Report - case-402686-help.checkpoint-business-account.net/case-302686-help.checkpoint-business-account.net/

Report Overview

Visited public
2023-12-11 04:26:48
Tags
URL
case-402686-help.checkpoint-business-account.net/case-302686-help.checkpoint-business-account.net/
Finishing URL
case-403998-help.page-support-business.com/buiness-center-community/
IP / ASN
104.21.20.18
#13335 CLOUDFLARENET
Title
Buiness Help Center

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-12-10 05:09:28	547 B	26 kB	151.101.193.229
case-403998-help.page-support-business.com	unknown	unknown	No data	No data	2.1 kB	827 kB	172.67.209.149
static.xx.fbcdn.net	661	2007-05-03	2012-12-01 14:12:13	2023-12-10 18:12:09	483 B	5.5 kB	31.13.72.12
case-402686-help.checkpoint-business-account.net	unknown	2023-12-10	2023-12-10 22:34:54	2023-12-11 05:26:17	566 B	1.9 kB	172.67.190.209
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-10 09:38:04	504 B	12 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-10	medium	page-support-business.com	Sinkholed
2023-12-10	medium	page-support-business.com	Sinkholed
2023-12-10	medium	page-support-business.com	Sinkholed
2023-12-10	medium	page-support-business.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (1)

	URL	From	Size	First Seen	Last Seen
	case-403998-help.page-support-business.com/static/js/main.ec86e485.js	ScriptElement	738 kB	2023-10-21	2023-12-11
Pretty URL case-403998-help.page-support-business.com/static/js/main.ec86e485.js IP 172.67.209.149 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-21 17:21 Last Seen2023-12-11 05:26 Times Seen37 Hash f85e82158d76cbc99e84ee3fd719f6a0 3a1f3c7d63a0e0f760d87e4bda1210b3cf69f3cb e5f7306b74cceffb87b2ea769f2743d3c28a126b2d6c25b8126285d08d18cd8b Loading...

HTTP Transactions (8)

URL IP Response Size

cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css

151.101.193.229

200 OK

25 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css
IP
151.101.193.229:443
ASN
#54113 FASTLY

Requested by
https://case-403998-help.page-support-business.com/buiness-center-community/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
Unicode text, UTF-8 text, with very long lines (65306)
Size
25 kB (25360 bytes)
Hash
abe91756d18b7cd60871a2f47c1e8192
7c1c9e0573e5cea8bad3733be2fc63aa8c68ea8d
7633b7c0c97d19e682feee8afa2738523fcb2a14544a550572caeecd2eefe66b

HTTP Headers

GET /npm/bootstrap@5.0.2/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://case-403998-help.page-support-business.com
DNT: 1
Connection: keep-alive
Referer: https://case-403998-help.page-support-business.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"260c5-fByeBXPlzqi603M74vxjqoxo6o0"
content-encoding: br
accept-ranges: bytes
date: Mon, 11 Dec 2023 04:26:23 GMT
age: 15792026
x-served-by: cache-fra-eddf8230097-FRA, cache-bma1681-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25360
X-Firefox-Spdy: h2

case-403998-help.page-support-business.com/static/media/warning.f1ebfd88a8d439c9a344.png

172.67.209.149

200 OK

78 kB

URL GET HTTP/3
case-403998-help.page-support-business.com/static/media/warning.f1ebfd88a8d439c9a344.png
IP
172.67.209.149:443
ASN
#13335 CLOUDFLARENET

Requested by
https://case-403998-help.page-support-business.com/buiness-center-community/
Certificate
IssuerLet's Encrypt
Subjectpage-support-business.com
Fingerprint7B:9C:95:5F:2B:C2:F4:E7:AA:A5:F1:FE:FF:F6:B3:62:FB:E6:04:8E
ValidityTue, 21 Nov 2023 15:17:39 GMT - Mon, 19 Feb 2024 15:17:38 GMT

File type
PNG image data, 683 x 349, 8-bit/color RGBA, non-interlaced - data
Size
78 kB (77583 bytes)
Hash
e4cf2a2b2cc4767b120dc242f43655e5
c7f605bae924c099c9b1bc0016cfc3c6bbeff201
e8cb9a23a623e526f5c3399a6dbf7faf0eaa171846961a9867747676335f33d8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/media/warning.f1ebfd88a8d439c9a344.png HTTP/1.1
Host: case-403998-help.page-support-business.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://case-403998-help.page-support-business.com/buiness-center-community/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:26:23 GMT
content-type: image/png
content-length: 77583
last-modified: Sun, 19 Nov 2023 17:13:06 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fzqvWriEtlB5y%2BMx2bH4Knof5qygR9HMYF14iOsQrHHbASOJolH%2FOmK4NwjpXQjj%2BatUisFQBZzMZlEc4hswUys76hmjEA9%2FGFDTKRgjoXIku1knmHAdAee8jedSj42cllwXjiyqLGN4wWyJB5pmVzvH1hhH84Kj1%2BPur%2FY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833af8198f0956c1-OSL
alt-svc: h3=":443"; ma=86400

static.xx.fbcdn.net/rsrc.php/yb/r/hLRJ1GG_y0J.ico

31.13.72.12

200 OK

4.3 kB

URL GET HTTP/2
static.xx.fbcdn.net/rsrc.php/yb/r/hLRJ1GG_y0J.ico
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://case-403998-help.page-support-business.com/buiness-center-community/
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint3D:3C:09:28:D7:EE:6C:69:BE:2B:77:A7:89:7D:E0:1D:0B:F7:E9:95
ValidityTue, 19 Sep 2023 00:00:00 GMT - Mon, 18 Dec 2023 23:59:59 GMT

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel - data
Size
4.3 kB (4286 bytes)
Hash
8cddca427dae9b925e73432f8733e05a
1999a6f624a25cfd938eef6492d34fdc4f55dedc
89676a3fb8639d6531c525e5800ff4cc44d06d27ff5607922d27e390eb5b6e62

HTTP Headers

GET /rsrc.php/yb/r/hLRJ1GG_y0J.ico HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://case-403998-help.page-support-business.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/x-icon
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: jN3KQn2um5Jec0MvhzPgWg==
expires: Tue, 03 Dec 2024 03:42:51 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), gamepad=(), keyboard-map=(), otp-credentials=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
reporting-endpoints: 
origin-agent-cluster: ?0
x-fb-debug: fRbRY2GQAPVeudcmDgDoni+wiU0PDrTVRl1rfODjEaQP1vQ3JBhY0su07/cDfkjvyB1Nl+K/HqTJMYf2P3Z+PQ==
content-length: 4286
date: Mon, 11 Dec 2023 04:26:23 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

case-403998-help.page-support-business.com/buiness-center-community/

172.67.209.149

200 OK

1.2 kB

URL User Request GET HTTP/2
case-403998-help.page-support-business.com/buiness-center-community/
IP
172.67.209.149:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectpage-support-business.com
Fingerprint7B:9C:95:5F:2B:C2:F4:E7:AA:A5:F1:FE:FF:F6:B3:62:FB:E6:04:8E
ValidityTue, 21 Nov 2023 15:17:39 GMT - Mon, 19 Feb 2024 15:17:38 GMT

File type
HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - exported SGML document, ASCII text, with very long lines (1261), with no line terminators
Size
1.2 kB (1184 bytes)
Hash
e92f6d501b250ebba2d3fc46dde5d71f
24c185e9e1b683cfbcf5464eea45dc55f1410b8c
8857e55ef0c6fff286e18268c701b622b3d3933fb646c4a9beae08ff6577173f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /buiness-center-community/ HTTP/1.1
Host: case-403998-help.page-support-business.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 11 Dec 2023 04:26:23 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Oy0tl7NvCTi3J8gWzv79hOFl8O7n1zBy9IFLNnts4qFryX0jovyUG4l1GmTCmDWqFvlx18AK6mMdTR%2Be4WK9CyLD3mVcOqqm3q56Tri1H0h1744t2MdcOJnmYEUedc%2BFUswTyBgHYvN7N2qSrVrkTYA0ST2CkXaEm7KMufc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833af81588d27127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

case-403998-help.page-support-business.com/static/css/main.4b73f610.css

172.67.209.149

200 OK

7.8 kB

URL GET HTTP/3
case-403998-help.page-support-business.com/static/css/main.4b73f610.css
IP
172.67.209.149:443
ASN
#13335 CLOUDFLARENET

Requested by
https://case-403998-help.page-support-business.com/buiness-center-community/
Certificate
IssuerLet's Encrypt
Subjectpage-support-business.com
Fingerprint7B:9C:95:5F:2B:C2:F4:E7:AA:A5:F1:FE:FF:F6:B3:62:FB:E6:04:8E
ValidityTue, 21 Nov 2023 15:17:39 GMT - Mon, 19 Feb 2024 15:17:38 GMT

File type
ASCII text, with very long lines (7762), with no line terminators
Size
7.8 kB (7762 bytes)
Hash
46bf30299aff744829828beb4e8ca211
cbfcc73d380a72d48717f1ef9cfbcd2efe15cf86
33d3a2ebb9070f1a5c097d41b69f9bfad64dd8650eead2e4f746fe0ff4667192

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/main.4b73f610.css HTTP/1.1
Host: case-403998-help.page-support-business.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://case-403998-help.page-support-business.com/buiness-center-community/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:26:23 GMT
content-type: text/css
last-modified: Sun, 19 Nov 2023 17:13:06 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1WyYFoLpEpcXbAcNpe0QNdkdP9wagX1v8vQv4I8CXrYPJyGwJggW31qaM3PSJTA%2Beztapj2PtvVpL42Qh5fHnfpQCcgtaMLZSDt6XdBHoyeYW8nNPKZ1twULglpdKYcAjOuMZbU3dbmnbtOStA1tAnpm49kcxauO%2Ff%2BkymQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833af817ae3156c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

case-402686-help.checkpoint-business-account.net/case-302686-help.checkpoint-business-account.net/

172.67.190.209

301 Moved Permanently

1.2 kB

URL User Request GET HTTP/2
case-402686-help.checkpoint-business-account.net/case-302686-help.checkpoint-business-account.net/
IP
172.67.190.209:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectcheckpoint-business-account.net
Fingerprint1F:FB:7A:80:CE:6F:88:5B:5F:78:74:45:55:08:AE:89:07:0D:15:DF
ValiditySun, 10 Dec 2023 18:29:12 GMT - Sat, 09 Mar 2024 18:29:11 GMT

File type

Size
1.2 kB (1184 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /case-302686-help.checkpoint-business-account.net/ HTTP/1.1
Host: case-402686-help.checkpoint-business-account.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Mon, 11 Dec 2023 04:26:22 GMT
content-type: text/html; charset=UTF-8
location: https://case-403998-help.page-support-business.com/buiness-center-community/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VJAg1JsfW%2FC8OoQ53ZgftOS8%2BIg5ikqabJ6E9vjDV0NHLBmUvD6fl7tnIGJVfyu3I16fhA7P9hb85NoTOSA3KvYjEjzY4len1ZPHOuar7759LqoI5JZoAyosSND%2B66LyB7mLAFCZ5GJYqqjQ1N2VCaZ%2Fl6lfR14gHQYtUz76O0yJD%2Fw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833af8131e5e56bf-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

case-403998-help.page-support-business.com/static/js/main.ec86e485.js

172.67.209.149

200 OK

738 kB

URL GET HTTP/3
case-403998-help.page-support-business.com/static/js/main.ec86e485.js
IP
172.67.209.149:443
ASN
#13335 CLOUDFLARENET

Requested by
https://case-403998-help.page-support-business.com/buiness-center-community/
Certificate
IssuerLet's Encrypt
Subjectpage-support-business.com
Fingerprint7B:9C:95:5F:2B:C2:F4:E7:AA:A5:F1:FE:FF:F6:B3:62:FB:E6:04:8E
ValidityTue, 21 Nov 2023 15:17:39 GMT - Mon, 19 Feb 2024 15:17:38 GMT

File type
ASCII text, with very long lines (65465)
Size
738 kB (737733 bytes)
Hash
f85e82158d76cbc99e84ee3fd719f6a0
3a1f3c7d63a0e0f760d87e4bda1210b3cf69f3cb
e5f7306b74cceffb87b2ea769f2743d3c28a126b2d6c25b8126285d08d18cd8b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/main.ec86e485.js HTTP/1.1
Host: case-403998-help.page-support-business.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://case-403998-help.page-support-business.com/buiness-center-community/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 11 Dec 2023 04:26:23 GMT
content-type: text/javascript
last-modified: Sun, 19 Nov 2023 17:13:06 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sJIctowxm%2BigPdnMYfKFwDN%2FSrWMLXb26XKsRGKLJ6AiIe5%2FnBkM9RO4c3Ud4NAtbe4P7TmUeB3M7lktmRNUdHwDVwbAdPFoIDpnia5u3eZV4MnUzXPY%2FJtasqUHptbJSnb5LgXYT%2F5ZOC7kUspCasLMQnW1rAHURSle620%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833af817ae2f56c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Roboto:100,200,300,400,500,700&display=swap

142.250.74.106

200 OK

11 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:100,200,300,400,500,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://case-403998-help.page-support-business.com/buiness-center-community/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT

File type
ASCII text
Size
11 kB (11385 bytes)
Hash
825d2c3c242b7fe4e068092d23ec6214
58972f3c5980d53daecb370bfce82a20f3fa75e0
f890ba0ffd7012cb3248709ec502bc061109c5c669af09e0d2d4c786b192158e

HTTP Headers

GET /css?family=Roboto:100,200,300,400,500,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://case-403998-help.page-support-business.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 11 Dec 2023 04:26:23 GMT
date: Mon, 11 Dec 2023 04:26:23 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (8)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by