Report - souq-deals.website/6uh4

Report Overview

Submitted URL
souq-deals.website/6uh4
IP
185.172.128.161
ASN
#216309 Tnsecurity Ltd
Submitted
2024-03-29 11:22:17
Access
public
Website Title
Steam, The Ultimate Online Game Platform
Final URL
steamcommunivy.com/gjft/738135
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
80

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
store.cloudflare.steamstatic.com	28379	2013-11-07	2020-06-20	2024-03-24	16 kB	1.6 MB	172.64.145.151
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-03-28	3.6 kB	230 kB	104.17.24.14
cdn.cloudflare.steamstatic.com	9505	2013-11-07	2020-06-12	2024-03-28	1.8 kB	7.2 kB	172.64.145.151
store.steampowered.com	6378	2000-08-09	2012-05-23	2024-03-25	460 B	470 B	2.18.173.58
steamcommunity.com	4728	2006-05-28	2014-03-11	2024-03-27	428 B	39 kB	92.123.205.241
souq-deals.website	unknown	unknown	No data	No data	1.2 kB	1.4 kB	185.172.128.161
steamcommunivy.com	unknown	unknown	No data	No data	21 kB	767 kB	188.114.96.1
code.jquery.com	634	2005-12-10	2012-05-21	2024-03-28	3.4 kB	915 kB	151.101.2.137
w.wallha.com	650007	2019-10-23	2020-09-15	2024-03-19	429 B	2.3 MB	172.67.165.198

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed
2024-03-29	medium	steamcommunivy.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (27)

	URL	Size	First Seen	Last Seen
	store.cloudflare.steamstatic.com/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0&_cdn=cloudflare	16 kB	2023-03-07	2024-04-28
Pretty URL store.cloudflare.steamstatic.com/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0&_cdn=cloudflare IP 172.64.145.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-04-28 08:01:30 Times Seen5138 Hash 72938851e7c2ef7b63299eba0c6752cb b75196bd3a6f9f4dfc1bbf5e43e96874bcd9ce4e e2d4e0e1d3e162fdc815f16dfff9ae9b0a967949f0f3ae371f947d730a3f0661 Loading...

	steamcommunivy.com/gjft/738135	25 B	2023-03-07	2024-04-27
Pretty URL steamcommunivy.com/gjft/738135 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:12:29 Last Seen2024-04-27 06:55:55 Times Seen217 Hash 9ed6fe4b6a4d8cfd17871d91d3a837f6 a6d5553eb937cb129e4042a52d316e683d15a2b7 544baa1691b99c9af31a94a33325971f6f91973af6aa95aff558b1757cf20cb1 Loading...

	unknown	34 B	2023-04-11	2024-04-29
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:16:40 Last Seen2024-04-29 04:53:34 Times Seen75386 Hash 572cb94037fffc2a0a53b465972e15f1 0d679b041a7c1ca45cc99e2d229fc2b86762838d 6487e4bdd0f51bbfd9105810a41755847fdae2c274e2fc325cd22356d7707e35 Loading...

	store.cloudflare.steamstatic.com/public/shared/javascript/shared_global.js?v=tbaNc6xLj9BJ&l=russian&_cdn=cloudflare	156 kB	2023-11-11	2024-04-26
Pretty URL store.cloudflare.steamstatic.com/public/shared/javascript/shared_global.js?v=tbaNc6xLj9BJ&l=russian&_cdn=cloudflare IP 172.64.145.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-11 13:55:42 Last Seen2024-04-26 16:19:02 Times Seen224 Hash b5b68d73ac4b8fd0498db8c581a258b5 7d2b1ed16aa03e211821490bc13fe04382affb29 d311cd1d0cb93a2b5b79542f81f205c8daf4fc8ac880c83048a0bbd43b3f4b87 Loading...

	store.cloudflare.steamstatic.com/public/javascript/about.js?v=T9HhtJ81mJgN&l=russian&_cdn=cloudflare	2.2 kB	2023-03-12	2024-04-26
Pretty URL store.cloudflare.steamstatic.com/public/javascript/about.js?v=T9HhtJ81mJgN&l=russian&_cdn=cloudflare IP 172.64.145.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:14:48 Last Seen2024-04-26 16:19:02 Times Seen232 Hash 4fd1e1b49f3598980dc2b260b66a89c0 818b65159e35ab980de9c00f24c0beeac7e3fdf8 83d8195aec4990c3ec59de990b2f0e703ff31054acdd73b1637254a7716bd5f6 Loading...

	code.jquery.com/ui/1.11.3/jquery-ui.js	470 kB	2023-03-07	2024-04-28
Pretty URL code.jquery.com/ui/1.11.3/jquery-ui.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:14 Last Seen2024-04-28 19:45:34 Times Seen2765 Hash c811575fd210af968e09caa681917b9b 0bf0ff43044448711b33453388c3a24d99e6cc9c d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e Loading...

	store.cloudflare.steamstatic.com/public/javascript/prototype-1.7.js?v=.a38iP7Khdmyy&_cdn=cloudflare	169 kB	2023-03-07	2024-04-28
Pretty URL store.cloudflare.steamstatic.com/public/javascript/prototype-1.7.js?v=.a38iP7Khdmyy&_cdn=cloudflare IP 172.64.145.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:12:12 Last Seen2024-04-28 08:01:30 Times Seen4521 Hash 6a39e0b509fecb928d47b8a2643fed2a f67fa6cb1d09963d10ba117d6553c8e7d5bc7863 d8bdea7fff893dbdbeaf6c2affec091a77483b9ec10e7958486bc3b6cc170c96 Loading...

	store.cloudflare.steamstatic.com/public/javascript/scriptaculous/_combined.js?v=Me1IBxzktiwk&l=russian&_cdn=cloudflare&load=effects,controls,slider	89 kB	2023-03-12	2024-04-27
Pretty URL store.cloudflare.steamstatic.com/public/javascript/scriptaculous/_combined.js?v=Me1IBxzktiwk&l=russian&_cdn=cloudflare&load=effects,controls,slider IP 172.64.145.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:14:48 Last Seen2024-04-27 06:55:57 Times Seen532 Hash 31ed48071ce4b62c24520c95bcde6026 c073152e6835fba2ded4cc215f3985266be23f2b 08b39451eabaca10cd735816cdc5af4a35b05fbb197e2082235b6e16be62dedb Loading...

	store.cloudflare.steamstatic.com/public/javascript/slick/slick.js?v=.UvbXNQdQm-AJ&_cdn=cloudflare	73 kB	2023-03-13	2024-04-26
Pretty URL store.cloudflare.steamstatic.com/public/javascript/slick/slick.js?v=.UvbXNQdQm-AJ&_cdn=cloudflare IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 04:03:05 Last Seen2024-04-26 16:19:02 Times Seen146 Hash 52f6d73507509be009949858d33e94a3 5ab9922460aa84d77db15b693d8a184b5b008736 6d593b2b5913eb962fb94ad4331a074bd8cb88fefc77bb7c9825528d59e1f8ff Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js	88 kB	2023-03-07	2024-04-29
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:34 Last Seen2024-04-29 01:31:51 Times Seen95975 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	steamcommunivy.com/gjft/738135	75 B	2023-03-07	2024-04-26
Pretty URL steamcommunivy.com/gjft/738135 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:12:29 Last Seen2024-04-26 16:19:02 Times Seen99 Hash d60201b35ae8412b49b0a0b27d1dbcfa de94e02f60e8ae015af7238c1b9f6c086bc08232 e54cf87f823e2c8970a4b8f581845648fefb486d143c9857e57e8345b0a45917 Loading...

	store.cloudflare.steamstatic.com/public/javascript/main.js?v=wZOkh5CBgIrx&l=russian&_cdn=cloudflare	89 kB	2023-10-25	2024-04-26
Pretty URL store.cloudflare.steamstatic.com/public/javascript/main.js?v=wZOkh5CBgIrx&l=russian&_cdn=cloudflare IP 172.64.145.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-25 08:19:16 Last Seen2024-04-26 16:19:02 Times Seen233 Hash c193a4879081808af1777d23a4fd6522 a7c51a41f766663d22488db3b1db7f148a927cca 8958e3ca5b7ac432f141d949267d8947b32d4afad535d2a89a231a159e65e19d Loading...

	store.cloudflare.steamstatic.com/public/javascript/dynamicstore.js?v=OzwSXx1UJWs8&l=russian&_cdn=cloudflare	91 kB	2023-12-02	2024-04-26
Pretty URL store.cloudflare.steamstatic.com/public/javascript/dynamicstore.js?v=OzwSXx1UJWs8&l=russian&_cdn=cloudflare IP 172.64.145.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-02 03:41:17 Last Seen2024-04-26 16:19:02 Times Seen197 Hash 3b3c125f1d54256b3c01baaf4b2f1c6a 3f03975a4fe8ce007ef16563abd59844c0ad063b 8aa5bf10bbaba1883e6100861d0938de7c10c0d42fe66cd9a0b5493f8b9e7fa0 Loading...

	store.cloudflare.steamstatic.com/public/javascript/rellax/rellax.min.js?v=.KbIxshHXB6Um&_cdn=cloudflare	3.5 kB	2023-03-12	2024-04-26
Pretty URL store.cloudflare.steamstatic.com/public/javascript/rellax/rellax.min.js?v=.KbIxshHXB6Um&_cdn=cloudflare IP 172.64.145.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:14:48 Last Seen2024-04-26 16:19:02 Times Seen138 Hash 29b231b211d707a52646e585521dcc54 adff2107efef3d36962f94b65082cbd0b60fbc44 8fc4cecbd9539e272b4c1fb717fa7543d24dd8eb01c2f77d50f75cfbbfbc179b Loading...

	steamcommunivy.com/gjft/738135	374 B	2023-03-12	2024-04-28
Pretty URL steamcommunivy.com/gjft/738135 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 09:45:05 Last Seen2024-04-28 08:01:27 Times Seen1206 Hash b70da133ca779ab3e43a34b27582022a 43c146ab15416cc77dadea9d17dbd69b4b001b4b 9b7266c903d26b60f47edbf7647ebe6fe6810e4e06c0cf06f1348944ee585b2c Loading...

	steamcommunivy.com/gjft/738135	521 B	2023-03-12	2024-04-28
Pretty URL steamcommunivy.com/gjft/738135 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 09:45:05 Last Seen2024-04-28 08:01:27 Times Seen1205 Hash 1ca437221076a602c053146ac451e9a2 605ca877765dcd8a7420d4e3df5a644f5468b5e7 1ce28f3f9525bda804d49ef59149ff51b079c28dfdee7a6b86107bcd0350538f Loading...

	store.cloudflare.steamstatic.com/public/shared/javascript/shared_responsive_adapter.js?v=cxQV9f417bc5&l=russian&_cdn=cloudflare	25 kB	2023-03-08	2024-04-26
Pretty URL store.cloudflare.steamstatic.com/public/shared/javascript/shared_responsive_adapter.js?v=cxQV9f417bc5&l=russian&_cdn=cloudflare IP 172.64.145.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:17 Last Seen2024-04-26 16:19:02 Times Seen1849 Hash 731415f5fe35edb73981f7f68a33c3ec 21f594588dae56c93d34c91d4e6f0ef059339050 fee9c5438f2b9c6cc0bceaba92e1e00c320981f0e51a0e5715d7059573b62f91 Loading...

	steamcommunivy.com/gjft/738135	193 B	2023-03-12	2024-04-27
Pretty URL steamcommunivy.com/gjft/738135 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 22:14:48 Last Seen2024-04-27 06:55:56 Times Seen81 Hash 1963c383374cfb9f888d9fd798209c8e 98f21d27b2276f1056ec4ff49dca6d466e4e4d25 22990fdb8a1b701dab07b7b11596e3c35fd95d091c2f38443dbe15d46f0242a1 Loading...

	steamcommunivy.com/gjft/738135	235 B	2023-03-12	2024-04-27
Pretty URL steamcommunivy.com/gjft/738135 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 22:14:48 Last Seen2024-04-27 06:55:56 Times Seen81 Hash 14df6e0501b0a9ccdc2d33d7e061c241 4043b920ae11182e7cc47c49496d00ef2bc6719f 68d66f45efa759b9f6656c223ef477d803eb8fdea773b1acd7f3308f2c85757f Loading...

	steamcommunivy.com/gjft/738135	114 B	2023-03-07	2024-04-28
Pretty URL steamcommunivy.com/gjft/738135 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:51 Last Seen2024-04-28 08:01:27 Times Seen1357 Hash 16f8c3f24c03dd22c268f120ecbb7d9c 0fc91d904a8d38ad4588344a0191af727fd09311 61c71b0ebf72ea0d8fc27d307870302ea163aa9bd344b3ba1402a2e894721925 Loading...

	store.cloudflare.steamstatic.com/public/shared/javascript/jquery-1.8.3.min.js?v=.TZ2NKhB-nliU&_cdn=cloudflare	94 kB	2023-03-07	2024-04-28
Pretty URL store.cloudflare.steamstatic.com/public/shared/javascript/jquery-1.8.3.min.js?v=.TZ2NKhB-nliU&_cdn=cloudflare IP 172.64.145.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:21 Last Seen2024-04-28 21:13:57 Times Seen7218 Hash e1288116312e4728f98923c79b034b67 8b6babff47b8a9793f37036fd1b1a3ad41d38423 ba6eda7945ab8d7e57b34cc5a3dd292fa2e4c60a5ced79236ecf1a9e0f0c2d32 Loading...

	steamcommunivy.com/gjft/738135	249 B	2023-03-07	2024-04-27
Pretty URL steamcommunivy.com/gjft/738135 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:12:29 Last Seen2024-04-27 06:55:56 Times Seen180 Hash 63696f3e5e9e187d5df9a52ad172a7cd 9c2b890bdfb523b6af50704ccbf6923bc839cdce 3008a4c9436a6181ddd7428a9315198d7e839db16ed87c82ed7cf2fcb74f8cef Loading...

	steamcommunivy.com/gjft/738135	295 B	2023-06-21	2024-04-28
Pretty URL steamcommunivy.com/gjft/738135 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-21 01:00:33 Last Seen2024-04-28 08:01:27 Times Seen1121 Hash 6004c14868a256e4cae4dec3db42e6d7 48b9c9cef4ebb49a77da2a00b57c3b2c9d86472b 2c550300a61671a67a72219fc89acad93ea8c8cb54d5468ec6f891eda7f30e96 Loading...

	steamcommunivy.com/gjft/738135	1.3 kB	2023-12-02	2024-04-26
Pretty URL steamcommunivy.com/gjft/738135 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-02 03:41:17 Last Seen2024-04-26 16:19:02 Times Seen56 Hash 11c50b8634a87a034070664fb4c7eb0e 44e3b500417425994105fe1d25a527046f8bebb6 a54933cd0576f5259c98ed9ffe8a7b3b40b1922f3f3540c783fe95d6d3e4e132 Loading...

	steamcommunivy.com/8fa427457bb35efbd8b581b77485a06dee9948269e0c/3bcb76db6a5f4d7807058f7ef785cf9aa2458f242bbf.js	320 kB	2023-06-26	2024-04-27
Pretty URL steamcommunivy.com/8fa427457bb35efbd8b581b77485a06dee9948269e0c/3bcb76db6a5f4d7807058f7ef785cf9aa2458f242bbf.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2023-06-26 22:50:50 Last Seen2024-04-27 09:53:38 Times Seen347 Hash 5329836a3d2496fbeed3a0c445567254 0eb8a0a3703bb88e68d9d8e6987cc75f07ecef35 5638af2be5b3f870b92758c6537349a737c7f218af3c99885856a47e1293d53a Loading...

	steamcommunivy.com/gjft/738135	679 B	2023-12-02	2024-04-26
Pretty URL steamcommunivy.com/gjft/738135 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-02 03:41:17 Last Seen2024-04-26 16:19:02 Times Seen57 Hash d7a216a01322434ec1e0a1e715249342 33b0755fa91de71315dfd4aac9ea633f87077999 ec74b3fe0b1224174d1724fd23854867e2feb2940ebf14f9f8c7a5524cf19f63 Loading...

	steamcommunivy.com/gjft/738135	0 B	2023-03-07	2024-04-29
Pretty URL steamcommunivy.com/gjft/738135 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-29 05:10:44 Times Seen37171493 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (97)

URL IP Response Size

souq-deals.website/6uh4

185.172.128.161

445 B

URL
souq-deals.website/6uh4
IP
185.172.128.161:0
ASN
#216309 Tnsecurity Ltd

File type
HTML document, Unicode text, UTF-8 text
Size
445 B (445 bytes)
Hash
03f9be3feba63fec847042a2a5179828
9d26032de85672f0f26d87ef8b5b88e83ac17a27
cee84ab922af848b01bd671e2531ba227ebea64c334eae5bb2dfc042091c91ce

HTTP Headers

GET /6uh4 HTTP/1.1
Host: souq-deals.website
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Fri, 29 Mar 2024 11:21:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: 8e34f3cdf=f3cdf7bb8583
X-Powered-By: PHP/7.2.30
Content-Encoding: gzip

souq-deals.website/6uh4

185.172.128.161

268 B

URL
souq-deals.website/6uh4
IP
185.172.128.161:0
ASN
#216309 Tnsecurity Ltd

File type
HTML document, ASCII text
Size
268 B (268 bytes)
Hash
1115c3b986a45aa186a0817cdd82c8cc
9b2ad9b88f64d88201fdd66d1159a1abb7c1265b
10d99003a4f8df856292f87733b068754a10f9e1902e642d7fbb4db78c6b94a8

HTTP Headers

GET /6uh4 HTTP/1.1
Host: souq-deals.website
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: 8e34f3cdf=f3cdf7bb8583
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Fri, 29 Mar 2024 11:21:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
X-Powered-By: PHP/7.2.30
Content-Encoding: gzip

store.cloudflare.steamstatic.com/public/shared/css/motiva_sans.css?v=2C1Oh9QFVTyK&l=russian&_cdn=cloudflare

172.64.145.151

200 OK

633 B

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/shared/css/motiva_sans.css?v=2C1Oh9QFVTyK&l=russian&_cdn=cloudflare
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
633 B (633 bytes)
Hash
d82d4e87d405553c8aa398e16659fbf8
6d046f98095ef625e5c81545e4b4faeaf1f2a45d
afb487cb0927509900a94f5fe65e9fa66c264a1524d21dd7afaa4c75386e2dd2

HTTP Headers

GET /public/shared/css/motiva_sans.css?v=2C1Oh9QFVTyK&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/css;charset=UTF-8
content-length: 633
cache-control: public,max-age=15552000
expires: Sat, 11 May 2024 05:48:13 GMT
etag: "2C1Oh9QFVTyK"
last-modified: Sun, 09 Sep 2001 01:46:40 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 11004862
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a71089556b7-OSL
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/javascript/scriptaculous/_combined.js?v=Me1IBxzktiwk&l=russian&_cdn=cloudflare&load=effects,controls,slider

172.64.145.151

200 OK

21 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/javascript/scriptaculous/_combined.js?v=Me1IBxzktiwk&l=russian&_cdn=cloudflare&load=effects,controls,slider
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF, CR line terminators
Size
21 kB (21242 bytes)
Hash
31ed48071ce4b62c24520c95bcde6026
c073152e6835fba2ded4cc215f3985266be23f2b
08b39451eabaca10cd735816cdc5af4a35b05fbb197e2082235b6e16be62dedb

HTTP Headers

GET /public/javascript/scriptaculous/_combined.js?v=Me1IBxzktiwk&l=russian&_cdn=cloudflare&load=effects,controls,slider HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/javascript;charset=UTF-8
content-length: 21242
cache-control: public,max-age=15552000
expires: Sun, 12 May 2024 04:17:01 GMT
etag: "Me1IBxzktiwk"
last-modified: Sun, 09 Sep 2001 01:46:40 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 10658526
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a71089956b7-OSL
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/shared/css/shared_responsive.css?v=CG8Em6e-Ozq3&l=russian&_cdn=cloudflare

172.64.145.151

200 OK

5.7 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/shared/css/shared_responsive.css?v=CG8Em6e-Ozq3&l=russian&_cdn=cloudflare
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1667), with CRLF, LF line terminators
Size
5.7 kB (5737 bytes)
Hash
086f049ba7be3b3ab7551f792e4cbce1
292c885b0515d7f2f96615284a7c1a4b8a48294a
b38fc1074ef68863c2841111b9e20d98ea0305c1e39308dc7ad3a6f3fd39117a

HTTP Headers

GET /public/shared/css/shared_responsive.css?v=CG8Em6e-Ozq3&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/css;charset=UTF-8
content-length: 5737
cache-control: public,max-age=15552000
expires: Sun, 12 May 2024 04:07:51 GMT
etag: "CG8Em6e-Ozq3"
last-modified: Sun, 09 Sep 2001 01:46:40 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 10906633
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a71089d56b7-OSL
X-Firefox-Spdy: h2

steamcommunivy.com/84f891a8bd2b537ed52e5d24211b7c51489f891a6831/0a86aaf2866e3d5a80fdd2f0b7a3aaa3dc12e19ad2ab.css

188.114.96.1

200 OK

22 kB

URL GET HTTP/3
steamcommunivy.com/84f891a8bd2b537ed52e5d24211b7c51489f891a6831/0a86aaf2866e3d5a80fdd2f0b7a3aaa3dc12e19ad2ab.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
ASCII text, with very long lines (4303), with CRLF line terminators
Size
22 kB (22445 bytes)
Hash
d75bc33f0e1f113e13918a1574bed89e
ce9524469a86d2cf429390d9a2b09151906f16f5
c2815908a70bff8204d9c9dc034dd649f3f560a90112b11ddd5e0e53583bd39c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /84f891a8bd2b537ed52e5d24211b7c51489f891a6831/0a86aaf2866e3d5a80fdd2f0b7a3aaa3dc12e19ad2ab.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/css
last-modified: Mon, 14 Feb 2022 14:17:56 GMT
etag: W/"620a6494-12d95"
x-country-code: RU
x-country-name: Russia
access-control-allow-headers: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1527
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=npKSkk4P8BjLwIRauceHPmc%2F6t6pYiY4tFNKQwc0xkzboVF0u6ctQumYm%2FG58%2FiEZRWszMzpezHg3uoQBg7l8DzIwq%2BdDaXM9LdP9xoLyHikUm%2BPwkZ8N%2FAy02MmLe69rdY3xrM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a708d9a5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

store.cloudflare.steamstatic.com/public/shared/javascript/shared_global.js?v=tbaNc6xLj9BJ&l=russian&_cdn=cloudflare

172.64.145.151

200 OK

38 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/shared/javascript/shared_global.js?v=tbaNc6xLj9BJ&l=russian&_cdn=cloudflare
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (4482), with CRLF line terminators
Size
38 kB (37953 bytes)
Hash
b5b68d73ac4b8fd0498db8c581a258b5
7d2b1ed16aa03e211821490bc13fe04382affb29
d311cd1d0cb93a2b5b79542f81f205c8daf4fc8ac880c83048a0bbd43b3f4b87

HTTP Headers

GET /public/shared/javascript/shared_global.js?v=tbaNc6xLj9BJ&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/javascript;charset=UTF-8
content-length: 37953
cache-control: public,max-age=15552000
expires: Wed, 08 May 2024 02:01:08 GMT
etag: "tbaNc6xLj9BJ"
last-modified: Sun, 09 Sep 2001 01:46:40 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 10728085
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7108a556b7-OSL
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/javascript/main.js?v=wZOkh5CBgIrx&l=russian&_cdn=cloudflare

172.64.145.151

200 OK

21 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/javascript/main.js?v=wZOkh5CBgIrx&l=russian&_cdn=cloudflare
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (536), with CRLF line terminators
Size
21 kB (20584 bytes)
Hash
c193a4879081808af1777d23a4fd6522
a7c51a41f766663d22488db3b1db7f148a927cca
8958e3ca5b7ac432f141d949267d8947b32d4afad535d2a89a231a159e65e19d

HTTP Headers

GET /public/javascript/main.js?v=wZOkh5CBgIrx&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/javascript;charset=UTF-8
content-length: 20584
cache-control: public,max-age=15552000
expires: Tue, 07 May 2024 01:56:32 GMT
etag: "wZOkh5CBgIrx"
last-modified: Sun, 09 Sep 2001 01:46:40 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 10734365
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7118b156b7-OSL
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/css/slick/slick.css?v=ZSVHTEnT3WNW&l=russian&_cdn=cloudflare

172.64.145.151

200 OK

567 B

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/css/slick/slick.css?v=ZSVHTEnT3WNW&l=russian&_cdn=cloudflare
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
567 B (567 bytes)
Hash
6525474c49d3dd63567ee19b0816f4e9
ea407feb9c8611f08fa9d27c51fd0c222271ec44
17cff7bc75a3cf19c7c3412c514b4c0bb651df34bd4ee6717c6bf1f920302506

HTTP Headers

GET /public/css/slick/slick.css?v=ZSVHTEnT3WNW&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/css;charset=UTF-8
content-length: 567
cache-control: public,max-age=15552000
expires: Mon, 29 Apr 2024 08:34:22 GMT
etag: "ZSVHTEnT3WNW"
last-modified: Sun, 09 Sep 2001 01:46:40 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 11069845
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a71089b56b7-OSL
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/javascript/dynamicstore.js?v=OzwSXx1UJWs8&l=russian&_cdn=cloudflare

172.64.145.151

200 OK

20 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/javascript/dynamicstore.js?v=OzwSXx1UJWs8&l=russian&_cdn=cloudflare
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Size
20 kB (20417 bytes)
Hash
3b3c125f1d54256b3c01baaf4b2f1c6a
3f03975a4fe8ce007ef16563abd59844c0ad063b
8aa5bf10bbaba1883e6100861d0938de7c10c0d42fe66cd9a0b5493f8b9e7fa0

HTTP Headers

GET /public/javascript/dynamicstore.js?v=OzwSXx1UJWs8&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/javascript;charset=UTF-8
content-length: 20417
cache-control: public,max-age=15552000
expires: Sun, 12 May 2024 02:18:34 GMT
etag: "OzwSXx1UJWs8"
last-modified: Sun, 09 Sep 2001 01:46:40 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 8903657
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7118b456b7-OSL
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/javascript/prototype-1.7.js?v=.a38iP7Khdmyy&_cdn=cloudflare

172.64.145.151

200 OK

37 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/javascript/prototype-1.7.js?v=.a38iP7Khdmyy&_cdn=cloudflare
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
37 kB (37365 bytes)
Hash
6a39e0b509fecb928d47b8a2643fed2a
f67fa6cb1d09963d10ba117d6553c8e7d5bc7863
d8bdea7fff893dbdbeaf6c2affec091a77483b9ec10e7958486bc3b6cc170c96

HTTP Headers

GET /public/javascript/prototype-1.7.js?v=.a38iP7Khdmyy&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/javascript;charset=UTF-8
content-length: 37365
cache-control: public,max-age=15552000
expires: Wed, 08 May 2024 05:59:13 GMT
etag: ".a38iP7Khdmyy"
last-modified: Wed, 28 Jun 2023 04:07:21 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 11078004
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7118ba56b7-OSL
X-Firefox-Spdy: h2

steamcommunivy.com/84f891a8bd2b537ed52e5d24211b7c51489f891a6831/0f48547ccbdacf78e7450e99722e2fed386f233cd0c2.css

188.114.96.1

200 OK

39 kB

URL GET HTTP/3
steamcommunivy.com/84f891a8bd2b537ed52e5d24211b7c51489f891a6831/0f48547ccbdacf78e7450e99722e2fed386f233cd0c2.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
assembler source, ASCII text, with very long lines (1679), with CRLF line terminators
Size
39 kB (39178 bytes)
Hash
76b1bdbafa76a16eb077711e0852240f
4eeaffc1d6645d958efdf93b127bd345134bdee0
e72bfd5b2451298de330b65ffbf950c8f830c5d373435f26fce733e1264bef5d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /84f891a8bd2b537ed52e5d24211b7c51489f891a6831/0f48547ccbdacf78e7450e99722e2fed386f233cd0c2.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/css
last-modified: Sat, 04 Jun 2022 16:46:02 GMT
etag: W/"629b8c4a-510d"
x-country-code: RU
x-country-name: Russia
access-control-allow-headers: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1527
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XhY%2FON4PmQOevmCF4Msdas7tx9%2BUQSLqz2MhiyuWPLnB0%2FaPIueLB91jVlSwTocwFQEm8q5OKwnm1sHRruVtw4OmjJX8mQ7j7wL%2FwBV0JFbSv%2FOVGyrd%2F0XzZW8IjUXpLOfVUyk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a708d995685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

store.cloudflare.steamstatic.com/public/javascript/about.js?v=T9HhtJ81mJgN&l=russian&_cdn=cloudflare

172.64.145.151

200 OK

790 B

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/javascript/about.js?v=T9HhtJ81mJgN&l=russian&_cdn=cloudflare
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
790 B (790 bytes)
Hash
4fd1e1b49f3598980dc2b260b66a89c0
818b65159e35ab980de9c00f24c0beeac7e3fdf8
83d8195aec4990c3ec59de990b2f0e703ff31054acdd73b1637254a7716bd5f6

HTTP Headers

GET /public/javascript/about.js?v=T9HhtJ81mJgN&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/javascript;charset=UTF-8
content-length: 790
cache-control: public,max-age=15552000
expires: Fri, 10 May 2024 07:27:42 GMT
etag: "T9HhtJ81mJgN"
last-modified: Sun, 09 Sep 2001 01:46:40 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 10809852
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7128c256b7-OSL
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/shared/css/shared_global.css?v=7sR4EhV3nKzm&l=russian&_cdn=cloudflare

172.64.145.151

200 OK

18 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/shared/css/shared_global.css?v=7sR4EhV3nKzm&l=russian&_cdn=cloudflare
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1819), with CRLF, LF line terminators
Size
18 kB (18080 bytes)
Hash
eec4781215779cace6715b398d0e46c9
b978d94a9efe76d90f17809ab648f378eb66197f
64f61829703eca976c04cf194765a87c5a718e98597df2cb3eae9cf3150e572e

HTTP Headers

GET /public/shared/css/shared_global.css?v=7sR4EhV3nKzm&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/css;charset=UTF-8
content-length: 18080
cache-control: public,max-age=15552000
expires: Sun, 05 May 2024 23:38:49 GMT
etag: "7sR4EhV3nKzm"
last-modified: Sun, 09 Sep 2001 01:46:40 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 11085186
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7128c456b7-OSL
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/shared/javascript/shared_responsive_adapter.js?v=cxQV9f417bc5&l=russian&_cdn=cloudflare

172.64.145.151

200 OK

6.4 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/shared/javascript/shared_responsive_adapter.js?v=cxQV9f417bc5&l=russian&_cdn=cloudflare
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Size
6.4 kB (6392 bytes)
Hash
731415f5fe35edb73981f7f68a33c3ec
21f594588dae56c93d34c91d4e6f0ef059339050
fee9c5438f2b9c6cc0bceaba92e1e00c320981f0e51a0e5715d7059573b62f91

HTTP Headers

GET /public/shared/javascript/shared_responsive_adapter.js?v=cxQV9f417bc5&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/javascript;charset=UTF-8
content-length: 6392
cache-control: public,max-age=15552000
expires: Sun, 12 May 2024 08:03:25 GMT
etag: "cxQV9f417bc5"
last-modified: Sun, 09 Sep 2001 01:46:40 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 10902259
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a71590256b7-OSL
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/shared/css/buttons.css?v=hFJKQ6HV7IKT&l=russian&_cdn=cloudflare

172.64.145.151

200 OK

3.5 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/shared/css/buttons.css?v=hFJKQ6HV7IKT&l=russian&_cdn=cloudflare
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
ASCII text, with CRLF, LF line terminators
Size
3.5 kB (3533 bytes)
Hash
84524a43a1d5ec8293a89bb6999e2f70
ea924893c61b252ce6cdb36cdefae34475d4078c
8163d25cb71da281079b36fcde6d9f6846ff1e9d70112bbe328cae5ffb05f2bc

HTTP Headers

GET /public/shared/css/buttons.css?v=hFJKQ6HV7IKT&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/css;charset=UTF-8
content-length: 3533
cache-control: public,max-age=15552000
expires: Mon, 06 May 2024 08:40:01 GMT
etag: "hFJKQ6HV7IKT"
last-modified: Sun, 09 Sep 2001 01:46:40 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 11004862
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7158ff56b7-OSL
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/css/promo/newstore2016.css?v=zveyQLrdu9JU&l=russian&_cdn=cloudflare

172.64.145.151

200 OK

1.3 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/css/promo/newstore2016.css?v=zveyQLrdu9JU&l=russian&_cdn=cloudflare
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
ASCII text, with CRLF, LF line terminators
Size
1.3 kB (1336 bytes)
Hash
cef7b240baddbbd25489ebd7ceee20a3
ceaa1258aa0e92362c79216f474f57db00178a0e
1055ab19fc7dd62ff9b62b078e97586b6485315bf0d4ca41ec1cd9684c9bdf33

HTTP Headers

GET /public/css/promo/newstore2016.css?v=zveyQLrdu9JU&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/css;charset=UTF-8
content-length: 1336
cache-control: public,max-age=15552000
expires: Mon, 13 May 2024 08:04:13 GMT
etag: "zveyQLrdu9JU"
last-modified: Sun, 09 Sep 2001 01:46:40 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 1761340
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a71a95256b7-OSL
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/css/styles_about.css?v=KuY6YbIF4rkW&l=russian&_cdn=cloudflare

172.64.145.151

200 OK

5.4 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/css/styles_about.css?v=KuY6YbIF4rkW&l=russian&_cdn=cloudflare
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
5.4 kB (5371 bytes)
Hash
2ae63a61b205e2b91662db381b68e79f
5c217e7480b9b3825f5367536ca949fb668e4c83
c5262d351b071f637d56c9d81ad7b341c2c69bcf7716f88909d703203278a8e3

HTTP Headers

GET /public/css/styles_about.css?v=KuY6YbIF4rkW&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/css;charset=UTF-8
content-length: 5371
cache-control: public,max-age=15552000
expires: Sun, 05 May 2024 18:03:19 GMT
etag: "KuY6YbIF4rkW"
last-modified: Sun, 09 Sep 2001 01:46:40 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 10897845
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a71a95356b7-OSL
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/shared/images/responsive/logo_valve_footer.png

172.64.145.151

200 OK

1.8 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/shared/images/responsive/logo_valve_footer.png
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
PNG image data, 92 x 26, 8-bit/color RGBA, non-interlaced
Size
1.8 kB (1846 bytes)
Hash
574c350c7b23ae794d5276f8580e0838
235c7b35c3468f8915eca01f7abdb43d34079609
8b97ba0dac22fe6704c1f6d95fe79613f33017804f256abb9006df0442491787

HTTP Headers

GET /public/shared/images/responsive/logo_valve_footer.png HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: image/png
content-length: 1846
last-modified: Wed, 28 Jun 2023 04:07:12 GMT
etag: "649bb1f0-736"
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 4367
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a71f9a556b7-OSL
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/shared/images/responsive/header_logo.png

172.64.145.151

200 OK

11 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/shared/images/responsive/header_logo.png
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
PNG image data, 744 x 171, 8-bit/color RGBA, non-interlaced
Size
11 kB (10863 bytes)
Hash
a4e79c73ee13cb25b60fc4b0ba1f690c
b690c31b2eb1b0eb085e91aaae7e79f03debe7c1
6cb869df089146c12efb5e9c968e911c314842624ba6f052a11346ac734cadc8

HTTP Headers

GET /public/shared/images/responsive/header_logo.png HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: image/png
content-length: 10863
last-modified: Wed, 28 Jun 2023 04:07:12 GMT
etag: "649bb1f0-2a6f"
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 4546
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a71f9a956b7-OSL
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/shared/images/responsive/header_menu_hamburger.png

172.64.145.151

200 OK

3.8 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/shared/images/responsive/header_menu_hamburger.png
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
PNG image data, 244 x 212, 8-bit/color RGBA, non-interlaced
Size
3.8 kB (3777 bytes)
Hash
eabc76eb57feae44add7faead028521e
4e3e53938fad15661d2d046a868338841a95db19
fc9e6260a2706ae146282d77e67bc1b74688435f8912ab4c1932641eec28bffa

HTTP Headers

GET /public/shared/images/responsive/header_menu_hamburger.png HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: image/png
content-length: 3777
last-modified: Wed, 28 Jun 2023 04:07:12 GMT
etag: "649bb1f0-ec1"
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 4367
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a71f9a756b7-OSL
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/images/gift/steamcards_cards_02.png

172.64.145.151

200 OK

499 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/images/gift/steamcards_cards_02.png
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
PNG image data, 558 x 575, 8-bit/color RGBA, non-interlaced
Size
499 kB (498627 bytes)
Hash
e289838f7a141a36e9751fd49200cba6
51773b7c2ee543281e49f3c9ee33a21586234b2f
1b742f628cbe7bf577c82994d01f4a25312c3ba38e01232197f8b282fc48c833

HTTP Headers

GET /public/images/gift/steamcards_cards_02.png HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: image/png
content-length: 498627
last-modified: Wed, 28 Jun 2023 04:07:18 GMT
etag: "649bb1f6-79bc3"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
age: 2892
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7239f356b7-OSL
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js

104.17.24.14

200 OK

28 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
28 kB (27748 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

HTTP Headers

GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 740279
expires: Wed, 19 Mar 2025 11:21:46 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HfNTw20yOIzZnu2Uc06cvYHhDRQcTc4my8Afu%2Fl5TWZFRiQb1urcCsBg4r4P4z8WmQEedhp6EzWjLB22RYOEytIucZhJAmfaA1roKZiYLp%2BDZMYoiRCWJirVztmcMi%2F42tP5A3QK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86bf7a72987c56c4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

code.jquery.com/ui/1.11.3/jquery-ui.js

151.101.2.137

200 OK

114 kB

URL GET HTTP/2
code.jquery.com/ui/1.11.3/jquery-ui.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (547)
Size
114 kB (113814 bytes)
Hash
c811575fd210af968e09caa681917b9b
0bf0ff43044448711b33453388c3a24d99e6cc9c
d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e

HTTP Headers

GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 29 Mar 2024 11:21:46 GMT
age: 14175307
x-served-by: cache-lga21958-LGA, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 2697, 216
x-timer: S1711711307.627128,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/css/v6/store.css?v=5_pmjscCAXNy&l=russian&_cdn=cloudflare

172.64.145.151

200 OK

31 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/css/v6/store.css?v=5_pmjscCAXNy&l=russian&_cdn=cloudflare
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
ASCII text, with CRLF, LF line terminators
Size
31 kB (30803 bytes)
Hash
47187c40fe0f4f63ee79376f820fa823
b33dc605ea01082b08fc308908b82b7819cb72c4
c8bdbfa0148530fccd9da95225c9a999c1e3e7785ed4e4b0a0c39e106a19917b

HTTP Headers

GET /public/css/v6/store.css?v=5_pmjscCAXNy&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/css;charset=UTF-8
content-length: 30803
cache-control: public,max-age=0,must-revalidate
expires: Sun, 09 Sep 2001 01:46:40 GMT
etag: "Rxh8QP4PT2Pu"
last-modified: Sun, 12 Apr 1970 19:04:42 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a71590056b7-OSL
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js

104.17.24.14

200 OK

28 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
28 kB (27748 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

HTTP Headers

GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 11:21:47 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 740280
expires: Wed, 19 Mar 2025 11:21:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fifrFTVwzXMlGMWetaLSEJT%2FZTS9pWfmuxtP0UIr9K5v3kzgW4yMpUMpyCkWG%2FjxkbVjqrSCOJb%2FSLu%2BjC4honTUQ64FkBUIPHZj8wi5MgolqwaRH2NOdTaxtq1OfyShEA82AsUx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86bf7a788a527131-OSL
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/1e6007a432299bbd75e40c29c8d15ec01302da2bfc77.css

188.114.96.1

404 Not Found

114 kB

URL GET HTTP/3
steamcommunivy.com/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/1e6007a432299bbd75e40c29c8d15ec01302da2bfc77.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
114 kB (113925 bytes)
Hash
1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/1e6007a432299bbd75e40c29c8d15ec01302da2bfc77.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 146
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H2QDrF8iq1ySTWx9ua5yLB1NZMT3RVFVt1Vefoox5G5UyXmH1pey1gqFuDGJQTnoY4iwJvNpl1uS1NE8biGAKVTE0ERE9oAQd1mzjiFDUStxeKRpgx6RcTtzBOTojWsyqwHSD4U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70adb35685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js

104.17.24.14

200 OK

28 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
28 kB (27748 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

HTTP Headers

GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 11:21:47 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 740280
expires: Wed, 19 Mar 2025 11:21:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TfbfFpZcQJutquGwH8tNw8oyr9vZx9nTgJu0U5w88rAXIA8QQxBdMd4eNxmeM8f0kh7HUfZLbrOdCR1Ovk4D5lN6gIObm6xEFwkIYmhFtKB1WpSJ7h1BRfizD%2F43n8xhv35Hld7C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86bf7a797b2b7131-OSL
alt-svc: h3=":443"; ma=86400

code.jquery.com/ui/1.11.3/jquery-ui.js

151.101.2.137

200 OK

114 kB

URL GET HTTP/2
code.jquery.com/ui/1.11.3/jquery-ui.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (547)
Size
114 kB (113814 bytes)
Hash
c811575fd210af968e09caa681917b9b
0bf0ff43044448711b33453388c3a24d99e6cc9c
d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e

HTTP Headers

GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 29 Mar 2024 11:21:47 GMT
age: 14175308
x-served-by: cache-lga21958-LGA, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 2697, 218
x-timer: S1711711308.806923,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2

steamcommunivy.com/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/e880501f476f5849c40acbd72c7366f982f4db8e5b16.css

188.114.96.1

404 Not Found

28 kB

URL GET HTTP/3
steamcommunivy.com/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/e880501f476f5849c40acbd72c7366f982f4db8e5b16.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
28 kB (27859 bytes)
Hash
1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/e880501f476f5849c40acbd72c7366f982f4db8e5b16.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 146
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y8%2BjdWynCIgL4Yc6Mzz9mf1PwOlq5glcpurSVUbkGYaeL4AhlvSBrJELubZCL551FuBOAIIzjC9HHMGIfm%2BkNIk6Cvnfunai5ewFrmu4OtkzCB0aMUIzfVJZZhlSoOAfW7V1Jd0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a709da65685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

code.jquery.com/ui/1.11.3/jquery-ui.js

151.101.2.137

200 OK

114 kB

URL GET HTTP/2
code.jquery.com/ui/1.11.3/jquery-ui.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (547)
Size
114 kB (113814 bytes)
Hash
c811575fd210af968e09caa681917b9b
0bf0ff43044448711b33453388c3a24d99e6cc9c
d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e

HTTP Headers

GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 29 Mar 2024 11:21:47 GMT
age: 14175309
x-served-by: cache-lga21958-LGA, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 2697, 219
x-timer: S1711711308.948254,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js

104.17.24.14

200 OK

28 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
28 kB (27748 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

HTTP Headers

GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 11:21:48 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 740281
expires: Wed, 19 Mar 2025 11:21:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BZ2iGT7%2BCkBb%2BobwAiHOfsXXr54MDIkq2mPevZQHONPqTe%2F5iG9O0VIfpc3lKMeUzjTGdVY6Dt9HGjnZu%2FNnC7840NksSe23m2bQgTv%2F9DzmXm255aeuHivr7X2Pt%2Fe58I%2BIbJO5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86bf7a7b4cf57131-OSL
alt-svc: h3=":443"; ma=86400

souq-deals.website/

185.172.128.161

110 B

URL
souq-deals.website/
IP
185.172.128.161:0
ASN
#216309 Tnsecurity Ltd

File type
HTML document, ASCII text, with CRLF line terminators
Size
110 B (110 bytes)
Hash
597ba0d4396e9c906225140ce907092c
28ae2ba65ccdb583d79f85b8cc9509fae697493b
ee1a27178227546d3dcc49e611a6d72e4f1c30080ee4493ae4085b58a49e28e6

HTTP Headers

GET / HTTP/1.1
Host: souq-deals.website
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: openresty
Date: Fri, 29 Mar 2024 11:21:48 GMT
Content-Type: text/html
Transfer-Encoding: chunked
X-Powered-By: PHP/7.2.30
Content-Encoding: gzip

code.jquery.com/ui/1.11.3/jquery-ui.js

151.101.2.137

200 OK

114 kB

URL GET HTTP/2
code.jquery.com/ui/1.11.3/jquery-ui.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (547)
Size
114 kB (113814 bytes)
Hash
c811575fd210af968e09caa681917b9b
0bf0ff43044448711b33453388c3a24d99e6cc9c
d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e

HTTP Headers

GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 29 Mar 2024 11:21:48 GMT
age: 14175309
x-served-by: cache-lga21958-LGA, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 2697, 220
x-timer: S1711711308.085252,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js

104.17.24.14

200 OK

28 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
28 kB (27748 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

HTTP Headers

GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 11:21:48 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 740281
expires: Wed, 19 Mar 2025 11:21:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sTJ1ul2HGHB1oIUFjU61q49l0QU5Wt5uBlBLUkWwTEft3vd24NvB6XpUIfip3lzF3z5MTaCLAfH38hQpvf6bTgbQ9mPzv1D09%2Bs779Gxe7H6pz1%2BN7VfA%2FkXONWGNXaiOf5BgxHM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86bf7a7c0da07131-OSL
alt-svc: h3=":443"; ma=86400

code.jquery.com/ui/1.11.3/jquery-ui.js

151.101.2.137

200 OK

114 kB

URL GET HTTP/2
code.jquery.com/ui/1.11.3/jquery-ui.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (547)
Size
114 kB (113814 bytes)
Hash
c811575fd210af968e09caa681917b9b
0bf0ff43044448711b33453388c3a24d99e6cc9c
d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e

HTTP Headers

GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 29 Mar 2024 11:21:48 GMT
age: 14175309
x-served-by: cache-lga21958-LGA, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 2697, 221
x-timer: S1711711308.205171,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js

104.17.24.14

200 OK

28 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
28 kB (27748 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

HTTP Headers

GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 11:21:48 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 740281
expires: Wed, 19 Mar 2025 11:21:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kST0E%2FFchxZ6l8f5gNK95vNnrplIL%2FxHDxhEajOiua05XszkKWCNqRJsEol%2Fq4jHFYYN%2F4kw3l1Jkm0q6BsAJsBR9fySO8KSmT5oHKLmcaKxGfZ5uFB2D7u01Hd8mCvPQt1w3AlE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86bf7a7d1e7e7131-OSL
alt-svc: h3=":443"; ma=86400

code.jquery.com/ui/1.11.3/jquery-ui.js

151.101.2.137

200 OK

114 kB

URL GET HTTP/2
code.jquery.com/ui/1.11.3/jquery-ui.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (547)
Size
114 kB (113814 bytes)
Hash
c811575fd210af968e09caa681917b9b
0bf0ff43044448711b33453388c3a24d99e6cc9c
d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e

HTTP Headers

GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 29 Mar 2024 11:21:48 GMT
age: 14175309
x-served-by: cache-lga21958-LGA, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 2697, 222
x-timer: S1711711308.375550,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js

104.17.24.14

200 OK

28 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
28 kB (27748 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

HTTP Headers

GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 11:21:48 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 740281
expires: Wed, 19 Mar 2025 11:21:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QaZ1LYTAbxq3h%2FjuSLI%2F0gXsFcHuURHBnvpJj5qfo4WjqpRgNgGniHhgZ0fErlQLc8HuemJ%2Bxjmupms%2B9luhkYJNa1%2FZS2HRmBuQ%2BjSyHz9%2BcKWETGMMpERZpE12cbZFY9Wpb8Zw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86bf7a7dcf127131-OSL
alt-svc: h3=":443"; ma=86400

code.jquery.com/ui/1.11.3/jquery-ui.js

151.101.2.137

200 OK

114 kB

URL GET HTTP/2
code.jquery.com/ui/1.11.3/jquery-ui.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (547)
Size
114 kB (113814 bytes)
Hash
c811575fd210af968e09caa681917b9b
0bf0ff43044448711b33453388c3a24d99e6cc9c
d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e

HTTP Headers

GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 29 Mar 2024 11:21:48 GMT
age: 14175309
x-served-by: cache-lga21958-LGA, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 2697, 223
x-timer: S1711711308.490120,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js

104.17.24.14

200 OK

28 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
28 kB (27748 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

HTTP Headers

GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 11:21:48 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 740281
expires: Wed, 19 Mar 2025 11:21:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DcQ0UpUOIVKVE%2FO4zU0sV0nPH7oCyf5xEoxez1rNy71xZ0LNC9KatfLw7fdi%2Bcpx6MaBxtUlTba9MnBYPyuwiwog5vk%2Bmr6LaRjmJ07lyz3%2F3N%2BPIpIkEfazKpv6%2BkM%2BFbUjRr3e"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86bf7a7e7f847131-OSL
alt-svc: h3=":443"; ma=86400

code.jquery.com/ui/1.11.3/jquery-ui.js

151.101.2.137

200 OK

114 kB

URL GET HTTP/2
code.jquery.com/ui/1.11.3/jquery-ui.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (547)
Size
114 kB (113814 bytes)
Hash
c811575fd210af968e09caa681917b9b
0bf0ff43044448711b33453388c3a24d99e6cc9c
d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e

HTTP Headers

GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 29 Mar 2024 11:21:48 GMT
age: 14175309
x-served-by: cache-lga21958-LGA, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 2697, 224
x-timer: S1711711309.595320,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/shared/images/header/btn_header_installsteam_download.png?v=1

172.64.145.151

200 OK

291 B

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/shared/images/header/btn_header_installsteam_download.png?v=1
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
PNG image data, 15 x 13, 8-bit/color RGBA, non-interlaced
Size
291 B (291 bytes)
Hash
a2796187c58c7e948159e37d6990ecc2
4209cd85add507247f9ce5a87a8c9095b54ee417
23341256db7f44b1f3811880fa2bae6b7748bbf6b62c544a162e38cf0d5c5082

HTTP Headers

GET /public/shared/images/header/btn_header_installsteam_download.png?v=1 HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://store.cloudflare.steamstatic.com/public/shared/css/shared_global.css?v=7sR4EhV3nKzm&l=russian&_cdn=cloudflare
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:48 GMT
content-type: image/png
content-length: 291
last-modified: Wed, 28 Jun 2023 04:07:11 GMT
etag: "649bb1ef-123"
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 4283
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7f7f3c56b7-OSL
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/shared/images/popups/btn_arrow_down_padded.png

172.64.145.151

200 OK

161 B

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/shared/images/popups/btn_arrow_down_padded.png
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
PNG image data, 19 x 12, 8-bit/color RGBA, non-interlaced
Size
161 B (161 bytes)
Hash
f2dae37acac6b9d5a91caf1885c2f7d0
5f80fdde9f702a1d7589bc5faf88c14066e26c32
93b1fbe4f6245b62bfd4c8c3347abe0fe67ed711315e59bfadaebc9873d8d9b5

HTTP Headers

GET /public/shared/images/popups/btn_arrow_down_padded.png HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://store.cloudflare.steamstatic.com/public/shared/css/shared_global.css?v=7sR4EhV3nKzm&l=russian&_cdn=cloudflare
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:48 GMT
content-type: image/png
content-length: 161
last-modified: Wed, 28 Jun 2023 04:07:12 GMT
etag: "649bb1f0-a1"
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 4643
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7f7f4056b7-OSL
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/javascript/rellax/rellax.min.js?v=.KbIxshHXB6Um&_cdn=cloudflare

172.64.145.151

126 kB

URL GET
store.cloudflare.steamstatic.com/public/javascript/rellax/rellax.min.js?v=.KbIxshHXB6Um&_cdn=cloudflare
IP
172.64.145.151:0
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
126 kB (125508 bytes)
Hash
7b9e4f916a843d23be1b864960249792
f5b9c66d289a120268f8e66da2b6319b61377c9f
85915ce7e0e7764e0e8f364ceff306acf42001644329bd17bd4b7eb06e560ec3

HTTP Headers

GET /public/javascript/rellax/rellax.min.js?v=.KbIxshHXB6Um&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=10368000
x-cache: MISS
last-modified: Fri, 29 Mar 2024 08:31:51 GMT
cf-cache-status: HIT
age: 5707
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a71590156b7-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Thin.ttf?v=4.015

172.64.145.151

200 OK

119 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Thin.ttf?v=4.015
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 24 names, Macintosh, Copyright � 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansThin4.015;Plau;MotivaSans-T
Size
119 kB (118736 bytes)
Hash
ce6bda6643b662a41b9fb570bdf72f83
87bcf1d2820b476aaeaea91dc7f6dbedd73c1cb8
0adf4d5edbc82d28879fdfaaf7274ba05162ff8cbbda816d69ed52f1dae547f6

HTTP Headers

GET /public/shared/fonts/MotivaSans-Thin.ttf?v=4.015 HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://steamcommunivy.com
DNT: 1
Connection: keep-alive
Referer: https://store.cloudflare.steamstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:48 GMT
content-type: application/octet-stream
content-length: 118736
last-modified: Wed, 28 Jun 2023 04:07:10 GMT
etag: "649bb1ee-1cfd0"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
age: 2893
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7f9f6756b7-OSL
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Bold.ttf?v=4.015

172.64.145.151

200 OK

124 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Bold.ttf?v=4.015
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 22 names, Macintosh, Copyright � 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansBold4.015;Plau;MotivaSans-B
Size
124 kB (123884 bytes)
Hash
6168553bef8c73ba623d6fe16b25e3e9
4a31273b6f37f1f39b855edd0b764ec1b7b051e0
d5692b785e18340807d75f1a969595bc8b1c408fb6fd63947775705e6d6baa66

HTTP Headers

GET /public/shared/fonts/MotivaSans-Bold.ttf?v=4.015 HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://steamcommunivy.com
DNT: 1
Connection: keep-alive
Referer: https://store.cloudflare.steamstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:48 GMT
content-type: application/octet-stream
content-length: 123884
last-modified: Wed, 28 Jun 2023 04:07:10 GMT
etag: "649bb1ee-1e3ec"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
age: 2893
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7faf7256b7-OSL
X-Firefox-Spdy: h2

steamcommunivy.com/bf46a5696d2e42abba3747503ffc32ab2c8bfa48dbaf/05ff1b818f92d0bc1c8ff2529fe2d5d6fbe530cbe14d.js

188.114.96.1

404 Not Found

123 kB

URL GET HTTP/3
steamcommunivy.com/bf46a5696d2e42abba3747503ffc32ab2c8bfa48dbaf/05ff1b818f92d0bc1c8ff2529fe2d5d6fbe530cbe14d.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
123 kB (122771 bytes)
Hash
1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bf46a5696d2e42abba3747503ffc32ab2c8bfa48dbaf/05ff1b818f92d0bc1c8ff2529fe2d5d6fbe530cbe14d.js HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Cookie: timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:47 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mpEGL8bSTfmWS9gqmo7I7m8tpWu700YG0GQbqE1jcfaTiZM5RLYXVD3AMcx%2F9ZnvGYNLp%2FUArtgpPLvUW4xfW%2FmI8viETkBPQUhaxfTlxcPJF%2BmWwZ%2BCicroKiJtsJS%2B3qTLmgE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7a5df65685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

store.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Regular.ttf?v=4.015

172.64.145.151

200 OK

123 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Regular.ttf?v=4.015
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 22 names, Macintosh, Copyright � 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansRegular4.015;Plau;MotivaSan
Size
123 kB (122684 bytes)
Hash
57613e143ff3dae10f282e84a066de28
88756cc8c6db645b5f20aa17b14feefb4411c25f
19b8db163bcc51732457efa40911b4a422f297ff3cd566467d87eab93cef0c14

HTTP Headers

GET /public/shared/fonts/MotivaSans-Regular.ttf?v=4.015 HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://steamcommunivy.com
DNT: 1
Connection: keep-alive
Referer: https://store.cloudflare.steamstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:48 GMT
content-type: application/octet-stream
content-length: 122684
last-modified: Wed, 28 Jun 2023 04:07:10 GMT
etag: "649bb1ee-1df3c"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7f8f4956b7-OSL
X-Firefox-Spdy: h2

w.wallha.com/ws/14/HelvmVWp.png

172.67.165.198

200 OK

2.3 MB

URL GET HTTP/2
w.wallha.com/ws/14/HelvmVWp.png
IP
172.67.165.198:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerLet's Encrypt
Subjectwallha.com
Fingerprint80:C4:4E:F0:64:BF:4F:26:28:6B:8D:40:16:BB:1F:BA:61:31:7A:AA
ValidityMon, 04 Mar 2024 03:59:15 GMT - Sun, 02 Jun 2024 03:59:14 GMT

File type
PNG image data, 1920 x 1080, 8-bit/color RGBA, non-interlaced
Size
2.3 MB (2339226 bytes)
Hash
f5501210086b60eb228acfbea1310ac3
9fb8e6935f12b34cde23720d57c1a5f5c907bd62
66f68c717bbeff555add21698d576bf50b7efa2242ff6dea41bf1ce110a78aa9

HTTP Headers

GET /ws/14/HelvmVWp.png HTTP/1.1
Host: w.wallha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:48 GMT
content-type: image/png
content-length: 2339226
last-modified: Sun, 22 May 2022 16:10:34 GMT
expires: Wed, 17 Apr 2024 16:17:28 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
x-server-powered-by: Engintron
cf-cache-status: HIT
age: 3450250
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NX3YVm8BFBgWzg7RTr43eEewlzAn3UJxDqI0GBTdJPrIyfpO07CNZJgxEg0s7HkZaC1JLKHrdNeF2F5ZgRnVsjQ2glHy55JY14rhawS0S94lQnFvE1Z%2FtDWkig6qiUc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a800d881c0a-OSL
X-Firefox-Spdy: h2

store.steampowered.com/dynamicstore/saledata/?cc=BY

2.18.173.58

200 OK

49 B

URL GET HTTP/1.1
store.steampowered.com/dynamicstore/saledata/?cc=BY
IP
2.18.173.58:443
ASN
#16625 AKAMAI-AS

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerDigiCert Inc
Subjectstore.steampowered.com
FingerprintD3:2D:7F:53:8E:E9:01:B5:37:0D:FA:DC:E4:16:ED:EC:EF:CE:80:4B
ValidityTue, 05 Dec 2023 00:00:00 GMT - Thu, 05 Dec 2024 23:59:59 GMT

File type
JSON text data
Size
49 B (49 bytes)
Hash
7d8e35afa8792b923f4e6c5906e7c4b5
32168fbcd8a98b424f566046d3680648b49ac633
d5c8f5fb29ca010ec4c6e11774d17b0cc27b21304811521e29141f581c061e87

HTTP Headers

GET /dynamicstore/saledata/?cc=BY HTTP/1.1
Host: store.steampowered.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://steamcommunivy.com
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json; charset=utf-8
X-Frame-Options: DENY
Cache-Control: public,max-age=300
Expires: Fri, 29 Mar 2024 11:23:56 GMT
Last-Modified: Fri, 29 Mar 2024 11:15:00 GMT
Content-Encoding: gzip
Vary: Accept-Encoding, Origin, Accept-Encoding
Strict-Transport-Security: max-age=10368000
Content-Length: 49
Date: Fri, 29 Mar 2024 11:21:48 GMT
Connection: keep-alive

steamcommunity.com/favicon.ico

92.123.205.241

200 OK

39 kB

URL GET HTTP/1.1
steamcommunity.com/favicon.ico
IP
92.123.205.241:443
ASN
#16625 AKAMAI-AS

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerDigiCert Inc
Subjectstore.steampowered.com
Fingerprint03:15:62:D2:00:87:A3:66:F2:B1:19:C5:E4:F1:A5:48:63:D8:80:91
ValidityTue, 05 Dec 2023 00:00:00 GMT - Thu, 05 Dec 2024 23:59:59 GMT

File type
MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel
Size
39 kB (38554 bytes)
Hash
231913fdebabcbe65f4b0052372bde56
553909d080e4f210b64dc73292f3a111d5a0781f
9f890a9debcdfccc339149a7943be9aff9e4c9203c2fa37d5671a5b2c88503ad

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: steamcommunity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/x-icon
Cache-Control: public,max-age=86400
Expires: Fri, 03 Nov 2023 20:14:19 GMT
Last-Modified: Tue, 18 Sep 2018 23:32:59 GMT
Content-Length: 38554
Date: Fri, 29 Mar 2024 11:21:50 GMT
Connection: keep-alive

steamcommunivy.com/48259779f4d2bfbf17546791208ae8319fabc4f34f99/dba0f9a15f2b4a36830ed1502f9903e60f26fa4d9d54.js

188.114.96.1

404 Not Found

6.6 kB

URL GET HTTP/3
steamcommunivy.com/48259779f4d2bfbf17546791208ae8319fabc4f34f99/dba0f9a15f2b4a36830ed1502f9903e60f26fa4d9d54.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
6.6 kB (6587 bytes)
Hash
1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /48259779f4d2bfbf17546791208ae8319fabc4f34f99/dba0f9a15f2b4a36830ed1502f9903e60f26fa4d9d54.js HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Cookie: timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:49 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tClCdhOoj%2Ft4Z%2FmW7V0skoIVo20GdnEwCxqNHn3xYI5%2BNZluO9%2FdDImAFE165YOBUji5nADNADwPCp81OvhJ02mxIEMahIFtvKEMOZmnjgF7%2BPsGLkAHuTOnK%2B7AxLyHk9EAG14%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7d186a5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/f5be0223b11d7facb082959adf2f573a4e9071b5a92b.css

188.114.96.1

404 Not Found

3.8 kB

URL GET HTTP/3
steamcommunivy.com/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/f5be0223b11d7facb082959adf2f573a4e9071b5a92b.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
3.8 kB (3766 bytes)
Hash
1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/f5be0223b11d7facb082959adf2f573a4e9071b5a92b.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:47 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z3aG5%2BkRnKCQBdFDM9DwC2JeYE2A1ChOPa631i1GnXVBKu67tboQAN7zDgH3sV%2BmAFE5s0uiGoKDJCM7k2%2BMwv0pOYVwJtrKTsmEIcCKikLHvE8saHTGqsSL0q0hwSNmrr96FWM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70cdd05685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/84f891a8bd2b537ed52e5d24211b7c51489f891a6831/9163dadfe9962ca7c511914f32060f3a0a5f78c31413.css

188.114.96.1

200 OK

5.9 kB

URL GET HTTP/3
steamcommunivy.com/84f891a8bd2b537ed52e5d24211b7c51489f891a6831/9163dadfe9962ca7c511914f32060f3a0a5f78c31413.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
ASCII text, with very long lines (3876)
Size
5.9 kB (5892 bytes)
Hash
2113b6560d12d0fbaafcb9b964364591
781afbd9b39e0ccfd8f6a5d906a48639b62105e0
02ed5fedd4d231fd7599d828707a1af9728f3dd33876047b5b045c1cec3f5d02

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /84f891a8bd2b537ed52e5d24211b7c51489f891a6831/9163dadfe9962ca7c511914f32060f3a0a5f78c31413.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/css
last-modified: Mon, 14 Feb 2022 14:17:52 GMT
etag: W/"620a6490-2965"
x-country-code: EE
x-country-name: Estonia
access-control-allow-headers: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1527
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c0Fktrzswpa22KTdC2oMFyh%2F4fJ3H9ScdgNyaPF%2FNokILN16eF06ng1sGCTafttvdM86m7nVW9ckVjWvHC8qB4Dhl5Zm5VNggY2EwS6jB4%2F9vY5gPSzieLGlkAPB5bT1t6hUMZA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a709da15685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/baf426b2978361c1cd07e3946dee5fe5b134a5ab476e.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/baf426b2978361c1cd07e3946dee5fe5b134a5ab476e.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/baf426b2978361c1cd07e3946dee5fe5b134a5ab476e.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:47 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0fpNvxOJp2x3Q22ng4smXosRgGnbDSXkgQ0LkU17Kb%2FDrSZ%2BZgaJDmGZH4IodgWWCUBHKkV8TCI4IdLKU3gr%2B4zA5OLluCiNdPhjYjM5DeHoXDmNpyEG5fYoOm0lIc0w9b85Xt0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70adb75685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/98878f496c2623ef053eb2a14718284a6b0162a4ca0b.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/98878f496c2623ef053eb2a14718284a6b0162a4ca0b.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/98878f496c2623ef053eb2a14718284a6b0162a4ca0b.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:47 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Us%2FyTWq2DF%2Fr4ND7t4xvyBiceZ0DN4DdnRcYGHEeBhNVEwlm2AmYS8HTRSvA%2FD4K8I4WTb8urR2vGC4nABTKXwEFrgcMKkbS%2BpMV%2Fggs%2FeNAnn13bXrrayPeVaw19QigF%2FJQ0dE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70cdd95685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cloudflare.steamstatic.com/store//about/logo_steam.svg

172.64.145.151

200 OK

2.6 kB

URL GET HTTP/2
cdn.cloudflare.steamstatic.com/store//about/logo_steam.svg
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
2.6 kB (2557 bytes)
Hash
4289e85a46c781aacbbca31d368df985
3d98f18bd388fbf062adf7c33dd3e32738e2c36d
2f241671833bd24dd21f9b9ec323ec72c106604f6fb33c296fe923a310745e18

HTTP Headers

GET /store//about/logo_steam.svg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: image/svg+xml
last-modified: Wed, 28 Jun 2023 04:07:12 GMT
etag: W/"649bb1f0-9fd"
cf-cache-status: HIT
age: 6303
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a725a0a56b7-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.cloudflare.steamstatic.com/store/about/icon-chromeos.svg

172.64.145.151

200 OK

940 B

URL GET HTTP/2
cdn.cloudflare.steamstatic.com/store/about/icon-chromeos.svg
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
940 B (940 bytes)
Hash
edf40b9b2b9e62d8bb966a2962586e58
fef788004103176ca1d994b58d4d79df79c03397
5dca529245eabfd40c22ea517cab0ab7a2dcd09fad7e0ae70db8bec9ba740aa5

HTTP Headers

GET /store/about/icon-chromeos.svg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: image/svg+xml
last-modified: Tue, 07 Nov 2023 18:01:49 GMT
etag: W/"654a7b8d-3ac"
cf-cache-status: HIT
age: 6303
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a724a0356b7-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

steamcommunivy.com/2e023d0f378a842e427031c47eefd73fd361feb16500/1e655038beb7dcd2a62c37f1dbe3fe21d2c99c959d1c.js

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/2e023d0f378a842e427031c47eefd73fd361feb16500/1e655038beb7dcd2a62c37f1dbe3fe21d2c99c959d1c.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /2e023d0f378a842e427031c47eefd73fd361feb16500/1e655038beb7dcd2a62c37f1dbe3fe21d2c99c959d1c.js HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 146
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LJuNZejUXwfb0UhLD7qu01reQO3Sz3mQN48erpjR%2BjQR6%2F6DyhO5uL20fT%2FCKpyqWX%2BnXhUe2%2FjkMwz21EbH4sm76dlqrjOuCcoV0FjfjF8rpWBUS%2Fp0tpz9FV9wZDyuMjaDaGU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a715e495685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

store.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Medium.ttf?v=4.015

172.64.145.151

200 OK

124 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Medium.ttf?v=4.015
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 24 names, Macintosh, Copyright � 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansMedium4.015;Plau;MotivaSans
Size
124 kB (124048 bytes)
Hash
2d64caa5ecbf5e42cbb766ca4d85e90e
147420abceb4a7fd7e486dddcfe68cda7ebb3a18
045b433f94502cfa873a39e72d616c73ec1b4c567b7ee0f847f442651683791f

HTTP Headers

GET /public/shared/fonts/MotivaSans-Medium.ttf?v=4.015 HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://steamcommunivy.com
DNT: 1
Connection: keep-alive
Referer: https://store.cloudflare.steamstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:48 GMT
content-type: application/octet-stream
content-length: 124048
last-modified: Wed, 28 Jun 2023 04:07:10 GMT
etag: "649bb1ee-1e490"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
age: 2893
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7f8f5156b7-OSL
X-Firefox-Spdy: h2

steamcommunivy.com/8fa427457bb35efbd8b581b77485a06dee9948269e0c/3bcb76db6a5f4d7807058f7ef785cf9aa2458f242bbf.js

188.114.96.1

200 OK

320 kB

URL GET HTTP/3
steamcommunivy.com/8fa427457bb35efbd8b581b77485a06dee9948269e0c/3bcb76db6a5f4d7807058f7ef785cf9aa2458f242bbf.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
320 kB (320247 bytes)
Hash
5329836a3d2496fbeed3a0c445567254
0eb8a0a3703bb88e68d9d8e6987cc75f07ecef35
5638af2be5b3f870b92758c6537349a737c7f218af3c99885856a47e1293d53a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /8fa427457bb35efbd8b581b77485a06dee9948269e0c/3bcb76db6a5f4d7807058f7ef785cf9aa2458f242bbf.js HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Cookie: timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 11:21:49 GMT
content-type: application/javascript
last-modified: Mon, 12 Jun 2023 15:47:21 GMT
etag: W/"64873e09-4e2f7"
x-country-code: NO
x-country-name: Norway
access-control-allow-headers: *
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BmPpQEoSMzRKyMohN4Tpl%2FHk%2FIHaiJu9R7GIsszIx3VWaihXAT1SSmPw1WDy%2Bkn1EO%2B4CNxjNsIz5uD6MHkCB7vaNRYPJ7Dw2w0A8cFZHRsQThsJ1QKnRjY9TuO4SMq4dGyFCrs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7f3a3e5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/84f891a8bd2b537ed52e5d24211b7c51489f891a6831/fc0041b9984cfb96199a4f42c76fb4cbc457e4fda690.css

188.114.96.1

200 OK

12 kB

URL GET HTTP/3
steamcommunivy.com/84f891a8bd2b537ed52e5d24211b7c51489f891a6831/fc0041b9984cfb96199a4f42c76fb4cbc457e4fda690.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
ASCII text, with CRLF line terminators
Size
12 kB (11972 bytes)
Hash
dacb80dabfaebd8b5c696ca29bddd59e
d10bdeb6162bb0591b13799eac711d320958d1c5
6a13129c52b4af929efe3e1fddeceb315a4f8038ad01c469f8d45d5c19483ac9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /84f891a8bd2b537ed52e5d24211b7c51489f891a6831/fc0041b9984cfb96199a4f42c76fb4cbc457e4fda690.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/css
last-modified: Mon, 12 Jun 2023 15:47:18 GMT
etag: W/"64873e06-2ec4"
x-country-code: SE
x-country-name: Sweden
access-control-allow-headers: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1527
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JLmhfj2%2FeY%2BYCgM2UE22650uJSCKaykJnqAmqxwdnteDrGLpPYOksOW9UXIeX4PxDwVkb8WAug35AY1BZq9035ldkMmq2sYAQBXOTS%2F4xtTbevl67mkO%2FHaRGzLMdWBJfRsjhPI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a709da05685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/84f891a8bd2b537ed52e5d24211b7c51489f891a6831/1a6bef86257c07d7e07b85641118b2fedb31579d25b4.css

188.114.96.1

200 OK

20 kB

URL GET HTTP/3
steamcommunivy.com/84f891a8bd2b537ed52e5d24211b7c51489f891a6831/1a6bef86257c07d7e07b85641118b2fedb31579d25b4.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
ASCII text, with very long lines (1188)
Size
20 kB (19982 bytes)
Hash
2727c215f1b26015043511e9735a46f7
7d1dc9acca9b896d0e880973e33e339188fab602
dbdcded3c4261a3c9d79cb3cf9e641744ad1f2db504690f3a1a06f6b3893dda4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /84f891a8bd2b537ed52e5d24211b7c51489f891a6831/1a6bef86257c07d7e07b85641118b2fedb31579d25b4.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/css
last-modified: Mon, 14 Feb 2022 14:17:57 GMT
etag: W/"620a6495-4e0e"
x-country-code: RU
x-country-name: Russia
access-control-allow-headers: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1527
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yvqbx32lgRH85klOxpkk9Nryr1CcPCaP8NAKeswFeEwCB%2F%2FCP%2FSiA8t5trhMkN8DZ1RZG52wwV9n64Dptehe%2BlLTgpmZjqF97AQaj1LqM5R%2B6MfYNcEyduDzn%2Bx4UKGXeOBoveA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a709d9f5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/06915d50697fd604170e718458f7813f0581128cf506.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/06915d50697fd604170e718458f7813f0581128cf506.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/06915d50697fd604170e718458f7813f0581128cf506.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 146
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ffmjpIFuSAKCjvIUZmxHcVKCmHppX5UZWI5pDby7iZMOGgPdGjO1L8aBLGhUs7rQnNQK4M2oaucZLYZdfy90qje9A7TlmxSj9YHNg1E%2FHwo7OfB4u37kZF74e9sEDZTELnd8L6A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70adb15685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/2e023d0f378a842e427031c47eefd73fd361feb16500/0c7103b9ee9f2c9d2eb60852f11264df1780d92f704c.js

188.114.96.1

404 Not Found

0 B

URL GET HTTP/3
steamcommunivy.com/2e023d0f378a842e427031c47eefd73fd361feb16500/0c7103b9ee9f2c9d2eb60852f11264df1780d92f704c.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /2e023d0f378a842e427031c47eefd73fd361feb16500/0c7103b9ee9f2c9d2eb60852f11264df1780d92f704c.js HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Cookie: timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:49 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uBSCdi7c1iIBwUxQXv8dNY3NlE8d3hsC%2BO7ruocDtm83FM9s3rH87O1GKpvgH%2B8ibCDZ0dEzlQccMt2ErvyJFxXTlEPDr6QP9%2BZHOaTbAIWTHFUsYP4UP9MmZdJwVWbSg4fX%2FwA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7dc90d5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/73ff031341b7e5322e6b21a1ada3e65a7509080afa29.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/73ff031341b7e5322e6b21a1ada3e65a7509080afa29.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/73ff031341b7e5322e6b21a1ada3e65a7509080afa29.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:47 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IxmBjyBSF16MuSIYP3LTFDXITIPPhMRKkeGP4xXNh9RsJ7Wdz6ia%2FHsPgyI0drU6Hpi%2BVZZ%2FkitA4Yxup2qs0AaMeaTZu3%2BJc%2FOusba9VRGLKgqVu%2BThdCKuRK5bK%2FmdU4Fvggw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70cddf5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cloudflare.steamstatic.com/store/about/icon-steamos.svg

172.64.145.151

200 OK

1.2 kB

URL GET HTTP/2
cdn.cloudflare.steamstatic.com/store/about/icon-steamos.svg
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
1.2 kB (1243 bytes)
Hash
87b75088c96dd9fbf8d27edc9c68978f
dcd2a592beede69c4900ddb49da15af92ecc4ec1
a213eed8982bdd9b5b286685fd6f83c8c248a3fcd2bb385a9b14c2e4043147e7

HTTP Headers

GET /store/about/icon-steamos.svg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: image/svg+xml
last-modified: Wed, 28 Jun 2023 04:07:12 GMT
etag: W/"649bb1f0-4db"
cf-cache-status: HIT
age: 6303
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a725a1256b7-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Light.ttf?v=4.015

172.64.145.151

200 OK

123 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Light.ttf?v=4.015
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 24 names, Macintosh, Copyright � 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansLight4.015;Plau;MotivaSans-
Size
123 kB (122660 bytes)
Hash
d45f521dba72b19a4096691a165b1990
2a08728fbb9229acccbf907efdf4091f9b9a232f
6b7a3177485c193a2e80be6269b6b12880e695a8b4349f49fccf87f9205badcc

HTTP Headers

GET /public/shared/fonts/MotivaSans-Light.ttf?v=4.015 HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://steamcommunivy.com
DNT: 1
Connection: keep-alive
Referer: https://store.cloudflare.steamstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:48 GMT
content-type: application/octet-stream
content-length: 122660
last-modified: Wed, 28 Jun 2023 04:07:10 GMT
etag: "649bb1ee-1df24"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
age: 2893
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7fbf8756b7-OSL
X-Firefox-Spdy: h2

steamcommunivy.com/gjft/738135

188.114.96.1

200 OK

36 kB

URL User Request GET HTTP/2
steamcommunivy.com/gjft/738135
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type

Size
36 kB (35961 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /gjft/738135 HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/html
last-modified: Wed, 27 Mar 2024 08:12:23 GMT
x-country-code: NO
x-country-name: Norway
access-control-allow-headers: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FV%2BewWFQU%2Bz%2FBGjJNPwbZq0graZYUYQk8g7sTYLcstH7OLEttvCAQmZzLiHDerL5IEL2%2BaJRq%2BfjxRnGNcF%2Bl70DTBX3v7tpOuMl0LXwEIGy6gETldwau5ZIIkj4CmBnvXhI6OU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bf7a68e92a56c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

steamcommunivy.com/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/87a6eac108be36dba37d834917341681742be5d99f9f.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/87a6eac108be36dba37d834917341681742be5d99f9f.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/87a6eac108be36dba37d834917341681742be5d99f9f.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:47 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C0jSl80YgXqsgBkujpgMO4KK3%2B4%2F0y7WgVe5VGWMJtZB%2BtAwI0QGaoje3Q402niCeE49E97gJX50j1ExRVyw73ZBFK1Tb5dwmsqzEDzXmNeEZWf1Or7BXZzqOHryXGIqOhDQPvQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70cdd55685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/3dbbedb79df27663753777929c237e76b23e1fba921e.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/3dbbedb79df27663753777929c237e76b23e1fba921e.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/3dbbedb79df27663753777929c237e76b23e1fba921e.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 146
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ngg0dR0TByWHA%2F0OQXOzl4Tx2%2BdY%2BEeZ3fMI7GPvDWNtzGjRfrn8PIp85XXPi4QoTqJUUmYdjrBHVK0g2NMoCXA1GksWNnilddOiBdfxdQlrm9LV2bbmD0sgl6AgtR4YSc1q3WQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70ada85685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/84f891a8bd2b537ed52e5d24211b7c51489f891a6831/298035e114611f1452a0d3aa6e86352e1ab512824c98.css

188.114.96.1

200 OK

5.9 kB

URL GET HTTP/3
steamcommunivy.com/84f891a8bd2b537ed52e5d24211b7c51489f891a6831/298035e114611f1452a0d3aa6e86352e1ab512824c98.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
ASCII text, with very long lines (6580), with no line terminators
Size
5.9 kB (5922 bytes)
Hash
98c5ed1ed20928239d1e7b38f57e8167
1b8c676f45c40536498a562a33f54b130f07a06e
11a4a756ff117cd7af81c16bf10bcd4f8a97ec3bc16e14ab877734e3b6075b73

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /84f891a8bd2b537ed52e5d24211b7c51489f891a6831/298035e114611f1452a0d3aa6e86352e1ab512824c98.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/css
last-modified: Fri, 15 Apr 2022 15:36:03 GMT
etag: W/"625990e3-1722"
x-country-code: EE
x-country-name: Estonia
access-control-allow-headers: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1527
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=66B1Tby6I4xAeAlOjHhS6vMUezLDjok4NY1%2BEfkgbZcD1iI9BVBcoYRwD34pxNuvK9RnNLwsGxjUE%2FdtQEgzwousFWzyasMsmUWWvM4o8V%2BV9TQv5jUYFKbs%2FcQLi0essklEypw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a709da45685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/9d326356900e57e356e160780b677a415223cd6872be/8398298ad8f9377690596a56e077eacc6c7ec828a21a.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/9d326356900e57e356e160780b677a415223cd6872be/8398298ad8f9377690596a56e077eacc6c7ec828a21a.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /9d326356900e57e356e160780b677a415223cd6872be/8398298ad8f9377690596a56e077eacc6c7ec828a21a.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:47 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J42VatIoFgPh%2B4%2FUoSdQUTtqN%2FD7CO9QWaTejc2bV0FEJ9tqy8La0u9P7q4Sq0WRQB1bEVwIK85mWDknLElax6SXbeYY%2FnQayqCvjp9P7SSHnHHb9BuGrpSMfM%2FIpwOAC6EXHsw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70bdc65685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/692c24f8aec0ac70bd519fa51c61cb381499d5073919.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/692c24f8aec0ac70bd519fa51c61cb381499d5073919.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/692c24f8aec0ac70bd519fa51c61cb381499d5073919.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:47 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x70hRSUwnGXwslXh26jzSnF1bXxfJjYJhFE%2FHRC5ieewedR5sDtR6iY0AXQPaShQOaDRf1Jb17p8RUIPki2f6%2BmUKkkg9kdeu%2FHYT4WCTpvM6W1W2%2BSn1jIds2zXTV%2BkCNzzBg8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70cdce5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

store.cloudflare.steamstatic.com/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0&_cdn=cloudflare

172.64.145.151

200 OK

16 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0&_cdn=cloudflare
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
16 kB (16087 bytes)
Hash
72938851e7c2ef7b63299eba0c6752cb
b75196bd3a6f9f4dfc1bbf5e43e96874bcd9ce4e
e2d4e0e1d3e162fdc815f16dfff9ae9b0a967949f0f3ae371f947d730a3f0661

HTTP Headers

GET /public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/javascript;charset=UTF-8
content-length: 4229
cache-control: public,max-age=15552000
expires: Tue, 07 May 2024 23:06:08 GMT
etag: ".zYHOpI1L3Rt0"
last-modified: Wed, 28 Jun 2023 04:07:10 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: HIT
cf-cache-status: HIT
age: 11078004
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7108a156b7-OSL
X-Firefox-Spdy: h2

store.cloudflare.steamstatic.com/public/shared/javascript/jquery-1.8.3.min.js?v=.TZ2NKhB-nliU&_cdn=cloudflare

172.64.145.151

200 OK

94 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/shared/javascript/jquery-1.8.3.min.js?v=.TZ2NKhB-nliU&_cdn=cloudflare
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65482), with CRLF line terminators
Size
94 kB (93637 bytes)
Hash
e1288116312e4728f98923c79b034b67
8b6babff47b8a9793f37036fd1b1a3ad41d38423
ba6eda7945ab8d7e57b34cc5a3dd292fa2e4c60a5ced79236ecf1a9e0f0c2d32

HTTP Headers

GET /public/shared/javascript/jquery-1.8.3.min.js?v=.TZ2NKhB-nliU&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/javascript;charset=UTF-8
content-length: 33382
cache-control: public,max-age=15552000
expires: Mon, 13 May 2024 02:08:59 GMT
etag: ".TZ2NKhB-nliU"
last-modified: Wed, 28 Jun 2023 04:07:11 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: HIT
cf-cache-status: HIT
age: 10986862
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a71089f56b7-OSL
X-Firefox-Spdy: h2

steamcommunivy.com/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/1e5c5568191faa697ea1b6f35f483052f3b8b9818912.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/1e5c5568191faa697ea1b6f35f483052f3b8b9818912.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/1e5c5568191faa697ea1b6f35f483052f3b8b9818912.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:47 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SNIW4TkFPOWqTNIkCFu7zU1c1BQxyc1QiCSV63eZ7800XsnCNdQWGjV9KzxmJy66cmBoE%2FTW0O6aijUE7i%2FVx3Q6B3NAWsnYLRDf%2FgFRED9GDBowDz%2FXY6rH9AsUuQ%2FhTAG9%2Fyc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70bdc05685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/9d326356900e57e356e160780b677a415223cd6872be/2cec953b20e0d87ddf9618850dcb345668d14746160c.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/9d326356900e57e356e160780b677a415223cd6872be/2cec953b20e0d87ddf9618850dcb345668d14746160c.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /9d326356900e57e356e160780b677a415223cd6872be/2cec953b20e0d87ddf9618850dcb345668d14746160c.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GdAJQC5CFGYbpTQmhmiXLpsQRkBXsbLjoXKxMIu58YpD1wfdIuVg89gh3usioOle%2Byc9KGhTdQoIZFiD%2BBsh11NvCstXCesuh%2F6RJb1yiJKl6AcDWcWKMS1aw7k46%2FEnIT4JaHw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70bdcc5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

store.cloudflare.steamstatic.com/public/shared/images/header/logo_steam.svg?t=962016

172.64.145.151

200 OK

3.7 kB

URL GET HTTP/2
store.cloudflare.steamstatic.com/public/shared/images/header/logo_steam.svg?t=962016
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
3.7 kB (3684 bytes)
Hash
ca81bf2f0d99757a6f97b0fec3cf5ab5
de4b8d0953809e4687fa45f95092c9c5e92ca146
b83d5a05f79f53d2945fe89bee2239fad2761c2eccee6ad655bbec92a85a80e1

HTTP Headers

GET /public/shared/images/header/logo_steam.svg?t=962016 HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: image/svg+xml
last-modified: Wed, 28 Jun 2023 04:07:11 GMT
etag: W/"649bb1ef-e64"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
age: 4667
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7229dc56b7-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.cloudflare.steamstatic.com/store/about/icon-macos.svg

172.64.145.151

200 OK

1.2 kB

URL GET HTTP/2
cdn.cloudflare.steamstatic.com/store/about/icon-macos.svg
IP
172.64.145.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
1.2 kB (1212 bytes)
Hash
eb5c6b30f485fef67c3cc1a082523274
08364a2f31ab0911e22ad20eea6564d8a0d90aad
1a644dc8be457685e35a60bf4c41bb93194a9076fa4434180913275c128c609b

HTTP Headers

GET /store/about/icon-macos.svg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: image/svg+xml
last-modified: Wed, 28 Jun 2023 04:07:12 GMT
etag: W/"649bb1f0-4bc"
cf-cache-status: HIT
age: 6303
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a725a0956b7-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

steamcommunivy.com/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/5cfc058abb60c01ae4c9c129362903003628a845a086.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/5cfc058abb60c01ae4c9c129362903003628a845a086.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/5cfc058abb60c01ae4c9c129362903003628a845a086.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 146
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L4BI0t%2BT6jysLlpgvotlUTGPLOKIazCZiKYiMq8ltAdfMJds1DTtKcn3rP6%2BTFcfoFWGwh3ivjyOwuHK%2FHWGc85fSINGKTaonhUrMZOK%2BlfBDMQZC196USEeUrI%2BTNsiOCwz68w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70adae5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/48259779f4d2bfbf17546791208ae8319fabc4f34f99/2e6d2e3619ab4a0f310358a068e45cf4d5aba9103a17.js

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/48259779f4d2bfbf17546791208ae8319fabc4f34f99/2e6d2e3619ab4a0f310358a068e45cf4d5aba9103a17.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /48259779f4d2bfbf17546791208ae8319fabc4f34f99/2e6d2e3619ab4a0f310358a068e45cf4d5aba9103a17.js HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Cookie: timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:48 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L3m679mLKRMmziUfifrYIqj9YJZ6dMesN2%2BuKisBZDMqE%2BwvQqlkQ6SXFaNmA7paN74UBMpL8gvZ415rJjNxWAlbmKpq62nj4fCFkEii8GBfg5EKf51re2dRZwdDLOTlq7rzmno%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7f5a5e5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/9d326356900e57e356e160780b677a415223cd6872be/9dcb280aa613cb7d8b7552195a95650023da51deadaa.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/9d326356900e57e356e160780b677a415223cd6872be/9dcb280aa613cb7d8b7552195a95650023da51deadaa.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /9d326356900e57e356e160780b677a415223cd6872be/9dcb280aa613cb7d8b7552195a95650023da51deadaa.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:47 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ffLMWoSldQpMti8lMyl9Jz3O670Ey9KVR1SuZLHPrsxynBXZR0rx7egV%2F5zNJsUMttNv9SIQj0MgbDTwidYnazDYlf4embxKb%2Bf5LNTy%2Fek%2BazNidPNQEHnGjYI82Uy0vz1tYz8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70bdca5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/9b44d1f4bd62f968ee2d4ca26da86eed10223dccb8dd.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/9b44d1f4bd62f968ee2d4ca26da86eed10223dccb8dd.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/9b44d1f4bd62f968ee2d4ca26da86eed10223dccb8dd.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:47 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9RoRGN8eYPdawd2KObrmGvO0Zx5MViOtC7Z7Xw4BhYufkw5A8Uv1tc8si1%2Bol6cQcCMS5eai6p6xmx5zhrtxR9BjVkch0%2B6gY6SbYvu7dNGWDc0NfMCpkCH8r7%2F%2B%2Bnj92cLX0G8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70cddc5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/5594489db6d1817e59055d860d6adb88f6b6eab02e94.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/5594489db6d1817e59055d860d6adb88f6b6eab02e94.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/5594489db6d1817e59055d860d6adb88f6b6eab02e94.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 146
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ItxjSMOOFpSCD%2BKOg5h%2FO1Af7HCKb31WXV1oHTFJtbjfTMZ94CNslE6l3CVrIMQi5yjmMpoM1Ni1YZeXWiVUWuO47n8NikTvYa3cCOCp7lhEhKe%2Fq3TqyTp9EsrVlreQyw3G36Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70adb05685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/d1112f42a24075dcb5b1c07b232f81448e5655adb676.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/d1112f42a24075dcb5b1c07b232f81448e5655adb676.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/d1112f42a24075dcb5b1c07b232f81448e5655adb676.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:47 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QJ%2Fh5tFoi%2F6Rrjv0moQ2XCrrPHOuNwleYrpsnwRNiuJCh%2B1uSjpDWBfhzUa6S%2FJbn6fBU3UJ7u3vSBioqikwaLF06xAsnujjLz1a6mqPi9wzkx7RWlSL1ZBLM1YoMoWPDh0MfaM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70bdbd5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/9d326356900e57e356e160780b677a415223cd6872be/d4632ab8c3e9de30f4f6330ee8697bf08cea558ab9d9.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/9d326356900e57e356e160780b677a415223cd6872be/d4632ab8c3e9de30f4f6330ee8697bf08cea558ab9d9.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /9d326356900e57e356e160780b677a415223cd6872be/d4632ab8c3e9de30f4f6330ee8697bf08cea558ab9d9.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:47 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2v%2FbyQUqTSN8AiHJwGzPpx%2Bc3oQSv91jywVtGTzlgOJ949IkRVx4i3j7xkDzI27yiEjfe6nHHgD6QJEkPr63jB2MytKJDbvmEHQ1tyzWPdfWN25ezQmSUaf3qN%2B8Pt5nhZ2Usjk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70bdc85685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/0fb4b83e318d364bee7ca5f4289f9aab836890698b15.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/0fb4b83e318d364bee7ca5f4289f9aab836890698b15.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/0fb4b83e318d364bee7ca5f4289f9aab836890698b15.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:47 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SlzSPzRQPRe7J%2FtcVo1R53HlXt0rUopftcXHGF1mOPRan0fvWNioaiNFzLX6P7l7gAvZJqS%2FKUb0SUy8uZvUFmu3gUicIvelL%2BKZs5ockxdKMjamFMR08ZB3haWZzplQqcwAOsQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70bdbc5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/9d326356900e57e356e160780b677a415223cd6872be/372152a59e5ae998be8370070c3bf9cef88a14321be9.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/9d326356900e57e356e160780b677a415223cd6872be/372152a59e5ae998be8370070c3bf9cef88a14321be9.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /9d326356900e57e356e160780b677a415223cd6872be/372152a59e5ae998be8370070c3bf9cef88a14321be9.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:47 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KPh%2FTGwxXmpFjupE5oz3G7GSSlQ2EzADYpSjU9vayu%2BJ5cdAvoD%2BZDdv1%2FokxKoLdifcB%2F9OJKqcnZcM0Z0BYkPUgfY9yJLv5pLDcdQ%2FdIO8A6UnpLUqECvsceYhn4DtrLRZH9o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70bdcd5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

store.cloudflare.steamstatic.com/public/javascript/slick/slick.js?v=.UvbXNQdQm-AJ&_cdn=cloudflare

0.0.0.0

0 B

URL GET
store.cloudflare.steamstatic.com/public/javascript/slick/slick.js?v=.UvbXNQdQm-AJ&_cdn=cloudflare
IP
0.0.0.0:0
ASN
#0

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint25:01:38:4A:05:F5:3D:DF:F1:06:FF:A9:71:BC:C2:60:0C:C7:A0:D0
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /public/javascript/slick/slick.js?v=.UvbXNQdQm-AJ&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=10368000
x-cache: MISS
last-modified: Fri, 29 Mar 2024 08:01:37 GMT
cf-cache-status: HIT
age: 5707
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7158fe56b7-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

steamcommunivy.com/3f51187818b7cde26da510a10594f3213ee28cdeb696/bdf997526965a6c3fd37231628bce15baa50f62dd225.js

188.114.96.1

404 Not Found

0 B

URL GET HTTP/3
steamcommunivy.com/3f51187818b7cde26da510a10594f3213ee28cdeb696/bdf997526965a6c3fd37231628bce15baa50f62dd225.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /3f51187818b7cde26da510a10594f3213ee28cdeb696/bdf997526965a6c3fd37231628bce15baa50f62dd225.js HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Cookie: timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:48 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ft1VFD1%2B9F1Ny0%2FBjdNUexd8hc%2Ft8ZzUMAbZtOlkqsppNhc4Hx%2BNsC1lvqG7hDcopNw4qHSGxYGdFA0%2Fe4yQVy4yvBeysJxk4Oz0dMc1RxwI11rNTXxgqACb8UrF2GGa5sF5pyM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a788c985685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/2e023d0f378a842e427031c47eefd73fd361feb16500/1e655038beb7dcd2a62c37f1dbe3fe21d2c99c959d1c.js

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/2e023d0f378a842e427031c47eefd73fd361feb16500/1e655038beb7dcd2a62c37f1dbe3fe21d2c99c959d1c.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /2e023d0f378a842e427031c47eefd73fd361feb16500/1e655038beb7dcd2a62c37f1dbe3fe21d2c99c959d1c.js HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Cookie: timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:48 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 148
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=272c7pun6UCSPmiwH%2BlIGdmdQTQZpoygsKaWJB6r756sf%2F%2BCn4N30831Qmc5T7fmYG7NL%2BPqM9A6et9TKaISBKrkz3ztK%2FeaWQo3AI5GypyTb3n%2Fc14txRxphLlN9V7AZGEm1Pk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a7ffada5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/48259779f4d2bfbf17546791208ae8319fabc4f34f99/2e6d2e3619ab4a0f310358a068e45cf4d5aba9103a17.js

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/48259779f4d2bfbf17546791208ae8319fabc4f34f99/2e6d2e3619ab4a0f310358a068e45cf4d5aba9103a17.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /48259779f4d2bfbf17546791208ae8319fabc4f34f99/2e6d2e3619ab4a0f310358a068e45cf4d5aba9103a17.js HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:47 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YLLv3ogpnox41Wl0u%2B5hdfkTGbMxQRUQw0GbY1JWc6jgb91EQ8sFTqA04OXuyd0OG5vG%2FwCclhbzqshSS2IAlQYtNKZhmqEjf%2FYx2X1LTPnaJ2LIhj2%2B2vf6jQmo8Pl%2BlKK6so4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a715e485685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/0e9b5e78dee4eed864b26e2585c24cc7156898b27513.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/0e9b5e78dee4eed864b26e2585c24cc7156898b27513.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/0e9b5e78dee4eed864b26e2585c24cc7156898b27513.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:47 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A%2FARQPjk01VUpB2JSj2H7C3JvaO%2FVI5k8lksGRGrePurWN3GTMyEt8pzV1EdiRk%2BXpdWHGTeofS250XETkjAmMovKx7CiFj0Yk1GS43W1IbOjU5xeFLSy6ey%2FYH52UonDDG9zKE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70adb45685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/9d326356900e57e356e160780b677a415223cd6872be/1cb7df5c555015b39b34ee74d56af9adcbf14ba95908.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/9d326356900e57e356e160780b677a415223cd6872be/1cb7df5c555015b39b34ee74d56af9adcbf14ba95908.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /9d326356900e57e356e160780b677a415223cd6872be/1cb7df5c555015b39b34ee74d56af9adcbf14ba95908.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:46 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3k92sp0GJVJ7sPZ1hct6BGI7%2FI30%2BhoUV4hhO7e%2FNvZ5uQf2dPh0X0YO6Hqynrn%2FN1Sudy5SDr0xYVyMkHTmQcl3GmlKG%2FndjmVYzM5a15Tl7ctEFUQd7uxyTwXtR%2FhzuTH4S4o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70bdc75685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunivy.com/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/a02c806493f5fecae4d2fb318daad1c864eca6388ff2.css

188.114.96.1

404 Not Found

162 B

URL GET HTTP/3
steamcommunivy.com/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/a02c806493f5fecae4d2fb318daad1c864eca6388ff2.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://steamcommunivy.com/gjft/738135
Certificate
IssuerGoogle Trust Services LLC
Subjectsteamcommunivy.com
Fingerprint19:4D:A2:C4:6B:CD:D3:53:FC:B9:17:81:78:E2:8A:B3:CE:DF:20:F8
ValidityFri, 15 Mar 2024 11:55:48 GMT - Thu, 13 Jun 2024 11:55:47 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/a02c806493f5fecae4d2fb318daad1c864eca6388ff2.css HTTP/1.1
Host: steamcommunivy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://steamcommunivy.com/gjft/738135
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 11:21:47 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j2pNhXlNlcezBcOJN58EtULklmk9oZUztBQR988rHtBxGFOsZQf9VQRYudywbXfnPETpFpLw2wp0IeQ%2FGhgfvEJnzThnDMdFxW5qHVUy%2Bl5s7ROm%2BuFc4VBLcd5ZtCC4Li0VEgQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bf7a70bdc35685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (27)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL