Report - sp.aircsgo.com/

Report Overview

Submitted URL
sp.aircsgo.com/
IP
210.74.226.164
ASN
#4812 China Telecom Group
Submitted
2024-05-07 17:53:09
Access
public
Website Title
Steam Community
Final URL
sp.aircsgo.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
152

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
sp.aircsgo.com	unknown	2023-03-01	2023-08-23	2024-04-15	31 kB	5.0 MB	210.74.226.164
community.akamai.steamstatic.com	15488	2013-11-07	2021-01-05	2024-05-04	11 kB	327 kB	95.101.11.9
cdn.akamai.steamstatic.com	8614	2013-11-07	2014-04-02	2024-05-04	2.5 kB	43 kB	95.101.11.40
steamuserimages-a.akamaihd.net	18390	2009-09-14	2017-01-29	2024-05-03	17 kB	4.8 MB	23.36.76.232
img.youtube.com	3087	2005-02-15	2012-05-30	2024-05-06	4.4 kB	190 kB	142.250.74.110

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam
2024-05-07	medium	sp.aircsgo.com/	Steam

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed
2024-05-07	medium	aircsgo.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (39)

	URL	Size	First Seen	Last Seen
	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/chunk~4b330692b.js?contenthash=555ff2496b7cbfc4085c	36 kB	2024-02-17	2024-05-11
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/chunk~4b330692b.js?contenthash=555ff2496b7cbfc4085c IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-17 03:17:30 Last Seen2024-05-11 17:42:41 Times Seen25 Hash ccbbfe4d81578768ec91313262e5c854 53910e32ec797abfbbb483eb1984bf8b8a63afa7 054f13c495ec017c21e4472ecaae22eb3e77ab88887070d5f08acf99d466f87c Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/chunk~906a41d8e.js?contenthash=bc65a674fca36dfbad5e	18 kB	2024-02-17	2024-05-11
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/chunk~906a41d8e.js?contenthash=bc65a674fca36dfbad5e IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-17 03:17:30 Last Seen2024-05-11 17:42:41 Times Seen75 Hash de07a97736d0565d5fe887fa36d88af1 24931254ff239c3305e0c5698e857d6a0ec821ef 8ccb525de647cc8dffb0423b7a5c9d548977e41926d1ea77b840d4f9c6c80c3c Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~4b330692b.js?contenthash=32fdb0c2c16cbd1f7255	26 kB	2024-02-17	2024-05-11
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~4b330692b.js?contenthash=32fdb0c2c16cbd1f7255 IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-17 03:17:31 Last Seen2024-05-11 17:42:41 Times Seen26 Hash 4424079f8e3fc01ef07508cd66c6a745 6bbf466ff95951c8983cdc66ff9707faeaba0ec4 7d1e06ecb4a34c198ca61be73acac442dcb2dd4c0ca825adce997558d9eb4dab Loading...

	sp.aircsgo.com/	374 B	2023-03-12	2024-05-16
Pretty URL sp.aircsgo.com/ IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 09:45:05 Last Seen2024-05-16 09:32:33 Times Seen1254 Hash b70da133ca779ab3e43a34b27582022a 43c146ab15416cc77dadea9d17dbd69b4b001b4b 9b7266c903d26b60f47edbf7647ebe6fe6810e4e06c0cf06f1348944ee585b2c Loading...

	sp.aircsgo.com/	521 B	2023-03-12	2024-05-16
Pretty URL sp.aircsgo.com/ IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 09:45:05 Last Seen2024-05-16 09:32:33 Times Seen1252 Hash 1ca437221076a602c053146ac451e9a2 605ca877765dcd8a7420d4e3df5a644f5468b5e7 1ce28f3f9525bda804d49ef59149ff51b079c28dfdee7a6b86107bcd0350538f Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~b28b7af69.js?v=VGtvPLNviurP&l=english	927 kB	2024-04-12	2024-05-07
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~b28b7af69.js?v=VGtvPLNviurP&l=english IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-12 19:33:58 Last Seen2024-05-07 19:53:12 Times Seen24 Hash f134d10fcb01e179db9cf3099df3836a 731099750f391092c83afa5f1bd2b7477fede1e9 fba2af31de6ee1204b27e564b9a77aeff8bb8550e23df80837ba7baf1f18c8d8 Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english	25 kB	2023-03-08	2024-05-19
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:04:23 Last Seen2024-05-19 10:45:54 Times Seen3064 Hash a52bc800ab6e9df5a05a5153eea29ffb 8661643fcbc7498dd7317d100ec62d1c1c6886ff 57cfaf9b92c98541f769090cd0229a30013cea7cfafc18519ca654bfae29e14e Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~c7a3fa389.js?contenthash=28f31dbe47f6b6412c17	60 kB	2024-04-18	2024-05-11
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~c7a3fa389.js?contenthash=28f31dbe47f6b6412c17 IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 06:14:07 Last Seen2024-05-11 17:42:41 Times Seen10 Hash 382941fec17ecdf5d4cea9fc55e7779b 2e4841d374d1438ea4e7abda04cfb0bcde068024 389a9e5f78097274a9f571f9cf7c28f4f51723898872dc0541f0b5878321499a Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/global.js?v=B7Vsdo1okyaC&l=english	104 kB	2024-04-01	2024-05-07
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/global.js?v=B7Vsdo1okyaC&l=english IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-01 19:57:18 Last Seen2024-05-07 19:53:12 Times Seen30 Hash ff1d6d837c38a4455ec02329e006c041 45995f4ad83db529d4ec95fef761d33122d0fb3b 827f7bff31767b77325b53136fefca9204406b65ec4c9c77b622ce536140de88 Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/apphub_home.js?v=8OrLYcA-XZ3m&l=english	12 kB	2023-11-24	2024-05-07
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/apphub_home.js?v=8OrLYcA-XZ3m&l=english IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-24 16:27:45 Last Seen2024-05-07 19:53:12 Times Seen14 Hash e2102c4806f0903eb78217f7a7ba4745 95e998ebe41c08829a46026cf3cc1bd1135d40fd dbafa2bb96236b735ee04dc209a95f4fa306fd6adaafcc19344d77bde683b3f6 Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/communityhome.js?v=8-RwlLlPLHOa&l=english	1.1 kB	2023-11-24	2024-05-07
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/communityhome.js?v=8-RwlLlPLHOa&l=english IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-24 16:27:45 Last Seen2024-05-07 19:53:12 Times Seen10 Hash 7da05151f1afda3026736cbb3c7fbb18 32a87ce005a154ac1f34ec5c23c82f19d8a7d80a 22707060255d39b313c889922400252cfb79e2c81d37ce4eef4acb19fa1f9455 Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/main.js?v=roSu8uqw-pOl&l=english	581 kB	2024-05-07	2024-05-07
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/main.js?v=roSu8uqw-pOl&l=english IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:53:11 Last Seen2024-05-07 19:53:12 Times Seen3 Hash b7350e8157cecf6f69e60806ae4749ca d76aaaf851f68e250f2434d21c56e609de44941e 926869671d7549a938563198d12ca29e903d7c56eefcc16a8e57edc178941817 Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/communityawardsapp.js?contenthash=afc3d1cf46d793a7e76b	407 B	2024-02-17	2024-05-07
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/communityawardsapp.js?contenthash=afc3d1cf46d793a7e76b IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-17 03:17:30 Last Seen2024-05-07 19:53:13 Times Seen10 Hash 4fce4b7e15290cbba9932321acfe6b27 83e92752fa1abf70c98f8cbb6e789c7567ae3632 ed17935e3b091ed66c5e72b5429ebd1b5dd133bd580a7177d3f09ada3dc78f39 Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/shared_global.js?v=REEGJU1hwkYl&l=english	154 kB	2024-05-07	2024-05-07
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/shared_global.js?v=REEGJU1hwkYl&l=english IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:53:11 Last Seen2024-05-07 19:53:12 Times Seen2 Hash ede0daa7d7454676858da996b9cd3c1c 65442da8c4dbdaedb8dda509048b3d8eb06cf202 7c8805448b54cd1845f5573622f1309559ceecc1b2298ea000b4957ca170749f Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/apphub.js?v=JSwdk0x7aW5O&l=english	18 kB	2023-11-24	2024-05-07
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/apphub.js?v=JSwdk0x7aW5O&l=english IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-24 16:27:45 Last Seen2024-05-07 19:53:12 Times Seen14 Hash af89b30133b88414439e3f7e569b9b9b 9178d2fea8e859e5f5ae706f95c2a07606ab6b24 9adfd44413555940fd53edb2b79a48991d76a788491654e6e3e90d97db932f7c Loading...

	sp.aircsgo.com/	89 B	2023-11-24	2024-05-13
Pretty URL sp.aircsgo.com/ IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-24 16:27:45 Last Seen2024-05-13 07:12:26 Times Seen40 Hash b149aa7ba7af58cdd6143deefee68f4c b6441cbe7343c825491d353c6be06f9d45de2301 30f4eb7bb0a36617f8c29e663abefd81b63fa675ac3e6d27e208c3235a0cb4e1 Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/modalContent.js?v=L35TrLJDfqtD&l=english	14 kB	2023-03-29	2024-05-16
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/modalContent.js?v=L35TrLJDfqtD&l=english IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:53:44 Last Seen2024-05-16 09:32:34 Times Seen199 Hash 2f7e53acb2437eab435a442fcd7cad63 66c65e099a6e7a0325d277c937994af4d24b97b3 112ede4f5c51b715eebe43ae584708dd0222bebd913726caf0f261c0d2f5f4a9 Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/loyaltyrewards_manifest.js?v=H8DiZuDDXyS_&l=english	457 B	2023-03-26	2024-05-16
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/loyaltyrewards_manifest.js?v=H8DiZuDDXyS_&l=english IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 12:00:05 Last Seen2024-05-16 09:32:35 Times Seen380 Hash 1fc0e266e0c35f24bf232e1015ca7064 dcfa89f38d3bac32a02f28c662cfa4f4855ec8b7 c5527d218ab87fb08c01dbdb65039651a55be1bf70fb19aef70930c2e81c7698 Loading...

	sp.aircsgo.com/	114 B	2023-03-07	2024-05-19
Pretty URL sp.aircsgo.com/ IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:51 Last Seen2024-05-19 10:45:51 Times Seen1408 Hash 16f8c3f24c03dd22c268f120ecbb7d9c 0fc91d904a8d38ad4588344a0191af727fd09311 61c71b0ebf72ea0d8fc27d307870302ea163aa9bd344b3ba1402a2e894721925 Loading...

	sp.aircsgo.com/	293 B	2023-11-24	2024-05-07
Pretty URL sp.aircsgo.com/ IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-24 16:27:45 Last Seen2024-05-07 19:53:12 Times Seen37 Hash cb6416e5a07d6269b9c1119a51efafb2 43c5c4a8b22fdfc650dfc159b5703b996d0f9c4b fc20e16f78934563cccee392ad12c06fc1f4e264354e0d0c6772bb68743fb474 Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/scriptaculous/_combined.js?v=OeNIgrpEF8tL&l=english&load=effects,controls,slider,dragdrop	122 kB	2023-03-07	2024-05-16
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/scriptaculous/_combined.js?v=OeNIgrpEF8tL&l=english&load=effects,controls,slider,dragdrop IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-05-16 09:32:34 Times Seen4166 Hash 39e34882ba4417cb4b1b84916dabb770 0d0ca081fb60c8aad337091bafcbe84f966c38b0 da708635da162ea493874627775c3520a42145b79c73bf787b5113bf87c0b27c Loading...

	sp.aircsgo.com/	138 B	2023-03-07	2024-05-16
Pretty URL sp.aircsgo.com/ IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:51 Last Seen2024-05-16 09:32:34 Times Seen1201 Hash 9f44e1f62e772303b2e525ddb1612081 e4a96a617321364bc3a043575388a6ceb1c0f4c9 9bde39c62b2614c2823a872c6c9d049d0752a22d1ed9474b8bf0cd318001d288 Loading...

	sp.aircsgo.com/	295 B	2023-06-21	2024-05-19
Pretty URL sp.aircsgo.com/ IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-21 01:00:33 Last Seen2024-05-19 10:45:52 Times Seen1170 Hash 6004c14868a256e4cae4dec3db42e6d7 48b9c9cef4ebb49a77da2a00b57c3b2c9d86472b 2c550300a61671a67a72219fc89acad93ea8c8cb54d5468ec6f891eda7f30e96 Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/navevents.js?contenthash=637ad4060aaa08d3ae85	14 kB	2024-02-17	2024-05-07
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/navevents.js?contenthash=637ad4060aaa08d3ae85 IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-17 03:17:31 Last Seen2024-05-07 19:53:13 Times Seen85 Hash 111a47157df97cd1dc2fbcf3f045c870 809cc243c03b8d5778b5b3d929624556781f9b2d c1229094551fd0b3d3f021cc0005ea28af2c64059e78adbe940367416bbeb680 Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/sales_english-json.js?contenthash=78c2664709aeddc975e5	172 kB	2024-02-17	2024-05-13
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/sales_english-json.js?contenthash=78c2664709aeddc975e5 IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-17 03:17:30 Last Seen2024-05-13 07:12:26 Times Seen44 Hash 05c0ef61d9666df7e5a5e3cf63daa334 96130fdf6c181062bdce00ad85e8f218d70055cc fe1923ca0b4c41352281f311aae8f7a63a9cd927d28e5833b950f4e60152ade0 Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/shared_english-json.js?contenthash=35f086df69f22f790590	187 kB	2024-05-07	2024-05-07
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/shared_english-json.js?contenthash=35f086df69f22f790590 IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:53:12 Last Seen2024-05-07 19:53:12 Times Seen2 Hash 01d0fa754d7e9b2860f1a8084b1d454f cf44dff07953d94ad0cfe69f2584b4375eda4345 dbe609a9edb91c441f88a7fb8070af56f1af9facb45f70d43ba9c360fc125b2e Loading...

	sp.aircsgo.com/	834 B	2024-05-07	2024-05-07
Pretty URL sp.aircsgo.com/ IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-07 19:53:12 Last Seen2024-05-07 19:53:12 Times Seen1 Hash ec5ac7667125790a6abe30c9c1db4212 41865e324e556805131f6a81ea1a89e673d44479 c9aebf83654920c65be72c079579ecae55d0374516fa4ab6e7d0543e10b5cb9d Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/prototype-1.7.js?v=.55t44gwuwgvw	169 kB	2023-03-07	2024-05-19
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/prototype-1.7.js?v=.55t44gwuwgvw IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:12:12 Last Seen2024-05-19 06:48:02 Times Seen4660 Hash 6a39e0b509fecb928d47b8a2643fed2a f67fa6cb1d09963d10ba117d6553c8e7d5bc7863 d8bdea7fff893dbdbeaf6c2affec091a77483b9ec10e7958486bc3b6cc170c96 Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/user_reviews.js?v=LRs2cUK5D3j7&l=english	15 kB	2024-04-04	2024-05-07
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/user_reviews.js?v=LRs2cUK5D3j7&l=english IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-04 06:27:52 Last Seen2024-05-07 19:53:12 Times Seen8 Hash 1b39bd10266a4169acf1b486a292e1a4 86b0991a9d1c79425f19d42c36479bb048fd6ccc 604d954eaf822500caf66379a2611b21338d1825a069cc48951fd2e3ac920310 Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/user_reviews_community.js?v=st0tzXwxiGks&l=english	2.8 kB	2023-11-24	2024-05-07
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/user_reviews_community.js?v=st0tzXwxiGks&l=english IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-24 16:27:45 Last Seen2024-05-07 19:53:12 Times Seen14 Hash a774a3ce6ad17b10db0e4f3773e8edaf 505ef80cb4ba7f49be180723a1588e64538ac5a8 11ed032993d67caa73ca2a338a91897fa6a17750ec79256fcf1607e96c62815f Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/main_english-json.js?contenthash=cfcee568a9b043acaadb	217 kB	2024-05-07	2024-05-13
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/main_english-json.js?contenthash=cfcee568a9b043acaadb IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:53:12 Last Seen2024-05-13 07:12:27 Times Seen6 Hash bb7bab95219dd8f05caa9f2ca171b380 ba0efd8b75a111e9b157ae61cf6cf91fc78c3f07 8a82f5c21ba88ff952bd1020fe7d0aabe82e283dcf6874b85178abb5d7c91e9d Loading...

	sp.aircsgo.com/	158 B	2023-03-08	2024-05-16
Pretty URL sp.aircsgo.com/ IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 00:23:05 Last Seen2024-05-16 09:32:34 Times Seen153 Hash 876d8dfa35d272f923bd6c74b5fadda6 ead0d2543eb5cec28d37d3f1ba64165972bbb33c 56e5d3b4faa73eed6bcb3646991980521731d7786d8226d5e7d132d6f477b8d6 Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/jquery-1.11.1.min.js?v=.isFTSRckeNhC	96 kB	2023-03-07	2024-05-18
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/jquery-1.11.1.min.js?v=.isFTSRckeNhC IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-05-18 12:58:06 Times Seen6288 Hash 4dc834d16a0d219d5c2b8a5b814569e4 4fbe0563917d6f6289e4e1b4a0a8758e4e43bda9 91222f96f34735ebc88df208017e54d4329b9202e3e52367fb8b149698a1a5ef Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0	16 kB	2023-03-07	2024-05-19
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0 IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-05-19 10:45:53 Times Seen5305 Hash 72938851e7c2ef7b63299eba0c6752cb b75196bd3a6f9f4dfc1bbf5e43e96874bcd9ce4e e2d4e0e1d3e162fdc815f16dfff9ae9b0a967949f0f3ae371f947d730a3f0661 Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/manifest.js?v=_VryIrnbeAOo&l=english	16 kB	2024-05-07	2024-05-07
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/manifest.js?v=_VryIrnbeAOo&l=english IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:53:12 Last Seen2024-05-07 19:53:12 Times Seen3 Hash a8f7c65efbba9ef9077a7fd7747feb74 62730d76f381a830d32151696abd6cdd5835629e 6687f59c076a6baa9da2ef2c29b3f27af02b888daacd1f158c513d521c817f9b Loading...

	sp.aircsgo.com/	46 B	2023-03-08	2024-05-16
Pretty URL sp.aircsgo.com/ IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 00:23:05 Last Seen2024-05-16 09:32:34 Times Seen153 Hash c8fe540b1a80ea9061274096d1a895e7 c1762692504af73e2769e61f2b8d618ea9655ada 95eef46f501e4037e8ea0520631718089341740893db9a127aae77d477ccbeaf Loading...

	sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/modalv2.js?v=dfMhuy-Lrpyo&l=english	3.9 kB	2023-03-07	2024-05-16
Pretty URL sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/modalv2.js?v=dfMhuy-Lrpyo&l=english IP 210.74.226.164 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-05-16 09:32:34 Times Seen3375 Hash 75f321bb2f8bae9ca8e5c4c6d72521bd 8ed540dc9da8c5d7c2bbe390fc663e6de0b1ef0c 92a217685eda5e8319d193142aeadf80ae7a9c9e04a9a365d9cf01078d459985 Loading...

		Size	First Seen	Last Seen
	#1 Eval - d801b004a69b46c25057cbfdabc46549	581 B	2024-05-07	2024-05-07
Pretty Observations First Seen2024-05-07 19:53:12 Last Seen2024-05-07 19:53:12 Times Seen1 Hash d801b004a69b46c25057cbfdabc46549 cb00861038392657cde50cbf47de80bfe53ed91d f81c0571aae794f4efdb925db8af9b8b1df8151157428184de67659e06c72735 Loading...

	#2 Eval - a9a17a9cc202d5e9bc573e2424c154b6	111 B	2024-05-07	2024-05-07
Pretty Observations First Seen2024-05-07 19:53:12 Last Seen2024-05-07 19:53:12 Times Seen1 Hash a9a17a9cc202d5e9bc573e2424c154b6 27c811da8a05e9cb5a85fd883701b0ffcdc3d169 fccc0c1d3b7fd54a00bcec6a8de0db77b7acef4092dbfe95a0745ae67ce4bf90 Loading...

HTTP Transactions (116)

URL IP Response Size

sp.aircsgo.com/

210.74.226.164

200

8.6 kB

URL User Request GET HTTP/1.1
sp.aircsgo.com/
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (2997), with CRLF, LF line terminators
Size
8.6 kB (8595 bytes)
Hash
3a12af64de186b6839390030584fa1d6
ed1cd38c29e50d7c6cd344ae562a6668990bf20b
2c4c22bbcd8a002ce66ef5c7400e1ddbc1e0a8f381e94a7758bcbf12965179f5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:34 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 8595
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Method: *
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Origin: https://sp.aircsgo.com
Access-Control-Expose-Headers: X-eresult,X-error_message
Cache-Control: no-cache
Content-Encoding: gzip
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Origin: https://sp.aircsgo.com
Set-Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; Path=/; Secure; SameSite=None;Domain=sp.aircsgo.com
steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; Path=/; Secure; HttpOnly; SameSite=None;Domain=sp.aircsgo.com
uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e; Path=/; Domain=sp.aircsgo.com
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-Proxy-Hostname: steam-session-cluster-5565ddcfbf-kpxkr
traceId: eaac1cf43917151043543802743d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/motiva_sans.css?v=-DH0xTYpnVe2&l=english

210.74.226.164

200

2.7 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/motiva_sans.css?v=-DH0xTYpnVe2&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
2.7 kB (2682 bytes)
Hash
f831f4c536299d57b63c0d0ead9c09f0
43f71d89a47bdd1869ff4d411f04357926d21be8
e2c41580fda72865b4c75053f974ee6c0f4ff7034f1c97fbd6d55a88e7fc55fe

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/shared/css/motiva_sans.css?v=-DH0xTYpnVe2&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:35 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 2682
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "-DH0xTYpnVe2"
Vary: Accept-Encoding
Cache-Control: public, max-age=11003339
Expires: Tue, 20 Aug 2024 11:35:35 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ac17131513967081759d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/buttons.css?v=PUJIfhtcQn7W&l=english

210.74.226.164

200

34 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/buttons.css?v=PUJIfhtcQn7W&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with CRLF, LF line terminators
Size
34 kB (33754 bytes)
Hash
3d42487e1b5c427ed66f2be54948561b
450b970e36aeb1375844c48a412be7caf5d5c447
60a5b96dd853a80363de37ae72b72ceada056cf781cd9dd2ac74869030d6f76d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/shared/css/buttons.css?v=PUJIfhtcQn7W&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:35 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 33754
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "PUJIfhtcQn7W"
Vary: Accept-Encoding
Cache-Control: public, max-age=11493902
Expires: Mon, 26 Aug 2024 03:51:39 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3b017131513973498735d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/shared_global.css?v=SPpMitTYp6ku&l=english

210.74.226.164

200

87 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/shared_global.css?v=SPpMitTYp6ku&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1819), with CRLF, LF line terminators
Size
87 kB (87128 bytes)
Hash
48fa4c8ad4d8a7a92eaebdb95672b9b3
588360ab7833fc79333286df86626afec74957e6
9c0be6f47b381e31d7feeb42a035ca4b32ef2990c15724e589a74ec2d3293b1e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/shared/css/shared_global.css?v=SPpMitTYp6ku&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:35 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 87128
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "SPpMitTYp6ku"
Vary: Accept-Encoding
Cache-Control: public, max-age=15103863
Expires: Sun, 06 Oct 2024 22:37:40 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ae17131513975578188d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/modalContent.css?v=.TP5s6TzX6LLh

210.74.226.164

200

2.5 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/modalContent.css?v=.TP5s6TzX6LLh
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
2.5 kB (2465 bytes)
Hash
8db2ffc24354dbc4b5a7bebbc2b3cdaf
311653110625167fdb4ce22e8f147b717bce6649
e888e754e20a1b354bb45b59a05d7b281fee588a445854116b2bc84620fbf7f0

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/css/skin_1/modalContent.css?v=.TP5s6TzX6LLh HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:36 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 2465
Connection: keep-alive
Last-Modified: Fri, 05 Jan 2018 01:34:47 GMT
ETag: ".TP5s6TzX6LLh"
Vary: Accept-Encoding
Cache-Control: public, max-age=2770262
Expires: Fri, 17 May 2024 06:14:31 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ae17131562098272690d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/apphubs.css?v=0phemHYwd3Hq&l=english

210.74.226.164

200

11 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/apphubs.css?v=0phemHYwd3Hq&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
11 kB (11018 bytes)
Hash
d2985e9876307771ea25c474bf155212
f874b6e1e6626211650ed0c49ded9b6c0a3ff3ce
ebe31aa3a3c4f85800fbbee1393aa52bc8c45a22849a46294feaa70022418a4e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/css/skin_1/apphubs.css?v=0phemHYwd3Hq&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:36 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 11018
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "0phemHYwd3Hq"
Vary: Accept-Encoding
Cache-Control: public, max-age=15213747
Expires: Thu, 10 Oct 2024 13:47:34 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3b017133543071025409d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/css/globalv2.css?v=PAcV2zMBzzSV&l=english

210.74.226.164

200

40 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/css/globalv2.css?v=PAcV2zMBzzSV&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4009), with CRLF, LF line terminators
Size
40 kB (39562 bytes)
Hash
3c0715db3301cf349532fa80d8e7b2cc
972aa75768e81dfd5d52c0c5de148e2163dd4c3d
ceeb54d7faf219eaddfc96a4f88e85e8905b216f84419645312b45128d3c1792

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/css/globalv2.css?v=PAcV2zMBzzSV&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:36 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 39562
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "PAcV2zMBzzSV"
Vary: Accept-Encoding
Cache-Control: public, max-age=13895173
Expires: Sun, 22 Sep 2024 22:52:50 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ac17131513975581760d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/apphub_home.css?v=cefH__IpZrq3&l=english

210.74.226.164

200

17 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/apphub_home.css?v=cefH__IpZrq3&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
17 kB (16583 bytes)
Hash
71e7c7fff22966bab7fac29324d4a14f
a5f2e8be2271acc0e3b1c7a0d25d3ff873485f36
3c187327ff40253a8a6549257b5cdabacd759b800a0563151ebf9e5f197d84f7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/css/skin_1/apphub_home.css?v=cefH__IpZrq3&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:36 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 16583
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "cefH__IpZrq3"
Vary: Accept-Encoding
Cache-Control: public, max-age=14856744
Expires: Fri, 04 Oct 2024 03:35:55 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ae17131562115992697d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/communityhome.css?v=GeIOaG2XWvl-&l=english

210.74.226.164

200

6.8 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/communityhome.css?v=GeIOaG2XWvl-&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
6.8 kB (6820 bytes)
Hash
19e20e686d975af97e1d7c8ef22f2b41
4aaccca5ccaeaa902aff52b3165767e8b90a0305
7e2b4539c4b0bcfa2de510839fae210c02850f91cad0153b58bbcbb53e75d0a1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/css/skin_1/communityhome.css?v=GeIOaG2XWvl-&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:36 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 6820
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "GeIOaG2XWvl-"
Vary: Accept-Encoding
Cache-Control: public, max-age=14608166
Expires: Thu, 03 Oct 2024 13:34:33 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ae17133543075425006d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/apphub_broadcast.css?v=9lBeWCEi48_y&l=english

210.74.226.164

200

1.1 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/apphub_broadcast.css?v=9lBeWCEi48_y&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
1.1 kB (1117 bytes)
Hash
f6505e582122e3cff208c832a1ebb633
d57faa6d0912916bb324a2f1a5cec004bd72018f
8c7ee7f4845e51695112629ec99929c3904d1d942ccef78c97237e8892d25762

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/css/skin_1/apphub_broadcast.css?v=9lBeWCEi48_y&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:36 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 1117
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "9lBeWCEi48_y"
Vary: Accept-Encoding
Cache-Control: public, max-age=15504014
Expires: Fri, 11 Oct 2024 15:23:44 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ae17131562109402693d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/shared_responsive.css?v=sHIIcMzCffX6&l=english

210.74.226.164

200

19 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/shared_responsive.css?v=sHIIcMzCffX6&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1667), with CRLF, LF line terminators
Size
19 kB (19096 bytes)
Hash
b0720870ccc27df5fa6d1669cc098251
8800fa19f2eca67bbdd0cde15ac5e300f0240382
ed913aa6f584d262be7eae0f789e88bcfd93bbaddd59a37a3fe39d6ee96880d5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/shared/css/shared_responsive.css?v=sHIIcMzCffX6&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:36 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 19096
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "sHIIcMzCffX6"
Vary: Accept-Encoding
Cache-Control: public, max-age=15551036
Expires: Sun, 20 Oct 2024 23:31:06 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3b017139160308255274d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/apphub_images.css?v=YSYBRzuK7chY&l=english

210.74.226.164

200

3.6 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/apphub_images.css?v=YSYBRzuK7chY&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
3.6 kB (3610 bytes)
Hash
612601473b8aedc858e4a59f776e9a0a
7f24ed2c86c53a8d263893e86061a8a1d59f2383
332e766b5c1883401167d69ec26496c24e293499f6dd132a0a0d653079ab0e6e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/shared/css/apphub_images.css?v=YSYBRzuK7chY&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:36 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 3610
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "YSYBRzuK7chY"
Vary: Accept-Encoding
Cache-Control: public, max-age=12793591
Expires: Tue, 10 Sep 2024 06:30:03 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3b017131562120543216d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/header.css?v=NFoCa4OkAxRb&l=english

210.74.226.164

200

13 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/css/skin_1/header.css?v=NFoCa4OkAxRb&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (629), with CRLF line terminators
Size
13 kB (12764 bytes)
Hash
345a026b83a403145ba4bc5e12256354
cd76023c54c8e6dec853441088c388ca6a0bdecd
7585f3131ab2ebf7fd36a5a239f4b1089f9a70869099cb0f073c605941ace3fc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/css/skin_1/header.css?v=NFoCa4OkAxRb&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:36 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 12764
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "NFoCa4OkAxRb"
Vary: Accept-Encoding
Cache-Control: public, max-age=11493750
Expires: Mon, 26 Aug 2024 03:49:08 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ae17131513982448192d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/global.js?v=B7Vsdo1okyaC&l=english

210.74.226.164

200

104 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/global.js?v=B7Vsdo1okyaC&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (9521), with CRLF line terminators
Size
104 kB (103580 bytes)
Hash
ff1d6d837c38a4455ec02329e006c041
45995f4ad83db529d4ec95fef761d33122d0fb3b
827f7bff31767b77325b53136fefca9204406b65ec4c9c77b622ce536140de88

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/global.js?v=B7Vsdo1okyaC&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:36 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 103580
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "B7Vsdo1okyaC"
Vary: Accept-Encoding
Cache-Control: public, max-age=13896484
Expires: Sun, 22 Sep 2024 22:51:23 GMT
Content-Disposition: inline;filename=f.txt
traceId: 1e09f8bd-8df1-4cf2-b151-ffd5b7611e2f
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/apphub.css?v=UlLIB7biegUX&l=english

210.74.226.164

200

29 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/css/apphub.css?v=UlLIB7biegUX&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with CRLF, LF line terminators
Size
29 kB (28636 bytes)
Hash
5252c807b6e27a0517059b3f3713b1f1
eb2fe34391aff25f4dcaa81a7ed39718b5a9a5d2
0b2cc553af76a3298c9e125c8d94a8d170b311f99e0da67d242b9a12edf42b82

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/shared/css/apphub.css?v=UlLIB7biegUX&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:36 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 28636
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "UlLIB7biegUX"
Vary: Accept-Encoding
Cache-Control: public, max-age=15537196
Expires: Sun, 13 Oct 2024 22:51:42 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3b017133227060314144d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/scriptaculous/_combined.js?v=OeNIgrpEF8tL&l=english&load=effects,controls,slider,dragdrop

210.74.226.164

200

122 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/scriptaculous/_combined.js?v=OeNIgrpEF8tL&l=english&load=effects,controls,slider,dragdrop
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
122 kB (122171 bytes)
Hash
39e34882ba4417cb4b1b84916dabb770
0d0ca081fb60c8aad337091bafcbe84f966c38b0
da708635da162ea493874627775c3520a42145b79c73bf787b5113bf87c0b27c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/scriptaculous/_combined.js?v=OeNIgrpEF8tL&l=english&load=effects,controls,slider,dragdrop HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:36 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 122171
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "OeNIgrpEF8tL"
Vary: Accept-Encoding
Cache-Control: public, max-age=11667332
Expires: Wed, 28 Aug 2024 03:38:50 GMT
Content-Disposition: inline;filename=f.txt
traceId: d3a1be91-74fb-4aed-a2fb-ef05d999d19e
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0

210.74.226.164

200

16 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
16 kB (16087 bytes)
Hash
72938851e7c2ef7b63299eba0c6752cb
b75196bd3a6f9f4dfc1bbf5e43e96874bcd9ce4e
e2d4e0e1d3e162fdc815f16dfff9ae9b0a967949f0f3ae371f947d730a3f0661

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0 HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:37 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 16087
Connection: keep-alive
Last-Modified: Tue, 22 Mar 2022 23:23:42 GMT
ETag: ".zYHOpI1L3Rt0"
Vary: Accept-Encoding
Cache-Control: public, max-age=6449167
Expires: Fri, 28 Jun 2024 18:09:27 GMT
Content-Disposition: inline;filename=f.txt
traceId: 296c9ead-f0b4-4328-90a8-28bf3690686e
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/modalv2.js?v=dfMhuy-Lrpyo&l=english

210.74.226.164

200

3.9 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/modalv2.js?v=dfMhuy-Lrpyo&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
3.9 kB (3869 bytes)
Hash
75f321bb2f8bae9ca8e5c4c6d72521bd
8ed540dc9da8c5d7c2bbe390fc663e6de0b1ef0c
92a217685eda5e8319d193142aeadf80ae7a9c9e04a9a365d9cf01078d459985

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/modalv2.js?v=dfMhuy-Lrpyo&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:37 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 3869
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "dfMhuy-Lrpyo"
Vary: Accept-Encoding
Cache-Control: public, max-age=13543172
Expires: Wed, 18 Sep 2024 20:57:28 GMT
Content-Disposition: inline;filename=f.txt
traceId: 8a9cb88b-b9e6-469b-86cd-10f5eedccacf
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/modalContent.js?v=L35TrLJDfqtD&l=english

210.74.226.164

200

14 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/modalContent.js?v=L35TrLJDfqtD&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (999), with CRLF line terminators
Size
14 kB (13910 bytes)
Hash
2f7e53acb2437eab435a442fcd7cad63
66c65e099a6e7a0325d277c937994af4d24b97b3
112ede4f5c51b715eebe43ae584708dd0222bebd913726caf0f261c0d2f5f4a9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/modalContent.js?v=L35TrLJDfqtD&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:37 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 13910
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "L35TrLJDfqtD"
Vary: Accept-Encoding
Cache-Control: public, max-age=13665518
Expires: Fri, 20 Sep 2024 06:56:34 GMT
Content-Disposition: inline;filename=f.txt
traceId: 08729599-f52e-43f9-abaa-c2f8f8068e00
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/css/applications/community/main.css?v=tIrWyaxi8ABA&l=english

210.74.226.164

200

120 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/css/applications/community/main.css?v=tIrWyaxi8ABA&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (26986), with CRLF, LF line terminators
Size
120 kB (120426 bytes)
Hash
b48ad6c9ac62f00040e12367c295a29d
0f6fe233454a9bf924d7cab8948eb092a2c8f932
6ae3ba2ee7acb79483c53bf9cc818eeb2680b082daf2086baed1731eb9052f5f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/css/applications/community/main.css?v=tIrWyaxi8ABA&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:36 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 120426
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "tIrWyaxi8ABA"
Vary: Accept-Encoding
Cache-Control: public, max-age=15550038
Expires: Sun, 27 Oct 2024 22:31:13 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf3ac17145182359196162d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/prototype-1.7.js?v=.55t44gwuwgvw

210.74.226.164

200

169 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/prototype-1.7.js?v=.55t44gwuwgvw
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
169 kB (169399 bytes)
Hash
6a39e0b509fecb928d47b8a2643fed2a
f67fa6cb1d09963d10ba117d6553c8e7d5bc7863
d8bdea7fff893dbdbeaf6c2affec091a77483b9ec10e7958486bc3b6cc170c96

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/prototype-1.7.js?v=.55t44gwuwgvw HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:36 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 169399
Connection: keep-alive
Last-Modified: Fri, 05 Jan 2018 01:34:51 GMT
ETag: ".55t44gwuwgvw"
Vary: Accept-Encoding
Cache-Control: public, max-age=5607580
Expires: Wed, 19 Jun 2024 00:22:58 GMT
Content-Disposition: inline;filename=f.txt
traceId: 99efa78b-e11f-479e-a465-ab88e8e02ecd
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/jquery-1.11.1.min.js?v=.isFTSRckeNhC

210.74.226.164

200

96 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/jquery-1.11.1.min.js?v=.isFTSRckeNhC
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32086), with CRLF line terminators
Size
96 kB (95790 bytes)
Hash
4dc834d16a0d219d5c2b8a5b814569e4
4fbe0563917d6f6289e4e1b4a0a8758e4e43bda9
91222f96f34735ebc88df208017e54d4329b9202e3e52367fb8b149698a1a5ef

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/jquery-1.11.1.min.js?v=.isFTSRckeNhC HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:37 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 95790
Connection: keep-alive
Last-Modified: Fri, 05 Jan 2018 01:34:51 GMT
ETag: ".isFTSRckeNhC"
Vary: Accept-Encoding
Cache-Control: public, max-age=9870935
Expires: Wed, 07 Aug 2024 08:38:54 GMT
Content-Disposition: inline;filename=f.txt
traceId: b8b32412-49f2-4966-a82e-201ce728b794
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/apphub.js?v=JSwdk0x7aW5O&l=english

210.74.226.164

200

18 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/apphub.js?v=JSwdk0x7aW5O&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (342), with CRLF line terminators
Size
18 kB (17717 bytes)
Hash
af89b30133b88414439e3f7e569b9b9b
9178d2fea8e859e5f5ae706f95c2a07606ab6b24
9adfd44413555940fd53edb2b79a48991d76a788491654e6e3e90d97db932f7c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/shared/javascript/apphub.js?v=JSwdk0x7aW5O&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:37 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 17717
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "JSwdk0x7aW5O"
Vary: Accept-Encoding
Cache-Control: public, max-age=14120939
Expires: Wed, 25 Sep 2024 13:26:55 GMT
Content-Disposition: inline;filename=f.txt
traceId: b1e06f8e-b7ef-454e-8676-e3aac6f21e7a
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/apphub_home.js?v=8OrLYcA-XZ3m&l=english

210.74.226.164

200

12 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/apphub_home.js?v=8OrLYcA-XZ3m&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
12 kB (11527 bytes)
Hash
e2102c4806f0903eb78217f7a7ba4745
95e998ebe41c08829a46026cf3cc1bd1135d40fd
dbafa2bb96236b735ee04dc209a95f4fa306fd6adaafcc19344d77bde683b3f6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/apphub_home.js?v=8OrLYcA-XZ3m&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:37 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 11527
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "8OrLYcA-XZ3m"
Vary: Accept-Encoding
Cache-Control: public, max-age=12803377
Expires: Tue, 10 Sep 2024 07:27:33 GMT
Content-Disposition: inline;filename=f.txt
traceId: 46d46957-bb0b-4d2d-9c56-8357bab10e49
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/user_reviews_community.js?v=st0tzXwxiGks&l=english

210.74.226.164

200

2.8 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/user_reviews_community.js?v=st0tzXwxiGks&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
2.8 kB (2834 bytes)
Hash
a774a3ce6ad17b10db0e4f3773e8edaf
505ef80cb4ba7f49be180723a1588e64538ac5a8
11ed032993d67caa73ca2a338a91897fa6a17750ec79256fcf1607e96c62815f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/user_reviews_community.js?v=st0tzXwxiGks&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:37 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 2834
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "st0tzXwxiGks"
Vary: Accept-Encoding
Cache-Control: public, max-age=14235551
Expires: Thu, 26 Sep 2024 21:17:08 GMT
Content-Disposition: inline;filename=f.txt
traceId: 6de19bf7-591f-4f2e-a8f1-38bd9b4fb36a
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/communityhome.js?v=8-RwlLlPLHOa&l=english

210.74.226.164

200

1.1 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/communityhome.js?v=8-RwlLlPLHOa&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
1.1 kB (1057 bytes)
Hash
7da05151f1afda3026736cbb3c7fbb18
32a87ce005a154ac1f34ec5c23c82f19d8a7d80a
22707060255d39b313c889922400252cfb79e2c81d37ce4eef4acb19fa1f9455

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/communityhome.js?v=8-RwlLlPLHOa&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:37 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 1057
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "8-RwlLlPLHOa"
Vary: Accept-Encoding
Cache-Control: public, max-age=14236771
Expires: Thu, 26 Sep 2024 21:37:28 GMT
Content-Disposition: inline;filename=f.txt
traceId: 3592bcd7-2d2c-4e92-b0b4-aa626af9a121
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/shared_global.js?v=REEGJU1hwkYl&l=english

210.74.226.164

200

154 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/shared_global.js?v=REEGJU1hwkYl&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (2618), with CRLF line terminators
Size
154 kB (154405 bytes)
Hash
ede0daa7d7454676858da996b9cd3c1c
65442da8c4dbdaedb8dda509048b3d8eb06cf202
7c8805448b54cd1845f5573622f1309559ceecc1b2298ea000b4957ca170749f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/shared/javascript/shared_global.js?v=REEGJU1hwkYl&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:37 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 154405
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "REEGJU1hwkYl"
Vary: Accept-Encoding
Cache-Control: public, max-age=15551295
Expires: Sun, 27 Oct 2024 22:31:20 GMT
Content-Disposition: inline;filename=f.txt
traceId: e16b0e7d-8e44-49ca-9e44-17478881f927
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/manifest.js?v=_VryIrnbeAOo&l=english

210.74.226.164

200

16 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/manifest.js?v=_VryIrnbeAOo&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (15634), with CRLF, LF line terminators
Size
16 kB (15802 bytes)
Hash
a8f7c65efbba9ef9077a7fd7747feb74
62730d76f381a830d32151696abd6cdd5835629e
6687f59c076a6baa9da2ef2c29b3f27af02b888daacd1f158c513d521c817f9b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/manifest.js?v=_VryIrnbeAOo&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:37 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 15802
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "_VryIrnbeAOo"
Vary: Accept-Encoding
Cache-Control: public, max-age=15551687
Expires: Mon, 28 Oct 2024 21:47:14 GMT
Content-Disposition: inline;filename=f.txt
traceId: f44c1098-df23-49c1-8144-a040a914b88d
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/loyaltyrewards_manifest.js?v=H8DiZuDDXyS_&l=english

210.74.226.164

200

457 B

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/loyaltyrewards_manifest.js?v=H8DiZuDDXyS_&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (455), with CRLF line terminators
Size
457 B (457 bytes)
Hash
1fc0e266e0c35f24bf232e1015ca7064
dcfa89f38d3bac32a02f28c662cfa4f4855ec8b7
c5527d218ab87fb08c01dbdb65039651a55be1bf70fb19aef70930c2e81c7698

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/loyaltyrewards_manifest.js?v=H8DiZuDDXyS_&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:38 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 457
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "H8DiZuDDXyS_"
Vary: Accept-Encoding
Cache-Control: public, max-age=13686625
Expires: Fri, 20 Sep 2024 12:48:22 GMT
Content-Disposition: inline;filename=f.txt
traceId: a5894864-ddc6-44f8-b6da-6fb9f14c9d1e
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english

210.74.226.164

200

25 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Size
25 kB (24657 bytes)
Hash
a52bc800ab6e9df5a05a5153eea29ffb
8661643fcbc7498dd7317d100ec62d1c1c6886ff
57cfaf9b92c98541f769090cd0229a30013cea7cfafc18519ca654bfae29e14e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:38 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 24657
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "pSvIAKtunfWg"
Vary: Accept-Encoding
Cache-Control: public, max-age=13678542
Expires: Fri, 20 Sep 2024 10:19:03 GMT
Content-Disposition: inline;filename=f.txt
traceId: d5c2ce3d-9ffb-4635-88a9-056524c4adea
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/user_reviews.js?v=LRs2cUK5D3j7&l=english

210.74.226.164

200

15 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/shared/javascript/user_reviews.js?v=LRs2cUK5D3j7&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
15 kB (14777 bytes)
Hash
1b39bd10266a4169acf1b486a292e1a4
86b0991a9d1c79425f19d42c36479bb048fd6ccc
604d954eaf822500caf66379a2611b21338d1825a069cc48951fd2e3ac920310

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/shared/javascript/user_reviews.js?v=LRs2cUK5D3j7&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:38 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 14777
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "LRs2cUK5D3j7"
Vary: Accept-Encoding
Cache-Control: public, max-age=14148193
Expires: Wed, 25 Sep 2024 21:01:10 GMT
Content-Disposition: inline;filename=f.txt
traceId: d708077f-5f7f-431c-8d38-23ece01d023c
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~b28b7af69.js?v=VGtvPLNviurP&l=english

210.74.226.164

200

927 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~b28b7af69.js?v=VGtvPLNviurP&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65368), with CRLF, LF line terminators
Size
927 kB (926675 bytes)
Hash
f134d10fcb01e179db9cf3099df3836a
731099750f391092c83afa5f1bd2b7477fede1e9
fba2af31de6ee1204b27e564b9a77aeff8bb8550e23df80837ba7baf1f18c8d8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~b28b7af69.js?v=VGtvPLNviurP&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:38 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 926675
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "VGtvPLNviurP"
Vary: Accept-Encoding
Cache-Control: public, max-age=15104393
Expires: Sun, 06 Oct 2024 22:37:50 GMT
Content-Disposition: inline;filename=f.txt
traceId: 2467617f-3f72-4c5c-9ea9-5612720aa357
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/main.js?v=roSu8uqw-pOl&l=english

210.74.226.164

200

581 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/main.js?v=roSu8uqw-pOl&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65368), with CRLF, LF line terminators
Size
581 kB (581372 bytes)
Hash
b7350e8157cecf6f69e60806ae4749ca
d76aaaf851f68e250f2434d21c56e609de44941e
926869671d7549a938563198d12ca29e903d7c56eefcc16a8e57edc178941817

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/main.js?v=roSu8uqw-pOl&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:38 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 581372
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "roSu8uqw-pOl"
Vary: Accept-Encoding
Cache-Control: public, max-age=15551300
Expires: Sun, 27 Oct 2024 22:31:36 GMT
Content-Disposition: inline;filename=f.txt
traceId: 575f83ea-6ba3-4634-8ec2-a0b8fb76e9ce
Strict-Transport-Security: max-age=15724800; includeSubDomains

community.akamai.steamstatic.com/public/images/login/throbber.gif

95.101.11.9

200 OK

3.2 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/images/login/throbber.gif
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
GIF image data, version 89a, 32 x 32
Size
3.2 kB (3208 bytes)
Hash
928e54c4c9683d8dd32867ee992d73c4
83b3252952e1e8c98deb5e6eb64e150c594dd97b
0c4d1b66cbed8c0ba7bfe1d047409e80b99684794ba66e9556503890eae17f2d

HTTP Headers

GET /public/images/login/throbber.gif HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/gif
Content-Length: 3208
Last-Modified: Fri, 05 Jan 2018 01:34:49 GMT
ETag: "5a4ed639-c88"
Accept-Ranges: bytes
Date: Tue, 07 May 2024 17:52:38 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/images/skin_1/ico_external_link.gif

95.101.11.9

200 OK

63 B

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/images/skin_1/ico_external_link.gif
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
GIF image data, version 89a, 8 x 8
Size
63 B (63 bytes)
Hash
d1c5aa274c0f681d02317d33026e93d2
07ce7ddd50b6c56dc35a08128a161cdd78c08be4
563401248387cb3cf47d04e1dda78508467889ce4ebb80d24a074e0c24a0183c

HTTP Headers

GET /public/images/skin_1/ico_external_link.gif HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/gif
Content-Length: 63
Last-Modified: Fri, 05 Jan 2018 01:34:51 GMT
ETag: "5a4ed63b-3f"
Accept-Ranges: bytes
Date: Tue, 07 May 2024 17:52:38 GMT
Connection: keep-alive

cdn.akamai.steamstatic.com/steamcommunity/public/images/apps/553850/c3dff088e090f81d6e3d88eabbb67732647c69cf.jpg

95.101.11.40

200 OK

815 B

URL GET HTTP/1.1
cdn.akamai.steamstatic.com/steamcommunity/public/images/apps/553850/c3dff088e090f81d6e3d88eabbb67732647c69cf.jpg
IP
95.101.11.40:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 37x37, segment length 16, baseline, precision 8, 32x32, components 3
Size
815 B (815 bytes)
Hash
cec06668c24e6886846e3d27c319d3af
d3a1a843716d0de26204c187908aee76fceea9ee
2ab131db080ae580f08480749335af2fc0d8f23d1441c3fd2f8b6b0267c597f7

HTTP Headers

GET /steamcommunity/public/images/apps/553850/c3dff088e090f81d6e3d88eabbb67732647c69cf.jpg HTTP/1.1
Host: cdn.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/jpeg
Content-Length: 815
Last-Modified: Tue, 16 May 2023 18:13:32 GMT
ETag: "6463c7cc-32f"
Accept-Ranges: bytes
Cache-Control: public, max-age=305841424
Expires: Sun, 15 Jan 2034 13:49:42 GMT
Date: Tue, 07 May 2024 17:52:38 GMT
Connection: keep-alive

cdn.akamai.steamstatic.com/steamcommunity/public/images/apps/1113000/295e86f2d5393325f38f33777b357d86e23c751d.jpg

95.101.11.40

200 OK

1.3 kB

URL GET HTTP/1.1
cdn.akamai.steamstatic.com/steamcommunity/public/images/apps/1113000/295e86f2d5393325f38f33777b357d86e23c751d.jpg
IP
95.101.11.40:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 38x38, segment length 16, baseline, precision 8, 32x32, components 3
Size
1.3 kB (1333 bytes)
Hash
f6203f531234ed82f1858fa4d44e7261
295e86f2d5393325f38f33777b357d86e23c751d
33dddf3070be8211e4738af4d4ccd573429e63193bfbd79f5e09c3a3c9d86339

HTTP Headers

GET /steamcommunity/public/images/apps/1113000/295e86f2d5393325f38f33777b357d86e23c751d.jpg HTTP/1.1
Host: cdn.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Content-Type: image/jpeg
Content-Length: 1333
Last-Modified: Wed, 29 Jul 2020 19:59:46 GMT
ETag: "5f21d532-535"
Accept-Ranges: bytes
Cache-Control: public, max-age=315315784
Expires: Fri, 05 May 2034 05:35:42 GMT
Date: Tue, 07 May 2024 17:52:38 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/images/responsive/logo_valve_footer.png

95.101.11.9

200 OK

1.8 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/responsive/logo_valve_footer.png
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
PNG image data, 92 x 26, 8-bit/color RGBA, non-interlaced
Size
1.8 kB (1846 bytes)
Hash
574c350c7b23ae794d5276f8580e0838
235c7b35c3468f8915eca01f7abdb43d34079609
8b97ba0dac22fe6704c1f6d95fe79613f33017804f256abb9006df0442491787

HTTP Headers

GET /public/shared/images/responsive/logo_valve_footer.png HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 1846
Last-Modified: Fri, 05 Jan 2018 01:35:16 GMT
ETag: "5a4ed654-736"
Accept-Ranges: bytes
Date: Tue, 07 May 2024 17:52:38 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/images/responsive/header_logo.png

95.101.11.9

200 OK

11 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/responsive/header_logo.png
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
PNG image data, 744 x 171, 8-bit/color RGBA, non-interlaced
Size
11 kB (10863 bytes)
Hash
a4e79c73ee13cb25b60fc4b0ba1f690c
b690c31b2eb1b0eb085e91aaae7e79f03debe7c1
6cb869df089146c12efb5e9c968e911c314842624ba6f052a11346ac734cadc8

HTTP Headers

GET /public/shared/images/responsive/header_logo.png HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 10863
Last-Modified: Fri, 05 Jan 2018 01:35:16 GMT
ETag: "5a4ed654-2a6f"
Accept-Ranges: bytes
Date: Tue, 07 May 2024 17:52:38 GMT
Connection: keep-alive

cdn.akamai.steamstatic.com/steamcommunity/public/images/apps/2161700/2aeb189b126f766bb5930f725fbdcdd171a93c56.jpg

95.101.11.40

200 OK

811 B

URL GET HTTP/1.1
cdn.akamai.steamstatic.com/steamcommunity/public/images/apps/2161700/2aeb189b126f766bb5930f725fbdcdd171a93c56.jpg
IP
95.101.11.40:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 37x37, segment length 16, baseline, precision 8, 32x32, components 3
Size
811 B (811 bytes)
Hash
b61d7d847e5fc5c36eae14d2d5c9599b
c37640260be695187420f579b7c5c14cd0e81151
15f64209ac6d62629de22f73d1c21e32bb65193f165455b15a3beb33680afeba

HTTP Headers

GET /steamcommunity/public/images/apps/2161700/2aeb189b126f766bb5930f725fbdcdd171a93c56.jpg HTTP/1.1
Host: cdn.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/jpeg
Content-Length: 811
Last-Modified: Wed, 13 Dec 2023 12:44:32 GMT
ETag: "6579a730-32b"
Accept-Ranges: bytes
Cache-Control: public, max-age=313191738
Expires: Mon, 10 Apr 2034 15:34:56 GMT
Date: Tue, 07 May 2024 17:52:38 GMT
Connection: keep-alive

cdn.akamai.steamstatic.com/steamcommunity/public/images/apps/1202540/96711df7876b863b33b15dc01fedcd1ac2482137.jpg

95.101.11.40

200 OK

1.4 kB

URL GET HTTP/1.1
cdn.akamai.steamstatic.com/steamcommunity/public/images/apps/1202540/96711df7876b863b33b15dc01fedcd1ac2482137.jpg
IP
95.101.11.40:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 38x38, segment length 16, baseline, precision 8, 32x32, components 3
Size
1.4 kB (1444 bytes)
Hash
8c7910cedd7574f8f45f5c78862d6daf
96711df7876b863b33b15dc01fedcd1ac2482137
166125d72bf6e130a780eca450c0aaeac6257a2cc45aed07581d696996568eb8

HTTP Headers

GET /steamcommunity/public/images/apps/1202540/96711df7876b863b33b15dc01fedcd1ac2482137.jpg HTTP/1.1
Host: cdn.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/jpeg
Content-Length: 1444
Last-Modified: Tue, 19 Dec 2023 09:01:02 GMT
ETag: "65815bce-5a4"
Accept-Ranges: bytes
Cache-Control: public, max-age=314154907
Expires: Fri, 21 Apr 2034 19:07:45 GMT
Date: Tue, 07 May 2024 17:52:38 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/images/x9x9.gif

95.101.11.9

200 OK

58 B

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/images/x9x9.gif
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
GIF image data, version 89a, 9 x 9
Size
58 B (58 bytes)
Hash
c85b970b4c832e361445c1b446cc2343
57e60c2f1f1f919a871b7c171c6d59d42e3adbe5
5ce28d7cf05f0e6eeaa3788a393d9980e9b51130963c6b9672d3447b6b11de6d

HTTP Headers

GET /public/images/x9x9.gif HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/gif
Content-Length: 58
Last-Modified: Fri, 05 Jan 2018 01:34:51 GMT
ETag: "5a4ed63b-3a"
Accept-Ranges: bytes
Date: Tue, 07 May 2024 17:52:38 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/images/header/logo_steam.svg?t=962016

95.101.11.9

200 OK

1.7 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/header/logo_steam.svg?t=962016
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
SVG Scalable Vector Graphics image
Size
1.7 kB (1736 bytes)
Hash
b7a7e43284e2ffe806ac1bc27c1f6a87
e8196489e2ae99ec6eb33995b5a3e108d6e44de0
c3a7c646a1305017f22423030cb5a12acc9f96b64013dcef7aeb80567b542cbb

HTTP Headers

GET /public/shared/images/header/logo_steam.svg?t=962016 HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/svg+xml
Last-Modified: Tue, 17 Nov 2020 23:34:54 GMT
ETag: "5fb45e1e-e64"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1736
Date: Tue, 07 May 2024 17:52:38 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/images/responsive/header_menu_hamburger.png

95.101.11.9

200 OK

3.8 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/responsive/header_menu_hamburger.png
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
PNG image data, 244 x 212, 8-bit/color RGBA, non-interlaced
Size
3.8 kB (3777 bytes)
Hash
eabc76eb57feae44add7faead028521e
4e3e53938fad15661d2d046a868338841a95db19
fc9e6260a2706ae146282d77e67bc1b74688435f8912ab4c1932641eec28bffa

HTTP Headers

GET /public/shared/images/responsive/header_menu_hamburger.png HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 3777
Last-Modified: Fri, 05 Jan 2018 01:35:16 GMT
ETag: "5a4ed654-ec1"
Accept-Ranges: bytes
Date: Tue, 07 May 2024 17:52:38 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/images/header/btn_header_installsteam_download.png?v=1

95.101.11.9

200 OK

291 B

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/header/btn_header_installsteam_download.png?v=1
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
PNG image data, 15 x 13, 8-bit/color RGBA, non-interlaced
Size
291 B (291 bytes)
Hash
a2796187c58c7e948159e37d6990ecc2
4209cd85add507247f9ce5a87a8c9095b54ee417
23341256db7f44b1f3811880fa2bae6b7748bbf6b62c544a162e38cf0d5c5082

HTTP Headers

GET /public/shared/images/header/btn_header_installsteam_download.png?v=1 HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 291
Last-Modified: Wed, 21 Mar 2018 00:07:17 GMT
ETag: "5ab1a235-123"
Accept-Ranges: bytes
Date: Tue, 07 May 2024 17:52:38 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Regular.ttf?v=4.015

95.101.11.9

200 OK

123 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Regular.ttf?v=4.015
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 22 names, Macintosh, Copyright � 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansRegular4.015;Plau;MotivaSan
Size
123 kB (122684 bytes)
Hash
57613e143ff3dae10f282e84a066de28
88756cc8c6db645b5f20aa17b14feefb4411c25f
19b8db163bcc51732457efa40911b4a422f297ff3cd566467d87eab93cef0c14

HTTP Headers

GET /public/shared/fonts/MotivaSans-Regular.ttf?v=4.015 HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sp.aircsgo.com
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/octet-stream
Content-Length: 122684
Last-Modified: Tue, 28 Jul 2020 23:16:28 GMT
ETag: "5f20b1cc-1df3c"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Tue, 07 May 2024 17:52:39 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Medium.ttf?v=4.015

95.101.11.9

200 OK

124 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Medium.ttf?v=4.015
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 24 names, Macintosh, Copyright � 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansMedium4.015;Plau;MotivaSans
Size
124 kB (124048 bytes)
Hash
2d64caa5ecbf5e42cbb766ca4d85e90e
147420abceb4a7fd7e486dddcfe68cda7ebb3a18
045b433f94502cfa873a39e72d616c73ec1b4c567b7ee0f847f442651683791f

HTTP Headers

GET /public/shared/fonts/MotivaSans-Medium.ttf?v=4.015 HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sp.aircsgo.com
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/octet-stream
Content-Length: 124048
Last-Modified: Tue, 28 Jul 2020 23:16:28 GMT
ETag: "5f20b1cc-1e490"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Tue, 07 May 2024 17:52:39 GMT
Connection: keep-alive

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/manifest.js?v=_VryIrnbeAOo&l=english

210.74.226.164

200

16 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/manifest.js?v=_VryIrnbeAOo&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (15634), with CRLF, LF line terminators
Size
16 kB (15802 bytes)
Hash
a8f7c65efbba9ef9077a7fd7747feb74
62730d76f381a830d32151696abd6cdd5835629e
6687f59c076a6baa9da2ef2c29b3f27af02b888daacd1f158c513d521c817f9b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/manifest.js?v=_VryIrnbeAOo&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:39 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 15802
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "_VryIrnbeAOo"
Vary: Accept-Encoding
Cache-Control: public, max-age=15551687
Expires: Mon, 28 Oct 2024 21:47:14 GMT
Content-Disposition: inline;filename=f.txt
traceId: f44c1098-df23-49c1-8144-a040a914b88d
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~b28b7af69.js?v=VGtvPLNviurP&l=english

210.74.226.164

200

927 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~b28b7af69.js?v=VGtvPLNviurP&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65368), with CRLF, LF line terminators
Size
927 kB (926675 bytes)
Hash
f134d10fcb01e179db9cf3099df3836a
731099750f391092c83afa5f1bd2b7477fede1e9
fba2af31de6ee1204b27e564b9a77aeff8bb8550e23df80837ba7baf1f18c8d8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~b28b7af69.js?v=VGtvPLNviurP&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:39 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 926675
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "VGtvPLNviurP"
Vary: Accept-Encoding
Cache-Control: public, max-age=15104393
Expires: Sun, 06 Oct 2024 22:37:50 GMT
Content-Disposition: inline;filename=f.txt
traceId: 2467617f-3f72-4c5c-9ea9-5612720aa357
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/main.js?v=roSu8uqw-pOl&l=english

210.74.226.164

200

581 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/main.js?v=roSu8uqw-pOl&l=english
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65368), with CRLF, LF line terminators
Size
581 kB (581372 bytes)
Hash
b7350e8157cecf6f69e60806ae4749ca
d76aaaf851f68e250f2434d21c56e609de44941e
926869671d7549a938563198d12ca29e903d7c56eefcc16a8e57edc178941817

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/main.js?v=roSu8uqw-pOl&l=english HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:41 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 581372
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "roSu8uqw-pOl"
Vary: Accept-Encoding
Cache-Control: public, max-age=15551300
Expires: Sun, 27 Oct 2024 22:31:36 GMT
Content-Disposition: inline;filename=f.txt
traceId: 575f83ea-6ba3-4634-8ec2-a0b8fb76e9ce
Strict-Transport-Security: max-age=15724800; includeSubDomains

community.akamai.steamstatic.com/public/images//sharedfiles/searchbox_workshop_submit.gif

95.101.11.9

200 OK

1.4 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/images//sharedfiles/searchbox_workshop_submit.gif
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
GIF image data, version 89a, 23 x 18
Size
1.4 kB (1418 bytes)
Hash
05fb65c97a9a5a8ae214129b1179cd41
b9646bed2952c2a908ee7bbba96331919cd6e43a
ecb79b1ea1675b180662b87e2eb7236ac5fe55ee3f37cbb5432202d3a17232a0

HTTP Headers

GET /public/images//sharedfiles/searchbox_workshop_submit.gif HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/gif
Content-Length: 1418
Last-Modified: Fri, 05 Jan 2018 01:34:50 GMT
ETag: "5a4ed63a-58a"
Accept-Ranges: bytes
Date: Tue, 07 May 2024 17:52:41 GMT
Connection: keep-alive

cdn.akamai.steamstatic.com/steam/apps/2161700/page_bg_generated_v6b.jpg?t=1712233220

95.101.11.40

200 OK

37 kB

URL GET HTTP/1.1
cdn.akamai.steamstatic.com/steam/apps/2161700/page_bg_generated_v6b.jpg?t=1712233220
IP
95.101.11.40:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, baseline, precision 8, 1438x810, components 3
Size
37 kB (36787 bytes)
Hash
b422bda4a3c43bc00260815fa0c5f403
5e1c2a46a05389e1b3cfeefd1caf460c82bdd694
44860209bafc9bb68300fccb86f0c78b1bb0d100c5766f33e515701fbaa033e7

HTTP Headers

GET /steam/apps/2161700/page_bg_generated_v6b.jpg?t=1712233220 HTTP/1.1
Host: cdn.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/jpeg
Content-Length: 36787
Last-Modified: Fri, 02 Feb 2024 05:59:47 GMT
ETag: "65bc84d3-8fb3"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: public, max-age=456970
Expires: Mon, 13 May 2024 00:48:51 GMT
Date: Tue, 07 May 2024 17:52:41 GMT
Connection: keep-alive

sp.aircsgo.com/favicon.ico

210.74.226.164

200

39 kB

URL GET HTTP/1.1
sp.aircsgo.com/favicon.ico
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel
Size
39 kB (38554 bytes)
Hash
231913fdebabcbe65f4b0052372bde56
553909d080e4f210b64dc73292f3a111d5a0781f
9f890a9debcdfccc339149a7943be9aff9e4c9203c2fa37d5671a5b2c88503ad

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e; timezoneOffset=0,0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:42 GMT
Content-Type: image/x-icon
Content-Length: 38554
Connection: keep-alive
Last-Modified: Tue, 18 Sep 2018 23:32:59 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Method: *
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Origin: https://sp.aircsgo.com
Access-Control-Expose-Headers: X-eresult,X-error_message
Cache-Control: public,max-age=86400
Expires: Fri, 13 Oct 2023 01:31:39 GMT
Origin: https://sp.aircsgo.com
Set-Cookie: uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e; Path=/; Domain=sp.aircsgo.com
X-Proxy-Hostname: steam-session-cluster-5565ddcfbf-kpxkr
traceId: eaac1cf43a17151043620352746d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/apps/allcontenthome?l=english&browsefilter=trend&appHubSubSection=11&forceanon=1

210.74.226.164

200

9.8 kB

URL GET HTTP/1.1
sp.aircsgo.com/apps/allcontenthome?l=english&browsefilter=trend&appHubSubSection=11&forceanon=1
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (329), with CRLF line terminators
Size
9.8 kB (9815 bytes)
Hash
8886c052321afbfab06e326354212a53
6de005849024d4de23f8ef01dfb1a4096f489a19
b398a5cfe8a5da5d1d5ca3ecf43c840729a181505b5328032ab18ac9c9d336e4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /apps/allcontenthome?l=english&browsefilter=trend&appHubSubSection=11&forceanon=1 HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
X-Prototype-Version: 1.7
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e; timezoneOffset=0,0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:42 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 9815
Connection: keep-alive
Last-Modified: Tue, 07 May 2024 17:52:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Method: *
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Origin: https://sp.aircsgo.com
Access-Control-Expose-Headers: X-eresult,X-error_message
Cache-Control: public,max-age=60
Content-Encoding: gzip
Expires: Tue, 07 May 2024 17:53:08 GMT
Origin: https://sp.aircsgo.com
Set-Cookie: uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e; Path=/; Domain=sp.aircsgo.com
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-Proxy-Hostname: steam-session-cluster-5565ddcfbf-kpxkr
traceId: eaac1cf43417151043620562899d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

community.akamai.steamstatic.com/public/shared/images//award_icon_blue.svg

95.101.11.9

200 OK

1.1 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images//award_icon_blue.svg
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
SVG Scalable Vector Graphics image
Size
1.1 kB (1114 bytes)
Hash
ffbf4a94d94a5fd3849d3583f2567f54
58be3d7cdd61e323c08b5986b8d89b71167e4f85
06f503b84511c712ac8105d8c0cbb72923ed4b53ff67fead87c6415209a8aa06

HTTP Headers

GET /public/shared/images//award_icon_blue.svg HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/svg+xml
Last-Modified: Tue, 16 Jun 2020 22:53:14 GMT
ETag: "5ee94d5a-952"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1114
Date: Tue, 07 May 2024 17:52:42 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/images/userreviews/icon_thumbsUp.png?v=1

95.101.11.9

200 OK

2.1 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/userreviews/icon_thumbsUp.png?v=1
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced
Size
2.1 kB (2103 bytes)
Hash
70dd94db2cc784ee7d1d4e711e1c4260
f04a6007da546006b008b1a7d143b4dcb4a3147a
16d0421c9b126ba66695653318780cbd30fef1fe2093f9135eeb323a37143a1e

HTTP Headers

GET /public/shared/images/userreviews/icon_thumbsUp.png?v=1 HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 2103
Last-Modified: Fri, 05 Jan 2018 01:35:16 GMT
ETag: "5a4ed654-837"
Accept-Ranges: bytes
Date: Tue, 07 May 2024 17:52:42 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/images/apphubs/play_icon80.png

95.101.11.9

200 OK

2.2 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/apphubs/play_icon80.png
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
PNG image data, 80 x 55, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2184 bytes)
Hash
080c457af88ef213cf315af1221f74c2
44c7475d69e1f3d8780b6f638960b670c2c0fa58
47cca726b04188ab33a403ac206822b96d6789fe5ff568ddcbd9ba972688f6d4

HTTP Headers

GET /public/shared/images/apphubs/play_icon80.png HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 2184
Last-Modified: Fri, 05 Jan 2018 01:35:16 GMT
ETag: "5a4ed654-888"
Accept-Ranges: bytes
Date: Tue, 07 May 2024 17:52:42 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/images//award_icon.svg

95.101.11.9

200 OK

1.1 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images//award_icon.svg
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
SVG Scalable Vector Graphics image
Size
1.1 kB (1114 bytes)
Hash
a18a9120d299fbf5953c745b46a06b8f
0cfaed4059d25bf42acb01b720c0afcfe75282c6
aa429f60089cc6fa4f5157ac0a842c5295740280f69f156f68898849beff799d

HTTP Headers

GET /public/shared/images//award_icon.svg HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/svg+xml
Last-Modified: Tue, 16 Jun 2020 22:53:14 GMT
ETag: "5ee94d5a-952"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1114
Date: Tue, 07 May 2024 17:52:42 GMT
Connection: keep-alive

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/sales_english-json.js?contenthash=78c2664709aeddc975e5

210.74.226.164

200

172 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/sales_english-json.js?contenthash=78c2664709aeddc975e5
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (64901), with CRLF, LF line terminators
Size
172 kB (171845 bytes)
Hash
e8ef31f20d4694cc3c34d5a74cb6f53d
6fca93922426824dc8aeee9de37f0b3d00f76269
202eb2aed6333ca9e76ce9059a639e59e454eb466a7fa3b8582e8bd3aeea726a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/sales_english-json.js?contenthash=78c2664709aeddc975e5 HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:41 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 171845
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 23:43:35 GMT
ETag: "U2Px6UXjBWDe"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=232721
Expires: Thu, 09 May 2024 21:21:23 GMT
Content-Disposition: inline;filename=f.txt
traceId: 07dd63e5-b50d-4998-ae6a-f9940f4c694c
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/shared_english-json.js?contenthash=35f086df69f22f790590

210.74.226.164

200

187 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/shared_english-json.js?contenthash=35f086df69f22f790590
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65253), with CRLF, LF line terminators
Size
187 kB (186647 bytes)
Hash
01d0fa754d7e9b2860f1a8084b1d454f
cf44dff07953d94ad0cfe69f2584b4375eda4345
dbe609a9edb91c441f88a7fb8070af56f1af9facb45f70d43ba9c360fc125b2e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/shared_english-json.js?contenthash=35f086df69f22f790590 HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:41 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 30 Apr 2024 22:30:36 GMT
ETag: "jJf03cLA22kN"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=232060
Expires: Thu, 09 May 2024 08:07:22 GMT
Content-Disposition: inline;filename=f.txt
traceId: 4344a04c-d2ed-4547-a38b-749aa88707ea
Strict-Transport-Security: max-age=15724800; includeSubDomains

steamuserimages-a.akamaihd.net/ugc/2461856773383687414/E68703C2C5E33D64CD61641690AB729BDA822BEB/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true

23.36.76.232

200 OK

6.9 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2461856773383687414/E68703C2C5E33D64CD61641690AB729BDA822BEB/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, progressive, precision 8, 128x128, components 3
Size
6.9 kB (6864 bytes)
Hash
c941badf56766ce094cf292a4840ed4a
e0f83a1c18dc862bcd7fcec95f4f812b54a9ee18
758afe3c37cf13badb3962dab2fa2e0d182821e3ad47eb061f347ead1d813ae9

HTTP Headers

GET /ugc/2461856773383687414/E68703C2C5E33D64CD61641690AB729BDA822BEB/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Sat, 04 May 2024 13:30:05 GMT
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
etag: "0x8DC6C3E426362F4"
server: Akamai Image Manager
x-serial: 930
content-length: 6864
content-type: image/jpeg
cache-control: private, no-transform, max-age=330685
expires: Sat, 11 May 2024 13:44:07 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2488878371159767142/CC41EDB2557833E5851CEB32A9E20C7BF22D0F57/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true

23.36.76.232

200 OK

25 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2488878371159767142/CC41EDB2557833E5851CEB32A9E20C7BF22D0F57/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
GIF image data, version 89a, 128 x 128
Size
25 kB (24580 bytes)
Hash
40c61a3c0ff4f76392641dc6853bbf65
48b6318651be2decd69a0c92d1fd2fea07d34e84
668ad0ca8c48e12fc8979d9c7ca6dd6f2ac7af7b99981e3b59d1d2ce5cfd7596

HTTP Headers

GET /ugc/2488878371159767142/CC41EDB2557833E5851CEB32A9E20C7BF22D0F57/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Mon, 06 May 2024 12:05:19 GMT
access-control-expose-headers: origin
etag: "4c53ee5767f34920b558cf41396869c8"
server: Akamai Image Manager
content-length: 24580
content-type: image/gif
cache-control: private, no-transform, max-age=501007
expires: Mon, 13 May 2024 13:02:49 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2478745271985276600/39AE6F5F7F9C39D87D9B59C30A0D4B53E283A7D0/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true

23.36.76.232

200 OK

6.1 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2478745271985276600/39AE6F5F7F9C39D87D9B59C30A0D4B53E283A7D0/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, progressive, precision 8, 128x128, components 3
Size
6.1 kB (6134 bytes)
Hash
ce90dc3a8bdb7483b137b355135cf930
4301b084c36695239346a337f4b80e879b88a4f1
e9684073a2d489c34e937c87c36c78d7e79751b1bf0e02117ebd32258b377893

HTTP Headers

GET /ugc/2478745271985276600/39AE6F5F7F9C39D87D9B59C30A0D4B53E283A7D0/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Sat, 04 May 2024 13:23:25 GMT
access-control-expose-headers: origin
etag: "a1f07664703368a2809164c1d2578963"
server: Akamai Image Manager
x-serial: 172
content-length: 6134
content-type: image/jpeg
cache-control: private, no-transform, max-age=493236
expires: Mon, 13 May 2024 10:53:18 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2474241672361590507/83496F89F65233197C0F10F279755DB3B8FE7F2D/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true

23.36.76.232

200 OK

5.1 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2474241672361590507/83496F89F65233197C0F10F279755DB3B8FE7F2D/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 39x39, segment length 16, progressive, precision 8, 128x128, components 3
Size
5.1 kB (5144 bytes)
Hash
5353861f5149fbf7ef627508dc8730cc
1caa7dcafe3e4c8efa97a250cb0b708c54a93365
fd3d746af872d461a61fb2592f5af9c2b1f7440cdf773907204d992c39955148

HTTP Headers

GET /ugc/2474241672361590507/83496F89F65233197C0F10F279755DB3B8FE7F2D/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Sat, 04 May 2024 19:36:54 GMT
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
etag: "0x8DC6C71892D035E"
server: Akamai Image Manager
x-serial: 471
content-length: 5144
content-type: image/jpeg
cache-control: private, no-transform, max-age=354216
expires: Sat, 11 May 2024 20:16:18 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2482122971712166412/7C4EC35943229A08D19E877B3B94C2BCB2D7D34B/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true

23.36.76.232

200 OK

4.2 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2482122971712166412/7C4EC35943229A08D19E877B3B94C2BCB2D7D34B/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, progressive, precision 8, 128x128, components 3
Size
4.2 kB (4228 bytes)
Hash
78243c1bb249a03ff809bfe7b08eb7e7
6e71a2a1a410ae02a759e5ec083492f12869470b
24a9bf2da4978e6869d1f8bcf08948710bb5c32e0827073a3eb0c0c2794fa475

HTTP Headers

GET /ugc/2482122971712166412/7C4EC35943229A08D19E877B3B94C2BCB2D7D34B/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Akamai Image Server
last-modified: Sun, 05 May 2024 12:00:03 GMT
etag: "0x8DC6CFAE5FB3EC3"
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
content-type: image/jpeg
content-length: 4228
cache-control: private, max-age=410852
expires: Sun, 12 May 2024 12:00:14 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2514774069003641452/AD9697A31D768EDF2A1E561CA1868A1973DC02F4/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true

23.36.76.232

200 OK

3.5 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2514774069003641452/AD9697A31D768EDF2A1E561CA1868A1973DC02F4/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 37x37, segment length 16, progressive, precision 8, 128x128, components 3
Size
3.5 kB (3472 bytes)
Hash
0f57767075289d96879480e2fea12c76
e679778f1c9205737af56467d54b1921dfd46469
9e42bc2e7af8aebfb4e797b42da874a469edc817072eca9a60773f5e0f7dfe90

HTTP Headers

GET /ugc/2514774069003641452/AD9697A31D768EDF2A1E561CA1868A1973DC02F4/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Sat, 04 May 2024 01:39:18 GMT
access-control-expose-headers: origin
etag: "443419be73e3642132f3cd2bff754f5d"
server: Akamai Image Manager
x-serial: 1594
content-length: 3472
content-type: image/jpeg
cache-control: private, no-transform, max-age=289739
expires: Sat, 11 May 2024 02:21:41 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2519277668648965633/A34571359EAFF69E036A0E51B7C01383A24629CF/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false

23.36.76.232

200 OK

68 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2519277668648965633/A34571359EAFF69E036A0E51B7C01383A24629CF/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 512x512, components 3
Size
68 kB (68498 bytes)
Hash
0c12b6cdb171595982da03a6a97ef2c5
a3add40681d221183dd6a310d1cfbdd699a4c5bf
66997a791a35aa17d3a2ba036bcec9063febe4820ca1fc7084a3fba295f51d38

HTTP Headers

GET /ugc/2519277668648965633/A34571359EAFF69E036A0E51B7C01383A24629CF/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Tue, 07 May 2024 10:12:25 GMT
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
etag: "0x8DC6E729E065C1B"
server: Akamai Image Manager
content-length: 68498
content-type: image/jpeg
cache-control: private, no-transform, max-age=577430
expires: Tue, 14 May 2024 10:16:32 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2473115772468895041/108BBC6D5C872A24361BED1119913ADE3BE5FAAC/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false

23.36.76.232

200 OK

23 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2473115772468895041/108BBC6D5C872A24361BED1119913ADE3BE5FAAC/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 512x288, components 3
Size
23 kB (22868 bytes)
Hash
bdef7070b6160c099e4edb5f54ccfceb
a64599cd439a1029e1e5664ec24114cd999e49c4
a2e4690ad47a0825fec11012604fbe40a28586cd543b0d3eaf42034a45e81938

HTTP Headers

GET /ugc/2473115772468895041/108BBC6D5C872A24361BED1119913ADE3BE5FAAC/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Akamai Image Server
last-modified: Tue, 07 May 2024 16:32:06 GMT
etag: "0x8DC6EB33BD286D1"
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
content-type: image/jpeg
content-length: 22868
cache-control: private, max-age=602203
expires: Tue, 14 May 2024 17:09:25 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2488878371166000000/55A0A05CE2F3540F4302BE7D28DD5C1A2E5832B4/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false

23.36.76.232

200 OK

16 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2488878371166000000/55A0A05CE2F3540F4302BE7D28DD5C1A2E5832B4/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 512x288, components 3
Size
16 kB (16376 bytes)
Hash
c8ede501878eee36d61ce3a9b3efd767
673f9be12425e55997905e62f1ac123114f71ed5
8e076f9912c646c5aaaa3f3dac97bbaf509f602133db60cfc20c17a90903771d

HTTP Headers

GET /ugc/2488878371166000000/55A0A05CE2F3540F4302BE7D28DD5C1A2E5832B4/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Akamai Image Server
last-modified: Tue, 07 May 2024 16:28:53 GMT
etag: "0x8DC6EB2C8EA0F25"
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
content-type: image/jpeg
content-length: 16376
cache-control: private, max-age=601671
expires: Tue, 14 May 2024 17:00:33 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2519277668650524490/969A8620C090B9ED3D102342CA61021FB372FF82/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false

23.36.76.232

200 OK

15 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2519277668650524490/969A8620C090B9ED3D102342CA61021FB372FF82/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 37x37, segment length 16, progressive, precision 8, 512x288, components 3
Size
15 kB (14775 bytes)
Hash
413b58b708432cb031e671919c01439f
3cd5434c305d0b2cc028b1fbec0b991144b9862b
43ce0aad145b6512d0c87841faff35705995db4a4e8d9623753a92337c98a13e

HTTP Headers

GET /ugc/2519277668650524490/969A8620C090B9ED3D102342CA61021FB372FF82/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Tue, 07 May 2024 16:00:25 GMT
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
etag: "0x8DC6EAD45A72F38"
server: Akamai Image Manager
x-serial: 1732
content-length: 14775
content-type: image/jpeg
cache-control: private, no-transform, max-age=598235
expires: Tue, 14 May 2024 16:03:17 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2514774069023126826/148E89006D4D0311D99C106821A7DCBCBF0B8D51/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false

23.36.76.232

200 OK

36 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2514774069023126826/148E89006D4D0311D99C106821A7DCBCBF0B8D51/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 37x37, segment length 16, progressive, precision 8, 512x288, components 3
Size
36 kB (36043 bytes)
Hash
1809e5b2c5bb3499c01b7b520baee360
10ee17c3203d004036ed4ea247a9e8fb2456993f
60a3d759863accd92967c3777ea12f32590e1bd7fd1e47b54002e4a86671f28f

HTTP Headers

GET /ugc/2514774069023126826/148E89006D4D0311D99C106821A7DCBCBF0B8D51/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
etag: "903A5B3154621B51BD694849BEE51B9D"
last-modified: Tue, 07 May 2024 15:56:27 GMT
server: Akamai Image Manager
content-length: 36043
content-type: image/jpeg
cache-control: private, no-transform, max-age=597901
expires: Tue, 14 May 2024 15:57:43 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2522655368368417337/4BFE57B46005282CCA766242781EDC32F85167CF/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false

23.36.76.232

200 OK

50 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2522655368368417337/4BFE57B46005282CCA766242781EDC32F85167CF/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 512x512, components 3
Size
50 kB (50516 bytes)
Hash
d0bf85b084721be6e4c0db4201de351e
3e2e8fc482f22621e269416d2141b3e43add0296
977664d3d654856122cf11ee26d3558e68495938d9b9f0a1368b63ca9aceb8f8

HTTP Headers

GET /ugc/2522655368368417337/4BFE57B46005282CCA766242781EDC32F85167CF/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Tue, 07 May 2024 14:25:25 GMT
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
etag: "0x8DC6E9B2527B4B5"
server: Akamai Image Manager
content-length: 50516
content-type: image/jpeg
cache-control: private, no-transform, max-age=592659
expires: Tue, 14 May 2024 14:30:21 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2478745272002110021/6B3566C59CC07D7BE88C5861427C4C3C13B90DD9/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false

23.36.76.232

200 OK

56 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2478745272002110021/6B3566C59CC07D7BE88C5861427C4C3C13B90DD9/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 512x512, components 3
Size
56 kB (56355 bytes)
Hash
ab6d0942a70a1b0fa1efd82939f45977
7117240a4a6fba96ad191218c283f7d05303b8cd
48a5d2214f7db005019f1ef072cde808f727e86217d7b2daf38e549da47a42e7

HTTP Headers

GET /ugc/2478745272002110021/6B3566C59CC07D7BE88C5861427C4C3C13B90DD9/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Tue, 07 May 2024 16:05:02 GMT
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
etag: "0x8DC6EAC7A1ACD19"
server: Akamai Image Manager
x-serial: 65
content-length: 56355
content-type: image/jpeg
cache-control: private, no-transform, max-age=598452
expires: Tue, 14 May 2024 16:06:54 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2461856773399417709/85B00D3163041AD6258EAAA12296BA8B92E0D51D/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false

23.36.76.232

200 OK

50 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2461856773399417709/85B00D3163041AD6258EAAA12296BA8B92E0D51D/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 37x37, segment length 16, progressive, precision 8, 512x288, components 3
Size
50 kB (50468 bytes)
Hash
12d053c8343b0b0969f880e3b2ec2b9a
59e8e466203843b0a1ac0fe8be0af945e1af75bd
96715ad2ab6754c754d455e7f3649807a9f18c9e17123480f82216c94b2609f3

HTTP Headers

GET /ugc/2461856773399417709/85B00D3163041AD6258EAAA12296BA8B92E0D51D/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Tue, 07 May 2024 12:12:29 GMT
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
etag: "0x8DC6E861A92D06B"
server: Akamai Image Manager
x-serial: 1902
content-length: 50468
content-type: image/jpeg
cache-control: private, no-transform, max-age=585166
expires: Tue, 14 May 2024 12:25:28 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2504640969850343467/6A02BEF88865486BBB356A80E92B0A4383D43193/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false

23.36.76.232

200 OK

52 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2504640969850343467/6A02BEF88865486BBB356A80E92B0A4383D43193/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 512x512, components 3
Size
52 kB (52170 bytes)
Hash
41d6c5627cd44055d51bf48adabc19e6
4ad62abb884569a8f90ad053a9f7885fe43b716c
929af81834c6ab5b3aba350841a7d51db0a9918f2ed5e800e7a65fe4cfbbcadb

HTTP Headers

GET /ugc/2504640969850343467/6A02BEF88865486BBB356A80E92B0A4383D43193/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Tue, 07 May 2024 17:29:13 GMT
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
etag: "0x8DC6D286BF372A7"
server: Akamai Image Manager
content-length: 52170
content-type: image/jpeg
cache-control: private, no-transform, max-age=603818
expires: Tue, 14 May 2024 17:36:20 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2510270469394729972/D18B189DEDDF0EDC00D1BB3AE2A97C836947629C/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false

23.36.76.232

200 OK

596 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2510270469394729972/D18B189DEDDF0EDC00D1BB3AE2A97C836947629C/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 37x37, segment length 16, progressive, precision 8, 1920x3413, components 3
Size
596 kB (596301 bytes)
Hash
3ab26c76994dfd9aa42a6ff909aeee4f
06fa9eaa78c930dbbdbfc2481c869ec2e4213491
76401752b86317fd4c799e15d13fb0f47b375a18ec4d952de66389afa0045131

HTTP Headers

GET /ugc/2510270469394729972/D18B189DEDDF0EDC00D1BB3AE2A97C836947629C/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Tue, 07 May 2024 16:30:39 GMT
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
etag: "0x8DC6EB1444BFF80"
server: Akamai Image Manager
x-serial: 688
content-length: 596301
content-type: image/jpeg
cache-control: private, no-transform, max-age=600498
expires: Tue, 14 May 2024 16:41:00 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2483248871630896367/CC494C2CB979BA2842A76DF678D8680218F84E1D/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false

23.36.76.232

200 OK

406 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2483248871630896367/CC494C2CB979BA2842A76DF678D8680218F84E1D/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3
Size
406 kB (406031 bytes)
Hash
9ba4a0f8a692084cae32b2e8781e2c26
56f47f96a3ccb02f00c496bcba2f56659f4c789a
1adcfec15bf4f8050c5ee2200a1be5478d2c57d9b5874cc9504b60dbdd246309

HTTP Headers

GET /ugc/2483248871630896367/CC494C2CB979BA2842A76DF678D8680218F84E1D/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Tue, 07 May 2024 17:16:45 GMT
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
etag: "0x8DC6EB82F86AA5D"
server: Akamai Image Manager
content-length: 406031
content-type: image/jpeg
cache-control: private, no-transform, max-age=603182
expires: Tue, 14 May 2024 17:25:44 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/main_english-json.js?contenthash=cfcee568a9b043acaadb

210.74.226.164

200

217 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/main_english-json.js?contenthash=cfcee568a9b043acaadb
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65355), with CRLF, LF line terminators
Size
217 kB (217392 bytes)
Hash
bb7bab95219dd8f05caa9f2ca171b380
ba0efd8b75a111e9b157ae61cf6cf91fc78c3f07
8a82f5c21ba88ff952bd1020fe7d0aabe82e283dcf6874b85178abb5d7c91e9d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/localization/main_english-json.js?contenthash=cfcee568a9b043acaadb HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:41 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 30 Apr 2024 22:30:38 GMT
ETag: "8SfJaG802sNm"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=232143
Expires: Thu, 09 May 2024 08:08:45 GMT
Content-Disposition: inline;filename=f.txt
traceId: a0b61368-71e5-4d25-9e2e-f3c334d4e863
Strict-Transport-Security: max-age=15724800; includeSubDomains

steamuserimages-a.akamaihd.net/ugc/2482122971724047930/B6E5483C755BB38E1FEAB36C295D162E43DA23E5/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false

23.36.76.232

200 OK

294 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2482122971724047930/B6E5483C755BB38E1FEAB36C295D162E43DA23E5/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3
Size
294 kB (294411 bytes)
Hash
a043dd72347d28d88b2ad5575c011122
4d361736f3499367731b1facfdc06c80a3f90f47
2a153319ad0605629470e44e79cb4ba69fe694f6aeeb3ea3afef47d779588bf7

HTTP Headers

GET /ugc/2482122971724047930/B6E5483C755BB38E1FEAB36C295D162E43DA23E5/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Tue, 07 May 2024 17:06:51 GMT
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
etag: "0x8DC6EB734112D08"
server: Akamai Image Manager
content-length: 294411
content-type: image/jpeg
cache-control: private, no-transform, max-age=603043
expires: Tue, 14 May 2024 17:23:25 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2461856773400798648/82DC23A8C5D51AEF49422EFA240CF0E75F7555E6/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false

23.36.76.232

200 OK

461 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2461856773400798648/82DC23A8C5D51AEF49422EFA240CF0E75F7555E6/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, progressive, precision 8, 1255x1673, components 3
Size
461 kB (461425 bytes)
Hash
fa0199fef19c86394d65d909ada4932b
918252cd4036c67a5cc1b5f581d91fa8c343407d
7b669b4c9325382a79f1df66edc3f62ea58b8b783e667a7e9e3f20605e03866d

HTTP Headers

GET /ugc/2461856773400798648/82DC23A8C5D51AEF49422EFA240CF0E75F7555E6/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Tue, 07 May 2024 17:15:30 GMT
access-control-expose-headers: origin
etag: "ebcd344318e1db055c165367a64af19d"
server: Akamai Image Manager
x-serial: 1001
content-length: 461425
content-type: image/jpeg
cache-control: private, no-transform, max-age=602592
expires: Tue, 14 May 2024 17:15:54 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2490004871924580404/02F8049300BB765265F41E4D98F3AF1756384443/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false

23.36.76.232

200 OK

384 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2490004871924580404/02F8049300BB765265F41E4D98F3AF1756384443/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3
Size
384 kB (383703 bytes)
Hash
3918d9b96bf540380f26a663b756fe19
ab12dfa9efc2c9cbe53f9a90e0f319405ca7c33e
c9eeff8a1acade0d58de78027831fb781aad9070c2999940cc6bafd03c59db2d

HTTP Headers

GET /ugc/2490004871924580404/02F8049300BB765265F41E4D98F3AF1756384443/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Tue, 07 May 2024 17:16:04 GMT
access-control-expose-headers: origin
etag: "a8436531e69c97ea2ad7ea97668b0010"
server: Akamai Image Manager
content-length: 383703
content-type: image/jpeg
cache-control: private, no-transform, max-age=602789
expires: Tue, 14 May 2024 17:19:11 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2464108573213590677/2632B5319AF259A65ADF4B630BB769C7B735624B/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false

23.36.76.232

200 OK

466 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2464108573213590677/2632B5319AF259A65ADF4B630BB769C7B735624B/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, progressive, precision 8, 1920x1080, components 3
Size
466 kB (466405 bytes)
Hash
b1628911332d090d54744d00f4febe90
eac66c8bec545b0f4d768e05f219288f6c24ff11
737d25f1673e82c3638974e9e70d802347603f6fa92c688c68056e3af4eaaf2d

HTTP Headers

GET /ugc/2464108573213590677/2632B5319AF259A65ADF4B630BB769C7B735624B/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Akamai Image Server
last-modified: Tue, 07 May 2024 17:23:25 GMT
etag: "eaea8896a7d74c03271e0db9a9b03c6b"
access-control-expose-headers: origin
access-control-allow-origin: *
content-type: image/jpeg
content-length: 466405
cache-control: private, max-age=603756
expires: Tue, 14 May 2024 17:35:18 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2508018669583017618/74ABD2C2CDBF27F188737C8DD96E177EB37E0285/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false

23.36.76.232

200 OK

242 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2508018669583017618/74ABD2C2CDBF27F188737C8DD96E177EB37E0285/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, progressive, precision 8, 1920x1080, components 3
Size
242 kB (241581 bytes)
Hash
4e1eda9fd85677b57d52f2f119e8589d
397c18d1a627944090f4aa400fd97c15aa488a03
7acbafa9e5476e1daf3793884fbef9ded029f353b864bb17976f7c88677d8021

HTTP Headers

GET /ugc/2508018669583017618/74ABD2C2CDBF27F188737C8DD96E177EB37E0285/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Akamai Image Server
last-modified: Tue, 07 May 2024 15:13:21 GMT
etag: "73e0ad3b5a3c252ea6ca370a92fa6a5a"
access-control-expose-headers: origin
access-control-allow-origin: *
content-type: image/jpeg
content-length: 241581
cache-control: private, max-age=595693
expires: Tue, 14 May 2024 15:20:55 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2469738072749934511/F5458BD9D706FBAF2A8A2803AA7F008E04481BBE/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false

23.36.76.232

200 OK

356 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2469738072749934511/F5458BD9D706FBAF2A8A2803AA7F008E04481BBE/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3
Size
356 kB (355694 bytes)
Hash
068cbe0c7ae7c45c9328e93948421491
bb1063b35567e54b835e2a83d727055317782820
9c03b7b8630ed50ed39266b6a74439c7038dbd4ddc8971cbe1e30285cea9913d

HTTP Headers

GET /ugc/2469738072749934511/F5458BD9D706FBAF2A8A2803AA7F008E04481BBE/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Tue, 07 May 2024 17:21:12 GMT
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
etag: "0x8DC6EB9DC19CE80"
server: Akamai Image Manager
x-serial: 1010
content-length: 355694
content-type: image/jpeg
cache-control: private, no-transform, max-age=603602
expires: Tue, 14 May 2024 17:32:44 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2500137370233528897/0034E206DCEB54167D61BFC5518FFD9B090CE290/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false

23.36.76.232

200 OK

719 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2500137370233528897/0034E206DCEB54167D61BFC5518FFD9B090CE290/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1920x1080, components 3
Size
719 kB (719195 bytes)
Hash
554f147a8b25875be086828d69d6f39c
0d619faeeec30271d8a76cca2719555577649fd8
8a4bf69bbc98778ab63a9c7d9d9d18956ad248e10a551786fe3b4aaa0150b0f2

HTTP Headers

GET /ugc/2500137370233528897/0034E206DCEB54167D61BFC5518FFD9B090CE290/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Akamai Image Server
last-modified: Tue, 07 May 2024 17:13:52 GMT
etag: "0x8DC6EB911B67D74"
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
content-type: image/jpeg
content-length: 719195
cache-control: private, max-age=603563
expires: Tue, 14 May 2024 17:32:05 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2508018669583018383/FF6B04CAFD1A0CEF9E074510973A18F8558F5B97/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false

23.36.76.232

200 OK

321 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2508018669583018383/FF6B04CAFD1A0CEF9E074510973A18F8558F5B97/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3
Size
321 kB (320817 bytes)
Hash
2e6ce9c5f9c72cccadbae40ea935d037
9d00b83c4ea52b735236fe5269392271f8f31e74
a1aa6e41fb14799962a60c66f335ff137c8635268405662ff407604e9fae6b17

HTTP Headers

GET /ugc/2508018669583018383/FF6B04CAFD1A0CEF9E074510973A18F8558F5B97/?imw=1920&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Tue, 07 May 2024 15:21:00 GMT
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
etag: "0x8DC6EA8427A1AB6"
server: Akamai Image Manager
content-length: 320817
content-type: image/jpeg
cache-control: private, no-transform, max-age=595717
expires: Tue, 14 May 2024 15:21:19 GMT
date: Tue, 07 May 2024 17:52:42 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2511396369286582126/2C30FEBFF2797F3D07A03F4D35CE0BD16E9192CF/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true

23.36.76.232

200 OK

6.6 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2511396369286582126/2C30FEBFF2797F3D07A03F4D35CE0BD16E9192CF/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3
Size
6.6 kB (6594 bytes)
Hash
0ef65c288e14bf3798ac64813eea9825
b086c56fae91e73aa75c05ba3ddd371462ba98c6
9e2d57d0157f6f4e732a0941fa5508367095c486939f13c1443d0ae1b65a77d0

HTTP Headers

GET /ugc/2511396369286582126/2C30FEBFF2797F3D07A03F4D35CE0BD16E9192CF/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Sat, 04 May 2024 16:35:16 GMT
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
etag: "0x8DC6C581EE1B5ED"
server: Akamai Image Manager
x-serial: 525
content-length: 6594
content-type: image/jpeg
cache-control: private, no-transform, max-age=343927
expires: Sat, 11 May 2024 17:24:50 GMT
date: Tue, 07 May 2024 17:52:43 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2513647611529714320/643B64A41AEB395718B6B04B6E6FB7167E10FEE2/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true

23.36.76.232

200 OK

7.0 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2513647611529714320/643B64A41AEB395718B6B04B6E6FB7167E10FEE2/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 37x37, segment length 16, progressive, precision 8, 128x128, components 3
Size
7.0 kB (7014 bytes)
Hash
51f22ddca2661bfa120bb8650f0f7e52
693fa494659fc19544cee985eeb9beeed88f8845
9242af0029994458342872d827d1db6b71a83a9ae64b2d46d210ea8166bf5d2a

HTTP Headers

GET /ugc/2513647611529714320/643B64A41AEB395718B6B04B6E6FB7167E10FEE2/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Mon, 29 Apr 2024 16:36:43 GMT
access-control-expose-headers: origin
etag: "6fde6feba08896b37350407dfba81901"
server: Akamai Image Manager
x-serial: 1014
content-length: 7014
content-type: image/jpeg
cache-control: private, no-transform, max-age=461471
expires: Mon, 13 May 2024 02:03:54 GMT
date: Tue, 07 May 2024 17:52:43 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2517025868833662334/7DDFFF897EE52D12EE6345810B27BC714C00F2BF/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false

23.36.76.232

200 OK

46 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2517025868833662334/7DDFFF897EE52D12EE6345810B27BC714C00F2BF/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 37x37, segment length 16, progressive, precision 8, 512x288, components 3
Size
46 kB (45568 bytes)
Hash
036a468f1af1c9857455c279974f854c
1bdbc0fdcb460c9a1fc08ace8068ada36db42b60
3f13d09211d48c52fa7463f572427abcc1713b941e7ba23b35752ef212993568

HTTP Headers

GET /ugc/2517025868833662334/7DDFFF897EE52D12EE6345810B27BC714C00F2BF/?imw=512&&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=false HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Tue, 07 May 2024 00:10:40 GMT
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
etag: "0x8DC6E03977937E0"
server: Akamai Image Manager
content-length: 45568
content-type: image/jpeg
cache-control: private, no-transform, max-age=547225
expires: Tue, 14 May 2024 01:53:08 GMT
date: Tue, 07 May 2024 17:52:43 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2495633770588957929/5B81B6D042E237DC3AE33CF1A027CEB557A33667/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true

23.36.76.232

200 OK

5.6 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2495633770588957929/5B81B6D042E237DC3AE33CF1A027CEB557A33667/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3
Size
5.6 kB (5553 bytes)
Hash
8f248de9210f5ceecf2f7e68e1dfeb92
295a6d5e702557951909b6fd7f1fef0c24b51c5c
fad62fb3a928a5838131698bde2cd9408ff26d6d6382d0e23af87c656465a663

HTTP Headers

GET /ugc/2495633770588957929/5B81B6D042E237DC3AE33CF1A027CEB557A33667/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Sat, 04 May 2024 09:17:47 GMT
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Content-Disposition,x-ms-server-encrypted,Accept-Ranges,Content-Length,Date,Transfer-Encoding
etag: "0x8DC6C1B0AB605A2"
server: Akamai Image Manager
x-serial: 975
content-length: 5553
content-type: image/jpeg
cache-control: private, no-transform, max-age=324005
expires: Sat, 11 May 2024 11:52:48 GMT
date: Tue, 07 May 2024 17:52:43 GMT
X-Firefox-Spdy: h2

steamuserimages-a.akamaihd.net/ugc/2506892769659815099/650D6357AB48ED2F8A26889593C3D9E5B2D32FC8/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true

23.36.76.232

200 OK

5.2 kB

URL GET HTTP/2
steamuserimages-a.akamaihd.net/ugc/2506892769659815099/650D6357AB48ED2F8A26889593C3D9E5B2D32FC8/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true
IP
23.36.76.232:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3
Size
5.2 kB (5244 bytes)
Hash
9deec19a40650675e4dbbc6e1655f1b6
abf659fa9ecb585802c727097f8285a6c9cf17b9
87741795c6d45b0245fe63c43f381b27dcf23cbd2d3ee700df412e6cb293ae52

HTTP Headers

GET /ugc/2506892769659815099/650D6357AB48ED2F8A26889593C3D9E5B2D32FC8/?imw=128&imh=128&ima=fit&impolicy=Letterbox&imcolor=%23000000&letterbox=true HTTP/1.1
Host: steamuserimages-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Sat, 04 May 2024 19:01:26 GMT
access-control-expose-headers: origin
etag: "f0815ad784bc98a0d6dbe97dba2015e2"
server: Akamai Image Manager
content-length: 5244
content-type: image/jpeg
cache-control: private, no-transform, max-age=355424
expires: Sat, 11 May 2024 20:36:27 GMT
date: Tue, 07 May 2024 17:52:43 GMT
X-Firefox-Spdy: h2

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/chunk~906a41d8e.js?contenthash=bc65a674fca36dfbad5e

210.74.226.164

200

18 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/chunk~906a41d8e.js?contenthash=bc65a674fca36dfbad5e
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (17427), with CRLF, LF line terminators
Size
18 kB (17595 bytes)
Hash
de07a97736d0565d5fe887fa36d88af1
24931254ff239c3305e0c5698e857d6a0ec821ef
8ccb525de647cc8dffb0423b7a5c9d548977e41926d1ea77b840d4f9c6c80c3c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/chunk~906a41d8e.js?contenthash=bc65a674fca36dfbad5e HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:44 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 17595
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 23:43:35 GMT
ETag: "EMncs5O5KwPb"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=230296
Expires: Thu, 09 May 2024 21:26:59 GMT
Content-Disposition: inline;filename=f.txt
traceId: 6d023691-8658-4e95-9642-07769f1283dd
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/css/applications/community/communityawardsapp.css?contenthash=9697f81cbeeb8cd9b3dc

210.74.226.164

200

18 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/css/applications/community/communityawardsapp.css?contenthash=9697f81cbeeb8cd9b3dc
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (10476), with CRLF, LF line terminators
Size
18 kB (18020 bytes)
Hash
31869693d352d644e6f5ec47a6fbde6b
89dbb3cc6afb83288d55a2f19907f7791ba7a06f
32fe829a2100907418aa0c1339794071d5c9ffd1de8117e4e519c0628eb7e082

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/css/applications/community/communityawardsapp.css?contenthash=9697f81cbeeb8cd9b3dc HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e; timezoneOffset=0,0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:44 GMT
Content-Type: text/css;charset=UTF-8
Content-Length: 18020
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 23:43:35 GMT
ETag: "M6sjhyiXx8I6"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=221495
Expires: Thu, 09 May 2024 21:29:46 GMT
Content-Disposition: inline;filename=f.txt
traceId: eaac1cf43a17150686910578628d0001
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/chunk~4b330692b.js?contenthash=555ff2496b7cbfc4085c

210.74.226.164

200

36 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/chunk~4b330692b.js?contenthash=555ff2496b7cbfc4085c
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (36120), with CRLF, LF line terminators
Size
36 kB (36288 bytes)
Hash
ccbbfe4d81578768ec91313262e5c854
53910e32ec797abfbbb483eb1984bf8b8a63afa7
054f13c495ec017c21e4472ecaae22eb3e77ab88887070d5f08acf99d466f87c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/chunk~4b330692b.js?contenthash=555ff2496b7cbfc4085c HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:44 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 36288
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 23:43:35 GMT
ETag: "uTSuLNY40gEH"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=229600
Expires: Thu, 09 May 2024 21:20:41 GMT
Content-Disposition: inline;filename=f.txt
traceId: 7ef53935-a69b-4502-899e-2bdd6dfcfd73
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/communityawardsapp.js?contenthash=afc3d1cf46d793a7e76b

210.74.226.164

200

407 B

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/communityawardsapp.js?contenthash=afc3d1cf46d793a7e76b
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with CRLF, LF line terminators
Size
407 B (407 bytes)
Hash
4fce4b7e15290cbba9932321acfe6b27
83e92752fa1abf70c98f8cbb6e789c7567ae3632
ed17935e3b091ed66c5e72b5429ebd1b5dd133bd580a7177d3f09ada3dc78f39

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/communityawardsapp.js?contenthash=afc3d1cf46d793a7e76b HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:44 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 407
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 23:43:35 GMT
ETag: "x9XavcTRkOF6"
Cache-Control: public, must-revalidate, max-age=221058
Expires: Thu, 09 May 2024 21:22:29 GMT
Content-Disposition: inline;filename=f.txt
traceId: b11648f3-1f79-4ed0-8bfb-f9deb944270e
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/navevents.js?contenthash=637ad4060aaa08d3ae85

210.74.226.164

200

14 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/navevents.js?contenthash=637ad4060aaa08d3ae85
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (14143), with CRLF, LF line terminators
Size
14 kB (14311 bytes)
Hash
111a47157df97cd1dc2fbcf3f045c870
809cc243c03b8d5778b5b3d929624556781f9b2d
c1229094551fd0b3d3f021cc0005ea28af2c64059e78adbe940367416bbeb680

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/navevents.js?contenthash=637ad4060aaa08d3ae85 HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:44 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 14311
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 23:43:35 GMT
ETag: "MsgvU2O4ZYEo"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=230273
Expires: Thu, 09 May 2024 21:26:36 GMT
Content-Disposition: inline;filename=f.txt
traceId: 046cebae-7296-4689-a1f1-548db9cbe53a
Strict-Transport-Security: max-age=15724800; includeSubDomains

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~4b330692b.js?contenthash=32fdb0c2c16cbd1f7255

210.74.226.164

200

26 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~4b330692b.js?contenthash=32fdb0c2c16cbd1f7255
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (25789), with CRLF, LF line terminators
Size
26 kB (25957 bytes)
Hash
4424079f8e3fc01ef07508cd66c6a745
6bbf466ff95951c8983cdc66ff9707faeaba0ec4
7d1e06ecb4a34c198ca61be73acac442dcb2dd4c0ca825adce997558d9eb4dab

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~4b330692b.js?contenthash=32fdb0c2c16cbd1f7255 HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:44 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 25957
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 23:43:34 GMT
ETag: "B6eLiWlkTkTt"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=229702
Expires: Thu, 09 May 2024 21:22:22 GMT
Content-Disposition: inline;filename=f.txt
traceId: ee4b8643-201f-468b-866f-db6bc4e113d3
Strict-Transport-Security: max-age=15724800; includeSubDomains

img.youtube.com/vi/7srZpXMzpFY/0.jpg

142.250.74.110

200 OK

8.4 kB

URL GET HTTP/2
img.youtube.com/vi/7srZpXMzpFY/0.jpg
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://sp.aircsgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3
Size
8.4 kB (8412 bytes)
Hash
b2e65623525bebba381b191737c71ed9
8737604e4e772ec5e1fab1c29a89095516371623
af529d12dc8e2847cafb6173e04f27b108d2f23312c177d7b4a23fa8335f827d

HTTP Headers

GET /vi/7srZpXMzpFY/0.jpg HTTP/1.1
Host: img.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 8412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 17:50:34 GMT
expires: Tue, 07 May 2024 17:55:34 GMT
cache-control: public, max-age=300
etag: "0"
content-type: image/jpeg
vary: Origin
age: 130
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

img.youtube.com/vi/bGdstgzsaVo/0.jpg

142.250.74.110

200 OK

11 kB

URL GET HTTP/2
img.youtube.com/vi/bGdstgzsaVo/0.jpg
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://sp.aircsgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3
Size
11 kB (10577 bytes)
Hash
5f0b98edb0e2285d33e665a8c27e9b6d
9a3ac2d200f6af57de89903de34c094869c2e350
7a095decb14b96a235b96e0fd336cd741307ec65340448e72af247e6d9b55406

HTTP Headers

GET /vi/bGdstgzsaVo/0.jpg HTTP/1.1
Host: img.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 10577
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 17:50:23 GMT
expires: Tue, 07 May 2024 17:55:23 GMT
cache-control: public, max-age=300
etag: "0"
content-type: image/jpeg
vary: Origin
age: 141
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

img.youtube.com/vi/_clS0PEjMyg/0.jpg

142.250.74.110

200 OK

8.1 kB

URL GET HTTP/2
img.youtube.com/vi/_clS0PEjMyg/0.jpg
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://sp.aircsgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3
Size
8.1 kB (8143 bytes)
Hash
6150850665d32b485c9cf0eaf636df9b
212fd0db6bc03ee434eee04a153bbcbe6a3f1408
51d583d7b101cdf33c097b2364e9fe7b21dcd3250c309ec3df86cee13cdb62f8

HTTP Headers

GET /vi/_clS0PEjMyg/0.jpg HTTP/1.1
Host: img.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 8143
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 17:52:32 GMT
expires: Tue, 07 May 2024 17:57:32 GMT
cache-control: public, max-age=300
etag: "0"
content-type: image/jpeg
vary: Origin
age: 12
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

img.youtube.com/vi/qoSU4EaNTeo/0.jpg

142.250.74.110

200 OK

36 kB

URL GET HTTP/2
img.youtube.com/vi/qoSU4EaNTeo/0.jpg
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://sp.aircsgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3
Size
36 kB (35857 bytes)
Hash
e0a8ef70f34387ff8ef988b81f351b9b
f30232e4d5384befdea6d6fc6c4a59367e16326f
4824e1fe86dfda056d5fe22c8e298038b398aabea171b256548c29dedcf94867

HTTP Headers

GET /vi/qoSU4EaNTeo/0.jpg HTTP/1.1
Host: img.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 35857
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 17:49:01 GMT
expires: Tue, 07 May 2024 19:49:01 GMT
cache-control: public, max-age=7200
etag: "1714683774"
content-type: image/jpeg
vary: Origin
age: 223
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

img.youtube.com/vi/5-cIa4BBR2k/0.jpg

142.250.74.110

200 OK

7.6 kB

URL GET HTTP/2
img.youtube.com/vi/5-cIa4BBR2k/0.jpg
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://sp.aircsgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3
Size
7.6 kB (7648 bytes)
Hash
244ca0935ac53a551156a8256ef7aec0
f186407c749e514712c60cfd5e3f16a812bea672
3a012451d9fa615bead907d0f4751e8079a7af6ea100e4cbde1e59c7bcc95091

HTTP Headers

GET /vi/5-cIa4BBR2k/0.jpg HTTP/1.1
Host: img.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 7648
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 17:51:08 GMT
expires: Tue, 07 May 2024 19:51:08 GMT
cache-control: public, max-age=7200
etag: "0"
content-type: image/jpeg
vary: Origin
age: 96
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

img.youtube.com/vi/2_YvrZ88hTs/0.jpg

142.250.74.110

200 OK

35 kB

URL GET HTTP/2
img.youtube.com/vi/2_YvrZ88hTs/0.jpg
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://sp.aircsgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3
Size
35 kB (34556 bytes)
Hash
41f18247d5eeb56f40e71d9fd0fd1601
2065e539c758e6ebe2c6c7c4f187fc886a5ffc57
b269c1aaef7d1bf9301c3662123c83bffebb4af0870201dd657ecc54d34ea050

HTTP Headers

GET /vi/2_YvrZ88hTs/0.jpg HTTP/1.1
Host: img.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 34556
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 17:51:53 GMT
expires: Tue, 07 May 2024 19:51:53 GMT
cache-control: public, max-age=7200
etag: "1714683190"
content-type: image/jpeg
vary: Origin
age: 51
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

img.youtube.com/vi/MByeEE6Ry5k/0.jpg

142.250.74.110

200 OK

12 kB

URL GET HTTP/2
img.youtube.com/vi/MByeEE6Ry5k/0.jpg
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://sp.aircsgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3
Size
12 kB (12251 bytes)
Hash
bf05bc0326bb8c4bd28e762ae35b5f4e
1839b214e9e54ff783c6e497608172130cd3b010
75247448676532bb323dbf344baaf7c59a9991b5e0906cd3023406f4ab124bb0

HTTP Headers

GET /vi/MByeEE6Ry5k/0.jpg HTTP/1.1
Host: img.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 12251
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 17:52:42 GMT
expires: Tue, 07 May 2024 19:52:42 GMT
cache-control: public, max-age=7200
etag: "1714599795"
content-type: image/jpeg
vary: Origin
age: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

img.youtube.com/vi/-mqdy2rqhZQ/0.jpg

142.250.74.110

200 OK

29 kB

URL GET HTTP/2
img.youtube.com/vi/-mqdy2rqhZQ/0.jpg
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://sp.aircsgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3
Size
29 kB (29395 bytes)
Hash
440277b9ff65a946ac2503178718bed5
5d2ddfccc5761cf137728052291a611fc8131b72
6be7a3628f5c34006f74f27f1814db2ec6acf40a7318890794192227b939fdae

HTTP Headers

GET /vi/-mqdy2rqhZQ/0.jpg HTTP/1.1
Host: img.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 29395
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 17:51:14 GMT
expires: Tue, 07 May 2024 19:51:14 GMT
cache-control: public, max-age=7200
etag: "1714511044"
content-type: image/jpeg
vary: Origin
age: 90
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

img.youtube.com/vi/neEzKKCmYSw/0.jpg

142.250.74.110

200 OK

13 kB

URL GET HTTP/2
img.youtube.com/vi/neEzKKCmYSw/0.jpg
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://sp.aircsgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3
Size
13 kB (13287 bytes)
Hash
e2bfa00080d01dbf06d64a3d18704427
d3d4f22bcd951cbf89029a14724865a46eae5bc7
c3b67b639f0c7f7d9ecc05838ae70e4c89dd696f74e7c480944b79a5365f7995

HTTP Headers

GET /vi/neEzKKCmYSw/0.jpg HTTP/1.1
Host: img.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 13287
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 17:51:46 GMT
expires: Tue, 07 May 2024 19:51:46 GMT
cache-control: public, max-age=7200
etag: "0"
content-type: image/jpeg
vary: Origin
age: 58
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~c7a3fa389.js?contenthash=28f31dbe47f6b6412c17

210.74.226.164

200

60 kB

URL GET HTTP/1.1
sp.aircsgo.com/community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~c7a3fa389.js?contenthash=28f31dbe47f6b6412c17
IP
210.74.226.164:443
ASN
#4812 China Telecom Group

Requested by
https://sp.aircsgo.com/
Certificate
IssuerDigiCert Inc
Subjectsp.aircsgo.com
Fingerprint64:41:3B:3F:FB:51:45:4A:A8:80:A5:EE:D0:D9:53:BC:C1:76:67:D3
ValidityWed, 23 Aug 2023 00:00:00 GMT - Fri, 23 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (59433), with CRLF, LF line terminators
Size
60 kB (59601 bytes)
Hash
382941fec17ecdf5d4cea9fc55e7779b
2e4841d374d1438ea4e7abda04cfb0bcde068024
389a9e5f78097274a9f571f9cf7c28f4f51723898872dc0541f0b5878321499a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Steam
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /community-akamai-steamstatic-com/js/public/javascript/applications/community/libraries~c7a3fa389.js?contenthash=28f31dbe47f6b6412c17 HTTP/1.1
Host: sp.aircsgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Cookie: sessionid=d7cdd39cec119c57b2bfb5eb; steamCountry=HK%7Cc19e2f5baca61be7c12c6a550252ff59; uid=a753e0ff-82a9-4b57-a343-5a2bc1aa161e; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.25.4
Date: Tue, 07 May 2024 17:52:44 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 59601
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 23:43:35 GMT
ETag: "xLq12u4Rks29"
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=229734
Expires: Thu, 09 May 2024 21:22:54 GMT
Content-Disposition: inline;filename=f.txt
traceId: 2c107ac1-23af-4c6d-800b-792451b0f5b3
Strict-Transport-Security: max-age=15724800; includeSubDomains

img.youtube.com/vi/CvPCUhScgic/0.jpg

142.250.74.110

200 OK

24 kB

URL GET HTTP/2
img.youtube.com/vi/CvPCUhScgic/0.jpg
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://sp.aircsgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3
Size
24 kB (23485 bytes)
Hash
923a86a26417923225674ff40a675289
b3cfd256b44b12814b9b55b59cd759324f4092b4
9e7f27b887a17ad901ca674d45b568d6ed55c54aba0ae7ed45a51d54282c123b

HTTP Headers

GET /vi/CvPCUhScgic/0.jpg HTTP/1.1
Host: img.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 23485
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 17:51:19 GMT
expires: Tue, 07 May 2024 19:51:19 GMT
cache-control: public, max-age=7200
etag: "1714510411"
content-type: image/jpeg
vary: Origin
age: 86
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

community.akamai.steamstatic.com/public/shared/images/comment_quoteicon.png

95.101.11.9

200 OK

417 B

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/comment_quoteicon.png
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
417 B (417 bytes)
Hash
2e6556310cf788abcc905dc522fe8375
f721b02abedca660d17f7c7d2f38aac2a89e4155
32285e351f9647f9b357aa997d5e1f6c1c521dac197bee998b17041ee5297d7d

HTTP Headers

GET /public/shared/images/comment_quoteicon.png HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 417
Last-Modified: Fri, 05 Jan 2018 01:35:16 GMT
ETag: "5a4ed654-1a1"
Accept-Ranges: bytes
Date: Tue, 07 May 2024 17:52:45 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/images/apphubs/5-star.png

95.101.11.9

200 OK

3.6 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/apphubs/5-star.png
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
PNG image data, 81 x 14, 8-bit/color RGBA, non-interlaced
Size
3.6 kB (3607 bytes)
Hash
956d1961cfd6b92681f8dc0dc564d926
c0cd9a97d29d1c01741b6041abead05dd50bdfdd
bbb200e8e328fc92a566bca5227e0cdcf7121a15f4dc1bb88184d8efe661b79e

HTTP Headers

GET /public/shared/images/apphubs/5-star.png HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 3607
Last-Modified: Fri, 05 Jan 2018 01:35:16 GMT
ETag: "5a4ed654-e17"
Accept-Ranges: bytes
Date: Tue, 07 May 2024 17:52:45 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/images/apphubs/4-star.png

95.101.11.9

200 OK

3.5 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/apphubs/4-star.png
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
PNG image data, 81 x 14, 8-bit/color RGBA, non-interlaced
Size
3.5 kB (3475 bytes)
Hash
99b0b7ce794818eb24dd6d5287588936
ae4ad007ad10371bf4a35f1d4ae2b871d2b809e7
e957985b47c64e1d65ec3c377170d5c0bbea810eab863824f305838493be7427

HTTP Headers

GET /public/shared/images/apphubs/4-star.png HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 3475
Last-Modified: Fri, 05 Jan 2018 01:35:16 GMT
ETag: "5a4ed654-d93"
Accept-Ranges: bytes
Date: Tue, 07 May 2024 17:52:45 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/images/apphubs/item_type_hover.png?v=1

95.101.11.9

200 OK

2.8 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/apphubs/item_type_hover.png?v=1
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Size
2.8 kB (2792 bytes)
Hash
2024f24380b48b22d0d1dd5664452b7a
120a6cbbb2c3f97099b573978b810d6d33389e40
9f60fa47c8e46e872dbdd2b8b2c4bfeed0f1db835ac3c6cb83740ffc17b9015c

HTTP Headers

GET /public/shared/images/apphubs/item_type_hover.png?v=1 HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 2792
Last-Modified: Fri, 05 Jan 2018 01:35:16 GMT
ETag: "5a4ed654-ae8"
Accept-Ranges: bytes
Date: Tue, 07 May 2024 17:52:45 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/images/apphubs/icons/icon_rate.png

95.101.11.9

200 OK

1.1 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/apphubs/icons/icon_rate.png
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
1.1 kB (1131 bytes)
Hash
96c60098e888af1bc5ae43c93034b017
44317b6e92c020c7b467737df6702858972830d8
101dcaab2ad4a31c11dbd87a661b1324c5dd52b43a1ea814234f5bbc78993286

HTTP Headers

GET /public/shared/images/apphubs/icons/icon_rate.png HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 1131
Last-Modified: Fri, 05 Jan 2018 01:35:16 GMT
ETag: "5a4ed654-46b"
Accept-Ranges: bytes
Date: Tue, 07 May 2024 17:52:45 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/images/apphubs/bg_workshopitem.png?v=1

95.101.11.9

200 OK

24 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/apphubs/bg_workshopitem.png?v=1
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
PNG image data, 305 x 126, 8-bit/color RGBA, non-interlaced
Size
24 kB (24341 bytes)
Hash
480ab236d2cca062e8d1e623887e465e
6c16204ee617e33b7472dd0010d7f5f3dfaadc7c
bff63013b4aeb2d2a71f3fbdca0360da66289022fb70ac9914db529113bc7e9e

HTTP Headers

GET /public/shared/images/apphubs/bg_workshopitem.png?v=1 HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 24341
Last-Modified: Fri, 05 Jan 2018 01:35:16 GMT
ETag: "5a4ed654-5f15"
Accept-Ranges: bytes
Date: Tue, 07 May 2024 17:52:45 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/images/buttons/icons_16.png?v=5

95.101.11.9

200 OK

6.7 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/buttons/icons_16.png?v=5
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
PNG image data, 320 x 32, 8-bit/color RGBA, non-interlaced
Size
6.7 kB (6719 bytes)
Hash
49b920ca1495fc302a0ed1515ce53491
6cce254202c4dc378cf31aaa7d05c8538267f078
472165755644972c17e4bbaf1300926ab99724d95599415b2ea7f9c16a27737c

HTTP Headers

GET /public/shared/images/buttons/icons_16.png?v=5 HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 6719
Last-Modified: Fri, 05 Jan 2018 01:35:16 GMT
ETag: "5a4ed654-1a3f"
Accept-Ranges: bytes
Date: Tue, 07 May 2024 17:52:45 GMT
Connection: keep-alive

community.akamai.steamstatic.com/public/shared/images/apphubs/not-yet.png

95.101.11.9

200 OK

2.4 kB

URL GET HTTP/1.1
community.akamai.steamstatic.com/public/shared/images/apphubs/not-yet.png
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://sp.aircsgo.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
FingerprintE0:5D:52:B1:76:EB:D8:4A:30:6F:25:76:22:B1:31:81:41:54:C4:74
ValidityThu, 04 Apr 2024 17:02:56 GMT - Wed, 03 Jul 2024 17:02:55 GMT

File type
PNG image data, 81 x 14, 8-bit/color RGBA, non-interlaced
Size
2.4 kB (2441 bytes)
Hash
9467cd36fa8d637f6025e405a8a8ee81
8d028c12f3ef3edbecfafe5217c734003b739967
1396ffd3fdda47e9634bbaaffa5c1b8fa3dafbeef347fa2504e2c636ef316636

HTTP Headers

GET /public/shared/images/apphubs/not-yet.png HTTP/1.1
Host: community.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sp.aircsgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 2441
Last-Modified: Fri, 05 Jan 2018 01:35:16 GMT
ETag: "5a4ed654-989"
Accept-Ranges: bytes
Date: Tue, 07 May 2024 17:52:45 GMT
Connection: keep-alive

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (39)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML