{"report_id":"22ac674e-f7e6-4d68-96ca-ffded232f371","version":6,"status":"done","tags":[],"date":"2025-12-24T20:51:51Z","url":{"schema":"http","addr":"steam.assiw.xyz/","fqdn":"steam.assiw.xyz","domain":"assiw.xyz","tld":"xyz"},"ip":{"addr":"149.104.2.34","port":0,"asn":6134,"as":"XNNET","country":"Hong Kong","country_code":"HK"},"final":{"url":{"schema":"https","addr":"steam.assiw.xyz/","fqdn":"steam.assiw.xyz","domain":"assiw.xyz","tld":"xyz"},"title":"Assiw - Steam游戏清单工具","dom":{"size":21638,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (18045)","md5":"b82ba1d02482d0fcfd6ae994b9cc962b","sha1":"b3b388eaf2d92bbf7806498b75ae8d0c4135886d","sha256":"7cac9d0d0f1b1d6feb1e827ba857834e9f3709cb41815f8cac3bb15e5e495743","sha512":"13d3fb97f5b6fe3dc1478b015d1bc1d221ea8dab53ee7606336bc88d933d14220453988b9e4d745fdd749a42e7ed36468f8ac2dc13de801fc8341b46b40e318e","ssdeep":"384:tAT5/+suS2ApQTuDNC0fpUpJlLeETVK7mEuDorcIsdCOMrNlksB+b8pYaDXGP9nM:tA1+suS2ApQTuDNC0fpUpJlLeETVK7m4","tlshash":"1aa2a7b0d2839058b23be2d5d4a70a086a76f14ff30a5c69fdfe205d878b955b7630b1","dom_hash":"domhasheb4abafe3f51d3ad39fb66baf13f5bc4","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"steam.assiw.xyz/","fqdn":"steam.assiw.xyz","domain":"assiw.xyz","tld":"xyz"},"ip":{"addr":"149.104.2.34","port":0,"asn":6134,"as":"XNNET","country":"Hong Kong","country_code":"HK"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-28T20:51:51Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-24","alert":"Sinkholed","trigger":"steam.assiw.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"steam.assiw.xyz","ip":{"addr":"149.104.2.34","port":443,"asn":6134,"as":"XNNET","country":"Hong Kong","country_code":"HK"},"domain_registered":"2024-08-22","domain_rank":0,"first_seen":"2025-09-12T05:31:33.427694Z","last_seen":"2025-09-12T05:31:33.427694Z","alert_count":7,"request_count":7,"received_data":264321,"sent_data":3106,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}]},{"fqdn":"fonts.loli.net","ip":{"addr":"172.67.69.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2011-05-28","domain_rank":3107625,"first_seen":"2018-03-20T13:46:36Z","last_seen":"2025-12-20T05:36:55.047117Z","alert_count":0,"request_count":1,"received_data":449843,"sent_data":475,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"gstatic.loli.net","ip":{"addr":"104.26.1.190","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2011-05-28","domain_rank":0,"first_seen":"2018-03-20T13:46:37Z","last_seen":"2025-12-20T05:36:55.094599Z","alert_count":0,"request_count":4,"received_data":204724,"sent_data":2280,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"tonji.assiw.xyz","ip":{"addr":"149.104.2.34","port":443,"asn":6134,"as":"XNNET","country":"Hong Kong","country_code":"HK"},"domain_registered":"2024-08-22","domain_rank":0,"first_seen":"2025-09-12T05:31:33.426766Z","last_seen":"2025-09-12T05:31:33.426766Z","alert_count":0,"request_count":1,"received_data":261,"sent_data":492,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"steam.assiw.xyz/js/chunk-vendors.4f642007.js","fqdn":"steam.assiw.xyz","domain":"assiw.xyz","tld":"xyz"},"ip":{"addr":"149.104.2.34","port":443,"asn":6134,"as":"XNNET","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"30e1fbbe9ca89b8e95b27afdfdc49953","sha1":"b7f58e432e017169b7d1d1471d897cb2ff635f78","sha256":"e95119aff7042999cb8fb55d583d2cc52f391e2ec2c5777c9fcfb22ac7ea6e13","sha512":"29d1b1e5b0409429c37dd8a543ff17c8fa1ed9e6204f26f2ea338f6f9efd3a5a42eabb6abf5c22efeeca6fa35f69efcb4920449481c5512f7fd8db7424391f89","ssdeep":"3072:ACxTl6zuI4/y/+QS7gh434DlWwZ8NP9u1bgq0xy2Bmns4N:NtlgKy/+QS7gh4opZ8B9uFz0Y2BFI","tlshash":"d81418c97196b0a153ea24e5403f140af27a6966340e84e4f2a8fddb7c7a54e407bf7c","size":193407,"data":"","first_seen":"2025-12-24T20:51:55.314367Z","last_seen":"2025-12-24T20:51:55.314367Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"steam.assiw.xyz/js/app.ff9ea464.js","fqdn":"steam.assiw.xyz","domain":"assiw.xyz","tld":"xyz"},"ip":{"addr":"149.104.2.34","port":443,"asn":6134,"as":"XNNET","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"a9b6bf89bf97a9168f2ed173c328adfd","sha1":"49e6984c7e19736a61ad5e4db9a15b2f3d78b298","sha256":"99a0af5cb77a940db5b5fce1b443c713428117837e27ae554cb1a5f300f53681","sha512":"dfb365d1cd9397c102290a3c8c9e58fadb82f90b52dd91e1aa54b909c7aec8a6c66c22db596dd16668b337617fc7c199801557be276b35e3cdeca7a94ff6f3cf","ssdeep":"384:GEKqED5XHJzj7A7sTdghxQo7cmX62z1wU/LKsLzza4nUUp7Wfm/tvIqR6cMfGpr/:GEKjlxj7osTd4P4G62zj/Os/mlUZf/tF","tlshash":"44721941e1a0e538c5d3c4ccda2a002972277d4fa26f88b9b7bdd4e86f8b856f610775","size":16298,"data":"","first_seen":"2025-12-24T20:51:55.300973Z","last_seen":"2025-12-24T20:51:55.300973Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"steam.assiw.xyz/","fqdn":"steam.assiw.xyz","domain":"assiw.xyz","tld":"xyz"},"ip":{"addr":"149.104.2.34","port":443,"asn":6134,"as":"XNNET","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"dbd5e9ab4decaa6f5d336196445ebcd5","sha1":"98f39f699983afd061b4200668b16ab3d9a9e6f1","sha256":"a2d754e3463af10aeff74a647d60978ec11c713342e20b7e9a23445a0a66a214","sha512":"c9f9f90ad0eca3e7e8fa9cf26fe0c79ae0631b8b56be00966e3dbd7659d5a715fdd4277f7ec1be90dab863df5f8f3e77f4baf2b38275534560a251ca31c95282","ssdeep":"","tlshash":"aec04c4f904b117981604054665f5e5273350c2110a66b40bbcc914d7f5250b4566d9a","size":140,"data":"","first_seen":"2025-12-02T10:47:09.989947Z","last_seen":"2026-04-02T13:34:40.030749Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"steam.assiw.xyz/","fqdn":"steam.assiw.xyz","domain":"assiw.xyz","tld":"xyz"},"ip":{"addr":"149.104.2.34","port":443,"asn":6134,"as":"XNNET","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"ad6bb597b21f36020a534ec4244a0cac","sha1":"b8da3e99710e9179be1e5a885e4e2759b3fa4b8a","sha256":"94c51321a57a1d7e32faf2ca4ff25d3503eddccca3d4d7a4b8fe19db6e5d80b9","sha512":"c4c0b5f0265b105b3c7ea9d061bac7d9a1de5ee6005a389a41b18524a573686c225f520c0afa53f0eb2cb4d48fd014df912b4a200584fb3ea9b6333e2195c41b","ssdeep":"","tlshash":"e4e0df2ebb77d0101253f075133f5908203ea65f6805c9853e2e469cafa1a8fb443ae6","size":422,"data":"","first_seen":"2025-12-24T20:51:55.324257Z","last_seen":"2025-12-24T20:51:55.324257Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"steam.assiw.xyz/","fqdn":"steam.assiw.xyz","domain":"assiw.xyz","tld":"xyz"},"ip":{"addr":"149.104.2.34","port":443,"asn":6134,"as":"XNNET","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"0d8048d2e2473e48e34ae915547f40d6","sha1":"c6c20ecd00fe798cefe7bbab74d67c48ada8e7c1","sha256":"785d146a1c9b65d6df3b531fca588da904a4770cb77340f7deb693fbeabcf5e0","sha512":"3005d24a274182660822a269f8f3c893567e475352c816e25fcbde278c4d18cfe28911ee1beab85210652900344820ffad9dfb0900d7258d72d064e7fb5cd19a","ssdeep":"","tlshash":"06e0d8b31ae0503fb89b201a523ba70978a6f5202f59651dc9cc50d5266372e89336f4","size":409,"data":"","first_seen":"2025-12-24T20:51:55.326804Z","last_seen":"2025-12-24T20:51:55.326804Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"gstatic.loli.net/s/notosanssc/v39/k3kXo84MPvpLmixcA63oeALRLoKI.woff2","fqdn":"gstatic.loli.net","domain":"loli.net","tld":"net"},"ip":{"addr":"104.26.1.190","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://steam.assiw.xyz/","date":"2025-12-24T20:51:32.142Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"gstatic.loli.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 16 Nov 2025 21:35:29 GMT","end":"Sat, 14 Feb 2026 22:35:26 GMT"},"fingerprint":{"sha1":"C0:9B:63:31:25:78:62:DA:7F:8E:BA:FC:8C:FF:5E:A9:E2:AE:A2:C3","sha256":"DC:FC:50:01:18:55:7C:67:02:A1:AA:FF:74:05:B3:88:A1:CC:48:CF:0B:5B:35:49:C6:D4:DF:79:28:8C:EE:E6"}}},"request":{"raw":"GET /s/notosanssc/v39/k3kXo84MPvpLmixcA63oeALRLoKI.woff2 HTTP/1.1\r\nHost: gstatic.loli.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://steam.assiw.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.loli.net/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 24 Dec 2025 20:51:32 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 25332\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nlast-modified: Wed, 10 Sep 2025 16:39:52 GMT\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\naccept-ranges: bytes\r\nage: 2500997\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\ncf-ray: 9b32fa2e9efc5691-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25332,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 25332, version 1.0","md5":"e51165c038d1acac72e883dee55bc427","sha1":"f7243ad1e6f00f7374ef3154659ef617851ee600","sha256":"0c3749e0b01e72bf01094be89a80910cd374820638ba9a830f00aa237461f5b3","sha512":"73c1fc0044941d6704345c90362abc9dec75bebf45a38ee44434f5d54a822d5caff5f950cb9bcd3e2ecc4265e48c97e96fc843f1f516931031b520c96872ff20","ssdeep":"768:aiJqu3dPcWJhJFSA3+2B3/iwf55la3tz3Qs9nhjALAXBseeyM/p:aWquCWTjSAv3KP93zwnei","tlshash":"c8b2e12fa117e34ea291c56aaee8f03f41c0230746d71dbdd260dabec1f586d05ad162","first_seen":"2025-05-30T03:30:48.270001Z","last_seen":"2026-03-27T13:45:36.922714Z","times_seen":452,"resource_available":false,"data":null}},"time_used":246,"timings":{"blocked":116,"dns":77,"connect":1,"send":0,"wait":11,"receive":2,"ssl":35},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gstatic.loli.net/s/notosanssc/v39/k3kXo84MPvpLmixcA63oeALhLOCT-xWNm8Hqd37g1OkDRZe7lR4sg1IzSy-MNbE9VH8V.117.woff2","fqdn":"gstatic.loli.net","domain":"loli.net","tld":"net"},"ip":{"addr":"104.26.1.190","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://steam.assiw.xyz/","date":"2025-12-24T20:51:32.150Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"gstatic.loli.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 16 Nov 2025 21:35:29 GMT","end":"Sat, 14 Feb 2026 22:35:26 GMT"},"fingerprint":{"sha1":"C0:9B:63:31:25:78:62:DA:7F:8E:BA:FC:8C:FF:5E:A9:E2:AE:A2:C3","sha256":"DC:FC:50:01:18:55:7C:67:02:A1:AA:FF:74:05:B3:88:A1:CC:48:CF:0B:5B:35:49:C6:D4:DF:79:28:8C:EE:E6"}}},"request":{"raw":"GET /s/notosanssc/v39/k3kXo84MPvpLmixcA63oeALhLOCT-xWNm8Hqd37g1OkDRZe7lR4sg1IzSy-MNbE9VH8V.117.woff2 HTTP/1.1\r\nHost: gstatic.loli.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://steam.assiw.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.loli.net/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 24 Dec 2025 20:51:32 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 52548\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nlast-modified: Wed, 10 Sep 2025 16:42:12 GMT\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\naccept-ranges: bytes\r\nage: 2503675\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\ncf-ray: 9b32fa2e9ef85691-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":52548,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 52548, version 1.0","md5":"218c89509c6d1f256209a59a38cbb0bc","sha1":"56ecdc138303704b6339c427acdcfd9c9492bbc4","sha256":"598998b003b41ec6764ec5306b2daedd5eda85a94d2bfc0c800c93c1766b6947","sha512":"6e9e1c0c4b35672f4b36ebb7dbcb50e88e21adbf673ab175e970801fbae2e77b802d902e8de2e3e672b79f3ab4027e404d1885995f6cb92e7fd170efc4835015","ssdeep":"1536:x03InZKxUNj5iXYBPS8sdryZ6J23pxZ9mjH/g1BAv+:x03NxUnfaJryZ6+pvagf","tlshash":"f333f16ab02dba8bb73f50bf95138e1649645ce51344899b87b88ce9c7037fb644c387","first_seen":"2025-05-30T03:30:48.351939Z","last_seen":"2026-01-06T09:42:57.964828Z","times_seen":410,"resource_available":false,"data":null}},"time_used":224,"timings":{"blocked":105,"dns":69,"connect":4,"send":0,"wait":11,"receive":3,"ssl":29},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gstatic.loli.net/s/notosanssc/v39/k3kXo84MPvpLmixcA63oeALhLOCT-xWNm8Hqd37g1OkDRZe7lR4sg1IzSy-MNbE9VH8V.119.woff2","fqdn":"gstatic.loli.net","domain":"loli.net","tld":"net"},"ip":{"addr":"104.26.1.190","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://steam.assiw.xyz/","date":"2025-12-24T20:51:32.151Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"gstatic.loli.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 16 Nov 2025 21:35:29 GMT","end":"Sat, 14 Feb 2026 22:35:26 GMT"},"fingerprint":{"sha1":"C0:9B:63:31:25:78:62:DA:7F:8E:BA:FC:8C:FF:5E:A9:E2:AE:A2:C3","sha256":"DC:FC:50:01:18:55:7C:67:02:A1:AA:FF:74:05:B3:88:A1:CC:48:CF:0B:5B:35:49:C6:D4:DF:79:28:8C:EE:E6"}}},"request":{"raw":"GET /s/notosanssc/v39/k3kXo84MPvpLmixcA63oeALhLOCT-xWNm8Hqd37g1OkDRZe7lR4sg1IzSy-MNbE9VH8V.119.woff2 HTTP/1.1\r\nHost: gstatic.loli.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://steam.assiw.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.loli.net/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 24 Dec 2025 20:51:32 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 76560\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nlast-modified: Wed, 10 Sep 2025 16:42:11 GMT\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\naccept-ranges: bytes\r\nage: 2406883\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\ncf-ray: 9b32fa2e9f005691-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":76560,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 76560, version 1.0","md5":"becb86e96979088d6622eb463f3d1f70","sha1":"73ec794d3b4903837c838e5bf4c5b067ecfebba3","sha256":"02692806818342378815c247a8f241faece2a62d725849c7bb4479364aaddf7a","sha512":"5c16e23fe2b671ec8fb5eece001297c4ace001dd5eb3c2e57b8d47dd924d3da3837c6c0e72a81706b9e25eb5497776d4533775626921df91c03d8218d50464b6","ssdeep":"1536:e4ZSLLdmiOYaECQICvaVbXBoRHLyLCYzoauNfUYOCko1Vx:e4ZSnfCQIstRHLscNUYOwV","tlshash":"9e7312702e6bc5741d11ba721de03dfbe738beab61b16518a97c28efa4568a0d930201","first_seen":"2025-05-30T03:30:48.385325Z","last_seen":"2026-01-06T09:42:57.967169Z","times_seen":414,"resource_available":false,"data":null}},"time_used":232,"timings":{"blocked":109,"dns":68,"connect":4,"send":0,"wait":12,"receive":2,"ssl":29},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tonji.assiw.xyz//track.php?url=https%3A%2F%2Fsteam.assiw.xyz%2F\u0026ref=\u0026t=1766609492147","fqdn":"tonji.assiw.xyz","domain":"assiw.xyz","tld":"xyz"},"ip":{"addr":"149.104.2.34","port":443,"asn":6134,"as":"XNNET","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://steam.assiw.xyz/","date":"2025-12-24T20:51:32.154Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"assiw.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Oct 2025 10:09:04 GMT","end":"Wed, 14 Jan 2026 10:09:03 GMT"},"fingerprint":{"sha1":"4D:DD:EF:5A:68:DB:4D:4C:38:14:41:62:2A:87:2E:40:89:85:FB:4B","sha256":"EB:CB:9F:41:40:A5:2F:58:C1:3C:F6:65:05:C9:62:17:86:77:81:C4:81:B6:63:69:3D:08:68:4F:7F:4C:8B:D1"}}},"request":{"raw":"GET //track.php?url=https%3A%2F%2Fsteam.assiw.xyz%2F\u0026ref=\u0026t=1766609492147 HTTP/1.1\r\nHost: tonji.assiw.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://steam.assiw.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0 (Ubuntu)\r\ndate: Wed, 24 Dec 2025 20:51:32 GMT\r\ncontent-type: image/gif\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/gif","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T01:30:53.33799Z","times_seen":13310387,"resource_available":true,"data":null}},"time_used":342,"timings":{"blocked":150,"dns":0,"connect":0,"send":0,"wait":192,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"steam.assiw.xyz/imges/215fsa3-1.png","fqdn":"steam.assiw.xyz","domain":"assiw.xyz","tld":"xyz"},"ip":{"addr":"149.104.2.34","port":443,"asn":6134,"as":"XNNET","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://steam.assiw.xyz/","date":"2025-12-24T20:51:32.173Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"assiw.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Oct 2025 10:09:04 GMT","end":"Wed, 14 Jan 2026 10:09:03 GMT"},"fingerprint":{"sha1":"4D:DD:EF:5A:68:DB:4D:4C:38:14:41:62:2A:87:2E:40:89:85:FB:4B","sha256":"EB:CB:9F:41:40:A5:2F:58:C1:3C:F6:65:05:C9:62:17:86:77:81:C4:81:B6:63:69:3D:08:68:4F:7F:4C:8B:D1"}}},"request":{"raw":"GET /imges/215fsa3-1.png HTTP/1.1\r\nHost: steam.assiw.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://steam.assiw.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0 (Ubuntu)\r\ndate: Wed, 24 Dec 2025 20:51:32 GMT\r\ncontent-type: image/png\r\ncontent-length: 31597\r\nlast-modified: Sat, 06 Dec 2025 13:37:53 GMT\r\netag: \"693431b1-7b6d\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":31597,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1280 x 87, 8-bit/color RGBA, non-interlaced","md5":"809ccc629a06a823e8bb0bb0c7b0a006","sha1":"4f76cf3b1a64fbb35b380ed27165ed558219c7ab","sha256":"c83ba6ee3e4fb190020cc928b60e935668b9e9478ab006f1199d75e73b2ad996","sha512":"ba622a9e9aa94450db7807d08a49ce0a0840d704b66066b2745bcf345a0c6f310924aa10f93e6654112b2db1e2acd9265dac27a5bfc09cd37b15c4cb0092b807","ssdeep":"768:cbHCsMQjmsNJQwk9NjTgLqRx/P9TLRIrWJGL7yd8J:czCwQZjp/PxtI9L7yd8J","tlshash":"91e2e143a20fdce1fb9305d96926a3e2e7f242207e8b26b1e45f1115f415d78643f8ea","first_seen":"2025-12-24T20:51:55.284262Z","last_seen":"2025-12-24T20:51:55.284262Z","times_seen":1,"resource_available":false,"data":null}},"time_used":203,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":194,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-24","alert":"Sinkholed","trigger":"steam.assiw.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"steam.assiw.xyz/","fqdn":"steam.assiw.xyz","domain":"assiw.xyz","tld":"xyz"},"ip":{"addr":"149.104.2.34","port":443,"asn":6134,"as":"XNNET","country":"Hong Kong","country_code":"HK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-24T20:51:28.795Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"assiw.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Oct 2025 10:09:04 GMT","end":"Wed, 14 Jan 2026 10:09:03 GMT"},"fingerprint":{"sha1":"4D:DD:EF:5A:68:DB:4D:4C:38:14:41:62:2A:87:2E:40:89:85:FB:4B","sha256":"EB:CB:9F:41:40:A5:2F:58:C1:3C:F6:65:05:C9:62:17:86:77:81:C4:81:B6:63:69:3D:08:68:4F:7F:4C:8B:D1"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: steam.assiw.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0 (Ubuntu)\r\ndate: Wed, 24 Dec 2025 20:51:29 GMT\r\ncontent-type: text/html\r\nlast-modified: Sat, 06 Dec 2025 13:37:56 GMT\r\netag: W/\"693431b4-f03\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3843,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (986)","md5":"ccec67b03bd1695b790b5f571fa65a8a","sha1":"646a483d2bca7746d3db1e894b514f2e420492a1","sha256":"8af271fadf8c4c0ed526d4cbbb5894e989c54e15ced65783cbc1b2119e866565","sha512":"2dea1d5e55de9ff735bb616de18ebecd75ff78e4543aee28158de16c22b44154912ffaa24d31c3e0daf4044fa9251fe87e25a58e18d368dac5abb1d3221c680b","ssdeep":"","tlshash":"67819477a922d0396213e0741b39b60c347da517570adc5abedd528ccf81bce88a3ad1","first_seen":"2025-12-24T20:51:55.287036Z","last_seen":"2025-12-24T20:51:55.287036Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1116,"timings":{"blocked":465,"dns":80,"connect":186,"send":0,"wait":186,"receive":0,"ssl":194},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-24","alert":"Sinkholed","trigger":"steam.assiw.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.loli.net/css2?family=Noto+Sans+SC:wght@300;400;500;700\u0026display=swap","fqdn":"fonts.loli.net","domain":"loli.net","tld":"net"},"ip":{"addr":"172.67.69.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://steam.assiw.xyz/","date":"2025-12-24T20:51:29.669Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fonts.loli.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 16 Nov 2025 09:42:49 GMT","end":"Sat, 14 Feb 2026 10:42:48 GMT"},"fingerprint":{"sha1":"4F:38:92:DB:EE:1C:C4:92:4C:5A:B0:7C:44:FD:2B:37:91:6C:1C:76","sha256":"54:FB:77:2A:F1:67:F8:7D:41:9D:C8:7F:38:FD:7A:F5:A5:0B:E3:E4:F0:14:FF:09:E7:B8:E0:5B:7B:64:74:37"}}},"request":{"raw":"GET /css2?family=Noto+Sans+SC:wght@300;400;500;700\u0026display=swap HTTP/1.1\r\nHost: fonts.loli.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://steam.assiw.xyz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 24 Dec 2025 20:51:31 GMT\r\ncontent-type: text/css; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: br\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=M3xzqpzD%2BpGk6pQO5%2BrQ1jgp2u3Hfs6WaKiRyP7L6dFlVVYB2c61E0mxCxjn8jO7nV78s6UnrNNwC7CAbXz8gzxNiTLMJ1wT5u4S\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b32fa1f28545697-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":448896,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (934)","md5":"8150d2dd5482f75a0d4b9fb4459cad14","sha1":"061cd4100789ad35326d7093c1c3560736c86fb9","sha256":"6bc68864f67172df6344ae42794f6539f5376d2787e4c4df7f8941df8441d5d0","sha512":"cbd82efd4363755acf93fca021b2f93c4818d62bfad8af22b2a996ec138fa1f923c49038bec44050df975ae751118c6cb09d75ca00f4e1dcaa502c3d28869c01","ssdeep":"3072:cyzxw9oEcSvkhIS53RNWTTL8T2kh4zcIXNMVSq80xk5cAgmrhAdMwc+zkp4m3:ZzxIoy8vRNwTE5qXN4SaqlrhIMqoR","tlshash":"0ea40da5850789cffde76ca251cdd9147ea978bcf980893852f415d3ac0a04ee1dbb8c","first_seen":"2025-10-25T06:26:50.891416Z","last_seen":"2025-12-24T20:51:55.292275Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2332,"timings":{"blocked":113,"dns":88,"connect":1,"send":0,"wait":2104,"receive":0,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"steam.assiw.xyz/css/app.4aaeccb3.css","fqdn":"steam.assiw.xyz","domain":"assiw.xyz","tld":"xyz"},"ip":{"addr":"149.104.2.34","port":443,"asn":6134,"as":"XNNET","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://steam.assiw.xyz/","date":"2025-12-24T20:51:29.677Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"assiw.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Oct 2025 10:09:04 GMT","end":"Wed, 14 Jan 2026 10:09:03 GMT"},"fingerprint":{"sha1":"4D:DD:EF:5A:68:DB:4D:4C:38:14:41:62:2A:87:2E:40:89:85:FB:4B","sha256":"EB:CB:9F:41:40:A5:2F:58:C1:3C:F6:65:05:C9:62:17:86:77:81:C4:81:B6:63:69:3D:08:68:4F:7F:4C:8B:D1"}}},"request":{"raw":"GET /css/app.4aaeccb3.css HTTP/1.1\r\nHost: steam.assiw.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://steam.assiw.xyz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0 (Ubuntu)\r\ndate: Wed, 24 Dec 2025 20:51:29 GMT\r\ncontent-type: text/css\r\ncontent-length: 16276\r\nlast-modified: Sat, 06 Dec 2025 13:37:53 GMT\r\netag: \"693431b1-3f94\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":16276,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (16276), with no line terminators","md5":"4b5f5114169f0093acee711d7e095c9d","sha1":"fbfb3961c345da5ae150edffe65a69b27ffa3105","sha256":"14eccf34e8e6bd683175dd8be76c6cb165560309ccf7552a9c9c5231960eb3de","sha512":"328212a0493e1ac25396af02d64481c7ac493319c08455423cfbf32daa3b082f96bc0eee38bc3dc313b567dd193500a5fef3ae0844b3c73719d697114d907b50","ssdeep":"192:123zhqQNtyWtwo1ZQh+ZblwN1DejQ6FN5g:MbycwJ+e6jQIg","tlshash":"29724325f1181036f02bd11c52de95ad2635fa83ee2387ebba775490cfd3ad72231668","first_seen":"2025-12-24T20:51:55.294663Z","last_seen":"2025-12-24T20:51:55.294663Z","times_seen":1,"resource_available":false,"data":null}},"time_used":800,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":754,"receive":46,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-24","alert":"Sinkholed","trigger":"steam.assiw.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"steam.assiw.xyz/js/app.ff9ea464.js","fqdn":"steam.assiw.xyz","domain":"assiw.xyz","tld":"xyz"},"ip":{"addr":"149.104.2.34","port":443,"asn":6134,"as":"XNNET","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://steam.assiw.xyz/","date":"2025-12-24T20:51:29.673Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"assiw.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Oct 2025 10:09:04 GMT","end":"Wed, 14 Jan 2026 10:09:03 GMT"},"fingerprint":{"sha1":"4D:DD:EF:5A:68:DB:4D:4C:38:14:41:62:2A:87:2E:40:89:85:FB:4B","sha256":"EB:CB:9F:41:40:A5:2F:58:C1:3C:F6:65:05:C9:62:17:86:77:81:C4:81:B6:63:69:3D:08:68:4F:7F:4C:8B:D1"}}},"request":{"raw":"GET /js/app.ff9ea464.js HTTP/1.1\r\nHost: steam.assiw.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://steam.assiw.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0 (Ubuntu)\r\ndate: Wed, 24 Dec 2025 20:51:29 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 16309\r\nlast-modified: Sat, 06 Dec 2025 13:37:56 GMT\r\netag: \"693431b4-3fb5\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":16309,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (15160)","md5":"a9b6bf89bf97a9168f2ed173c328adfd","sha1":"49e6984c7e19736a61ad5e4db9a15b2f3d78b298","sha256":"99a0af5cb77a940db5b5fce1b443c713428117837e27ae554cb1a5f300f53681","sha512":"dfb365d1cd9397c102290a3c8c9e58fadb82f90b52dd91e1aa54b909c7aec8a6c66c22db596dd16668b337617fc7c199801557be276b35e3cdeca7a94ff6f3cf","ssdeep":"384:GEKqED5XHJzj7A7sTdghxQo7cmX62z1wU/LKsLzza4nUUp7Wfm/tvIqR6cMfGpr/:GEKjlxj7osTd4P4G62zj/Os/mlUZf/tF","tlshash":"44721941e1a0e538c5d3c4ccda2a002972277d4fa26f88b9b7bdd4e86f8b856f610775","first_seen":"2025-12-24T20:51:55.300973Z","last_seen":"2025-12-24T20:51:55.300973Z","times_seen":1,"resource_available":true,"data":null}},"time_used":844,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":755,"receive":89,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-24","alert":"Sinkholed","trigger":"steam.assiw.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"gstatic.loli.net/s/notosanssc/v39/k3kXo84MPvpLmixcA63oeALhLOCT-xWNm8Hqd37g1OkDRZe7lR4sg1IzSy-MNbE9VH8V.118.woff2","fqdn":"gstatic.loli.net","domain":"loli.net","tld":"net"},"ip":{"addr":"104.26.1.190","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://steam.assiw.xyz/","date":"2025-12-24T20:51:32.147Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"gstatic.loli.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 16 Nov 2025 21:35:29 GMT","end":"Sat, 14 Feb 2026 22:35:26 GMT"},"fingerprint":{"sha1":"C0:9B:63:31:25:78:62:DA:7F:8E:BA:FC:8C:FF:5E:A9:E2:AE:A2:C3","sha256":"DC:FC:50:01:18:55:7C:67:02:A1:AA:FF:74:05:B3:88:A1:CC:48:CF:0B:5B:35:49:C6:D4:DF:79:28:8C:EE:E6"}}},"request":{"raw":"GET /s/notosanssc/v39/k3kXo84MPvpLmixcA63oeALhLOCT-xWNm8Hqd37g1OkDRZe7lR4sg1IzSy-MNbE9VH8V.118.woff2 HTTP/1.1\r\nHost: gstatic.loli.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://steam.assiw.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.loli.net/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 24 Dec 2025 20:51:32 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 46296\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nlast-modified: Wed, 10 Sep 2025 16:42:14 GMT\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\naccept-ranges: bytes\r\nage: 1995448\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\ncf-ray: 9b32fa2e9efe5691-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":46296,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 46296, version 1.0","md5":"80ac7dbc3b9a474436b9aa99cde53ade","sha1":"3da74ca99c9be5c785c9f30e411f91277efe3243","sha256":"d0ebf5bc339b7636d822f123ba52c401aaa21790269b0a8adb9d1c93060b7a2b","sha512":"03277c5edecb90908057b7a25af44c0f9029e21e843b98ea3b0fea1a2cd7421ac580eecbd08383a8684c6002391b65a13f889cee561de8fb455967bcc5b73d60","ssdeep":"768:Dqv4AoSaVqw50l2WZiGrQ1fDt89R2FW33joJ7n33FmqprzNvoXP/EjeJmsM:DqwAIWrY7S9R2U3zoT355G/Ejl7","tlshash":"262302c56272789be5fe11758ed41d244f049ac67c2f11938c89dbae0b00fb6eb463ad","first_seen":"2025-05-30T03:30:48.349278Z","last_seen":"2026-01-06T09:42:57.962978Z","times_seen":409,"resource_available":false,"data":null}},"time_used":240,"timings":{"blocked":112,"dns":72,"connect":4,"send":0,"wait":13,"receive":3,"ssl":30},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"steam.assiw.xyz/img/vite2.88e74d74.svg","fqdn":"steam.assiw.xyz","domain":"assiw.xyz","tld":"xyz"},"ip":{"addr":"149.104.2.34","port":443,"asn":6134,"as":"XNNET","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://steam.assiw.xyz/","date":"2025-12-24T20:51:32.184Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"assiw.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Oct 2025 10:09:04 GMT","end":"Wed, 14 Jan 2026 10:09:03 GMT"},"fingerprint":{"sha1":"4D:DD:EF:5A:68:DB:4D:4C:38:14:41:62:2A:87:2E:40:89:85:FB:4B","sha256":"EB:CB:9F:41:40:A5:2F:58:C1:3C:F6:65:05:C9:62:17:86:77:81:C4:81:B6:63:69:3D:08:68:4F:7F:4C:8B:D1"}}},"request":{"raw":"GET /img/vite2.88e74d74.svg HTTP/1.1\r\nHost: steam.assiw.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://steam.assiw.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0 (Ubuntu)\r\ndate: Wed, 24 Dec 2025 20:51:32 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 364\r\nlast-modified: Sat, 06 Dec 2025 13:37:53 GMT\r\netag: \"693431b1-16c\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":364,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"31c4bfe7a62fc04d8be1e565fec313a8","sha1":"f83a5f979ca4f6625565174586d6dcdbba68319c","sha256":"ea50c3afd8528e46cb95d3695b10ea9d4afba2729b14eefdc3f464789327f875","sha512":"3c7b807f2a660387d2ef1361b2441bd8a87f0daa0defdcabb49f923bc564a0a269bd9633ca58772bb272f9608b81c95a5dc3f5168261a9fb946ae1a1b3621dff","ssdeep":"","tlshash":"05e06891818d41296224c2f83be52c93931be8c582495c90bd28290f35890eaac935e8","first_seen":"2025-12-24T20:51:55.310839Z","last_seen":"2025-12-24T20:51:55.310839Z","times_seen":1,"resource_available":false,"data":null}},"time_used":193,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":193,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-24","alert":"Sinkholed","trigger":"steam.assiw.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"steam.assiw.xyz/js/chunk-vendors.4f642007.js","fqdn":"steam.assiw.xyz","domain":"assiw.xyz","tld":"xyz"},"ip":{"addr":"149.104.2.34","port":443,"asn":6134,"as":"XNNET","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://steam.assiw.xyz/","date":"2025-12-24T20:51:29.672Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"assiw.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Oct 2025 10:09:04 GMT","end":"Wed, 14 Jan 2026 10:09:03 GMT"},"fingerprint":{"sha1":"4D:DD:EF:5A:68:DB:4D:4C:38:14:41:62:2A:87:2E:40:89:85:FB:4B","sha256":"EB:CB:9F:41:40:A5:2F:58:C1:3C:F6:65:05:C9:62:17:86:77:81:C4:81:B6:63:69:3D:08:68:4F:7F:4C:8B:D1"}}},"request":{"raw":"GET /js/chunk-vendors.4f642007.js HTTP/1.1\r\nHost: steam.assiw.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://steam.assiw.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0 (Ubuntu)\r\ndate: Wed, 24 Dec 2025 20:51:29 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 193407\r\nlast-modified: Sat, 06 Dec 2025 13:37:57 GMT\r\netag: \"693431b5-2f37f\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":193407,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (35989)","md5":"30e1fbbe9ca89b8e95b27afdfdc49953","sha1":"b7f58e432e017169b7d1d1471d897cb2ff635f78","sha256":"e95119aff7042999cb8fb55d583d2cc52f391e2ec2c5777c9fcfb22ac7ea6e13","sha512":"29d1b1e5b0409429c37dd8a543ff17c8fa1ed9e6204f26f2ea338f6f9efd3a5a42eabb6abf5c22efeeca6fa35f69efcb4920449481c5512f7fd8db7424391f89","ssdeep":"3072:ACxTl6zuI4/y/+QS7gh434DlWwZ8NP9u1bgq0xy2Bmns4N:NtlgKy/+QS7gh4opZ8B9uFz0Y2BFI","tlshash":"d81418c97196b0a153ea24e5403f140af27a6966340e84e4f2a8fddb7c7a54e407bf7c","first_seen":"2025-12-24T20:51:55.314367Z","last_seen":"2025-12-24T20:51:55.314367Z","times_seen":1,"resource_available":true,"data":null}},"time_used":836,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":251,"receive":585,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-24","alert":"Sinkholed","trigger":"steam.assiw.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"steam.assiw.xyz/vite.svg","fqdn":"steam.assiw.xyz","domain":"assiw.xyz","tld":"xyz"},"ip":{"addr":"149.104.2.34","port":443,"asn":6134,"as":"XNNET","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://steam.assiw.xyz/","date":"2025-12-24T20:51:31.714Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"assiw.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Oct 2025 10:09:04 GMT","end":"Wed, 14 Jan 2026 10:09:03 GMT"},"fingerprint":{"sha1":"4D:DD:EF:5A:68:DB:4D:4C:38:14:41:62:2A:87:2E:40:89:85:FB:4B","sha256":"EB:CB:9F:41:40:A5:2F:58:C1:3C:F6:65:05:C9:62:17:86:77:81:C4:81:B6:63:69:3D:08:68:4F:7F:4C:8B:D1"}}},"request":{"raw":"GET /vite.svg HTTP/1.1\r\nHost: steam.assiw.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://steam.assiw.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0 (Ubuntu)\r\ndate: Wed, 24 Dec 2025 20:51:31 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 360\r\nlast-modified: Sat, 06 Dec 2025 13:37:57 GMT\r\netag: \"693431b5-168\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":360,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ada2ab2e481607afd31eb9bd1b22c3a3","sha1":"de97d2e17fc291508cc8f3c897e62af6489a5de9","sha256":"4899058b55e2a2e49e64c708ffecc93f3d6c3c91263d75d902c06dc6da418452","sha512":"6764087813780252f81aaeadb627d713966e0999ba39c6cdbdff926a940554e72ee861c8d08fc519cf1877ecb8c3bafef714177c810c72fd0003ad8b0de462a4","ssdeep":"","tlshash":"efe06891818d45296624c1f83bd52c438317d8d942495d90bd28290f35850e7d8935e8","first_seen":"2025-12-24T20:51:55.317086Z","last_seen":"2025-12-24T20:51:55.317086Z","times_seen":1,"resource_available":false,"data":null}},"time_used":186,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":186,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-24","alert":"Sinkholed","trigger":"steam.assiw.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}