Report - opendoors.com.ng/cio/

Report Overview

Visited public
2023-12-09 14:11:04
Tags
URL
opendoors.com.ng/cio/
Finishing URL
opendoors.com.ng/
IP / ASN
169.255.57.48
#327813 Web4Africa
Title
Opendoors Solutions Management Company Ltd – …open to your needs

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

104

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-09 07:42:19	2.0 kB	54 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-09 06:06:20	2.1 kB	68 kB	216.58.207.227
encrypted-tbn0.gstatic.com	unknown	2008-02-11	2013-05-31 04:32:18	2023-12-08 18:33:06	499 B	12 kB	142.250.74.174
opendoors.com.ng	unknown	2020-12-07	2021-02-03 04:11:27	2023-12-08 19:54:04	13 kB	2.6 MB	169.255.57.48
a9p9n2x2.stackpathcdn.com	128624	2016-07-15	2019-01-15 14:38:38	2023-12-08 07:38:04	1.0 kB	422 B	151.139.128.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed
2023-12-09	medium	opendoors.com.ng	Sinkholed

ThreatFox

No alerts detected

JavaScript (5)

	URL	From	Size	First Seen	Last Seen
	opendoors.com.ng/	ScriptElement	444 B	2024-08-20	2024-08-20
Pretty URL opendoors.com.ng/ IP 169.255.57.48 ASN #327813 Web4Africa Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:17 Last Seen2024-08-20 16:17 Times Seen1 Hash 0cd24a9520289ded0bf76b0a031c749b 170f87ac56172fe1b867af60e6e21fecf2921ff4 986e338351861ca6c558dabc26fd48e69a8eb41234e14a666ec29ea84215676d Loading...

	opendoors.com.ng/	ScriptElement	3.3 kB	2023-12-08	2024-08-20
Pretty URL opendoors.com.ng/ IP 169.255.57.48 ASN #327813 Web4Africa Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-08 07:38 Last Seen2024-08-20 16:23 Times Seen3 Hash d293f548bae4b1b1978a0e429bff8dcf 509f6990c8eeb49e6a471a280151a92f6009c8c2 c1fcbe45c3a08c21cfb58e17f1d1b27c8401b9d3f26cbcfabe7ffbe0642bf92b Loading...

	opendoors.com.ng/wp-includes/js/jquery/jquery.min.js?ver=3.7.1	ScriptElement	88 kB	2023-11-03	2025-05-09
Pretty URL opendoors.com.ng/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP 169.255.57.48 ASN #327813 Web4Africa Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26 Last Seen2025-05-09 07:28 Times Seen91861 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	opendoors.com.ng/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	ScriptElement	14 kB	2023-05-09	2025-05-09
Pretty URL opendoors.com.ng/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 169.255.57.48 ASN #327813 Web4Africa Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21 Last Seen2025-05-09 07:28 Times Seen105638 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	opendoors.com.ng/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0	ScriptElement	24 kB	2023-12-08	2023-12-09
Pretty URL opendoors.com.ng/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 IP 169.255.57.48 ASN #327813 Web4Africa Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-08 07:38 Last Seen2023-12-09 15:11 Times Seen3 Hash 6df9da5cceaa0f95874c297c691aa15d 3f44f6383a826e2b0d1d392093514dab704a1390 95f26e9b43f9c94faf570c4d8c5b36745604179fceb4b517145fe95bfbd09b66 Loading...

HTTP Transactions (36)

URL IP Response Size

opendoors.com.ng/cio/

169.255.57.48

302 Found

0 B

URL User Request GET HTTP/1.1
opendoors.com.ng/cio/
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cio/ HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Sat, 09 Dec 2023 14:10:45 GMT
Server: Apache
Cache-Control: no-store
Location: /
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

opendoors.com.ng/wp-content/themes/hello-elementor/style.min.css?ver=2.9.0

169.255.57.48

200 OK

5.8 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-content/themes/hello-elementor/style.min.css?ver=2.9.0
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (5756), with no line terminators
Size
5.8 kB (5756 bytes)
Hash
5be56bc9e617084e1cbb84c994912fc3
a3adca593d4ec4afb41e32d073405610ae37eef7
3c3c0ebe37e4fd4187131a0a8d039064a9014215c4b83199d909e7e0b2d7f450

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/hello-elementor/style.min.css?ver=2.9.0 HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:48 GMT
Server: Apache
Last-Modified: Wed, 25 Oct 2023 18:00:14 GMT
Accept-Ranges: bytes
Content-Length: 5756
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

opendoors.com.ng/

169.255.57.48

200 OK

160 kB

URL User Request GET HTTP/1.1
opendoors.com.ng/
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (9462), with CRLF, LF line terminators
Size
160 kB (160260 bytes)
Hash
35700bd61afe6347844bf5bdf78484a4
9ddc912590f6e424426747027f94410a99c56e97
4c9ef47c4808b0fdad6b93cd00941ce628167f8cab77f3c658ba6c430ae59ded

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:46 GMT
Server: Apache
Link: <https://opendoors.com.ng/wp-json/>; rel="https://api.w.org/", <https://opendoors.com.ng/wp-json/wp/v2/pages/34>; rel="alternate"; type="application/json", <https://opendoors.com.ng/>; rel=shortlink
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

opendoors.com.ng/wp-content/themes/hello-elementor/theme.min.css?ver=2.9.0

169.255.57.48

200 OK

12 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-content/themes/hello-elementor/theme.min.css?ver=2.9.0
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (12433), with no line terminators
Size
12 kB (12439 bytes)
Hash
89e436a24d959247c10bc8fac759e680
c2789bb856dac776e4611d13fa493a96a03514b4
5f9d3a91d5bbc09131900b7dc64ba4328bab03dc7221c5c2773397cb656bca18

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.9.0 HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:48 GMT
Server: Apache
Last-Modified: Wed, 25 Oct 2023 18:00:14 GMT
Accept-Ranges: bytes
Content-Length: 12439
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

opendoors.com.ng/wp-content/uploads/elementor/css/post-125.css?ver=1702097078

169.255.57.48

200 OK

1.2 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-content/uploads/elementor/css/post-125.css?ver=1702097078
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1171), with no line terminators
Size
1.2 kB (1171 bytes)
Hash
e4bca5452db06c5fabdb4e3f79e49743
6d586c2c2c66d79e5a1e5d9bca68eecdcfb58a9c
d7fef1fc5cfff03c05144f830fa93c92fbe73d14dcf47294e7fde9f197f29eb1

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-125.css?ver=1702097078 HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:48 GMT
Server: Apache
Last-Modified: Sat, 09 Dec 2023 04:44:38 GMT
Accept-Ranges: bytes
Content-Length: 1171
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

opendoors.com.ng/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.25.0

169.255.57.48

200 OK

20 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.25.0
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (19525)
Size
20 kB (19571 bytes)
Hash
edcdb90e5161a1894daff5e6b1b35c3f
1c199cad3f215c2dcc739fcbc10bb14b53bebe13
d2f82e2e141c7a7f31f40ab9ed8c499bba09505bac8b806cf016d10550e2a6d7

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.25.0 HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:48 GMT
Server: Apache
Last-Modified: Mon, 13 Nov 2023 22:19:04 GMT
Accept-Ranges: bytes
Content-Length: 19571
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

opendoors.com.ng/wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5

169.255.57.48

200 OK

16 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (16214)
Size
16 kB (16471 bytes)
Hash
a2431bc290cf34e330e11ec4cfce1247
32a53342901fef5f4f4dbb26a555e730f84437a4
c57e64fcb72bddafa9c38de574441c3e69ac6c961df96b0cad34da83658bd196

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5 HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:48 GMT
Server: Apache
Last-Modified: Sun, 23 Apr 2023 15:22:46 GMT
Accept-Ranges: bytes
Content-Length: 16471
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

opendoors.com.ng/wp-content/uploads/elementor/css/global.css?ver=1702097078

169.255.57.48

200 OK

9.5 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-content/uploads/elementor/css/global.css?ver=1702097078
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (6697)
Size
9.5 kB (9475 bytes)
Hash
953f94779f5ae871f5669c6b4bb84a71
ab5b4a710d2850b2b4ccbd91d1f786c7ef7ec664
60e3083dd987ec50c560bf8219fd9dfb1a6f3b546c405be9218448f7e0bb9368

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/global.css?ver=1702097078 HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:48 GMT
Server: Apache
Last-Modified: Sat, 09 Dec 2023 04:44:38 GMT
Accept-Ranges: bytes
Content-Length: 9475
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

opendoors.com.ng/wp-includes/js/jquery/jquery.min.js?ver=3.7.1

169.255.57.48

200 OK

88 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65447)
Size
88 kB (87553 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:48 GMT
Server: Apache
Last-Modified: Tue, 29 Aug 2023 02:44:24 GMT
Accept-Ranges: bytes
Content-Length: 87553
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

opendoors.com.ng/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

169.255.57.48

200 OK

14 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (13479)
Size
14 kB (13577 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:49 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2023 15:19:24 GMT
Accept-Ranges: bytes
Content-Length: 13577
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

opendoors.com.ng/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0

169.255.57.48

200 OK

24 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (22648)
Size
24 kB (24476 bytes)
Hash
6df9da5cceaa0f95874c297c691aa15d
3f44f6383a826e2b0d1d392093514dab704a1390
95f26e9b43f9c94faf570c4d8c5b36745604179fceb4b517145fe95bfbd09b66

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:49 GMT
Server: Apache
Last-Modified: Wed, 25 Oct 2023 18:00:14 GMT
Accept-Ranges: bytes
Content-Length: 24476
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

opendoors.com.ng/wp-includes/css/dist/block-library/style.min.css?ver=6.4.2

169.255.57.48

200 OK

110 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-includes/css/dist/block-library/style.min.css?ver=6.4.2
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (57084)
Size
110 kB (110035 bytes)
Hash
99ab466e0866c823ae5db517d59cebd1
5595a586cbd42b31377681b9d35293278d75d336
698b89c0da3d319754d6a837b5e6d4e6a42dc402d9ffd7559b8c4cb29c644340

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.4.2 HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:48 GMT
Server: Apache
Last-Modified: Mon, 06 Nov 2023 06:10:32 GMT
Accept-Ranges: bytes
Content-Length: 110035
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

opendoors.com.ng/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.18.2

169.255.57.48

200 OK

117 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.18.2
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65496)
Size
117 kB (117332 bytes)
Hash
5c328172a76686b7e0cd99056bb9550e
696eb606ac28c8a93afb698216ed5c786408ca9a
e366875e2df0ce65a6527dfe9f39e8fe0ffe94120ddefedaeec1e501b99ff7f5

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.18.2 HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:48 GMT
Server: Apache
Last-Modified: Fri, 08 Dec 2023 17:14:50 GMT
Accept-Ranges: bytes
Content-Length: 117332
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

opendoors.com.ng/wp-content/plugins/pagelayer/css/givecss.php?give=pagelayer-frontend.css%2Cnivo-lightbox.css%2Canimate.min.css%2Cowl.carousel.min.css%2Cowl.theme.default.min.css%2Cfont-awesome5.min.css&premium&ver=1.7.8

169.255.57.48

404 Not Found

61 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-content/plugins/pagelayer/css/givecss.php?give=pagelayer-frontend.css%2Cnivo-lightbox.css%2Canimate.min.css%2Cowl.carousel.min.css%2Cowl.theme.default.min.css%2Cfont-awesome5.min.css&premium&ver=1.7.8
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (9462), with CRLF, LF line terminators
Size
61 kB (60940 bytes)
Hash
3959f76891e38c2b78b525a6215151aa
d565aa95d5e9c980db0c68408282db4b2ae9ccac
0cdca126c1b8cfeeb61e2c6f8ac3a064768489e9d4749323b1bb0f87fe1c0a3b

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/pagelayer/css/givecss.php?give=pagelayer-frontend.css%2Cnivo-lightbox.css%2Canimate.min.css%2Cowl.carousel.min.css%2Cowl.theme.default.min.css%2Cfont-awesome5.min.css&premium&ver=1.7.8 HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Sat, 09 Dec 2023 14:10:48 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://opendoors.com.ng/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

opendoors.com.ng/wp-content/plugins/pagelayer/js/givejs.php?give=pagelayer-frontend.js%2Cnivo-lightbox.min.js%2Cwow.min.js%2Cjquery-numerator.js%2CsimpleParallax.min.js%2Cowl.carousel.min.js&premium&ver=1.7.8

169.255.57.48

404 Not Found

61 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-content/plugins/pagelayer/js/givejs.php?give=pagelayer-frontend.js%2Cnivo-lightbox.min.js%2Cwow.min.js%2Cjquery-numerator.js%2CsimpleParallax.min.js%2Cowl.carousel.min.js&premium&ver=1.7.8
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (9462), with CRLF, LF line terminators
Size
61 kB (60940 bytes)
Hash
3959f76891e38c2b78b525a6215151aa
d565aa95d5e9c980db0c68408282db4b2ae9ccac
0cdca126c1b8cfeeb61e2c6f8ac3a064768489e9d4749323b1bb0f87fe1c0a3b

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/pagelayer/js/givejs.php?give=pagelayer-frontend.js%2Cnivo-lightbox.min.js%2Cwow.min.js%2Cjquery-numerator.js%2CsimpleParallax.min.js%2Cowl.carousel.min.js&premium&ver=1.7.8 HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Sat, 09 Dec 2023 14:10:49 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://opendoors.com.ng/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

a9p9n2x2.stackpathcdn.com/wp-content/blogs.dir/1/files/2019/09/AdobeStock_197786884-3.jpeg

151.139.128.10

403 Forbidden

0 B

URL GET HTTP/1.1
a9p9n2x2.stackpathcdn.com/wp-content/blogs.dir/1/files/2019/09/AdobeStock_197786884-3.jpeg
IP
151.139.128.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://opendoors.com.ng/
Certificate
IssuerSectigo Limited
Subject*.stackpathcdn.com
Fingerprint38:AA:81:CC:DE:E0:6C:F9:5D:E6:94:AB:8A:6B:35:4E:0D:43:A0:EF
ValidityThu, 04 May 2023 00:00:00 GMT - Thu, 30 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/blogs.dir/1/files/2019/09/AdobeStock_197786884-3.jpeg HTTP/1.1
Host: a9p9n2x2.stackpathcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Accept-Ranges: bytes
Cache-Control: max-age=10
X-HW: 1702131050.cds221.sk1.hn,1702131050.cds221.sk1.h2c
Date: Sat, 09 Dec 2023 14:10:50 GMT
Connection: keep-alive
Content-Length: 0

a9p9n2x2.stackpathcdn.com/wp-content/blogs.dir/1/files/2016/11/iStock_87300957_LARGE-1-e1525803610839.jpg

151.139.128.10

403 Forbidden

0 B

URL GET HTTP/1.1
a9p9n2x2.stackpathcdn.com/wp-content/blogs.dir/1/files/2016/11/iStock_87300957_LARGE-1-e1525803610839.jpg
IP
151.139.128.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://opendoors.com.ng/
Certificate
IssuerSectigo Limited
Subject*.stackpathcdn.com
Fingerprint38:AA:81:CC:DE:E0:6C:F9:5D:E6:94:AB:8A:6B:35:4E:0D:43:A0:EF
ValidityThu, 04 May 2023 00:00:00 GMT - Thu, 30 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/blogs.dir/1/files/2016/11/iStock_87300957_LARGE-1-e1525803610839.jpg HTTP/1.1
Host: a9p9n2x2.stackpathcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Accept-Ranges: bytes
Cache-Control: max-age=10
X-HW: 1702131050.cds249.sk1.hn,1702131050.cds249.sk1.h2c
Date: Sat, 09 Dec 2023 14:10:50 GMT
Connection: keep-alive
Content-Length: 0

opendoors.com.ng/wp-content/uploads/2021/02/download.jpeg

169.255.57.48

200 OK

6.6 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-content/uploads/2021/02/download.jpeg
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x210, components 3
Size
6.6 kB (6626 bytes)
Hash
b1522b6989f8e7d23e6264a41b52736d
5d725b93c9db13ce5831528ce85452cd3742c78d
2aa779458f765e8bc4a9f275dc6f8f5e9f5a99ecdaade2a64bd684c40964b950

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/02/download.jpeg HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:50 GMT
Server: Apache
Last-Modified: Mon, 22 Feb 2021 14:46:15 GMT
Accept-Ranges: bytes
Content-Length: 6626
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg

fonts.googleapis.com/css?family=Cabin%2C+sans-serif%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&ver=1.7.8

142.250.74.106

400 Bad Request

1.3 kB

URL GET HTTP/3
fonts.googleapis.com/css?family=Cabin%2C+sans-serif%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&ver=1.7.8
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://opendoors.com.ng/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT

File type
gzip compressed data, max compression
Size
1.3 kB (1321 bytes)
Hash
902ef8e0cedba7ee893071c6dff00da0
a2afcdb63f4419aaebfe370cdcddfc2a25862b6a
98f5cf746833c2a63ddebf67d6210eea329a19ffd4613eeffd56ff30b05e1920

HTTP Headers

GET /css?family=Cabin%2C+sans-serif%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&ver=1.7.8 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 400 Bad Request
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 09 Dec 2023 14:10:50 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2

216.58.207.227

200 OK

17 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://opendoors.com.ng/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17368, version 1.0
Size
17 kB (17368 bytes)
Hash
abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9

HTTP Headers

GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://opendoors.com.ng
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 04:48:27 GMT
expires: Fri, 06 Dec 2024 04:48:27 GMT
cache-control: public, max-age=31536000
age: 206543
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://opendoors.com.ng/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://opendoors.com.ng
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 04:57:34 GMT
expires: Fri, 06 Dec 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 205996
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://opendoors.com.ng/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://opendoors.com.ng
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:46:25 GMT
expires: Fri, 06 Dec 2024 15:46:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 167065
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://opendoors.com.ng/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://opendoors.com.ng
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:57:09 GMT
expires: Fri, 06 Dec 2024 15:57:09 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 166421
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

opendoors.com.ng/wp-content/uploads/2021/02/Detail-page534x400-1.jpg

169.255.57.48

200 OK

78 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-content/uploads/2021/02/Detail-page534x400-1.jpg
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 534x400, components 3
Size
78 kB (78123 bytes)
Hash
8dfa53bc70259732b87fac7d6f0bdcf4
29256114567ed4641238da96aa6fa7581f785b49
bee6eeecd05eb4a48f10071a24c645d4f5d052e6002d31c6e6840adbfff24c95

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/02/Detail-page534x400-1.jpg HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:50 GMT
Server: Apache
Last-Modified: Mon, 22 Feb 2021 11:39:31 GMT
Accept-Ranges: bytes
Content-Length: 78123
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

opendoors.com.ng/wp-content/uploads/2021/02/Rex_idaminabo-e1433251426988.jpg

169.255.57.48

200 OK

56 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-content/uploads/2021/02/Rex_idaminabo-e1433251426988.jpg
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1024x640, components 3
Size
56 kB (55767 bytes)
Hash
b84416222969f3c6975acd1897337a45
3c780ef67b04116c6ef98b56f0bce1587d0f02c0
84666140cdee276f230a557b191e59888d55eed6322b95a7abba8a29dc2aa958

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/02/Rex_idaminabo-e1433251426988.jpg HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:50 GMT
Server: Apache
Last-Modified: Mon, 22 Feb 2021 12:18:03 GMT
Accept-Ranges: bytes
Content-Length: 55767
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

opendoors.com.ng/wp-content/uploads/2021/01/dots.png

169.255.57.48

200 OK

6.1 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-content/uploads/2021/01/dots.png
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
PNG image data, 563 x 171, 8-bit colormap, non-interlaced
Size
6.1 kB (6125 bytes)
Hash
d2d2a680fd3a1527363df25d2e59dabc
e2c0e09aa2d4e939f93fd805995ad951b615105a
22bac060695748af84b5cec7c601563ca95495eb9e963bd3d864c7498885e887

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/01/dots.png HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:51 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 11:06:08 GMT
Accept-Ranges: bytes
Content-Length: 6125
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

opendoors.com.ng/wp-content/uploads/2021/01/banner.jpg

169.255.57.48

200 OK

97 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-content/uploads/2021/01/banner.jpg
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x960, components 3
Size
97 kB (97394 bytes)
Hash
07673e25e7e809fd3917c2a0fba48be6
ce112cb51bf30acee5af9793ad416e0e1f792974
be90aea269295d0f4cc5176b8d4696fbc2a0cf5c58c6a719c6347ec0bc720253

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/01/banner.jpg HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:50 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 11:06:08 GMT
Accept-Ranges: bytes
Content-Length: 97394
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

opendoors.com.ng/wp-content/uploads/2023/03/Opendoors-Handbills-send-print-Jan_page-0001.jpg

169.255.57.48

200 OK

523 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-content/uploads/2023/03/Opendoors-Handbills-send-print-Jan_page-0001.jpg
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, baseline, precision 8, 912x1278, components 3
Size
523 kB (522642 bytes)
Hash
cf43f807721dfdac5c0d29af5dde8ff9
c056afc6ffea92c8af8193d52288324c92537214
b20dd1620e6335ea4a9701ce10856dbb457bcae2b33db10a58274936e65785b0

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/03/Opendoors-Handbills-send-print-Jan_page-0001.jpg HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:50 GMT
Server: Apache
Last-Modified: Wed, 01 Mar 2023 20:59:41 GMT
Accept-Ranges: bytes
Content-Length: 522642
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

opendoors.com.ng/wp-content/uploads/2021/06/man2.png

169.255.57.48

200 OK

285 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-content/uploads/2021/06/man2.png
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
PNG image data, 446 x 622, 8-bit/color RGBA, interlaced
Size
285 kB (284788 bytes)
Hash
2fbb3844c064d19d3d6b882db5b76fc3
f418440022ef6a323753d4643ca78147ad9fd895
e01ac57838c6d4bb63259bd20f9fc1c3211d6fc86e0da1fd8f050821008a4e0b

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/06/man2.png HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:51 GMT
Server: Apache
Last-Modified: Thu, 10 Jun 2021 10:28:32 GMT
Accept-Ranges: bytes
Content-Length: 284788
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQ3J9l0Ek2rl4AAJt6o7ymjbk_50gjcyYLnNw&usqp=CAU

142.250.74.174

200 OK

11 kB

URL GET HTTP/2
encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQ3J9l0Ek2rl4AAJt6o7ymjbk_50gjcyYLnNw&usqp=CAU
IP
142.250.74.174:443
ASN
#15169 GOOGLE

Requested by
https://opendoors.com.ng/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 343x147, components 3
Size
11 kB (10698 bytes)
Hash
9be8d1a832597f3094b2dda3f82451b8
6e71aba99e0888cefc6a3ab87d9c199bc3d43cbc
d310318c55b2ba3643f858696bf84cdfd521a84e6ca1a13694ea041fa3696c64

HTTP Headers

GET /images?q=tbn:ANd9GcQ3J9l0Ek2rl4AAJt6o7ymjbk_50gjcyYLnNw&usqp=CAU HTTP/1.1
Host: encrypted-tbn0.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn"
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
content-length: 10698
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 08 Dec 2023 18:54:39 GMT
expires: Sat, 07 Dec 2024 18:54:39 GMT
cache-control: public, max-age=31536000
age: 69372
last-modified: Sun, 06 Mar 2016 03:59:02 GMT
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

opendoors.com.ng/wp-content/uploads/2023/03/Opendoors-Handbills-send-print-Jan_page-0002.jpg

169.255.57.48

200 OK

508 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-content/uploads/2023/03/Opendoors-Handbills-send-print-Jan_page-0002.jpg
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, baseline, precision 8, 912x1278, components 3
Size
508 kB (508301 bytes)
Hash
80b285bbe715870d27fec863a42afb20
59c6f34fee0c7e577ef1f4f63314029f548d5795
8e5072bf2ff30adef9d2c820b8a4316fa20fc466bf94f27baa5cbb50102a63a7

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/03/Opendoors-Handbills-send-print-Jan_page-0002.jpg HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:50 GMT
Server: Apache
Last-Modified: Wed, 01 Mar 2023 20:59:46 GMT
Accept-Ranges: bytes
Content-Length: 508301
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg

opendoors.com.ng/wp-content/uploads/2021/02/Christine-ZimWorks.jpg

169.255.57.48

200 OK

350 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-content/uploads/2021/02/Christine-ZimWorks.jpg
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2017:06:05 10:40:09], progressive, precision 8, 970x600, components 3
Size
350 kB (349538 bytes)
Hash
35829b050a7c9b4ebf0453429a34ca6c
170a7527ac9905753a2a438bd38cd1bab417e471
c28f8f7350a63c260d1ddf314fb3c44c31de9dd426f7bdc4ed574704cd719cd9

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/02/Christine-ZimWorks.jpg HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:50 GMT
Server: Apache
Last-Modified: Mon, 22 Feb 2021 12:17:09 GMT
Accept-Ranges: bytes
Content-Length: 349538
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg

opendoors.com.ng/favicon.ico

169.255.57.48

302 Found

0 B

URL GET HTTP/1.1
opendoors.com.ng/favicon.ico
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Sat, 09 Dec 2023 14:10:51 GMT
Server: Apache
Link: <https://opendoors.com.ng/wp-json/>; rel="https://api.w.org/"
X-Redirect-By: WordPress
Location: https://opendoors.com.ng/wp-includes/images/w-logo-blue-white-bg.png
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

opendoors.com.ng/wp-includes/images/w-logo-blue-white-bg.png

169.255.57.48

200 OK

4.1 kB

URL GET HTTP/1.1
opendoors.com.ng/wp-includes/images/w-logo-blue-white-bg.png
IP
169.255.57.48:443
ASN
#327813 Web4Africa

Requested by
https://opendoors.com.ng/
Certificate
IssuercPanel, Inc.
Subjectopendoors.com.ng
Fingerprint44:FC:84:F4:CE:29:02:CB:5F:E3:A1:BF:DA:B6:18:EC:CB:96:3E:F9
ValidityWed, 06 Dec 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced
Size
4.1 kB (4119 bytes)
Hash
000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: opendoors.com.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://opendoors.com.ng/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 09 Dec 2023 14:10:52 GMT
Server: Apache
Last-Modified: Tue, 16 Nov 2021 10:34:02 GMT
Accept-Ranges: bytes
Content-Length: 4119
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.4.2

142.250.74.106

200 OK

49 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.4.2
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://opendoors.com.ng/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT

File type
ASCII text
Size
49 kB (48770 bytes)
Hash
fee7a259e738e2166746841dca74b964
b8a0dd7079d9f72b4c3ff2384c2ece264bf9f727
4d8c5099f6aed32fbdf9ea4a4c34f2d9bf9e39fd2eab5f62f36f1dfdb3780c46

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.4.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 09 Dec 2023 14:10:48 GMT
date: Sat, 09 Dec 2023 14:10:48 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Cabin%2C%20sans-serif%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i

142.250.74.106

400 Bad Request

2.4 kB

URL GET HTTP/3
fonts.googleapis.com/css?family=Cabin%2C%20sans-serif%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://opendoors.com.ng/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT

File type
HTML document, ASCII text, with very long lines (2514), with no line terminators
Size
2.4 kB (2448 bytes)
Hash
a096f23df3ef1c0cca83deadac8c7889
fa9da3693629ff7e1e0c42f73790d210c0210ec2
f86dd5d272f6257b6008a3392d1e07ab59d28034a720135260a202bc158ab5d4

HTTP Headers

GET /css?family=Cabin%2C%20sans-serif%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://opendoors.com.ng
DNT: 1
Connection: keep-alive
Referer: https://opendoors.com.ng/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 400 Bad Request
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 09 Dec 2023 14:10:48 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (36)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN