Report - oomdata.com/mandown

Report Overview

Visited public
2023-11-09 05:56:58
Tags
Submit Tags
URL
oomdata.com/mandown
Finishing URL
www.freshrf.com/zendesk/
IP / ASN
199.16.173.229
#2635 AUTOMATTIC
Title
zendesk

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
oomdata.com	unknown	2021-02-04	2021-11-08 07:59:15	2023-11-08 23:09:49	953 B	4.6 kB	199.16.173.229
www.freshrf.com	unknown	2015-12-03	2017-03-25 04:37:25	2023-11-09 05:39:52	4.6 kB	393 kB	199.16.172.82

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-11-09	medium	www.freshrf.com	Sinkholed
2023-11-09	medium	www.freshrf.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (1)

	URL	From	Size	First Seen	Last Seen
	www.freshrf.com/zendesk/assets/bootstrap/js/bootstrap.min.js	ScriptElement	81 kB	2023-10-25	2025-07-08
Pretty URL www.freshrf.com/zendesk/assets/bootstrap/js/bootstrap.min.js IP 199.16.172.82 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-25 02:34 Last Seen2025-07-08 06:01 Times Seen110 Hash d2f2ef0051cf284637b29bb4678c1b81 1a18643241dea9ac7c190029ea6d8efbd73e5f84 66af34efad8ad6be518c955fb42163a9f1178a2f51b6b16e7864a46973b04349 Loading...

HTTP Transactions (12)

URL IP Response Size

GET oomdata.com/mandown

199.16.173.229

301 Moved Permanently

162 B

URL User Request GET HTTP/2
oomdata.com/mandown
IP
199.16.173.229:443
ASN
#2635 AUTOMATTIC

Certificate
IssuerLet's Encrypt
Subjecttls.automattic.com
FingerprintF4:B6:D4:BB:47:38:84:94:CB:F7:1D:65:85:FE:38:5A:D0:0D:E3:49
ValidityWed, 20 Sep 2023 19:07:56 GMT - Tue, 19 Dec 2023 19:07:55 GMT

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /mandown HTTP/1.1
Host: oomdata.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 09 Nov 2023 05:56:41 GMT
content-type: text/html
content-length: 162
location: http://oomdata.com/mandown/
strict-transport-security: max-age=31536000
x-ac: 4.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2

GET www.freshrf.com/zendesk/assets/img/whats-new-blue-bg@2x.webp

199.16.172.82

200 OK

55 kB

URL GET HTTP/2
www.freshrf.com/zendesk/assets/img/whats-new-blue-bg@2x.webp
IP
199.16.172.82:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.freshrf.com/zendesk/
Certificate
IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint69:25:22:64:FA:70:D1:1C:73:44:DF:BA:F9:D8:9E:4B:AC:93:8D:4A
ValidityFri, 15 Sep 2023 21:37:24 GMT - Thu, 14 Dec 2023 21:37:23 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 937x1024, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
55 kB (54720 bytes)
Hash
fa49018ad07aaff008aa4b0165b21c5f
5fbb365619bcaf9b5810804abd5b08c375cc71cd
ac6ffef8dd795ea6025bdefaadfd675b7e938b595cbfff022a5ac90a2def59a5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /zendesk/assets/img/whats-new-blue-bg@2x.webp HTTP/1.1
Host: www.freshrf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.freshrf.com/zendesk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 09 Nov 2023 05:56:43 GMT
content-type: image/webp
content-length: 54720
strict-transport-security: max-age=31536000
last-modified: Sun, 05 Nov 2023 09:42:14 GMT
etag: "65476376-d5c0"
expires: Thu, 16 Nov 2023 05:56:42 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
accept-ranges: bytes
x-ac: 1.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2

GET www.freshrf.com/zendesk/assets/img/super-new-blue@2x.webp

199.16.172.82

200 OK

3.2 kB

URL GET HTTP/2
www.freshrf.com/zendesk/assets/img/super-new-blue@2x.webp
IP
199.16.172.82:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.freshrf.com/zendesk/
Certificate
IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint69:25:22:64:FA:70:D1:1C:73:44:DF:BA:F9:D8:9E:4B:AC:93:8D:4A
ValidityFri, 15 Sep 2023 21:37:24 GMT - Thu, 14 Dec 2023 21:37:23 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
3.2 kB (3224 bytes)
Hash
6af184712cb6ec6ede65ae8fc5d51b0b
f640b211e6a680194764160c790e40b9836e6029
b67fc1b98e63657f8fee3e2d31f795d7fe93d34d849d633ce57d9e6b15d0c370

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /zendesk/assets/img/super-new-blue@2x.webp HTTP/1.1
Host: www.freshrf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.freshrf.com/zendesk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 09 Nov 2023 05:56:43 GMT
content-type: image/webp
content-length: 3224
strict-transport-security: max-age=31536000
last-modified: Sun, 05 Nov 2023 09:42:14 GMT
etag: "65476376-c98"
expires: Thu, 16 Nov 2023 05:56:43 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
accept-ranges: bytes
x-ac: 1.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2

GET www.freshrf.com/favicon.ico

199.16.172.82

200 OK

198 B

URL GET HTTP/2
www.freshrf.com/favicon.ico
IP
199.16.172.82:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.freshrf.com/zendesk/
Certificate
IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint69:25:22:64:FA:70:D1:1C:73:44:DF:BA:F9:D8:9E:4B:AC:93:8D:4A
ValidityFri, 15 Sep 2023 21:37:24 GMT - Thu, 14 Dec 2023 21:37:23 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 2 colors\012- data
Size
198 B (198 bytes)
Hash
c6acedaff906029fc5455d9ec52c7f42
92cbd806ca421aa2c9ff5e1ff76bbc20913a2f81
9deb629637088856fe61dc868bf40a7d21ed942e4117659f3d6c3408f59b906b

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.freshrf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.freshrf.com/zendesk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 09 Nov 2023 05:56:43 GMT
content-type: image/x-icon
content-length: 198
strict-transport-security: max-age=31536000
last-modified: Fri, 08 Jul 2022 15:39:36 GMT
etag: "62c84fb8-c6"
expires: Thu, 09 Nov 2023 06:11:43 GMT
cache-control: max-age=900
accept-ranges: bytes
x-ac: 1.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2

GET www.freshrf.com/zendesk/assets/bootstrap/js/bootstrap.min.js

199.16.172.82

200 OK

81 kB

URL GET HTTP/2
www.freshrf.com/zendesk/assets/bootstrap/js/bootstrap.min.js
IP
199.16.172.82:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.freshrf.com/zendesk/
Certificate
IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint69:25:22:64:FA:70:D1:1C:73:44:DF:BA:F9:D8:9E:4B:AC:93:8D:4A
ValidityFri, 15 Sep 2023 21:37:24 GMT - Thu, 14 Dec 2023 21:37:23 GMT

File type
ASCII text, with very long lines (65299)
Size
81 kB (80615 bytes)
Hash
d2f2ef0051cf284637b29bb4678c1b81
1a18643241dea9ac7c190029ea6d8efbd73e5f84
66af34efad8ad6be518c955fb42163a9f1178a2f51b6b16e7864a46973b04349

HTTP Headers

GET /zendesk/assets/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: www.freshrf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.freshrf.com/zendesk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 Nov 2023 05:56:42 GMT
content-type: application/javascript
strict-transport-security: max-age=31536000
last-modified: Sun, 05 Nov 2023 09:42:14 GMT
vary: Accept-Encoding
etag: W/"65476376-13ae7"
expires: Thu, 16 Nov 2023 05:56:42 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 1.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2

GET oomdata.com/mandown/

199.16.173.229

302 Found

3.9 kB

URL User Request GET HTTP/2
oomdata.com/mandown/
IP
199.16.173.229:443
ASN
#2635 AUTOMATTIC

Certificate
IssuerLet's Encrypt
Subjecttls.automattic.com
FingerprintF4:B6:D4:BB:47:38:84:94:CB:F7:1D:65:85:FE:38:5A:D0:0D:E3:49
ValidityWed, 20 Sep 2023 19:07:56 GMT - Tue, 19 Dec 2023 19:07:55 GMT

File type

Size
3.9 kB (3852 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /mandown/ HTTP/1.1
Host: oomdata.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx
date: Thu, 09 Nov 2023 05:56:41 GMT
content-type: text/html; charset=utf-8
location: https://www.freshrf.com/zendesk/
strict-transport-security: max-age=31536000
host-header: Pressable
x-ac: 4.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2

GET www.freshrf.com/zendesk/assets/css/styles.css

199.16.172.82

200 OK

7.0 kB

URL GET HTTP/2
www.freshrf.com/zendesk/assets/css/styles.css
IP
199.16.172.82:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.freshrf.com/zendesk/
Certificate
IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint69:25:22:64:FA:70:D1:1C:73:44:DF:BA:F9:D8:9E:4B:AC:93:8D:4A
ValidityFri, 15 Sep 2023 21:37:24 GMT - Thu, 14 Dec 2023 21:37:23 GMT

File type
ASCII text, with very long lines (7416), with no line terminators
Size
7.0 kB (7026 bytes)
Hash
b7b7000d533d39ba62ff522d2504de1e
076fe394df80fb755374321ce78c39ceb363f02e
2059bb01f02c462fdfa7b4fc944f6168bb4adf85a2a4ea67ebbf1db51c243d7a

HTTP Headers

GET /zendesk/assets/css/styles.css HTTP/1.1
Host: www.freshrf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.freshrf.com/zendesk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 Nov 2023 05:56:42 GMT
content-type: text/css
strict-transport-security: max-age=31536000
last-modified: Sun, 05 Nov 2023 09:42:14 GMT
vary: Accept-Encoding
etag: W/"65476376-1b72"
expires: Thu, 16 Nov 2023 05:56:42 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 1.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2

GET www.freshrf.com/zendesk/assets/img/zendesk-2.svg

199.16.172.82

200 OK

1.9 kB

URL GET HTTP/2
www.freshrf.com/zendesk/assets/img/zendesk-2.svg
IP
199.16.172.82:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.freshrf.com/zendesk/
Certificate
IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint69:25:22:64:FA:70:D1:1C:73:44:DF:BA:F9:D8:9E:4B:AC:93:8D:4A
ValidityFri, 15 Sep 2023 21:37:24 GMT - Thu, 14 Dec 2023 21:37:23 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1949), with no line terminators
Size
1.9 kB (1931 bytes)
Hash
b5d75011b312290d75630c38bdfdb297
52350f1abadd8d936a66e22ad5d2b50a79c8c851
4c6458122312069e442dda4e6593047f04eee3fd57579dc3488afcfb9d27ba38

HTTP Headers

GET /zendesk/assets/img/zendesk-2.svg HTTP/1.1
Host: www.freshrf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.freshrf.com/zendesk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 Nov 2023 05:56:42 GMT
content-type: image/svg+xml
strict-transport-security: max-age=31536000
last-modified: Sun, 05 Nov 2023 09:42:14 GMT
vary: Accept-Encoding
etag: W/"65476376-78b"
expires: Thu, 16 Nov 2023 05:56:42 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 1.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2

GET www.freshrf.com/zendesk/assets/css/Google-Style-Login-.css

199.16.172.82

200 OK

1.9 kB

URL GET HTTP/2
www.freshrf.com/zendesk/assets/css/Google-Style-Login-.css
IP
199.16.172.82:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.freshrf.com/zendesk/
Certificate
IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint69:25:22:64:FA:70:D1:1C:73:44:DF:BA:F9:D8:9E:4B:AC:93:8D:4A
ValidityFri, 15 Sep 2023 21:37:24 GMT - Thu, 14 Dec 2023 21:37:23 GMT

File type
ASCII text, with very long lines (1982), with no line terminators
Size
1.9 kB (1897 bytes)
Hash
064b6b48375c41e2d1c7ef07d777bf8a
a71fa3a2232c7d6760e367f54f2870b8280da335
50d8f6e7ff1c5b368edd7bbefdc7f717a4aef3f334a7b59ed3a2aa0b1b877f7b

HTTP Headers

GET /zendesk/assets/css/Google-Style-Login-.css HTTP/1.1
Host: www.freshrf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.freshrf.com/zendesk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 Nov 2023 05:56:42 GMT
content-type: text/css
strict-transport-security: max-age=31536000
last-modified: Sun, 05 Nov 2023 09:42:14 GMT
vary: Accept-Encoding
etag: W/"65476376-769"
expires: Thu, 16 Nov 2023 05:56:42 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 1.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2

GET www.freshrf.com/zendesk/assets/css/Login-Box-En-login-box-en.css

199.16.172.82

200 OK

2.2 kB

URL GET HTTP/2
www.freshrf.com/zendesk/assets/css/Login-Box-En-login-box-en.css
IP
199.16.172.82:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.freshrf.com/zendesk/
Certificate
IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint69:25:22:64:FA:70:D1:1C:73:44:DF:BA:F9:D8:9E:4B:AC:93:8D:4A
ValidityFri, 15 Sep 2023 21:37:24 GMT - Thu, 14 Dec 2023 21:37:23 GMT

File type
ASCII text, with very long lines (2363), with no line terminators
Size
2.2 kB (2228 bytes)
Hash
4658274d08880846bf1d05a7cd9ef3cd
35d8f5623fe13aebcda3383652540fd0c88a30e9
250356f15218cd79db8d04f122ece45babf70d9d7eedd563b522cdfb52aff283

HTTP Headers

GET /zendesk/assets/css/Login-Box-En-login-box-en.css HTTP/1.1
Host: www.freshrf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.freshrf.com/zendesk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 Nov 2023 05:56:42 GMT
content-type: text/css
strict-transport-security: max-age=31536000
last-modified: Sun, 05 Nov 2023 09:42:14 GMT
vary: Accept-Encoding
etag: W/"65476376-8b4"
expires: Thu, 16 Nov 2023 05:56:42 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 1.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2

GET www.freshrf.com/zendesk/

199.16.172.82

200 OK

3.9 kB

URL User Request GET HTTP/2
www.freshrf.com/zendesk/
IP
199.16.172.82:443
ASN
#2635 AUTOMATTIC

Certificate
IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint69:25:22:64:FA:70:D1:1C:73:44:DF:BA:F9:D8:9E:4B:AC:93:8D:4A
ValidityFri, 15 Sep 2023 21:37:24 GMT - Thu, 14 Dec 2023 21:37:23 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4050), with no line terminators
Size
3.9 kB (3852 bytes)
Hash
1a63f4ae18264e465b5280163714b3e0
7899023ba18252f3dc7282bf296ca81f83a953c7
c05a4abc6181a0b4a6a5560609940a1e95e6cdc49ac61fa1006e66911939ca6f

HTTP Headers

GET /zendesk/ HTTP/1.1
Host: www.freshrf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 Nov 2023 05:56:42 GMT
content-type: text/html
strict-transport-security: max-age=31536000
last-modified: Sun, 05 Nov 2023 17:00:09 GMT
vary: Accept-Encoding
etag: W/"6547ca19-f0c"
content-encoding: br
x-ac: 1.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2

GET www.freshrf.com/zendesk/assets/bootstrap/css/bootstrap.min.css

199.16.172.82

200 OK

233 kB

URL GET HTTP/2
www.freshrf.com/zendesk/assets/bootstrap/css/bootstrap.min.css
IP
199.16.172.82:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.freshrf.com/zendesk/
Certificate
IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint69:25:22:64:FA:70:D1:1C:73:44:DF:BA:F9:D8:9E:4B:AC:93:8D:4A
ValidityFri, 15 Sep 2023 21:37:24 GMT - Thu, 14 Dec 2023 21:37:23 GMT

File type

Size
233 kB (232903 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /zendesk/assets/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: www.freshrf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.freshrf.com/zendesk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 09 Nov 2023 05:56:43 GMT
content-type: text/css
strict-transport-security: max-age=31536000
last-modified: Sun, 05 Nov 2023 09:42:14 GMT
vary: Accept-Encoding
etag: W/"65476376-38dc7"
expires: Thu, 16 Nov 2023 05:56:42 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 1.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (12)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate