Report - storesteanpowered.com/redemwalletcode/85263020

Report Overview

Visited public
2023-12-04 11:03:57
Tags
URL
storesteanpowered.com/redemwalletcode/85263020
Finishing URL
storesteanpowered.com/rgdemwalletcode/85263020
IP / ASN
104.21.11.73
#13335 CLOUDFLARENET
Title
Redeem a Steam Gift Card or Wallet Code

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
storesteanpowered.com	unknown	2023-07-27	2023-07-27 14:02:06	2023-12-03 23:38:08	9.5 kB	377 kB	172.67.148.134
steamcommunity.com	4728	2006-05-28	2014-03-11 14:45:34	2023-12-03 16:16:08	402 B	39 kB	104.110.18.158
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2023-12-04 08:46:32	430 B	114 kB	151.101.66.137
cdn.akamai.steamstatic.com	8614	2013-11-07	2014-04-02 16:39:27	2023-12-02 21:17:44	533 B	504 kB	23.36.76.233
www.gstatic.com	unknown	2008-02-11	2016-07-26 11:37:06	2023-12-04 06:22:54	1.0 kB	194 kB	142.250.74.35
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-12-04 05:09:20	832 B	51 kB	151.101.1.229
store.akamai.steamstatic.com	25575	2013-11-07	2014-03-27 01:59:34	2023-12-03 00:18:31	20 kB	1.4 MB	23.36.76.243
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-12-04 05:09:04	449 B	29 kB	104.17.24.14
store.steampowered.com	6378	2000-08-09	2012-05-23 00:09:28	2023-12-01 00:42:47	478 B	470 B	23.38.201.66
recaptcha.net	3210	2007-01-06	2012-07-15 22:16:42	2023-12-04 11:09:50	447 B	1.4 kB	142.250.74.163

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-04	medium	storesteanpowered.com	Sinkholed
2023-12-04	medium	storesteanpowered.com	Sinkholed
2023-12-04	medium	storesteanpowered.com	Sinkholed
2023-12-04	medium	storesteanpowered.com	Sinkholed
2023-12-04	medium	storesteanpowered.com	Sinkholed
2023-12-04	medium	storesteanpowered.com	Sinkholed
2023-12-04	medium	storesteanpowered.com	Sinkholed
2023-12-04	medium	storesteanpowered.com	Sinkholed
2023-12-04	medium	storesteanpowered.com	Sinkholed
2023-12-04	medium	storesteanpowered.com	Sinkholed
2023-12-04	medium	storesteanpowered.com	Sinkholed
2023-12-04	medium	storesteanpowered.com	Sinkholed
2023-12-04	medium	storesteanpowered.com	Sinkholed
2023-12-04	medium	storesteanpowered.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (22)

	URL	From	Size	First Seen	Last Seen
	storesteanpowered.com/wsgmm3na8wk/	ScriptElement	0 B	0001-01-01	2025-05-10
Pretty URL storesteanpowered.com/wsgmm3na8wk/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-10 10:26 Times Seen4642823 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	store.akamai.steamstatic.com/public/javascript/redeemwalletcode.js?v=XsgODqUOlVw9&l=english	ScriptElement	14 kB	2023-03-14	2024-11-10
Pretty URL store.akamai.steamstatic.com/public/javascript/redeemwalletcode.js?v=XsgODqUOlVw9&l=english IP 23.36.76.243 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 11:21 Last Seen2024-11-10 16:53 Times Seen253 Hash 5ec80e0ea50e955c3d7193fa098ab013 c4d1182f4933dda515896b1f71c010617b3c509f 0fbb541d7d9cb3d5428cf496bda26b8d9cdb012e184933fe0589be3795f1ae6c Loading...

	store.akamai.steamstatic.com/public/javascript/modal.js?v=.Gl8zxCENQAoO	ScriptElement	2.9 kB	2023-03-13	2024-12-14
Pretty URL store.akamai.steamstatic.com/public/javascript/modal.js?v=.Gl8zxCENQAoO IP 23.36.76.243 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:33 Last Seen2024-12-14 14:09 Times Seen261 Hash 405088f8d3fed7506e915118063be2c2 1e8b4fbd31497dc0c6656791c2f90828e318140c bfcfd556cd300a21962bc18721c79d670bffd653d058ac8fd1adfd50d2d00c82 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js	ScriptElement	88 kB	2023-03-07	2025-05-10
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 10:08 Times Seen68165 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	recaptcha.net/recaptcha/enterprise.js?render=explicit	ScriptElement	941 B	2023-11-14	2023-12-04
Pretty URL recaptcha.net/recaptcha/enterprise.js?render=explicit IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 20:14 Last Seen2023-12-04 22:21 Times Seen13 Hash 9f5703469a92c2d356bada032feadd49 875aab9bacf41f3ea9dc661cc9332f5ee4de596f 13728b6753b65e4ad896b622ade6178b498125a52807641ef7b8ff1aaf4dbee0 Loading...

	cdn.jsdelivr.net/npm/react-dom@18.2.0/umd/react-dom.production.min.js	ScriptElement	132 kB	2023-03-07	2025-05-09
Pretty URL cdn.jsdelivr.net/npm/react-dom@18.2.0/umd/react-dom.production.min.js IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:38 Last Seen2025-05-09 13:33 Times Seen3485 Hash 64141792105ea4861f9f33294d65ab81 506d9100caa070005a890bd496de64c437d6d008 21758ed084cd0e37e735722ee4f3957ea960628a29dfa6c3ce1a1d47a2d6e4f7 Loading...

	storesteanpowered.com/rgdemwalletcode/85263020	ScriptElement	3.0 kB	2024-08-20	2024-08-20
Pretty URL storesteanpowered.com/rgdemwalletcode/85263020 IP 172.67.148.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:50 Last Seen2024-08-20 16:50 Times Seen1 Hash 7dc7600b2b7ddcf70607b44ed5a7d4ad c0412ed8e3cac2e9cec90781ec8c653a7b273d80 fe21890c7d9a6044defe0b5c20cbe60d47c5e292d8409259bd2541935a0bd7ea Loading...

	store.akamai.steamstatic.com/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0	ScriptElement	16 kB	2023-03-07	2025-05-07
Pretty URL store.akamai.steamstatic.com/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0 IP 23.36.76.243 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-07 19:31 Times Seen3876 Hash 72938851e7c2ef7b63299eba0c6752cb b75196bd3a6f9f4dfc1bbf5e43e96874bcd9ce4e e2d4e0e1d3e162fdc815f16dfff9ae9b0a967949f0f3ae371f947d730a3f0661 Loading...

	store.akamai.steamstatic.com/public/javascript/prototype-1.7.js?v=.a38iP7Khdmyy	ScriptElement	169 kB	2023-03-07	2025-05-07
Pretty URL store.akamai.steamstatic.com/public/javascript/prototype-1.7.js?v=.a38iP7Khdmyy IP 23.36.76.243 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:12 Last Seen2025-05-07 19:31 Times Seen4083 Hash 6a39e0b509fecb928d47b8a2643fed2a f67fa6cb1d09963d10ba117d6553c8e7d5bc7863 d8bdea7fff893dbdbeaf6c2affec091a77483b9ec10e7958486bc3b6cc170c96 Loading...

	store.akamai.steamstatic.com/public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english	ScriptElement	25 kB	2023-03-08	2025-04-29
Pretty URL store.akamai.steamstatic.com/public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english IP 23.36.76.243 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:04 Last Seen2025-04-29 13:19 Times Seen2294 Hash a52bc800ab6e9df5a05a5153eea29ffb 8661643fcbc7498dd7317d100ec62d1c1c6886ff 57cfaf9b92c98541f769090cd0229a30013cea7cfafc18519ca654bfae29e14e Loading...

	code.jquery.com/ui/1.11.3/jquery-ui.js	ScriptElement	470 kB	2023-03-07	2025-05-08
Pretty URL code.jquery.com/ui/1.11.3/jquery-ui.js IP 151.101.66.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-08 22:28 Times Seen2482 Hash c811575fd210af968e09caa681917b9b 0bf0ff43044448711b33453388c3a24d99e6cc9c d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e Loading...

	www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js	ScriptElement	476 kB	2023-11-14	2024-08-20
Pretty URL www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 09:02 Last Seen2024-08-20 19:39 Times Seen12206 Hash 23b9dd721490a4062ba8d01454ef6ba9 efdbb7331585411f7d397dacbf51fd3e95f3031d 4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7 Loading...

	store.akamai.steamstatic.com/public/javascript/main.js?v=90zQriNTNEnM&l=english	ScriptElement	86 kB	2023-03-08	2024-10-18
Pretty URL store.akamai.steamstatic.com/public/javascript/main.js?v=90zQriNTNEnM&l=english IP 23.36.76.243 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:31 Last Seen2024-10-18 03:26 Times Seen203 Hash f74cd0ae23533449cc8af7f8f151a9bc c48a1d9f24875c273b77618ef941bcc7c3e0188e 911383c10abc27cacb7badc757ea3366cce08643aa808b6281a7312fdab63f59 Loading...

	store.akamai.steamstatic.com/public/javascript/dynamicstore.js?v=uk2vdkhDxGM-&l=english	ScriptElement	88 kB	2023-03-08	2024-09-19
Pretty URL store.akamai.steamstatic.com/public/javascript/dynamicstore.js?v=uk2vdkhDxGM-&l=english IP 23.36.76.243 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:25 Last Seen2024-09-19 22:58 Times Seen115 Hash ba4daf764843c4633e80b45bc3bdab02 2f552843f3d4ae980ac6c99b800284c02eea3da9 c0f363b97fd924f8fd9338ebd1f817f947e3785c6f1b197eef2934f78cde0f6c Loading...

	storesteanpowered.com/assets/iza49kg5bxj/x812lg3uhx.min.js	ScriptElement	21 kB	2023-12-04	2023-12-04
Pretty URL storesteanpowered.com/assets/iza49kg5bxj/x812lg3uhx.min.js IP 172.67.148.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 12:03 Last Seen2023-12-04 12:03 Times Seen1 Hash 0b930ce7ca946cd17e819a5d234a1cea 739519678cb814d81c4ec075a2df19a0167abccd c9d06a7d69753bac7ec860b62820aaec35dfaf07218e71c20334336be2a5485f Loading...

	store.akamai.steamstatic.com/public/shared/javascript/jquery-1.8.3.min.js?v=.TZ2NKhB-nliU	ScriptElement	94 kB	2023-03-07	2025-05-10
Pretty URL store.akamai.steamstatic.com/public/shared/javascript/jquery-1.8.3.min.js?v=.TZ2NKhB-nliU IP 23.36.76.243 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 07:06 Times Seen15972 Hash e1288116312e4728f98923c79b034b67 8b6babff47b8a9793f37036fd1b1a3ad41d38423 ba6eda7945ab8d7e57b34cc5a3dd292fa2e4c60a5ced79236ecf1a9e0f0c2d32 Loading...

	store.akamai.steamstatic.com/public/shared/javascript/shared_global.js?v=Q5tt-d8r0YLu&l=english	ScriptElement	154 kB	2023-03-14	2024-10-18
Pretty URL store.akamai.steamstatic.com/public/shared/javascript/shared_global.js?v=Q5tt-d8r0YLu&l=english IP 23.36.76.243 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 01:09 Last Seen2024-10-18 03:26 Times Seen188 Hash 439b6df9df2bd182ee3354ceb7728f2a d54d45014d7282cb0e45a69c0c15430444095f86 66e344142d1a04f10a33e847a59939a9e71d558897ecafab050d5caf72bd1cb2 Loading...

	store.akamai.steamstatic.com/public/shared/javascript/dselect.js?v=sjouo3-33Gox&l=english	ScriptElement	9.3 kB	2023-03-07	2025-04-29
Pretty URL store.akamai.steamstatic.com/public/shared/javascript/dselect.js?v=sjouo3-33Gox&l=english IP 23.36.76.243 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12 Last Seen2025-04-29 13:19 Times Seen459 Hash b23a2ea37fb7dc6a317180acb9640bba 559826c6b73a59bccf54f9034d7e8c43d03c091a 23d2a8fbaa5a5f1f551b5d70440adee80fd519b52b3d6559cbbea35296679e2f Loading...

	cdn.jsdelivr.net/npm/react@18.2.0/umd/react.production.min.js	ScriptElement	11 kB	2023-03-07	2025-05-09
Pretty URL cdn.jsdelivr.net/npm/react@18.2.0/umd/react.production.min.js IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:38 Last Seen2025-05-09 13:33 Times Seen3503 Hash d86dcdbfed4c273c4742744941259902 98089a33d0cf2fa4b3e1ba9b7eeb9b8ba0ac82a7 4b4969fa4ef3594324da2c6d78ce8766fbbc2fd121fff395aedf997db0a99a06 Loading...

	store.akamai.steamstatic.com/public/javascript/scriptaculous/_combined.js?v=Me1IBxzktiwk&l=english&load=effects,controls,slider	ScriptElement	89 kB	2023-03-12	2025-05-01
Pretty URL store.akamai.steamstatic.com/public/javascript/scriptaculous/_combined.js?v=Me1IBxzktiwk&l=english&load=effects,controls,slider IP 23.36.76.243 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:14 Last Seen2025-05-01 11:33 Times Seen1027 Hash 31ed48071ce4b62c24520c95bcde6026 c073152e6835fba2ded4cc215f3985266be23f2b 08b39451eabaca10cd735816cdc5af4a35b05fbb197e2082235b6e16be62dedb Loading...

	unknown	Function	34 B	2023-04-11	2025-05-10
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:16 Last Seen2025-05-10 05:48 Times Seen67026 Hash 572cb94037fffc2a0a53b465972e15f1 0d679b041a7c1ca45cc99e2d229fc2b86762838d 6487e4bdd0f51bbfd9105810a41755847fdae2c274e2fc325cd22356d7707e35 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 00f2f2f61addae7fffc40be4b1f53028	76 B	2023-06-08 01:54	2024-08-21 09:38
Pretty Observations First Seen2023-06-08 01:54 Last Seen2024-08-21 09:38 Times Seen80 Hash 00f2f2f61addae7fffc40be4b1f53028 eb11ed3feef09886fad5835e9742d0eb561030a7 4f32167c5e49e0e74c18268fc6ef5e2d8797ba511b5818c9ae2e36ba6689f048 Loading...

HTTP Transactions (64)

URL IP Response Size

storesteanpowered.com/redemwalletcode/85263020

172.67.148.134

302 Found

0 B

URL User Request GET HTTP/2
storesteanpowered.com/redemwalletcode/85263020
IP
172.67.148.134:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectstoresteanpowered.com
FingerprintB2:24:AD:A8:7D:CA:59:EF:3E:18:C9:4A:F6:04:FB:E6:40:2F:34:BC
ValidityMon, 13 Nov 2023 12:18:30 GMT - Sun, 11 Feb 2024 12:18:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /redemwalletcode/85263020 HTTP/1.1
Host: storesteanpowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Mon, 04 Dec 2023 11:03:38 GMT
content-length: 0
location: /rgdemwalletcode/85263020
set-cookie: token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJsaW5rX2lkIjozMzAwMTUsImlhdCI6MTcwMTY4NzgxOCwiZXhwIjoxNzAxNjkxNDE4fQ.5aP2POwmav2g5dH16xoS-leaRPa1W2tKtCOd_I_kPaI; Path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o%2BB8OHY7xqRS2HpbyiWNdDy5hBxk0%2Bfj1vPJdYpDHUW%2Fr5ueq%2BEO4UiuY8lYpNSyXL%2FKvYXlqqXQvwEoU7dSWRj44btCwfVymvPUm3PKGZI4bGaepXhFsSL2KrEtR%2BN%2BQjAf1q4fzhs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8303905b6df1b517-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/react@18.2.0/umd/react.production.min.js

151.101.1.229

200 OK

4.5 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/react@18.2.0/umd/react.production.min.js
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://storesteanpowered.com/rgdemwalletcode/85263020
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (630)
Size
4.5 kB (4465 bytes)
Hash
d86dcdbfed4c273c4742744941259902
98089a33d0cf2fa4b3e1ba9b7eeb9b8ba0ac82a7
4b4969fa4ef3594324da2c6d78ce8766fbbc2fd121fff395aedf997db0a99a06

HTTP Headers

GET /npm/react@18.2.0/umd/react.production.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 18.2.0
x-jsd-version-type: version
etag: W/"29f1-mAiaM9DPL6Sz4bqbfuubi6Csgqc"
content-encoding: br
accept-ranges: bytes
date: Mon, 04 Dec 2023 11:03:39 GMT
age: 22802633
x-served-by: cache-fra-eddf8230087-FRA, cache-bma1627-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4465
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/react-dom@18.2.0/umd/react-dom.production.min.js

151.101.1.229

200 OK

45 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/react-dom@18.2.0/umd/react-dom.production.min.js
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://storesteanpowered.com/rgdemwalletcode/85263020
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (945)
Size
45 kB (44592 bytes)
Hash
64141792105ea4861f9f33294d65ab81
506d9100caa070005a890bd496de64c437d6d008
21758ed084cd0e37e735722ee4f3957ea960628a29dfa6c3ce1a1d47a2d6e4f7

HTTP Headers

GET /npm/react-dom@18.2.0/umd/react-dom.production.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 18.2.0
x-jsd-version-type: version
etag: W/"2032a-UG2RAMqgcABaiQvUlt5kxDfW0Ag"
content-encoding: br
accept-ranges: bytes
date: Mon, 04 Dec 2023 11:03:39 GMT
age: 22802634
x-served-by: cache-fra-eddf8230095-FRA, cache-bma1627-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 44592
X-Firefox-Spdy: h2

steamcommunity.com/favicon.ico

104.110.18.158

200 OK

39 kB

URL GET HTTP/1.1
steamcommunity.com/favicon.ico
IP
104.110.18.158:443
ASN
#16625 AKAMAI-AS

Requested by
https://storesteanpowered.com/rgdemwalletcode/85263020
Certificate
IssuerDigiCert Inc
Subjectstore.steampowered.com
FingerprintDD:E0:08:EA:3A:72:E9:B1:0E:E4:65:DE:5C:1A:62:BF:CF:48:50:1D
ValidityFri, 16 Dec 2022 00:00:00 GMT - Sun, 17 Dec 2023 23:59:59 GMT

File type
MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel\012- data
Size
39 kB (38554 bytes)
Hash
231913fdebabcbe65f4b0052372bde56
553909d080e4f210b64dc73292f3a111d5a0781f
9f890a9debcdfccc339149a7943be9aff9e4c9203c2fa37d5671a5b2c88503ad

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: steamcommunity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/x-icon
Cache-Control: public,max-age=86400
Expires: Wed, 11 Oct 2023 12:54:47 GMT
Last-Modified: Tue, 18 Sep 2018 23:32:59 GMT
Content-Length: 38554
Date: Mon, 04 Dec 2023 11:03:40 GMT
Connection: keep-alive

storesteanpowered.com/assets/ejvouvreagh/fcff4301eix17axet69.woff2

172.67.148.134

200 OK

29 kB

URL GET HTTP/3
storesteanpowered.com/assets/ejvouvreagh/fcff4301eix17axet69.woff2
IP
172.67.148.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://storesteanpowered.com/rgdemwalletcode/85263020
Certificate
IssuerLet's Encrypt
Subjectstoresteanpowered.com
FingerprintB2:24:AD:A8:7D:CA:59:EF:3E:18:C9:4A:F6:04:FB:E6:40:2F:34:BC
ValidityMon, 13 Nov 2023 12:18:30 GMT - Sun, 11 Feb 2024 12:18:29 GMT

File type
Web Open Font Format (Version 2), TrueType, length 29104, version 0.0\012- data
Size
29 kB (29104 bytes)
Hash
38a35c7070979fb4c845de40cada43c5
b0f804f348b746449e6589b92dff685509737dad
fcff4301dc083af2be2b990bb6485e9e06ce9d2b373a7acf8a74f61ea69d861a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/ejvouvreagh/fcff4301eix17axet69.woff2 HTTP/1.1
Host: storesteanpowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/assets/ejvouvreagh/13e4346feix17axet69.css
Cookie: token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJsaW5rX2lkIjozMzAwMTUsImlhdCI6MTcwMTY4NzgxOCwiZXhwIjoxNzAxNjkxNDE4fQ.5aP2POwmav2g5dH16xoS-leaRPa1W2tKtCOd_I_kPaI
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 11:03:41 GMT
content-type: font/woff2
content-length: 29104
etag: "656db13b-71b0"
last-modified: Mon, 04 Dec 2023 11:00:11 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X4sUHZTnOPGm%2FsWW0jlIFbmftSBQm1ZGTg%2BCxxcXnZ41AJE4NEg%2BotDWOeycDP3P6pA5PizUhT3kZWdoyLJl5pNaq%2BWRKWauuZj7X1lNk2HpHM0dFlOTnzGCIo1Y06MQWVAMpG%2BZHeU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8303906c1dbb5689-OSL
alt-svc: h3=":443"; ma=86400

store.akamai.steamstatic.com/public/shared/css/buttons.css?v=6PFqex5UPprb&l=english

23.36.76.243

200 OK

3.5 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/css/buttons.css?v=6PFqex5UPprb&l=english
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
ASCII text, with CRLF, LF line terminators
Size
3.5 kB (3530 bytes)
Hash
e8f16a7b1e543e9adb78f6e12945515f
47263a98b74a253ea0bf72bfb6525edc0bacb034
3d0874ab563803918741edfd0204aa756df378544bf81e1874a538b17839500d

HTTP Headers

GET /public/shared/css/buttons.css?v=6PFqex5UPprb&l=english HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "6PFqex5UPprb"
Server: nginx
Content-Type: text/css;charset=UTF-8
Content-Length: 3530
Content-Encoding: gzip
Strict-Transport-Security: max-age=300
Vary: Accept-Encoding
Cache-Control: public, max-age=2399667
Expires: Mon, 01 Jan 2024 05:38:08 GMT
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

storesteanpowered.com/api/getsiteconfig/

172.67.148.134

200 OK

1.1 kB

URL POST HTTP/3
storesteanpowered.com/api/getsiteconfig/
IP
172.67.148.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://storesteanpowered.com/rgdemwalletcode/85263020
Certificate
IssuerLet's Encrypt
Subjectstoresteanpowered.com
FingerprintB2:24:AD:A8:7D:CA:59:EF:3E:18:C9:4A:F6:04:FB:E6:40:2F:34:BC
ValidityMon, 13 Nov 2023 12:18:30 GMT - Sun, 11 Feb 2024 12:18:29 GMT

File type
JSON data\012- , ASCII text, with very long lines (722), with no line terminators
Size
1.1 kB (1095 bytes)
Hash
65f888a7395d30d8e7b3542549654cbf
8b550c794fd2597f3c0c682624b10d781391ac81
4e9f2b11ac934fcf065daf7fb4a7e1c70d82757302083c9911a56e2ee9a40cb2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /api/getsiteconfig/ HTTP/1.1
Host: storesteanpowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 87
Origin: https://storesteanpowered.com
DNT: 1
Connection: keep-alive
Cookie: token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJsaW5rX2lkIjozMzAwMTUsImlhdCI6MTcwMTY4NzgxOCwiZXhwIjoxNzAxNjkxNDE4fQ.5aP2POwmav2g5dH16xoS-leaRPa1W2tKtCOd_I_kPaI
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 11:03:41 GMT
content-type: application/json; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wLL3HUBifNIqjGiPX5gVuJN8JZ1hlOYBcWUD4hfmp1VqyDi5v4uCrSLxNXPbHegjt61JjFPjwU65BnkC2jot%2F0RC%2FI3iWVAVhIHTCNcTOIiS5BfMbWSR%2F0cZ37ymu4SIUNlgBfJVE0E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8303906c0daa5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

storesteanpowered.com/ooyv91dy9ef/

172.67.148.134

200 OK

43 kB

URL POST HTTP/3
storesteanpowered.com/ooyv91dy9ef/
IP
172.67.148.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://storesteanpowered.com/rgdemwalletcode/85263020
Certificate
IssuerLet's Encrypt
Subjectstoresteanpowered.com
FingerprintB2:24:AD:A8:7D:CA:59:EF:3E:18:C9:4A:F6:04:FB:E6:40:2F:34:BC
ValidityMon, 13 Nov 2023 12:18:30 GMT - Sun, 11 Feb 2024 12:18:29 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (322)
Size
43 kB (42987 bytes)
Hash
da51226746bc2844035cb8bdcd547a26
1e18c6a9c49a383a779aba03872bca6fa6daa2fc
958ab8f81a4a632d9da4d4f527c3be5b008d20a20122f1f0987dad2400289b0f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /ooyv91dy9ef/ HTTP/1.1
Host: storesteanpowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 77
Origin: null
DNT: 1
Connection: keep-alive
Cookie: token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJsaW5rX2lkIjozMzAwMTUsImlhdCI6MTcwMTY4NzgxOCwiZXhwIjoxNzAxNjkxNDE4fQ.5aP2POwmav2g5dH16xoS-leaRPa1W2tKtCOd_I_kPaI
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 11:03:41 GMT
content-type: text/html
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Um6713YmxO%2BdyW1APWkJ3bsoEIevG9LrelcFTefs%2FzuTRehv%2Bd9BDilLxDTCdMDnMIGXyGRNNpwstKc0JB8Zk9OlPkRiASYmOhYaYa8uNkNltA98a1Mvi9BrjjlGeyZQmrGjAGvvKSI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8303906bfda35689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

store.akamai.steamstatic.com/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0

23.36.76.243

200 OK

4.2 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
4.2 kB (4229 bytes)
Hash
72938851e7c2ef7b63299eba0c6752cb
b75196bd3a6f9f4dfc1bbf5e43e96874bcd9ce4e
e2d4e0e1d3e162fdc815f16dfff9ae9b0a967949f0f3ae371f947d730a3f0661

HTTP Headers

GET /public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0 HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/javascript;charset=UTF-8
Content-Length: 4229
ETag: ".zYHOpI1L3Rt0"
Last-Modified: Wed, 28 Jun 2023 04:07:10 GMT
Content-Encoding: gzip
Strict-Transport-Security: max-age=300
Vary: Accept-Encoding
Cache-Control: public, max-age=8695994
Expires: Thu, 14 Mar 2024 02:36:55 GMT
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js

104.17.24.14

200 OK

28 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65451)
Size
28 kB (27748 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

HTTP Headers

GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 04 Dec 2023 11:03:41 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 616682
expires: Sat, 23 Nov 2024 11:03:41 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=68IHoXXZnlrRapoDUsJhitzvtGpnPfHTp2iS8qWna4I%2BGivSptSeJkKTHr%2B0NjIcvRnjCDQ%2Fy6rd6pRxrIOU0KU8Nko5Yrg%2B%2FHOnCqplM%2BOTKKyGpi%2FbhIChXhZCLVtArk8qkLBy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 830390744a387128-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

code.jquery.com/ui/1.11.3/jquery-ui.js

151.101.66.137

200 OK

114 kB

URL GET HTTP/2
code.jquery.com/ui/1.11.3/jquery-ui.js
IP
151.101.66.137:443
ASN
#54113 FASTLY

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (547)
Size
114 kB (113814 bytes)
Hash
c811575fd210af968e09caa681917b9b
0bf0ff43044448711b33453388c3a24d99e6cc9c
d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e

HTTP Headers

GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 04 Dec 2023 11:03:41 GMT
age: 4151823
x-served-by: cache-lga21958-LGA, cache-bma1665-BMA
x-cache: HIT, HIT
x-cache-hits: 191, 52
x-timer: S1701687821.496984,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2

store.akamai.steamstatic.com/public/shared/css/shared_responsive.css?v=tzDCtkxeI-e5&l=english

23.36.76.243

200 OK

5.7 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/css/shared_responsive.css?v=tzDCtkxeI-e5&l=english
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
ASCII text, with very long lines (1667), with CRLF, LF line terminators
Size
5.7 kB (5677 bytes)
Hash
b730c2b64c5e23e7b97343a43be0eae9
1451a3bee6b72fb0bd049cb8b84cc5faf20ae598
4ec40ebe11519d62a8c62ff92266ffa860a7c38259dc113d819ce91e083bee49

HTTP Headers

GET /public/shared/css/shared_responsive.css?v=tzDCtkxeI-e5&l=english HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/css;charset=UTF-8
Content-Length: 5677
ETag: "tzDCtkxeI-e5"
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
Content-Encoding: gzip
Strict-Transport-Security: max-age=300
Vary: Accept-Encoding
Cache-Control: public, max-age=15552000
Expires: Sat, 01 Jun 2024 11:03:41 GMT
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/javascript/main.js?v=90zQriNTNEnM&l=english

23.36.76.243

200 OK

20 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/javascript/main.js?v=90zQriNTNEnM&l=english
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
ASCII text, with very long lines (381), with CRLF line terminators
Size
20 kB (19464 bytes)
Hash
f74cd0ae23533449cc8af7f8f151a9bc
c48a1d9f24875c273b77618ef941bcc7c3e0188e
911383c10abc27cacb7badc757ea3366cce08643aa808b6281a7312fdab63f59

HTTP Headers

GET /public/javascript/main.js?v=90zQriNTNEnM&l=english HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/javascript;charset=UTF-8
Content-Length: 19464
ETag: "90zQriNTNEnM"
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
Content-Encoding: gzip
Strict-Transport-Security: max-age=300
Vary: Accept-Encoding
Cache-Control: public, max-age=15552000
Expires: Sat, 01 Jun 2024 11:03:41 GMT
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/css/v6/cart.css?v=u2FIaietX6aF&l=english

23.36.76.243

200 OK

12 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/css/v6/cart.css?v=u2FIaietX6aF&l=english
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
ASCII text, with very long lines (361), with CRLF, LF line terminators
Size
12 kB (11783 bytes)
Hash
bb61486a27ad5fa68555bbe8a3ada655
8bfa2068a12fa536b8f230d25aa690963aa38cee
2772850b98923d3dcde7942c03c76f088cba2f9f50d0ac69a83a45bd1d6be430

HTTP Headers

GET /public/css/v6/cart.css?v=u2FIaietX6aF&l=english HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/css;charset=UTF-8
Content-Length: 11783
ETag: "u2FIaietX6aF"
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
Content-Encoding: gzip
Strict-Transport-Security: max-age=300
Vary: Accept-Encoding
Cache-Control: public, max-age=15552000
Expires: Sat, 01 Jun 2024 11:03:41 GMT
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/javascript/prototype-1.7.js?v=.a38iP7Khdmyy

23.36.76.243

200 OK

37 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/javascript/prototype-1.7.js?v=.a38iP7Khdmyy
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
ASCII text, with CRLF line terminators
Size
37 kB (37365 bytes)
Hash
6a39e0b509fecb928d47b8a2643fed2a
f67fa6cb1d09963d10ba117d6553c8e7d5bc7863
d8bdea7fff893dbdbeaf6c2affec091a77483b9ec10e7958486bc3b6cc170c96

HTTP Headers

GET /public/javascript/prototype-1.7.js?v=.a38iP7Khdmyy HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/javascript;charset=UTF-8
Content-Length: 37365
ETag: ".a38iP7Khdmyy"
Last-Modified: Wed, 28 Jun 2023 04:07:21 GMT
Content-Encoding: gzip
Strict-Transport-Security: max-age=10368000
Vary: Accept-Encoding
Cache-Control: public, max-age=8989343
Expires: Sun, 17 Mar 2024 12:06:04 GMT
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/javascript/scriptaculous/_combined.js?v=Me1IBxzktiwk&l=english&load=effects,controls,slider

23.36.76.243

200 OK

21 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/javascript/scriptaculous/_combined.js?v=Me1IBxzktiwk&l=english&load=effects,controls,slider
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
HTML document, ASCII text, with CRLF, CR line terminators
Size
21 kB (21242 bytes)
Hash
31ed48071ce4b62c24520c95bcde6026
c073152e6835fba2ded4cc215f3985266be23f2b
08b39451eabaca10cd735816cdc5af4a35b05fbb197e2082235b6e16be62dedb

HTTP Headers

GET /public/javascript/scriptaculous/_combined.js?v=Me1IBxzktiwk&l=english&load=effects,controls,slider HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/javascript;charset=UTF-8
Content-Length: 21242
ETag: "Me1IBxzktiwk"
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
Content-Encoding: gzip
Strict-Transport-Security: max-age=300
Vary: Accept-Encoding
Cache-Control: public, max-age=7282924
Expires: Mon, 26 Feb 2024 18:05:45 GMT
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/shared/javascript/shared_global.js?v=Q5tt-d8r0YLu&l=english

23.36.76.243

200 OK

37 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/javascript/shared_global.js?v=Q5tt-d8r0YLu&l=english
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
ASCII text, with very long lines (2665), with CRLF line terminators
Size
37 kB (36798 bytes)
Hash
439b6df9df2bd182ee3354ceb7728f2a
d54d45014d7282cb0e45a69c0c15430444095f86
66e344142d1a04f10a33e847a59939a9e71d558897ecafab050d5caf72bd1cb2

HTTP Headers

GET /public/shared/javascript/shared_global.js?v=Q5tt-d8r0YLu&l=english HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/javascript;charset=UTF-8
Content-Length: 36798
ETag: "Q5tt-d8r0YLu"
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
Content-Encoding: gzip
Strict-Transport-Security: max-age=300
Vary: Accept-Encoding
Cache-Control: public, max-age=15552000
Expires: Sat, 01 Jun 2024 11:03:41 GMT
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/javascript/redeemwalletcode.js?v=XsgODqUOlVw9&l=english

23.36.76.243

200 OK

3.6 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/javascript/redeemwalletcode.js?v=XsgODqUOlVw9&l=english
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
ASCII text, with CRLF line terminators
Size
3.6 kB (3586 bytes)
Hash
5ec80e0ea50e955c3d7193fa098ab013
c4d1182f4933dda515896b1f71c010617b3c509f
0fbb541d7d9cb3d5428cf496bda26b8d9cdb012e184933fe0589be3795f1ae6c

HTTP Headers

GET /public/javascript/redeemwalletcode.js?v=XsgODqUOlVw9&l=english HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/javascript;charset=UTF-8
Content-Length: 3586
ETag: "XsgODqUOlVw9"
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
Content-Encoding: gzip
Strict-Transport-Security: max-age=300
Vary: Accept-Encoding
Cache-Control: public, max-age=15065954
Expires: Sun, 26 May 2024 20:02:55 GMT
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/shared/javascript/dselect.js?v=sjouo3-33Gox&l=english

23.36.76.243

200 OK

2.7 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/javascript/dselect.js?v=sjouo3-33Gox&l=english
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
ASCII text, with CRLF line terminators
Size
2.7 kB (2693 bytes)
Hash
b23a2ea37fb7dc6a317180acb9640bba
559826c6b73a59bccf54f9034d7e8c43d03c091a
23d2a8fbaa5a5f1f551b5d70440adee80fd519b52b3d6559cbbea35296679e2f

HTTP Headers

GET /public/shared/javascript/dselect.js?v=sjouo3-33Gox&l=english HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/javascript;charset=UTF-8
Content-Length: 2693
ETag: "sjouo3-33Gox"
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
Content-Encoding: gzip
Strict-Transport-Security: max-age=10368000
Vary: Accept-Encoding
Cache-Control: public, max-age=8471750
Expires: Mon, 11 Mar 2024 12:19:31 GMT
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english

23.36.76.243

200 OK

6.2 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
6.2 kB (6238 bytes)
Hash
a52bc800ab6e9df5a05a5153eea29ffb
8661643fcbc7498dd7317d100ec62d1c1c6886ff
57cfaf9b92c98541f769090cd0229a30013cea7cfafc18519ca654bfae29e14e

HTTP Headers

GET /public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/javascript;charset=UTF-8
Content-Length: 6238
ETag: "pSvIAKtunfWg"
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
Content-Encoding: gzip
Strict-Transport-Security: max-age=300
Vary: Accept-Encoding
Cache-Control: public, max-age=8176653
Expires: Fri, 08 Mar 2024 02:21:14 GMT
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/javascript/modal.js?v=.Gl8zxCENQAoO

23.36.76.243

200 OK

1.1 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/javascript/modal.js?v=.Gl8zxCENQAoO
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
ASCII text, with CRLF line terminators
Size
1.1 kB (1054 bytes)
Hash
405088f8d3fed7506e915118063be2c2
1e8b4fbd31497dc0c6656791c2f90828e318140c
bfcfd556cd300a21962bc18721c79d670bffd653d058ac8fd1adfd50d2d00c82

HTTP Headers

GET /public/javascript/modal.js?v=.Gl8zxCENQAoO HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Last-Modified: Fri, 05 Jan 2018 22:32:03 GMT
ETag: ".Gl8zxCENQAoO"
Server: nginx
Content-Type: text/javascript;charset=UTF-8
Content-Length: 1054
Content-Encoding: gzip
Strict-Transport-Security: max-age=300
Vary: Accept-Encoding
Cache-Control: public, max-age=13393829
Expires: Tue, 07 May 2024 11:34:10 GMT
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/javascript/dynamicstore.js?v=uk2vdkhDxGM-&l=english

23.36.76.243

200 OK

20 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/javascript/dynamicstore.js?v=uk2vdkhDxGM-&l=english
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
ASCII text, with CRLF line terminators
Size
20 kB (19477 bytes)
Hash
ba4daf764843c4633e80b45bc3bdab02
2f552843f3d4ae980ac6c99b800284c02eea3da9
c0f363b97fd924f8fd9338ebd1f817f947e3785c6f1b197eef2934f78cde0f6c

HTTP Headers

GET /public/javascript/dynamicstore.js?v=uk2vdkhDxGM-&l=english HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/javascript;charset=UTF-8
Content-Length: 19477
ETag: "uk2vdkhDxGM-"
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
Content-Encoding: gzip
Strict-Transport-Security: max-age=300
Vary: Accept-Encoding
Cache-Control: public, max-age=15552000
Expires: Sat, 01 Jun 2024 11:03:41 GMT
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

storesteanpowered.com/assets/ejvouvreagh/13e4346feix17axet69.css

172.67.148.134

200 OK

7.1 kB

URL GET HTTP/3
storesteanpowered.com/assets/ejvouvreagh/13e4346feix17axet69.css
IP
172.67.148.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://storesteanpowered.com/rgdemwalletcode/85263020
Certificate
IssuerLet's Encrypt
Subjectstoresteanpowered.com
FingerprintB2:24:AD:A8:7D:CA:59:EF:3E:18:C9:4A:F6:04:FB:E6:40:2F:34:BC
ValidityMon, 13 Nov 2023 12:18:30 GMT - Sun, 11 Feb 2024 12:18:29 GMT

File type
ASCII text, with very long lines (5000)
Size
7.1 kB (7130 bytes)
Hash
8d19c63457b9426586294e81f57cd37d
9fa1fa77a6f39058ac5ab75b040d33267350c232
13e4346f59676a3079103e75e9283f3c366a1cfc5b1eff2011c7e580764a9574

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/ejvouvreagh/13e4346feix17axet69.css HTTP/1.1
Host: storesteanpowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJsaW5rX2lkIjozMzAwMTUsImlhdCI6MTcwMTY4NzgxOCwiZXhwIjoxNzAxNjkxNDE4fQ.5aP2POwmav2g5dH16xoS-leaRPa1W2tKtCOd_I_kPaI
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 11:03:40 GMT
content-type: text/css
etag: W/"656db13b-1389"
last-modified: Mon, 04 Dec 2023 11:00:11 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VgFe901lgDjyfx8Pgjr35PDkiUtEYeNQB%2BacOvFeDg4lxcqOT%2BqKAloaz2Ndv8%2FdID6D6qU75TGl0%2BLVbu3833tlxa%2BHGlhaauSeX%2BLe2SCtTYHW%2F0hMKW5oARoYlnWoAtD2YePuAxg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830390649db75689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

storesteanpowered.com/assets/iza49kg5bxj/x812lg3uhx.min.js

172.67.148.134

200 OK

40 kB

URL GET HTTP/3
storesteanpowered.com/assets/iza49kg5bxj/x812lg3uhx.min.js
IP
172.67.148.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://storesteanpowered.com/rgdemwalletcode/85263020
Certificate
IssuerLet's Encrypt
Subjectstoresteanpowered.com
FingerprintB2:24:AD:A8:7D:CA:59:EF:3E:18:C9:4A:F6:04:FB:E6:40:2F:34:BC
ValidityMon, 13 Nov 2023 12:18:30 GMT - Sun, 11 Feb 2024 12:18:29 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (20562)
Size
40 kB (40024 bytes)
Hash
0b930ce7ca946cd17e819a5d234a1cea
739519678cb814d81c4ec075a2df19a0167abccd
c9d06a7d69753bac7ec860b62820aaec35dfaf07218e71c20334336be2a5485f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/iza49kg5bxj/x812lg3uhx.min.js HTTP/1.1
Host: storesteanpowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJsaW5rX2lkIjozMzAwMTUsImlhdCI6MTcwMTY4NzgxOCwiZXhwIjoxNzAxNjkxNDE4fQ.5aP2POwmav2g5dH16xoS-leaRPa1W2tKtCOd_I_kPaI
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 11:03:40 GMT
content-type: application/javascript
etag: W/"656db13b-5053"
last-modified: Mon, 04 Dec 2023 11:00:11 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q0D00YY6HRRZalh5bJ7GyD5VkqArZnM9PUgz7xCesPV%2FCDKix9MGIojYaeu%2BLwsjNAWgZPDlzg%2FVvq8WVq7iBiuG98DIrckviO19z%2FnNhHXMZ2%2FopFlSMEuI9O4vlLol0JbXy3bzWdw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830390649db55689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

store.akamai.steamstatic.com/public/shared/css/shared_global.css?v=mm2EqtpQ_Tvc&l=english

23.36.76.243

200 OK

21 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/css/shared_global.css?v=mm2EqtpQ_Tvc&l=english
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
ASCII text, with very long lines (1819), with CRLF, LF line terminators
Size
21 kB (20863 bytes)
Hash
cf5f7daf78aa29bc9b45ca1a5107fdc1
0797e73c2f1724694a83dddaa8b35a704df5bb6b
82ce5dedddb2e16f1b4c93f7aa5f7ee1f56719429fa62d0cc6f3b34e39a9d581

HTTP Headers

GET /public/shared/css/shared_global.css?v=mm2EqtpQ_Tvc&l=english HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/css;charset=UTF-8
Content-Length: 20863
ETag: "z199r3iqKbyb"
Last-Modified: Thu, 09 Apr 1970 20:17:54 GMT
Content-Encoding: gzip
Strict-Transport-Security: max-age=10368000
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=0
Expires: Mon, 04 Dec 2023 11:03:41 GMT
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/shared/images/responsive/logo_valve_footer.png

23.36.76.243

200 OK

1.8 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/images/responsive/logo_valve_footer.png
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
PNG image data, 92 x 26, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1846 bytes)
Hash
574c350c7b23ae794d5276f8580e0838
235c7b35c3468f8915eca01f7abdb43d34079609
8b97ba0dac22fe6704c1f6d95fe79613f33017804f256abb9006df0442491787

HTTP Headers

GET /public/shared/images/responsive/logo_valve_footer.png HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 1846
Last-Modified: Fri, 05 Jan 2018 22:31:56 GMT
ETag: "5a4ffcdc-736"
Strict-Transport-Security: max-age=300
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/images/v6/logo_steam_footer.png

23.36.76.243

200 OK

2.8 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/images/v6/logo_steam_footer.png
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
PNG image data, 92 x 26, 8-bit/color RGBA, non-interlaced\012- data
Size
2.8 kB (2843 bytes)
Hash
41e851f8e42b6bf3414278871e93e8a2
a3811c7e1157f77950ec1f0558293bc90e432e82
399f74c4e69eac8b59b149293f9a573955fef0a62b242cfa70346070013e0966

HTTP Headers

GET /public/images/v6/logo_steam_footer.png HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 2843
Last-Modified: Thu, 18 Jun 2020 23:12:51 GMT
ETag: "5eebf4f3-b1b"
Strict-Transport-Security: max-age=300
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/images/blank.gif

23.36.76.243

200 OK

807 B

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/images/blank.gif
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
807 B (807 bytes)
Hash
39bc952559e5a8f4e84ba035fb2f7390
4f415467396b4a50149373ca75bcb4c04c2f60b6
8f73ef54efc672061f69ca881fe318dccc6dd67d993cbb8e76e53e52c84ee493

HTTP Headers

GET /public/images/blank.gif HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/gif
Content-Length: 807
Last-Modified: Fri, 05 Jan 2018 22:32:01 GMT
ETag: "5a4ffce1-327"
Strict-Transport-Security: max-age=300
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/shared/images/responsive/header_menu_hamburger.png

23.36.76.243

200 OK

3.8 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/images/responsive/header_menu_hamburger.png
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
PNG image data, 244 x 212, 8-bit/color RGBA, non-interlaced\012- data
Size
3.8 kB (3777 bytes)
Hash
eabc76eb57feae44add7faead028521e
4e3e53938fad15661d2d046a868338841a95db19
fc9e6260a2706ae146282d77e67bc1b74688435f8912ab4c1932641eec28bffa

HTTP Headers

GET /public/shared/images/responsive/header_menu_hamburger.png HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 3777
Last-Modified: Fri, 05 Jan 2018 22:31:56 GMT
ETag: "5a4ffcdc-ec1"
Strict-Transport-Security: max-age=300
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/images/ico/ico_twitter.gif

23.36.76.243

200 OK

1.4 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/images/ico/ico_twitter.gif
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
GIF image data, version 89a, 16 x 16\012- data
Size
1.4 kB (1419 bytes)
Hash
3d1b1bd2039e20ae67cbfe27d7da1151
e87d089b1c4f1170bb41e7bc903aa73bc9749a02
3dfbda507ea5fb1ed6c358bcc2e595c170ed4293ccb135545f05be3e30f7a0c0

HTTP Headers

GET /public/images/ico/ico_twitter.gif HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/gif
Content-Length: 1419
Last-Modified: Fri, 05 Jan 2018 22:32:01 GMT
ETag: "5a4ffce1-58b"
Strict-Transport-Security: max-age=300
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/shared/images/header/logo_steam.svg?t=962016

23.36.76.243

200 OK

1.7 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/images/header/logo_steam.svg?t=962016
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.7 kB (1736 bytes)
Hash
b7a7e43284e2ffe806ac1bc27c1f6a87
e8196489e2ae99ec6eb33995b5a3e108d6e44de0
c3a7c646a1305017f22423030cb5a12acc9f96b64013dcef7aeb80567b542cbb

HTTP Headers

GET /public/shared/images/header/logo_steam.svg?t=962016 HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/svg+xml
Last-Modified: Tue, 17 Nov 2020 23:33:19 GMT
ETag: "5fb45dbf-e64"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1736
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/images/footerLogo_valve_new.png

23.36.76.243

200 OK

2.6 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/images/footerLogo_valve_new.png
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
PNG image data, 176 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
2.6 kB (2584 bytes)
Hash
86a9ccc0b872f22006a48bc6c2500f4e
0edccf2cbc869816135c6ff4c3eee0c49d0f41c1
d8bbe461137d50211568449468a1981ef189248200eadd48c3141a9df0b8f7fc

HTTP Headers

GET /public/images/footerLogo_valve_new.png HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 2584
Last-Modified: Fri, 21 Feb 2020 17:48:31 GMT
ETag: "5e5017ef-a18"
Strict-Transport-Security: max-age=300
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/shared/images/responsive/header_logo.png

23.36.76.243

200 OK

11 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/images/responsive/header_logo.png
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
PNG image data, 744 x 171, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10863 bytes)
Hash
a4e79c73ee13cb25b60fc4b0ba1f690c
b690c31b2eb1b0eb085e91aaae7e79f03debe7c1
6cb869df089146c12efb5e9c968e911c314842624ba6f052a11346ac734cadc8

HTTP Headers

GET /public/shared/images/responsive/header_logo.png HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 10863
Last-Modified: Fri, 05 Jan 2018 22:31:56 GMT
ETag: "5a4ffcdc-2a6f"
Strict-Transport-Security: max-age=300
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/images/account/wallet_icon.png

23.36.76.243

200 OK

3.4 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/images/account/wallet_icon.png
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
PNG image data, 46 x 46, 8-bit/color RGBA, non-interlaced\012- data
Size
3.4 kB (3412 bytes)
Hash
59722f8b05d32484fbd8853cbf7859f2
8c9a1b988324bb779bf273dcfb62e993103757ca
fcbb90319848b9823c6829ed4abba0720f06674ae7e7ff762abe3b905dd3e24e

HTTP Headers

GET /public/images/account/wallet_icon.png HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 3412
Last-Modified: Fri, 05 Jan 2018 22:32:01 GMT
ETag: "5a4ffce1-d54"
Strict-Transport-Security: max-age=300
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/images/account/redeem_wallet_complete_popup.png

23.36.76.243

200 OK

22 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/images/account/redeem_wallet_complete_popup.png
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
PNG image data, 439 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (22513 bytes)
Hash
4dddfe80ce9184f5fcb77a8735791e69
475c4b22242ad7dcabf0e7f43e09b066d75b13af
87682460ef234c5cdd98375eea1f03cc165947b3aea57deec37d552b32ba29ec

HTTP Headers

GET /public/images/account/redeem_wallet_complete_popup.png HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 22513
Last-Modified: Fri, 05 Jan 2018 22:32:01 GMT
ETag: "5a4ffce1-57f1"
Strict-Transport-Security: max-age=300
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/images/ico/ico_facebook.gif

23.36.76.243

200 OK

1.2 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/images/ico/ico_facebook.gif
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
GIF image data, version 89a, 16 x 16\012- data
Size
1.2 kB (1171 bytes)
Hash
ed803f2a1aca596a1dce7fdddb969105
c8e5e747a05d5c0b0c8ce61eb4cc8c22a936535f
5f97cfe4186b827737324c19df2fa7f98bb465e6e0893092c683c4ad76d9495b

HTTP Headers

GET /public/images/ico/ico_facebook.gif HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/gif
Content-Length: 1171
Last-Modified: Fri, 05 Jan 2018 22:32:01 GMT
ETag: "5a4ffce1-493"
Strict-Transport-Security: max-age=300
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/images/x9x9.gif

23.36.76.243

200 OK

58 B

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/images/x9x9.gif
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
GIF image data, version 89a, 9 x 9\012- data
Size
58 B (58 bytes)
Hash
c85b970b4c832e361445c1b446cc2343
57e60c2f1f1f919a871b7c171c6d59d42e3adbe5
5ce28d7cf05f0e6eeaa3788a393d9980e9b51130963c6b9672d3447b6b11de6d

HTTP Headers

GET /public/images/x9x9.gif HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/gif
Content-Length: 58
Last-Modified: Fri, 05 Jan 2018 22:32:03 GMT
ETag: "5a4ffce3-3a"
Strict-Transport-Security: max-age=300
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

storesteanpowered.com/0be870b7ea855bee2d916a40db1f013f580f36e96c3d/c13562feb90182dbb8a41ef26ece6b39367da4c0b705.css

172.67.148.134

404 Not Found

123 kB

URL GET HTTP/3
storesteanpowered.com/0be870b7ea855bee2d916a40db1f013f580f36e96c3d/c13562feb90182dbb8a41ef26ece6b39367da4c0b705.css
IP
172.67.148.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectstoresteanpowered.com
FingerprintB2:24:AD:A8:7D:CA:59:EF:3E:18:C9:4A:F6:04:FB:E6:40:2F:34:BC
ValidityMon, 13 Nov 2023 12:18:30 GMT - Sun, 11 Feb 2024 12:18:29 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Size
123 kB (122860 bytes)
Hash
45ac9deca88de47dc082d97a5c25df62
b60e853d65349ec0e6f397f2ced2f1ca19da16e7
eee00d8ba305543be6af21634bc2959f0c266033016253a074eca3cbe39e1c87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /0be870b7ea855bee2d916a40db1f013f580f36e96c3d/c13562feb90182dbb8a41ef26ece6b39367da4c0b705.css HTTP/1.1
Host: storesteanpowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/ooyv91dy9ef/
Cookie: token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJsaW5rX2lkIjozMzAwMTUsImlhdCI6MTcwMTY4NzgxOCwiZXhwIjoxNzAxNjkxNDE4fQ.5aP2POwmav2g5dH16xoS-leaRPa1W2tKtCOd_I_kPaI
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Mon, 04 Dec 2023 11:03:42 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BWSy7SP88HNq1f0m15csRxUkVcfz5%2FC3YUrsjdFdyg9KhoyUkv8hTOeV6PJjC0vLLQJ62Ke7TED8A1x5qbCfMtCI2J1QqPkFB52viG31Qmrla7y1OWzDS0Nib7J6%2FKKR855LNMdgyhs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8303907378b05689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

store.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Medium.ttf?v=4.015

23.36.77.32

200 OK

124 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Medium.ttf?v=4.015
IP
23.36.77.32:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 24 names, Macintosh, Copyright \251 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansMedium4.015;Plau;MotivaS\012- data
Size
124 kB (124048 bytes)
Hash
2d64caa5ecbf5e42cbb766ca4d85e90e
147420abceb4a7fd7e486dddcfe68cda7ebb3a18
045b433f94502cfa873a39e72d616c73ec1b4c567b7ee0f847f442651683791f

HTTP Headers

GET /public/shared/fonts/MotivaSans-Medium.ttf?v=4.015 HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://storesteanpowered.com
DNT: 1
Connection: keep-alive
Referer: https://store.akamai.steamstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/octet-stream
Content-Length: 124048
Last-Modified: Tue, 28 Jul 2020 23:16:24 GMT
ETag: "5f20b1c8-1e490"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:42 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/shared/images/header/btn_header_installsteam_download.png?v=1

23.36.76.243

200 OK

291 B

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/images/header/btn_header_installsteam_download.png?v=1
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
PNG image data, 15 x 13, 8-bit/color RGBA, non-interlaced\012- data
Size
291 B (291 bytes)
Hash
a2796187c58c7e948159e37d6990ecc2
4209cd85add507247f9ce5a87a8c9095b54ee417
23341256db7f44b1f3811880fa2bae6b7748bbf6b62c544a162e38cf0d5c5082

HTTP Headers

GET /public/shared/images/header/btn_header_installsteam_download.png?v=1 HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://store.akamai.steamstatic.com/public/shared/css/shared_global.css?v=mm2EqtpQ_Tvc&l=english
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 291
Last-Modified: Tue, 20 Mar 2018 23:42:19 GMT
ETag: "5ab19c5b-123"
Strict-Transport-Security: max-age=300
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:42 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/shared/images/popups/btn_arrow_down_padded.png

23.36.76.243

200 OK

161 B

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/images/popups/btn_arrow_down_padded.png
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
PNG image data, 19 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size
161 B (161 bytes)
Hash
f2dae37acac6b9d5a91caf1885c2f7d0
5f80fdde9f702a1d7589bc5faf88c14066e26c32
93b1fbe4f6245b62bfd4c8c3347abe0fe67ed711315e59bfadaebc9873d8d9b5

HTTP Headers

GET /public/shared/images/popups/btn_arrow_down_padded.png HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://store.akamai.steamstatic.com/public/shared/css/shared_global.css?v=mm2EqtpQ_Tvc&l=english
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 161
Last-Modified: Fri, 05 Jan 2018 22:31:55 GMT
ETag: "5a4ffcdb-a1"
Strict-Transport-Security: max-age=300
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:42 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/images/v6/search_icon_btn.png

23.36.76.243

200 OK

1.8 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/images/v6/search_icon_btn.png
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1816 bytes)
Hash
c8a9a5322c7a32d42405aec4ecc91e8c
a6a04e08067ebbc6e9d70361fad164cab634bd9d
02e650004d02b883d1f77e3c9ab18f556d470cc4f41500917d0cda68ec62d197

HTTP Headers

GET /public/images/v6/search_icon_btn.png HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://store.akamai.steamstatic.com/public/css/v6/store.css?v=z0n7Kqde-Ths&l=english
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 1816
Last-Modified: Fri, 05 Jan 2018 22:32:03 GMT
ETag: "5a4ffce3-718"
Strict-Transport-Security: max-age=300
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:42 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/images//v6/temp/cluster_bg_2.png

23.36.76.243

200 OK

145 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/images//v6/temp/cluster_bg_2.png
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
PNG image data, 1057 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size
145 kB (144661 bytes)
Hash
5f16125351b708ee3d1141eb5553cd3d
ef8994f541dec79086cb998c180d260e1c7dd704
7bdc6f79db78360ec0e758b748d745c8f11ee6c93c1f0c5e7d128e1ddcaf35ef

HTTP Headers

GET /public/images//v6/temp/cluster_bg_2.png HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://store.akamai.steamstatic.com/public/css/v6/store.css?v=z0n7Kqde-Ths&l=english
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 144661
Last-Modified: Fri, 05 Jan 2018 22:32:03 GMT
ETag: "5a4ffce3-23515"
Strict-Transport-Security: max-age=300
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:42 GMT
Connection: keep-alive

storesteanpowered.com/0be870b7ea855bee2d916a40db1f013f580f36e96c3d/cac05b5f8756c38dbc97c2f204db2ec77ca0cb22fec3.css

172.67.148.134

404 Not Found

119 kB

URL GET HTTP/3
storesteanpowered.com/0be870b7ea855bee2d916a40db1f013f580f36e96c3d/cac05b5f8756c38dbc97c2f204db2ec77ca0cb22fec3.css
IP
172.67.148.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectstoresteanpowered.com
FingerprintB2:24:AD:A8:7D:CA:59:EF:3E:18:C9:4A:F6:04:FB:E6:40:2F:34:BC
ValidityMon, 13 Nov 2023 12:18:30 GMT - Sun, 11 Feb 2024 12:18:29 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Size
119 kB (118912 bytes)
Hash
45ac9deca88de47dc082d97a5c25df62
b60e853d65349ec0e6f397f2ced2f1ca19da16e7
eee00d8ba305543be6af21634bc2959f0c266033016253a074eca3cbe39e1c87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /0be870b7ea855bee2d916a40db1f013f580f36e96c3d/cac05b5f8756c38dbc97c2f204db2ec77ca0cb22fec3.css HTTP/1.1
Host: storesteanpowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/ooyv91dy9ef/
Cookie: token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJsaW5rX2lkIjozMzAwMTUsImlhdCI6MTcwMTY4NzgxOCwiZXhwIjoxNzAxNjkxNDE4fQ.5aP2POwmav2g5dH16xoS-leaRPa1W2tKtCOd_I_kPaI
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Mon, 04 Dec 2023 11:03:42 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sTvI51V8EYgiLSHXbrqYtl8yIrBnJ4iQdR82fy5CeE44onWPB1A%2FBUEtkMCnzYJ3iP5azhWAC6ZKW%2BsAoKltF6Yb%2BZg6b5t3M6Oowf1DP88VIeQLCF3z2yyrl4E7ukKYeBcmN8%2FCpUk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8303907378b35689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

store.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Bold.ttf?v=4.015

23.36.77.32

200 OK

124 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Bold.ttf?v=4.015
IP
23.36.77.32:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 22 names, Macintosh, Copyright \251 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansBold4.015;Plau;MotivaSan\012- data
Size
124 kB (123884 bytes)
Hash
6168553bef8c73ba623d6fe16b25e3e9
4a31273b6f37f1f39b855edd0b764ec1b7b051e0
d5692b785e18340807d75f1a969595bc8b1c408fb6fd63947775705e6d6baa66

HTTP Headers

GET /public/shared/fonts/MotivaSans-Bold.ttf?v=4.015 HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://storesteanpowered.com
DNT: 1
Connection: keep-alive
Referer: https://store.akamai.steamstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/octet-stream
Content-Length: 123884
Last-Modified: Tue, 28 Jul 2020 23:16:24 GMT
ETag: "5f20b1c8-1e3ec"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:42 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/shared/fonts/MotivaSans-LightItalic.ttf?v=4.015

23.36.76.243

200 OK

134 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/fonts/MotivaSans-LightItalic.ttf?v=4.015
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 24 names, Macintosh, Copyright \251 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansLight Italic4.015;Plau;M\012- data
Size
134 kB (133600 bytes)
Hash
07247cbd12d4e4160efd413823d0def8
517a80968aa295d0a700a338c22ba41e3a8b78a7
41464efd9a32a5967b30addc21fe16cd0a35870fda56658b531a9a2434b4d829

HTTP Headers

GET /public/shared/fonts/MotivaSans-LightItalic.ttf?v=4.015 HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://storesteanpowered.com
DNT: 1
Connection: keep-alive
Referer: https://store.akamai.steamstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/octet-stream
Content-Length: 133600
Last-Modified: Tue, 28 Jul 2020 23:16:24 GMT
ETag: "5f20b1c8-209e0"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:42 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Light.ttf?v=4.015

23.36.77.32

200 OK

123 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Light.ttf?v=4.015
IP
23.36.77.32:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 24 names, Macintosh, Copyright \251 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansLight4.015;Plau;MotivaSa\012- data
Size
123 kB (122660 bytes)
Hash
d45f521dba72b19a4096691a165b1990
2a08728fbb9229acccbf907efdf4091f9b9a232f
6b7a3177485c193a2e80be6269b6b12880e695a8b4349f49fccf87f9205badcc

HTTP Headers

GET /public/shared/fonts/MotivaSans-Light.ttf?v=4.015 HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://storesteanpowered.com
DNT: 1
Connection: keep-alive
Referer: https://store.akamai.steamstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/octet-stream
Content-Length: 122660
Last-Modified: Tue, 28 Jul 2020 23:16:24 GMT
ETag: "5f20b1c8-1df24"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:42 GMT
Connection: keep-alive

cdn.akamai.steamstatic.com/steam/clusters/about_i18n_assets/about_i18n_assets_0/wallet_card_img_english.png?t=1636143670

23.36.76.233

200 OK

503 kB

URL GET HTTP/1.1
cdn.akamai.steamstatic.com/steam/clusters/about_i18n_assets/about_i18n_assets_0/wallet_card_img_english.png?t=1636143670
IP
23.36.76.233:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
PNG image data, 406 x 719, 8-bit/color RGBA, non-interlaced\012- data
Size
503 kB (503402 bytes)
Hash
eaa918479400786006bc5a37e77075a2
cb892a61d8643b235ac589d9e0fd7a4a97ce56a9
69a47ea33e7fa0226b9f23b5837a9075f36a0ffc2e7adc2f5b30f564e1dad09c

HTTP Headers

GET /steam/clusters/about_i18n_assets/about_i18n_assets_0/wallet_card_img_english.png?t=1636143670 HTTP/1.1
Host: cdn.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Content-Type: image/png
Content-Length: 503402
Last-Modified: Wed, 24 Sep 2014 18:08:02 GMT
ETag: "54230882-7ae6a"
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:42 GMT
Connection: keep-alive

store.steampowered.com/dynamicstore/saledata/?cc=RU

23.38.201.66

200 OK

49 B

URL GET HTTP/1.1
store.steampowered.com/dynamicstore/saledata/?cc=RU
IP
23.38.201.66:443
ASN
#16625 AKAMAI-AS

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerDigiCert Inc
Subjectstore.steampowered.com
Fingerprint8F:7E:05:7A:A0:95:35:C2:47:26:05:BB:E3:94:3F:6D:35:55:32:7A
ValidityWed, 17 May 2023 00:00:00 GMT - Sat, 16 Dec 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
49 B (49 bytes)
Hash
7d8e35afa8792b923f4e6c5906e7c4b5
32168fbcd8a98b424f566046d3680648b49ac633
d5c8f5fb29ca010ec4c6e11774d17b0cc27b21304811521e29141f581c061e87

HTTP Headers

GET /dynamicstore/saledata/?cc=RU HTTP/1.1
Host: store.steampowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://storesteanpowered.com
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json; charset=utf-8
X-Frame-Options: DENY
Cache-Control: public,max-age=300
Expires: Mon, 04 Dec 2023 11:07:48 GMT
Last-Modified: Mon, 04 Dec 2023 11:00:00 GMT
Content-Encoding: gzip
Vary: Accept-Encoding, Origin, Accept-Encoding
Strict-Transport-Security: max-age=10368000
Content-Length: 49
Date: Mon, 04 Dec 2023 11:03:42 GMT
Connection: keep-alive

www.gstatic.com/recaptcha/releases/Nh10qRQB5k2ucc5SCBLAQ4nA/recaptcha__ru.js

142.250.74.35

404 Not Found

1.6 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/Nh10qRQB5k2ucc5SCBLAQ4nA/recaptcha__ru.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size
1.6 kB (1621 bytes)
Hash
770931e927af6363c706239cd9f60052
6166b1b7ca400cd2c6337fe767ca246c491e0105
76711a44ca63f197070e0f6b42da9172298680eb77f399bad6ae2965e0ead627

HTTP Headers

GET /recaptcha/releases/Nh10qRQB5k2ucc5SCBLAQ4nA/recaptcha__ru.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://storesteanpowered.com
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
date: Mon, 04 Dec 2023 11:03:43 GMT
content-type: text/html; charset=UTF-8
server: sffe
content-length: 1621
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js

142.250.74.35

200 OK

191 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (563)
Size
191 kB (190682 bytes)
Hash
23b9dd721490a4062ba8d01454ef6ba9
efdbb7331585411f7d397dacbf51fd3e95f3031d
4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7

HTTP Headers

GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://storesteanpowered.com
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 190682
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 03 Dec 2023 11:52:30 GMT
expires: Mon, 02 Dec 2024 11:52:30 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 83474
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

store.akamai.steamstatic.com/public/css/v6/account.css?v=P2WLI8B6ddJe&l=english

23.36.76.243

200 OK

23 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/css/v6/account.css?v=P2WLI8B6ddJe&l=english
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
ASCII text, with CRLF, LF line terminators
Size
23 kB (22724 bytes)
Hash
bfdeef5c01ea4f3ce73f9f3f815ec131
0248b54370c7ff30dac62cc6f6e78476de746a68
4dd71cb0d45d51e24145be7a024e56cace8dba3fd9c6f6a772df25f2ae6ba068

HTTP Headers

GET /public/css/v6/account.css?v=P2WLI8B6ddJe&l=english HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/css;charset=UTF-8
Content-Length: 5723
ETag: "v97vXAHqTzzn"
Last-Modified: Thu, 09 Apr 1970 20:17:54 GMT
Content-Encoding: gzip
Strict-Transport-Security: max-age=10368000
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=0
Expires: Mon, 04 Dec 2023 11:03:41 GMT
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Regular.ttf?v=4.015

23.36.76.243

200 OK

123 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Regular.ttf?v=4.015
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 22 names, Macintosh, Copyright \251 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansRegular4.015;Plau;Motiva\012- data
Size
123 kB (122684 bytes)
Hash
57613e143ff3dae10f282e84a066de28
88756cc8c6db645b5f20aa17b14feefb4411c25f
19b8db163bcc51732457efa40911b4a422f297ff3cd566467d87eab93cef0c14

HTTP Headers

GET /public/shared/fonts/MotivaSans-Regular.ttf?v=4.015 HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://storesteanpowered.com
DNT: 1
Connection: keep-alive
Referer: https://store.akamai.steamstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/octet-stream
Content-Length: 122684
Last-Modified: Tue, 28 Jul 2020 23:16:24 GMT
ETag: "5f20b1c8-1df3c"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:42 GMT
Connection: keep-alive

storesteanpowered.com/0be870b7ea855bee2d916a40db1f013f580f36e96c3d/1595d58bf9d68b38c683c8392dbd7cf1d2001d63265f.css

172.67.148.134

404 Not Found

289 B

URL GET HTTP/3
storesteanpowered.com/0be870b7ea855bee2d916a40db1f013f580f36e96c3d/1595d58bf9d68b38c683c8392dbd7cf1d2001d63265f.css
IP
172.67.148.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectstoresteanpowered.com
FingerprintB2:24:AD:A8:7D:CA:59:EF:3E:18:C9:4A:F6:04:FB:E6:40:2F:34:BC
ValidityMon, 13 Nov 2023 12:18:30 GMT - Sun, 11 Feb 2024 12:18:29 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Size
289 B (289 bytes)
Hash
45ac9deca88de47dc082d97a5c25df62
b60e853d65349ec0e6f397f2ced2f1ca19da16e7
eee00d8ba305543be6af21634bc2959f0c266033016253a074eca3cbe39e1c87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /0be870b7ea855bee2d916a40db1f013f580f36e96c3d/1595d58bf9d68b38c683c8392dbd7cf1d2001d63265f.css HTTP/1.1
Host: storesteanpowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/ooyv91dy9ef/
Cookie: token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJsaW5rX2lkIjozMzAwMTUsImlhdCI6MTcwMTY4NzgxOCwiZXhwIjoxNzAxNjkxNDE4fQ.5aP2POwmav2g5dH16xoS-leaRPa1W2tKtCOd_I_kPaI
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Mon, 04 Dec 2023 11:03:42 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fWvRx%2FHO8E9JCmpk2btUCi7CbjWOZjWwSl5ThLp%2B2XL6B8lia3oa%2Fwv61TpOECK%2B%2B2TC4wvTNsIFfwieLAz1p1mPb2P0pGJfOJNT55C6dPlDY9r6zMr86uN1XDZODq7%2FDLUuYp2Umzk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8303907368805689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

storesteanpowered.com/ffda7304fc52750c1e1cfce61d7fb6340bfb370a2dd0/38d5f92ae436d80044ba724f655cae89952754814ffb.js

172.67.148.134

404 Not Found

0 B

URL GET HTTP/3
storesteanpowered.com/ffda7304fc52750c1e1cfce61d7fb6340bfb370a2dd0/38d5f92ae436d80044ba724f655cae89952754814ffb.js
IP
172.67.148.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectstoresteanpowered.com
FingerprintB2:24:AD:A8:7D:CA:59:EF:3E:18:C9:4A:F6:04:FB:E6:40:2F:34:BC
ValidityMon, 13 Nov 2023 12:18:30 GMT - Sun, 11 Feb 2024 12:18:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ffda7304fc52750c1e1cfce61d7fb6340bfb370a2dd0/38d5f92ae436d80044ba724f655cae89952754814ffb.js HTTP/1.1
Host: storesteanpowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/wsgmm3na8wk/
Cookie: token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJsaW5rX2lkIjozMzAwMTUsImlhdCI6MTcwMTY4NzgxOCwiZXhwIjoxNzAxNjkxNDE4fQ.5aP2POwmav2g5dH16xoS-leaRPa1W2tKtCOd_I_kPaI; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Mon, 04 Dec 2023 11:03:43 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QSMY1FnOUreouGEg9Eairh%2BltEv6k1%2B7jixySKJR57sec28Z6lU4%2BBACbpjQVvk8B0bLNbg92JMWkeTjGbeuu8H5e9C1YbT4j0wnsrYZ5kH5OYmMHttlOYKKJuFADkKkXDBv9tMQvXA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8303907b6bb85689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

recaptcha.net/recaptcha/enterprise.js?render=explicit

142.250.74.163

200 OK

941 B

URL GET HTTP/2
recaptcha.net/recaptcha/enterprise.js?render=explicit
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc.google.com
Fingerprint60:EB:F2:B5:46:D7:39:12:3D:8C:D5:9A:EC:14:D4:9C:47:0F:DE:DE
ValidityMon, 23 Oct 2023 11:19:58 GMT - Mon, 15 Jan 2024 11:19:57 GMT

File type
ASCII text, with very long lines (941), with no line terminators
Size
941 B (941 bytes)
Hash
9f5703469a92c2d356bada032feadd49
875aab9bacf41f3ea9dc661cc9332f5ee4de596f
13728b6753b65e4ad896b622ade6178b498125a52807641ef7b8ff1aaf4dbee0

HTTP Headers

GET /recaptcha/enterprise.js?render=explicit HTTP/1.1
Host: recaptcha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Mon, 04 Dec 2023 11:03:43 GMT
date: Mon, 04 Dec 2023 11:03:43 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

storesteanpowered.com/0be870b7ea855bee2d916a40db1f013f580f36e96c3d/584fbbf7501b02de2f7f597c5b24f237c413c48af06c.css

172.67.148.134

404 Not Found

289 B

URL GET HTTP/3
storesteanpowered.com/0be870b7ea855bee2d916a40db1f013f580f36e96c3d/584fbbf7501b02de2f7f597c5b24f237c413c48af06c.css
IP
172.67.148.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectstoresteanpowered.com
FingerprintB2:24:AD:A8:7D:CA:59:EF:3E:18:C9:4A:F6:04:FB:E6:40:2F:34:BC
ValidityMon, 13 Nov 2023 12:18:30 GMT - Sun, 11 Feb 2024 12:18:29 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Size
289 B (289 bytes)
Hash
45ac9deca88de47dc082d97a5c25df62
b60e853d65349ec0e6f397f2ced2f1ca19da16e7
eee00d8ba305543be6af21634bc2959f0c266033016253a074eca3cbe39e1c87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /0be870b7ea855bee2d916a40db1f013f580f36e96c3d/584fbbf7501b02de2f7f597c5b24f237c413c48af06c.css HTTP/1.1
Host: storesteanpowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/ooyv91dy9ef/
Cookie: token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJsaW5rX2lkIjozMzAwMTUsImlhdCI6MTcwMTY4NzgxOCwiZXhwIjoxNzAxNjkxNDE4fQ.5aP2POwmav2g5dH16xoS-leaRPa1W2tKtCOd_I_kPaI
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Mon, 04 Dec 2023 11:03:42 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TkLST1g3MXAGsHHt%2Bewlz2m6dhL3s08yfZOpOv56rZrEXMdIBH4tmA4t%2BqhvWDV0l7mZ9%2B9gUboe%2BDSjpW8tw51ARlaJQC7x32XVbS0S859mY8KN0ZlXDShCQuNIEB8Quj3mHXMCK4I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8303907358665689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

storesteanpowered.com/rgdemwalletcode/85263020

172.67.148.134

200 OK

4.7 kB

URL User Request GET HTTP/2
storesteanpowered.com/rgdemwalletcode/85263020
IP
172.67.148.134:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectstoresteanpowered.com
FingerprintB2:24:AD:A8:7D:CA:59:EF:3E:18:C9:4A:F6:04:FB:E6:40:2F:34:BC
ValidityMon, 13 Nov 2023 12:18:30 GMT - Sun, 11 Feb 2024 12:18:29 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4822), with no line terminators
Size
4.7 kB (4707 bytes)
Hash
2732066bf2d3291abb112455f7d191ff
fde6e36ac8112d1b3765492d43c349b9b421dae7
4cc4e3795b4953e49b81189e7a7be7d5576d677df7472d19f022dfaa0c0ad479

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /rgdemwalletcode/85263020 HTTP/1.1
Host: storesteanpowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJsaW5rX2lkIjozMzAwMTUsImlhdCI6MTcwMTY4NzgxOCwiZXhwIjoxNzAxNjkxNDE4fQ.5aP2POwmav2g5dH16xoS-leaRPa1W2tKtCOd_I_kPaI
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 04 Dec 2023 11:03:38 GMT
content-type: text/html
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KKHXxZSmRpwXczs762tWjfT%2Bw6tEcv4jy%2FmEyQNgwRopkf8HmbkzcIDB3BdEpi8G%2BZAGH%2BTExqn5Ety04cw4HIKYJMtclHnjZv7lZ2UD4Shi5305n5BhGyin5gDVkCDEHiG8HSmMyKc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830390628e26b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

storesteanpowered.com/0be870b7ea855bee2d916a40db1f013f580f36e96c3d/bcc486b8475a000b047e01ba733559f9bddd412841e8.css

172.67.148.134

404 Not Found

289 B

URL GET HTTP/3
storesteanpowered.com/0be870b7ea855bee2d916a40db1f013f580f36e96c3d/bcc486b8475a000b047e01ba733559f9bddd412841e8.css
IP
172.67.148.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectstoresteanpowered.com
FingerprintB2:24:AD:A8:7D:CA:59:EF:3E:18:C9:4A:F6:04:FB:E6:40:2F:34:BC
ValidityMon, 13 Nov 2023 12:18:30 GMT - Sun, 11 Feb 2024 12:18:29 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Size
289 B (289 bytes)
Hash
45ac9deca88de47dc082d97a5c25df62
b60e853d65349ec0e6f397f2ced2f1ca19da16e7
eee00d8ba305543be6af21634bc2959f0c266033016253a074eca3cbe39e1c87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /0be870b7ea855bee2d916a40db1f013f580f36e96c3d/bcc486b8475a000b047e01ba733559f9bddd412841e8.css HTTP/1.1
Host: storesteanpowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/ooyv91dy9ef/
Cookie: token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJsaW5rX2lkIjozMzAwMTUsImlhdCI6MTcwMTY4NzgxOCwiZXhwIjoxNzAxNjkxNDE4fQ.5aP2POwmav2g5dH16xoS-leaRPa1W2tKtCOd_I_kPaI
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Mon, 04 Dec 2023 11:03:42 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a173JL1i3fId3EYE3tb%2ByW%2F5EuLVfvgcXwRiw7GF1cP%2BKVbT0Ns31lrpKQuFAIrpvlsT1PG7TCTlGIwPGiPX0nNvXY9fqeEgs5%2FSGAClFPmgDN%2Bj47wHZRKLM2AMzhHRxT1MT%2FBFcKk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83039073687f5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

store.akamai.steamstatic.com/public/shared/javascript/jquery-1.8.3.min.js?v=.TZ2NKhB-nliU

23.36.76.243

200 OK

94 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/javascript/jquery-1.8.3.min.js?v=.TZ2NKhB-nliU
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
ASCII text, with very long lines (65482), with CRLF line terminators
Size
94 kB (93637 bytes)
Hash
e1288116312e4728f98923c79b034b67
8b6babff47b8a9793f37036fd1b1a3ad41d38423
ba6eda7945ab8d7e57b34cc5a3dd292fa2e4c60a5ced79236ecf1a9e0f0c2d32

HTTP Headers

GET /public/shared/javascript/jquery-1.8.3.min.js?v=.TZ2NKhB-nliU HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Last-Modified: Fri, 05 Jan 2018 22:31:56 GMT
ETag: ".TZ2NKhB-nliU"
Server: nginx
Content-Type: text/javascript;charset=UTF-8
Content-Length: 33382
Content-Encoding: gzip
Strict-Transport-Security: max-age=300
X-Serial: 1737
X-Akamai-SSL-Client-Sid: KvR2HQB5UXgeTT7CRsNBvQ==
Vary: Accept-Encoding
X-Check-Cacheable: YES
Cache-Control: public, max-age=8103495
Expires: Thu, 07 Mar 2024 06:01:56 GMT
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

storesteanpowered.com/0be870b7ea855bee2d916a40db1f013f580f36e96c3d/1d790e6c5c682ec36e3a9fe140635def55e3a7e85fe1.css

172.67.148.134

404 Not Found

289 B

URL GET HTTP/3
storesteanpowered.com/0be870b7ea855bee2d916a40db1f013f580f36e96c3d/1d790e6c5c682ec36e3a9fe140635def55e3a7e85fe1.css
IP
172.67.148.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectstoresteanpowered.com
FingerprintB2:24:AD:A8:7D:CA:59:EF:3E:18:C9:4A:F6:04:FB:E6:40:2F:34:BC
ValidityMon, 13 Nov 2023 12:18:30 GMT - Sun, 11 Feb 2024 12:18:29 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Size
289 B (289 bytes)
Hash
45ac9deca88de47dc082d97a5c25df62
b60e853d65349ec0e6f397f2ced2f1ca19da16e7
eee00d8ba305543be6af21634bc2959f0c266033016253a074eca3cbe39e1c87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /0be870b7ea855bee2d916a40db1f013f580f36e96c3d/1d790e6c5c682ec36e3a9fe140635def55e3a7e85fe1.css HTTP/1.1
Host: storesteanpowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/ooyv91dy9ef/
Cookie: token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJsaW5rX2lkIjozMzAwMTUsImlhdCI6MTcwMTY4NzgxOCwiZXhwIjoxNzAxNjkxNDE4fQ.5aP2POwmav2g5dH16xoS-leaRPa1W2tKtCOd_I_kPaI
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Mon, 04 Dec 2023 11:03:42 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gB2kNHOCcgLAgZNrZiTdhJ1OzsJ9WAtU1RC%2FbgnTZayaLC%2BOxoo5K3U5zLW%2FX0SLXA2r%2Bx4GMy%2BIB9N91DmT0lm7bc6DWu4ITexnkfLrb4NI%2FMC0WFo%2FvrPCxkpSpDuSLQqjSjx7fIg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83039073687c5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

store.akamai.steamstatic.com/public/css/v6/store.css?v=z0n7Kqde-Ths&l=english

23.36.76.243

200 OK

136 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/css/v6/store.css?v=z0n7Kqde-Ths&l=english
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
ASCII text, with CRLF, LF line terminators
Size
136 kB (135711 bytes)
Hash
2deac262ec388a3aee2d3900a67258e2
697919d84598738129e2aa341202c113e58cc753
1503b4fae830e1bbbcac57eeb5265883927fa489e27be2e67f04bc030d68897f

HTTP Headers

GET /public/css/v6/store.css?v=z0n7Kqde-Ths&l=english HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/css;charset=UTF-8
Content-Length: 30641
ETag: "LerCYuw4ijru"
Last-Modified: Thu, 09 Apr 1970 20:17:54 GMT
Content-Encoding: gzip
Strict-Transport-Security: max-age=10368000
Vary: Accept-Encoding
Cache-Control: public, must-revalidate, max-age=0
Expires: Mon, 04 Dec 2023 11:03:41 GMT
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Thin.ttf?v=4.015

23.36.77.32

200 OK

119 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/fonts/MotivaSans-Thin.ttf?v=4.015
IP
23.36.77.32:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 24 names, Macintosh, Copyright \251 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansThin4.015;Plau;MotivaSan\012- data
Size
119 kB (118736 bytes)
Hash
ce6bda6643b662a41b9fb570bdf72f83
87bcf1d2820b476aaeaea91dc7f6dbedd73c1cb8
0adf4d5edbc82d28879fdfaaf7274ba05162ff8cbbda816d69ed52f1dae547f6

HTTP Headers

GET /public/shared/fonts/MotivaSans-Thin.ttf?v=4.015 HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://storesteanpowered.com
DNT: 1
Connection: keep-alive
Referer: https://store.akamai.steamstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/octet-stream
Content-Length: 118736
Last-Modified: Tue, 28 Jul 2020 23:16:24 GMT
ETag: "5f20b1c8-1cfd0"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 11:03:42 GMT
Connection: keep-alive

store.akamai.steamstatic.com/public/shared/css/motiva_sans.css?v=Rc2hpzg2Ex3T&l=english

23.36.76.243

200 OK

2.6 kB

URL GET HTTP/1.1
store.akamai.steamstatic.com/public/shared/css/motiva_sans.css?v=Rc2hpzg2Ex3T&l=english
IP
23.36.76.243:443
ASN
#20940 Akamai International B.V.

Requested by
https://storesteanpowered.com/ooyv91dy9ef/
Certificate
IssuerLet's Encrypt
Subjectcdn.akamai.steamstatic.com
Fingerprint83:36:65:1D:5C:56:B4:66:5B:22:71:32:30:5D:EA:A5:7E:A1:E8:31
ValidityThu, 16 Nov 2023 18:56:30 GMT - Wed, 14 Feb 2024 18:56:29 GMT

File type
ASCII text, with very long lines (2858), with no line terminators
Size
2.6 kB (2646 bytes)
Hash
11a4c949249b1ede28fd4db24ee311ce
dd6caffdf1239db8d0b22f89db6d370b158d3aad
7d5e27d6677210950c31be4f80778b31a6ab1d185075302f8d2151a9972a6f1d

HTTP Headers

GET /public/shared/css/motiva_sans.css?v=Rc2hpzg2Ex3T&l=english HTTP/1.1
Host: store.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://storesteanpowered.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
ETag: "Rc2hpzg2Ex3T"
Server: nginx
Content-Type: text/css;charset=UTF-8
Content-Length: 632
Content-Encoding: gzip
Strict-Transport-Security: max-age=300
Vary: Accept-Encoding
Cache-Control: public, max-age=12617742
Expires: Sun, 28 Apr 2024 11:59:23 GMT
Date: Mon, 04 Dec 2023 11:03:41 GMT
Connection: keep-alive

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (22)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by