/?goto=/my/inventory/login/home/?goto=/my/inventory//login/home/?goto=/my/inventory/login/home/?goto=/my/inventory/
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /my/inventory/login/home/?goto=/my/inventory//login/home/?goto=/my/inventory/login/home/?goto=/my/inventory//login/home/?goto=/my/inventory/login/home/?goto=/my/inventory//login/home/?goto=/my/inventory/login/home/?goto=/my/inventory/ HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:27 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Method: *
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Origin: https://st.aircsgo.com
Access-Control-Expose-Headers: X-eresult,X-error_message
Cache-Control: no-cache
Content-Encoding: gzip
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Location: /login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Origin: https://st.aircsgo.com
Set-Cookie: sessionid=94ca9c19448c703e384a798a; Path=/; Secure; SameSite=None;Domain=st.aircsgo.com
steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; Path=/; Secure; HttpOnly; SameSite=None;Domain=st.aircsgo.com
uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; Path=/; Domain=st.aircsgo.com
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-Proxy-Hostname: steam-session-cluster-6c6fc676d6-46thk
traceId: eaac1cf3ac17140878268016254d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F

210.74.226.205

200

9.6 kB

URL User Request GET HTTP/1.1
st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (2988), with CRLF, LF line terminators
Size
9.6 kB (9631 bytes)
Hash
cbe268534116decd9f7c206fff937f4b
535dfc9549c127bb9178625b3bcc0301e2d089aa
c6a7f4d7d23d8c1e6a315c4241fe2ff1c3550aafd490667b9f9bdaae04eb8f39

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:27 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 9631
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Method: *
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Origin: https://st.aircsgo.com
Access-Control-Expose-Headers: X-eresult,X-error_message
Cache-Control: no-cache
Content-Encoding: gzip
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Origin: https://st.aircsgo.com
Set-Cookie: uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; Path=/; Domain=st.aircsgo.com
Vary: Accept-Encoding
X-Frame-Options: DENY
X-Proxy-Hostname: steam-session-cluster-6c6fc676d6-46thk
traceId: eaac1cf3af17140878274945136d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/motiva_sans.css?v=-DH0xTYpnVe2&l=english

210.74.226.205

200

2.7 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/motiva_sans.css?v=-DH0xTYpnVe2&l=english
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
2.7 kB (2682 bytes)
Hash
f831f4c536299d57b63c0d0ead9c09f0
43f71d89a47bdd1869ff4d411f04357926d21be8
e2c41580fda72865b4c75053f974ee6c0f4ff7034f1c97fbd6d55a88e7fc55fe

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/shared/css/motiva_sans.css?v=-DH0xTYpnVe2&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:28 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 2682
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "-DH0xTYpnVe2"
Vary: Accept-Encoding
Cache-Control: public, max-age=4833217
Expires: Sat, 15 Jun 2024 14:13:46 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3b017136276090297764d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/buttons.css?v=PUJIfhtcQn7W&l=english

210.74.226.205

200

34 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/buttons.css?v=PUJIfhtcQn7W&l=english
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
ASCII text, with CRLF, LF line terminators
Size
34 kB (33754 bytes)
Hash
3d42487e1b5c427ed66f2be54948561b
450b970e36aeb1375844c48a412be7caf5d5c447
60a5b96dd853a80363de37ae72b72ceada056cf781cd9dd2ac74869030d6f76d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/shared/css/buttons.css?v=PUJIfhtcQn7W&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:28 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 33754
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "PUJIfhtcQn7W"
Vary: Accept-Encoding
Cache-Control: public, max-age=13387006
Expires: Sun, 22 Sep 2024 14:16:55 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ac17136276090221237d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/header.css?v=NFoCa4OkAxRb&l=english

210.74.226.205

200

13 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/header.css?v=NFoCa4OkAxRb&l=english
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (629), with CRLF line terminators
Size
13 kB (12764 bytes)
Hash
345a026b83a403145ba4bc5e12256354
cd76023c54c8e6dec853441088c388ca6a0bdecd
7585f3131ab2ebf7fd36a5a239f4b1089f9a70869099cb0f073c605941ace3fc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/css/skin_1/header.css?v=NFoCa4OkAxRb&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:28 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 12764
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "NFoCa4OkAxRb"
Vary: Accept-Encoding
Cache-Control: public, max-age=11695477
Expires: Tue, 03 Sep 2024 00:24:48 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ae17136276111467731d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/shared_responsive.css?v=sHIIcMzCffX6&l=english

210.74.226.205

200

19 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/shared_responsive.css?v=sHIIcMzCffX6&l=english
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (1667), with CRLF, LF line terminators
Size
19 kB (19096 bytes)
Hash
b0720870ccc27df5fa6d1669cc098251
8800fa19f2eca67bbdd0cde15ac5e300f0240382
ed913aa6f584d262be7eae0f789e88bcfd93bbaddd59a37a3fe39d6ee96880d5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/shared/css/shared_responsive.css?v=sHIIcMzCffX6&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:28 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 19096
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "sHIIcMzCffX6"
Vary: Accept-Encoding
Cache-Control: public, max-age=15550773
Expires: Sun, 20 Oct 2024 23:31:15 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3b017139163023076253d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/globalv2.css?v=PAcV2zMBzzSV&l=english

210.74.226.205

200

40 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/globalv2.css?v=PAcV2zMBzzSV&l=english
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (4009), with CRLF, LF line terminators
Size
40 kB (39562 bytes)
Hash
3c0715db3301cf349532fa80d8e7b2cc
972aa75768e81dfd5d52c0c5de148e2163dd4c3d
ceeb54d7faf219eaddfc96a4f88e85e8905b216f84419645312b45128d3c1792

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/css/globalv2.css?v=PAcV2zMBzzSV&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:29 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 39562
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "PAcV2zMBzzSV"
Vary: Accept-Encoding
Cache-Control: public, max-age=13417982
Expires: Sun, 22 Sep 2024 22:53:11 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3b017136276095637766d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/login.css?v=q2b2ZBI1X2Yj&l=english

210.74.226.205

200

18 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/login.css?v=q2b2ZBI1X2Yj&l=english
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
assembler source, ASCII text, with CRLF, LF line terminators
Size
18 kB (18015 bytes)
Hash
ab66f66412355f6623d31b87b391e4a3
071daed245dba7d1ee2dfe990ff3d36876fff43b
fee753fb2578225fc36d43fcd266a52371e723ab45321de9ce473c89847f2df3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/shared/css/login.css?v=q2b2ZBI1X2Yj&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:29 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 18015
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "q2b2ZBI1X2Yj"
Vary: Accept-Encoding
Cache-Control: public, max-age=13907919
Expires: Thu, 03 Oct 2024 20:33:46 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3b017140797071337667d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/home.css?v=pTH-Ya7jG3VB&l=english

210.74.226.205

200

15 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/home.css?v=pTH-Ya7jG3VB&l=english
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
ASCII text, with CRLF, LF line terminators
Size
15 kB (14878 bytes)
Hash
a531fe61aee31b7541223b0191cada79
ab7bdf44b91e067ac02378dbeb9380cb1618d878
0d79433fbf1fd92a6010b9af93e8da20774483c2b79efaedc8fed3782c9239d2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/css/skin_1/home.css?v=pTH-Ya7jG3VB&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:29 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 14878
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "pTH-Ya7jG3VB"
Vary: Accept-Encoding
Cache-Control: public, max-age=13444738
Expires: Thu, 26 Sep 2024 12:58:46 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3af17139117881931576d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/prototype-1.7.js?v=.55t44gwuwgvw

210.74.226.205

200

169 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/prototype-1.7.js?v=.55t44gwuwgvw
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
169 kB (169399 bytes)
Hash
6a39e0b509fecb928d47b8a2643fed2a
f67fa6cb1d09963d10ba117d6553c8e7d5bc7863
d8bdea7fff893dbdbeaf6c2affec091a77483b9ec10e7958486bc3b6cc170c96

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/prototype-1.7.js?v=.55t44gwuwgvw HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:29 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 169399
Connection: keep-alive
Last-Modified: Fri, 05 Jan 2018 01:34:51 GMT
ETag: ".55t44gwuwgvw"
Vary: Accept-Encoding
Cache-Control: public, max-age=8628697
Expires: Mon, 29 Jul 2024 12:31:47 GMT
Content-Disposition: inline;filename=f.txt
traceId: 1b251adc-b4ac-4fee-901c-14096e6a8ddc
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0

210.74.226.205

200

16 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
16 kB (16087 bytes)
Hash
72938851e7c2ef7b63299eba0c6752cb
b75196bd3a6f9f4dfc1bbf5e43e96874bcd9ce4e
e2d4e0e1d3e162fdc815f16dfff9ae9b0a967949f0f3ae371f947d730a3f0661

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0 HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:29 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 16087
Connection: keep-alive
Last-Modified: Tue, 22 Mar 2022 23:23:42 GMT
ETag: ".zYHOpI1L3Rt0"
Vary: Accept-Encoding
Cache-Control: public, max-age=5784240
Expires: Wed, 26 Jun 2024 14:24:11 GMT
Content-Disposition: inline;filename=f.txt
traceId: d2654854-3e80-4571-bc0e-b72a12aa87e7
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/scriptaculous/_combined.js?v=OeNIgrpEF8tL&l=english&load=effects,controls,slider,dragdrop

210.74.226.205

200

122 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/scriptaculous/_combined.js?v=OeNIgrpEF8tL&l=english&load=effects,controls,slider,dragdrop
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
122 kB (122171 bytes)
Hash
39e34882ba4417cb4b1b84916dabb770
0d0ca081fb60c8aad337091bafcbe84f966c38b0
da708635da162ea493874627775c3520a42145b79c73bf787b5113bf87c0b27c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/scriptaculous/_combined.js?v=OeNIgrpEF8tL&l=english&load=effects,controls,slider,dragdrop HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:29 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 122171
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "OeNIgrpEF8tL"
Vary: Accept-Encoding
Cache-Control: public, max-age=5176843
Expires: Wed, 19 Jun 2024 13:40:53 GMT
Content-Disposition: inline;filename=f.txt
traceId: 2e618821-12a6-43dc-aa60-6551ebf28b91
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/shared_global.js?v=1_BxDGVvfXwv&l=english

210.74.226.205

200

154 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/shared_global.js?v=1_BxDGVvfXwv&l=english
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (2642), with CRLF line terminators
Size
154 kB (154429 bytes)
Hash
0a63e53efda5f9cbeb2f30aede57b074
b07356680c833577f61c5e393f76c292c6e3fd38
1ea50d98ff15f2b9431415858e88be952658f4b943829f6223ad0e42f058c79b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/shared/javascript/shared_global.js?v=1_BxDGVvfXwv&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:29 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 154429
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "1_BxDGVvfXwv"
Vary: Accept-Encoding
Cache-Control: public, max-age=14626611
Expires: Sun, 06 Oct 2024 22:37:02 GMT
Content-Disposition: inline;filename=f.txt
traceId: 55774b9a-840d-4ec9-a52b-e2221a0673ef
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/shared_global.css?v=SPpMitTYp6ku&l=english

210.74.226.205

200

87 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/shared_global.css?v=SPpMitTYp6ku&l=english
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (1819), with CRLF, LF line terminators
Size
87 kB (87128 bytes)
Hash
48fa4c8ad4d8a7a92eaebdb95672b9b3
588360ab7833fc79333286df86626afec74957e6
9c0be6f47b381e31d7feeb42a035ca4b32ef2990c15724e589a74ec2d3293b1e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/shared/css/shared_global.css?v=SPpMitTYp6ku&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:29 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 87128
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "SPpMitTYp6ku"
Vary: Accept-Encoding
Cache-Control: public, max-age=14626638
Expires: Sun, 06 Oct 2024 22:37:27 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ac17136276093731240d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/global.js?v=B7Vsdo1okyaC&l=english

210.74.226.205

200

104 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/global.js?v=B7Vsdo1okyaC&l=english
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (9521), with CRLF line terminators
Size
104 kB (103580 bytes)
Hash
275016d406b60e0719ae064c52b3c996
24e3ae578404f9b758e3515a7df22aa4dccbadc3
637b2adb9363a48186d003315fd00e1f8aeef6a7711c3c2785cd193af956b1f6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/global.js?v=B7Vsdo1okyaC&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:29 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 103580
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "B7Vsdo1okyaC"
Vary: Accept-Encoding
Cache-Control: public, max-age=13417939
Expires: Sun, 22 Sep 2024 22:52:30 GMT
Content-Disposition: inline;filename=f.txt
traceId: ada33bb7-782e-4499-99b5-25accff330c4
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english

210.74.226.205

200

25 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Size
25 kB (24657 bytes)
Hash
a52bc800ab6e9df5a05a5153eea29ffb
8661643fcbc7498dd7317d100ec62d1c1c6886ff
57cfaf9b92c98541f769090cd0229a30013cea7cfafc18519ca654bfae29e14e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:29 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 24657
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "pSvIAKtunfWg"
Vary: Accept-Encoding
Cache-Control: public, max-age=12897552
Expires: Mon, 16 Sep 2024 22:19:24 GMT
Content-Disposition: inline;filename=f.txt
traceId: 495291d9-ab64-491a-8850-04dfebd4ddf6
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/applications/community/main.css?v=EyWBqDQS-6jg&l=english

210.74.226.205

200

120 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/applications/community/main.css?v=EyWBqDQS-6jg&l=english
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (26986), with CRLF, LF line terminators
Size
120 kB (120179 bytes)
Hash
132581a83412fba8e0fc7e66a84b6ffb
5586269078c874f74b513b2b6aa29ffd2fa8f57e
8ea529711fbd58d915bae3c1905b0676fe1464c2173620576a3e188273e502b0

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/css/applications/community/main.css?v=EyWBqDQS-6jg&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:30 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 120179
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "EyWBqDQS-6jg"
Vary: Accept-Encoding
Cache-Control: public, max-age=15550684
Expires: Sun, 20 Oct 2024 23:29:46 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ae17139163022066517d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/manifest.js?v=EL8POrEv0mo4&l=english

210.74.226.205

200

16 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/manifest.js?v=EL8POrEv0mo4&l=english
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (15579), with CRLF, LF line terminators
Size
16 kB (15747 bytes)
Hash
35b856e0906a2c42857273aa4a00da0d
142966cf9f6481597391a4b7783003d54b50f8f4
846f92ea33a2ab91d45abdbc1a54397ed4a791c8f90f01bd41c4c3b5172b6900

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/manifest.js?v=EL8POrEv0mo4&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:30 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 15747
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "EL8POrEv0mo4"
Vary: Accept-Encoding
Cache-Control: public, max-age=15551146
Expires: Tue, 22 Oct 2024 17:00:55 GMT
Content-Disposition: inline;filename=f.txt
traceId: db55836e-3505-491e-9918-63d37391aa0e
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/jquery-1.11.1.min.js?v=.isFTSRckeNhC

210.74.226.205

200

96 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/jquery-1.11.1.min.js?v=.isFTSRckeNhC
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32086), with CRLF line terminators
Size
96 kB (95790 bytes)
Hash
4dc834d16a0d219d5c2b8a5b814569e4
4fbe0563917d6f6289e4e1b4a0a8758e4e43bda9
91222f96f34735ebc88df208017e54d4329b9202e3e52367fb8b149698a1a5ef

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/jquery-1.11.1.min.js?v=.isFTSRckeNhC HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:29 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 95790
Connection: keep-alive
Last-Modified: Fri, 05 Jan 2018 01:34:51 GMT
ETag: ".isFTSRckeNhC"
Vary: Accept-Encoding
Cache-Control: public, max-age=6926818
Expires: Tue, 09 Jul 2024 19:47:09 GMT
Content-Disposition: inline;filename=f.txt
traceId: 50f44295-a273-4327-8e04-9aaa91f79016
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/login.js?v=0BCNfXbnL2BC&l=english

210.74.226.205

200

61 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/login.js?v=0BCNfXbnL2BC&l=english
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (24693), with CRLF line terminators
Size
61 kB (60910 bytes)
Hash
061d22797311f0da2709616827367d86
d07865262ef477ea7aa14ad8eef0ec9132cce34d
827e2962761ef1f0d8389b5efc67c15ebe1713a914a9aa71927b690f9c68330b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/shared/javascript/login.js?v=0BCNfXbnL2BC&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:29 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 60910
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "0BCNfXbnL2BC"
Vary: Accept-Encoding
Cache-Control: public, max-age=14828135
Expires: Mon, 14 Oct 2024 12:10:42 GMT
Content-Disposition: inline;filename=f.txt
traceId: e931773a-b7fd-4666-aa8e-def127bb908c
Strict-Transport-Security: max-age=15724800; includeSubDomains

community.akamai.steamstatic.com/public/shared/images/responsive/header_menu_hamburger.png

23.36.76.241

200 OK

3.8 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/responsive/header_menu_hamburger.png
IP
23.36.76.241:443
ASN
#20940 Akamai International B.V.

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
PNG image data, 244 x 212, 8-bit/color RGBA, non-interlaced
Size
3.8 kB (3777 bytes)
Hash
eabc76eb57feae44add7faead028521e
4e3e53938fad15661d2d046a868338841a95db19
fc9e6260a2706ae146282d77e67bc1b74688435f8912ab4c1932641eec28bffa

HTTP Headers

GET /public/shared/images/responsive/header_menu_hamburger.png HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 3777
Last-Modified: Fri, 05 Jan 2018 01:35:16 GMT
ETag: "5a4ed654-ec1"
Accept-Ranges: bytes
Date: Thu, 25 Apr 2024 23:30:30 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/images/responsive/logo_valve_footer.png

23.36.76.241

200 OK

1.8 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/responsive/logo_valve_footer.png
IP
23.36.76.241:443
ASN
#20940 Akamai International B.V.

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
PNG image data, 92 x 26, 8-bit/color RGBA, non-interlaced
Size
1.8 kB (1846 bytes)
Hash
574c350c7b23ae794d5276f8580e0838
235c7b35c3468f8915eca01f7abdb43d34079609
8b97ba0dac22fe6704c1f6d95fe79613f33017804f256abb9006df0442491787

HTTP Headers

GET /public/shared/images/responsive/logo_valve_footer.png HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 1846
Last-Modified: Fri, 05 Jan 2018 01:35:16 GMT
ETag: "5a4ed654-736"
Accept-Ranges: bytes
Date: Thu, 25 Apr 2024 23:30:30 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/images/skin_1/footerLogo_valve.png?v=1

23.36.76.241

200 OK

3.7 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/images/skin_1/footerLogo_valve.png?v=1
IP
23.36.76.241:443
ASN
#20940 Akamai International B.V.

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
PNG image data, 96 x 26, 8-bit/color RGBA, non-interlaced
Size
3.7 kB (3737 bytes)
Hash
1626f52addb7c56fe3679d82108c62e9
2b414092d66ecff528950093a655f755c3c7f3b5
ae9f6c61e25d15882bf57bde193d10d375bd315c9741cabda11d700fd1bb7dd1

HTTP Headers

GET /public/images/skin_1/footerLogo_valve.png?v=1 HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 3737
Last-Modified: Fri, 05 Jan 2018 01:34:51 GMT
ETag: "5a4ed63b-e99"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Thu, 25 Apr 2024 23:30:30 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/images/header/logo_steam.svg?t=962016

23.36.76.241

200 OK

1.7 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/header/logo_steam.svg?t=962016
IP
23.36.76.241:443
ASN
#20940 Akamai International B.V.

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
SVG Scalable Vector Graphics image
Size
1.7 kB (1736 bytes)
Hash
b7a7e43284e2ffe806ac1bc27c1f6a87
e8196489e2ae99ec6eb33995b5a3e108d6e44de0
c3a7c646a1305017f22423030cb5a12acc9f96b64013dcef7aeb80567b542cbb

HTTP Headers

GET /public/shared/images/header/logo_steam.svg?t=962016 HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/svg+xml
Last-Modified: Tue, 17 Nov 2020 23:34:54 GMT
ETag: "5fb45e1e-e64"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1736
Date: Thu, 25 Apr 2024 23:30:30 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/images/responsive/header_logo.png

23.36.76.241

200 OK

11 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/responsive/header_logo.png
IP
23.36.76.241:443
ASN
#20940 Akamai International B.V.

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
PNG image data, 744 x 171, 8-bit/color RGBA, non-interlaced
Size
11 kB (10863 bytes)
Hash
a4e79c73ee13cb25b60fc4b0ba1f690c
b690c31b2eb1b0eb085e91aaae7e79f03debe7c1
6cb869df089146c12efb5e9c968e911c314842624ba6f052a11346ac734cadc8

HTTP Headers

GET /public/shared/images/responsive/header_logo.png HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 10863
Last-Modified: Fri, 05 Jan 2018 01:35:16 GMT
ETag: "5a4ed654-2a6f"
Accept-Ranges: bytes
Date: Thu, 25 Apr 2024 23:30:30 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/images/header/btn_header_installsteam_download.png?v=1

23.36.76.241

200 OK

291 B

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/header/btn_header_installsteam_download.png?v=1
IP
23.36.76.241:443
ASN
#20940 Akamai International B.V.

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
PNG image data, 15 x 13, 8-bit/color RGBA, non-interlaced
Size
291 B (291 bytes)
Hash
a2796187c58c7e948159e37d6990ecc2
4209cd85add507247f9ce5a87a8c9095b54ee417
23341256db7f44b1f3811880fa2bae6b7748bbf6b62c544a162e38cf0d5c5082

HTTP Headers

GET /public/shared/images/header/btn_header_installsteam_download.png?v=1 HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 291
Last-Modified: Wed, 21 Mar 2018 00:07:17 GMT
ETag: "5ab1a235-123"
Accept-Ranges: bytes
Date: Thu, 25 Apr 2024 23:30:30 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Regular.ttf?v=4.015

23.36.76.241

200 OK

123 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Regular.ttf?v=4.015
IP
23.36.76.241:443
ASN
#20940 Akamai International B.V.

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 22 names, Macintosh, Copyright � 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansRegular4.015;Plau;MotivaSan
Size
123 kB (122684 bytes)
Hash
57613e143ff3dae10f282e84a066de28
88756cc8c6db645b5f20aa17b14feefb4411c25f
19b8db163bcc51732457efa40911b4a422f297ff3cd566467d87eab93cef0c14

HTTP Headers

GET /public/shared/fonts/MotivaSans-Regular.ttf?v=4.015 HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://st.aircsgo.com
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/octet-stream
Content-Length: 122684
Last-Modified: Tue, 28 Jul 2020 23:16:28 GMT
ETag: "5f20b1cc-1df3c"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Thu, 25 Apr 2024 23:30:30 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Medium.ttf?v=4.015

23.36.76.241

200 OK

124 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Medium.ttf?v=4.015
IP
23.36.76.241:443
ASN
#20940 Akamai International B.V.

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 24 names, Macintosh, Copyright � 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansMedium4.015;Plau;MotivaSans
Size
124 kB (124048 bytes)
Hash
2d64caa5ecbf5e42cbb766ca4d85e90e
147420abceb4a7fd7e486dddcfe68cda7ebb3a18
045b433f94502cfa873a39e72d616c73ec1b4c567b7ee0f847f442651683791f

HTTP Headers

GET /public/shared/fonts/MotivaSans-Medium.ttf?v=4.015 HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://st.aircsgo.com
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/octet-stream
Content-Length: 124048
Last-Modified: Tue, 28 Jul 2020 23:16:28 GMT
ETag: "5f20b1cc-1e490"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Thu, 25 Apr 2024 23:30:30 GMT
Connection: keep-alive

st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~b28b7af69.js?v=VGtvPLNviurP&l=english

210.74.226.205

200

927 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~b28b7af69.js?v=VGtvPLNviurP&l=english
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65368), with CRLF, LF line terminators
Size
927 kB (926675 bytes)
Hash
aaa2b4c9a67fb3338514be5552fa9203
8315a289e5509a42cc87ff670cf6d155f1bb44a6
1bde7c2c72c06b16f9c35712fc269da2ab6d6ca2b1dc8a50787c35f189933c0e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~b28b7af69.js?v=VGtvPLNviurP&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:30 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 926675
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "VGtvPLNviurP"
Vary: Accept-Encoding
Cache-Control: public, max-age=14626599
Expires: Sun, 06 Oct 2024 22:36:51 GMT
Content-Disposition: inline;filename=f.txt
traceId: acdb3cb6-1920-466b-a99e-772ae21ce919
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/main.js?v=c4UneKQJS7M3&l=english

210.74.226.205

200

588 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/main.js?v=c4UneKQJS7M3&l=english
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65368), with CRLF, LF line terminators
Size
588 kB (587803 bytes)
Hash
fc6617689197d4f7796e8a057de98244
2288e9052bb195bdf1fdbd63cdf09182b2f347ed
8b97e93a1f1e87bd51fde3483cb8aa88bae028b77a9e89516472f9978e23bb8c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/main.js?v=c4UneKQJS7M3&l=english HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:30 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 587803
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "c4UneKQJS7M3"
Vary: Accept-Encoding
Cache-Control: public, max-age=15550737
Expires: Sun, 20 Oct 2024 23:30:40 GMT
Content-Disposition: inline;filename=f.txt
traceId: 65e7c0d2-afb0-425f-86cf-d456528beb77
Strict-Transport-Security: max-age=15724800; includeSubDomains

community.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Black.ttf?v=4.015

23.36.76.241

200 OK

121 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Black.ttf?v=4.015
IP
23.36.76.241:443
ASN
#20940 Akamai International B.V.

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 24 names, Macintosh, Copyright � 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansBlack4.015;Plau;MotivaSans-
Size
121 kB (120816 bytes)
Hash
4f7c668ae0988bf759b831769bfd0335
280a11e29d10bb78d6a5b4a1f512bf3c05836e34
32d4c8dc451e11db315d047306feea0376fbdc3a77c0ab8f5a8ab154164734d1

HTTP Headers

GET /public/shared/fonts/MotivaSans-Black.ttf?v=4.015 HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://st.aircsgo.com
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/octet-stream
Content-Length: 120816
Last-Modified: Tue, 28 Jul 2020 23:16:27 GMT
ETag: "5f20b1cb-1d7f0"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Thu, 25 Apr 2024 23:30:31 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/images/joinsteam/new_login_bg_strong_mask.jpg

23.36.76.241

200 OK

124 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/joinsteam/new_login_bg_strong_mask.jpg
IP
23.36.76.241:443
ASN
#20940 Akamai International B.V.

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3
Size
124 kB (124529 bytes)
Hash
48b805d8fa321668db4ce8dfd96db5b9
e0ded2606559c8100ef544c1f1c704e878a29b92
9a75f8cc40bbe9c9499e7b2d3bab98a447685a361489357a111479517005c954

HTTP Headers

GET /public/shared/images/joinsteam/new_login_bg_strong_mask.jpg HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/jpeg
Content-Length: 124529
Last-Modified: Wed, 24 Aug 2022 00:07:59 GMT
ETag: "63056bdf-1e671"
Accept-Ranges: bytes
Date: Thu, 25 Apr 2024 23:30:31 GMT
Connection: keep-alive

st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/shared_english-json.js?contenthash=5ecf6a2294724519e96b

210.74.226.205

200

186 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/shared_english-json.js?contenthash=5ecf6a2294724519e96b
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65253), with CRLF, LF line terminators
Size
186 kB (186349 bytes)
Hash
4ff2db6f1547ca0a1f0334b98300af26
da73d11eab8701db977543717d5fc279fa9bb12a
70df8238fa0019c4c0dbf4eddc715eb05b0a195ce72ccde4d8f930855cfe88fb

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/shared_english-json.js?contenthash=5ecf6a2294724519e96b HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:31 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 23 Apr 2024 23:29:53 GMT
ETag: "2n42joPoAF7E"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=259153
Expires: Fri, 26 Apr 2024 23:31:10 GMT
Content-Disposition: inline;filename=f.txt
traceId: 882c7fe2-8133-4aa0-b879-79cf7b062d06
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/favicon.ico

210.74.226.205

200

39 kB

URL GET HTTP/1.1
st.aircsgo.com/favicon.ico
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel
Size
39 kB (38554 bytes)
Hash
231913fdebabcbe65f4b0052372bde56
553909d080e4f210b64dc73292f3a111d5a0781f
9f890a9debcdfccc339149a7943be9aff9e4c9203c2fa37d5671a5b2c88503ad

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; timezoneOffset=0,0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:31 GMT
Content-Type: image/x-icon
Content-Length: 38554
Connection: keep-alive
Last-Modified: Tue, 18 Sep 2018 23:32:59 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Method: *
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Origin: https://st.aircsgo.com
Access-Control-Expose-Headers: X-eresult,X-error_message
Cache-Control: public,max-age=86400
Expires: Fri, 22 Dec 2023 22:33:03 GMT
Origin: https://st.aircsgo.com
Set-Cookie: uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; Path=/; Domain=st.aircsgo.com
X-Proxy-Hostname: steam-session-cluster-6c6fc676d6-46thk
traceId: eaac1cf3ad17140878312727634d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/sales_english-json.js?contenthash=78c2664709aeddc975e5

210.74.226.205

200

172 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/sales_english-json.js?contenthash=78c2664709aeddc975e5
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (64901), with CRLF, LF line terminators
Size
172 kB (171845 bytes)
Hash
e099d2588434045a112d2d874b2fa43c
6aeb98a544e3e6a63e90cd7a1b16d616a4d84ea5
5ab7d9b773379ec8bb4514251830670c4c21b8bae4fc36766822b5b110ac386b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/sales_english-json.js?contenthash=78c2664709aeddc975e5 HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:31 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 171845
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 23:43:35 GMT
ETag: "U2Px6UXjBWDe"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=230055
Expires: Fri, 26 Apr 2024 09:18:56 GMT
Content-Disposition: inline;filename=f.txt
traceId: 33184c8b-3238-45d0-9c32-c498d5a7b911
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/main_english-json.js?contenthash=3c031c8e5ba8767bb473

210.74.226.205

200

217 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/main_english-json.js?contenthash=3c031c8e5ba8767bb473
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65355), with CRLF, LF line terminators
Size
217 kB (216961 bytes)
Hash
e0dd0bf97735f086cb20a509bad241d6
a7036a85fca0509570636fa43e7f22122985eac3
003cdeedbb65d2fffc9eae4d02a37317c8dbc764d0b9cdd0a0ea7e8c1a7dff24

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/main_english-json.js?contenthash=3c031c8e5ba8767bb473 HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:31 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 25 Apr 2024 17:01:34 GMT
ETag: "dIORcTAkNn8X"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=258425
Expires: Sun, 28 Apr 2024 17:02:32 GMT
Content-Disposition: inline;filename=f.txt
traceId: 11e9e79b-ecf3-4573-bd5e-c4710ec5c569
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~f036ce556.js?contenthash=4aeaa7f3e9a9fc232310

210.74.226.205

200

90 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~f036ce556.js?contenthash=4aeaa7f3e9a9fc232310
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65368), with CRLF, LF line terminators
Size
90 kB (90126 bytes)
Hash
00980fbe21d99d69334e7c3fdfd18e25
84cebab4a14e0db8465af1a88ccb0d38399cb3be
b41656f3ffaea7983c4735caae7cbee7f3ed324b48d271045fe959dd1a4343c1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~f036ce556.js?contenthash=4aeaa7f3e9a9fc232310 HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:32 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 90126
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 23:43:34 GMT
ETag: "zMcnvrKcq8yZ"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=235863
Expires: Fri, 26 Apr 2024 09:21:26 GMT
Content-Disposition: inline;filename=f.txt
traceId: fa58f4c2-2ab0-4804-bb45-3b40e00f24ae
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/applications/community/chunk~f036ce556.css?contenthash=65008c72e7e5586e0c2d

210.74.226.205

200

31 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/applications/community/chunk~f036ce556.css?contenthash=65008c72e7e5586e0c2d
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (19112), with CRLF, LF line terminators
Size
31 kB (30770 bytes)
Hash
668d9b56f55f6d79ddd295267b68518a
ad521277e7ba515feee28e4fb3cd62afdb6ca218
ddc12eff57a9e957968af6b2b8619545dd26f3fec3d85c4c607e5d0560fed7d5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/css/applications/community/chunk~f036ce556.css?contenthash=65008c72e7e5586e0c2d HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; timezoneOffset=0,0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:32 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 30770
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 23:43:35 GMT
ETag: "x8Yg4STls09_"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=235798
Expires: Fri, 26 Apr 2024 09:20:20 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3af17138874228701482d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/login.js?contenthash=3f5d4d1eea08fcdfe1a3

210.74.226.205

200

845 B

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/login.js?contenthash=3f5d4d1eea08fcdfe1a3
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (677), with CRLF, LF line terminators
Size
845 B (845 bytes)
Hash
11c26fd8c339b00d1ef9b8babfd04768
4800d5bb400d3e4c8b6aa6a9952e4c7a05d82375
913a32237f68d3f605a9ce8633b6e2c4db36c180af8c1f3adc117e0ea1580f35

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/login.js?contenthash=3f5d4d1eea08fcdfe1a3 HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:32 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 845
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 23:43:35 GMT
ETag: "34GAzMeymb_o"
Cache-Control: public, must-revalidate, max-age=43840
Expires: Fri, 26 Apr 2024 09:24:14 GMT
Content-Disposition: inline;filename=f.txt
traceId: 55143494-b0f4-4abc-948b-6e2f5f34823d
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/chunk~f036ce556.js?contenthash=2ce1adc8a382f77bdf57

210.74.226.205

200

89 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/chunk~f036ce556.js?contenthash=2ce1adc8a382f77bdf57
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65366), with CRLF, LF line terminators
Size
89 kB (88814 bytes)
Hash
f08ed755ce667d4afb0a2a95befde1d3
a479b356f3017d7bbe3955cacb73ac2320f134bf
c5895019e18a159f82c432c043ad7dea5235365a4026767f8fac7d76f4b25c76

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/chunk~f036ce556.js?contenthash=2ce1adc8a382f77bdf57 HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:32 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 88814
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 23:43:35 GMT
ETag: "sRCTFvr5PRbP"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=236034
Expires: Fri, 26 Apr 2024 09:24:16 GMT
Content-Disposition: inline;filename=f.txt
traceId: 06d88ea2-ec9f-4427-9955-022362a25ebf
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/chunk~906a41d8e.js?contenthash=bc65a674fca36dfbad5e

210.74.226.205

200

18 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/chunk~906a41d8e.js?contenthash=bc65a674fca36dfbad5e
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (17427), with CRLF, LF line terminators
Size
18 kB (17595 bytes)
Hash
cb6f54ce456e92e1ad708f342076b397
0e979d48ffc37e4981327e398480573e78f9443a
95be3d0fcac5633fc039aba02f42ea683c2da8a926c845e399e90ca19df43f94

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/chunk~906a41d8e.js?contenthash=bc65a674fca36dfbad5e HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:32 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 17595
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 23:43:35 GMT
ETag: "EMncs5O5KwPb"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=230127
Expires: Fri, 26 Apr 2024 09:20:13 GMT
Content-Disposition: inline;filename=f.txt
traceId: a14fbfc0-d2b6-460a-84a7-985f1150efdf
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/applications/community/login.css?contenthash=a66289e969ece5d1faad

210.74.226.205

200

229 B

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/css/applications/community/login.css?contenthash=a66289e969ece5d1faad
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
ASCII text, with CRLF, LF line terminators
Size
229 B (229 bytes)
Hash
765173ac8de1cce3cadf7aa1ab36cfc0
8e18b33836c896184f3707a99be446cd30e4bf59
4bc34175da3bcdbdfb64489ee946dd77beeee5505349243f12a44766dc5217af

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/css/applications/community/login.css?contenthash=a66289e969ece5d1faad HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; timezoneOffset=0,0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:32 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 229
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 23:43:34 GMT
ETag: "GrUtQabOSHsW"
Cache-Control: public, must-revalidate, max-age=43748
Expires: Fri, 26 Apr 2024 09:22:42 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3af17140796144227337d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/navevents.js?contenthash=637ad4060aaa08d3ae85

210.74.226.205

200

14 kB

URL GET HTTP/1.1
st.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/navevents.js?contenthash=637ad4060aaa08d3ae85
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (14143), with CRLF, LF line terminators
Size
14 kB (14311 bytes)
Hash
2d823c7e07736ed93735a205fde2567a
056181e2a7f57a7dc46d65e66189e8f44156afc9
f402cfc53c8a3924955d0de30f3d3a23f37ec72ca68292f00669be9dea3e61d6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/navevents.js?contenthash=637ad4060aaa08d3ae85 HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:32 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 14311
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 23:43:35 GMT
ETag: "MsgvU2O4ZYEo"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=230205
Expires: Fri, 26 Apr 2024 09:21:42 GMT
Content-Disposition: inline;filename=f.txt
traceId: 92e2b4d4-c74c-4af7-b65f-cccb65f2690e
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/steamlogin/jwt/ajaxrefresh

210.74.226.205

200

28 B

URL POST HTTP/1.1
st.aircsgo.com/steamlogin/jwt/ajaxrefresh
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JSON text data
Size
28 B (28 bytes)
Hash
b6eba0b6a257c7225bc3b8ce1a80d0ef
fdcf96d96483272ca0b622e917e581e5fd202c48
f3156716f54db738fbbf203495f9f0dae5de30bcf4c46855422f9525fea9752a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /steamlogin/jwt/ajaxrefresh HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------319511126338812413142706635587
Content-Length: 430
Origin: https://st.aircsgo.com
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; timezoneOffset=0,0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:32 GMT
Content-Type: application/json;charset=utf-8
Content-Length: 28
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Method: *
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Origin: https://st.aircsgo.com
Access-Control-Expose-Headers: X-eresult,X-error_message
Access-Control-Max-Age: 604800
Origin: https://st.aircsgo.com
Set-Cookie: ak_bmsc=0FCEACF1804C62E77144E2267830C410~000000000000000000000000000000~YAAQNSZzaL7kk82OAQAAbK2YFxeKwfZXJatWel0vICNtKQo+IF7vjAv2ZyXmcqdJp1qufvWf+KxxzlJhZrbcu/VGk6p1WjNABjjyF2G8sAUrr2TeRIXpmxic3YDPzY7A8hS4kc97ujdVXeEj+W+gIOirPV3NJrfRHaoS1tg1GngH9Fi2ELFRtdP/CtzRRh3X5NDP7kTdDTtlwp/emHG0n3UbMdtD0XaBfWsL7KUx50FYLUFRo8B+W6rTtLNpVAiv9W+JO3/4pBBrRtIJOZQB5j92M5Kg/qs1ybSIUSr/dQA11Frpm+WtDdocbRfjNu+6TISVclP6vTj4+vGk0GiJi9vVr5A2e11ZQyzp0+E0b0igGeqKwclxFjNyXwUwv198/xQ=; Domain=.steampowered.com; Path=/; Expires=Fri, 26 Apr 2024 01:30:32 GMT; Max-Age=7200; HttpOnly;Domain=st.aircsgo.com
uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; Path=/; Domain=st.aircsgo.com
Strict-Transport-Security: max-age=15724800; includeSubDomains
X-Proxy-Hostname: steam-session-cluster-6c6fc676d6-46thk
traceId: eaac1cf3af17140878326345157d0001

st.aircsgo.com/steamapi/IAuthenticationService/BeginAuthSessionViaQR/v1

210.74.226.205

200

85 B

URL POST HTTP/1.1
st.aircsgo.com/steamapi/IAuthenticationService/BeginAuthSessionViaQR/v1
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
data
Size
85 B (85 bytes)
Hash
688d2693539558eea2b21ae63718bfc2
91f0d7fac15f5192139da913f2fdadd7c4f79d6b
32e1512d55077d4daeae00a081c13558bf29e3e89e289f1378c71bdb3e3631db

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /steamapi/IAuthenticationService/BeginAuthSessionViaQR/v1 HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------292156636529703904671761441896
Content-Length: 307
Origin: https://st.aircsgo.com
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; timezoneOffset=0,0; ak_bmsc=0FCEACF1804C62E77144E2267830C410~000000000000000000000000000000~YAAQNSZzaL7kk82OAQAAbK2YFxeKwfZXJatWel0vICNtKQo+IF7vjAv2ZyXmcqdJp1qufvWf+KxxzlJhZrbcu/VGk6p1WjNABjjyF2G8sAUrr2TeRIXpmxic3YDPzY7A8hS4kc97ujdVXeEj+W+gIOirPV3NJrfRHaoS1tg1GngH9Fi2ELFRtdP/CtzRRh3X5NDP7kTdDTtlwp/emHG0n3UbMdtD0XaBfWsL7KUx50FYLUFRo8B+W6rTtLNpVAiv9W+JO3/4pBBrRtIJOZQB5j92M5Kg/qs1ybSIUSr/dQA11Frpm+WtDdocbRfjNu+6TISVclP6vTj4+vGk0GiJi9vVr5A2e11ZQyzp0+E0b0igGeqKwclxFjNyXwUwv198/xQ=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:33 GMT
Content-Type: application/octet-stream
Content-Length: 85
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Method: *
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Origin: https://st.aircsgo.com
Access-Control-Expose-Headers: X-eresult,X-error_message
Expires: Thu, 25 Apr 2024 23:30:33 GMT
Origin: https://st.aircsgo.com
Set-Cookie: uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; Path=/; Domain=st.aircsgo.com
Vary: Origin
X-eresult: 1
X-Proxy-Hostname: steam-session-cluster-6c6fc676d6-46thk
traceId: eaac1cf3ac17140878333816279d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/steamapi/IAuthenticationService/PollAuthSessionStatus/v1

210.74.226.205

200

2 B

URL POST HTTP/1.1
st.aircsgo.com/steamapi/IAuthenticationService/PollAuthSessionStatus/v1
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
data
Size
2 B (2 bytes)
Hash
e9f962233595f8a9eaceb6e5d490a15c
a3dfc0c77acade0ee48dcc73e795a597d0270a73
e4ab5012eff32a5171b3672b59d29950fe8b3dcb4d2dadf971ebbcbc2fbb0d41

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /steamapi/IAuthenticationService/PollAuthSessionStatus/v1 HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------13640523083010949111093973841
Content-Length: 229
Origin: https://st.aircsgo.com
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; timezoneOffset=0,0; ak_bmsc=0FCEACF1804C62E77144E2267830C410~000000000000000000000000000000~YAAQNSZzaL7kk82OAQAAbK2YFxeKwfZXJatWel0vICNtKQo+IF7vjAv2ZyXmcqdJp1qufvWf+KxxzlJhZrbcu/VGk6p1WjNABjjyF2G8sAUrr2TeRIXpmxic3YDPzY7A8hS4kc97ujdVXeEj+W+gIOirPV3NJrfRHaoS1tg1GngH9Fi2ELFRtdP/CtzRRh3X5NDP7kTdDTtlwp/emHG0n3UbMdtD0XaBfWsL7KUx50FYLUFRo8B+W6rTtLNpVAiv9W+JO3/4pBBrRtIJOZQB5j92M5Kg/qs1ybSIUSr/dQA11Frpm+WtDdocbRfjNu+6TISVclP6vTj4+vGk0GiJi9vVr5A2e11ZQyzp0+E0b0igGeqKwclxFjNyXwUwv198/xQ=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:39 GMT
Content-Type: application/octet-stream
Content-Length: 2
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Method: *
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Origin: https://st.aircsgo.com
Access-Control-Expose-Headers: X-eresult,X-error_message
Expires: Thu, 25 Apr 2024 23:30:39 GMT
Origin: https://st.aircsgo.com
Set-Cookie: uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; Path=/; Domain=st.aircsgo.com
Vary: Origin
X-eresult: 1
X-Proxy-Hostname: steam-session-cluster-6c6fc676d6-46thk
traceId: eaac1cf3ac17140878390676309d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/steamapi/IClientMetricsService/ReportClientError/v1

210.74.226.205

200

0 B

URL POST HTTP/1.1
st.aircsgo.com/steamapi/IClientMetricsService/ReportClientError/v1
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /steamapi/IClientMetricsService/ReportClientError/v1 HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------43608898122852130202072518575
Content-Length: 4249
Origin: https://st.aircsgo.com
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; timezoneOffset=0,0; ak_bmsc=0FCEACF1804C62E77144E2267830C410~000000000000000000000000000000~YAAQNSZzaL7kk82OAQAAbK2YFxeKwfZXJatWel0vICNtKQo+IF7vjAv2ZyXmcqdJp1qufvWf+KxxzlJhZrbcu/VGk6p1WjNABjjyF2G8sAUrr2TeRIXpmxic3YDPzY7A8hS4kc97ujdVXeEj+W+gIOirPV3NJrfRHaoS1tg1GngH9Fi2ELFRtdP/CtzRRh3X5NDP7kTdDTtlwp/emHG0n3UbMdtD0XaBfWsL7KUx50FYLUFRo8B+W6rTtLNpVAiv9W+JO3/4pBBrRtIJOZQB5j92M5Kg/qs1ybSIUSr/dQA11Frpm+WtDdocbRfjNu+6TISVclP6vTj4+vGk0GiJi9vVr5A2e11ZQyzp0+E0b0igGeqKwclxFjNyXwUwv198/xQ=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:41 GMT
Content-Type: application/json
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Method: *
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Origin: https://st.aircsgo.com
Access-Control-Expose-Headers: X-eresult,X-error_message
Cache-Control: max-age=0, no-cache, no-store
Expires: Thu, 25 Apr 2024 23:30:41 GMT
Origin: https://st.aircsgo.com
Pragma: no-cache
Set-Cookie: uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; Path=/; Domain=st.aircsgo.com
Vary: Origin
X-Proxy-Hostname: steam-session-cluster-6c6fc676d6-46thk
traceId: eaac1cf3ad17140878412857681d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/steamapi/IAuthenticationService/PollAuthSessionStatus/v1

210.74.226.205

200

2 B

URL POST HTTP/1.1
st.aircsgo.com/steamapi/IAuthenticationService/PollAuthSessionStatus/v1
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
data
Size
2 B (2 bytes)
Hash
e9f962233595f8a9eaceb6e5d490a15c
a3dfc0c77acade0ee48dcc73e795a597d0270a73
e4ab5012eff32a5171b3672b59d29950fe8b3dcb4d2dadf971ebbcbc2fbb0d41

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /steamapi/IAuthenticationService/PollAuthSessionStatus/v1 HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------378447563646123142894243068
Content-Length: 225
Origin: https://st.aircsgo.com
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; timezoneOffset=0,0; ak_bmsc=0FCEACF1804C62E77144E2267830C410~000000000000000000000000000000~YAAQNSZzaL7kk82OAQAAbK2YFxeKwfZXJatWel0vICNtKQo+IF7vjAv2ZyXmcqdJp1qufvWf+KxxzlJhZrbcu/VGk6p1WjNABjjyF2G8sAUrr2TeRIXpmxic3YDPzY7A8hS4kc97ujdVXeEj+W+gIOirPV3NJrfRHaoS1tg1GngH9Fi2ELFRtdP/CtzRRh3X5NDP7kTdDTtlwp/emHG0n3UbMdtD0XaBfWsL7KUx50FYLUFRo8B+W6rTtLNpVAiv9W+JO3/4pBBrRtIJOZQB5j92M5Kg/qs1ybSIUSr/dQA11Frpm+WtDdocbRfjNu+6TISVclP6vTj4+vGk0GiJi9vVr5A2e11ZQyzp0+E0b0igGeqKwclxFjNyXwUwv198/xQ=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:45 GMT
Content-Type: application/octet-stream
Content-Length: 2
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Method: *
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Origin: https://st.aircsgo.com
Access-Control-Expose-Headers: X-eresult,X-error_message
Expires: Thu, 25 Apr 2024 23:30:45 GMT
Origin: https://st.aircsgo.com
Set-Cookie: uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; Path=/; Domain=st.aircsgo.com
Vary: Origin
X-eresult: 1
X-Proxy-Hostname: steam-session-cluster-6c6fc676d6-46thk
traceId: eaac1cf3ac17140878447486332d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

st.aircsgo.com/steamapi/IAuthenticationService/PollAuthSessionStatus/v1

210.74.226.205

200

2 B

URL POST HTTP/1.1
st.aircsgo.com/steamapi/IAuthenticationService/PollAuthSessionStatus/v1
IP
210.74.226.205:443
ASN
#4812 China Telecom Group

Requested by
https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Certificate
IssuerDigiCert Inc
Subjectst.aircsgo.com
Fingerprint8E:BA:4D:98:E2:44:A9:DA:79:DE:48:AC:B5:B2:2D:44:5D:48:38:BC
ValiditySat, 20 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
data
Size
2 B (2 bytes)
Hash
e9f962233595f8a9eaceb6e5d490a15c
a3dfc0c77acade0ee48dcc73e795a597d0270a73
e4ab5012eff32a5171b3672b59d29950fe8b3dcb4d2dadf971ebbcbc2fbb0d41

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /steamapi/IAuthenticationService/PollAuthSessionStatus/v1 HTTP/1.1
Host: st.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------7835305013361399653506324944
Content-Length: 227
Origin: https://st.aircsgo.com
DNT: 1
Connection: keep-alive
Referer: https://st.aircsgo.com/login/home/?goto=%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2Flogin%2Fhome%2F%3Fgoto%3D%2Fmy%2Finventory%2F
Cookie: sessionid=94ca9c19448c703e384a798a; steamCountry=HK%7Cf4480314589c423dfc0ee4f8a12f33b4; uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; timezoneOffset=0,0; ak_bmsc=0FCEACF1804C62E77144E2267830C410~000000000000000000000000000000~YAAQNSZzaL7kk82OAQAAbK2YFxeKwfZXJatWel0vICNtKQo+IF7vjAv2ZyXmcqdJp1qufvWf+KxxzlJhZrbcu/VGk6p1WjNABjjyF2G8sAUrr2TeRIXpmxic3YDPzY7A8hS4kc97ujdVXeEj+W+gIOirPV3NJrfRHaoS1tg1GngH9Fi2ELFRtdP/CtzRRh3X5NDP7kTdDTtlwp/emHG0n3UbMdtD0XaBfWsL7KUx50FYLUFRo8B+W6rTtLNpVAiv9W+JO3/4pBBrRtIJOZQB5j92M5Kg/qs1ybSIUSr/dQA11Frpm+WtDdocbRfjNu+6TISVclP6vTj4+vGk0GiJi9vVr5A2e11ZQyzp0+E0b0igGeqKwclxFjNyXwUwv198/xQ=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 23:30:50 GMT
Content-Type: application/octet-stream
Content-Length: 2
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Method: *
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Origin: https://st.aircsgo.com
Access-Control-Expose-Headers: X-eresult,X-error_message
Expires: Thu, 25 Apr 2024 23:30:50 GMT
Origin: https://st.aircsgo.com
Set-Cookie: uid=e5400739-38c2-4d71-a23a-f44f71e8fcd6; Path=/; Domain=st.aircsgo.com
Vary: Origin
X-eresult: 1
X-Proxy-Hostname: steam-session-cluster-6c6fc676d6-46thk
traceId: eaac1cf3ad17140878504237716d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (28)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML