Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
https://gtm.you1.cn/app/2143540

Overview

General Information

Sample URL:https://gtm.you1.cn/app/2143540
Analysis ID:1442314
Infos:

Detection

Score:56
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

Antivirus / Scanner detection for submitted sample
Antivirus detection for URL or domain

Classification

  • System is w10x64
  • chrome.exe (PID: 2076 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
    • chrome.exe (PID: 5016 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2096 --field-trial-handle=2028,i,3547210394099925823,8850844179470166958,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
  • chrome.exe (PID: 6420 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://gtm.you1.cn/app/2143540" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
  • cleanup
No configs have been found
No yara matches
No Sigma rule has matched
No Snort rule has matched

Click to jump to signature section

Show All Signature Results

AV Detection

barindex
Source: https://gtm.you1.cn/app/2143540Avira URL Cloud: detection malicious, Label: phishing
Source: https://gtm.you1.cn/app/2143540SlashNext: detection malicious, Label: Fraudulent Website type: Phishing & Social Engineering
Source: gtm.you1.cnSophos S4: Label: illegal phishing domain
Source: https://gtm.you1.cn/public/images/skin_1/footerLogo_valve.png?v=1Avira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/public/shared/images/community/levels_mandala_7-8.png?v=2Avira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/public/shared/css/shared_responsive.css?v=eghn9DNyCY67&l=english&_cdn=cloudflareAvira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/profiles/76561199152109954/recommended/813230/Avira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/storesteam/search/results/Avira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/sharedfiles/filedetails/?id=3247111951Avira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/public/shared/images/buttons/icons_16.png?v=5);Avira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/sharedfiles/votedownAvira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/app/34010Avira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/actions/communitybandialogAvira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/public/shared/css/shared_responsive.css?v=sHIIcMzCffX6&l=englishAvira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/sharedfiles/filedetails/?id=3247255367Avira URL Cloud: Label: phishing
Source: http://gtm.you1.cn/storesteam/subscriber_agreement/.Avira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/sharedfiles/filedetails/?id=3247306833Avira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/discussions/Avira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/chat/friend/Avira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0&_cdn=cloudflareAvira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/public/javascript/applications/community/chunk~af55cc5d1.js?contenthash=4f7934fa0c61bb251d52Avira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/actions/StandardCommunityBanAvira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0&_cdn=cloudflareAvira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/public/javascript/modalContent.js?v=Wd0kCESeJquW&l=english&_cdn=cloudflaAvira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/public/shared/images/community/levels_waterelement.pngAvira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/sharedfiles/filedetails/?id=3246921701Avira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/public/javascript/applications/community/main.js?v=soQOTmUzl-9y&l=english&amAvira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/login/logout/Avira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/apps/allcontenthome?l=english&browsefilter=trend&appHubSubSection=11&forceanon=1Avira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/app/12210Avira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/actions/GetOwnedApps/Avira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/?subsection=broadcastsAvira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/public/shared/images/header/globalheader_highlight.pngAvira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/apps/allcontenthomeAvira URL Cloud: Label: phishing
Source: https://gtm.you1.cn/public/css/skin_1/communityhome.css?v=EC98biDaoKUh&l=english&_cdn=cloudflareAvira URL Cloud: Label: phishing
Source: unknownHTTPS traffic detected: 23.204.76.112:443 -> 192.168.2.4:49740 version: TLS 1.2
Source: unknownHTTPS traffic detected: 23.204.76.112:443 -> 192.168.2.4:49747 version: TLS 1.2
Source: unknownTCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknownTCP traffic detected without corresponding DNS query: 104.46.162.224
Source: unknownTCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknownTCP traffic detected without corresponding DNS query: 23.204.76.112
Source: unknownTCP traffic detected without corresponding DNS query: 23.204.76.112
Source: unknownTCP traffic detected without corresponding DNS query: 23.204.76.112
Source: unknownTCP traffic detected without corresponding DNS query: 23.204.76.112
Source: unknownTCP traffic detected without corresponding DNS query: 23.204.76.112
Source: unknownTCP traffic detected without corresponding DNS query: 23.204.76.112
Source: unknownTCP traffic detected without corresponding DNS query: 23.204.76.112
Source: unknownTCP traffic detected without corresponding DNS query: 23.204.76.112
Source: unknownTCP traffic detected without corresponding DNS query: 23.204.76.112
Source: unknownTCP traffic detected without corresponding DNS query: 23.204.76.112
Source: unknownTCP traffic detected without corresponding DNS query: 23.204.76.112
Source: unknownTCP traffic detected without corresponding DNS query: 23.204.76.112
Source: unknownTCP traffic detected without corresponding DNS query: 23.204.76.112
Source: unknownTCP traffic detected without corresponding DNS query: 23.204.76.112
Source: unknownTCP traffic detected without corresponding DNS query: 23.204.76.112
Source: unknownTCP traffic detected without corresponding DNS query: 23.204.76.112
Source: unknownTCP traffic detected without corresponding DNS query: 23.204.76.112
Source: unknownTCP traffic detected without corresponding DNS query: 23.204.76.112
Source: unknownTCP traffic detected without corresponding DNS query: 208.111.136.128
Source: unknownTCP traffic detected without corresponding DNS query: 208.111.136.128
Source: unknownTCP traffic detected without corresponding DNS query: 208.111.136.128
Source: unknownTCP traffic detected without corresponding DNS query: 208.111.136.128
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: global trafficHTTP traffic detected: GET /app/2143540 HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /public/shared/css/motiva_sans.css?v=-DH0xTYpnVe2&l=english HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/shared/css/buttons.css?v=PUJIfhtcQn7W&l=english HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/shared/css/shared_global.css?v=SPpMitTYp6ku&l=english HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/css/globalv2.css?v=PAcV2zMBzzSV&l=english HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/css/skin_1/fatalerror.css?v=wctRWaBvNt2z&l=english HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global trafficHTTP traffic detected: GET /public/shared/css/shared_responsive.css?v=sHIIcMzCffX6&l=english HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/css/skin_1/header.css?v=NFoCa4OkAxRb&l=english HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/javascript/prototype-1.7.js?v=.55t44gwuwgvw HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/javascript/scriptaculous/_combined.js?v=OeNIgrpEF8tL&l=english&load=effects,controls,slider,dragdrop HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/javascript/global.js?v=B7Vsdo1okyaC&l=english HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/javascript/jquery-1.11.1.min.js?v=.isFTSRckeNhC HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0 HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/shared/javascript/shared_global.js?v=REEGJU1hwkYl&l=english HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/shared/javascript/shared_responsive_adapter.js?v=pSvIAKtunfWg&l=english HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/shared/images/responsive/logo_valve_footer.png HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/shared/images/responsive/header_menu_hamburger.png HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/shared/images/header/btn_header_installsteam_download.png?v=1 HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gtm.you1.cn/public/shared/css/shared_global.css?v=SPpMitTYp6ku&l=englishAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0
Source: global trafficHTTP traffic detected: GET /public/shared/images/responsive/header_logo.png HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/css/applications/community/main.css?v=5CgcHEsWGAFt&l=english HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/javascript/applications/community/manifest.js?v=6MtRkzKwK42K&l=english HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/javascript/applications/community/libraries~b28b7af69.js?v=hOyTweQkD3Cx&l=english HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/javascript/applications/community/main.js?v=soQOTmUzl-9y&l=english HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/shared/images/responsive/header_menu_hamburger.png HTTP/1.1Host: gtm.you1.cnConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0
Source: global trafficHTTP traffic detected: GET /public/shared/images/responsive/logo_valve_footer.png HTTP/1.1Host: gtm.you1.cnConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0
Source: global trafficHTTP traffic detected: GET /public/shared/images/header/logo_steam.svg?t=962016 HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b
Source: global trafficHTTP traffic detected: GET /public/shared/images/header/btn_header_installsteam_download.png?v=1 HTTP/1.1Host: gtm.you1.cnConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0
Source: global trafficHTTP traffic detected: GET /public/shared/images/responsive/header_logo.png HTTP/1.1Host: gtm.you1.cnConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0
Source: global trafficHTTP traffic detected: GET /public/images/skin_1/footerLogo_valve.png?v=1 HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0
Source: global trafficHTTP traffic detected: GET /public/shared/fonts/MotivaSans-Medium.ttf?v=4.015 HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://gtm.you1.cnsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://gtm.you1.cn/public/shared/css/motiva_sans.css?v=-DH0xTYpnVe2&l=englishAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0
Source: global trafficHTTP traffic detected: GET /public/shared/fonts/MotivaSans-Regular.ttf?v=4.015 HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://gtm.you1.cnsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://gtm.you1.cn/public/shared/css/motiva_sans.css?v=-DH0xTYpnVe2&l=englishAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0
Source: global trafficHTTP traffic detected: GET /public/shared/images/header/logo_steam.svg?t=962016 HTTP/1.1Host: gtm.you1.cnConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0
Source: global trafficHTTP traffic detected: GET /public/javascript/applications/community/localization/shared_english-json.js?contenthash=53a212bf3cf7a843dedd HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0; app_impressions=2143540@2_9_100000_
Source: global trafficHTTP traffic detected: GET /public/javascript/applications/community/localization/sales_english-json.js?contenthash=78c2664709aeddc975e5 HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0; app_impressions=2143540@2_9_100000_
Source: global trafficHTTP traffic detected: GET /public/javascript/applications/community/localization/main_english-json.js?contenthash=cfcee568a9b043acaadb HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0; app_impressions=2143540@2_9_100000_
Source: global trafficHTTP traffic detected: GET /public/images/skin_1/footerLogo_valve.png?v=1 HTTP/1.1Host: gtm.you1.cnConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0; app_impressions=2143540@2_9_100000_
Source: global trafficHTTP traffic detected: GET /public/css/applications/community/chunk~f036ce556.css?contenthash=65008c72e7e5586e0c2d HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0; app_impressions=2143540@2_9_100000_
Source: global trafficHTTP traffic detected: GET /public/css/applications/community/chunk~c18a43282.css?contenthash=2951747b428e607bd9cf HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0; app_impressions=2143540@2_9_100000_
Source: global trafficHTTP traffic detected: GET /public/css/applications/community/chunk~69438e232.css?contenthash=4a16a80208a2f1b32986 HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0; app_impressions=2143540@2_9_100000_
Source: global trafficHTTP traffic detected: GET /public/css/applications/community/chunk~642602239.css?contenthash=59316afb14f0823f60a9 HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0; app_impressions=2143540@2_9_100000_
Source: global trafficHTTP traffic detected: GET /public/css/applications/community/chunk~d2dd7ecf6.css?contenthash=97854aa28eb090f068fb HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0; app_impressions=2143540@2_9_100000_
Source: global trafficHTTP traffic detected: GET /public/css/applications/community/chunk~b1f9f17fd.css?contenthash=89633ec89e0fda129395 HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0; app_impressions=2143540@2_9_100000_
Source: global trafficHTTP traffic detected: GET /public/css/applications/community/events.css?contenthash=5c2ed144a3bfd464f943 HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0; app_impressions=2143540@2_9_100000_
Source: global trafficHTTP traffic detected: GET /public/javascript/applications/community/libraries~25d238eb8.js?contenthash=ac954d69fdf4b21a0a54 HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0; app_impressions=2143540@2_9_100000_
Source: global trafficHTTP traffic detected: GET /public/javascript/applications/community/libraries~c1dfbefd5.js?contenthash=d3fb7b7d10d08f0d7ff8 HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0; app_impressions=2143540@2_9_100000_
Source: global trafficHTTP traffic detected: GET /public/javascript/applications/community/libraries~f036ce556.js?contenthash=4aeaa7f3e9a9fc232310 HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0; app_impressions=2143540@2_9_100000_
Source: global trafficHTTP traffic detected: GET /public/javascript/applications/community/libraries~9e353dc2d.js?contenthash=a354f433049b20f1e568 HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gtm.you1.cn/app/2143540Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sessionid=3508f816d0cd4e44f984cf27; steamCountry=HK%7Cb09085d928b203f4f5f73bce04469d6b; timezoneOffset=7200,0; app_impressions=2143540@2_9_100000_
Source: global trafficHTTP traffic detected: GET /public/javascript/applications/community/libraries~7bb437d7f.js?contenthash=db9788aa72093ef41f9a HTTP/1.1Host: gtm.you1.cnConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-pla