| gtm.steamproxy.cc/faqs/view/0A94-F308-34A5-1988 | 8.217.145.66 | | 20 B |
URL gtm.steamproxy.cc/faqs/view/0A94-F308-34A5-1988 IP8.217.145.66:0 ASN#45102 Alibaba US Technology Co., Ltd.
File typegzip compressed data, from Unix Hash7029066c27ac6f5ef18d660d5741979a 46c6643f07aa7f6bfe7118de926b86defc5087c4 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET /faqs/view/0A94-F308-34A5-1988 HTTP/1.1
Host: gtm.steamproxy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty/1.19.3.2
Date: Sat, 20 Apr 2024 05:11:20 GMT
Content-Type: text/html; charset=UTF-8
Location: https://gtm.steamproxy.cc/
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Encoding: gzip
Set-Cookie: sessionid=efb087fdf2c04ef281d1065a; Path=/; Secure; SameSite=None
steamCountry=HK%7C59ba68ac6481acc4fc4163df2c4ccae2; Path=/; Secure; HttpOnly; SameSite=None
Agent: MTcyLjE2LjE5My4yMDkK
x-proxy-agent: true
strict-transport-security: max-age=15724800; includeSubDomains
proxy: 1
access-control-allow-origin: *, *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
|
IP8.217.145.66:0 ASN#45102 Alibaba US Technology Co., Ltd.
File typeHTML document, Unicode text, UTF-8 text, with very long lines (2891), with CRLF, LF line terminators Hashf1af8131af1564b0d31a68a81d2665fe bce63276b5d6c3156038cd7c0cf492d39e4175ec c93683eaf9d03ca3b36a89b19af73a0000c014b422a9a70815ec34387e7de2d1
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: gtm.steamproxy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: sessionid=efb087fdf2c04ef281d1065a; steamCountry=HK%7C59ba68ac6481acc4fc4163df2c4ccae2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty/1.19.3.2
Date: Sat, 20 Apr 2024 05:11:20 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Set-Cookie: steamCountry=HK%7C23ff8c6ea6731b694ad6dcb52430e02b; Path=/; Secure; HttpOnly; SameSite=None
Agent: MTcyLjE2LjE5My4yMDkK
x-proxy-agent: true
strict-transport-security: max-age=15724800; includeSubDomains
proxy: 1
access-control-allow-origin: *, *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
|