| sp.aircsgo.com/profiles/76561198996550687/images | 210.74.226.164 | 200 | 10 kB |
URL User Request GET HTTP/1.1sp.aircsgo.com/profiles/76561198996550687/images IP210.74.226.164:443 ASN#4812 China Telecom Group
CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (791), with CRLF, LF line terminators Hashff5b771aef75ea2b2739c1c97456c1f8 ef07b1a3dabcb7bc326a882c41d6d278c8c19b18 60880fad45c836d1bf1afa0fa919ae07ddf129fcb356ed3cd6a220f0088de9ac
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET /profiles/76561198996550687/images HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:15 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 10089
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Method: *
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Origin: https://sp.aircsgo.com
Access-Control-Expose-Headers: X-eresult,X-error_message
Cache-Control: no-cache
Content-Encoding: gzip
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Origin: https://sp.aircsgo.com
Set-Cookie: sessionid=ec8cc657afe146d844c00df7; Path=/; Secure; SameSite=None;Domain=sp.aircsgo.com
steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; Path=/; Secure; HttpOnly; SameSite=None;Domain=sp.aircsgo.com
uid=46e5437f-431f-4a61-9d86-ffe1eed43558; Path=/; Domain=sp.aircsgo.com
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-Proxy-Hostname: steam-session-cluster-6c6fc676d6-df58b
traceId: eaac1cf3af17140247554728275d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| sp.aircsgo.com/ | 210.74.226.164 | | 169 B |
IP210.74.226.164:0 ASN#4812 China Telecom Group
CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash31f605b34950fcda1508ccc78a285d43 f62879764a0443fc190d18b1e03c0c9783af2ace 67180b05f481365831569891ea36474e79e2f7dd63ccf717a50b8afe067b6d23
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:16 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://sp.aircsgo.com/
|
|
| community.cloudflare.steamstatic.com/public/images/skin_1/modalClose2.gif | 104.18.42.105 | 200 OK | 305 B |
URL GET HTTP/2community.cloudflare.steamstatic.com/public/images/skin_1/modalClose2.gif IP104.18.42.105:443
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com Fingerprint93:35:92:83:13:20:24:C4:7E:7D:FB:1E:FB:23:34:01:4C:4E:A3:35 ValidityWed, 17 Apr 2024 02:31:33 GMT - Tue, 16 Jul 2024 02:31:32 GMT
File typeGIF image data, version 89a, 11 x 11 Hash450a555e7fe108644fe11c506172669a cfe3565381df778663d981969572e1cd42f4f1a9 a581f45b4f07de460e1e2229312addd1e21fcb9fa66809557fc8e282821fc1ca
GET /public/images/skin_1/modalClose2.gif HTTP/1.1
Host: community.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:59:16 GMT
content-type: image/gif
content-length: 305
last-modified: Fri, 05 Jan 2018 01:34:51 GMT
etag: "5a4ed63b-131"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
age: 4677
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c1b26ba1e5697-OSL
X-Firefox-Spdy: h2
|
|
| community.cloudflare.steamstatic.com/public/images/login/throbber.gif | 104.18.42.105 | 200 OK | 3.2 kB |
URL GET HTTP/2community.cloudflare.steamstatic.com/public/images/login/throbber.gif IP104.18.42.105:443
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com Fingerprint93:35:92:83:13:20:24:C4:7E:7D:FB:1E:FB:23:34:01:4C:4E:A3:35 ValidityWed, 17 Apr 2024 02:31:33 GMT - Tue, 16 Jul 2024 02:31:32 GMT
File typeGIF image data, version 89a, 32 x 32 Hash928e54c4c9683d8dd32867ee992d73c4 83b3252952e1e8c98deb5e6eb64e150c594dd97b 0c4d1b66cbed8c0ba7bfe1d047409e80b99684794ba66e9556503890eae17f2d
GET /public/images/login/throbber.gif HTTP/1.1
Host: community.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:59:16 GMT
content-type: image/gif
content-length: 3208
last-modified: Fri, 05 Jan 2018 01:34:49 GMT
etag: "5a4ed639-c88"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
age: 5274
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c1b26ba1c5697-OSL
X-Firefox-Spdy: h2
|
|
| community.cloudflare.steamstatic.com/public/shared/images/responsive/logo_valve_footer.png | 104.18.42.105 | 200 OK | 1.8 kB |
URL GET HTTP/2community.cloudflare.steamstatic.com/public/shared/images/responsive/logo_valve_footer.png IP104.18.42.105:443
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com Fingerprint93:35:92:83:13:20:24:C4:7E:7D:FB:1E:FB:23:34:01:4C:4E:A3:35 ValidityWed, 17 Apr 2024 02:31:33 GMT - Tue, 16 Jul 2024 02:31:32 GMT
File typePNG image data, 92 x 26, 8-bit/color RGBA, non-interlaced Hash574c350c7b23ae794d5276f8580e0838 235c7b35c3468f8915eca01f7abdb43d34079609 8b97ba0dac22fe6704c1f6d95fe79613f33017804f256abb9006df0442491787
GET /public/shared/images/responsive/logo_valve_footer.png HTTP/1.1
Host: community.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:59:16 GMT
content-type: image/png
content-length: 1846
last-modified: Fri, 05 Jan 2018 01:35:16 GMT
etag: "5a4ed654-736"
x-cache: MISS
cf-cache-status: HIT
age: 5705
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c1b26ba1f5697-OSL
X-Firefox-Spdy: h2
|
|
| community.cloudflare.steamstatic.com/public/shared/images/responsive/header_menu_hamburger.png | 104.18.42.105 | 200 OK | 3.8 kB |
URL GET HTTP/2community.cloudflare.steamstatic.com/public/shared/images/responsive/header_menu_hamburger.png IP104.18.42.105:443
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com Fingerprint93:35:92:83:13:20:24:C4:7E:7D:FB:1E:FB:23:34:01:4C:4E:A3:35 ValidityWed, 17 Apr 2024 02:31:33 GMT - Tue, 16 Jul 2024 02:31:32 GMT
File typePNG image data, 244 x 212, 8-bit/color RGBA, non-interlaced Hasheabc76eb57feae44add7faead028521e 4e3e53938fad15661d2d046a868338841a95db19 fc9e6260a2706ae146282d77e67bc1b74688435f8912ab4c1932641eec28bffa
GET /public/shared/images/responsive/header_menu_hamburger.png HTTP/1.1
Host: community.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:59:16 GMT
content-type: image/png
content-length: 3777
last-modified: Fri, 05 Jan 2018 01:35:16 GMT
etag: "5a4ed654-ec1"
x-cache: MISS
cf-cache-status: HIT
age: 5705
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c1b26ba205697-OSL
X-Firefox-Spdy: h2
|
|
| community.cloudflare.steamstatic.com/public/shared/images/responsive/header_logo.png | 104.18.42.105 | 200 OK | 11 kB |
URL GET HTTP/2community.cloudflare.steamstatic.com/public/shared/images/responsive/header_logo.png IP104.18.42.105:443
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com Fingerprint93:35:92:83:13:20:24:C4:7E:7D:FB:1E:FB:23:34:01:4C:4E:A3:35 ValidityWed, 17 Apr 2024 02:31:33 GMT - Tue, 16 Jul 2024 02:31:32 GMT
File typePNG image data, 744 x 171, 8-bit/color RGBA, non-interlaced Hasha4e79c73ee13cb25b60fc4b0ba1f690c b690c31b2eb1b0eb085e91aaae7e79f03debe7c1 6cb869df089146c12efb5e9c968e911c314842624ba6f052a11346ac734cadc8
GET /public/shared/images/responsive/header_logo.png HTTP/1.1
Host: community.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:59:16 GMT
content-type: image/png
content-length: 10863
last-modified: Fri, 05 Jan 2018 01:35:16 GMT
etag: "5a4ed654-2a6f"
x-cache: MISS
cf-cache-status: HIT
age: 5705
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c1b26ba215697-OSL
X-Firefox-Spdy: h2
|
|
| community.cloudflare.steamstatic.com/public/images/skin_1/footerLogo_valve.png?v=1 | 104.18.42.105 | 200 OK | 3.7 kB |
URL GET HTTP/2community.cloudflare.steamstatic.com/public/images/skin_1/footerLogo_valve.png?v=1 IP104.18.42.105:443
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com Fingerprint93:35:92:83:13:20:24:C4:7E:7D:FB:1E:FB:23:34:01:4C:4E:A3:35 ValidityWed, 17 Apr 2024 02:31:33 GMT - Tue, 16 Jul 2024 02:31:32 GMT
File typePNG image data, 96 x 26, 8-bit/color RGBA, non-interlaced Hash1626f52addb7c56fe3679d82108c62e9 2b414092d66ecff528950093a655f755c3c7f3b5 ae9f6c61e25d15882bf57bde193d10d375bd315c9741cabda11d700fd1bb7dd1
GET /public/images/skin_1/footerLogo_valve.png?v=1 HTTP/1.1
Host: community.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:59:16 GMT
content-type: image/png
content-length: 3737
last-modified: Fri, 05 Jan 2018 01:34:51 GMT
etag: "5a4ed63b-e99"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
age: 6015
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c1b26ca265697-OSL
X-Firefox-Spdy: h2
|
|
| community.cloudflare.steamstatic.com/public/images/skin_1/warning_32.png | 104.18.42.105 | 200 OK | 704 B |
URL GET HTTP/2community.cloudflare.steamstatic.com/public/images/skin_1/warning_32.png IP104.18.42.105:443
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com Fingerprint93:35:92:83:13:20:24:C4:7E:7D:FB:1E:FB:23:34:01:4C:4E:A3:35 ValidityWed, 17 Apr 2024 02:31:33 GMT - Tue, 16 Jul 2024 02:31:32 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hashbb934ba33a642eab1d573088fae9fae0 88f938b27b63bbd119abb5e3f6d262d9ffab9eb8 0b71ce7901837a7fecfa92bc017f34bf69e6c04bd292083adf692d5c3a050248
GET /public/images/skin_1/warning_32.png HTTP/1.1
Host: community.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:59:16 GMT
content-type: image/png
content-length: 704
last-modified: Fri, 05 Jan 2018 01:34:51 GMT
etag: "5a4ed63b-2c0"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
age: 6976
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c1b26ba255697-OSL
X-Firefox-Spdy: h2
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/shared/css/motiva_sans.css?v=GfSjbGKcNYaQ&l=english&_cdn=cloudflare | 210.74.226.164 | 200 | 2.7 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/shared/css/motiva_sans.css?v=GfSjbGKcNYaQ&l=english&_cdn=cloudflare IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeASCII text, with CRLF line terminators Hash19f4a36c629c358690fc93dbd234d105 6bbc819e64172d57a4abdaa20c8e2b8a32dd662c e753a6b743187c7d592e6e2d3580336751e6211cd228ad7410e02db29ec91ad8
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/shared/css/motiva_sans.css?v=GfSjbGKcNYaQ&l=english&_cdn=cloudflare HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:16 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 2718
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "GfSjbGKcNYaQ"
Cache-Control: public,max-age=15552000
Expires: Sat, 31 Aug 2024 20:15:10 GMT
X-Cache: MISS
CF-Cache-Status: HIT
Age: 3566606
Vary: Accept-Encoding
CF-RAY: 8748acc8294c04f0-HKG
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ae17131499174655747d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/shared/css/buttons.css?v=tuNiaSwXwcYT&l=english&_cdn=cloudflare | 210.74.226.164 | 200 | 34 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/shared/css/buttons.css?v=tuNiaSwXwcYT&l=english&_cdn=cloudflare IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeASCII text, with CRLF, LF line terminators Hashb6e362692c17c1c613dfc67197952242 fed8f68cdfdd8bf5c29fb0ebd418f796bc8af2dd 151dc1c5196a4ca683f292ae77fa5321f750c495a5c4ffd4888959eb46d9cdc1
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/shared/css/buttons.css?v=tuNiaSwXwcYT&l=english&_cdn=cloudflare HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:16 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 33770
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "tuNiaSwXwcYT"
Cache-Control: public,max-age=15552000
Expires: Sat, 31 Aug 2024 14:45:02 GMT
X-Cache: MISS
CF-Cache-Status: HIT
Age: 3566608
Vary: Accept-Encoding
CF-RAY: 8748accbef5d5dd8-HKG
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ad17131499180617900d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/shared/css/shared_global.css?v=2VoZa2M8Wh3k&l=english&_cdn=cloudflare | 210.74.226.164 | 200 | 88 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/shared/css/shared_global.css?v=2VoZa2M8Wh3k&l=english&_cdn=cloudflare IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (1819), with CRLF, LF line terminators Hashd95a196b633c5a1de4bfe531abe19544 b4d3e3d225c8f699d2c5661b194e6feadd9b5807 8a0e6fb8b50e1da206a13969ee4f1f904f0b0a430fd6455a10fc7829b6776ae4
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/shared/css/shared_global.css?v=2VoZa2M8Wh3k&l=english&_cdn=cloudflare HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:16 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 87472
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "2VoZa2M8Wh3k"
Cache-Control: public,max-age=15552000
Expires: Sun, 06 Oct 2024 22:37:45 GMT
X-Cache: MISS
CF-Cache-Status: HIT
Age: 447653
Vary: Accept-Encoding
CF-RAY: 8748acccef6685db-HKG
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3af17131499182206812d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/css/skin_1/profile_sharedfiles.css?v=a8mBBqOyRxdD&l=english&_cdn=cloudflare | 210.74.226.164 | 200 | 13 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/css/skin_1/profile_sharedfiles.css?v=a8mBBqOyRxdD&l=english&_cdn=cloudflare IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeASCII text, with CRLF line terminators Hash6bc98106a3b2471743964c952b946397 c4353bcea9d8ae87a896501dd1ddbe173214a556 d2c7e6b17f5aa5c855d5392ec5c7de983412fd22b12e32259cca97b049c41300
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/css/skin_1/profile_sharedfiles.css?v=a8mBBqOyRxdD&l=english&_cdn=cloudflare HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:17 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 13403
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "a8mBBqOyRxdD"
Cache-Control: public,max-age=15552000
Expires: Tue, 10 Sep 2024 20:40:59 GMT
X-Cache: MISS
CF-Cache-Status: HIT
Age: 3290326
Vary: Accept-Encoding
CF-RAY: 8784fe87af0904ea-HKG
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ad17137824114567699d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/css/globalv2.css?v=pwVcIAtHNXwg&l=english&_cdn=cloudflare | 210.74.226.164 | 200 | 40 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/css/globalv2.css?v=pwVcIAtHNXwg&l=english&_cdn=cloudflare IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (4009), with CRLF, LF line terminators Hasha7055c200b47357c2051179f9b979bbd 701f861353694ceb6a41a867ac2e118a76400cdc f553f59191af4f2b222a73d129b731d4f461c84a67d55cf8e29ba319fe13b078
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/css/globalv2.css?v=pwVcIAtHNXwg&l=english&_cdn=cloudflare HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:17 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 39590
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "pwVcIAtHNXwg"
Cache-Control: public,max-age=15552000
Expires: Sun, 22 Sep 2024 22:52:20 GMT
X-Cache: HIT
CF-Cache-Status: HIT
Age: 1651203
Vary: Accept-Encoding
CF-RAY: 8748accd1f9285db-HKG
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3af17131499182486813d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/css/skin_1/modalContent.css?v=.TP5s6TzX6LLh&_cdn=cloudflare | 210.74.226.164 | 200 | 2.5 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/css/skin_1/modalContent.css?v=.TP5s6TzX6LLh&_cdn=cloudflare IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeASCII text, with CRLF line terminators Hash8db2ffc24354dbc4b5a7bebbc2b3cdaf 311653110625167fdb4ce22e8f147b717bce6649 e888e754e20a1b354bb45b59a05d7b281fee588a445854116b2bc84620fbf7f0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/css/skin_1/modalContent.css?v=.TP5s6TzX6LLh&_cdn=cloudflare HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:17 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 2465
Connection: keep-alive
Last-Modified: Fri, 05 Jan 2018 01:34:47 GMT
ETag: ".TP5s6TzX6LLh"
Cache-Control: public,max-age=15552000
Expires: Mon, 09 Sep 2024 22:48:52 GMT
X-Cache: MISS
CF-Cache-Status: HIT
Age: 2779785
Vary: Accept-Encoding
CF-RAY: 8748accd28b11053-HKG
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ac17131499182447336d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/shared/css/shared_responsive.css?v=eghn9DNyCY67&l=english&_cdn=cloudflare | 210.74.226.164 | 200 | 19 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/shared/css/shared_responsive.css?v=eghn9DNyCY67&l=english&_cdn=cloudflare IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (1667), with CRLF, LF line terminators Hash7a0867f43372098ebbb7948a57e75bc9 6f53ff787f5c1b99a73cc8a3bedae946944771b3 1888d4455d4bbb2b8a15e8834498bc0ac62ec941c6edc29859a5fdcdd5c1f602
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/shared/css/shared_responsive.css?v=eghn9DNyCY67&l=english&_cdn=cloudflare HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:17 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 19100
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "eghn9DNyCY67"
Cache-Control: public,max-age=15552000
Expires: Sun, 20 Oct 2024 23:31:05 GMT
X-Cache: HIT
CF-Cache-Status: HIT
Age: 13
Vary: Accept-Encoding
CF-RAY: 8791a6003bdd0ed0-HKG
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ac17139151001873295d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/css/skin_1/header.css?v=vh4BMeDcNiCU&l=english&_cdn=cloudflare | 210.74.226.164 | 200 | 13 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/css/skin_1/header.css?v=vh4BMeDcNiCU&l=english&_cdn=cloudflare IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (629), with CRLF line terminators Hashbe1e0131e0dc3620948b14da818b1a4d 810b4aff56a0e76cf870cc67e3092447b46dcd92 ebd518bec6383218452cc4597aeff5debc82b1f76cbea1950c5ecbfd59c5e3e5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/css/skin_1/header.css?v=vh4BMeDcNiCU&l=english&_cdn=cloudflare HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:17 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 12804
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "vh4BMeDcNiCU"
Cache-Control: public,max-age=15552000
Expires: Sat, 31 Aug 2024 21:23:19 GMT
X-Cache: MISS
CF-Cache-Status: HIT
Age: 3562519
Vary: Accept-Encoding
CF-RAY: 8748acd49a1321f7-HKG
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3b017131499194566311d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/css/skin_1/profilev2.css?v=gNE3gksLVEVa&l=english&_cdn=cloudflare | 210.74.226.164 | 200 | 89 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/css/skin_1/profilev2.css?v=gNE3gksLVEVa&l=english&_cdn=cloudflare IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (1627), with CRLF, LF line terminators Hash80d137824b0b54455a822966f9907e66 bb4f6524c3e0c4205ac1a56bd4ce71d6e1b6150b 0677da27cf0a91f49c46f70e2f0f334e4d4b5598eb83c9438d5a6cfd4e755919
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/css/skin_1/profilev2.css?v=gNE3gksLVEVa&l=english&_cdn=cloudflare HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:17 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 88944
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "gNE3gksLVEVa"
Cache-Control: public,max-age=15552000
Expires: Sun, 22 Sep 2024 22:52:22 GMT
X-Cache: MISS
CF-Cache-Status: HIT
Age: 1667418
Vary: Accept-Encoding
CF-RAY: 8749ba648ead07a1-HKG
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3af17131619607248584d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/css/skin_1/sharedfiles_imagewall.css?v=KJTLcYZ05ByW&l=english&_cdn=cloudflare | 210.74.226.164 | 200 | 6.6 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/css/skin_1/sharedfiles_imagewall.css?v=KJTLcYZ05ByW&l=english&_cdn=cloudflare IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeASCII text, with CRLF line terminators Hash2894cb718674e41c96d7472cabcd5714 a1357f4db00332d23bf9d85d6bb4de9a29d136aa 4e0647f393bc47345c17d7f9a173a20dc99c2c23364a4c76d732d6e461d59b69
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/css/skin_1/sharedfiles_imagewall.css?v=KJTLcYZ05ByW&l=english&_cdn=cloudflare HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:17 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 6628
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "KJTLcYZ05ByW"
Cache-Control: public,max-age=15552000
Expires: Sat, 31 Aug 2024 08:19:59 GMT
X-Cache: MISS
CF-Cache-Status: HIT
Age: 4143078
Vary: Accept-Encoding
CF-RAY: 8784fe8bbfd75161-HKG
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ac17137824121076597d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0&_cdn=cloudflare | 210.74.226.164 | 200 | 16 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0&_cdn=cloudflare IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hash72938851e7c2ef7b63299eba0c6752cb b75196bd3a6f9f4dfc1bbf5e43e96874bcd9ce4e e2d4e0e1d3e162fdc815f16dfff9ae9b0a967949f0f3ae371f947d730a3f0661
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0&_cdn=cloudflare HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:17 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 16087
Connection: keep-alive
Last-Modified: Tue, 22 Mar 2022 23:23:42 GMT
ETag: ".zYHOpI1L3Rt0"
Cache-Control: public,max-age=15552000
Expires: Sat, 31 Aug 2024 23:00:36 GMT
X-Cache: MISS
CF-Cache-Status: HIT
Age: 3555778
Vary: Accept-Encoding
CF-RAY: 874896bccb7604d3-HKG
Content-Disposition: inline;filename=f.txt
traceId: 0670a053-8e44-482f-ac45-fdea0d253b28
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/javascript/scriptaculous/_combined.js?v=OeNIgrpEF8tL&l=english&_cdn=cloudflare&load=effects,controls,slider,dragdrop | 210.74.226.164 | 200 | 122 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/javascript/scriptaculous/_combined.js?v=OeNIgrpEF8tL&l=english&_cdn=cloudflare&load=effects,controls,slider,dragdrop IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Size122 kB (122171 bytes) Hash39e34882ba4417cb4b1b84916dabb770 0d0ca081fb60c8aad337091bafcbe84f966c38b0 da708635da162ea493874627775c3520a42145b79c73bf787b5113bf87c0b27c
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/javascript/scriptaculous/_combined.js?v=OeNIgrpEF8tL&l=english&_cdn=cloudflare&load=effects,controls,slider,dragdrop HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:17 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 122171
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "OeNIgrpEF8tL"
Cache-Control: public,max-age=15552000
Expires: Mon, 09 Sep 2024 14:56:44 GMT
X-Cache: MISS
CF-Cache-Status: HIT
Age: 2797259
Vary: Accept-Encoding
CF-RAY: 8748ac774d6a5dd8-HKG
Content-Disposition: inline;filename=f.txt
traceId: 9e672e2f-fe0d-44fa-8bb0-bc4e768847e9
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/javascript/global.js?v=PyuRtGtUpR0t&l=english&_cdn=cloudflare | 210.74.226.164 | 200 | 104 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/javascript/global.js?v=PyuRtGtUpR0t&l=english&_cdn=cloudflare IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (9521), with CRLF line terminators Size104 kB (103600 bytes) Hash53005ac26a66d137b6f0ad9d68fc48f9 44ed502059c0b2438bae8a552b19b1386d797576 bb14912294e2395ee8f4e29a03a36404f8a3da546880a9e80798a9b06cad8bbb
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/javascript/global.js?v=PyuRtGtUpR0t&l=english&_cdn=cloudflare HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:17 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 103600
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "PyuRtGtUpR0t"
Cache-Control: public,max-age=15552000
Expires: Sun, 22 Sep 2024 22:52:20 GMT
X-Cache: HIT
CF-Cache-Status: HIT
Age: 1656362
Vary: Accept-Encoding
CF-RAY: 8748ac77ce0b5dd8-HKG
Content-Disposition: inline;filename=f.txt
traceId: 48c684e9-02fc-4069-9656-15e4fee5287b
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/javascript/infinitescroll.js?v=3rAA-crEfnyw&l=english&_cdn=cloudflare | 210.74.226.164 | 200 | 3.2 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/javascript/infinitescroll.js?v=3rAA-crEfnyw&l=english&_cdn=cloudflare IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeASCII text, with CRLF line terminators Hashdeb000f9cac47e7cb0afd61528846f86 b05b2b946c49707cc5bfb35514057456ca7a44de 06c92e650fe3d083e35792a50c42de69a3fa5143b91cab3588c3bdfa00ec8edb
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/javascript/infinitescroll.js?v=3rAA-crEfnyw&l=english&_cdn=cloudflare HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:18 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 3239
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "3rAA-crEfnyw"
Cache-Control: public,max-age=15552000
Expires: Mon, 09 Sep 2024 21:15:00 GMT
X-Cache: MISS
CF-Cache-Status: HIT
Age: 3381811
Vary: Accept-Encoding
CF-RAY: 8784fe8dadf8105a-HKG
Content-Disposition: inline;filename=f.txt
traceId: b7dd3696-fe20-411a-bee9-8d134ab69de6
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/javascript/modalv2.js?v=dfMhuy-Lrpyo&l=english&_cdn=cloudflare | 210.74.226.164 | 200 | 3.9 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/javascript/modalv2.js?v=dfMhuy-Lrpyo&l=english&_cdn=cloudflare IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hash75f321bb2f8bae9ca8e5c4c6d72521bd 8ed540dc9da8c5d7c2bbe390fc663e6de0b1ef0c 92a217685eda5e8319d193142aeadf80ae7a9c9e04a9a365d9cf01078d459985
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/javascript/modalv2.js?v=dfMhuy-Lrpyo&l=english&_cdn=cloudflare HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:18 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 3869
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "dfMhuy-Lrpyo"
Cache-Control: public,max-age=15552000
Expires: Sat, 31 Aug 2024 21:23:30 GMT
X-Cache: MISS
CF-Cache-Status: HIT
Age: 3562495
Vary: Accept-Encoding
CF-RAY: 8748ac7cac8a04f0-HKG
Content-Disposition: inline;filename=f.txt
traceId: b81f8274-f23a-40b8-847c-e1b75542a876
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/javascript/jquery-1.11.1.min.js?v=.isFTSRckeNhC&_cdn=cloudflare | 210.74.226.164 | 200 | 96 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/javascript/jquery-1.11.1.min.js?v=.isFTSRckeNhC&_cdn=cloudflare IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32086), with CRLF line terminators Hash4dc834d16a0d219d5c2b8a5b814569e4 4fbe0563917d6f6289e4e1b4a0a8758e4e43bda9 91222f96f34735ebc88df208017e54d4329b9202e3e52367fb8b149698a1a5ef
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/javascript/jquery-1.11.1.min.js?v=.isFTSRckeNhC&_cdn=cloudflare HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:17 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 95790
Connection: keep-alive
Last-Modified: Fri, 05 Jan 2018 01:34:51 GMT
ETag: ".isFTSRckeNhC"
Cache-Control: public,max-age=15552000
Expires: Sat, 31 Aug 2024 21:24:48 GMT
X-Cache: MISS
CF-Cache-Status: HIT
Age: 3561525
Vary: Accept-Encoding
CF-RAY: 874896b53a6b20ee-HKG
Content-Disposition: inline;filename=f.txt
traceId: 4d698a77-0264-4f79-9790-cb43cc8036d9
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/javascript/modalContent.js?v=Wd0kCESeJquW&l=english&_cdn=cloudflare | 210.74.226.164 | 200 | 14 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/javascript/modalContent.js?v=Wd0kCESeJquW&l=english&_cdn=cloudflare IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (1011), with CRLF line terminators Hash59dd2408449e26ab969b384f6cc5cd98 09a2919cdeef326b8d4c492e7f65895e2dfb9801 78a72f3e67d9f2f0200e36adc262f794312e5c69001f18be84886601a8a59571
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/javascript/modalContent.js?v=Wd0kCESeJquW&l=english&_cdn=cloudflare HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:18 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 13922
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "Wd0kCESeJquW"
Cache-Control: public,max-age=15552000
Expires: Tue, 08 Oct 2024 04:07:54 GMT
X-Cache: MISS
CF-Cache-Status: HIT
Age: 271916
Vary: Accept-Encoding
CF-RAY: 8748ac7d4c7385db-HKG
Content-Disposition: inline;filename=f.txt
traceId: 383b7db3-293a-43ef-9be9-cf303caf18f7
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english&_cdn=cloudflare | 210.74.226.164 | 200 | 25 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english&_cdn=cloudflare IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with CRLF line terminators Hasha52bc800ab6e9df5a05a5153eea29ffb 8661643fcbc7498dd7317d100ec62d1c1c6886ff 57cfaf9b92c98541f769090cd0229a30013cea7cfafc18519ca654bfae29e14e
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english&_cdn=cloudflare HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:18 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 24657
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "pSvIAKtunfWg"
Cache-Control: public,max-age=15552000
Expires: Sun, 29 Sep 2024 09:11:21 GMT
X-Cache: MISS
CF-Cache-Status: HIT
Age: 1100825
Vary: Accept-Encoding
CF-RAY: 8748ac866a6404f0-HKG
Content-Disposition: inline;filename=f.txt
traceId: 7bdd1b21-a950-4c36-857a-e283c1c6b383
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| sp.aircsgo.com/ | 210.74.226.164 | | 8.6 kB |
IP210.74.226.164:0 ASN#4812 China Telecom Group
CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (3069), with CRLF, LF line terminators Hash53db3fc2832a995bb03e687fa7b24a23 53678f688633e00158fd42163d2291e210c1d440 79a345da6962b4f849ecdbd2cfdb4940b26cb2f057768eff65a747ca64a37591
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:18 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 8599
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Method: *
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Origin: https://sp.aircsgo.com
Access-Control-Expose-Headers: X-eresult,X-error_message
Cache-Control: no-cache
Content-Encoding: gzip
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Origin: https://sp.aircsgo.com
Set-Cookie: sessionid=23d0107faf7917897c98a25d; Path=/; Secure; SameSite=None;Domain=sp.aircsgo.com
steamCountry=HK%7C0cd2db4fb2f447f74a466798a62f4024; Path=/; Secure; HttpOnly; SameSite=None;Domain=sp.aircsgo.com
uid=4c36bb43-dca7-48c4-9721-4b3f62189898; Path=/; Domain=sp.aircsgo.com
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-Proxy-Hostname: steam-session-cluster-6c6fc676d6-659n4
traceId: eaac1cf3af17140247581038287d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/shared/javascript/shared_global.js?v=XPgJuNunk65I&l=english&_cdn=cloudflare | 210.74.226.164 | 200 | 154 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/shared/javascript/shared_global.js?v=XPgJuNunk65I&l=english&_cdn=cloudflare IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (2642), with CRLF line terminators Size154 kB (154433 bytes) Hash5cd536dfe772754c6adfb7f9d391b14a 3ff1a4ab8390846a940dd94f57e420c2155790ec 67fd5028d2b9a2d0725c905cf64584f50292ed7f16af25ddddd2dcec2f07ed60
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/shared/javascript/shared_global.js?v=XPgJuNunk65I&l=english&_cdn=cloudflare HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:18 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 154433
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "XPgJuNunk65I"
Cache-Control: public,max-age=15552000
Expires: Sun, 06 Oct 2024 22:37:24 GMT
X-Cache: HIT
CF-Cache-Status: HIT
Age: 444264
Vary: Accept-Encoding
CF-RAY: 8748ac7cabb985db-HKG
Content-Disposition: inline;filename=f.txt
traceId: 94de59d2-3292-4a96-8caa-a081f3ffc9b3
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/javascript/screenshot_functions_v2.js?v=86u3GLwQk5YF&l=english&_cdn=cloudflare | 210.74.226.164 | 200 | 6.5 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/javascript/screenshot_functions_v2.js?v=86u3GLwQk5YF&l=english&_cdn=cloudflare IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hashf3abb718bc10939605d1752bf8fc8091 e1ec415e263fadc1fabdd9d6938e32cff2460b82 a2546526ace529ed0a37b1570c9bdd56fa095edc5f6f9e1f448466d9a6e26661
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/javascript/screenshot_functions_v2.js?v=86u3GLwQk5YF&l=english&_cdn=cloudflare HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:18 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 6535
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "86u3GLwQk5YF"
Cache-Control: public,max-age=15552000
Expires: Sat, 31 Aug 2024 21:17:58 GMT
X-Cache: MISS
CF-Cache-Status: HIT
Age: 4195334
Vary: Accept-Encoding
CF-RAY: 8784fe8f99d704ea-HKG
Content-Disposition: inline;filename=f.txt
traceId: 822c1c93-9b4f-4cdd-9eba-fa87496b2249
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/javascript/prototype-1.7.js?v=.55t44gwuwgvw&_cdn=cloudflare | 210.74.226.164 | 200 | 169 kB |
URL GET HTTP/1.1sp.aircsgo.com/community-cloudflare-steamstatic-com/js/public/javascript/prototype-1.7.js?v=.55t44gwuwgvw&_cdn=cloudflare IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Size169 kB (169399 bytes) Hash6a39e0b509fecb928d47b8a2643fed2a f67fa6cb1d09963d10ba117d6553c8e7d5bc7863 d8bdea7fff893dbdbeaf6c2affec091a77483b9ec10e7958486bc3b6cc170c96
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /community-cloudflare-steamstatic-com/js/public/javascript/prototype-1.7.js?v=.55t44gwuwgvw&_cdn=cloudflare HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:18 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 169399
Connection: keep-alive
Last-Modified: Fri, 05 Jan 2018 01:34:51 GMT
ETag: ".55t44gwuwgvw"
Cache-Control: public,max-age=15552000
Expires: Sat, 31 Aug 2024 14:35:53 GMT
X-Cache: HIT
CF-Cache-Status: HIT
Age: 3571899
Vary: Accept-Encoding
CF-RAY: 874896ac896604bf-HKG
Content-Disposition: inline;filename=f.txt
traceId: cb80877e-945a-415e-8f8e-77d3b4ccd032
Strict-Transport-Security: max-age=15724800; includeSubDomains
Accept-Ranges: bytes
|
|
| avatars.cloudflare.steamstatic.com/8f33975422738a0fe6ca17999745a0fb9c1b1d0d_medium.jpg | 104.18.42.105 | 200 OK | 2.3 kB |
URL GET HTTP/2avatars.cloudflare.steamstatic.com/8f33975422738a0fe6ca17999745a0fb9c1b1d0d_medium.jpg IP104.18.42.105:443
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com Fingerprint93:35:92:83:13:20:24:C4:7E:7D:FB:1E:FB:23:34:01:4C:4E:A3:35 ValidityWed, 17 Apr 2024 02:31:33 GMT - Tue, 16 Jul 2024 02:31:32 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x64, components 3 Hash958c1f7679feac9eda5cfcad25c4d4b1 cfed951a1aa251cf64ace9876214a1c3f13fc23e 6f3d978e873d9f60b9b1a27bba262435056b564374c25e1808ad08794fcd27b7
GET /8f33975422738a0fe6ca17999745a0fb9c1b1d0d_medium.jpg HTTP/1.1
Host: avatars.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:59:19 GMT
content-type: image/jpeg
content-length: 2284
access-control-allow-origin: *
cache-control: max-age=315360000, public
cf-bgj: h2pri
content-md5: lYwfdnn+rJ7aXPytJcTUsQ==
etag: "0x8DBE70A3D9422B9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 17 Nov 2023 01:12:17 GMT
x-cache: MISS
cf-cache-status: HIT
age: 260275
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c1b38a80d5697-OSL
X-Firefox-Spdy: h2
|
|
| cdn.cloudflare.steamstatic.com/steamcommunity/public/images/items/1656240/82d81fe139354d7498150023113962c7fc50ec24.png | 104.18.42.105 | 200 OK | 1.9 MB |
URL GET HTTP/2cdn.cloudflare.steamstatic.com/steamcommunity/public/images/items/1656240/82d81fe139354d7498150023113962c7fc50ec24.png IP104.18.42.105:443
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com Fingerprint93:35:92:83:13:20:24:C4:7E:7D:FB:1E:FB:23:34:01:4C:4E:A3:35 ValidityWed, 17 Apr 2024 02:31:33 GMT - Tue, 16 Jul 2024 02:31:32 GMT
File typePNG image data, 224 x 224, 8-bit/color RGBA, non-interlaced Size1.9 MB (1889375 bytes) Hash2bce2917f8074b7336fc589cfdd15ea7 82d81fe139354d7498150023113962c7fc50ec24 7c7b6d6dc11019a362fefd39ca55ae845ca2cea8fd6154590811539f5a12217e
GET /steamcommunity/public/images/items/1656240/82d81fe139354d7498150023113962c7fc50ec24.png HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:59:19 GMT
content-type: image/png
content-length: 1889375
last-modified: Wed, 20 Oct 2021 20:08:50 GMT
etag: "61707752-1cd45f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public, max-age=315360000
edge-control: !no-store,!bypass-cache,cache-maxage=315360000
cf-cache-status: HIT
age: 13115971
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c1b38a80b5697-OSL
X-Firefox-Spdy: h2
|
|
| steamuserimages-a.akamaihd.net/ugc/2104928198610633806/CD7AB4BEE4E2555EB7CD5E4AF5E43BBFE9B66EED/?imw=1024&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false | 95.101.11.32 | 200 OK | 223 kB |
URL GET HTTP/2steamuserimages-a.akamaihd.net/ugc/2104928198610633806/CD7AB4BEE4E2555EB7CD5E4AF5E43BBFE9B66EED/?imw=1024&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false IP95.101.11.32:443 ASN#20940 Akamai International B.V.
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 883x1654, components 3 Size223 kB (222775 bytes) Hash8381d9795c323d8e890ea8125fb894cd af0220ccee7c608a76cc254b2ae55d4b553b04d5 b2a550166546d32932d031fef0c805631c888fc00a3c4b6e952ba9bd5a10a616
GET /ugc/2104928198610633806/CD7AB4BEE4E2555EB7CD5E4AF5E43BBFE9B66EED/?imw=1024&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Wed, 28 Feb 2024 23:06:54 GMT
access-control-expose-headers: origin
etag: "48a05fd3bfe7fdb2a70c438b75c2da4b"
server: Akamai Image Manager
content-length: 222775
content-type: image/jpeg
cache-control: private, no-transform, max-age=542523
expires: Wed, 01 May 2024 12:41:22 GMT
date: Thu, 25 Apr 2024 05:59:19 GMT
X-Firefox-Spdy: h2
|
|
| community.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Medium.ttf?v=4.015 | 104.18.42.105 | 200 OK | 124 kB |
URL GET HTTP/2community.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Medium.ttf?v=4.015 IP104.18.42.105:443
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com Fingerprint93:35:92:83:13:20:24:C4:7E:7D:FB:1E:FB:23:34:01:4C:4E:A3:35 ValidityWed, 17 Apr 2024 02:31:33 GMT - Tue, 16 Jul 2024 02:31:32 GMT
File typeTrueType Font data, digitally signed, 18 tables, 1st "DSIG", 24 names, Macintosh, Copyright � 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansMedium4.015;Plau;MotivaSans Size124 kB (124048 bytes) Hash2d64caa5ecbf5e42cbb766ca4d85e90e 147420abceb4a7fd7e486dddcfe68cda7ebb3a18 045b433f94502cfa873a39e72d616c73ec1b4c567b7ee0f847f442651683791f
GET /public/shared/fonts/MotivaSans-Medium.ttf?v=4.015 HTTP/1.1
Host: community.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sp.aircsgo.com
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:59:19 GMT
content-type: application/octet-stream
content-length: 124048
last-modified: Tue, 28 Jul 2020 23:16:28 GMT
etag: "5f20b1cc-1e490"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c1b3938745697-OSL
X-Firefox-Spdy: h2
|
|
| community.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Regular.ttf?v=4.015 | 104.18.42.105 | 200 OK | 123 kB |
URL GET HTTP/2community.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Regular.ttf?v=4.015 IP104.18.42.105:443
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com Fingerprint93:35:92:83:13:20:24:C4:7E:7D:FB:1E:FB:23:34:01:4C:4E:A3:35 ValidityWed, 17 Apr 2024 02:31:33 GMT - Tue, 16 Jul 2024 02:31:32 GMT
File typeTrueType Font data, digitally signed, 18 tables, 1st "DSIG", 22 names, Macintosh, Copyright � 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansRegular4.015;Plau;MotivaSan Size123 kB (122684 bytes) Hash57613e143ff3dae10f282e84a066de28 88756cc8c6db645b5f20aa17b14feefb4411c25f 19b8db163bcc51732457efa40911b4a422f297ff3cd566467d87eab93cef0c14
GET /public/shared/fonts/MotivaSans-Regular.ttf?v=4.015 HTTP/1.1
Host: community.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sp.aircsgo.com
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:59:19 GMT
content-type: application/octet-stream
content-length: 122684
last-modified: Tue, 28 Jul 2020 23:16:28 GMT
etag: "5f20b1cc-1df3c"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c1b39286e5697-OSL
X-Firefox-Spdy: h2
|
|
| steamuserimages-a.akamaihd.net/ugc/2027224692896055998/C32F258781C71A913DE99DD7658EE8D0FA4D4D96/?imw=320&imh=474&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true | 95.101.11.32 | 200 OK | 61 kB |
URL GET HTTP/2steamuserimages-a.akamaihd.net/ugc/2027224692896055998/C32F258781C71A913DE99DD7658EE8D0FA4D4D96/?imw=320&imh=474&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true IP95.101.11.32:443 ASN#20940 Akamai International B.V.
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x474, components 3 Hash9f50caf1f6a7515dffc7c9467901a3f2 341f9be802dace687e113ae68ad4999b6edb354b 52289e90d09618548da315a24716ddb55ad1419e235db04a7ca73e66bf13777e
GET /ugc/2027224692896055998/C32F258781C71A913DE99DD7658EE8D0FA4D4D96/?imw=320&imh=474&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Fri, 15 Mar 2024 06:15:10 GMT
access-control-expose-headers: origin
etag: "a096bc41b83149571ef838dedfed765c"
server: Akamai Image Manager
content-length: 61091
content-type: image/jpeg
cache-control: private, no-transform, max-age=542551
expires: Wed, 01 May 2024 12:41:50 GMT
date: Thu, 25 Apr 2024 05:59:19 GMT
X-Firefox-Spdy: h2
|
|
| community.cloudflare.steamstatic.com/public/shared/images/header/btn_header_installsteam_download.png?v=1 | 104.18.42.105 | 200 OK | 291 B |
URL GET HTTP/2community.cloudflare.steamstatic.com/public/shared/images/header/btn_header_installsteam_download.png?v=1 IP104.18.42.105:443
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com Fingerprint93:35:92:83:13:20:24:C4:7E:7D:FB:1E:FB:23:34:01:4C:4E:A3:35 ValidityWed, 17 Apr 2024 02:31:33 GMT - Tue, 16 Jul 2024 02:31:32 GMT
File typePNG image data, 15 x 13, 8-bit/color RGBA, non-interlaced Hasha2796187c58c7e948159e37d6990ecc2 4209cd85add507247f9ce5a87a8c9095b54ee417 23341256db7f44b1f3811880fa2bae6b7748bbf6b62c544a162e38cf0d5c5082
GET /public/shared/images/header/btn_header_installsteam_download.png?v=1 HTTP/1.1
Host: community.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:59:19 GMT
content-type: image/png
content-length: 291
last-modified: Wed, 21 Mar 2018 00:07:17 GMT
etag: "5ab1a235-123"
x-cache: MISS
cf-cache-status: HIT
age: 5407
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c1b3aea0b5697-OSL
X-Firefox-Spdy: h2
|
|
| steamuserimages-a.akamaihd.net/ugc/2011471443826726955/AD1E7970DB4DB77F54C664732CC72D518CB70993/?imw=640&imh=1256&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true | 95.101.11.32 | 200 OK | 142 kB |
URL GET HTTP/2steamuserimages-a.akamaihd.net/ugc/2011471443826726955/AD1E7970DB4DB77F54C664732CC72D518CB70993/?imw=640&imh=1256&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true IP95.101.11.32:443 ASN#20940 Akamai International B.V.
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x1256, components 3 Size142 kB (141931 bytes) Hashc4e947e4c0e7d6433a8a5618897d07f3 ae768608fb60ae7d91dfd93f0ca12550849b846f 27e016337506948e0024fd15e4bc0b61e097ce8db4e2eed997149973c8e19a05
GET /ugc/2011471443826726955/AD1E7970DB4DB77F54C664732CC72D518CB70993/?imw=640&imh=1256&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Thu, 07 Mar 2024 23:33:22 GMT
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
etag: "0x8DB8DBD6FD23A1C"
server: Akamai Image Manager
content-length: 141931
content-type: image/jpeg
cache-control: private, no-transform, max-age=542598
expires: Wed, 01 May 2024 12:42:37 GMT
date: Thu, 25 Apr 2024 05:59:19 GMT
X-Firefox-Spdy: h2
|
|
| community.cloudflare.steamstatic.com/public/images/sharedfiles/workshop_dateselect_arrow.png | 104.18.42.105 | 200 OK | 2.9 kB |
URL GET HTTP/2community.cloudflare.steamstatic.com/public/images/sharedfiles/workshop_dateselect_arrow.png IP104.18.42.105:443
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com Fingerprint93:35:92:83:13:20:24:C4:7E:7D:FB:1E:FB:23:34:01:4C:4E:A3:35 ValidityWed, 17 Apr 2024 02:31:33 GMT - Tue, 16 Jul 2024 02:31:32 GMT
File typePNG image data, 17 x 40, 8-bit/color RGBA, non-interlaced Hash5f2ec6de94f94e65f2c7d56ffc51d0df 60f21f57782f1e5d0d09fc6afcf7c5edda6e1f0d d15fd3493829654c80c3dc2b43741d496e77ac7a49a5c27bb7049288ac295aa1
GET /public/images/sharedfiles/workshop_dateselect_arrow.png HTTP/1.1
Host: community.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:59:19 GMT
content-type: image/png
content-length: 2850
last-modified: Fri, 05 Jan 2018 01:34:50 GMT
etag: "5a4ed63a-b22"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
age: 1655
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c1b3b1a3c5697-OSL
X-Firefox-Spdy: h2
|
|
| steamuserimages-a.akamaihd.net/ugc/2011471443826716499/61F072FBA367057729985C96A30416EC5F55B9D7/?imw=640&imh=1265&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true | 95.101.11.32 | 200 OK | 163 kB |
URL GET HTTP/2steamuserimages-a.akamaihd.net/ugc/2011471443826716499/61F072FBA367057729985C96A30416EC5F55B9D7/?imw=640&imh=1265&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true IP95.101.11.32:443 ASN#20940 Akamai International B.V.
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x1265, components 3 Size163 kB (163394 bytes) Hashdf92bce73d7c8daefd77055b86f503e9 0a38e518d46151b08abc49ff9ff16b11e10eb9a2 2ad94c7f0bbe14593ffbfaa44c97b029edf523f4baad22201232a0c269ac203d
GET /ugc/2011471443826716499/61F072FBA367057729985C96A30416EC5F55B9D7/?imw=640&imh=1265&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Mon, 15 Apr 2024 10:13:58 GMT
access-control-expose-headers: origin
etag: "3f8f6452ac8dbb200ab88ac143796bdd"
server: Akamai Image Manager
content-length: 163394
content-type: image/jpeg
cache-control: private, no-transform, max-age=542603
expires: Wed, 01 May 2024 12:42:42 GMT
date: Thu, 25 Apr 2024 05:59:19 GMT
X-Firefox-Spdy: h2
|
|
| steamuserimages-a.akamaihd.net/ugc/2027224692896042166/FE0DC5AA02C6DCC04D55B024EAC90988D289BB72/?imw=320&imh=180&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true | 95.101.11.32 | 200 OK | 28 kB |
URL GET HTTP/2steamuserimages-a.akamaihd.net/ugc/2027224692896042166/FE0DC5AA02C6DCC04D55B024EAC90988D289BB72/?imw=320&imh=180&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true IP95.101.11.32:443 ASN#20940 Akamai International B.V.
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3 Hash10265c13581a147fb64d758eb56e00e7 436b05b7eb1357ac24e7db327b44cceb0be75a25 c59c46ad5a1b0aadeb22f0e957302f66d65a3a76cbcee8f78765e952dff5a7eb
GET /ugc/2027224692896042166/FE0DC5AA02C6DCC04D55B024EAC90988D289BB72/?imw=320&imh=180&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Wed, 03 Apr 2024 21:37:31 GMT
access-control-expose-headers: origin
etag: "4d7f984b93be006d89b024560b01726f"
server: Akamai Image Manager
content-length: 27597
content-type: image/jpeg
cache-control: private, no-transform, max-age=542618
expires: Wed, 01 May 2024 12:42:57 GMT
date: Thu, 25 Apr 2024 05:59:19 GMT
X-Firefox-Spdy: h2
|
|
| sp.aircsgo.com/favicon.ico | 210.74.226.164 | 200 | 39 kB |
URL GET HTTP/1.1sp.aircsgo.com/favicon.ico IP210.74.226.164:443 ASN#4812 China Telecom Group
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerDigiCert Inc Subjectsp.aircsgo.com Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3 ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT
File typeMS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel Hash231913fdebabcbe65f4b0052372bde56 553909d080e4f210b64dc73292f3a111d5a0781f 9f890a9debcdfccc339149a7943be9aff9e4c9203c2fa37d5671a5b2c88503ad
Analyzer | Verdict | Alert | OpenPhish | phishing | Steam | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/profiles/76561198996550687/images
Cookie: sessionid=ec8cc657afe146d844c00df7; steamCountry=HK%7C085525a1c545a31f04ace7536fceb90e; uid=46e5437f-431f-4a61-9d86-ffe1eed43558; timezoneOffset=0,0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.25.4
Date: Thu, 25 Apr 2024 05:59:19 GMT
Content-Type: image/x-icon
Content-Length: 38554
Connection: keep-alive
Last-Modified: Tue, 18 Sep 2018 23:32:59 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Method: *
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Origin: https://sp.aircsgo.com
Access-Control-Expose-Headers: X-eresult,X-error_message
Cache-Control: public,max-age=86400
Expires: Fri, 16 Feb 2024 14:26:29 GMT
Origin: https://sp.aircsgo.com
Set-Cookie: uid=46e5437f-431f-4a61-9d86-ffe1eed43558; Path=/; Domain=sp.aircsgo.com
X-Proxy-Hostname: steam-session-cluster-6c6fc676d6-df58b
traceId: eaac1cf3ad17140247598112731d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains
|
|
| community.cloudflare.steamstatic.com/public/shared/images/header/logo_steam.svg?t=962016 | 104.18.42.105 | 200 OK | 3.7 kB |
URL GET HTTP/2community.cloudflare.steamstatic.com/public/shared/images/header/logo_steam.svg?t=962016 IP104.18.42.105:443
Requested byhttps://sp.aircsgo.com/profiles/76561198996550687/images CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com Fingerprint93:35:92:83:13:20:24:C4:7E:7D:FB:1E:FB:23:34:01:4C:4E:A3:35 ValidityWed, 17 Apr 2024 02:31:33 GMT - Tue, 16 Jul 2024 02:31:32 GMT
File typeSVG Scalable Vector Graphics image Hashca81bf2f0d99757a6f97b0fec3cf5ab5 de4b8d0953809e4687fa45f95092c9c5e92ca146 b83d5a05f79f53d2945fe89bee2239fad2761c2eccee6ad655bbec92a85a80e1
GET /public/shared/images/header/logo_steam.svg?t=962016 HTTP/1.1
Host: community.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:59:16 GMT
content-type: image/svg+xml
last-modified: Tue, 17 Nov 2020 23:34:54 GMT
etag: W/"5fb45e1e-e64"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
age: 5705
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c1b26ba1d5697-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|