New Registrations

Steam phishing domains

Newly registered lookalikes - tracked daily

Steam phishing domains

Newly registered lookalikes - tracked daily

Tracked (7d)
6
New (24h)
2
vs avg
Website
store.steampowered.com
About
AIGaming-account-resale target. CSGO / Dota item-trade scams and 'free skins' lures are the typical patterns.
TLDs
.com (5) · .run (1)
Hosts
Ultahost, Inc. (2) · SH2206 (1) · Hetzner Online GmbH (1)
Countries
The NetherlandsThe Netherlands (2) · United StatesUnited States (1) · Hong KongHong Kong (1)

Recently registered domains — may be used for phishing. Screenshots show parking pages while domains warm up. Use for Threat Hunting or watchlists.

Last check (UTC) First seen (UTC) URL Screenshot Flags Details
2026-06-30 02:01 2026-06-30 02:01
https://steamcommunity-xerry.com
Screenshot of steamcommunity-xerry.com Details
2026-06-30 02:01 2026-06-30 02:01
https://steamcommunity-herry.com
Screenshot of steamcommunity-herry.com Details
2026-06-25 02:32 2026-06-25 02:32
https://steamcommunity.run
Screenshot of steamcommunity.run Details
2026-06-25 02:32 2026-06-25 02:32
https://steam-wallet.com
Screenshot of steam-wallet.com Details
2026-06-24 01:52 2026-06-24 01:52
https://steamcommunityg.com
Screenshot of steamcommunityg.com Details
2026-06-23 03:04 2026-06-23 03:04
https://www-steamcommunity.com
Screenshot of www-steamcommunity.com Details

Recently registered domains — may be used for phishing. Screenshots show parking pages while domains warm up. Use for Threat Hunting or watchlists.

URL Screenshot Details
https://steamcommunity-xerry.…
Screenshot of steamcommunity-xerry.com Details
https://steamcommunity-herry.…
Screenshot of steamcommunity-herry.com Details
https://steamcommunity.run
Screenshot of steamcommunity.run Details
https://steam-wallet.com
Screenshot of steam-wallet.com Details
https://steamcommunityg.com
Screenshot of steamcommunityg.com Details
https://www-steamcommunity.com
Screenshot of www-steamcommunity.com Details

AIHow to verify a real Steam URL

  • Legitimate Steam URLs always end in store.steampowered.com (e.g. www.store.steampowered.com, account.store.steampowered.com). Anything else — including look-alike typosquats, hyphenated variations, or unfamiliar TLDs like .xyz / .top / .vip — is not Steam.
  • The domains listed above were registered within the last 7 days. New-domain age is itself a signal — Steam has owned store.steampowered.com for years; brand-new look-alikes are almost never legitimate.
  • If you got the link from email, SMS, or social media, do not click it. Open store.steampowered.com from your browser bookmark or type the domain manually.
  • Real Steam pages almost never ask for credentials immediately after clicking from a message — treat any such redirect as a phishing attempt until the domain is verified.