Report - cs2pattern.shop/

Report Overview

Submitted URL
cs2pattern.shop/
IP
172.67.132.228
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-09 08:42:00
Access
public
Website Title
CS2 Pattern - CS:GO Trade Market for sell, buy and exchange skins
Final URL
cs2pattern.shop/en?price_from=0&price_to=26807.54&game=csgo
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
190

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cs2pattern.shop	unknown	unknown	No data	No data	1.5 kB	243 kB	172.67.132.228
i.ibb.co	13485	2010-07-20	2018-11-25	2024-05-07	425 B	22 kB	162.19.58.158
steamcommunity-a.akamaihd.net	12205	2009-09-14	2014-06-06	2024-04-29	20 kB	1.4 MB	95.101.11.9
unpkg.com	11693	2016-01-06	2016-01-08	2024-05-08	444 B	47 kB	104.17.249.203
cdn.cs2pattern.shop	unknown	unknown	No data	No data	46 kB	5.7 MB	172.67.132.228
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-09	434 B	80 kB	142.250.74.72

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed
2024-05-09	medium	cs2pattern.shop	Sinkholed

ThreatFox

No alerts detected

JavaScript (20)

	URL	Size	First Seen	Last Seen
	cdn.cs2pattern.shop/_nuxt/8199cf9.js	194 kB	2024-05-09	2024-05-09
Pretty URL cdn.cs2pattern.shop/_nuxt/8199cf9.js IP 172.67.132.228 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 10:42:09 Last Seen2024-05-09 10:42:11 Times Seen3 Hash c14e687f000fdcbb04ed087af4f0417b 15cbff3ea70046938c66c859358fc7190c80124d f935fe8e92a1787a566734a1061a34a9dafde05da301973d3b136f3b9f07d6e0 Loading...

	cdn.cs2pattern.shop/_nuxt/270a8c7.js	22 kB	2024-05-09	2024-05-09
Pretty URL cdn.cs2pattern.shop/_nuxt/270a8c7.js IP 172.67.132.228 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 10:42:09 Last Seen2024-05-09 10:42:12 Times Seen3 Hash 982c7986a837a805c4c2c12d7b85ef31 d2146d1011ea8da2aa718c7f350d668d2b03e6e5 ca71b06932ad29fa05e8ae6f15cd96f7004a9ddc7be2979f15f9579d0c7e377f Loading...

	cdn.cs2pattern.shop/_nuxt/5r235of.js	474 B	2024-05-09	2024-05-09
Pretty URL cdn.cs2pattern.shop/_nuxt/5r235of.js IP 172.67.132.228 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 10:42:09 Last Seen2024-05-09 10:42:10 Times Seen2 Hash 1d2bde1cddaa63f8dcac478a27826dc1 a2869d9dc4955f01a9d15467bb5fb9324383b376 83c71ddc33c0563d05152b9fbaa7ac876b9769deae5e6830f4c6c019164230eb Loading...

	cdn.cs2pattern.shop/_nuxt/cf8102d.js	4.3 kB	2024-05-09	2024-05-09
Pretty URL cdn.cs2pattern.shop/_nuxt/cf8102d.js IP 172.67.132.228 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 10:42:09 Last Seen2024-05-09 10:42:10 Times Seen2 Hash aaf282ca9a6cba17a5e0bb5c40101c5e 8d361610b3244e0cfa366b7755f9cb3240bdd839 c9b11a4496912034fe9f622c02f911ebd7778911495b43241f73a1c025e86101 Loading...

	www.googletagmanager.com/gtag/js?id=AW-529157381&l=dataLayer	218 kB	2024-05-09	2024-05-09
Pretty URL www.googletagmanager.com/gtag/js?id=AW-529157381&l=dataLayer IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 10:42:09 Last Seen2024-05-09 10:42:09 Times Seen1 Hash 130378956a217e1eacf04cc2bfe1668f 4b13bc479bcfcb2cd756c378390e4a170a39d693 fa9a91f364f6c3a8c2a2cd8fc5907356fdb48f1618ef3ba4deef24acf669819a Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-20
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-20 06:27:15 Times Seen350448 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	cdn.cs2pattern.shop/_nuxt/82dc22e.js	32 kB	2024-05-09	2024-05-09
Pretty URL cdn.cs2pattern.shop/_nuxt/82dc22e.js IP 172.67.132.228 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 10:42:09 Last Seen2024-05-09 10:42:10 Times Seen2 Hash d4dc851ad16f4a6391d8f788b175252e 87858eaa8a16c1d6559183f1459aadaa73891ce2 64228c0af92518a1ee55c4055854cb0f808d3db5e3534680bea8aa9da1c4ac1b Loading...

	cdn.cs2pattern.shop/_nuxt/b547650.js	381 kB	2024-05-09	2024-05-09
Pretty URL cdn.cs2pattern.shop/_nuxt/b547650.js IP 172.67.132.228 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 10:42:09 Last Seen2024-05-09 10:42:12 Times Seen2 Hash b8922461dfd8c52f0620cda7ea2c65aa 4564ee7c9147fbfb9ec6ae9092f5a7731982cebe c0c87493d65c0e7cc7fd24799c167d23ffbc28fb7f81c76fd78b8b8de95521ac Loading...

	cs2pattern.shop/	131 B	2024-05-09	2024-05-09
Pretty URL cs2pattern.shop/ IP 172.67.132.228 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-09 10:42:09 Last Seen2024-05-09 10:42:09 Times Seen1 Hash cb0529440077270a426805f86e8d781e 955c77495b27274bbb542f426e46b1144ee55550 ace285adbb89f77457b1e32c0a925ca58bc03b5bff12a0f083959e55abac0a21 Loading...

	cdn.cs2pattern.shop/js/main.8519.js	147 kB	2024-04-25	2024-05-17
Pretty URL cdn.cs2pattern.shop/js/main.8519.js IP 172.67.132.228 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 21:11:48 Last Seen2024-05-17 17:45:48 Times Seen8 Hash 3eb9ba7672672908596185903d186452 8eb7b2fe54d58582848398654cbbb63a7b841ac9 8d29d52aaaebe4ec17d101260434272829c2cdad6c3ca882a81ff81c47a5076c Loading...

	cdn.cs2pattern.shop/_nuxt/c5c08c6.js	1.6 MB	2024-05-09	2024-05-09
Pretty URL cdn.cs2pattern.shop/_nuxt/c5c08c6.js IP 172.67.132.228 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 10:42:09 Last Seen2024-05-09 10:42:09 Times Seen1 Hash c7aec2153dcb674b210728a0f59aa129 f290ebca85c77dc9ff4521f8138069e72670cd8d d4d60b34a68f28c05209597b647d5628853795c7ab77413330efe487abd4eda1 Loading...

	cs2pattern.shop/	0 B	2023-03-07	2024-05-20
Pretty URL cs2pattern.shop/ IP 172.67.132.228 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-20 06:31:26 Times Seen37859237 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdn.cs2pattern.shop/_nuxt/d4c62d9.js	8.0 kB	2024-05-09	2024-05-09
Pretty URL cdn.cs2pattern.shop/_nuxt/d4c62d9.js IP 172.67.132.228 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 10:42:09 Last Seen2024-05-09 10:42:10 Times Seen1 Hash 073317c89a96e5fd0e89569cd9c6b371 ed00eb844a6ba25357932744fcb8a44ceac6c9ad 70c60c6c25da907b2515b497efdc48397e95175d611fe377d7d88d45f272d003 Loading...

	www.googletagmanager.com/gtag/js?id=AW-529157381&l=dataLayer	218 kB	2024-05-09	2024-05-09
Pretty URL www.googletagmanager.com/gtag/js?id=AW-529157381&l=dataLayer IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 10:42:10 Last Seen2024-05-09 10:42:10 Times Seen2 Hash 8df3bf011bfd0afe9cebb072236dadc1 b3b9db1e6f6ca40d2f4b151e3a1f4e661314715f 28d00d9278c0ee1f7ff4a83c16530c634dd6a4e054eae5053cc294bd82281551 Loading...

	cs2pattern.shop/sandbox%20eval%20code	147 B	2023-04-11	2024-05-20
Pretty URL cs2pattern.shop/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-20 06:27:15 Times Seen350963 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	cs2pattern.shop/	0 B	2023-03-07	2024-05-20
Pretty URL cs2pattern.shop/ IP 172.67.132.228 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-20 06:31:26 Times Seen37859237 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdn.cs2pattern.shop/_nuxt/e4934ba.js	20 kB	2024-05-09	2024-05-09
Pretty URL cdn.cs2pattern.shop/_nuxt/e4934ba.js IP 172.67.132.228 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 10:42:10 Last Seen2024-05-09 10:42:11 Times Seen2 Hash 01bbc7c2a8c5977d6541137ffdfabd6d 4de2e24c6dd53fa7f959f50022693a4498eaa58f d44abf184a1335ed1a1c3d993cabd2f0e42c808742c733a479ebf25a37b4608e Loading...

	cdn.cs2pattern.shop/_nuxt/665b705.js	338 kB	2024-05-09	2024-05-09
Pretty URL cdn.cs2pattern.shop/_nuxt/665b705.js IP 172.67.132.228 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 10:42:10 Last Seen2024-05-09 10:42:11 Times Seen2 Hash 5a16e132d5bc603590d6163a03615f08 40c60f0ace81b58fedaccac0289affc8a3829ec8 ffbf428a3af6d535e4fad881a7b42db4cf92f321f0f5fb6d603fc165f30d5950 Loading...

	cdn.cs2pattern.shop/_nuxt/335fe51.js	1.7 MB	2024-05-09	2024-05-09
Pretty URL cdn.cs2pattern.shop/_nuxt/335fe51.js IP 172.67.132.228 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 10:42:10 Last Seen2024-05-09 10:42:11 Times Seen2 Hash 8895e01a23d201014be22abffd22bd49 afb97c9d3f8a702cc0dd1427f28754d759a18378 84866f9d965eb3627757d0aa427958b31c02664082758bca65cb471d4440ea03 Loading...

	cdn.cs2pattern.shop/_nuxt/4932975.js	1.6 kB	2024-05-09	2024-05-09
Pretty URL cdn.cs2pattern.shop/_nuxt/4932975.js IP 172.67.132.228 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 10:42:10 Last Seen2024-05-09 10:42:10 Times Seen1 Hash 9d6bde8a56512406c4046b7bbd77e361 eeee2f4bde85941c76c22defe0aa8174aeffe9c5 e9e8bc52c52de682bf3ad6a1d7a6f67809e8e65a7fd38049faa750c6689f8d8c Loading...

HTTP Transactions (129)

URL IP Response Size

cdn.cs2pattern.shop/css/ionicons.min.css

172.67.132.228

200 OK

16 kB

URL GET HTTP/3
cdn.cs2pattern.shop/css/ionicons.min.css
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (46095)
Size
16 kB (15574 bytes)
Hash
858b6270de8c19f41b23bb3fdf6d6129
c2850a31fc9020ee5700297ccd922bf071ac2782
a58d357de2432edfd6f511b203dd16c72785be133667def731bb769c7a5224b6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/ionicons.min.css HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/css/styles.c629a3f.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:29 GMT
content-type: text/css; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:58 GMT
etag: W/"b5df-18d1cb7b71f"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vGodTJwpGO9KmPMt6r6lZq79HjwBcntSyvbfhU04OIrg2hKU3d32i8iSXW5S52mn4hhfLPWrVod2vRsbqBYJAbF%2FzvG%2FLgGW8ZAcxvj0hdFMBrFRcFc1zt3GzLBr%2B5aMzHlOGHqP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88106408297656bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/api/settings/getVisual

172.67.132.228

200 OK

2.3 kB

URL GET HTTP/3
cdn.cs2pattern.shop/api/settings/getVisual
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
gzip compressed data, from Unix
Size
2.3 kB (2332 bytes)
Hash
09d5ee9a303c671f7516c309e9274184
6d5e7cb67861f3c599afa89e63799382b13b890c
ef391a7ea71b8917815bea64bef25ae6c19574ad0b7213c639623f4632eb703d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /api/settings/getVisual HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cs2pattern.shop/
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:29 GMT
content-type: application/json; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin
access-control-allow-credentials: true
etag: W/"31-MqAz3EybG2Al+DtBw35GF38TVtk"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9XLx3uTmVcRMvyPVGJ3BDTFw%2BzUZeLoAxNLyOtw9WaFiFne7PPo9mzdWZGOX1kl8N3mK1Sb9AjbtJSqyOkrbnUrtQS24Ripu8m39pmyEx8wwMFVZwSuxVbiLd2zDHoME7RzJT8Fm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881064072ff756bd-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=AW-529157381&l=dataLayer

142.250.74.72

200 OK

79 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=AW-529157381&l=dataLayer
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://cs2pattern.shop/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (1822)
Size
79 kB (78875 bytes)
Hash
8df3bf011bfd0afe9cebb072236dadc1
b3b9db1e6f6ca40d2f4b151e3a1f4e661314715f
28d00d9278c0ee1f7ff4a83c16530c634dd6a4e054eae5053cc294bd82281551

HTTP Headers

GET /gtag/js?id=AW-529157381&l=dataLayer HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 08:41:30 GMT
expires: Thu, 09 May 2024 08:41:30 GMT
cache-control: private, max-age=900
last-modified: Thu, 09 May 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78875
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.cs2pattern.shop/_nuxt/img/header-bg.fc90164.png

172.67.132.228

404 Not Found

79 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/header-bg.fc90164.png
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text
Size
79 kB (78898 bytes)
Hash
6208a9543b42ef415ab9305c9db7461e
f521fb26917c7a9b8ca5db3d61791d72cea766fa
5f3174c184fb103013451b69b6b9f5bd5cd08c01d58a643e7d619ff3b39d4ef5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/header-bg.fc90164.png HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/_nuxt/app.9e3d460.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:30 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6E813uRJEpsn2Tj3f4k0bOpBhY1PMvEWvJ%2BTtF254mIjipwb9nJOrTLh4O%2BH4VN5Mt52Se5R6%2F4kjx47nEbRKAyzZibdEsMWAuQoeGtx%2FS3817OXomcIHBywRDOpy8uh%2Bd0EIx4S"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810640abd8256bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/styles.c629a3f.css

172.67.132.228

200 OK

46 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/styles.c629a3f.css
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
ASCII text, with very long lines (373)
Size
46 kB (46482 bytes)
Hash
08ef59a70e87241e21fdb6687318874e
d6b088705ef6d5fb6b62c043e910361456e9b067
70bd7d01518a7177e6bbe19759948d1e7fa0a611c1265c7da76f0ff662588564

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/styles.c629a3f.css HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:30 GMT
content-type: text/css; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:58 GMT
etag: W/"428a0-18d1cb7b86f"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EmaR5IxCWORI%2BYpfEw5RlGGJxnlZ4j5nitfxQGLttJv3a0GyXCof8xja1ff3wIiqThUysz0kQOp5h9pX5RSrqgvLO77IJzHkg%2BLMdCZLMnO2TdlRnGUTvf3gIont5PWkjP89XDkB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881064099bd856bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/5r235of.js

172.67.132.228

200 OK

283 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/5r235of.js
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
JavaScript source, ASCII text
Size
283 B (283 bytes)
Hash
1d2bde1cddaa63f8dcac478a27826dc1
a2869d9dc4955f01a9d15467bb5fb9324383b376
83c71ddc33c0563d05152b9fbaa7ac876b9769deae5e6830f4c6c019164230eb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/5r235of.js HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:29 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 20 Jan 2024 19:42:49 GMT
etag: W/"1da-18d2865b185"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xk5hfgifPTC%2FwMlCD%2F2zFK2JPbHSp6m%2Bv%2F17bQA7AvwUqIpwcV7A5hg1hUjGtIH%2B3j4tilmX4QOncEgGeDVmqULQefg70%2BTfjcaF7dZUBRKtG7BFmnCVmtq7axzu7kUSh3PBRlHh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881064063dd556bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/js/main.8519.js

172.67.132.228

200 OK

49 kB

URL GET HTTP/3
cdn.cs2pattern.shop/js/main.8519.js
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
JavaScript source, ASCII text, with very long lines (65465)
Size
49 kB (48619 bytes)
Hash
3eb9ba7672672908596185903d186452
8eb7b2fe54d58582848398654cbbb63a7b841ac9
8d29d52aaaebe4ec17d101260434272829c2cdad6c3ca882a81ff81c47a5076c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/main.8519.js HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:29 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:42 GMT
etag: W/"23d21-18d1cb778eb"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RFTkvjz0F7PoKMt%2Fg2bo4t7m5JZ%2FVOzpMg2gGDjhq5sSsFuFQj8NGMkPGLaxo%2Br%2BQLbZkN9QuZTqSxFulhAirdmrVARHBzljtfNE3IwZ7AAn44xq4n%2F6SRw9i7sLF35E1%2FEwdWKg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881064063ddb56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/css/app.9e3d460.css

172.67.132.228

200 OK

71 kB

URL GET HTTP/3
cdn.cs2pattern.shop/css/app.9e3d460.css
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
ASCII text, with very long lines (375)
Size
71 kB (71138 bytes)
Hash
5258b5ac20d97287493d59940f43148e
1e1cffec093b218fdde4f3690d1807f77e15143e
51db5c6ca404f3ee7b2685e26e7554f8dd94f880eeaffe0cca0e945365f485cb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/app.9e3d460.css HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:29 GMT
content-type: text/css; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 20 Jan 2024 18:53:43 GMT
etag: W/"6e63a-18d2838bba3"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QS6Y7WjW67De77sZNZ7HZg0u%2B7F2NflOTL%2F7zPyYQBysBzjpO1pprQscTDmQ%2FMnYa04L7FbDVo4vUSc2hXfA3VGDeON0KGe1CSGHYf9SIBp%2FaarKBsajsx0EbE%2B1UmiZFmXike68"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881064063dd856bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/cf8102d.js

172.67.132.228

200 OK

11 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/cf8102d.js
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
JavaScript source, ASCII text
Size
11 kB (10614 bytes)
Hash
aaf282ca9a6cba17a5e0bb5c40101c5e
8d361610b3244e0cfa366b7755f9cb3240bdd839
c9b11a4496912034fe9f622c02f911ebd7778911495b43241f73a1c025e86101

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/cf8102d.js HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:29 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:05 GMT
etag: W/"10ad-18d1cb7d3f7"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Dy11l%2Bqb7PtbwuyQHr4k5wkMv%2BJYgwYAizOHlL%2FpQTuOYUbwhgbbb%2Fp0xE0G8uJ2qwmehmoufUrVA6i8DOY2vzn5Urpuo%2Bp0NQIwjUFV7rwQghUofZ39gNSTaAlRfljlfv0Vl8e9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881064063dde56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Medium.7d5dc17.woff

172.67.132.228

404 Not Found

177 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Medium.7d5dc17.woff
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text
Size
177 B (177 bytes)
Hash
4e777fc25436b10fc3f0be58ea98d47c
839e2ffe2c3a3d967feeb238c3f2376dc0adc553
da06f136f7f4fe34a28fecf232c2190012e97fad1f3fbd042b5cb66d7f5f75fb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/fonts/Gilroy-Medium.7d5dc17.woff HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:30 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UwkoiN%2B6lSJSvd%2BenL2hgdr2P%2FMPTcs6vonK%2BY%2BA2OM328dmDXVzBvLaTZ4ZKqOu1PBF%2FxAmV2E4G6DrVzi8Mybp7GuDXqKEQO00C%2BoyskTlP59lGJ26wIbcExNZsg8tFliuHWPa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810640da98a56bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/82dc22e.js

172.67.132.228

200 OK

13 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/82dc22e.js
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
13 kB (12759 bytes)
Hash
d4dc851ad16f4a6391d8f788b175252e
87858eaa8a16c1d6559183f1459aadaa73891ce2
64228c0af92518a1ee55c4055854cb0f808d3db5e3534680bea8aa9da1c4ac1b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/82dc22e.js HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:30 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:07 GMT
etag: W/"7ead-18d1cb7da97"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BJsdGqmoPCYW28zEBN46gXQXpY1qDGzeZO1ZS536p3%2BWftxFkMnY3KUKkG5H3%2Bsi4GKJ9wBCfXTVsF6WYdBmXTB266yhZSW1QE5vCLVgM%2FLaLAmDC5qpIb9j8YDxkebte9%2Fx7GjF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810640f9caa56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cs2pattern.shop/

172.67.132.228

200 OK

227 kB

URL User Request GET HTTP/2
cs2pattern.shop/
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text
Size
227 kB (227356 bytes)
Hash
51ed81b0a67cd4c4cdf6b52ead142598
33eb1b149a73717560b448509f10e13d786e0eac
ddcf894bdd7f59a38246884cbe224f6908c2f51b8e587b00310c4fb26bc979cc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 09 May 2024 08:41:29 GMT
content-type: text/html
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fOcx39HRoYlysWSkvinhJdpOBz9mQjUTiXdWwWU6%2Fkw%2FUbjvxTDQVQMruPy2yKoRFgtMw8EqLgRGQjjrNpNA2bpkgaRAj75Bj7GjamfM8FAt5y9DbUXPxFeWcluKVecoE2E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881064045811b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

i.ibb.co/gg4DMyw/ks2patern.png

162.19.58.158

200 OK

22 kB

URL GET HTTP/2
i.ibb.co/gg4DMyw/ks2patern.png
IP
162.19.58.158:443
ASN
#16276 OVH SAS

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint0C:8B:6F:2F:B8:9F:91:1E:3A:DD:B1:1B:45:47:B4:65:FD:56:73:3D
ValidityMon, 22 Apr 2024 06:29:44 GMT - Sun, 21 Jul 2024 06:29:43 GMT

File type
PNG image data, 130 x 20, 8-bit/color RGBA, non-interlaced
Size
22 kB (21871 bytes)
Hash
feaa79d5992c8f77675219b84b12d4dd
ef63bc30d9f04f2ebdf77b8a7dd352cb43b8a876
ef0e5686d5eccfba390f93e34bd6d2820e225be2428587443e40455bbeaefb85

HTTP Headers

GET /gg4DMyw/ks2patern.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 08:41:31 GMT
content-type: image/png
content-length: 21871
last-modified: Mon, 01 Apr 2024 00:26:20 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cs2pattern.shop/_nuxt/img/merchant-banner.94d16ac.svg

172.67.132.228

404 Not Found

47 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/merchant-banner.94d16ac.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text
Size
47 kB (47282 bytes)
Hash
04469a234c9230fd66a6972fd9306672
51b94042e9e6d0242a07e7f6ff43c47df2778d73
b11278c8309cb276077c7bd9cec38691aa7bb5773c2a548aa6922450e9a226e0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/merchant-banner.94d16ac.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:31 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sbVuQ2Ezkmdj%2FR9zEZk8ATUqsz7s0uj3emR02WRVg9pFkDiZCVFR5ElJu7SQHQ15eTBJb0wbFyROG9OdF%2FJ4omAmN2Mc%2FlchY2QZSsPm8OJPAruuGwDbfWti3%2FfkyXyhPt8Yuzb4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881064140b9c56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/img/vk.3c83f03.svg

172.67.132.228

404 Not Found

48 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/vk.3c83f03.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text
Size
48 kB (47831 bytes)
Hash
0ab7f53366c55e713d2e7634f0f30720
7e4a07d89cccf6050c5c5a1a729a54b63b8a6fd3
3d13c43047ce01a290f92a5798322ed9483acb6b68babb0aee2d4f075a458c18

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/vk.3c83f03.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:31 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qqpr9WCwUCZwSl%2FY2eq2fkV5XQ2hCaTSraVJiPwhHqiDJyNEKOTK37SjvW6inb68nPxs%2BHSc2x%2BIBR0bOEiQS5zIByngNuO70e4qSd%2B5E9sND%2Br%2FnDE9USXWxDZGHSK95VhjLfN8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881064142bd356bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/img/vk.1ad2c3b.svg

172.67.132.228

200 OK

39 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/vk.1ad2c3b.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
SVG Scalable Vector Graphics image
Size
39 kB (39129 bytes)
Hash
f82ee0f46429f9f8140761b9aa295108
0ba0633d5c93fa32303ced1afb0c3b9988fe0958
1b2661b143cc274ce57beab1680df583e671843b9e925d4c9b4467c9f7a4ffb3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/vk.1ad2c3b.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:31 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:59 GMT
etag: W/"2fe-18d1cb7ba3f"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yQxPQfl58U1i5BzkQtdP4B%2BHl0r%2Bz%2FBh884M7DODfA5oRgBvZJWPxNUW7hWf2imo5Vo2%2B4dPI6NymuKEV03fHvOYkju29xKZc%2BoaRifLLxHIQKLJu2nxeq%2BHHX9LOn%2Fv6wJ%2Bo8M%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881064148c6056bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgposr-kLAtl7PTbTjlH7du6kb-Nkvn6Nrjum25V4dB8xL6TodX3jVfm8kFsNmD1I47HewQ3Zw3Qr1m-yLq7hZfquJTOyyE3syM8pSGKJteIqoY/300x300

95.101.11.9

200 OK

48 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgposr-kLAtl7PTbTjlH7du6kb-Nkvn6Nrjum25V4dB8xL6TodX3jVfm8kFsNmD1I47HewQ3Zw3Qr1m-yLq7hZfquJTOyyE3syM8pSGKJteIqoY/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
48 kB (48346 bytes)
Hash
b72da50fc484c472aa54b08f4f0546a2
57df49a79a4e34cd98a66b5e6427f91669cf7f48
9892e1b51c5b0a48d8be1a50eefbe50f0e493e6c4898e4af5c482f4497c3a727

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgposr-kLAtl7PTbTjlH7du6kb-Nkvn6Nrjum25V4dB8xL6TodX3jVfm8kFsNmD1I47HewQ3Zw3Qr1m-yLq7hZfquJTOyyE3syM8pSGKJteIqoY/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Wed, 22 Sep 2021 01:51:18 GMT
Content-Length: 48346
Cache-Control: public, max-age=380484
Expires: Mon, 13 May 2024 18:22:55 GMT
Date: Thu, 09 May 2024 08:41:31 GMT
Connection: keep-alive

cdn.cs2pattern.shop/_nuxt/img/instagram.6b8a2d3.svg

172.67.132.228

200 OK

48 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/instagram.6b8a2d3.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
SVG Scalable Vector Graphics image
Size
48 kB (48316 bytes)
Hash
5b7d2e7ab74c8853bad6e943482bb31a
4b30b5434cb055151f6fb12483301f144582055c
970eedaf296013e41bc62256a85319146e50e9becf84dfd3694c032df3c09715

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/instagram.6b8a2d3.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:31 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:03 GMT
etag: W/"632-18d1cb7ca8b"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5SzHOK2E6eQa02E3JZHJD33WdqVRSSrMx8fKn1B53DKlWnpNlDZAvwdkl9unkpmi%2F9KGuQLxbSo3%2FntVWFgyScHibar1Ac6UM892zFwLqpRVPApsdPYhCd6iCtRUr%2BGhoo%2Brqr7O"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881064147c5b56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/335fe51.js

172.67.132.228

200 OK

395 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/335fe51.js
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (3881)
Size
395 kB (394781 bytes)
Hash
8895e01a23d201014be22abffd22bd49
afb97c9d3f8a702cc0dd1427f28754d759a18378
84866f9d965eb3627757d0aa427958b31c02664082758bca65cb471d4440ea03

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/335fe51.js HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:29 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Tue, 23 Jan 2024 07:30:50 GMT
etag: W/"197d05-18d353a9ebe"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5wVZIO1dODCTE5nYcZMXOjq3YwZzsUMisptZbeAsMtP%2FQuqpPyr303SzxVgCUKWdxPLa%2BC2hKAt9%2B9MGYphcJ3Rb1dJtFaEMk20a611vOM1%2Bvmqf%2F%2B64VdAdnvpv%2F4ONNihBcxv3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881064063de256bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpopuP1FAZt7PnHYzB97tCjkb-HnvD8J_WFkjoEuZcgj7jAp9Wg2gTmqUdqMW73IYTHclc3Y1-D-lG3kru915W7ot2Xnprrf7F4/300x300

95.101.11.9

200 OK

65 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpopuP1FAZt7PnHYzB97tCjkb-HnvD8J_WFkjoEuZcgj7jAp9Wg2gTmqUdqMW73IYTHclc3Y1-D-lG3kru915W7ot2Xnprrf7F4/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
65 kB (65103 bytes)
Hash
26d163b51d7766b3431e5626c92e00cb
c9466fff632f6f2580c8446bb6b834b2b653517d
b0d769279e065209b5e08a012ed48b68c93356745f106aaf13eeeb11dac79d0d

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpopuP1FAZt7PnHYzB97tCjkb-HnvD8J_WFkjoEuZcgj7jAp9Wg2gTmqUdqMW73IYTHclc3Y1-D-lG3kru915W7ot2Xnprrf7F4/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Mon, 18 Nov 2019 23:12:46 GMT
Content-Length: 65103
Cache-Control: public, max-age=28979
Expires: Thu, 09 May 2024 16:44:31 GMT
Date: Thu, 09 May 2024 08:41:32 GMT
Connection: keep-alive

cdn.cs2pattern.shop/_nuxt/665b705.js

172.67.132.228

200 OK

89 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/665b705.js
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
89 kB (89051 bytes)
Hash
5a16e132d5bc603590d6163a03615f08
40c60f0ace81b58fedaccac0289affc8a3829ec8
ffbf428a3af6d535e4fad881a7b42db4cf92f321f0f5fb6d603fc165f30d5950

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/665b705.js HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:29 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:08 GMT
etag: W/"527e3-18d1cb7dc7b"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qX6Lme6IVk1Kin72w8xvOxpGh5pemm9B6GeZ%2FfEOd41wkOqZGgwgES3goTDgFodyN13Hoh5pAnF%2FOTuhUbJYFh3if4pyU0dQjX2%2Bo8zyDaHySUvJYp2Hii6lD6OFFOUY1HfxYVlc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881064063de056bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpopamie19f0Ob3Yi5FvISJh4OEhef9PLXunm5Q_tw_iLCZrdr021bjqUA4Zm7zJdfHdw5oZV6Dr1nokr3og8Tv6c-fwXAy7D5iuyhP9UhyWA/300x300

95.101.11.9

200 OK

49 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpopamie19f0Ob3Yi5FvISJh4OEhef9PLXunm5Q_tw_iLCZrdr021bjqUA4Zm7zJdfHdw5oZV6Dr1nokr3og8Tv6c-fwXAy7D5iuyhP9UhyWA/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
49 kB (48586 bytes)
Hash
85a8ad15805bfd4f1215313aea30c0f0
2fdc2bcc641b98325298128196aea191360293c4
b7ad54c5ed5dd76d9560fec59bfe0595d081230451c891b818c68bbf75b96c79

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpopamie19f0Ob3Yi5FvISJh4OEhef9PLXunm5Q_tw_iLCZrdr021bjqUA4Zm7zJdfHdw5oZV6Dr1nokr3og8Tv6c-fwXAy7D5iuyhP9UhyWA/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Wed, 22 Sep 2021 01:51:45 GMT
Content-Length: 48586
Cache-Control: public, max-age=604800
Expires: Thu, 16 May 2024 08:41:32 GMT
Date: Thu, 09 May 2024 08:41:32 GMT
Connection: keep-alive

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszfdDFO08iklZaOm_LwDLrawjxu4MBwnPCPrNjwiwTlr0ZuYmv2IoCTcgY5N1nT_VC8yb--08C-tJSayHBhuyN352GdwULxcInyhw/300x300

95.101.11.9

200 OK

37 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszfdDFO08iklZaOm_LwDLrawjxu4MBwnPCPrNjwiwTlr0ZuYmv2IoCTcgY5N1nT_VC8yb--08C-tJSayHBhuyN352GdwULxcInyhw/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
37 kB (37380 bytes)
Hash
9a13baac6918c23d3869f08bb6f43c49
ec5f84301df371058c517078217e7dceed14eac6
f5dcdd9bfee936aa4ea9271d7f5110e27b6cb0056ed103b3390427ac5c670b18

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszfdDFO08iklZaOm_LwDLrawjxu4MBwnPCPrNjwiwTlr0ZuYmv2IoCTcgY5N1nT_VC8yb--08C-tJSayHBhuyN352GdwULxcInyhw/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Wed, 02 Jul 2014 00:11:15 GMT
Content-Length: 37380
Cache-Control: public, max-age=604800
Expires: Thu, 16 May 2024 08:41:32 GMT
Date: Thu, 09 May 2024 08:41:32 GMT
Connection: keep-alive

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhzw8zGZDZH_8iknZCOqPjmMrXWk1Rd4cJ5nqfF8I6m0Q3hrhBsMT30JISUIVA9YguB-lm3l--7jZ616s_AyyMx6ykm-z-DyGiiq0dX/300x300

95.101.11.9

200 OK

47 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhzw8zGZDZH_8iknZCOqPjmMrXWk1Rd4cJ5nqfF8I6m0Q3hrhBsMT30JISUIVA9YguB-lm3l--7jZ616s_AyyMx6ykm-z-DyGiiq0dX/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
47 kB (46742 bytes)
Hash
d53ffda9e199f9efba7069d913eae2fc
cdcc7f36d3627a6edccf72d55a236456d22cd64f
4bb394db64899a60ae6b9d930671479edbd1f8a29ee660f8a8c9beec9f4f14b5

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhzw8zGZDZH_8iknZCOqPjmMrXWk1Rd4cJ5nqfF8I6m0Q3hrhBsMT30JISUIVA9YguB-lm3l--7jZ616s_AyyMx6ykm-z-DyGiiq0dX/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Mon, 10 Mar 2014 01:17:26 GMT
Content-Length: 46742
Cache-Control: public, max-age=514504
Expires: Wed, 15 May 2024 07:36:36 GMT
Date: Thu, 09 May 2024 08:41:32 GMT
Connection: keep-alive

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhz2v_Nfz5H_uOxh7-Gw_alDK3UhH9Y78pOguzA45W7jAfk-kY6MTzxII7He1A9YFCF-ATokObn1pTo7pzJn3JhviEl7HyOlwv3308tAXX25g/300x300

95.101.11.9

200 OK

36 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhz2v_Nfz5H_uOxh7-Gw_alDK3UhH9Y78pOguzA45W7jAfk-kY6MTzxII7He1A9YFCF-ATokObn1pTo7pzJn3JhviEl7HyOlwv3308tAXX25g/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
36 kB (35473 bytes)
Hash
8a9e9cd1584f4ae0725d92dd0ad4e087
2ba315a0bb5dfb3af4049eff1ea6fae8a31e38b2
3e9f84f74533e9fa9c970fa30449eb03bd4984932fd3c5c139df89fa2a4517e6

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhz2v_Nfz5H_uOxh7-Gw_alDK3UhH9Y78pOguzA45W7jAfk-kY6MTzxII7He1A9YFCF-ATokObn1pTo7pzJn3JhviEl7HyOlwv3308tAXX25g/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Wed, 22 Sep 2021 01:51:36 GMT
Content-Length: 35473
Cache-Control: public, max-age=604763
Expires: Thu, 16 May 2024 08:40:55 GMT
Date: Thu, 09 May 2024 08:41:32 GMT
Connection: keep-alive

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhz2v_Nfz5H_uO1gb-Gw_alfqjuhWJd7ctyj9bN_Iv9nBqx_0s4Y2_0LIXAd1U4MlHZqFPox-u7g8W0vpXAyCE2sych7Cndnh22n1gSOXJG-eI-/300x300

95.101.11.9

200 OK

35 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhz2v_Nfz5H_uO1gb-Gw_alfqjuhWJd7ctyj9bN_Iv9nBqx_0s4Y2_0LIXAd1U4MlHZqFPox-u7g8W0vpXAyCE2sych7Cndnh22n1gSOXJG-eI-/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
35 kB (35104 bytes)
Hash
f6a73e49903e085b53e1f47872d760b6
c15037ebaabbb8d5d53cb66dd705ebba74f45fc2
63a071d5db61fa88d018964aa53c069f54622eeee576331808183d138b7c0f9e

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhz2v_Nfz5H_uO1gb-Gw_alfqjuhWJd7ctyj9bN_Iv9nBqx_0s4Y2_0LIXAd1U4MlHZqFPox-u7g8W0vpXAyCE2sych7Cndnh22n1gSOXJG-eI-/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Wed, 02 Jul 2014 00:11:28 GMT
Content-Length: 35104
Cache-Control: public, max-age=604666
Expires: Thu, 16 May 2024 08:39:18 GMT
Date: Thu, 09 May 2024 08:41:32 GMT
Connection: keep-alive

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszJemkV086jloKOhcj4OrzZgiUEsJYnibqZ8d-l2wO1_hJtNWDzctDBIQ5taAzQqFi6wujo1se06cud1zI97ZAmS4pT/300x300

95.101.11.9

200 OK

40 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszJemkV086jloKOhcj4OrzZgiUEsJYnibqZ8d-l2wO1_hJtNWDzctDBIQ5taAzQqFi6wujo1se06cud1zI97ZAmS4pT/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
40 kB (39992 bytes)
Hash
25fd7ea2924ff6084d92427a72ee7486
28992fb8446219bc98691110a135004d7b33f0a7
9d80e280b6ff6c702f3a106a395951341346ebfef77cd8a5cf9d72fca0c043ac

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszJemkV086jloKOhcj4OrzZgiUEsJYnibqZ8d-l2wO1_hJtNWDzctDBIQ5taAzQqFi6wujo1se06cud1zI97ZAmS4pT/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Last-Modified: Fri, 02 May 2014 01:15:42 GMT
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Content-Length: 39992
Cache-Control: public, max-age=477195
Expires: Tue, 14 May 2024 21:14:47 GMT
Date: Thu, 09 May 2024 08:41:32 GMT
Connection: keep-alive

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhnwMzFJTwW0863q42Ok_7hPvWDkjsH6ZwoiL2WpI-k0Qey-xVsYGCmLNKSIwM4aVyE_1e9l-_p15Ppot2XnnwauFte/300x300

95.101.11.9

200 OK

50 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhnwMzFJTwW0863q42Ok_7hPvWDkjsH6ZwoiL2WpI-k0Qey-xVsYGCmLNKSIwM4aVyE_1e9l-_p15Ppot2XnnwauFte/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
50 kB (50288 bytes)
Hash
8210a74396627917452de6390439fea9
005d061031935e3cb815ddead081e007c664075e
ba9ee2deb7f4e6841d7c372ff79e79d7f8e22f86c8d3bd325759f460a87d80e5

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhnwMzFJTwW0863q42Ok_7hPvWDkjsH6ZwoiL2WpI-k0Qey-xVsYGCmLNKSIwM4aVyE_1e9l-_p15Ppot2XnnwauFte/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Tue, 25 Apr 2023 00:34:26 GMT
Content-Length: 50288
Cache-Control: public, max-age=344110
Expires: Mon, 13 May 2024 08:16:42 GMT
Date: Thu, 09 May 2024 08:41:32 GMT
Connection: keep-alive

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpopamie19f0Ob3Yi5FvISJh4OEhef9PLXummJW4NE_3uzHpo33jQbtrhFqMGulJYDEdQJqMlzQ_li8yLvrgsfovJidy3tk7D5iuyhx4yPIdw/300x300

95.101.11.9

200 OK

48 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpopamie19f0Ob3Yi5FvISJh4OEhef9PLXummJW4NE_3uzHpo33jQbtrhFqMGulJYDEdQJqMlzQ_li8yLvrgsfovJidy3tk7D5iuyhx4yPIdw/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
48 kB (48065 bytes)
Hash
3c4a5b01747e69489c3256d2a1b738d6
14924507780d853c9cbf202fad3430f256b96b08
0f157be4effdf529943679b569df40da56e66003f47f8acea12078c6d398df63

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpopamie19f0Ob3Yi5FvISJh4OEhef9PLXummJW4NE_3uzHpo33jQbtrhFqMGulJYDEdQJqMlzQ_li8yLvrgsfovJidy3tk7D5iuyhx4yPIdw/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Last-Modified: Wed, 22 Sep 2021 01:51:46 GMT
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Content-Length: 48065
Cache-Control: public, max-age=514438
Expires: Wed, 15 May 2024 07:35:30 GMT
Date: Thu, 09 May 2024 08:41:32 GMT
Connection: keep-alive

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgposr-kLAtl7PLFTjdN_tGJk5KOkvnLP7LWnn8f7Mcg2r2U84nw2FWy-UA6YWGhdoLEJFBqYF7UrlG5lO2-1MLouJ-cmmwj5HeT0A2gTg/300x300

95.101.11.9

200 OK

46 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgposr-kLAtl7PLFTjdN_tGJk5KOkvnLP7LWnn8f7Mcg2r2U84nw2FWy-UA6YWGhdoLEJFBqYF7UrlG5lO2-1MLouJ-cmmwj5HeT0A2gTg/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
46 kB (46541 bytes)
Hash
93f202e58c462a8f4783a2f70886404f
c68b4d4e14c4f6096b8dc890804b8cd8363c8a9c
8b5f1dfc4c484b7617580eaa21c0813477ce367fb6085d12dbc539b9ea40769c

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgposr-kLAtl7PLFTjdN_tGJk5KOkvnLP7LWnn8f7Mcg2r2U84nw2FWy-UA6YWGhdoLEJFBqYF7UrlG5lO2-1MLouJ-cmmwj5HeT0A2gTg/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Last-Modified: Mon, 18 Nov 2019 23:12:24 GMT
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Content-Length: 46541
Cache-Control: public, max-age=514397
Expires: Wed, 15 May 2024 07:34:49 GMT
Date: Thu, 09 May 2024 08:41:32 GMT
Connection: keep-alive

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhz2v_Nfz5H_uO3mb-Gw_alIITTmn5U-8h-gez--YXygED6-UM_YGCgcICcdw45Mg6Frle3yLju0Jfp7s_JzCRn7nMl5nqInxPjhwYMMLKt66Sutg/300x300

95.101.11.9

200 OK

31 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhz2v_Nfz5H_uO3mb-Gw_alIITTmn5U-8h-gez--YXygED6-UM_YGCgcICcdw45Mg6Frle3yLju0Jfp7s_JzCRn7nMl5nqInxPjhwYMMLKt66Sutg/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
31 kB (31021 bytes)
Hash
80ce16f155d8de1b0fd68dd8951d55bf
25ce15a69c7aab3334a07b4e675174adde3f6052
28b10cb7e73b170c0478c467a3822499e7a767f5bc8791a6ddf0d4ec5dea7d0f

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhz2v_Nfz5H_uO3mb-Gw_alIITTmn5U-8h-gez--YXygED6-UM_YGCgcICcdw45Mg6Frle3yLju0Jfp7s_JzCRn7nMl5nqInxPjhwYMMLKt66Sutg/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Thu, 03 Dec 2020 22:05:17 GMT
Content-Length: 31021
Cache-Control: public, max-age=514465
Expires: Wed, 15 May 2024 07:35:57 GMT
Date: Thu, 09 May 2024 08:41:32 GMT
Connection: keep-alive

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgposr-kLAtl7PLFTi5H7c-im5KGqPX4PLTVqWdY781lxLjErN7031Hl8hU4NmnyINOQIwE-aVvSq1i9k-rrhcO8753KzyZmsyY8pSGKb3xK3i0/300x300

95.101.11.9

200 OK

41 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgposr-kLAtl7PLFTi5H7c-im5KGqPX4PLTVqWdY781lxLjErN7031Hl8hU4NmnyINOQIwE-aVvSq1i9k-rrhcO8753KzyZmsyY8pSGKb3xK3i0/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
41 kB (41381 bytes)
Hash
4eb2656d1b4562cb067462936de4d049
fec449ff15672082b91267bbb7f4fe269848e273
e413e4aa83251a328568c21b7d253fd5ab9b68611ff7059d17441d8f19457e73

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgposr-kLAtl7PLFTi5H7c-im5KGqPX4PLTVqWdY781lxLjErN7031Hl8hU4NmnyINOQIwE-aVvSq1i9k-rrhcO8753KzyZmsyY8pSGKb3xK3i0/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Wed, 27 May 2015 00:08:39 GMT
Content-Length: 41381
Cache-Control: public, max-age=514479
Expires: Wed, 15 May 2024 07:36:11 GMT
Date: Thu, 09 May 2024 08:41:32 GMT
Connection: keep-alive

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXU5A1PIYQNqhpOSV-fRPasw8rsUVJnMQtZ5Or0czhwwfzFfgJG6eO1loKHkrnyZ-yDxmkEsZcm3ejDpNrxiQHk8xVrZWH3IdCdd1A7NQ6F-gW3lbjpm9bi60dNUHL_/300x300

95.101.11.9

200 OK

44 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXU5A1PIYQNqhpOSV-fRPasw8rsUVJnMQtZ5Or0czhwwfzFfgJG6eO1loKHkrnyZ-yDxmkEsZcm3ejDpNrxiQHk8xVrZWH3IdCdd1A7NQ6F-gW3lbjpm9bi60dNUHL_/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 256 x 198, 8-bit/color RGBA, non-interlaced
Size
44 kB (43992 bytes)
Hash
e02da4048b52fa947eb80b64aadcb66a
119f9bf965d6f29a87a5b71a2f907e89e727c676
feb4b91676b540b8d8ece95ed8604851db7263e722c5d3a36c7a65e0f7acd574

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXU5A1PIYQNqhpOSV-fRPasw8rsUVJnMQtZ5Or0czhwwfzFfgJG6eO1loKHkrnyZ-yDxmkEsZcm3ejDpNrxiQHk8xVrZWH3IdCdd1A7NQ6F-gW3lbjpm9bi60dNUHL_/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Wed, 20 Dec 2017 03:24:00 GMT
Content-Length: 43992
Cache-Control: public, max-age=514464
Expires: Wed, 15 May 2024 07:35:56 GMT
Date: Thu, 09 May 2024 08:41:32 GMT
Connection: keep-alive

cdn.cs2pattern.shop/api/market/is_logged

172.67.132.228

200 OK

0 B

URL POST HTTP/3
cdn.cs2pattern.shop/api/market/is_logged
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /api/market/is_logged HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-requested-with
Referer: https://cs2pattern.shop/
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:32 GMT
content-length: 0
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: x-requested-with
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KOXRe%2FynJYASR02X0cUPjdYNp0gsOY8UlVlnlLKM5szYjjibmPkK6IDwNKrNMWz6eSPz04c%2FjN%2Fpv%2BmYItCpf5qp4fQSYq9CpZyO%2Fp9UBjBMz6efOdmxw1gF1ds8yMCIaXMSqrm3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641a3d6c56bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/fonts/Gilroy-Medium.7d5dc17.woff

172.67.132.228

200 OK

66 B

URL GET HTTP/3
cdn.cs2pattern.shop/fonts/Gilroy-Medium.7d5dc17.woff
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
Unicode text, UTF-8 text, with no line terminators
Size
66 B (66 bytes)
Hash
f26a207fe25c8e23046f09e6539170a4
38e8e3c6d1d6a0238804d61643cdb2fd26780512
1e63c193bbc66b75d1c8328a16f9d7837064c3b277f584390149ff4cf5fd5968

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/Gilroy-Medium.7d5dc17.woff HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:32 GMT
content-type: font/woff
content-length: 66
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:57 GMT
etag: W/"42-18d1cb7b22b"
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qmB8DbkxIZKQgyBEZiSR39N3Pw0XRaHFbWoZaqv1xBpcbYpRvC8dnIed%2FQAJ84S5JxV%2Ftm80cUWrZSlloIHzpbHz5T0Bkq6MsoI%2FDLfwEDYMEHyjYWm8Vb%2B7fykn1Oh1%2F98qPifi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810641a2d5a56bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/api/market/filters_data?game=csgo

172.67.132.228

200 OK

0 B

URL GET HTTP/3
cdn.cs2pattern.shop/api/market/filters_data?game=csgo
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /api/market/filters_data?game=csgo HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-requested-with
Referer: https://cs2pattern.shop/
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:32 GMT
content-length: 0
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: x-requested-with
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AFQHzwX8VMhG%2F351EusAsnK3U7A1VDkNW%2FwXoriWAh7W4i3TKhj%2BCmTqUL5c5Z%2BVsVt1g%2FzFS8DJPLfz4SwEDotLNNsP%2FUHltdSAOZDwAzHdeINSnnqrAVclLjn0imCB5l8Ayimq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641a3d7556bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/api/market/filters_data?game=csgo

172.67.132.228

200 OK

0 B

URL GET HTTP/3
cdn.cs2pattern.shop/api/market/filters_data?game=csgo
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /api/market/filters_data?game=csgo HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-requested-with
Referer: https://cs2pattern.shop/
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:32 GMT
content-length: 0
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: x-requested-with
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jaDPhpGo2V42bqtkAur4I0ymDcaa3M4O16lsm%2FPfG8jdQyUCnXLk7GcwtomzOUPCRNhPVkTpwAFTdVFnR7oa2u4PyEZnMxDCTeM%2BkFp0bKyTwFX8Y%2FXk8xnwtaYg22HxWzO4C7Y%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641a3d7656bd-OSL
alt-svc: h3=":443"; ma=86400

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhhwszHeDFH6OO6nYeDg7mtYbiJkjoDvcAlj7yVotmtjAfjrkpoZW36IoaWclM3MFnY8lK9k-vnm9bi67lSw9Es/300x300

95.101.11.9

200 OK

40 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhhwszHeDFH6OO6nYeDg7mtYbiJkjoDvcAlj7yVotmtjAfjrkpoZW36IoaWclM3MFnY8lK9k-vnm9bi67lSw9Es/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
40 kB (40266 bytes)
Hash
6dc432115f08b20cda0e92bd58fa9338
241adc09fbdba24573da7a6b60692af6cb310237
71e54bd9a5dc9e2325e158c737f71de4ef0a8d73944d8f77497b8f2867ed8868

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhhwszHeDFH6OO6nYeDg7mtYbiJkjoDvcAlj7yVotmtjAfjrkpoZW36IoaWclM3MFnY8lK9k-vnm9bi67lSw9Es/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Mon, 10 Mar 2014 01:16:13 GMT
Content-Length: 40266
Cache-Control: public, max-age=197787
Expires: Sat, 11 May 2024 15:37:59 GMT
Date: Thu, 09 May 2024 08:41:32 GMT
Connection: keep-alive

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXQ9Q1LO5kNoBhSQl-fSPSoxc7HWlJ6GhJWuL2wKhVk7OPJYi4MuNi0ktLckaWjMOiDlG4HscR03b3HpN_z3lW1qkFsNzj2JtfAegc8Z0aQpAafPP635w/300x300

95.101.11.9

200 OK

37 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXQ9Q1LO5kNoBhSQl-fSPSoxc7HWlJ6GhJWuL2wKhVk7OPJYi4MuNi0ktLckaWjMOiDlG4HscR03b3HpN_z3lW1qkFsNzj2JtfAegc8Z0aQpAafPP635w/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 256 x 192, 8-bit/color RGBA, non-interlaced
Size
37 kB (37321 bytes)
Hash
3a8dc0d8d672f0cc29ac9fb5b68d3bcd
6155271f39ceddf6537708d0d6839a9408904a79
b916b03da0a4cd6e72140d9121d5751ece69202948007a304ba4f54f311c3e27

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXQ9Q1LO5kNoBhSQl-fSPSoxc7HWlJ6GhJWuL2wKhVk7OPJYi4MuNi0ktLckaWjMOiDlG4HscR03b3HpN_z3lW1qkFsNzj2JtfAegc8Z0aQpAafPP635w/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Wed, 12 Nov 2014 05:01:47 GMT
Content-Length: 37321
Cache-Control: public, max-age=211067
Expires: Sat, 11 May 2024 19:19:19 GMT
Date: Thu, 09 May 2024 08:41:32 GMT
Connection: keep-alive

cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Regular.ae5e725.ttf

172.67.132.228

404 Not Found

193 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Regular.ae5e725.ttf
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text
Size
193 B (193 bytes)
Hash
ee42f22406e7834c8227cabdd208f81d
ebd5a77d46667119ef402b5d2eb297a1840fb26d
24708bd99cc7978b8ad4e3af5959933000660571b7642b83a17b571d66ed691b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/fonts/Gilroy-Regular.ae5e725.ttf HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0yG%2F%2B65FL8FOrgVEBelq0FpCvrSgwDdqYC9XdFBUY3QnolsjimilU1npRcbKi1AGfPlmnhwedJIqrtSA4RDbMaDI%2FGte5EDwYbBB%2FZoJkuUNST6ZL9xuDswrwqvj5T8Amf5he7to"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641b4ede56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot6-iFAZt7PHEfjJP0966gYW0mvLwOq7c2GoD650g0ruU8Nmt2Ae3-xdvaj37LIGXdAQ8MAzT81W7ybvphMO9uJTXiSw0o5KZUQE/300x300

95.101.11.9

200 OK

50 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot6-iFAZt7PHEfjJP0966gYW0mvLwOq7c2GoD650g0ruU8Nmt2Ae3-xdvaj37LIGXdAQ8MAzT81W7ybvphMO9uJTXiSw0o5KZUQE/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
50 kB (49961 bytes)
Hash
a6fce9f5beefd7e1ade85b548f506233
5e47201c73e2a7245628ab91946bd41054297106
169ad866a153d58ab4a2c090e9f8d27a0be588cf9c1f9eb18385e9a4f96ea362

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot6-iFAZt7PHEfjJP0966gYW0mvLwOq7c2GoD650g0ruU8Nmt2Ae3-xdvaj37LIGXdAQ8MAzT81W7ybvphMO9uJTXiSw0o5KZUQE/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Mon, 18 Nov 2019 23:12:20 GMT
Content-Length: 49961
Cache-Control: public, max-age=604697
Expires: Thu, 16 May 2024 08:39:49 GMT
Date: Thu, 09 May 2024 08:41:32 GMT
Connection: keep-alive

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot621FAR17PLfYQJK7dK4jYG0mvLwOq7c2GhUvJIo2r2Zp9Wi3VGy-0VuYG3xIYLGewBqY1HY_Vjvxe7p1sftvJ_XiSw0jc8Fyyg/300x300

95.101.11.9

200 OK

53 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot621FAR17PLfYQJK7dK4jYG0mvLwOq7c2GhUvJIo2r2Zp9Wi3VGy-0VuYG3xIYLGewBqY1HY_Vjvxe7p1sftvJ_XiSw0jc8Fyyg/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
53 kB (52826 bytes)
Hash
b7c12a4c2b26e3aab03ed4c89bdcd07f
95445fa6b538116fadaadda22637dbb846eb77fe
06ae32a4f6fba4c48c1c43e0eae3437669ba6f6af39977ba9aac678cc1a8c8eb

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot621FAR17PLfYQJK7dK4jYG0mvLwOq7c2GhUvJIo2r2Zp9Wi3VGy-0VuYG3xIYLGewBqY1HY_Vjvxe7p1sftvJ_XiSw0jc8Fyyg/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Tue, 07 Jan 2020 00:31:54 GMT
Content-Length: 52826
Cache-Control: public, max-age=604796
Expires: Thu, 16 May 2024 08:41:28 GMT
Date: Thu, 09 May 2024 08:41:32 GMT
Connection: keep-alive

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszfdDFO08iklZaOm_LwDLrawjxu5cB1g_zMu4is2FDnrxBoZGz2JYOcdVc6MwuDrlPqxO_rjZPtvZ3AzHY3viQq5S3D30vg5o4KWoA/300x300

95.101.11.9

200 OK

38 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszfdDFO08iklZaOm_LwDLrawjxu5cB1g_zMu4is2FDnrxBoZGz2JYOcdVc6MwuDrlPqxO_rjZPtvZ3AzHY3viQq5S3D30vg5o4KWoA/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
38 kB (37781 bytes)
Hash
a014225c4dc918ec660745471de0edee
70ba7585008195c2ddee6a890b38f763ac2bfb68
41e860e153a1ba7849b9cee5a1cb36605e72db54e5fd5b108ce82870cf91181e

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszfdDFO08iklZaOm_LwDLrawjxu5cB1g_zMu4is2FDnrxBoZGz2JYOcdVc6MwuDrlPqxO_rjZPtvZ3AzHY3viQq5S3D30vg5o4KWoA/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Wed, 02 Jul 2014 00:11:15 GMT
Content-Length: 37781
Cache-Control: public, max-age=604800
Expires: Thu, 16 May 2024 08:41:32 GMT
Date: Thu, 09 May 2024 08:41:32 GMT
Connection: keep-alive

cdn.cs2pattern.shop/_nuxt/img/reset.502a6d6.svg

172.67.132.228

404 Not Found

187 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/reset.502a6d6.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text
Size
187 B (187 bytes)
Hash
79687328b67a3d5ce835b9e625a64d9a
c02816bfc1bf7bdfec979c9b1cd918accccdf5c3
7b224327282b3f7bc552f0c2b83d9afd0bfef21588b6960886db7742d92baa7b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/reset.502a6d6.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/_nuxt/app.9e3d460.css
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SmmjJENFnpYU7MOFUwxt1ovbzH2kghR8RU7zgNeA8pb8f7IocmTdmeI1HKKeiRP0nmo7DuGo1n6JnK8vPlHjgEltdAh1he47N5GLPhMchhSJq9t7%2FfMMVshfGFcirWpjlpxK%2FlmT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641a1d4d56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/fonts/Gilroy-SemiBold.989947b.woff

172.67.132.228

200 OK

66 B

URL GET HTTP/3
cdn.cs2pattern.shop/fonts/Gilroy-SemiBold.989947b.woff
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
Unicode text, UTF-8 text, with no line terminators
Size
66 B (66 bytes)
Hash
f26a207fe25c8e23046f09e6539170a4
38e8e3c6d1d6a0238804d61643cdb2fd26780512
1e63c193bbc66b75d1c8328a16f9d7837064c3b277f584390149ff4cf5fd5968

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/Gilroy-SemiBold.989947b.woff HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:32 GMT
content-type: font/woff
content-length: 66
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:56 GMT
etag: W/"42-18d1cb7add3"
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WTyTY04M1tGoaC7BLc%2BnWI0UJkTnXOfGrxq7y%2BIlwiKzLuDW724CmsEmWdDoIPRia%2FDMpsbW4ZNY7h%2FY%2BQ9mFFQRGIU%2Fkk4DB%2Ffj1ZE67Z2GP2mtFfveUMcklMKBSdIO1U0%2Fo13z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810641c181856bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/fonts/Gilroy-Bold.32750b0.woff

172.67.132.228

200 OK

66 B

URL GET HTTP/3
cdn.cs2pattern.shop/fonts/Gilroy-Bold.32750b0.woff
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
Unicode text, UTF-8 text, with no line terminators
Size
66 B (66 bytes)
Hash
f26a207fe25c8e23046f09e6539170a4
38e8e3c6d1d6a0238804d61643cdb2fd26780512
1e63c193bbc66b75d1c8328a16f9d7837064c3b277f584390149ff4cf5fd5968

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/Gilroy-Bold.32750b0.woff HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:33 GMT
content-type: font/woff
content-length: 66
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:57 GMT
etag: W/"42-18d1cb7b4b3"
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XFUEJAThIXcdLS%2B34sN1%2B9e%2FJvOokgqwt2dGKLyiseY3m7Qn%2FgcuiTv9zTIMF8OF1VZxOBgcOGsg2nZwoBrX%2Bei8hYYvNKqA8vaeJqr%2FBp2DKk%2BVtwqPN%2F%2BlNgBDssnrmIPBD5dc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810641d398c56bd-OSL
alt-svc: h3=":443"; ma=86400

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgposr-kLAtl7PLFTi5H7c-im5KGqOT8PLHeqWZU7Mxkh6fFrNvz2wSxqkFsYmn7JI6UdVdtNAzV-gO3wejohsDtvZjJwSdi7CF3-z-DyLUt0c7y/300x300

95.101.11.9

200 OK

44 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgposr-kLAtl7PLFTi5H7c-im5KGqOT8PLHeqWZU7Mxkh6fFrNvz2wSxqkFsYmn7JI6UdVdtNAzV-gO3wejohsDtvZjJwSdi7CF3-z-DyLUt0c7y/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
44 kB (43645 bytes)
Hash
0a2e27d0e69007647d6b4e1c0e5a0e56
5fa20b5260e7126e5d9c2629bf65107f17a9a319
7aac12c71cf6e8bd6759b37f16c4056ea6828551ed6ae4ce1967a46a3e29274b

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgposr-kLAtl7PLFTi5H7c-im5KGqOT8PLHeqWZU7Mxkh6fFrNvz2wSxqkFsYmn7JI6UdVdtNAzV-gO3wejohsDtvZjJwSdi7CF3-z-DyLUt0c7y/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Wed, 27 May 2015 00:08:40 GMT
Content-Length: 43645
Cache-Control: public, max-age=604800
Expires: Thu, 16 May 2024 08:41:32 GMT
Date: Thu, 09 May 2024 08:41:32 GMT
Connection: keep-alive

cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Medium.7d5dc17.woff

172.67.132.228

404 Not Found

243 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Medium.7d5dc17.woff
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, Unicode text, UTF-8 text
Size
243 B (243 bytes)
Hash
2d11f3a963a0ac234883d3fbd1568fe6
ae76a0c05d299a70ae14134c07034cc4f80b0882
6badeddf0b431f24dd1592ed164d7bf7fbc244e1da5ad9a4407b1d8b64377d29

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/fonts/Gilroy-Medium.7d5dc17.woff HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 2
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Jd8CDOXelwYVhdszc1PdN%2F8b5ZH34rlQsDy2WXXwkRj%2FlI6n9eZQkEEuiToa%2Fgf7i7rZtqZupCFC7X6zR6WUT8IDG4NyJDbSVFObZtbtma2cYfJ9b3lM3MgjeYtgBm25abTftiiF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641cf94156bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/src/assets/sounds/no_sound.wav

172.67.132.228

404 Not Found

241 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/src/assets/sounds/no_sound.wav
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, Unicode text, UTF-8 text
Size
241 B (241 bytes)
Hash
ad04bba3df052ad4d4e647929ee17fcb
9c1f031923895cf149f95d54f0cdbe1f22f85c49
5013cb7d73fbfc1bd56a82998bc7620f082ced7c47a43cccac17eaa9d5ecb3c8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/src/assets/sounds/no_sound.wav HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
vary: Origin
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D7BUr1XllzvN%2BSJZo8%2FeDuZq6bVl2plhGd1RIhpg01xU%2BmJH5IV1HVey3VzXHFaYmqS%2BT7lWp2mNeEnIqWcsUPBg5XUv5uTeL0RDFUKLe6n7XSW4OQ7acOMnwSpIYg8Rk%2F8tVgqO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641a2d6356bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/fonts/Gilroy-SemiBold.989947b.woff

172.67.132.228

200 OK

66 B

URL GET HTTP/3
cdn.cs2pattern.shop/fonts/Gilroy-SemiBold.989947b.woff
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
Unicode text, UTF-8 text, with no line terminators
Size
66 B (66 bytes)
Hash
f26a207fe25c8e23046f09e6539170a4
38e8e3c6d1d6a0238804d61643cdb2fd26780512
1e63c193bbc66b75d1c8328a16f9d7837064c3b277f584390149ff4cf5fd5968

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/Gilroy-SemiBold.989947b.woff HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:33 GMT
content-type: font/woff
content-length: 66
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:56 GMT
etag: W/"42-18d1cb7add3"
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QaRdY3us61AttCaN6NMWzbtn9q9vBdL9Q4qgb0FRo00iNHLgfJJrdLuZXWn4SzBOxeFw%2FZog6YZgWvio7w2fb%2FSOq%2FNpPIWfiRgLIQZM0sMFzWHcZ%2BkmsrofhWaAH7OIMNlUYLVh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810641d79e956bd-OSL
alt-svc: h3=":443"; ma=86400

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhnwMzFJTwW0863q4yCkP_gfeyExTpU65Iij-yTpYj0iw3nrUNqa2r3JoCUdAM3aA3U8lG2l7zngJai_MOe3BuwF0w/300x300

95.101.11.9

200 OK

50 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhnwMzFJTwW0863q4yCkP_gfeyExTpU65Iij-yTpYj0iw3nrUNqa2r3JoCUdAM3aA3U8lG2l7zngJai_MOe3BuwF0w/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
50 kB (50322 bytes)
Hash
cc3b56dfbc7de540ff73d59c8cdb802d
a96a79c922af7e75bbfbd67481585138e911aab8
26802acd4c0a81bd5fb8b00905bf492ac9a4a04cb39a3701b9d1c3b7d4b3270e

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhnwMzFJTwW0863q4yCkP_gfeyExTpU65Iij-yTpYj0iw3nrUNqa2r3JoCUdAM3aA3U8lG2l7zngJai_MOe3BuwF0w/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Tue, 25 Apr 2023 00:34:26 GMT
Content-Length: 50322
Cache-Control: public, max-age=604800
Expires: Thu, 16 May 2024 08:41:32 GMT
Date: Thu, 09 May 2024 08:41:32 GMT
Connection: keep-alive

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszJemkV092lnYmGmOHLP7LWnn8fvpMkjOqS99Smiwzk_0VvamH0LIHEdwFqYw2G_QC3lefsjZS4uJXLyWwj5HclxVTx0A/300x300

95.101.11.9

200 OK

40 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszJemkV092lnYmGmOHLP7LWnn8fvpMkjOqS99Smiwzk_0VvamH0LIHEdwFqYw2G_QC3lefsjZS4uJXLyWwj5HclxVTx0A/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
40 kB (40366 bytes)
Hash
e1c44e88b16915731a9317f50c88e1f7
0fc3a294e4de57b3b04f1e61e5f3be833fe3f4c4
83df3045ab5cbd3949afa622d46fe878a77314816467cb787ad4bed020658820

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszJemkV092lnYmGmOHLP7LWnn8fvpMkjOqS99Smiwzk_0VvamH0LIHEdwFqYw2G_QC3lefsjZS4uJXLyWwj5HclxVTx0A/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Thu, 06 Dec 2018 21:17:20 GMT
Content-Length: 40366
Cache-Control: public, max-age=604800
Expires: Thu, 16 May 2024 08:41:33 GMT
Date: Thu, 09 May 2024 08:41:33 GMT
Connection: keep-alive

cdn.cs2pattern.shop/_nuxt/img/refresh.0f66f80.svg

172.67.132.228

404 Not Found

297 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/refresh.0f66f80.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text
Size
297 B (297 bytes)
Hash
0f11d1b51d859f4122de3c720d1032b7
9fd6bcdd1ca4e663d993cf69c205df270b54fc80
3d176a059c1de389417490965a26d737398c43d59e7bb19c708565ee857c4919

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/refresh.0f66f80.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/_nuxt/app.9e3d460.css
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V%2BzbprtKAhkq4Xd9M3rxelsvCPZolq%2BRw8vU3jH03BzmGzWfygjp2wlQaIiJF3wl7xzDBOODzRj8VUlUxAAg5VYz2eMEtIO1UPQxeKCkBBc5MUoPH206bnrtAm33Dvt4jPYR8gx0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641a1d5356bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/api/market/get_items?types=[]&exteriors=[]&rarities=[]&collections=[]&item_subcategories=[]&float=%7B%22from%22:0,%22to%22:1%7D&price_from=0&price_to=26807.54&game=csgo&stickers=[]&count_stickers=[]&short_name=&search=&stack=false&sort=desc&sort_column=price_rate&limit=50&offset=0

172.67.132.228

200 OK

0 B

URL OPTIONS HTTP/3
cdn.cs2pattern.shop/api/market/get_items?types=[]&exteriors=[]&rarities=[]&collections=[]&item_subcategories=[]&float=%7B%22from%22:0,%22to%22:1%7D&price_from=0&price_to=26807.54&game=csgo&stickers=[]&count_stickers=[]&short_name=&search=&stack=false&sort=desc&sort_column=price_rate&limit=50&offset=0
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /api/market/get_items?types=[]&exteriors=[]&rarities=[]&collections=[]&item_subcategories=[]&float=%7B%22from%22:0,%22to%22:1%7D&price_from=0&price_to=26807.54&game=csgo&stickers=[]&count_stickers=[]&short_name=&search=&stack=false&sort=desc&sort_column=price_rate&limit=50&offset=0 HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-requested-with
Referer: https://cs2pattern.shop/
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:35 GMT
content-length: 0
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: x-requested-with
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XhoEJpOsfwFDwCXjsuBI07X9eF6SEeeKSksXgvtx5xuN2wrOwintmdX3MCC0IHFORE1FqH6QH4kb82GEwlZNV0Ie4siT85UBRYrXumvsl%2Fun0xqje9DI%2FgjluEou2QYXRZNX5RWb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810642acef156bd-OSL
alt-svc: h3=":443"; ma=86400

172.67.132.228

200 OK

0 B

URL OPTIONS HTTP/3
cdn.cs2pattern.shop/api/market/get_items?types=[]&exteriors=[]&rarities=[]&collections=[]&item_subcategories=[]&float=%7B%22from%22:0,%22to%22:1%7D&price_from=0&price_to=26807.54&game=csgo&stickers=[]&count_stickers=[]&short_name=&search=&stack=false&sort=desc&sort_column=price_rate&limit=50&offset=0
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /api/market/get_items?types=[]&exteriors=[]&rarities=[]&collections=[]&item_subcategories=[]&float=%7B%22from%22:0,%22to%22:1%7D&price_from=0&price_to=26807.54&game=csgo&stickers=[]&count_stickers=[]&short_name=&search=&stack=false&sort=desc&sort_column=price_rate&limit=50&offset=0 HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-requested-with
Referer: https://cs2pattern.shop/
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:35 GMT
content-length: 0
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: x-requested-with
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MdUBbQsflY8gzvP0lNky1XogUBaHdaCcfgYc%2F5lIfJ4iB5r9qhSFsdkFOYce%2Fl3b12Q2HX80MPWdgl9i%2Bf%2B1AKo8gKkZHfP4q0sOodiCRtF39Gczj0ZJTjiXCfVgKDoNpNcfOroe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810642b4fc356bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/img/price-icon.57e9653.svg

172.67.132.228

404 Not Found

123 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/price-icon.57e9653.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text
Size
123 B (123 bytes)
Hash
748e5ea4afa377d4883227a308d36670
debd9359a42dd28dc9e259ea502ca28447f70d83
f140bdf779e326807e4c6d6709d11e384f49f2639ba0b377ac2544407dbce1b4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/price-icon.57e9653.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/_nuxt/app.9e3d460.css
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1jasBinS4uaJGRwJZHD%2FjkkwtIOKkXGER6Rxu0K0nv26gTBVSDHJE7fimuROioSUFUiwxnY%2FnBAG50beV4N2f3Cl3CTDZRHTXSwBhWnWv5ljgC2UrmgXpxVxiOvmyrEXjCJj6KSR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641a1d4f56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszOeC9H_9mkhIWFg8j1OO-GqWlD6dN-teXI8oTht1i1uRQ5fWDwLYbAdVBqYVHRrwC2kO7rhpLq6J_IzXE2unFxs3-JmkG200ofZ-JxxavJKZiOt4k/300x300

95.101.11.9

200 OK

40 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszOeC9H_9mkhIWFg8j1OO-GqWlD6dN-teXI8oTht1i1uRQ5fWDwLYbAdVBqYVHRrwC2kO7rhpLq6J_IzXE2unFxs3-JmkG200ofZ-JxxavJKZiOt4k/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
40 kB (39542 bytes)
Hash
76ca7d67236cd060a54d7aa81a6845e9
fd4b3e40dadc4414e136e3f548f0f620d1237321
9e38e586411938121b9272b0f138445520f44990a75c2680fef4c6cba99e3441

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszOeC9H_9mkhIWFg8j1OO-GqWlD6dN-teXI8oTht1i1uRQ5fWDwLYbAdVBqYVHRrwC2kO7rhpLq6J_IzXE2unFxs3-JmkG200ofZ-JxxavJKZiOt4k/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Mon, 10 Mar 2014 01:16:14 GMT
Content-Length: 39542
Cache-Control: public, max-age=477170
Expires: Tue, 14 May 2024 21:14:26 GMT
Date: Thu, 09 May 2024 08:41:36 GMT
Connection: keep-alive

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpovbSsLQJfwPjNfThW49KJnJm0gPL2IITck29Y_chOhujT8om72wTgrRc-NW77LIORdwQ3ZFqC_lDvlLju1pW46pyaznIwsigi53ramAv3308KnuXxRA/300x300

95.101.11.9

200 OK

23 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpovbSsLQJfwPjNfThW49KJnJm0gPL2IITck29Y_chOhujT8om72wTgrRc-NW77LIORdwQ3ZFqC_lDvlLju1pW46pyaznIwsigi53ramAv3308KnuXxRA/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
23 kB (22867 bytes)
Hash
92939bcae305803ab14f47cdb9d05d58
0aeb60e54958deb03701a0051f2c23b7719b2d2a
846ae8c8ecd743b55dece4fd9c78bdc180c8421eeb62d7d6bd0141d2f366b394

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpovbSsLQJfwPjNfThW49KJnJm0gPL2IITck29Y_chOhujT8om72wTgrRc-NW77LIORdwQ3ZFqC_lDvlLju1pW46pyaznIwsigi53ramAv3308KnuXxRA/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Last-Modified: Mon, 18 Nov 2019 23:12:38 GMT
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Content-Length: 22867
Cache-Control: public, max-age=197727
Expires: Sat, 11 May 2024 15:37:03 GMT
Date: Thu, 09 May 2024 08:41:36 GMT
Connection: keep-alive

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpovbSsLQJfxPrMfipP7dezhr-KlsjyMr_UqWdY781lteXA54vwxgHgqEE_a23ycYKRIwQ5aA3Q-lC2xu25jZbqtZXOwXpmvSgity3cmhOpwUYbp5WcBYw/300x300

95.101.11.9

200 OK

40 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpovbSsLQJfxPrMfipP7dezhr-KlsjyMr_UqWdY781lteXA54vwxgHgqEE_a23ycYKRIwQ5aA3Q-lC2xu25jZbqtZXOwXpmvSgity3cmhOpwUYbp5WcBYw/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
40 kB (40393 bytes)
Hash
1cc648f950e4feb9358a1d8d767ef90b
547875d3756b0b4dc6db9ec360580235202a9263
8ddc77876559c050e06debb4000cc0f8800690a861cdad08ab7b9d5e192daa97

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpovbSsLQJfxPrMfipP7dezhr-KlsjyMr_UqWdY781lteXA54vwxgHgqEE_a23ycYKRIwQ5aA3Q-lC2xu25jZbqtZXOwXpmvSgity3cmhOpwUYbp5WcBYw/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Fri, 03 Aug 2018 00:14:44 GMT
Content-Length: 40393
Cache-Control: public, max-age=27941
Expires: Thu, 09 May 2024 16:27:17 GMT
Date: Thu, 09 May 2024 08:41:36 GMT
Connection: keep-alive

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXU5A1PIYQh5hlcX0nvUOGsx8DdQBJjIAVHubSaIAlp1fb3fGR97t2vm46Og7mlMu6ExzsI7ZVy0rGWrN7w3VDh_RY9Y22nd4fDdAE4NFzUrFjqlL3tm9bi6x2aUKuH/300x300

95.101.11.9

200 OK

41 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXU5A1PIYQh5hlcX0nvUOGsx8DdQBJjIAVHubSaIAlp1fb3fGR97t2vm46Og7mlMu6ExzsI7ZVy0rGWrN7w3VDh_RY9Y22nd4fDdAE4NFzUrFjqlL3tm9bi6x2aUKuH/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
41 kB (40655 bytes)
Hash
c7fe5ff9773dbdb21f5457fde282d5ec
a7af4fd530a54b9c48ad8ab7ddfb74f6ff73ecda
1a1f58df080f0bb2082ad132be7ff38a00c5d04b33524a862b0697969c39e3a1

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXU5A1PIYQh5hlcX0nvUOGsx8DdQBJjIAVHubSaIAlp1fb3fGR97t2vm46Og7mlMu6ExzsI7ZVy0rGWrN7w3VDh_RY9Y22nd4fDdAE4NFzUrFjqlL3tm9bi6x2aUKuH/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Mon, 10 Mar 2014 01:18:45 GMT
Content-Length: 40655
Cache-Control: public, max-age=27955
Expires: Thu, 09 May 2024 16:27:31 GMT
Date: Thu, 09 May 2024 08:41:36 GMT
Connection: keep-alive

cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-SemiBold.989947b.woff

172.67.132.228

404 Not Found

179 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-SemiBold.989947b.woff
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text, with no line terminators
Size
179 B (179 bytes)
Hash
fd38c16845561dea7f337cb6e6f58875
d8107f21d3398a51dbeae012712850bf13b1d7f2
450f13542b406531786684881404968493edd14241d0aa409b5e83e817ae7f69

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/fonts/Gilroy-SemiBold.989947b.woff HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=quVx50yRPgX%2FJzpR9uANTG2QXPcicyjRmgbmTxFlXPHXC34yX%2BA3hB5uMGZRjX4JGqcFMIWIy5EW1AeAqLama0oANh5JKUylhUC55dcLr8y0Wm4V3XyegEKPTl2xaoKg0Yi7jiVf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641a2d5c56bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/images/header-bg.fc90164.png

172.67.132.228

200 OK

8.2 kB

URL GET HTTP/3
cdn.cs2pattern.shop/images/header-bg.fc90164.png
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
PNG image data, 1440 x 90, 8-bit colormap, non-interlaced
Size
8.2 kB (8220 bytes)
Hash
ddedf566d8a003360a75ac3a9babaa9d
8da0fba4778dddb4197c6d38a5f49ccc0f36bdca
7c344be226b09efdcc51a933c35d23555c5e085ee83dc06cdde94d86a67451d9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/header-bg.fc90164.png HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/css/app.9e3d460.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:29 GMT
content-type: image/png
content-length: 8220
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:45 GMT
etag: W/"201c-18d1cb782b3"
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TYcHAISXrhMP5Qy2Q5dqSgbxhn8swBxJLpDip2rvxzQnfiFnzE4l6Q%2FgUpk2K%2FV%2BL9D%2BsA3H8D%2BEcs%2FWbXUY7zzlhnZrWuxCsIKqSZEDtruobImCbxtUoMIalvGmFlAPSDQ1AgSI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881064097bb956bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/fonts/Gilroy-Regular.8e8705d.woff

172.67.132.228

200 OK

66 B

URL GET HTTP/3
cdn.cs2pattern.shop/fonts/Gilroy-Regular.8e8705d.woff
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
66 B (66 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/Gilroy-Regular.8e8705d.woff HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:33 GMT
content-type: font/woff
content-length: 66
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:56 GMT
etag: W/"42-18d1cb7b053"
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FcFWiDFyTFNlKTsyD6B1wEHb2ZkqUgwLHrd3I4CUcm4LKBCZSBq9qennKdJNq0wunm8qEiOMym3RYVuA2T%2FcK4hlLI7RC9KwjecC82oVrERWjMm8Qxlz%2FVnOtJBsLmlL8pJZfIE5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810641d69d656bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/ws

172.67.132.228

101 Switching Protocols

0 B

URL GET HTTP/1.1
cdn.cs2pattern.shop/ws
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ws HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://cs2pattern.shop
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: W5S3/g7XPuc33HdZdYXcSg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Thu, 09 May 2024 08:41:30 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: pfL4OebXLNjo4+v+anUz36BJvH8=
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FBZPK%2BHdSb0PgVBlVCTWJ2rDs3ukDeTPALinozQH6VRuJr8EUun46lneiaJS69Mp1sHRFlFxn%2BISYDJ5qy5B7nk3UUAkbahgml9tKGHvKVzxrefRKHOGZyUct9oD3rkkivdJM4yN"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8810640ffbb30b45-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/fonts/Gilroy-Bold.3cf0ee2.ttf

172.67.132.228

200 OK

66 B

URL GET HTTP/3
cdn.cs2pattern.shop/fonts/Gilroy-Bold.3cf0ee2.ttf
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
66 B (66 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/Gilroy-Bold.3cf0ee2.ttf HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:32 GMT
content-type: font/ttf
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:57 GMT
etag: W/"42-18d1cb7b413"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DkV0y6VwmyQ1sSLHWXIFctcbhWOkI%2F1vQmtuM%2F7%2BZMbSl98w0Zzy0j2yov%2BjM3gnlwrR9FuRkJPQDuhxBpHW%2B4mCXGPhDChielY695JRga5zYT7reGWFo0n2foE8plaHdffckYSo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810641c585b56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/fonts/Gilroy-SemiBold.05bdf30.ttf

172.67.132.228

200 OK

66 B

URL GET HTTP/3
cdn.cs2pattern.shop/fonts/Gilroy-SemiBold.05bdf30.ttf
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
66 B (66 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/Gilroy-SemiBold.05bdf30.ttf HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:33 GMT
content-type: font/ttf
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:56 GMT
etag: W/"42-18d1cb7af0f"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yiH6tACL6aC8kHCYR2FGsQLEQaxWI6rdzOfniMud92ton%2BEjfDrRU8U443zoEPBQHuEy%2BUqzEpqCMea1OdDUSQeeBQ%2Fu1vLRYkKCMqgBxQD0ByKXx2QmjclmUJJMInSgsjbGXLkS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810641cc8f256bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/c5c08c6.js

172.67.132.228

200 OK

1.6 MB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/c5c08c6.js
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
1.6 MB (1586153 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/c5c08c6.js HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:29 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sun, 21 Jan 2024 05:28:59 GMT
etag: W/"1833e9-18d2a7e57ec"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NjrE3rEiRTOHl8U%2FPmmj%2BCdIffkOXF%2FIxSGrsJ8OgMBcM6cgw78WgCLDNr6YoF2otlaYB4CFRwgxKycIHo8wPa10D2vjnQEB9W4eMx4ovHZ692QuAyuxGZLsxXKqOiQXke24%2FGlV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88106409cc2656bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/fonts/Gilroy-Regular.8e8705d.woff

172.67.132.228

200 OK

66 B

URL GET HTTP/3
cdn.cs2pattern.shop/fonts/Gilroy-Regular.8e8705d.woff
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
66 B (66 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/Gilroy-Regular.8e8705d.woff HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:32 GMT
content-type: font/woff
content-length: 66
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:56 GMT
etag: W/"42-18d1cb7b053"
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WqLtnks8N%2BxmMZFTOkAqVXd1dISw8BcG2GjaPYm%2BinGauP2LeX0QOuHJ5lpyYfu5nvrmYVULbia%2BaTpk6tX%2FGQOPZuyAGhkgpJX9QXulm7TYCoB%2FLW7IslNKEHIMEfMqhZa%2BSc9K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810641c181c56bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Medium.6444f14.ttf

172.67.132.228

404 Not Found

176 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Medium.6444f14.ttf
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text, with no line terminators
Size
176 B (176 bytes)
Hash
ebd0fa58a0b08eda0a156b3e88b25eeb
cee4fa7f037009f79ac5633b5737256f746f5c68
7bbc45e6e408cd65080189fe622994f31daf6829185b33ec9c26efe80cad568c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/fonts/Gilroy-Medium.6444f14.ttf HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:33 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B5c4YcT7knFwLysZUZzLkkCaCvhm5wByz%2FhLyH0jIrbG9uzNyx6neY9Wf6q60WBByidRRxOMfq2V5DLAJ1UnkjlO7AA6R9f5qEGzl9E6Oy6%2B%2B86EWm1wNQHv7WU7OErxHw6qBLU8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641d499e56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/img/users.e0e5135.svg

172.67.132.228

200 OK

1.0 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/users.e0e5135.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
SVG Scalable Vector Graphics image
Size
1.0 kB (1005 bytes)
Hash
d00046bec9f0b508f3dc82813e23087b
7761267e1184307f021ad21b66260621195fd396
3ce939ef48784ff3b2315a7716845a5e3b59ed6e19a3c8887074a9954b55b952

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/users.e0e5135.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:31 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:59 GMT
etag: W/"3ed-18d1cb7bad3"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Xn4TDU77HIglaLAnLGH%2B5%2Bu6xMbIJ%2F1txGT68%2Byxd3pgMDxKxCVWrR0eVHbSqY7Ru9qrb5zuURUzk5AoTxlawV9xKy0T5gAZ3mJEeElNQx%2Bn%2F46DNpwILD%2FrlWAsqGK8Pz0zEENV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88106413db3f56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/img/twitter.58067a9.svg

172.67.132.228

200 OK

688 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/twitter.58067a9.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
SVG Scalable Vector Graphics image
Size
688 B (688 bytes)
Hash
39eeb69581fd44118e8a7d1cb44e385e
fde2f1fe1d8f23162844312c4e80c1fa2017c868
b3b5e5b3aeda3384a0864d98d3438a3c29c6cdbce7bd1833212d368178066fd4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/twitter.58067a9.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:31 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:59 GMT
etag: W/"2b0-18d1cb7bb73"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ailr9VsLibcXEUbJXObNQQ6vqUxXIHRkKYLr%2FFMuiKWqhNmPpH3F9wmidMxowIrPlcE6kW2czMQZHa2T%2B%2BM%2BKurk4NjX%2F7DIfewd1p%2FnKQgZP0v8hbonSFprTgk4%2FIch7SjBkAUj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881064147c5d56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/src/assets/sounds/notification.ogg

172.67.132.228

404 Not Found

0 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/src/assets/sounds/notification.ogg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/src/assets/sounds/notification.ogg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xVuWv5SSCWJqXKjOtQ785iDeGlwlHZFSy2BPn61qJkNOh6VqaTtwBkgYCnR5yZdJVhUeZNZzfZQDJaB5wIMIRO%2FrAULkfgtfZf1t4wbJcbU7Ux9A6jwXGBK2HV%2Ba6pZdAq9TPcNd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641ade3256bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/img/marketplace-banner.3d00f26.svg

172.67.132.228

200 OK

996 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/marketplace-banner.3d00f26.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
SVG Scalable Vector Graphics image
Size
996 B (996 bytes)
Hash
01a624012b0945260c900b77288c303e
dede75e40e8716ed2bef50b3ae7ebeb2b3edc324
d2c8b54214bbc2bc64bd3accbe3dd594e328916edbc5cef10901f04b04c32587

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/marketplace-banner.3d00f26.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:31 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:02 GMT
etag: W/"3e4-18d1cb7c6f7"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=edW7gw4%2Fve9EjAHVHpNOJxk45NGRbCeCdGDkESO9Yc9Ok0xMgFqlqmufM1MAPKiwVd5xhNnUkRFL7OjQvMxBoB4JS5VL58S9w%2Fh5vOCYYlpv1oeKmwT2TNKR0pCFBaOTejK%2B6E4A"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88106413fb8356bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/src/assets/sounds/notification.mp3

172.67.132.228

404 Not Found

0 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/src/assets/sounds/notification.mp3
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/src/assets/sounds/notification.mp3 HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5FmBE5qECrvZAqkw9f1JW0H9%2FvONVhl3XzjQigcTN5m%2BrcNo2PG4TSy4r3vbriM4wnJHKdW3VYHZgQc5vXfhUt%2FxJkTjjv0hjRA%2FA5CUNfyR6yF2a6cFeGnFbBk0mS94hUx8Da9y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641a3d6856bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Regular.8e8705d.woff

172.67.132.228

404 Not Found

178 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Regular.8e8705d.woff
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text, with no line terminators
Size
178 B (178 bytes)
Hash
89d3aef2ad8e32b7a3f83d627e271f02
65c8bf44461ea226277d7648ca3221897c6d9cf9
7a35dcd3f4151fc66b90ca9ba86a6b33b8b33b1d58debee21bb503da5715a60a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/fonts/Gilroy-Regular.8e8705d.woff HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hu4V31r%2FcpiGQr1a8AfA2cGX2LBfu1G5UyOsaHYhS0JH8owOV3qBixGbLxHetWh95MDeRpwxfyyuXbwuR2QRbK7Xt7NjPM2%2Br7nRRcaKAQhcB4pDWqG4PShwxZ%2BjzfuJGR5JYfyn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641a2d6056bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Bold.32750b0.woff

172.67.132.228

404 Not Found

175 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Bold.32750b0.woff
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text, with no line terminators
Size
175 B (175 bytes)
Hash
af61551148617156e82f00c3830463ee
83ceb3cad7c178e13f03ff6c7ec18babd60764e2
69c36ecb6fb39f250009c70a30e36568d157c2ee85c57d003fd6a194979e94fa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/fonts/Gilroy-Bold.32750b0.woff HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9A%2FBu%2F07Dk0zp8EFvCeh0LQ%2Fh%2FuDTmQVamh%2FsrODVGTQMS3pfDbbtq5PtsW9jG1Nc%2BboF4poFnhxbYDds2NKAamQoxwHi8%2BgBMDV8BMdfR6GuAMyQpvzNpk1HegbR3dbmi2FLiQs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641cf93f56bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Regular.8e8705d.woff

172.67.132.228

404 Not Found

178 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Regular.8e8705d.woff
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text, with no line terminators
Size
178 B (178 bytes)
Hash
89d3aef2ad8e32b7a3f83d627e271f02
65c8bf44461ea226277d7648ca3221897c6d9cf9
7a35dcd3f4151fc66b90ca9ba86a6b33b8b33b1d58debee21bb503da5715a60a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/fonts/Gilroy-Regular.8e8705d.woff HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZwRPPyb17lUbAOiDm0Oh0%2B2T4vfQUBYReiB6Y6fo2HgLQdJhBHZ5WEfm56rRfU4XCmEm%2FvwTNG%2BjNIuze5WGH06pF22w4g4HpNFEG0jjwkxWCdDbY1qjOEZ0lOBdW1qhVXZQYwcp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641d094656bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/img/twitter.8b9ea8f.svg

172.67.132.228

404 Not Found

0 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/twitter.8b9ea8f.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/twitter.8b9ea8f.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:31 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=emqG%2BP92xPY91ltxPvEbUpqfYQ2oieUIOFfYsKltK1xBpQddCgKDsxu3nYR%2Fg6rAcDeW1y381WlWBVbIf2dG2C5BQ2X%2Fxuzp%2BU8Id0LlTrHcFlJIBMHV13CZ9hC4x%2Fafj2pTc4SZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881064142bd856bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszOeC9H_9mkhIWFg8j1OO-GqWlD6dN-teHE9JrsxgDl_BBoYmD6JIbHJwdsYFiDr1K7kLvpjZPvu8nAmHtqvSkm5i6IyxKpwUYbkchkGw4/300x300

95.101.11.9

200 OK

39 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszOeC9H_9mkhIWFg8j1OO-GqWlD6dN-teHE9JrsxgDl_BBoYmD6JIbHJwdsYFiDr1K7kLvpjZPvu8nAmHtqvSkm5i6IyxKpwUYbkchkGw4/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
39 kB (38685 bytes)
Hash
0b867b1edf40de4cda8ac1448112f9bb
9b75a36161ff4491e5e4691e84977a055fdf0bf1
050e4b7adaf5e7005da086b2af1b25534458374e2284fe47bf73ce3a248048b9

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszOeC9H_9mkhIWFg8j1OO-GqWlD6dN-teHE9JrsxgDl_BBoYmD6JIbHJwdsYFiDr1K7kLvpjZPvu8nAmHtqvSkm5i6IyxKpwUYbkchkGw4/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Mon, 10 Mar 2014 01:16:14 GMT
Content-Length: 38685
Cache-Control: public, max-age=532577
Expires: Wed, 15 May 2024 12:37:48 GMT
Date: Thu, 09 May 2024 08:41:31 GMT
Connection: keep-alive

cdn.cs2pattern.shop/_nuxt/img/trade-icon.7ee4e3f.svg

172.67.132.228

404 Not Found

0 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/trade-icon.7ee4e3f.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/trade-icon.7ee4e3f.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/_nuxt/app.9e3d460.css
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ja7LZEmHkZEFMEGTo1hziwzblX8FD3RYKlkCF3AEcMZLSAETUbU9aRBvnrsWOUbBNUZOTbvguBB3pyL2qz83T53lOtAOEzrK8egyKKVMB7Zm1BiZ7gQC%2FSbLEet3nnICXWeErS9y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641a1d4a56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/img/cart-black.adab141.svg

172.67.132.228

404 Not Found

0 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/cart-black.adab141.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/cart-black.adab141.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/_nuxt/app.9e3d460.css
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QhYQB48K5ZcUugIJuXwP9QXJLUMs4lfiRLzstvg0yIFw7CiiP1zm0gQUf3Jaftvf9y0vzlqjQDiK3trHHP8d5f2RRnKC5rHQWQ0ZT05V86esV5yye%2FTb8%2F11C%2B6UojLAFjJFm5xn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641a1d4b56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/c5c08c6.js

172.67.132.228

200 OK

1.6 MB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/c5c08c6.js
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
1.6 MB (1586153 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/c5c08c6.js HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:29 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sun, 21 Jan 2024 05:28:59 GMT
etag: W/"1833e9-18d2a7e57ec"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BXx%2FQ1XXkVin0o3emzcvW2qyXfq3yEcnoqTJYbsSCY6y8Ox6Rd0jLHnmP2UquCVZ3atkXP7olAu9ojXM4BErl%2FXZ2lrf1oyVKo5BdJs7Nv%2Br4%2BLrs2vcOe%2F8094tx43XEYObeTrM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881064063de156bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

unpkg.com/ionicons@4.5.5/dist/css/ionicons.min.css

104.17.249.203

200 OK

47 kB

URL GET HTTP/2
unpkg.com/ionicons@4.5.5/dist/css/ionicons.min.css
IP
104.17.249.203:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3
ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT

File type

Size
47 kB (46591 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ionicons@4.5.5/dist/css/ionicons.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 09 May 2024 08:41:30 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
content-encoding: br
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "b5ff-wG629zAnPa3uHu4FfadQ8VWJb1I"
via: 1.1 fly.io
fly-request-id: 01HWR0YFM6DCKEQF7TVVJK2A6D-arn
cf-cache-status: HIT
age: 745834
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8810640bad9b712e-OSL
X-Firefox-Spdy: h2

cs2pattern.shop/_nuxt/icons/icon_512x512.52ae46.png

172.67.132.228

404 Not Found

7.1 kB

URL GET HTTP/3
cs2pattern.shop/_nuxt/icons/icon_512x512.52ae46.png
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text, with very long lines (8277), with no line terminators
Size
7.1 kB (7080 bytes)
Hash
96f55ac99c8df9c0e13a3089461878c7
68b80b54254e20b5221622f93102b66f8c1fd09f
92432616df16db93696194525bdc824fc706ea88beb064bc6a9a4f2a4ddce0c4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/icons/icon_512x512.52ae46.png HTTP/1.1
Host: cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/en
Cookie: i18n_redirected=en; _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:33 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rBo8CrlzvfmcjAergFjqnaQQZ%2FIUzKiottWjorJQ42g%2Fgm43kGUmaIn1fN3XnDQDBeFN%2FYEh1UO5DBGDXSe%2FlAF%2B04oa3%2FehPWu3Hc87Gb7soP%2B8LRmcfl7LObosXaox1pE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88106421c85956bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/e4934ba.js

172.67.132.228

200 OK

20 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/e4934ba.js
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
JavaScript source, ASCII text, with very long lines (665)
Size
20 kB (19813 bytes)
Hash
01bbc7c2a8c5977d6541137ffdfabd6d
4de2e24c6dd53fa7f959f50022693a4498eaa58f
d44abf184a1335ed1a1c3d993cabd2f0e42c808742c733a479ebf25a37b4608e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/e4934ba.js HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:37 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:05 GMT
etag: W/"4d65-18d1cb7d2c3"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FFCBuv51g4kddZ0V05hF0N9uZkZG1IQ318YxqdH7sf7ItidA11nwXZ18KWhePrdb3k0DVda7jAv%2FKqpen4GG1G1Bw1TAkmxks8juwptljUbRcyRsEvfdOwyceM%2B9I3nRUPfUoqyy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88106436ea3756bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/d4c62d9.js

172.67.132.228

200 OK

8.0 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/d4c62d9.js
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
JavaScript source, ASCII text, with very long lines (10234), with no line terminators
Size
8.0 kB (8017 bytes)
Hash
d13b19b489f05bc4dcbf2ec0eebdb228
3109290ea378e76d04c052a100b19c9372047e8b
715fd87e4048af2a769c315f2ea87604b5edc135525c2804b7046ee885591306

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/d4c62d9.js HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:30 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:05 GMT
etag: W/"1f51-18d1cb7d35b"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kHBCs4WQFzpTu4TTXY2EjPjCha0sHzFZ2w7526yvJdJx%2FrzbbTJhRURJqQS8OSkx%2FC%2Bu8m%2B46t0oTZqVouCCRY6xee0hwSe5SqTvkhSpoa9kguyjwTnmlh5vOFuZ2I73BHehCpI8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810640e0a4156bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/img/faq-nav-icon.8ff4d1b.svg

172.67.132.228

200 OK

666 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/faq-nav-icon.8ff4d1b.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
SVG Scalable Vector Graphics image
Size
666 B (666 bytes)
Hash
c6cb68746e27ddcd626a9ce4813d4833
8427883cdf74fd4bdd7138d2b27211fb900d4592
fa80fa2ef48286a5407186d9228087f31ea19d561a313e2313869784c0d7a40a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/faq-nav-icon.8ff4d1b.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/_nuxt/app.9e3d460.css
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:32 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:03 GMT
etag: W/"29a-18d1cb7cc0f"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FRlRSbfcmwE5uIQcWNCLPqjq2Nf32Zpnp1dw8w9IHxHOtG4OM7LmYBR0MjqYEujNtURT%2FnmaH0WE%2BneCfia6OmmOEeMrxx%2Bp%2FkggdyV%2BiEtoVF%2BWF91AqcfTJEekpy1Prc2poXov"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810641a1d4856bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/img/timer.2454250.svg

172.67.132.228

200 OK

851 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/timer.2454250.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
SVG Scalable Vector Graphics image
Size
851 B (851 bytes)
Hash
24ff1415bee705cdf4ee5b0017553b1d
4cf6d3ccfd42ef47dcfe85b8ce99a1a5a543d5b4
d37944179ada00d6acb89d221336de59d5b6b6dd2c1f7a3811eff4801be0571e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/timer.2454250.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:31 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:00 GMT
etag: W/"353-18d1cb7bdfb"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1oBJimW0oJO5NyOoI5iK5wlemIMmhawmbRm99b%2FmohC0Q7PR1Ftca7bwEfS0zO%2BxrSGnrpb9uopK3nc719kYYlNAbwgyJPpJn9jRONiTJkb2vCSHko38dnTHkMkvUR5rCCfyh%2BHD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881064154dce56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot621FAR17P7NdShR7eO3g5C0n_L1JaKfkDNU7JYnj7rEodin2Aey-hZpMmz3doKQdAdqMFDQ-gW6xbi7jZG0voOJlyV6Gv6xpQ/300x300

95.101.11.9

200 OK

48 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot621FAR17P7NdShR7eO3g5C0n_L1JaKfkDNU7JYnj7rEodin2Aey-hZpMmz3doKQdAdqMFDQ-gW6xbi7jZG0voOJlyV6Gv6xpQ/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
48 kB (47712 bytes)
Hash
568efd1e0132e77ac5a14517f80542ef
500d417e2000a3a68c534a43e1faaecbfa298401
0c66bd03a29f0ad047db9ee74c8175e05321822bae7b80e0dc64fc169d3217c0

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot621FAR17P7NdShR7eO3g5C0n_L1JaKfkDNU7JYnj7rEodin2Aey-hZpMmz3doKQdAdqMFDQ-gW6xbi7jZG0voOJlyV6Gv6xpQ/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Wed, 27 May 2015 00:08:34 GMT
Content-Length: 47712
Cache-Control: public, max-age=477193
Expires: Tue, 14 May 2024 21:14:44 GMT
Date: Thu, 09 May 2024 08:41:31 GMT
Connection: keep-alive

cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Bold.3cf0ee2.ttf

172.67.132.228

404 Not Found

174 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Bold.3cf0ee2.ttf
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text, with no line terminators
Size
174 B (174 bytes)
Hash
85dda662e1fa05a0563806df17c571d8
9cf1f65df4af7292cd85c65f0ad1c421c61019f7
4de181b1cf15f082cec8a1a46493e4b43ce5ffdf9205df27cb724cd44e4fdfe8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/fonts/Gilroy-Bold.3cf0ee2.ttf HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sWjSogiaCo%2FD2mHcepZblnLnYmC0TWqBWTw5z%2F1vrdLwu3VlsWfnCcB1fOSQZymPwSIPizn0IcmicMI7wfgCeSg8oL3qxFY%2F555MEPyykz2ixcicrt54zdBolzuHNYV%2BYkvsgA59"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641ade3056bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/icons/cs2pattern.shop.png

172.67.132.228

404 Not Found

0 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/icons/cs2pattern.shop.png
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/icons/cs2pattern.shop.png HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:31 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QFdn50BAzUFenm%2FwD%2FYsAvNRw02l8mL9Df55GhjKAMO1fugUKkpeqAHkgcER%2FguVVCAwujDhbmRrtndySa6JX7j4P4wYydmv52Pifa4irYdTd2wyO1ppx7%2FtRp5qS7CJMyv6RTaG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88106412388f56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszJegJa_t2vq42Ok_7hPvXQxmoGvMQj2ryX9oqi3wDl8ktuYmj2J9CSegA7aVuErlC6xObq1sS_ot2XnodZA39N/300x300

95.101.11.9

200 OK

42 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszJegJa_t2vq42Ok_7hPvXQxmoGvMQj2ryX9oqi3wDl8ktuYmj2J9CSegA7aVuErlC6xObq1sS_ot2XnodZA39N/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
42 kB (41991 bytes)
Hash
55ac4ceb961c0db1f99d52d4ae6fdf41
2e1363ebae424442c533d9e000317ef0b63f4e11
bcae65f1d4a4a58ffd79a7353a3d1e19cc852d4c4e3fcf80de66349e3aa7a0e5

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszJegJa_t2vq42Ok_7hPvXQxmoGvMQj2ryX9oqi3wDl8ktuYmj2J9CSegA7aVuErlC6xObq1sS_ot2XnodZA39N/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Thu, 03 Dec 2020 22:05:11 GMT
Content-Length: 41991
Cache-Control: public, max-age=604659
Expires: Thu, 16 May 2024 08:39:10 GMT
Date: Thu, 09 May 2024 08:41:31 GMT
Connection: keep-alive

cdn.cs2pattern.shop/_nuxt/8199cf9.js

172.67.132.228

200 OK

194 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/8199cf9.js
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
JavaScript source, ASCII text, with very long lines (1353)
Size
194 kB (193649 bytes)
Hash
c14e687f000fdcbb04ed087af4f0417b
15cbff3ea70046938c66c859358fc7190c80124d
f935fe8e92a1787a566734a1061a34a9dafde05da301973d3b136f3b9f07d6e0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/8199cf9.js HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:31 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:07 GMT
etag: W/"2f471-18d1cb7db37"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6h%2F7BrW1Vb2tW%2Fx2B3lXnbResQYuppVR%2F6u%2FNfjiw%2FumxGkpitP%2BS%2FR41%2FuREd4bwi72A4NfMvzU6sgNBRS0ZFIXgegSQIm90Mk%2BFKEPCRSer1byDx11Tm7sCPjutKjehmwO0yu6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810640f9ca956bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cs2pattern.shop/favicon-sh.ico

172.67.132.228

404 Not Found

7.1 kB

URL GET HTTP/3
cs2pattern.shop/favicon-sh.ico
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text, with very long lines (8277), with no line terminators
Size
7.1 kB (7080 bytes)
Hash
96f55ac99c8df9c0e13a3089461878c7
68b80b54254e20b5221622f93102b66f8c1fd09f
92432616df16db93696194525bdc824fc706ea88beb064bc6a9a4f2a4ddce0c4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon-sh.ico HTTP/1.1
Host: cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/en
Cookie: i18n_redirected=en; _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:33 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4b5E5Wi7%2B9%2BC5T%2By5hD%2FUfdj2bbNbMCWTM1DivoNR0l769Zl9SRQ%2Bmw17Dgdp19ItujSZSjkoCcVeuxsmVyvuAJMTWulos0%2Fk6xBoILHAifuX4do75tEtntujIGjqPYPPxw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88106421c85c56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/app.9e3d460.css

172.67.132.228

200 OK

450 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/app.9e3d460.css
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
450 kB (449911 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/app.9e3d460.css HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:29 GMT
content-type: text/css; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:07 GMT
etag: W/"6dd77-18d1cb7d96b"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xYwTZvgKJ%2BOvmxQV06Wh8Rq%2B2bfht7MB9sPuTo50uRnyU6ij08TUIHEXI8FWXDsEN2fErsgAjTw%2F9aBgxkX1ifg1CHp4m2CUPUGAVCu%2FHSjmvREJX44qe9s1YUh40UrFtCJOQzo%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881064099bde56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/8199cf9.js

172.67.132.228

200 OK

194 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/8199cf9.js
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
JavaScript source, ASCII text, with very long lines (1353)
Size
194 kB (193649 bytes)
Hash
c14e687f000fdcbb04ed087af4f0417b
15cbff3ea70046938c66c859358fc7190c80124d
f935fe8e92a1787a566734a1061a34a9dafde05da301973d3b136f3b9f07d6e0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/8199cf9.js HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:31 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:07 GMT
etag: W/"2f471-18d1cb7db37"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qWl6KzMERhO1Bffe8qtPxD93sImv0TlyOSbt2WB3oMAwVFYgEvOhnSMkqzfw2DxfqPHE%2BC0DppAMIP%2BFcniKP53PzgPSGwTNSn85kRkMGzP51FvYWOl5lVwT7tAr9r8wau%2FD7Hmh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810640f9caf56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/img/faq-nav-icon-active.83d911b.svg

172.67.132.228

200 OK

666 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/faq-nav-icon-active.83d911b.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
SVG Scalable Vector Graphics image
Size
666 B (666 bytes)
Hash
22e5d3bb403fd4923efe4a17d2b4fd24
a2f7e8aad72bede9be79ecfebfa1161756767816
efd25868a24ad122de2bd6fbc37d154d47b71143ab3d38aa1c2048618c8cd81d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/faq-nav-icon-active.83d911b.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:31 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:04 GMT
etag: W/"29a-18d1cb7ccaf"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=15uhjhgfAp0i38AwY04CTcO8FKRQEscDGea8IQp9u7TBlGF0Jxx1mmj8glYHupyEmBQHzhmBHBdvLPSLMUSZLDC%2FcTaOF2QtoH%2FaLvfYrG2qIM4bBawj%2Bndtuu%2BwAypUN77PsOTk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881064140baf56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhjxszYfi5H5di5mr-HnvD8J_WCkmkEvp0pi7zDodv3jAHj-UM5ZGr7INfHJAc9MlzV-FK_kO281pa_ot2XnrA-A3kA/300x300

95.101.11.9

200 OK

47 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhjxszYfi5H5di5mr-HnvD8J_WCkmkEvp0pi7zDodv3jAHj-UM5ZGr7INfHJAc9MlzV-FK_kO281pa_ot2XnrA-A3kA/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
47 kB (47159 bytes)
Hash
1381a1586286be2dbe6884ad319729e4
10c0cc518fcc6e90bbdf8ba5da976578fc046773
02acca9ec2c65b3315b6ab0490bd5a31ce7dec78c6c913068cbd3bbc0800e459

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhjxszYfi5H5di5mr-HnvD8J_WCkmkEvp0pi7zDodv3jAHj-UM5ZGr7INfHJAc9MlzV-FK_kO281pa_ot2XnrA-A3kA/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Wed, 27 May 2015 00:08:54 GMT
Content-Length: 47159
Cache-Control: public, max-age=260979
Expires: Sun, 12 May 2024 09:11:10 GMT
Date: Thu, 09 May 2024 08:41:31 GMT
Connection: keep-alive

cdn.cs2pattern.shop/_nuxt/4932975.js

172.67.132.228

200 OK

1.6 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/4932975.js
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
JavaScript source, ASCII text, with very long lines (1919), with no line terminators
Size
1.6 kB (1574 bytes)
Hash
35f08ed0482b6280c422f499f171b1f7
c3a9527ebbe7d6072b4d7730bd3e548e141d3ded
75ebebd71bcf2439501390fac32be8e6883bf3c3ccd9f186b93af6eeb1c500b3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/4932975.js HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:32 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:08 GMT
etag: W/"626-18d1cb7ddab"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KKeVMAg%2FaS9n8aFJxyWkgOSVXtxu%2FgUHG5LmEfYesCQcQ%2BWCJV2eACy18wA2aURm4iJpIxR6gLj0vqhhBIqQDsDbSPhrLczI9Em%2BTdWiThz6z3%2BE4imKJfWNOd4orLHlRRJWxwWh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810641a3d6a56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/ws

172.67.132.228

101 Switching Protocols

0 B

URL GET HTTP/1.1
cdn.cs2pattern.shop/ws
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ws HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://cs2pattern.shop
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ckMmWlYiD0GBg3f2HR/mbA==
DNT: 1
Connection: keep-alive, Upgrade
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Thu, 09 May 2024 08:41:31 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: gWBuvFf0xembY7hWFBjJY2mWd6w=
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8A4x8NQM9Pdx3IwaKccYE9mviRNk18pOctDlBHl85NLaKwiVlFJB6L26oggbSL9wuFUFopPTAShI4d7yXdTrlPLf1inRvmdG%2BbLNkE%2B82AuM8gz%2Fpzo9AkTG%2BFL7Dpvydb9FdPMu"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 88106410da84b51d-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/270a8c7.js

172.67.132.228

200 OK

22 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/270a8c7.js
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
JavaScript source, ASCII text, with very long lines (1133)
Size
22 kB (21541 bytes)
Hash
982c7986a837a805c4c2c12d7b85ef31
d2146d1011ea8da2aa718c7f350d668d2b03e6e5
ca71b06932ad29fa05e8ae6f15cd96f7004a9ddc7be2979f15f9579d0c7e377f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/270a8c7.js HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:31 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:08 GMT
etag: W/"5425-18d1cb7df2b"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W9BwlPEiWUQvzhXsIEy7x5k5Eon%2FhtpFb273ln4IfUE5ze5FSXD8WioIfJTRH2Fj3C1Z%2FMJfInN4juXP9N6I0o9xDDJ27xxjrMhGxIoq0%2FRx0bWGBp%2BT4x%2F55LH5jrpY8IaBMegF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88106412891b56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-SemiBold.05bdf30.ttf

172.67.132.228

404 Not Found

178 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-SemiBold.05bdf30.ttf
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text, with no line terminators
Size
178 B (178 bytes)
Hash
b91db01cb4b99c6869db05f4ca418370
e5c48cfa6221d3284c6fc130bb2d76b887733ac5
f10eacfa0e677bca63a3cbaf9faff41f563c6888c73571aef1ace5af50a1d0cc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/fonts/Gilroy-SemiBold.05bdf30.ttf HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=snzr3m%2BtVgFJhhdDaq8TQ0HCzAy%2FdTYjTqt4LCUlRKwgaL9km7QfhzKDvmwBntyiXfrOuvrI1dB%2BRJ18cq%2BLdHfsdgmw6Wqa1QKyPRkrEIbwqg9gjSkK8qtQRRFNvPL2Ptm6SnSi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641b5ee356bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-SemiBold.989947b.woff

172.67.132.228

404 Not Found

179 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-SemiBold.989947b.woff
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text, with no line terminators
Size
179 B (179 bytes)
Hash
fd38c16845561dea7f337cb6e6f58875
d8107f21d3398a51dbeae012712850bf13b1d7f2
450f13542b406531786684881404968493edd14241d0aa409b5e83e817ae7f69

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/fonts/Gilroy-SemiBold.989947b.woff HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5p56CVA9qXUvGG11lEfSgjawanNdgNUzfEeLd0detzb7Zg%2BlPWf7g%2BcOpefpQHIiGQfmRyGGUbbyZXXZ64vgqgiDgThqXTBtiVX4IAVnnq9xz%2BMDrzaSEDbGzjDRIEGOyb%2FiywoG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641cf94356bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Bold.3cf0ee2.ttf

172.67.132.228

404 Not Found

174 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Bold.3cf0ee2.ttf
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text, with no line terminators
Size
174 B (174 bytes)
Hash
85dda662e1fa05a0563806df17c571d8
9cf1f65df4af7292cd85c65f0ad1c421c61019f7
4de181b1cf15f082cec8a1a46493e4b43ce5ffdf9205df27cb724cd44e4fdfe8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/fonts/Gilroy-Bold.3cf0ee2.ttf HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=laABwig3ZTYytsHtMxSKD6dCWzXGFlSmIKexNzegfSdt6aUEb6SSf8gn8xog5jw3Ql0%2FL2AHGAGEq2Q2LmVDal1I8EWhnUl7joFlNRmo4NWRm13W6myB0xdDAWAquehPgzefxUts"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641d398656bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-SemiBold.05bdf30.ttf

172.67.132.228

404 Not Found

178 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-SemiBold.05bdf30.ttf
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text, with no line terminators
Size
178 B (178 bytes)
Hash
b91db01cb4b99c6869db05f4ca418370
e5c48cfa6221d3284c6fc130bb2d76b887733ac5
f10eacfa0e677bca63a3cbaf9faff41f563c6888c73571aef1ace5af50a1d0cc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/fonts/Gilroy-SemiBold.05bdf30.ttf HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:33 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vfyzb20O6NqToaF1KNGRY%2B3ejfDjw3Dh%2BZ8R9eY6bD1zYc1BryD5vsWX9qe0pdxQWQ7BjRfFP40Hiksq3ntlWywnzFF8464IZkd%2FnTIzjfd6ZQU0Buz3zibLKTdnz4hSqA%2B3MiWf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641d49a056bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/fonts/Gilroy-Medium.6444f14.ttf

172.67.132.228

200 OK

66 B

URL GET HTTP/3
cdn.cs2pattern.shop/fonts/Gilroy-Medium.6444f14.ttf
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
66 B (66 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/Gilroy-Medium.6444f14.ttf HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:33 GMT
content-type: font/ttf
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:57 GMT
etag: W/"42-18d1cb7b2d7"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AJ4%2FNqvMPojzpqVLVCx1k7n0WT2OhLfbdpSOrBCXkIV%2BbSCDP3lNVfu0p%2FDKHoegNU%2BZykQJ1psKTKztVH3Zf7X5jX1RHyV3%2BCmDEJLblmhxE%2FM7%2FlbusmWEKzgP1TOw1Thy6Kvu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810641dea9356bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/img/online.3f4b425.svg

172.67.132.228

200 OK

742 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/online.3f4b425.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
SVG Scalable Vector Graphics image
Size
742 B (742 bytes)
Hash
0552230b86a5ee18698e88be0e886cf7
8bd86368190a44d47bd89270a8c67df42621e550
f3f2a23ee0a8400f92d24f9ff72a200a2c388d432390b9ff8b8002b5d32e4de1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/online.3f4b425.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:31 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:02 GMT
etag: W/"2e6-18d1cb7c5a7"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lhNR8JrNhRGltfPjPBbf9seTuKtwbMMDg9i9aD2eY6h4P9OY76HQQXkQyi2539GTUiyp7Vxwmo7CYe02CbWqJfXpT1tfpkq4f9FOuaj%2FcnJDIhHqfEcFVoCj8oBJps%2FlKc59alJg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88106413eb4c56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/img/cart.c8fb705.svg

172.67.132.228

200 OK

777 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/cart.c8fb705.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
SVG Scalable Vector Graphics image
Size
777 B (777 bytes)
Hash
8556a19d32bd11f18e67d3dd83a22479
03e5ddc4ac4190d76a2da852a21fe41dca35c6b1
661288881b86f634eb3ef48ecfec8b2ea341e700e1a9b83009a7c33a6e94175a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/cart.c8fb705.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:31 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:04 GMT
etag: W/"309-18d1cb7cf47"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FwauqlB9k%2Bg%2FJkFZiPKcyo1jmQdLM8u3Aifb7XZcprMO3vQmd2YYAnfSbpSgu4N1uKnTB2kYYlpL2hf%2FXZY6LEF4Z0aJGp8VuOWhRnFLtcgRQhu9QA%2F0cxXjyjDs%2FpgnPkC4bh8J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88106413db3856bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/fonts/Gilroy-Medium.6444f14.ttf

172.67.132.228

200 OK

66 B

URL GET HTTP/3
cdn.cs2pattern.shop/fonts/Gilroy-Medium.6444f14.ttf
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
66 B (66 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/Gilroy-Medium.6444f14.ttf HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:32 GMT
content-type: font/ttf
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:57 GMT
etag: W/"42-18d1cb7b2d7"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JC4WnPMACpECOmWO54EmdkuzuPkZ%2BqT%2BjK8pvFipou97OZc3wc9fdSboNafaWLCuoDVvsAuJKqZGdS5qUbup3QujqvOP3W5EJq8kJf0USUnEFfUfBY0ml4ZWHxWfzW7%2BQVvRkvqA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810641b4eda56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/fonts/Gilroy-Regular.ae5e725.ttf

172.67.132.228

200 OK

66 B

URL GET HTTP/3
cdn.cs2pattern.shop/fonts/Gilroy-Regular.ae5e725.ttf
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
66 B (66 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/Gilroy-Regular.ae5e725.ttf HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:33 GMT
content-type: font/ttf
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:56 GMT
etag: W/"42-18d1cb7afaf"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fXZWRRx8aMadP1zwMQuPiXtIb7BFV3YLXPw7PvzSlYrKmXtbY9IrBwE8Vo9532VPcDy7XSa6M2mNoleNqwRO4XO1Xs1qByS%2FBsFsGBOEeK4c0yBJV4mldMG2yY7luIoE4%2BACcW2m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810641cb8df56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/img/profile-banner.4fc0567.svg

172.67.132.228

200 OK

794 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/profile-banner.4fc0567.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
SVG Scalable Vector Graphics image
Size
794 B (794 bytes)
Hash
e9f19eeefb5d85ec8f68a27ff3ff94c8
584f2aa4d305f6f4f0445a6a18de67f650c237e8
3b177521ac6f8809e9e255d6f5dbe15fb45e5fe528e327e8fd196ae1eed2efd1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/profile-banner.4fc0567.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:31 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:01 GMT
etag: W/"31a-18d1cb7c3b7"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YELZlQ%2F50ai7KmyEdJuo7e%2BxJOPuTJrbNV27FBjVr44w2TeIROy%2FKSYrI%2BwjhsRMtMncGMt9fca3H2yR5sDu2ZbUYTpM%2FU%2BZa6UXScgZR7tRk97ym0i2Deflrq3Zxy9HinU59PdE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88106413fb6756bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/img/market_active.07fa956.svg

172.67.132.228

200 OK

673 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/market_active.07fa956.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
SVG Scalable Vector Graphics image
Size
673 B (673 bytes)
Hash
4ddb1c5239b7fca30d47a12c755f8714
1b0b2ba1cf590b6eddad30d35ee946cfe0ff8d0c
92b9d0daa8bd38519753b18f2cf348c492b87c4973fcbf359fc1997982a98017

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/market_active.07fa956.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/_nuxt/app.9e3d460.css
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:32 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:02 GMT
etag: W/"2a1-18d1cb7c79f"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=52fOeLRkLGcIlFlsQwnLWlgijlpKZnl3km9pJdghsniMxCisGsKEnaiv0lRoWXrzNqRT2RNs1ZIkmU1YG9uT1tq7QZMrvJtoFZQsqwogMxq4oEiIEiQ1Q9gDMvGGBCk5eDMhjCOu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810641a1d4756bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/src/assets/sounds/notification.ogg

172.67.132.228

404 Not Found

0 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/src/assets/sounds/notification.ogg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/src/assets/sounds/notification.ogg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KGXmFWAejZlg8oJIj8yIO2xNpcItpBc2A7RQCPMJBSFItIZjjygLukApe3ME87bsVYB9r5pIYyfksciUyyKMBtJ70w5dz7J5pHbjDweylqtZ6dnfKuF89EPp9zz%2BsztzXR7C%2Fjab"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641afe5356bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Bold.32750b0.woff

172.67.132.228

404 Not Found

175 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Bold.32750b0.woff
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text, with no line terminators
Size
175 B (175 bytes)
Hash
af61551148617156e82f00c3830463ee
83ceb3cad7c178e13f03ff6c7ec18babd60764e2
69c36ecb6fb39f250009c70a30e36568d157c2ee85c57d003fd6a194979e94fa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/fonts/Gilroy-Bold.32750b0.woff HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TcFPVDMr1rhZeiXfHVkCApL5B%2BLh5HpjoSTtFmezwey7XlZnI5kiq34aUGqTl5B4zM2E0p6EMxDyJVjo4icmOaEqEawrAYa9gcvaREBmGA7p6XLOVQv2H8R6dcEj55vgqV7Z4kSF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641a1d5456bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/fonts/Gilroy-Bold.3cf0ee2.ttf

172.67.132.228

200 OK

66 B

URL GET HTTP/3
cdn.cs2pattern.shop/fonts/Gilroy-Bold.3cf0ee2.ttf
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
66 B (66 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/Gilroy-Bold.3cf0ee2.ttf HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:33 GMT
content-type: font/ttf
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:57 GMT
etag: W/"42-18d1cb7b413"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yDnAFqc4YqWprnQFJ2%2BtmsSyb3%2BejZE8OBAgMZbewpZxueccydKYt%2BNwdwsBdGAJ7uHq5yU2u%2FBsmKerZRZMS5uaf9GmDx853EYXLggXiHpIDs4vyvrOz8e21%2BJ87xOCAptZxMp2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810641daa2656bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhjxszYfi5H5di5mr-GkvP9JrafwDtV7cAl2uiYpoqt3Q3n-kNkZWCmINTHe1I_YgrV-wS8xb-91p_vuoOJlyUlgXdlZw/300x300

95.101.11.9

200 OK

48 kB

URL GET HTTP/1.1
steamcommunity-a.akamaihd.net/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhjxszYfi5H5di5mr-GkvP9JrafwDtV7cAl2uiYpoqt3Q3n-kNkZWCmINTHe1I_YgrV-wS8xb-91p_vuoOJlyUlgXdlZw/300x300
IP
95.101.11.9:443
ASN
#20940 Akamai International B.V.

Requested by
https://cs2pattern.shop/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced
Size
48 kB (47554 bytes)
Hash
7a9ff2efc2b092931cfcd0c426e6893e
3353d9816a5d22b5d6c01d131b5d6225af97b109
b542b3154aafa8e4765b5d5f06771144e864cf3c1904fd7a13269f0c15e11c15

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhjxszYfi5H5di5mr-GkvP9JrafwDtV7cAl2uiYpoqt3Q3n-kNkZWCmINTHe1I_YgrV-wS8xb-91p_vuoOJlyUlgXdlZw/300x300 HTTP/1.1
Host: steamcommunity-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.akamai.steamstatic.com/ https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.akamai.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.cn https://steambroadcastchat.akamaized.net http://127.0.0.1:27060 ws://127.0.0.1:27060; frame-src 'self' steam: https://store.steampowered.com/ https://help.steampowered.com/ https://login.steampowered.com/ https://www.youtube.com https://www.google.com https://sketchfab.com https://player.vimeo.com https://medal.tv https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/; frame-ancestors 'self' https://steamloopback.host ;
Last-Modified: Wed, 27 May 2015 00:08:55 GMT
Content-Length: 47554
Cache-Control: public, max-age=604697
Expires: Thu, 16 May 2024 08:39:48 GMT
Date: Thu, 09 May 2024 08:41:31 GMT
Connection: keep-alive

cdn.cs2pattern.shop/_nuxt/src/assets/sounds/notification.mp3

172.67.132.228

404 Not Found

0 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/src/assets/sounds/notification.mp3
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/src/assets/sounds/notification.mp3 HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Bzo0cdRZG94zse9Q2BrUgmr5crSfeZfktmC%2B8KjeKlTJFEpQMyTBZ3LOl1YpjcDxoTIZFPdM3k%2BTmdZC7dblSn3X5AS6dt9J%2FGPhRkQ63fXTSp2YG%2F8FtsIB00ctQVXQ%2FFqHzItd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641a2d6456bd-OSL
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/fonts/Gilroy-SemiBold.05bdf30.ttf

172.67.132.228

200 OK

66 B

URL GET HTTP/3
cdn.cs2pattern.shop/fonts/Gilroy-SemiBold.05bdf30.ttf
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
66 B (66 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/Gilroy-SemiBold.05bdf30.ttf HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:33 GMT
content-type: font/ttf
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:56 GMT
etag: W/"42-18d1cb7af0f"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NQeLNi31Q2I6BzepljAdJZeIG6d86dj1funazEFL68gNAq%2FzrDVMvK7i6Ge06lqcqISRUCOeFB%2FUCDhHK%2BTvlbbWFJXP2B7fWL5Nxs49nidA1sfwL%2FA3s9xmphX%2FnLXiC%2FXs4JQ3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810641daa2356bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/img/chest.c1f2ec8.svg

172.67.132.228

404 Not Found

0 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/chest.c1f2ec8.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/chest.c1f2ec8.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:31 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q9Q5zQZdb7VQIjq0KmkwywWSGF4adXzl944OJAGoqLpxuL5jUmTIutBzQI6FjaQQVWuHM0e4OXAaaxHzoRrcdxuD6MT1%2FoC0ini0TA3ilkHKU10PtW751xE7CZnhnR8FTamviFUP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881064142be756bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/css/styles.c629a3f.css

172.67.132.228

200 OK

223 kB

URL GET HTTP/3
cdn.cs2pattern.shop/css/styles.c629a3f.css
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
ASCII text, with very long lines (38052)
Size
223 kB (223316 bytes)
Hash
6da17556a2cd79a16397eff6406d2030
b1ebde181fcd0ea9acc2fd941cf953a32dba1c4e
24844619120a0b0251c69b983716ffd2a33e63d3b078b8a2eecc49ca1e1ffdae

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/styles.c629a3f.css HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:29 GMT
content-type: text/css; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:58 GMT
etag: W/"36854-18d1cb7b687"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VYGXF4gT0%2BW3VITAqlnZkKXt9MC0rTbsddv2AOuapz%2FPAi3T8dPUgM0Ma8roh2LTkKKLJVYutw5nQ1tMkbDJ9mHyKJzveCQTYNiig3qlqeTBomksIXWQUqrgbIWaBdP%2Byo%2FoLbXU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881064063dd656bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/img/sell-banner.c5f1723.svg

172.67.132.228

200 OK

1.1 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/sell-banner.c5f1723.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
SVG Scalable Vector Graphics image
Size
1.1 kB (1148 bytes)
Hash
a9844d0a5910acd40dfd70545ebddf69
44e4c878600f0765167d217b58bd800cc6236533
caef81c873710b96bf0357d0035f481b7099c977597d79966e37ea049a6c3674

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/sell-banner.c5f1723.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:31 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:01 GMT
etag: W/"47c-18d1cb7c11b"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c%2FghfNSpAgQjebU5po3CBk6Vuvsddd4lcQL95rslFPST9FUDH%2Bb4TMhTv5OBB%2BpW4Ceg5QssEb1wc8DQNrKs8G8EnjT5sSJyY6tRneI7A3%2BFHZou1hT5z4y4iNJFMpZ%2FPJ4LAmyL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88106413fb8756bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Medium.6444f14.ttf

172.67.132.228

404 Not Found

176 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/fonts/Gilroy-Medium.6444f14.ttf
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
HTML document, ASCII text, with no line terminators
Size
176 B (176 bytes)
Hash
ebd0fa58a0b08eda0a156b3e88b25eeb
cee4fa7f037009f79ac5633b5737256f746f5c68
7bbc45e6e408cd65080189fe622994f31daf6829185b33ec9c26efe80cad568c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/fonts/Gilroy-Medium.6444f14.ttf HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:30 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://cs2pattern.shop
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B71fxxZ3lDpeRHF6HJrC7F%2FBdU%2FQOM7pWhH4GDudUoKE7R7438cm8yOJXoN3bJUMMnpqZ3FJvhuH0sbBsjsPutTbEtU3oOkMf5m0zx0YD58lqLsQVjJw%2FoFKZsb9HwOTyg2i%2BRzO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810640f9cb456bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/img/rarity-logo.3d60840.svg

172.67.132.228

404 Not Found

0 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/rarity-logo.3d60840.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/rarity-logo.3d60840.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/_nuxt/app.9e3d460.css
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:32 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F7Fci0Dg37LSvRWSWCZpiOTuCrft62ktSIx6KcKbordjL6b2AMdKCipd0IF%2FNWH%2BaW0fHgDUnk%2BOAXYwc7RxAzqhlgmrV3JCG3B0abUw7Yt9NwjMUX%2Fil5zjTVaUPjWM80jL1Z36"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810641a1d5256bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/b547650.js

172.67.132.228

200 OK

381 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/b547650.js
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
JavaScript source, ASCII text
Size
381 kB (380646 bytes)
Hash
b8922461dfd8c52f0620cda7ea2c65aa
4564ee7c9147fbfb9ec6ae9092f5a7731982cebe
c0c87493d65c0e7cc7fd24799c167d23ffbc28fb7f81c76fd78b8b8de95521ac

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/b547650.js HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:37 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:07 GMT
etag: W/"5cee6-18d1cb7d89b"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V9a1S47pNUQYfiZtdhpUjXteq0StDrJsBmwYsgpcIG3mXPoSdv8XcVlNZ0RycGlwqDod015uD7zgshwsEEIt%2FPvXga4mVUI0742XX8v4wNwx%2FqvouKO%2FPSioyj04HMEg22ef%2BdKq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88106436ea3656bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/d4c62d9.js

172.67.132.228

200 OK

8.0 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/d4c62d9.js
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
JavaScript source, ASCII text, with very long lines (10234), with no line terminators
Size
8.0 kB (8017 bytes)
Hash
d13b19b489f05bc4dcbf2ec0eebdb228
3109290ea378e76d04c052a100b19c9372047e8b
715fd87e4048af2a769c315f2ea87604b5edc135525c2804b7046ee885591306

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/d4c62d9.js HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:30 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:05 GMT
etag: W/"1f51-18d1cb7d35b"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hyaKYbBCk%2FAtUbWNLv643DvVnVCuzqpLSX31I2%2FyN3LYBRY8aGFmOrHPbQYh1e2JQUGsCukSjcttAE6WMe2ZZgDkypLp3pEqVoU9pVd1zmUmi6Sp%2B%2BqNBF5Qz7tiDGcaRFZmLz7Z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810640d998056bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/270a8c7.js

172.67.132.228

200 OK

22 kB

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/270a8c7.js
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
JavaScript source, ASCII text, with very long lines (1133)
Size
22 kB (21541 bytes)
Hash
982c7986a837a805c4c2c12d7b85ef31
d2146d1011ea8da2aa718c7f350d668d2b03e6e5
ca71b06932ad29fa05e8ae6f15cd96f7004a9ddc7be2979f15f9579d0c7e377f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/270a8c7.js HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:31 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:08 GMT
etag: W/"5425-18d1cb7df2b"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NooZZ%2FGD3Kf019CR%2BpvyOp7csRO6bVj7i7R%2BXJShCYTmt%2Fo6fKOsDa4hPzjmxRbczrz8YiLAkrsft5al0V6iQqq%2Fpeff4lmAD5e%2Bh0RutjfU%2BVVnTy0crr0%2F8Niw7CgvJ%2FmmFT%2Fm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88106412891956bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/img/facebook.873a6e2.svg

172.67.132.228

404 Not Found

0 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/facebook.873a6e2.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/facebook.873a6e2.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs2pattern.shop/
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 08:41:31 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KRBAUPI3nOxXx1C%2Brhjth0nwEDxie8aJOc%2Brimp7QUtNotGmCMG07H%2B2lv7AdL5wtqf4EohPpBM5v0y%2F6mj9QO3BuVh83sE1yfFhYjpc%2F%2BpXlDtV6xyNNM5nzEMtooscaD39MJZk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881064142bd556bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/_nuxt/img/cart-light.09ea5cf.svg

172.67.132.228

200 OK

788 B

URL GET HTTP/3
cdn.cs2pattern.shop/_nuxt/img/cart-light.09ea5cf.svg
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type
SVG Scalable Vector Graphics image
Size
788 B (788 bytes)
Hash
1900e2ee6e5421f201b9ba3b38240de0
36554170f14a50363a25e02fdade37d0f068d910
6d64ae85afd40f4b14afd750d7937859c641f234a3f831476c08c44606d1950f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/cart-light.09ea5cf.svg HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/_nuxt/app.9e3d460.css
Cookie: _gcl_au=1.1.1094984979.1715244091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:36 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:17:04 GMT
etag: W/"314-18d1cb7cfeb"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zrYedf8QuJTQbMfA%2F0SHAdFVz8zk2ecN%2FeqNtPpiYHcPX8Q7C9kAomXlMu%2B79ao0IsjEggwUQ69UATaVPXSphDJbzgh6Gsj8wRWRSxOoXnXTYC0zQ7HxPGiqNa%2FHin0%2FIa0TMuFy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881064348ea556bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cs2pattern.shop/fonts/Gilroy-Regular.ae5e725.ttf

172.67.132.228

200 OK

66 B

URL GET HTTP/3
cdn.cs2pattern.shop/fonts/Gilroy-Regular.ae5e725.ttf
IP
172.67.132.228:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cs2pattern.shop/
Certificate
IssuerLet's Encrypt
Subjectcs2pattern.shop
Fingerprint86:C7:12:9F:83:30:AB:ED:5A:79:C7:9B:BE:10:46:2E:0D:93:96:5E
ValidityFri, 19 Apr 2024 11:08:44 GMT - Thu, 18 Jul 2024 11:08:43 GMT

File type

Size
66 B (66 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/Gilroy-Regular.ae5e725.ttf HTTP/1.1
Host: cdn.cs2pattern.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cs2pattern.shop
DNT: 1
Connection: keep-alive
Referer: https://cdn.cs2pattern.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 08:41:33 GMT
content-type: font/ttf
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Thu, 18 Jan 2024 13:16:56 GMT
etag: W/"42-18d1cb7afaf"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DVepYCnmSZOyV%2Bv5d8EVzkmQsrF4McsB8cFZTqp8SQfLRKy4SWino1as3EbSiE5JQkMmg6hkrZY5yXIBz%2BLESJbIOHNoML1MgRe9naC8NQDBSkupRC3wVyRh9EC3XgpRpKy8c27m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810641dea8d56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (20)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML