r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 24cdc937930ac2ef9c8f46ba1deabcc5
397417929951bf20f235d5f91510163ac213dc71
eb128aec099dbf1919ee5d965221e904ad3a2162583683cec44518640b505447
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB128AEC099DBF1919EE5D965221E904AD3A2162583683CEC44518640B505447"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6525
Expires: Sat, 01 Oct 2022 23:03:11 GMT
Date: Sat, 01 Oct 2022 21:14:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dcc4499d374a2853afa2d5836acbe65a
4ba69db4852144bf192d1803b69b39a6b881feb8
e4cab1657f3e7a3c2d219a7802955629f414ac772ea4576c30aa7a71533a10c7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E4CAB1657F3E7A3C2D219A7802955629F414AC772EA4576C30AA7A71533A10C7"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13459
Expires: Sun, 02 Oct 2022 00:58:45 GMT
Date: Sat, 01 Oct 2022 21:14:26 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
13.224.103.49200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 13.224.103.49:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 01 Oct 2022 20:16:21 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 d7147e532e5cf73689fcb39fa760bcf2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ZRH50-C1
X-Amz-Cf-Id: kEGHWcPJqDrKQcot5tlpsiLlsPGeD8omzpf5WJ1lA7-RKLgw1Zv93A==
Age: 3485
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LLn2bpigD+f9JjJE1fQ5+kocHLPm/KTI8rwPsnAbHCSdNq93x74OvVh5Vc2LBUVxDyvBQRPLxpM=
x-amz-request-id: 9W62MCDKME5YD90V
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 01 Oct 2022 20:52:12 GMT
age: 1334
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 01 Oct 2022 21:14:26 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cyberera.com.ng/au/eumapoaltiutvq
67.225.140.8301 Moved Permanently 250 B URL HTTP/2 cyberera.com.ng/au/eumapoaltiutvq
IP 67.225.140.8:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 79221eae36c6a3bc92ef750745f6e19e
a53b46cb8500c2075d3a2b61cde8966ed711161e
e44d60f83567ae3cfe60d81eb72ac0d1c43931a6c23c311e1b33cd2bd21110fc
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /au/eumapoaltiutvq HTTP/1.1
Host: cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
location: https://cyberera.com.ng/au/eumapoaltiutvq/
cache-control: max-age=600
expires: Sat, 01 Oct 2022 21:24:26 GMT
content-length: 250
content-type: text/html; charset=iso-8859-1
date: Sat, 01 Oct 2022 21:14:26 GMT
server: Apache
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
13.224.103.49200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 13.224.103.49:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sat, 01 Oct 2022 20:29:33 GMT
Expires: Sat, 01 Oct 2022 20:36:35 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 01ec1718bcc130455b377ec6b38ad50c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ZRH50-C1
X-Amz-Cf-Id: Ka9jS8x61y-ddTTVifUGbfqytM8opcmq2aTx7AHOnTr5eo0vlaHEyQ==
Age: 2693
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 829e839c217bf861b8cf90c8d636f510
459714fcf0d374bdc078ef59d122d59bf9312c5f
36282e09bb25caf3d7350c4bee485cb87947aabc7d7409169caf15c2e75d8b7d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1536
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 21:14:27 GMT
Last-Modified: Sat, 01 Oct 2022 20:48:51 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
cyberera.com.ng/au/eumapoaltiutvq/
67.225.140.8301 Moved Permanently 0 B URL HTTP/2 cyberera.com.ng/au/eumapoaltiutvq/
IP 67.225.140.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /au/eumapoaltiutvq/ HTTP/1.1
Host: cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 301 Moved Permanently
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://www.cyberera.com.ng/au/eumapoaltiutvq/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
date: Sat, 01 Oct 2022 21:14:26 GMT
server: Apache
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.149.101.24101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.101.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ELAOTtTosjnAUeiWqXmd6g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tjhIERL7l6LPRXmOtwU38pHayb8=
www.cyberera.com.ng/au/eumapoaltiutvq/
67.225.140.8404 Not Found 7.5 kB URL HTTP/2 www.cyberera.com.ng/au/eumapoaltiutvq/
IP 67.225.140.8:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32445)
Hash 965b6c3d9baf842312f7faaf9b563f7d
95ed01a113691cbf18d2269f196a905d7efc1cde
1c7e60c1ca432d7c0b57ebd6437f02b714fd78a47574d37773eb9039257d0ca6
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /au/eumapoaltiutvq/ HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7475
content-type: text/html; charset=UTF-8
date: Sat, 01 Oct 2022 21:14:27 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 83f9407574c75ca600c57af0637cb200
4ebabbc1900b8f575e90186e2024e48097b0c8d2
1e166ac737e5c3c015e0dc0c68115ebc5eeb53958682a9b77928ddb647137ac1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 21:14:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cyberera.com.ng/components/css/dist/block-library/style.min.css
67.225.140.8200 OK 12 kB URL HTTP/2 www.cyberera.com.ng/components/css/dist/block-library/style.min.css
IP 67.225.140.8:0
File type ASCII text, with very long lines (43771)
Hash e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /components/css/dist/block-library/style.min.css HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 04 Jul 2022 16:40:38 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 11681
content-type: text/css
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/assets/external/bootstrap.css
67.225.140.8200 OK 4.0 kB URL HTTP/2 www.cyberera.com.ng/visuals-temp/assets/external/bootstrap.css
IP 67.225.140.8:0
File type ASCII text, with very long lines (540), with CRLF line terminators
Hash f049488d534c59f8190a7b874387687d
de94ba0237961e4ee52d502bb7e32915970d4067
eddab397682aa86e12e619dbf64b5c53bc5d94f9ffc78fe4e0860167d37be776
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/assets/external/bootstrap.css HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4025
content-type: text/css
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato%3A400%2C700%2C300%7CPoppins%3A700%2C500%2C400%7CCabin%3A400%2C500%2C600%2C700%2C400italic%2C500italic%2C600italic%2C700italic&font-display=swap
142.250.74.10200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato%3A400%2C700%2C300%7CPoppins%3A700%2C500%2C400%7CCabin%3A400%2C500%2C600%2C700%2C400italic%2C500italic%2C600italic%2C700italic&font-display=swap
IP 142.250.74.10:0
Hash 6cdf573ab27f265449eb6f89d27868dc
cd4e9f1fffbc0787838b4af5f933f2e358a232c3
72a5ddcc7466781dab5a5283ece03a0e2970553736d56efc61b083644b2f3157
GET /css?family=Lato%3A400%2C700%2C300%7CPoppins%3A700%2C500%2C400%7CCabin%3A400%2C500%2C600%2C700%2C400italic%2C500italic%2C600italic%2C700italic&font-display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 01 Oct 2022 21:14:28 GMT
date: Sat, 01 Oct 2022 21:14:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/assets/external/font-awesome.css
67.225.140.8200 OK 7.4 kB URL HTTP/2 www.cyberera.com.ng/visuals-temp/assets/external/font-awesome.css
IP 67.225.140.8:0
File type troff or preprocessor input, ASCII text, with very long lines (359), with CRLF line terminators
Hash 99eae486193280b85cd91e19c8ed702a
0851694c5f3b415fb0d309cccbf5172a9323be8c
28f868bb59dfad1f00bc6a6ea89572579381f768348635fa15d77beb0c9dd89c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/assets/external/font-awesome.css HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7364
content-type: text/css
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/assets/external/miscellaneous.css
67.225.140.8200 OK 3.6 kB URL HTTP/2 www.cyberera.com.ng/visuals-temp/assets/external/miscellaneous.css
IP 67.225.140.8:0
File type ASCII text, with CRLF line terminators
Hash c5d7e3eeb82fa3c6c45410bf461efcc9
dd0110c00c51257fe230a8c1e4fad3841b3e8c95
36e72228859861cc49a5b6ba1160d04f633a1baf80c93701ce7f1bb983f27930
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/assets/external/miscellaneous.css HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3572
content-type: text/css
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/assets/css/theme-responsive.css
67.225.140.8200 OK 8.3 kB URL HTTP/2 www.cyberera.com.ng/visuals-temp/assets/css/theme-responsive.css
IP 67.225.140.8:0
File type ASCII text, with CRLF line terminators
Hash 4048100e20308fbc9ccab9eafc5c6d3b
906f6948e6354a48844afc92fa777b177b9dd053
6f306ea25b25ff5ed12a9665a174919c3860bb2741bba8629c29ad72ec6a33ed
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/assets/css/theme-responsive.css HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8282
content-type: text/css
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/visuals
67.225.140.8301 Moved Permanently 257 B URL HTTP/2 www.cyberera.com.ng/visuals-temp/visuals
IP 67.225.140.8:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 08d2bf44659c3fe798c6df399bfc2c12
d474706afde68649ab63767cb3319428ea950750
e06473d41120e2c30656e0708c39c5264c15f4b6fcc2e22b54f1e0901e381d98
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/visuals HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 301 Moved Permanently
location: https://www.cyberera.com.ng/visuals-temp/visuals/
cache-control: max-age=600
expires: Sat, 01 Oct 2022 21:24:28 GMT
content-length: 257
content-type: text/html; charset=iso-8859-1
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/assets/css/theme-style.css
67.225.140.8200 OK 48 kB URL HTTP/2 www.cyberera.com.ng/visuals-temp/assets/css/theme-style.css
IP 67.225.140.8:0
File type ASCII text, with CRLF line terminators
Hash 405de654d2eddf540877efdca3bb6be8
917df5f2e5db86509be9ac790b2c069aedac904e
e7bbc744073e8dee0b378a1c5cb8d0c6c1ecf823939eb227b046f3fa8cfe980b
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/assets/css/theme-style.css HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 48076
content-type: text/css
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/components/js/jquery/jquery.min.js
67.225.140.8200 OK 31 kB URL HTTP/2 www.cyberera.com.ng/components/js/jquery/jquery.min.js
IP 67.225.140.8:0
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /components/js/jquery/jquery.min.js HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Mar 2021 19:37:24 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 30908
content-type: application/javascript
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/assets/external/lib-sticky.js
67.225.140.8200 OK 2.7 kB URL HTTP/2 www.cyberera.com.ng/visuals-temp/assets/external/lib-sticky.js
IP 67.225.140.8:0
File type ASCII text, with very long lines (6059), with CRLF line terminators
Hash 5a28a69396b38a83626465cefc7e18d6
da1add2a7ea5e8b74e91922e2a4b717f17b90ec1
6c96ad0c2653d2303993f51effa18018837697948fae551c5b46ad7938b6155e
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/assets/external/lib-sticky.js HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2707
content-type: application/javascript
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/assets/external/lib-justified.js
67.225.140.8200 OK 5.6 kB URL HTTP/2 www.cyberera.com.ng/visuals-temp/assets/external/lib-justified.js
IP 67.225.140.8:0
File type ASCII text, with very long lines (18710), with CRLF line terminators
Hash 66fd712e9ea29295ddbb845c8d4a7f2c
e9a6f1e999f41005c94b06b2c9ff3f209177abb2
eece491f83d40b44394239bd7cfd94863690839a2e4139311b27f8056f181976
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/assets/external/lib-justified.js HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5606
content-type: application/javascript
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/components/js/jquery/jquery-migrate.min.js
67.225.140.8200 OK 4.2 kB URL HTTP/2 www.cyberera.com.ng/components/js/jquery/jquery-migrate.min.js
IP 67.225.140.8:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /components/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 13:36:06 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4169
content-type: application/javascript
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/assets/external/lib-smoothscroll.js
67.225.140.8200 OK 3.1 kB URL HTTP/2 www.cyberera.com.ng/visuals-temp/assets/external/lib-smoothscroll.js
IP 67.225.140.8:0
File type ASCII text, with very long lines (4450), with CRLF line terminators
Hash 07050482dc5702fa039250f3e1dba196
103affbf6ecc1796a159760455ea1c82957ecd52
2fdb4bafec45e1f3d84148f935e143fec50bb4ea00cb15e848080d1d96ae1bd5
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/assets/external/lib-smoothscroll.js HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3055
content-type: application/javascript
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/components/js/imagesloaded.min.js
67.225.140.8200 OK 1.8 kB URL HTTP/2 www.cyberera.com.ng/components/js/imagesloaded.min.js
IP 67.225.140.8:0
File type ASCII text, with very long lines (5477)
Hash 951ae46ca55ec7b0e401e2074bdf8b54
64bbbdc28a351b26cab9c230e134ca8eb4d4f83e
fd5d4c623e9d68551114b2a1303584b6792e592e864d4416145904fe8b9edd91
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /components/js/imagesloaded.min.js HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 13 Jun 2020 23:23:28 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1834
content-type: application/javascript
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/assets/external/lib-rubysticky.js
67.225.140.8200 OK 2.3 kB URL HTTP/2 www.cyberera.com.ng/visuals-temp/assets/external/lib-rubysticky.js
IP 67.225.140.8:0
File type ASCII text, with very long lines (5868), with CRLF line terminators
Hash b8856108b81ce1f962c1485db91dd549
e863929c7bd47a95fd65a6d658471426036a7fd3
ecfc7d8b23aa0f9cb10e7526fb975b19100de5eee920ab34d4f4519495c37452
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/assets/external/lib-rubysticky.js HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2257
content-type: application/javascript
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/assets/external/lib-tipsy.js
67.225.140.8200 OK 2.6 kB URL HTTP/2 www.cyberera.com.ng/visuals-temp/assets/external/lib-tipsy.js
IP 67.225.140.8:0
File type ASCII text, with very long lines (4220), with CRLF line terminators
Hash a0ec9e08df3fe3638d9921284ddff190
3eae9606f432175276c6f63c32f895edee706d78
87a111e49a1218d90c5d3158b044755692573016c4e913430bb690a6a500cdd3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/assets/external/lib-tipsy.js HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2591
content-type: application/javascript
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/assets/external/lib-waypoints.js
67.225.140.8200 OK 4.0 kB URL HTTP/2 www.cyberera.com.ng/visuals-temp/assets/external/lib-waypoints.js
IP 67.225.140.8:0
File type Unicode text, UTF-8 text, with very long lines (8623), with CRLF line terminators
Hash fe1dd42d162b1d7787b2f252202b77aa
111d4afd702366762a39ce0045b443580037e769
ad023e944ed67c340bf4c1fbd038cf35dfb8dbd9dd60e60f7413d12adf0c8c23
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/assets/external/lib-waypoints.js HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3950
content-type: application/javascript
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/assets/external/lib-fitvids.js
67.225.140.8200 OK 1.9 kB URL HTTP/2 www.cyberera.com.ng/visuals-temp/assets/external/lib-fitvids.js
IP 67.225.140.8:0
File type HTML document, ASCII text, with very long lines (1783), with CRLF line terminators
Hash 08f9c69142b7d6c01d079114fd6af896
14d4878480d4a722dbd40e35e267f4afb795a2f1
2e83ab1bca3fa4ad44921b667f31917ffd5b5a77a52d034429e79493d5f96163
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/assets/external/lib-fitvids.js HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1865
content-type: application/javascript
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/assets/external/lib-totop.js
67.225.140.8200 OK 2.4 kB URL HTTP/2 www.cyberera.com.ng/visuals-temp/assets/external/lib-totop.js
IP 67.225.140.8:0
File type HTML document, ASCII text, with very long lines (3186), with CRLF line terminators
Hash da095a55abae21c83c6911835bde780c
2fc7a4cc291f585956b31c07f3cdbf437e6bfd13
35d6080947b28ce36163695dc56b2128c896a759555a492a48022a8c37261f08
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/assets/external/lib-totop.js HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2361
content-type: application/javascript
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/assets/external/lib-backstretch.js
67.225.140.8200 OK 2.7 kB URL HTTP/2 www.cyberera.com.ng/visuals-temp/assets/external/lib-backstretch.js
IP 67.225.140.8:0
File type ASCII text, with very long lines (4095), with CRLF line terminators
Hash 87ca0aa205016d1c44a4dcd5c5617892
108be06d931f8d09ffd25a95ea2e39ebbdd423c1
8ba5198433671c392971bba781dbee8e744c8d19c928d1899f7e485b1436abd3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/assets/external/lib-backstretch.js HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2722
content-type: application/javascript
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/assets/external/lib-modernizr.js
67.225.140.8200 OK 7.1 kB URL HTTP/2 www.cyberera.com.ng/visuals-temp/assets/external/lib-modernizr.js
IP 67.225.140.8:0
File type HTML document, ASCII text, with very long lines (14591), with CRLF line terminators
Hash 61fa68546d486f42bf08923d01d18187
a3c6750ec6a911abafc952f4b89a0b5a879bec81
b914ed885ff6b000e6c9ed1754ea951671c2d4d58f9f2739de36f2b6f57bc6a9
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/assets/external/lib-modernizr.js HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7094
content-type: application/javascript
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/assets/external/lib-magnificpopup.js
67.225.140.8200 OK 8.3 kB URL HTTP/2 www.cyberera.com.ng/visuals-temp/assets/external/lib-magnificpopup.js
IP 67.225.140.8:0
File type ASCII text, with very long lines (21881), with CRLF line terminators
Hash 7ea7e51a1d5aa241dc378b593c6c80da
cf4da76a44586d2e5d6574b0025f05a5a8543fc8
80c8680bb96b7b1f9a19824695950245e0669ea2514126436a9c7760fede2ad8
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/assets/external/lib-magnificpopup.js HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8274
content-type: application/javascript
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/assets/external/lib-bootstrap.js
67.225.140.8200 OK 8.5 kB URL HTTP/2 www.cyberera.com.ng/visuals-temp/assets/external/lib-bootstrap.js
IP 67.225.140.8:0
File type ASCII text, with very long lines (30297), with CRLF line terminators
Hash 8d4c90e1dd2f1ff2ce8384b7e599269a
49f0b478ca212ea68571784ec1a07c378c3df21f
f3b7a876c94709c5c260b1225649b2f458865c241a542fbfb4781108dc3275fb
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/assets/external/lib-bootstrap.js HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8519
content-type: application/javascript
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/assets/external/lib-slick.js
67.225.140.8200 OK 11 kB URL HTTP/2 www.cyberera.com.ng/visuals-temp/assets/external/lib-slick.js
IP 67.225.140.8:0
File type ASCII text, with very long lines (32313), with CRLF line terminators
Hash aa6b083c81667dc6e1ea2d57bd65d887
c5b53d42b6e86005a848147dec08be15d6fb9a4a
bcbb2ee9b041dda2532910d8f4c7413147cf972c5dccda8c7f4fc8a83cae60d8
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/assets/external/lib-slick.js HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 10631
content-type: application/javascript
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/assets/js/theme-script.js
67.225.140.8200 OK 14 kB URL HTTP/2 www.cyberera.com.ng/visuals-temp/assets/js/theme-script.js
IP 67.225.140.8:0
File type ASCII text, with CRLF line terminators
Hash 54639b3e08577cf9ee38f433de6ffa8c
d9495efb7535af2a994f1d5b8cd34b1a6482f475
88626f1256b34a447a9a6f0459b1f7cb06f86c76b053090bcea960887b60f000
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/assets/js/theme-script.js HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 14414
content-type: application/javascript
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/visuals-temp/visuals/
67.225.140.8200 OK 303 B URL HTTP/2 www.cyberera.com.ng/visuals-temp/visuals/
IP 67.225.140.8:0
Hash 299e3c2f42fdd0214db2a7be7cf2c1d9
6c6bc5619603c9b8d19f75cad3cf2821fa9631f1
7884fb3b8da3450cecc5cc53128dd55b4657716fa8e70913664806a225991461
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/visuals/ HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:28 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 303
content-type: text/css
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12338
Expires: Sun, 02 Oct 2022 00:40:06 GMT
Date: Sat, 01 Oct 2022 21:14:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12338
Expires: Sun, 02 Oct 2022 00:40:06 GMT
Date: Sat, 01 Oct 2022 21:14:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12338
Expires: Sun, 02 Oct 2022 00:40:06 GMT
Date: Sat, 01 Oct 2022 21:14:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12338
Expires: Sun, 02 Oct 2022 00:40:06 GMT
Date: Sat, 01 Oct 2022 21:14:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: f0791b53-3c5f-4d94-954d-992a529ebb60
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPnunF35oAMFYbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63361ff6-2adb303349153ced73ccecf6;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 22:45:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RGS_T9Cwl5Vjs_bxngHRomiYppE5fLe0SnH19VEfc5-PCT5tb5ku1A==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 04:40:52 GMT
age: 59616
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59da9c68-5ffa-4dc1-adf8-645278cd60ca.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59da9c68-5ffa-4dc1-adf8-645278cd60ca.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 139a144f8cb04ac8aae65f4bad1473e7
265840b2d2fc6eb764cc6409b05deee8d77a19c2
6e0f01b6bdd5a92e92c7b29a6172a2900c68900afd2abba948940621252e0fd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59da9c68-5ffa-4dc1-adf8-645278cd60ca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10380
x-amzn-requestid: 35ee2a77-159c-4bb4-a825-98c638398586
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPdZYHsTIAMFQNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63360f6f-4f68073432bcea371c7b8f03;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:34:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: IENB0e-e13ywHJKPgyLWn1bGPMMxFLUu3cIUcREjGhxDEMROEL1jBg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 21:45:19 GMT
age: 84549
etag: "265840b2d2fc6eb764cc6409b05deee8d77a19c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fc3f7b5-4c80-4662-ba8b-7997bdbdb6a3.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fc3f7b5-4c80-4662-ba8b-7997bdbdb6a3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0d31a422078d02bda318c693c05a58dc
2df7db53629c7adda2c0a4dfe9c17791b73a75e1
a07fe4e135b52da6dfa9d8a55684f0a3bf5f5ce52c4064c8ab37836a939902a9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fc3f7b5-4c80-4662-ba8b-7997bdbdb6a3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8299
x-amzn-requestid: 91eed6b6-632f-472b-93d7-4192425fcdfd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZSxLDF0SoAMFWgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63376246-17bb04894cc786555d693ec3;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 21:40:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 8JvNUZRyYeZjd4ZxOrGMCbJxVf46NRhiHXsFvCAZn2QeUkdCzKoYbw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 22:15:58 GMT
age: 82710
etag: "2df7db53629c7adda2c0a4dfe9c17791b73a75e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03e4f558-3c34-42eb-aa43-9896f0e6ce87.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03e4f558-3c34-42eb-aa43-9896f0e6ce87.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 574cd0b975349cc445e798136863c8a0
74c20bb0c312988822deb9d46b20e4642357fbd7
62d6448a8da1ed783761e1e966c3f03f2d9b4351e04e13e71e330e4cce465fc4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03e4f558-3c34-42eb-aa43-9896f0e6ce87.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8269
x-amzn-requestid: 2ff31dda-d215-42fb-a439-de67799ebeb1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y8dqPFvQIAMFxlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e7641-2c2e3443499003525414587b;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 03:15:13 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: btbI_vFcRysDsOGN3zHGO3PEnzCG8XZyV7E65PB1bwBab86rJM79ZQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 22:16:06 GMT
age: 82702
etag: "74c20bb0c312988822deb9d46b20e4642357fbd7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ae73d97-d8e4-4f93-bf30-c175fc72b008.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ae73d97-d8e4-4f93-bf30-c175fc72b008.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4be456dbe857580c7b4c7fca3936e04e
49798c4a15545a49f3870b2a16af78dbf8e168cc
23e42987d5e9939424d5f4e4fe0c38faf20a221732097927dd4a656199d9d315
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ae73d97-d8e4-4f93-bf30-c175fc72b008.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10201
x-amzn-requestid: 62562627-78a8-4c17-bf6c-b2c986b9ee8f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZSxLCFH3IAMFoFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63376246-69637d745165485171ca73b9;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 21:40:22 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CueKD4mKZFXrPdwSOtYV3muaegRDOA632EztOt22qrk0Qd2yj1oPkg==
via: 1.1 6a63e853422f3197776fb098fab5a416.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 21:57:18 GMT
age: 83830
etag: "49798c4a15545a49f3870b2a16af78dbf8e168cc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d8201d9-93ae-492b-8ea9-d245fa2e4073.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d8201d9-93ae-492b-8ea9-d245fa2e4073.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a9e7ba045a723120501994dea21709db
303c6bb672425443a15bbe22394bd1149f887904
b1bea7212e55ec8eaf62434214a86fed7d6a990d105984d79a7fa0e793395d59
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d8201d9-93ae-492b-8ea9-d245fa2e4073.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3640
x-amzn-requestid: b5f5c567-8aa9-414b-8310-cf3006711ee9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZJo1vFIwoAMF2mA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333bb57-0f1cbcbb29287f5367a14b67;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 03:11:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: HiU5q54X8yU3PXfTqYyCa9c3NbGAmjVLQRYn3P47trBJhtCP4juxRQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 11:00:33 GMT
age: 36835
etag: "303c6bb672425443a15bbe22394bd1149f887904"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.cyberera.com.ng/bingos/assets/style.css
67.225.140.8404 Not Found 7.5 kB URL HTTP/2 www.cyberera.com.ng/bingos/assets/style.css
IP 67.225.140.8:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32445)
Hash 965b6c3d9baf842312f7faaf9b563f7d
95ed01a113691cbf18d2269f196a905d7efc1cde
1c7e60c1ca432d7c0b57ebd6437f02b714fd78a47574d37773eb9039257d0ca6
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /bingos/assets/style.css HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7475
content-type: text/html; charset=UTF-8
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eb2de1a6c4c76b62bd9b5844ac8f0711
205f8666f86cf5f699ed5c8252c46004492fa88e
d0f5a54640474e3d0383d5302a9899e8060456287379906d2359925c6d36c46b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 21:14:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eb2de1a6c4c76b62bd9b5844ac8f0711
205f8666f86cf5f699ed5c8252c46004492fa88e
d0f5a54640474e3d0383d5302a9899e8060456287379906d2359925c6d36c46b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 21:14:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eb2de1a6c4c76b62bd9b5844ac8f0711
205f8666f86cf5f699ed5c8252c46004492fa88e
d0f5a54640474e3d0383d5302a9899e8060456287379906d2359925c6d36c46b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 21:14:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eb2de1a6c4c76b62bd9b5844ac8f0711
205f8666f86cf5f699ed5c8252c46004492fa88e
d0f5a54640474e3d0383d5302a9899e8060456287379906d2359925c6d36c46b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 21:14:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eb2de1a6c4c76b62bd9b5844ac8f0711
205f8666f86cf5f699ed5c8252c46004492fa88e
d0f5a54640474e3d0383d5302a9899e8060456287379906d2359925c6d36c46b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 21:14:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cyberera.com.ng/visuals-temp/assets/external/fonts/fontawesome-webfont.woff2?v=4.7.0
67.225.140.8200 OK 77 kB URL HTTP/2 www.cyberera.com.ng/visuals-temp/assets/external/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 67.225.140.8:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /visuals-temp/assets/external/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.cyberera.com.ng/visuals-temp/assets/external/font-awesome.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Dec 2020 14:33:16 GMT
accept-ranges: bytes
content-length: 77160
cache-control: max-age=172800
expires: Mon, 03 Oct 2022 21:14:29 GMT
vary: Accept-Encoding,User-Agent
content-type: font/woff2
date: Sat, 01 Oct 2022 21:14:29 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.195200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cyberera.com.ng
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 17:10:21 GMT
expires: Wed, 27 Sep 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 360248
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Hash 716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cyberera.com.ng
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 17:17:26 GMT
expires: Wed, 27 Sep 2023 17:17:26 GMT
cache-control: public, max-age=31536000
age: 359823
last-modified: Tue, 26 Apr 2022 16:04:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvqdns.woff2
216.58.207.195200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvqdns.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 26100, version 1.0\012- data
Hash 312bcfa92b0b0a09c3f404b2c662a0b6
5398ff9ee3c10bffc54e3a9f7e5e7506a822b38a
979caf94add5b00ec59d8abde43d200523745c2f4b105c2906f4d9dda4afaeec
GET /s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvqdns.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cyberera.com.ng
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26100
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 18:22:48 GMT
expires: Thu, 28 Sep 2023 18:22:48 GMT
cache-control: public, max-age=31536000
age: 269501
last-modified: Fri, 24 Jun 2022 18:41:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cyberera.com.ng
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 17:10:21 GMT
expires: Wed, 27 Sep 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 360248
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/cabin/v26/u-4g0qWljRw-Pd815fNqc8T_wAFcX-c37OnuHXg.woff2
216.58.207.195200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/cabin/v26/u-4g0qWljRw-Pd815fNqc8T_wAFcX-c37OnuHXg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 27584, version 1.0\012- data
Hash 4b1ccde40f50e18ba65d8dd6c37b9568
c3207ebc1f717a9312ffd980ff2167ca2e48019f
8fbad22272f358d3e1a9e09a50761bd38b44cd558e3316d562e33804f9536a54
GET /s/cabin/v26/u-4g0qWljRw-Pd815fNqc8T_wAFcX-c37OnuHXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cyberera.com.ng
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27584
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 01:40:18 GMT
expires: Sun, 01 Oct 2023 01:40:18 GMT
cache-control: public, max-age=31536000
age: 70451
last-modified: Fri, 24 Jun 2022 18:42:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eb2de1a6c4c76b62bd9b5844ac8f0711
205f8666f86cf5f699ed5c8252c46004492fa88e
d0f5a54640474e3d0383d5302a9899e8060456287379906d2359925c6d36c46b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 21:14:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cyberera.com.ng/media_content/2022/05/ncc-banner.jpeg
67.225.140.8404 Not Found 7.5 kB URL HTTP/2 www.cyberera.com.ng/media_content/2022/05/ncc-banner.jpeg
IP 67.225.140.8:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32445)
Hash 965b6c3d9baf842312f7faaf9b563f7d
95ed01a113691cbf18d2269f196a905d7efc1cde
1c7e60c1ca432d7c0b57ebd6437f02b714fd78a47574d37773eb9039257d0ca6
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /media_content/2022/05/ncc-banner.jpeg HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7475
content-type: text/html; charset=UTF-8
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/media_content/2022/09/cyberera-logo.png
67.225.140.8404 Not Found 7.5 kB URL HTTP/2 www.cyberera.com.ng/media_content/2022/09/cyberera-logo.png
IP 67.225.140.8:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32445)
Hash 965b6c3d9baf842312f7faaf9b563f7d
95ed01a113691cbf18d2269f196a905d7efc1cde
1c7e60c1ca432d7c0b57ebd6437f02b714fd78a47574d37773eb9039257d0ca6
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /media_content/2022/09/cyberera-logo.png HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7475
content-type: text/html; charset=UTF-8
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/media_content/2020/02/cropped-LOGO-4.png
67.225.140.8404 Not Found 7.5 kB URL HTTP/2 www.cyberera.com.ng/media_content/2020/02/cropped-LOGO-4.png
IP 67.225.140.8:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32445)
Hash 965b6c3d9baf842312f7faaf9b563f7d
95ed01a113691cbf18d2269f196a905d7efc1cde
1c7e60c1ca432d7c0b57ebd6437f02b714fd78a47574d37773eb9039257d0ca6
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /media_content/2020/02/cropped-LOGO-4.png HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7475
content-type: text/html; charset=UTF-8
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/bingos/assets/script.js
67.225.140.8404 Not Found 7.5 kB URL HTTP/2 www.cyberera.com.ng/bingos/assets/script.js
IP 67.225.140.8:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32445)
Hash 965b6c3d9baf842312f7faaf9b563f7d
95ed01a113691cbf18d2269f196a905d7efc1cde
1c7e60c1ca432d7c0b57ebd6437f02b714fd78a47574d37773eb9039257d0ca6
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /bingos/assets/script.js HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7475
content-type: text/html; charset=UTF-8
date: Sat, 01 Oct 2022 21:14:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/favicon.ico
67.225.140.8302 Found 0 B URL HTTP/2 www.cyberera.com.ng/favicon.ico
IP 67.225.140.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
x-redirect-by: WordPress
location: https://www.cyberera.com.ng/components/images/w-logo-blue-white-bg.png
cache-control: max-age=600
expires: Sat, 01 Oct 2022 21:24:30 GMT
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
date: Sat, 01 Oct 2022 21:14:30 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/media_content/2022/09/cyberera-logo.png
67.225.140.8404 Not Found 7.5 kB URL HTTP/2 www.cyberera.com.ng/media_content/2022/09/cyberera-logo.png
IP 67.225.140.8:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32445)
Hash 965b6c3d9baf842312f7faaf9b563f7d
95ed01a113691cbf18d2269f196a905d7efc1cde
1c7e60c1ca432d7c0b57ebd6437f02b714fd78a47574d37773eb9039257d0ca6
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /media_content/2022/09/cyberera-logo.png HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7475
content-type: text/html; charset=UTF-8
date: Sat, 01 Oct 2022 21:14:30 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/media_content/2020/02/cropped-LOGO-4.png
67.225.140.8404 Not Found 7.5 kB URL HTTP/2 www.cyberera.com.ng/media_content/2020/02/cropped-LOGO-4.png
IP 67.225.140.8:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32445)
Hash 965b6c3d9baf842312f7faaf9b563f7d
95ed01a113691cbf18d2269f196a905d7efc1cde
1c7e60c1ca432d7c0b57ebd6437f02b714fd78a47574d37773eb9039257d0ca6
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /media_content/2020/02/cropped-LOGO-4.png HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7475
content-type: text/html; charset=UTF-8
date: Sat, 01 Oct 2022 21:14:30 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/media_content/2022/05/ncc-banner.jpeg
67.225.140.8404 Not Found 7.5 kB URL HTTP/2 www.cyberera.com.ng/media_content/2022/05/ncc-banner.jpeg
IP 67.225.140.8:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32445)
Hash 965b6c3d9baf842312f7faaf9b563f7d
95ed01a113691cbf18d2269f196a905d7efc1cde
1c7e60c1ca432d7c0b57ebd6437f02b714fd78a47574d37773eb9039257d0ca6
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /media_content/2022/05/ncc-banner.jpeg HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7475
content-type: text/html; charset=UTF-8
date: Sat, 01 Oct 2022 21:14:30 GMT
server: Apache
X-Firefox-Spdy: h2
www.cyberera.com.ng/components/images/w-logo-blue-white-bg.png
67.225.140.8200 OK 4.1 kB URL HTTP/2 www.cyberera.com.ng/components/images/w-logo-blue-white-bg.png
IP 67.225.140.8:0
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /components/images/w-logo-blue-white-bg.png HTTP/1.1
Host: www.cyberera.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cyberera.com.ng/au/eumapoaltiutvq/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Nov 2021 04:34:02 GMT
accept-ranges: bytes
content-length: 4119
cache-control: max-age=3600, public
expires: Mon, 31 Oct 2022 21:14:32 GMT
content-type: image/png
date: Sat, 01 Oct 2022 21:14:32 GMT
server: Apache
X-Firefox-Spdy: h2