r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7488
Expires: Wed, 30 Nov 2022 00:16:46 GMT
Date: Tue, 29 Nov 2022 22:11:58 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4ed065cb23b5fca1a179dd73b3c5b7b2
4422eb24688f5e056fc1b18b127c7f63b1dbf5e0
b723d770d0dec7441d8505dc5a4e7d34f55c9f564ec52f20d9b70c7c3a0d9d35
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1361
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:11:58 GMT
Last-Modified: Tue, 29 Nov 2022 21:49:17 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9669
Expires: Wed, 30 Nov 2022 00:53:07 GMT
Date: Tue, 29 Nov 2022 22:11:58 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 21:19:38 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3140
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LnUtbEOt9k5MOIY1NKziUqLYHDOYDW8SfoM1AVfpodbGJvWIT5C3LIb6FKzcydCK8E2z7d9glyw=
x-amz-request-id: KWPAJHVTK73QRD4T
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 21:45:37 GMT
age: 1581
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/
66.29.132.103301 Moved Permanently 707 B IP 66.29.132.103:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/ HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Tue, 29 Nov 2022 22:11:58 GMT
server: LiteSpeed
location: https://effexorbuy.com/mtn-n/
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 22:11:58 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 22:11:13 GMT
cache-control: public,max-age=3600
age: 45
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3c8c689bd654417640d85f3da51af313
85123b6d46230a23d03768bf304b386e5d301305
516138ca79703b45e904d32d7dde1c1e9fd35995b9f1bb1331c547542745676d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1930
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:11:59 GMT
Last-Modified: Tue, 29 Nov 2022 21:39:49 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.162.142.194101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.142.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0dM2y+s0S6IPYpydPQP5lg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nVIBvf1gqMVXNQLvzyOt2luV0yI=
effexorbuy.com/mtn-n/
66.29.132.103200 OK 25 kB IP 66.29.132.103:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2275)
Hash 9838789eb33c215614cd7b2b3d8f044c
a20f8e7f704108793fd919d1d9ecd2463454b6fd
fc46aadbbd6d267709cf4c08eb70e97c746f59a0e07434f8c72662f71ed888b2
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/ HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html
last-modified: Sat, 26 Nov 2022 18:15:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 25187
date: Tue, 29 Nov 2022 22:11:59 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d713a6e8d08f4cb5b7a5a3c308f14d75
0330eea5f6c608fe2fc48f05cde5d2a1614d59db
dfa0386385c4d661c8d48d931b549adc5c29a13e9a1b8d7e881512e3f1c69825
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:12:00 GMT
Etag: "6385c75c-117"
Server: ECS (amb/6B97)
Content-Length: 279
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/all.min.css
66.29.132.103200 OK 12 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/all.min.css
IP 66.29.132.103:0
File type ASCII text, with very long lines (59158)
Hash 47c227674548dff8457c3d10cfe61ba5
1def19951272de93b69e7a276d3a03610773a843
dc0a7076b3e36791d872ff449e49d062975e5041bab69fcc94332bac254a6232
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/all.min.css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:10:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12380
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5172
Expires: Tue, 29 Nov 2022 23:38:12 GMT
Date: Tue, 29 Nov 2022 22:12:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5172
Expires: Tue, 29 Nov 2022 23:38:12 GMT
Date: Tue, 29 Nov 2022 22:12:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5172
Expires: Tue, 29 Nov 2022 23:38:12 GMT
Date: Tue, 29 Nov 2022 22:12:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5172
Expires: Tue, 29 Nov 2022 23:38:12 GMT
Date: Tue, 29 Nov 2022 22:12:00 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d713a6e8d08f4cb5b7a5a3c308f14d75
0330eea5f6c608fe2fc48f05cde5d2a1614d59db
dfa0386385c4d661c8d48d931b549adc5c29a13e9a1b8d7e881512e3f1c69825
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:12:00 GMT
Etag: "6385c75c-117"
Last-Modified: Tue, 29 Nov 2022 22:12:00 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e00769bd1391b8f4f5b8ab128a825355
e4ddf955e8ac1986045ed55880c43c69e588a021
81ca4d20c28fed8fd3135515daadc1fdbfb4198535d7c46021b418b8b98e59a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7298
x-amzn-requestid: 381e55bb-876b-46ad-84b6-1ddf9f876f56
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDcE3poAMFaAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-7c12394600900afc7281e858;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7mRG070F4NZnewfowUhVhMerJaGjJd4G6O1tvTPiKyvTAzq-Y16-jw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:56:51 GMT
etag: "e4ddf955e8ac1986045ed55880c43c69e588a021"
content-type: image/jpeg
age: 909
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6bad627-8bb4-4de1-a2da-92da8f9ec614.webp
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6bad627-8bb4-4de1-a2da-92da8f9ec614.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 536cd283dee06cf1ceb9e15e4850db92
47aafca572d34f9726a0174ac902178556e581d8
63a5acf87962da6656f828422545af0ccc0888f0a2a15ebd2160ffb3714e6241
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6bad627-8bb4-4de1-a2da-92da8f9ec614.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7658
x-amzn-requestid: e729e5b6-0c92-4ed3-b449-4a30d5bb4b89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEyEQSIAMFWsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1e-1bba7e9a2d15d66779b1896c;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AuN9hTb4YydNZjvpnTGyE313wl-O3F_p4jC_NUSe8kr3RB_4AjOEMw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:56:09 GMT
age: 951
etag: "47aafca572d34f9726a0174ac902178556e581d8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ced71a5-36d7-45c9-b67b-df6c12c1a127.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ced71a5-36d7-45c9-b67b-df6c12c1a127.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7a8c2292c953e41a108b1ca1f83b5134
0c3e4019730bae709f01d0fcbc6b4b0f20388c0f
155552a78d298bb7f16b41375faf63037de17d1caee1a836bbd512c2e4e5d1fa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ced71a5-36d7-45c9-b67b-df6c12c1a127.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6695
x-amzn-requestid: 870d0eb1-8aa0-40d0-a04c-5e2666b68720
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhXTFWBIAMFfvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867c2e-2f45c71127e5bebd660e6023;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:39:58 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aLGMz9pYDAK4vBIvhsnNa0T9F_r7kn6BFg9q5dT5Qv7PBG9jHgwGXA==
via: 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:44 GMT
age: 1636
etag: "0c3e4019730bae709f01d0fcbc6b4b0f20388c0f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52cf4797-5177-4859-9523-faeb4e38f224.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52cf4797-5177-4859-9523-faeb4e38f224.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c5277610f3a542571abb53ffb3d4df1
ce411cc5b0a37bbd89551d06d7d0349f45734e97
3bf1105631ef7fda0249a46390ca90f904ea73b0a4f017c2db85326550a80a3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52cf4797-5177-4859-9523-faeb4e38f224.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9812
x-amzn-requestid: 70bfeb68-0703-44bf-8550-50c759d52d86
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDbFolIAMFYBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-73fb65ee2b9161372819207f;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jpQ-1qUf3ysXSe_j4z4PIc5e1zj0MaDF9qliEVxU_4RR66yWHwCWzg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:35 GMT
etag: "ce411cc5b0a37bbd89551d06d7d0349f45734e97"
content-type: image/jpeg
age: 1645
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87a30da8-85ab-41b8-bac9-b9c57f447d6a.webp
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87a30da8-85ab-41b8-bac9-b9c57f447d6a.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 33ee67e62c49fc8d51f18df313002aac
3d8c927b6945d880f92d4e7a686cad5a9985e8ad
ba6e66e07cd93219926927fd2b468a92b8d02cc9bf1da0b3b9a3c48da160bbdc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87a30da8-85ab-41b8-bac9-b9c57f447d6a.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9670
x-amzn-requestid: d9a529ac-9dc6-4e12-80c5-3250dc97e7bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDcFiAoAMF0nA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-116ddf09265d51523c3638b3;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dTu4TnkeBj5Jm6nU8CA37pptq4F43BUYXcAJPcXro47W1MJriiVrcw==
via: 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:35 GMT
etag: "3d8c927b6945d880f92d4e7a686cad5a9985e8ad"
content-type: image/jpeg
age: 1645
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fcfcea6-8f79-45f4-b081-2b90a5d95f8f.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fcfcea6-8f79-45f4-b081-2b90a5d95f8f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash acb1e555533322dbfeb8e0d8c956c43d
e1eec39299f081b53c647953b57da4f2f1ba10bc
579d2fd6aab6bba72a405bb1d0259856878adc90671a88b2b0edf5a284dba1f9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fcfcea6-8f79-45f4-b081-2b90a5d95f8f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5492
x-amzn-requestid: 4b09d9a8-09fa-40e5-a996-8a6ad9f8283e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgE9E5TIAMF6ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1f-2f17467d7a6318796d01fd2e;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:11 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8kjwcw34ssnai7n-fW6lGV5ZmFpHR7bTX5MvKPNSgqqzMAgGFCI5fA==
via: 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:35 GMT
etag: "e1eec39299f081b53c647953b57da4f2f1ba10bc"
content-type: image/jpeg
age: 1645
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 55 B IP 93.184.220.29:0
File type HTML document, ASCII text
Hash 9f073354411bbaf7a319b1519f10b4b7
571498f38548829bf186f49f5be9d5fa6e689a68
4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: public, max-age=1209600
Content-Type: text/html
Date: Tue, 29 Nov 2022 22:12:01 GMT
Etag: "638651c5-37"
Last-Modified: Tue, 29 Nov 2022 18:39:01 GMT
Server: nginx
Content-Length: 55
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3822bd10fb3b6dbc64b1a1911f8c1c0c
1949894f7af080020f4c22c8aeceab03f8769484
b4e48496415d44e321e7a1c1ef0a47d72e1591f846869e12642db00bd107175c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2041
Cache-Control: max-age=138562
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:12:01 GMT
Etag: "6385f5fa-1d7"
Expires: Thu, 01 Dec 2022 12:41:23 GMT
Last-Modified: Tue, 29 Nov 2022 12:07:22 GMT
Server: ECS (amb/6B85)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3822bd10fb3b6dbc64b1a1911f8c1c0c
1949894f7af080020f4c22c8aeceab03f8769484
b4e48496415d44e321e7a1c1ef0a47d72e1591f846869e12642db00bd107175c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:12:01 GMT
Etag: "6385f5fa-1d7"
Server: ECS (amb/6B9E)
Content-Length: 471
mtnonline.com/smartanalytics/assets/assets/css/mtn.css
197.210.3.42301 Moved Permanently 267 B URL HTTP/1.1 mtnonline.com/smartanalytics/assets/assets/css/mtn.css
IP 197.210.3.42:0
ASN #29465 MTN NIGERIA Communication limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 15b66896b17441e0360a937a31e00f55
f6654f181884d7d1b04406db6b13989c74b43111
f7c4c13f9a31916b9af8e254fac575ac3fceeab592a35eac5ba9f93e4f2667da
GET /smartanalytics/assets/assets/css/mtn.css HTTP/1.1
Host: mtnonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Location: https://www.mtn.ng/smartanalytics/assets/assets/css/mtn.css
Keep-Alive: timeout=5, max=100
Content-Type: text/html; charset=iso-8859-1
Vary: Accept-Encoding
Accept-Ranges: bytes
Connection: Keep-Alive
Date: Tue, 29 Nov 2022 22:12:01 GMT
Age: 2811
Content-Length: 267
mtnonline.com/smartanalytics/assets/smartbanner.js
197.210.3.42301 Moved Permanently 263 B URL HTTP/1.1 mtnonline.com/smartanalytics/assets/smartbanner.js
IP 197.210.3.42:0
ASN #29465 MTN NIGERIA Communication limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 12320b3d52f60c60a703ca0a5180e365
d23d71d712dbe8b22bfbf895d27fb89c2e3f0a6c
e4f48a69237a1011e97aaf7ef3e5860ecc257928432b29e9737fbdcc057c40fa
GET /smartanalytics/assets/smartbanner.js HTTP/1.1
Host: mtnonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Location: https://www.mtn.ng/smartanalytics/assets/smartbanner.js
Keep-Alive: timeout=5, max=100
Content-Type: text/html; charset=iso-8859-1
Vary: Accept-Encoding
Accept-Ranges: bytes
Connection: Keep-Alive
Date: Tue, 29 Nov 2022 22:12:01 GMT
Age: 2772
Content-Length: 263
mtnonline.com/smartanalytics/assets/smartbanner.css
197.210.3.42301 Moved Permanently 264 B URL HTTP/1.1 mtnonline.com/smartanalytics/assets/smartbanner.css
IP 197.210.3.42:0
ASN #29465 MTN NIGERIA Communication limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bb0329449c42b34efb9349e7421203cd
53347fdfb973edb46e1bdc4e839316f018d60660
649368623cbd99a887a6aaf99cfb67a7dffb5626dc997d1c562dede60f7e2cbc
GET /smartanalytics/assets/smartbanner.css HTTP/1.1
Host: mtnonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Location: https://www.mtn.ng/smartanalytics/assets/smartbanner.css
Keep-Alive: timeout=5, max=100
Content-Type: text/html; charset=iso-8859-1
Vary: Accept-Encoding
Accept-Ranges: bytes
Connection: Keep-Alive
Date: Tue, 29 Nov 2022 22:12:01 GMT
Age: 2319
Content-Length: 264
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/DhPixel.js
66.29.132.103200 OK 4.1 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/DhPixel.js
IP 66.29.132.103:0
File type ASCII text, with very long lines (12342), with no line terminators
Hash a5d1f679073caa7817872d25bfe87123
c91a2658418cc9898fcce5eb38eb43483db0a741
cea6aaedddbd157e5f9ef32ae28a8e61dc3b9b820dcae556e08a3897f09f4e87
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/DhPixel.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4052
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/analytics.js
66.29.132.103200 OK 22 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/analytics.js
IP 66.29.132.103:0
File type ASCII text, with very long lines (1325)
Hash 283d7c15b9a6651c305bce299329d928
e0cd6d796b1636da31c0378d54e4e30be5176b47
fcee5d397f7dd740cb645fe4ff0f021c557dcd97000dcff9b5ed339076d57a38
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/analytics.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:26 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 22467
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/embed.js
66.29.132.103200 OK 2.0 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/embed.js
IP 66.29.132.103:0
Hash 14e4c3b41578bf3f45811557bff802da
a3c44aff9319e59293145f77d4fc604a285ea0c4
cb1386faab569dd56c06cd6fdf351e1eb51ba6d2bbed61f30f275112a9c1c6e4
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/embed.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:26 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1987
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/insight.min.js
66.29.132.103200 OK 4.9 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/insight.min.js
IP 66.29.132.103:0
File type ASCII text, with very long lines (12961)
Hash d35417e3c740666eb33a9a460b3222cd
c63dd1de54086d9d8e6df8e9b969d90b3aecf278
4d2d46e83e3dabfe6a809647b52bddea284562dc72b9d6e2f35efe8b8313b08c
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/insight.min.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:26 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4927
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/fbevents.js
66.29.132.103200 OK 33 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/fbevents.js
IP 66.29.132.103:0
File type ASCII text, with very long lines (64348)
Hash ff523341ed8affcbdde5a988179caaf0
ecf5d977fc6b7295dde088e6d3f46569def866ad
463c3aae18b4adaba5bbb402a51b96dae1c26491444e96d26ca93ea21185c044
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/fbevents.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:24 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 32991
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 55 B IP 93.184.220.29:0
File type HTML document, ASCII text
Hash 9f073354411bbaf7a319b1519f10b4b7
571498f38548829bf186f49f5be9d5fa6e689a68
4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 723
Cache-Control: public, max-age=1209600
Content-Type: text/html
Date: Tue, 29 Nov 2022 22:12:01 GMT
Etag: "63866b9a-37"
Last-Modified: Tue, 29 Nov 2022 20:29:14 GMT
Server: ECS (amb/6BBE)
X-Cache: HIT
Content-Length: 55
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 65c9ecd702006ef2ce56831e12a2dcad
d4809487688051b47d4cc6994fac0f3db87285eb
c8320006ea3109b8d714f3c1545075c538f762efb2473db3d8b662249c39c7f8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1767
Cache-Control: max-age=102284
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:12:01 GMT
Etag: "63856956-1d7"
Expires: Thu, 01 Dec 2022 02:36:45 GMT
Last-Modified: Tue, 29 Nov 2022 02:07:18 GMT
Server: ECS (amb/6B99)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 65c9ecd702006ef2ce56831e12a2dcad
d4809487688051b47d4cc6994fac0f3db87285eb
c8320006ea3109b8d714f3c1545075c538f762efb2473db3d8b662249c39c7f8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5391
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:12:01 GMT
Last-Modified: Tue, 29 Nov 2022 20:42:10 GMT
Server: ECS (amb/6B9E)
X-Cache: HIT
Content-Length: 471
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/wp-emoji-release.min.js
66.29.132.103200 OK 4.5 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/wp-emoji-release.min.js
IP 66.29.132.103:0
File type ASCII text, with very long lines (15224)
Hash 3c05cdbb96f694e86b05c7a3e5c6703f
615a7094f3210830bd5e6f08f845c101be2eefeb
371bb131cc739b177f4c90f67535f020d0bbee092e2ff1bad6ac38e978da3092
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/wp-emoji-release.min.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4539
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/style.min.css
66.29.132.103200 OK 10 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/style.min.css
IP 66.29.132.103:0
File type Unicode text, UTF-8 text, with very long lines (33376)
Hash cf64bd69df964ad7baacebb5f165288e
3b43b33729294f0378142606559dac91d56919f8
f8d581c3f1abb40a8a24d79f47abe7b7b4ea24207160d0e260d06ca0cdebcb19
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/style.min.css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:10:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9960
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/styles.css
66.29.132.103200 OK 1.0 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/styles.css
IP 66.29.132.103:0
Hash 2878b78cee4f1d95757df322afd6c523
affc237aefe4a37614fc20e35bd2c3cdba9a44f7
29a929599c21ebff1c78bf6161c341a6705abbcf41f576dfc1ff220a26c355a9
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/styles.css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:10:30 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1048
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/buttons.min.css
66.29.132.103200 OK 1.6 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/buttons.min.css
IP 66.29.132.103:0
File type ASCII text, with very long lines (5819)
Hash bc60d9544102e7a535f8d4241430711c
8c27cf3407ea0db5db35d59db58da0c7e9568e5a
f0a5da1db17246949b4990886a51940e4a8d5f2526597f04299159e815adaf60
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/buttons.min.css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:10:30 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1642
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/mediaelementplayer-legacy.min.css
66.29.132.103200 OK 3.0 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/mediaelementplayer-legacy.min.css
IP 66.29.132.103:0
File type ASCII text, with very long lines (11256), with no line terminators
Hash 732499b4dce46d427768ca19e9f0ed63
738651e4589f507c73d9775839d878a38e59e4c0
f6edc4390234799814a263963e4b3b8cf809a50179dffb98c66eb6b804aedf5f
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/mediaelementplayer-legacy.min.css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:10:30 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3005
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/wp-mediaelement.min.css
66.29.132.103200 OK 1.3 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/wp-mediaelement.min.css
IP 66.29.132.103:0
File type ASCII text, with very long lines (4186), with no line terminators
Hash c6424d944fdde8badeb99716668eb9a3
cda16943c0a9a37952eeaa63cdd9dd7cea79b467
5877e2690b8bb77264f89f4afa27fd269a9171cec483155d3ea8aa556a09d174
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/wp-mediaelement.min.css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:10:32 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1296
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/media-views.min.css
66.29.132.103200 OK 11 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/media-views.min.css
IP 66.29.132.103:0
File type ASCII text, with very long lines (43713)
Hash 7a49e7abad9af639565fb54afe8f4128
b4a3e4d20169e48137d05390bcfccb54ec28215e
4a54a3d04179d20eebbeb2ce3dd082b8e3098c499e4caa125af790e9bba4e7fc
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/media-views.min.css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:10:32 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 11331
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/imgareaselect.css
66.29.132.103200 OK 275 B URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/imgareaselect.css
IP 66.29.132.103:0
Hash e989df3edad8b838c41e8de797ec94ff
03cea4747795a788c5f879ba984e2f88735ee29d
0b0687953165a61e5e0e3441dbd75c6ec88d42eff3391a08951633fa25682030
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/imgareaselect.css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:10:32 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 275
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/tfcwp_topstories.css
66.29.132.103200 OK 4.3 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/tfcwp_topstories.css
IP 66.29.132.103:0
File type Unicode text, UTF-8 text, with very long lines (15678), with no line terminators
Hash cd172a53b57c30b4ab8c1ab711e7c601
d7d9c76cd5671ddba3a05f19b536747c6d5d0bd2
789bc4baa79a4ab6b19009353b6009d65551c8b6f4c5db6c2f3df0a0b745fccb
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/tfcwp_topstories.css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:10:32 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4303
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/style.css
66.29.132.103200 OK 5.5 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/style.css
IP 66.29.132.103:0
Hash 0fe7ceadb37fe8f5445e107ebd6886e2
8fd5b4eedcf3971af35361253dd1932ae404b1be
154eb3000837dbdb1234ab4aac2eb889be8dc763e63d137d121b4221849f0dd2
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/style.css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:10:32 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 5459
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/style(1).css
66.29.132.103200 OK 1.6 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/style(1).css
IP 66.29.132.103:0
Hash 832069044e44252721d6019235404fa2
1971135f66867303f8633597941ac8c93d195ddf
74803397fc7f47311d5b2f9c384dce52eef746d6a0035986fdc213a30e272de5
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/style(1).css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:10:32 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1615
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/style(2).css
66.29.132.103200 OK 1.6 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/style(2).css
IP 66.29.132.103:0
Hash 832069044e44252721d6019235404fa2
1971135f66867303f8633597941ac8c93d195ddf
74803397fc7f47311d5b2f9c384dce52eef746d6a0035986fdc213a30e272de5
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/style(2).css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:10:34 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1615
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/icon
66.29.132.103200 OK 569 B URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/icon
IP 66.29.132.103:0
Hash 8465f8a5a36b885823e041296e5fbbce
b3704d3f5baad7b84bcca2a418af4b6024a183a1
e2f2597386660b972fe84faa90af129a353e7e8f9990df6f3b14d0165468350f
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/icon HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 10:10:40 GMT
accept-ranges: bytes
content-length: 569
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/owl.carousel.min.css
66.29.132.103200 OK 1.1 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/owl.carousel.min.css
IP 66.29.132.103:0
File type ASCII text, with very long lines (3184)
Hash bc8315c3bb1dbd001751869512ab32ac
d6a5405fbd2776a748bf69d3bd976111a06bb564
c9ed8be4c126b07f83c3274d04b7f33b0850ae1c4a2cd479bc409fc3132ba4a3
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/owl.carousel.min.css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:10:42 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1144
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/owl.theme.default.min.css
66.29.132.103200 OK 487 B URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/owl.theme.default.min.css
IP 66.29.132.103:0
File type ASCII text, with very long lines (846)
Hash d47417f66a58ddf2c6c5d7acf06675a1
b80ee1ac096c06d5d36d3fe801043ca00424656e
72598694adc92fd2c649926a99f215e0616dca70eb7e6a2e8a9b933148ae4790
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/owl.theme.default.min.css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:10:42 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 487
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/prism.css
66.29.132.103200 OK 1.6 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/prism.css
IP 66.29.132.103:0
Hash 1244d6ec886befc8ec3d4fb15bf9eaca
a12f80f53576f4a66b1e1621ad54c1ab433f7c03
be96f38959cfe8e1129457c315c2198b2b09e3cb8e5b95e0eed69ea4000c53b5
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/prism.css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:10:42 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1622
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/utils.min.js
66.29.132.103200 OK 862 B URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/utils.min.js
IP 66.29.132.103:0
File type ASCII text, with very long lines (1829)
Hash c32041174e7b09f7a2b84f9c025ed923
7c4e6db08195a0b51f309ac0b2a1cf3ae4d78179
406d595354943e58780b34f5e8e755b73faffeba6046325eb93c16d97748117e
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/utils.min.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 862
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/popper.min.js
66.29.132.103200 OK 8.3 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/popper.min.js
IP 66.29.132.103:0
File type ASCII text, with very long lines (20831)
Hash ee42c4a87ff03ee83ef29e69d9c34468
85f455ef9bcf095186de562f70602eb80c46da97
f6dd88ed1f20b322289045cb685cb6be4ad03d69f4a5476c1759d01e68ee64fc
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/popper.min.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 8335
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/owl.carousel.min.js
66.29.132.103200 OK 14 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/owl.carousel.min.js
IP 66.29.132.103:0
File type ASCII text, with very long lines (31997)
Hash d4f681b61217e7c827537d43fdc5f28a
9e74c98f533de5f7a1aa46e1d4c2bd61cd2d9e0d
247fb00589f419783cf523af5a3f93b333ce7dd8d47ecbafdbe89f8f57b7d467
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/owl.carousel.min.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:46 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 13726
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:12:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/gtm.js
66.29.132.103200 OK 85 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/gtm.js
IP 66.29.132.103:0
File type ASCII text, with very long lines (35612)
Hash d1e6c8eeff6c036f5022d21fce2b7ac9
260d49ad313d842fa0cd1b7fd8e442a63400bf66
66662d55a37f66323a9493b61b3fe5cbad9c354c5411e98ebcc9f995d31e02b5
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/gtm.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 85105
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/masonry.js
66.29.132.103200 OK 21 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/masonry.js
IP 66.29.132.103:0
Hash 1497854a96e57620d9ce86a5af6dd9ca
37f621198e11c98d06e0abf46291eda2484e371b
31d866da257a3915a81f9b9131fb0ee24ebfbd9f7fcccb68c9cb1990a6f136f6
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/masonry.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:46 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 20973
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/material-component-handler.js
66.29.132.103200 OK 6.2 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/material-component-handler.js
IP 66.29.132.103:0
Hash e1bd2efab230fa99fe37c69d2502f5af
d196d877b7eb4ce059470b1c1ca514f5491dcf4f
22825e60a9944d7f7dd4d2c3d5113f76fa08556c506fb0c49f0e6fb6163e1bb7
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/material-component-handler.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:46 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 6224
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/button.js
66.29.132.103200 OK 1.5 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/button.js
IP 66.29.132.103:0
Hash e0e4f282f24642d3f87709ac853b7ca0
656459c2687300796a2029efa0977f5626f5f515
ce3b68e811369f396d49d928de553435aac0e6696e3fac65fcab4ad610542d91
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/button.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:46 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1507
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.mtn.ng/smartanalytics/assets/assets/css/mtn.css
197.210.3.42200 OK 222 B URL HTTP/1.1 www.mtn.ng/smartanalytics/assets/assets/css/mtn.css
IP 197.210.3.42:0
ASN #29465 MTN NIGERIA Communication limited
Hash 43c1a43c98aa9dc3f488f57f344facd8
f9a02f4367acce9a6ed46c67d76f0b9079eed4a8
c52107120c3a39aee16284f952d1826157b051391827abadcb3b6937ab9d8476
GET /smartanalytics/assets/assets/css/mtn.css HTTP/1.1
Host: www.mtn.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains
Permissions-Policy: geolocation=(); midi=();notifications=();push=();sync-xhr=();accelerometer=(); gyroscope=(); magnetometer=(); payment=(); camera=(); microphone=();usb=(); xr=();speaker=(self);vibrate=();fullscreen=(self);
Last-Modified: Sun, 27 Feb 2022 08:53:12 GMT
ETag: "de-5d8fc0fd1a465"
Accept-Ranges: bytes
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: upgrade-insecure-requests
Referrer-Policy: no-referrer-when-downgrade
Feature-Policy: accelerometer 'none'; ambient-light-sensor 'self'; autoplay 'self'; camera 'none'; cookie 'self'; docwrite 'self'; domain 'self'; encrypted-media 'self'; fullscreen 'self'; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone 'none'; midi 'none'; payment 'self'; picture-in-picture 'self'; speaker 'self'; sync-script 'self'; sync-xhr 'self'; unsized-media 'self'; usb 'none'; vertical-scroll 'self'; vibrate 'none'; vr 'none'
Keep-Alive: timeout=5, max=100
Content-Type: text/css
Vary: Accept-Encoding
Connection: Keep-Alive
Date: Tue, 29 Nov 2022 22:12:01 GMT
Age: 1324
Content-Length: 222
www.mtn.ng/smartanalytics/assets/smartbanner.js
197.210.3.42200 OK 4.9 kB URL HTTP/1.1 www.mtn.ng/smartanalytics/assets/smartbanner.js
IP 197.210.3.42:0
ASN #29465 MTN NIGERIA Communication limited
File type Unicode text, UTF-8 text, with very long lines (995)
Hash 3415956acdbb46c8d58d85fd2c55df1e
7f6a18229c94b9e0facaa264a03747f51d99a094
1a7f1fe9ca30db7721980578d29bc371aaa7d97570269b771db32ad90c0df82d
GET /smartanalytics/assets/smartbanner.js HTTP/1.1
Host: www.mtn.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sun, 27 Feb 2022 08:53:12 GMT
ETag: "410b-5d8fc0fce2dea"
Accept-Ranges: bytes
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=100
Content-Type: application/x-javascript
Vary: Accept-Encoding
Content-Encoding: gzip
Connection: Keep-Alive
Date: Tue, 29 Nov 2022 22:12:01 GMT
Age: 1347
Content-Length: 4916
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/checkbox.js
66.29.132.103200 OK 2.4 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/checkbox.js
IP 66.29.132.103:0
Hash b658fe993d73a735211d7f7b6eec4776
44fed959bb8114cc32369c90fafa2133f15b77af
046de36a7b51751e9c5bac33595d932f95f7b12d360678f2f044a1276ba49440
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/checkbox.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:46 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2439
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/collapse.js
3.0 kB URL effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/collapse.js
IP :0
File type gzip compressed data, from Unix\012- data
Hash 3231151bd846d4c3f7cbefad18cbf55c
2dbfb43b15c249cc9e7e653db95332d4c4b7f004
4f96a82a220a4ed5a7108d5bafa422e8cd99783062c51256f8566c9c338a5aa9
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/collapse.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/filtering-menu.js
66.29.132.103200 OK 1.5 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/filtering-menu.js
IP 66.29.132.103:0
Hash 39dab154b1f7227f9723f62a7a93f16c
588e708a5e72a81e5b35d1beb461e026c860e4b2
540517e63c74b51b5319dee145a8b1581b897de1d561555e0876e3ba5cd26d7e
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/filtering-menu.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:48 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1466
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/input.js
66.29.132.103200 OK 2.6 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/input.js
IP 66.29.132.103:0
Hash 2f3f5c0b2652d4f57fa03f280a1d8152
bfe7631cfcc8536e1b52ecf375305264871fb426
f7f510366d3279a20153a8c9565b977a3c22f1930d3f59ed34b9dd065a759864
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/input.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:48 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2553
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/carousel.js
66.29.132.103200 OK 398 B URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/carousel.js
IP 66.29.132.103:0
Hash 769eaf4b9740399b877e354822e252f8
869846101d2bfb51d13d5923de33a00277be0f63
edf6da5b5ed3eb99de9253b4f1da3a49bddbfd4132e2eb18d975da7ceba53809
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/carousel.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:48 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 398
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/progress-indicator.js
66.29.132.103200 OK 353 B URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/progress-indicator.js
IP 66.29.132.103:0
Hash e14f2ebd9a6fd92f91d890f36bf9f298
d6e473df5056ee76e22ca72560ed97a4b4c69bf9
84784b85a1010145ad39204dbd0995b74515e2549a801057b3bf49d5d8b372be
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/progress-indicator.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:48 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 353
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/radio.js
66.29.132.103200 OK 2.6 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/radio.js
IP 66.29.132.103:0
Hash a090f7a0f2b99efff3271f81b100c979
9365c8f7d23f4e7dfc4174925b1556acd7810067
3205fcdfa110c23d70a4ef9dea68416848b89552e926bb7f7d820830e570e6e0
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/radio.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:48 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2554
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/select.js
66.29.132.103404 Not Found 6.8 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/select.js
IP 66.29.132.103:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 6b7acdd5e162a2510bf931fcb26aaa02
26d67a5b9ac1bf20501995bbb9b38fa7aa084370
6e7870de4a1e090b08c45fdcdeeb368580b8f2d224d1cd537d585ccdc2e71263
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/select.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://effexorbuy.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 6793
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/ripple.js
66.29.132.103200 OK 3.0 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/ripple.js
IP 66.29.132.103:0
Hash 532a684eec5d64057d1844864689f284
aea1a30023be724f464d3818b3c4d5c862c7a1ee
24a7d3b3b0de83e1aebcc5e6d7c9ee7f7d1aa3ce160255a94d616da6d108fa83
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/ripple.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:50 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3031
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/clipboard.js
66.29.132.103200 OK 3.7 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/clipboard.js
IP 66.29.132.103:0
File type Unicode text, UTF-8 text, with very long lines (10645)
Hash afacb0503e6ab9cd1ebff923b7f633a6
a9e70b0c4b46c333cd6f4700d1cf110441ba7bbe
6a2289d40213c137be2c24665cfb8fc065a76c2757d119631088226569928047
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/clipboard.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:50 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3743
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/cookie.js
66.29.132.103200 OK 1.4 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/cookie.js
IP 66.29.132.103:0
Hash 632de00464d7efe1d0a443df4ecee128
cc77109f49309ab0dda59f71ebdc17b44f5b7fad
319e0fe012d8791b30a13a7ae101b08cb8b5ee3072601b6f1b5cc52ff160ed6b
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/cookie.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:50 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1375
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/polyfill.min.js
66.29.132.103200 OK 101 B URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/polyfill.min.js
IP 66.29.132.103:0
Hash 66a7d2a5dd73e9fca370d85360c85447
2e4ca9cb2ed0fcd0436ee10516b2bb441fc16a63
d7f817255acac24d24766a420471f23c0796b5228b84f8432bf70570ed870b72
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/polyfill.min.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:56 GMT
accept-ranges: bytes
content-length: 101
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/embed.css
66.29.132.103200 OK 2.4 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/embed.css
IP 66.29.132.103:0
File type assembler source, ASCII text
Hash 51ee1b59c96d5a1925133150f2a0af3f
2ff7e158534f8a3b362d7eeb56f33aef296e3ba9
f5b94211ca159546b76c58477c8ab0232ef3da1e1a621b748e5926895a914a42
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/embed.css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:10:58 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2409
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/f.txt
66.29.132.103200 OK 1.1 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/f.txt
IP 66.29.132.103:0
File type ASCII text, with very long lines (2146), with no line terminators
Hash 58b78385d422828e460df0fb4d033cf9
fdcdf68cf6ebc9a918b3cbbbc9fc2c92d01b80b2
07b1183f6fe48c797e80d0b79b273a677ac68d63149cd5a0d5a50f6d65f53b9f
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/f.txt HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/plain
last-modified: Sat, 19 Nov 2022 10:10:58 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1080
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.mtn.ng/smartanalytics/assets/smartbanner.css
197.210.3.42200 OK 4.7 kB URL HTTP/1.1 www.mtn.ng/smartanalytics/assets/smartbanner.css
IP 197.210.3.42:0
ASN #29465 MTN NIGERIA Communication limited
File type Unicode text, UTF-8 text, with very long lines (7577)
Hash 61e763b21803870e510df61c63895fe7
2b0b81505e16a433d882e9f2224414c67c68d03e
a7a7e0f949b32425b8b23b03234202bcc47baafab9c0200a31eb28484ef451a9
GET /smartanalytics/assets/smartbanner.css HTTP/1.1
Host: www.mtn.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sun, 27 Feb 2022 08:53:12 GMT
ETag: "2dcd-5d8fc0fce0e2d"
Accept-Ranges: bytes
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=100
Content-Type: text/css
Vary: Accept-Encoding
Content-Encoding: gzip
Connection: Keep-Alive
Date: Tue, 29 Nov 2022 22:12:01 GMT
Age: 1280
Content-Length: 4726
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:12:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/index.js
66.29.132.103200 OK 3.2 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/index.js
IP 66.29.132.103:0
File type ASCII text, with very long lines (9680), with no line terminators
Hash 17f4262c1d656a158e6a622b2ee235b0
32be9d63183d1bb6dc5c1098dce9382573750976
6c839ad2435d9cb3ab774b68faf4e08e26f95131cfeb38cacae18518234c2bc7
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/index.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:11:02 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3197
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/index.js(1)
66.29.132.103200 OK 12 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/index.js(1)
IP 66.29.132.103:0
File type HTML document, ASCII text, with very long lines (12211), with no line terminators
Hash 3f3fc23f477a3849aa5677c585b2a2b4
ccf0865ebd37f76c450c7a377a86ff2448288db3
985fdd42398281348ca133a44750a56fe4909a806b9c075c9443a5d0bd6d2e51
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/index.js(1) HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Sat, 19 Nov 2022 10:11:02 GMT
accept-ranges: bytes
content-length: 12211
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/underscore.min.js
66.29.132.103200 OK 8.1 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/underscore.min.js
IP 66.29.132.103:0
File type ASCII text, with very long lines (19041)
Hash 01060db6d40788fca06c8e63c4a046cb
a3be25b8deaacdb40fbe774af497c756c0141f22
455b854b902eca818549b659b3f078eb1feedc9e8ceb01e74c1a15e9cd48b668
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/underscore.min.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:11:02 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 8109
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/shortcode.min.js
66.29.132.103200 OK 1.2 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/shortcode.min.js
IP 66.29.132.103:0
File type ASCII text, with very long lines (2615)
Hash 43df08233c1522377451666ea23b2cd3
0cb5e5923d2e2d9d58e0e1d98b0e475a83f46a87
232bc5c2f727e4b4e84f049bf5c2b88634bc8692557e00ccc9ebd719314710a9
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/shortcode.min.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:11:02 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1200
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/tfcwp_topstories_public.js
66.29.132.103200 OK 3.3 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/tfcwp_topstories_public.js
IP 66.29.132.103:0
File type HTML document, ASCII text, with very long lines (8823), with no line terminators
Hash 6cce2144b0408857de81296067ba03a2
a76a4a49389281bbc320d1c97e9b617cdd75efa9
8ba0b880539296b0e8922e4acf3739c1deafd824979096850a48c8f82966e84d
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/tfcwp_topstories_public.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:11:02 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3322
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/prism.js
66.29.132.103200 OK 9.0 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/prism.js
IP 66.29.132.103:0
File type ASCII text, with very long lines (6001)
Hash ed487316ea0c1a60b0553abd5804eaf3
570d105336c8d8a56fec06717e2c720eb94a4125
7e02335f395d9319af4463277dc5124eaa3e73a94cb5bf7f37d6cf2dbb1a7c85
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/prism.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:11:04 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 8993
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/navbar.js
66.29.132.103200 OK 834 B URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/navbar.js
IP 66.29.132.103:0
Hash 22af7318ebffe58410ee943e286db587
77ff6d0c6080c03e84be68e9d93c5deff3105d62
fd46f124e5218eacbf22e9cf8aa8cc43a42b008d8d65b382853b85de30951222
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/navbar.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:11:04 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 834
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/navigation.js
66.29.132.103200 OK 1.2 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/navigation.js
IP 66.29.132.103:0
Hash 5d2fa3ed5ab62098fe0fcca4266f82df
3bb01457cc380682e19bc82ac4be76c56da7963b
dbd04f93038dfe27dfe12f31dcc2439523a82ddebca018b7fb7fc459515a6bb2
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/navigation.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:11:04 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1179
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/skip-link-focus-fix.js
66.29.132.103200 OK 426 B URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/skip-link-focus-fix.js
IP 66.29.132.103:0
Hash 32cf32f68b20b71edf2ee02b2f22f9a4
cba734b2404faf2430d3af73ab01e1bd5a613a9b
e8e62cbce9aff87e4529cf1bcf9f3e162257c3d8e3473ab04d73a611c0435557
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/skip-link-focus-fix.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:11:04 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 426
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/ofi.min.js
66.29.132.103200 OK 1.6 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/ofi.min.js
IP 66.29.132.103:0
File type ASCII text, with very long lines (3764)
Hash 31f9e351fa8760792c89a69e77e09dbb
08bd51c2a8a6fc9da93199fe3d9e01c4d956d0e5
58ed355663b8c488e295d60d0bb0ab2b6425e2502b2aee9bd3c24c7d51c69cf5
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/ofi.min.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:11:04 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1638
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/wp-embed.min.js
66.29.132.103200 OK 779 B URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/wp-embed.min.js
IP 66.29.132.103:0
File type ASCII text, with very long lines (1391)
Hash 486a47be050402b880cee1fe757e75e6
32c0ec9b315a3792473702782b357307fc248f84
7dd0219de45f3257c695aeb1d3b398aaa895c9b62461b0b91e6ca84acbe21acb
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/wp-embed.min.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:11:06 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 779
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/jquery.countdown.min.js
66.29.132.103200 OK 2.5 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/jquery.countdown.min.js
IP 66.29.132.103:0
File type ASCII text, with very long lines (4136)
Hash 525c2c865a66c0b6caf0789a3f97f9f2
fd4aa7662e0c7e2d0ee1525d1210d92007316e57
d7fdd88c581d513fc69d6a9a2eac18378dcc931ec0910009ee6b4f823828aa42
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/jquery.countdown.min.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:11:06 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2480
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/boticon-bubble.png
66.29.132.103200 OK 3.4 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/boticon-bubble.png
IP 66.29.132.103:0
File type PNG image data, 75 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 05fbb36997b976a1dd2172fe1bec45bd
465d9d2569604963d35af745846e0a899e905315
ad8eec8fe0c751e39f81d78479c19215ab3edff8bae8010e3445938749030f74
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/boticon-bubble.png HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: image/png
last-modified: Sat, 19 Nov 2022 10:11:06 GMT
accept-ranges: bytes
content-length: 3387
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/embed.js(1)
66.29.132.103200 OK 1.1 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/embed.js(1)
IP 66.29.132.103:0
File type ASCII text, with very long lines (586)
Hash aae6f9fa65584ecee7bdcf126e3f7b07
c2c21b59372b6a41b2fb1d8b193da783a72c3ded
3fe572fb2604b0781fcfe65efeebf988d800d1c6a92c93601fc29e7eed80e37d
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/embed.js(1) HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Sat, 19 Nov 2022 10:11:08 GMT
accept-ranges: bytes
content-length: 1099
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/mobile-detect.min.js
66.29.132.103200 OK 18 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/mobile-detect.min.js
IP 66.29.132.103:0
File type ASCII text, with very long lines (33237)
Hash 7e4df18d90882e5795e796f4461ea801
3ddec126b93c9e41bde2615b32ec1da3857e5793
735cfa7abe81c9adb0bce06beed92133d4cbdcc59b46aa18f0730877c947e6df
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/mobile-detect.min.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:28 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 18042
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/materialdesignicons.min.css
66.29.132.103200 OK 33 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/materialdesignicons.min.css
IP 66.29.132.103:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash ff44d1deeaccc516c511a42ad7067d51
dbaee4d1e4e51d10b704dcf51ab7607bb4db14c5
68c9665568b7cb2b6fcf167980ed945f91d84a4ad8ff6532c695f913548259e7
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/materialdesignicons.min.css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:10:40 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 33212
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/bootstrap.min.css
66.29.132.103200 OK 31 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/bootstrap.min.css
IP 66.29.132.103:0
File type ASCII text, with very long lines (65324)
Hash 5c73fcb55a210ecf359d153eaa2f0ef4
75034a752c873ce008fff9a748aa932fd7035ba3
919a972386345f39bf49d84cdfe67f9d04c35a659eeb7bc0feb17dfe362d5e94
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/bootstrap.min.css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:10:42 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 31106
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/theme-style.min.css
66.29.132.103200 OK 32 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/theme-style.min.css
IP 66.29.132.103:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash f404aca0db18fc92643e7d44559fce6f
2a77b339b836c1cbb3f2c6454c50dc2a6b7b887a
406a159d513fa197373af3f98ef44f6b57f1e18ab058d6f918e51bcf652c7265
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/theme-style.min.css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:10:42 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 31617
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/jquery.min.js
66.29.132.103200 OK 36 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/jquery.min.js
IP 66.29.132.103:0
File type ASCII text, with very long lines (65451)
Hash 037a98cf069eec42ef9a4798c6bb8a7d
838d90ec5914d8302601df422f09cf49176e9bce
d531a64004b1b8c1cbd07c0b3f4674cd78531b0c4acdb11374a9620625d33246
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/jquery.min.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 36067
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/bootstrap.min.js
66.29.132.103200 OK 19 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/bootstrap.min.js
IP 66.29.132.103:0
File type ASCII text, with very long lines (57791)
Hash a547fa254d0b584e7061d64dc761f9e7
cd97c51e946a0de610e73938ce25462ca217d01a
f416b2c25e8b24483f16f3c1039151856a4c7b7083cdb2df12e4d699d4da1048
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/bootstrap.min.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:10:46 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 18958
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/mtn-new-logo.png
66.29.132.103200 OK 39 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/mtn-new-logo.png
IP 66.29.132.103:0
File type PNG image data, 651 x 292, 8-bit/color RGBA, non-interlaced\012- data
Hash 96f5c1fe5bd955a07c5f5e170c4a7870
0d167fbbc106e4cb906e7b7635b610faba9fcbc7
ceda1c90cc43f99f0bb5b1bdcefa8cc4386fc82675bf50812a5c16b50406d1d3
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/mtn-new-logo.png HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: image/png
last-modified: Sat, 26 Nov 2022 15:01:20 GMT
accept-ranges: bytes
content-length: 39149
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/avatar.png
66.29.132.103200 OK 20 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/avatar.png
IP 66.29.132.103:0
File type PNG image data, 857 x 833, 8-bit/color RGBA, non-interlaced\012- data
Hash 32845ef12f5f8203b4df0370be77441b
13db6b09d9ae2f016b99b4a8020c8460420e1a24
edbb5537907fc679234db0bff02cf22ab067091af4478978e4255562011a6392
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/avatar.png HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: image/png
last-modified: Sat, 19 Nov 2022 10:11:06 GMT
accept-ranges: bytes
content-length: 19561
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/dashicons.min.css
66.29.132.103200 OK 37 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/dashicons.min.css
IP 66.29.132.103:0
File type ASCII text, with very long lines (58981)
Hash eb43cb2d741eeef42d8985889f43d7f3
d9e04794adb11a9651dcb427eec7f80030bc2926
9b2c46be477c3566ecb565e6ddeeaabadfb400e3a5552450edc979c358132e72
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/dashicons.min.css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:10:30 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 36701
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.mtn.ng/wp-includes/js/wp-emoji-release.min.js?ver=5.8.3
197.210.3.42200 OK 6.5 kB URL HTTP/1.1 www.mtn.ng/wp-includes/js/wp-emoji-release.min.js?ver=5.8.3
IP 197.210.3.42:0
ASN #29465 MTN NIGERIA Communication limited
File type ASCII text, with very long lines (15224)
Hash f85b3bc4694cbe0a8fcc7ff14fdbb5e0
5a6e078e3325040a86c157ae41e5fe91eeed2bca
d9f509f3637a58dc0433a766b0abaffcc3bb93cff2433594d301f71a4b0036fe
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.3 HTTP/1.1
Host: www.mtn.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sun, 27 Feb 2022 09:13:23 GMT
ETag: "4705-5d8fc5802a886"
Accept-Ranges: bytes
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=100
Content-Type: application/x-javascript
Vary: Accept-Encoding
Content-Encoding: gzip
Connection: Keep-Alive
Date: Tue, 29 Nov 2022 22:12:02 GMT
Age: 3196
Content-Length: 6512
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/Screenshot_21.png
66.29.132.103200 OK 74 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/Screenshot_21.png
IP 66.29.132.103:0
File type PNG image data, 190 x 371, 8-bit/color RGBA, non-interlaced\012- data
Hash 2933018d45707cc40f6ad600cc972acf
5f761f07e730250be2ac499bb0f7c1486db34fd5
b71504810d995529eec84bc5a3a229e7af309613643e2b0bc2691e8334d6a7bb
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/Screenshot_21.png HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: image/png
last-modified: Sat, 19 Nov 2022 10:11:00 GMT
accept-ranges: bytes
content-length: 74503
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/generic1667813814409.js
66.29.132.103200 OK 77 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/generic1667813814409.js
IP 66.29.132.103:0
File type Unicode text, UTF-8 text, with very long lines (11901)
Hash f1d1c015766a79d2fb3639fbcf752f19
d1dd46426186566990ee7a9599dc772395366215
6e1a6810cca35feaee3cadefa0d0f48513d191e91f30a4ee2e31800949f4e829
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/generic1667813814409.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:11:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 76696
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/Itel-A37-.png
66.29.132.103200 OK 143 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/Itel-A37-.png
IP 66.29.132.103:0
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 143 kB (142798 bytes)
Hash a494e4d35c7b6a39fafeb6415beabdfa
8b356e355876e67432bec9ff4aaca94256b70996
175bccffe2e88ce02de06643e15274eb48575fd6cd3eb8b02ee61a8baccfcd7c
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/Itel-A37-.png HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: image/png
last-modified: Sat, 19 Nov 2022 10:11:00 GMT
accept-ranges: bytes
content-length: 142798
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/Apple-iPhone-14-Pro-Max.png
66.29.132.103200 OK 139 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/Apple-iPhone-14-Pro-Max.png
IP 66.29.132.103:0
File type PNG image data, 422 x 591, 8-bit/color RGBA, non-interlaced\012- data
Size 139 kB (139044 bytes)
Hash 585207bbe0dc67f1b0881b98fa28471d
afaba5e2403692a6b6d23ef0e0c58e5919fcedce
871901ba6ba89e73bd0596d4660ee5b617f9dfe33bdcd89d937229beb0d47ea5
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/Apple-iPhone-14-Pro-Max.png HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: image/png
last-modified: Sat, 19 Nov 2022 22:40:06 GMT
accept-ranges: bytes
content-length: 139044
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/Apple-iPhone-14.png
66.29.132.103200 OK 139 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/Apple-iPhone-14.png
IP 66.29.132.103:0
File type PNG image data, 422 x 591, 8-bit/color RGBA, non-interlaced\012- data
Size 139 kB (139337 bytes)
Hash ce59c998f82ff32b3735379a7848414e
992019da2312c40fdbbc7d17e83ff02dea3fdc6b
7fa79699b06c5f800f97bd4ceb022157a1f3dcfefb9a16d24638896a94d181cd
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/Apple-iPhone-14.png HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: image/png
last-modified: Sat, 19 Nov 2022 22:14:44 GMT
accept-ranges: bytes
content-length: 139337
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/Nokia_C30-.png
66.29.132.103200 OK 142 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/Nokia_C30-.png
IP 66.29.132.103:0
File type PNG image data, 273 x 350, 8-bit/color RGBA, non-interlaced\012- data
Size 142 kB (141527 bytes)
Hash e26b04e242d5c510dbac22a384cac376
4aff035e9f0da9ebbfe10a15fe21cc33be63f48e
eb26b8d24368b47866798ff20b2c8f75ef55003272bcadafd480f711b8cac1ee
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/Nokia_C30-.png HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: image/png
last-modified: Sat, 19 Nov 2022 10:11:00 GMT
accept-ranges: bytes
content-length: 141527
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/itelS16-pro-1.png
66.29.132.103200 OK 117 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/itelS16-pro-1.png
IP 66.29.132.103:0
File type PNG image data, 586 x 711, 8-bit colormap, non-interlaced\012- data
Size 117 kB (116604 bytes)
Hash 2544234127bb239fa6d219152f5de7ae
fcb57369b16cecdfd3bb942f99aa53a1bf95e609
9b5757cd23fe4aefffb14b776eaebea66a7672482aef7ec2d857278f0e282a5d
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/itelS16-pro-1.png HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: image/png
last-modified: Sat, 19 Nov 2022 10:11:00 GMT
accept-ranges: bytes
content-length: 116604
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/xiaomi_redmi_note%2011.png
66.29.132.103200 OK 200 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/xiaomi_redmi_note%2011.png
IP 66.29.132.103:0
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 200 kB (200249 bytes)
Hash e7b0bc0048210eeae0b79b0fdb7a22cf
941529f379d33fc349d10da394b82503c613d8c5
b4b43205a98cec3bcd6d5fbe915e6be5ae6fc61de2357c3d5e0672e5ddf90fe2
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/xiaomi_redmi_note%2011.png HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: image/png
last-modified: Sat, 19 Nov 2022 22:48:08 GMT
accept-ranges: bytes
content-length: 200249
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/Infinix-Smart-5.png
66.29.132.103200 OK 240 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/Infinix-Smart-5.png
IP 66.29.132.103:0
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 240 kB (239747 bytes)
Hash 750a63e9c41e0e8334ccaa270bab28e0
9f08f9d078226fcd718a9e2fc6507b3a1668ac71
37abd19429ec1e6e50c75b6cb27bb336f98a9633a6f12d1e000266e153ffbadf
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/Infinix-Smart-5.png HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: image/png
last-modified: Sat, 19 Nov 2022 10:11:00 GMT
accept-ranges: bytes
content-length: 239747
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/icon
66.29.132.103200 OK 569 B URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/icon
IP 66.29.132.103:0
Hash 8465f8a5a36b885823e041296e5fbbce
b3704d3f5baad7b84bcca2a418af4b6024a183a1
e2f2597386660b972fe84faa90af129a353e7e8f9990df6f3b14d0165468350f
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/icon HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 10:10:40 GMT
accept-ranges: bytes
content-length: 569
date: Tue, 29 Nov 2022 22:12:02 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/Tecno-Camon-18.png
66.29.132.103200 OK 442 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/Tecno-Camon-18.png
IP 66.29.132.103:0
File type PNG image data, 427 x 556, 8-bit/color RGBA, interlaced\012- data
Size 442 kB (442524 bytes)
Hash 3871e58ad716f1ebcc6c1b8eb5d36cb7
9e3d39e4efc2026ecef6f6b1cf9a93282624fe1c
b41853de7a1245c7523cad7b1cc8174b5df2fdf658ca78834bd945588fe3efe8
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/Tecno-Camon-18.png HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:00 GMT
content-type: image/png
last-modified: Sat, 19 Nov 2022 10:11:00 GMT
accept-ranges: bytes
content-length: 442524
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/select.js
66.29.132.103404 Not Found 6.8 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/select.js
IP 66.29.132.103:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 6b7acdd5e162a2510bf931fcb26aaa02
26d67a5b9ac1bf20501995bbb9b38fa7aa084370
6e7870de4a1e090b08c45fdcdeeb368580b8f2d224d1cd537d585ccdc2e71263
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/select.js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://effexorbuy.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 6793
date: Tue, 29 Nov 2022 22:12:03 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:12:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:12:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j98&a=798370755&t=pageview&_s=1&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&ul=en-us&de=UTF-8&dt=LATEST%20-%20MTN-N&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=aGBACEABFAAAACAAI~&jid=1811903039&gjid=446176250&cid=1609358847.1669759923&tid=UA-6042224-1&_gid=1220793929.1669759923&_r=1>m=2wgb90K72NJ8&z=2084507831
142.250.74.110200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=798370755&t=pageview&_s=1&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&ul=en-us&de=UTF-8&dt=LATEST%20-%20MTN-N&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=aGBACEABFAAAACAAI~&jid=1811903039&gjid=446176250&cid=1609358847.1669759923&tid=UA-6042224-1&_gid=1220793929.1669759923&_r=1>m=2wgb90K72NJ8&z=2084507831
IP 142.250.74.110:0
File type ASCII text, with no line terminators
Hash cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
POST /j/collect?v=1&_v=j98&a=798370755&t=pageview&_s=1&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&ul=en-us&de=UTF-8&dt=LATEST%20-%20MTN-N&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=aGBACEABFAAAACAAI~&jid=1811903039&gjid=446176250&cid=1609358847.1669759923&tid=UA-6042224-1&_gid=1220793929.1669759923&_r=1>m=2wgb90K72NJ8&z=2084507831 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://effexorbuy.com
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://effexorbuy.com
date: Tue, 29 Nov 2022 22:12:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:12:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i0.wp.com/www.apple.com/newsroom/images/product/iphone/geo/Apple-iPhone-14-Pro-iPhone-14-Pro-Max-gold-220907-geo_inline.jpg.large.jpg?w=1170&ssl=1
192.0.77.2200 OK 15 kB URL HTTP/2 i0.wp.com/www.apple.com/newsroom/images/product/iphone/geo/Apple-iPhone-14-Pro-iPhone-14-Pro-Max-gold-220907-geo_inline.jpg.large.jpg?w=1170&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 653x914, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 48681f1cb9407cff93628e4fa5b904e2
dd4cca391b7a9d6e62556c43f27d14ed4c74d6dd
69cae14c0f052b31dcd1fc0d1a3be85f1c708daa34dbf4959caf5c32c7aa82cb
GET /www.apple.com/newsroom/images/product/iphone/geo/Apple-iPhone-14-Pro-iPhone-14-Pro-Max-gold-220907-geo_inline.jpg.large.jpg?w=1170&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 22:12:03 GMT
content-type: image/webp
content-length: 14882
last-modified: Thu, 17 Nov 2022 20:25:37 GMT
expires: Sun, 17 Nov 2024 08:25:37 GMT
cache-control: public, max-age=63115200
link: <https://www.apple.com/newsroom/images/product/iphone/geo/Apple-iPhone-14-Pro-iPhone-14-Pro-Max-gold-220907-geo_inline.jpg.large.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "ecb035e9a2c62312"
vary: Accept
x-nc: HIT arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:12:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-YWQ5FX4GZX&l=dataLayer&cx=c
142.250.74.168200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-YWQ5FX4GZX&l=dataLayer&cx=c
IP 142.250.74.168:0
File type ASCII text, with very long lines (19431)
Hash 61e3de299078e7987a503aa00823102d
80c513ff30cf68e283f7a2c4c262437e1c605c08
22ebc6701a3e07e98189b2a4becbf139e55d844bf1359caf7c4dc2712dcc3f35
GET /gtag/js?id=G-YWQ5FX4GZX&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 29 Nov 2022 22:12:03 GMT
expires: Tue, 29 Nov 2022 22:12:03 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76159
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@300;400;500;700&display=swap
142.250.74.106200 OK 90 kB URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@300;400;500;700&display=swap
IP 142.250.74.106:0
Hash 40ad8f1835bd18527063cc53ad3bdc6e
33d574838ba7b95ddccde9f18b4407b813dcf28e
f6845202c95461162dff81ec5973cd9ec21c89f9fb81d65e05aa9806329bdf81
GET /css2?family=Roboto:wght@300;400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 22:12:01 GMT
date: Tue, 29 Nov 2022 22:12:01 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
widget.supercounters.com/ssl/online_i.js
188.114.96.1200 OK 1.3 kB URL HTTP/2 widget.supercounters.com/ssl/online_i.js
IP 188.114.96.1:0
File type ASCII text, with CRLF line terminators
Hash c989dcfa64efbd4e104f49a8feac2910
30ebe39d07665911ed6cad217f680c6de466a97f
3d348db3b3e356ea18d2cf37275b7135c52e69daf5c11daffcb81dd45bab3a0a
Analyzer Verdict Alert fortinet Malware
GET /ssl/online_i.js HTTP/1.1
Host: widget.supercounters.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 22:12:00 GMT
content-type: application/javascript
last-modified: Thu, 03 Mar 2022 11:46:10 GMT
etag: W/"6220aa82-10a3"
cache-control: max-age=300
cf-cache-status: HIT
age: 652
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F3tqRJ3N5nbMItmtOU14sQyVFOp6FF1NaGrZ36HPV8jvapBSCIHdbJPYLuNQ%2FR54mebWJko3%2FwD0tmkuDVhyYyppNlB%2F%2FKz%2Fz2L36ypU2xwa8AZ0T%2F%2Fwki%2FNUsUcTsZMIuN8I33wgfyV5Ao%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771eaeaedffcb4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/f.txt
66.29.132.103200 OK 1.1 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/f.txt
IP 66.29.132.103:0
File type ASCII text, with very long lines (2146), with no line terminators
Hash 58b78385d422828e460df0fb4d033cf9
fdcdf68cf6ebc9a918b3cbbbc9fc2c92d01b80b2
07b1183f6fe48c797e80d0b79b273a677ac68d63149cd5a0d5a50f6d65f53b9f
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/f.txt HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.2.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/plain
last-modified: Sat, 19 Nov 2022 10:10:58 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1080
date: Tue, 29 Nov 2022 22:12:03 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/fonts/mtn-icon-font.ttf?oe2ypx
66.29.132.103404 Not Found 6.8 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/fonts/mtn-icon-font.ttf?oe2ypx
IP 66.29.132.103:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 833c42c11f4e886262469139c16b63ad
b0e01dcf3f63c3a20bb63a71cc4292492bd0e955
7e8e434d00479d1841fd8e4388490cb8ad51d53a333652ede9af915a16294f9b
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/fonts/mtn-icon-font.ttf?oe2ypx HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/theme-style.min.css
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.2.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://effexorbuy.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 6793
date: Tue, 29 Nov 2022 22:12:03 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f1cfa609ebdf236e2f3e3ff25dd05caf
c8117b0187d4d9021ed1a42907bd93d24ed4ebf0
7a2761aa36168d4f2c9034486777f5588aaf0fa1f7d1e55006db7320259303b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:12:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/index.js(1)
66.29.132.103200 OK 12 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/index.js(1)
IP 66.29.132.103:0
File type HTML document, ASCII text, with very long lines (12211), with no line terminators
Hash 3f3fc23f477a3849aa5677c585b2a2b4
ccf0865ebd37f76c450c7a377a86ff2448288db3
985fdd42398281348ca133a44750a56fe4909a806b9c075c9443a5d0bd6d2e51
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/index.js(1) HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.2.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Sat, 19 Nov 2022 10:11:02 GMT
accept-ranges: bytes
content-length: 12211
date: Tue, 29 Nov 2022 22:12:03 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/fonts/materialdesignicons-webfont.woff?v=3.6.95
66.29.132.103404 Not Found 33 kB URL HTTP/2 effexorbuy.com/mtn-n/fonts/materialdesignicons-webfont.woff?v=3.6.95
IP 66.29.132.103:0
Hash e423de1c1eeb30b13781e7dd138b8046
1c7156dc9a71a53ed73b77da92af02b5cd1fae7a
3f32081df8410aa7995b830be3b359129f914dd817260606fe47b2b917176caa
GET /mtn-n/fonts/materialdesignicons-webfont.woff?v=3.6.95 HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/materialdesignicons.min.css
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.1.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1; _ga_YWQ5FX4GZX=GS1.1.1669759922.1.0.1669759922.0.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://effexorbuy.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
date: Tue, 29 Nov 2022 22:12:03 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/fonts/mtn-icon-font.woff?oe2ypx
66.29.132.103404 Not Found 33 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/fonts/mtn-icon-font.woff?oe2ypx
IP 66.29.132.103:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 59b6be4830c28dbbe201274b2addf523
37ca7a6780394062e4ee844826409e0c9aac6909
8bd36c31fc8047263a36198780ff4bf9865a6c6b7f3168e3deb80d7fe8c31605
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/fonts/mtn-icon-font.woff?oe2ypx HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/theme-style.min.css
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.1.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1; _ga_YWQ5FX4GZX=GS1.1.1669759922.1.0.1669759922.0.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://effexorbuy.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
date: Tue, 29 Nov 2022 22:12:03 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/fonts/materialdesignicons-webfont.ttf?v=3.6.95
66.29.132.103404 Not Found 6.8 kB URL HTTP/2 effexorbuy.com/mtn-n/fonts/materialdesignicons-webfont.ttf?v=3.6.95
IP 66.29.132.103:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash c9a6a33a689c8b7152726d0baf9e4c41
012bc5bf6901f9bce7bb554605d2605ad14f91ca
e034f70e70d699aeb5950a08330f788d98e0ff25ac3df8365515e0b577e3acee
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/fonts/materialdesignicons-webfont.ttf?v=3.6.95 HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/materialdesignicons.min.css
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.1.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1; _ga_YWQ5FX4GZX=GS1.1.1669759922.1.0.1669759922.0.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://effexorbuy.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 6792
date: Tue, 29 Nov 2022 22:12:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/fonts/MTNBrighterSans-Regular.woff
66.29.132.103404 Not Found 32 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/fonts/MTNBrighterSans-Regular.woff
IP 66.29.132.103:0
Hash 0744c46448429fd2fdfe90d36984d2e1
42352b3594d22cb6808abe2a1a91ca0ee09bb4aa
656d98f9c6c7065bc99aa3aab1ac1384e5822c9779a07c56b8b744bef0e7196d
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/fonts/MTNBrighterSans-Regular.woff HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/theme-style.min.css
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.2.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://effexorbuy.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
date: Tue, 29 Nov 2022 22:12:03 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/BvSPZt9rj2g
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/BvSPZt9rj2g
IP 142.250.74.131:0
Hash 4a3ef741fb1607c210d2a2d678127a90
ecfc645e6b8d90c63b0d951a6f7d5a1bc97176b6
8eadc1ac47117d2e62a91057b59c7e2bac4147fa80575f417a387971df50ffac
POST /s/gts1d4/BvSPZt9rj2g HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:12:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 8f41d21506440a1d0dd1e741f1e682f1
a9599bf85493508ccf31d3dee37994bbd13bba21
8b2842554ff298d7c7c31f37a244057400735d2d2b37c40244c3723b0748cc22
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 22:12:04 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 28 Nov 2022 08:15:50 GMT
Expires: Mon, 05 Dec 2022 08:15:49 GMT
Etag: "a9599bf85493508ccf31d3dee37994bbd13bba21"
Cache-Control: max-age=467624,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771eaec6cb40b4fa-OSL
www.mtn.ng/smartanalytics/assets/assets/fonts/MTNBrighterSans-Medium.woff
197.210.3.42200 OK 22 kB URL HTTP/1.1 www.mtn.ng/smartanalytics/assets/assets/fonts/MTNBrighterSans-Medium.woff
IP 197.210.3.42:0
ASN #29465 MTN NIGERIA Communication limited
File type Web Open Font Format, CFF, length 22304, version 0.0\012- data
Hash d89ea356967a068d6ac6984807270aed
7d9db2898e89a63e5bc891b7cbb2d634e62388d0
0d414cae27954edc46dbc57130ec196d8278e76d26a620626e376667b6e93a0f
GET /smartanalytics/assets/assets/fonts/MTNBrighterSans-Medium.woff HTTP/1.1
Host: www.mtn.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://effexorbuy.com
Connection: keep-alive
Referer: https://www.mtn.ng/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains
Permissions-Policy: geolocation=(); midi=();notifications=();push=();sync-xhr=();accelerometer=(); gyroscope=(); magnetometer=(); payment=(); camera=(); microphone=();usb=(); xr=();speaker=(self);vibrate=();fullscreen=(self);
Last-Modified: Sun, 27 Feb 2022 08:53:12 GMT
ETag: "5720-5d8fc0fd1e668"
Accept-Ranges: bytes
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: upgrade-insecure-requests
Referrer-Policy: no-referrer-when-downgrade
Feature-Policy: accelerometer 'none'; ambient-light-sensor 'self'; autoplay 'self'; camera 'none'; cookie 'self'; docwrite 'self'; domain 'self'; encrypted-media 'self'; fullscreen 'self'; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone 'none'; midi 'none'; payment 'self'; picture-in-picture 'self'; speaker 'self'; sync-script 'self'; sync-xhr 'self'; unsized-media 'self'; usb 'none'; vertical-scroll 'self'; vibrate 'none'; vr 'none'
Keep-Alive: timeout=5, max=100
Content-Type: application/font-woff
Connection: Keep-Alive
Date: Tue, 29 Nov 2022 22:12:04 GMT
Age: 1336
Content-Length: 22304
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/app.997835bf.css
66.29.132.103200 OK 49 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/app.997835bf.css
IP 66.29.132.103:0
File type ASCII text, with very long lines (63249)
Hash 63da703417f75d70c036ef40dbcf0bf2
17d604bc9b530e84f622f406818cc122ebd09661
716b9d18ce7e4c12350880dbc6c5cfa2b35477dfdc51a8bd9a5954012e8c9a25
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/app.997835bf.css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/saved_resource.html
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.1.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1; _ga_YWQ5FX4GZX=GS1.1.1669759922.1.0.1669759922.0.0.0; mdLogger=false; kampyle_userid=8b67-f648-ee39-6ed4-f9b8-84d9-9b51-919b; kampyleUserSession=1669759923161; kampyleSessionPageCounter=1; kampyleUserSessionsCount=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:04 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:11:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 49292
date: Tue, 29 Nov 2022 22:12:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/7.7253a5d9.js.download
66.29.132.103404 Not Found 6.8 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/7.7253a5d9.js.download
IP 66.29.132.103:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash ee2b18beda07e654bcbe02491fb02451
6d6bd47d2b7c1936f3d842a411c1172565e42fd2
74cd0ccc4ff7bb02ccfa3d475857b20eacab1bba10bae7f9bf7b51a0d2da3f8c
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/7.7253a5d9.js.download HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/saved_resource.html
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.1.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1; _ga_YWQ5FX4GZX=GS1.1.1669759922.1.0.1669759922.0.0.0; mdLogger=false; kampyle_userid=8b67-f648-ee39-6ed4-f9b8-84d9-9b51-919b; kampyleUserSession=1669759923161; kampyleSessionPageCounter=1; kampyleUserSessionsCount=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://effexorbuy.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 6792
date: Tue, 29 Nov 2022 22:12:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/6.fb8421b0.js.download
66.29.132.103404 Not Found 6.8 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/6.fb8421b0.js.download
IP 66.29.132.103:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash ee2b18beda07e654bcbe02491fb02451
6d6bd47d2b7c1936f3d842a411c1172565e42fd2
74cd0ccc4ff7bb02ccfa3d475857b20eacab1bba10bae7f9bf7b51a0d2da3f8c
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/6.fb8421b0.js.download HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/saved_resource.html
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.1.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1; _ga_YWQ5FX4GZX=GS1.1.1669759922.1.0.1669759922.0.0.0; mdLogger=false; kampyle_userid=8b67-f648-ee39-6ed4-f9b8-84d9-9b51-919b; kampyleUserSession=1669759923161; kampyleSessionPageCounter=1; kampyleUserSessionsCount=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://effexorbuy.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 6792
date: Tue, 29 Nov 2022 22:12:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/app.css
66.29.132.103200 OK 126 B URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/app.css
IP 66.29.132.103:0
Hash a4260fa27560d50197e9d114e5b2d1ba
cb55338d74f61b842cee9fb6397b20e179a465b8
14866c2fa1a17fa30b88eb60351a41a2d87086678cca630fe0a94061e9205f05
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/app.css HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/saved_resource.html
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.1.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1; _ga_YWQ5FX4GZX=GS1.1.1669759922.1.0.1669759922.0.0.0; mdLogger=false; kampyle_userid=8b67-f648-ee39-6ed4-f9b8-84d9-9b51-919b; kampyleUserSession=1669759923161; kampyleSessionPageCounter=1; kampyleUserSessionsCount=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:04 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 10:11:12 GMT
accept-ranges: bytes
content-length: 126
date: Tue, 29 Nov 2022 22:12:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/messenger-logo.png
66.29.132.103200 OK 7.0 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/messenger-logo.png
IP 66.29.132.103:0
File type PNG image data, 147 x 144, 8-bit/color RGBA, non-interlaced\012- data
Hash 55daed683a2269d29bb6aafeb6eca6f6
aae33e5d84a7eedd1b756ccece0d400f4bae0941
c06ad86ad2706464e7e1f40140d14899397ee38279194f3a5d3d2ea9f82b2d60
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/messenger-logo.png HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/saved_resource.html
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.1.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1; _ga_YWQ5FX4GZX=GS1.1.1669759922.1.0.1669759922.0.0.0; mdLogger=false; kampyle_userid=8b67-f648-ee39-6ed4-f9b8-84d9-9b51-919b; kampyleUserSession=1669759923161; kampyleSessionPageCounter=1; kampyleUserSessionsCount=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:04 GMT
content-type: image/png
last-modified: Sat, 19 Nov 2022 10:11:12 GMT
accept-ranges: bytes
content-length: 6952
date: Tue, 29 Nov 2022 22:12:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/whatsapp-logo.png
66.29.132.103200 OK 16 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/whatsapp-logo.png
IP 66.29.132.103:0
File type PNG image data, 141 x 141, 8-bit/color RGBA, non-interlaced\012- data
Hash b90005847235633a399757600a5cc49b
2c95ec1e22454452a357ce21311ce116fdbcab8f
f4d35f4c48fbaea81702afd67c332fc5c44a7b3cdcf241ceb809b231eb08ca31
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/whatsapp-logo.png HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/saved_resource.html
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.1.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1; _ga_YWQ5FX4GZX=GS1.1.1669759922.1.0.1669759922.0.0.0; mdLogger=false; kampyle_userid=8b67-f648-ee39-6ed4-f9b8-84d9-9b51-919b; kampyleUserSession=1669759923161; kampyleSessionPageCounter=1; kampyleUserSessionsCount=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:04 GMT
content-type: image/png
last-modified: Sat, 19 Nov 2022 10:11:12 GMT
accept-ranges: bytes
content-length: 16439
date: Tue, 29 Nov 2022 22:12:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/telegram-logo.png
66.29.132.103200 OK 13 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/telegram-logo.png
IP 66.29.132.103:0
File type PNG image data, 141 x 141, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e6e400e26752a0c02dea67bce3e9ece
94e20eb348e48d220431439c4b8e48cc49fe41e6
94066fbf87dd83aa9d45f389a160a938f849cf036c4a19ea28b55fdc6ebb2366
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/telegram-logo.png HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/saved_resource.html
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.1.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1; _ga_YWQ5FX4GZX=GS1.1.1669759922.1.0.1669759922.0.0.0; mdLogger=false; kampyle_userid=8b67-f648-ee39-6ed4-f9b8-84d9-9b51-919b; kampyleUserSession=1669759923161; kampyleSessionPageCounter=1; kampyleUserSessionsCount=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:04 GMT
content-type: image/png
last-modified: Sat, 19 Nov 2022 10:11:12 GMT
accept-ranges: bytes
content-length: 13245
date: Tue, 29 Nov 2022 22:12:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/mtn-app-logo.png
66.29.132.103200 OK 39 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/mtn-app-logo.png
IP 66.29.132.103:0
File type PNG image data, 210 x 210, 8-bit/color RGBA, non-interlaced\012- data
Hash 3ad275f3f6a3c2a119415d8e1d92789c
2958245d1cd283def2dd87a67128c10c6a7ef556
c99c4c3f0d95a47a8a5755b6cb98ddcb768a7f36e8804c80468aed3732c0a83b
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/mtn-app-logo.png HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/saved_resource.html
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.1.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1; _ga_YWQ5FX4GZX=GS1.1.1669759922.1.0.1669759922.0.0.0; mdLogger=false; kampyle_userid=8b67-f648-ee39-6ed4-f9b8-84d9-9b51-919b; kampyleUserSession=1669759923161; kampyleSessionPageCounter=1; kampyleUserSessionsCount=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 22:12:04 GMT
content-type: image/png
last-modified: Sat, 19 Nov 2022 10:11:12 GMT
accept-ranges: bytes
content-length: 38674
date: Tue, 29 Nov 2022 22:12:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/vendor.e7db4a95.js.download
66.29.132.103404 Not Found 6.8 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/vendor.e7db4a95.js.download
IP 66.29.132.103:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash e87b673ad2312be15668c084ce0ee67b
8ba460a73ecb35b115646633e499a474d5432618
67e6334ac777c78697c4a2063ccf8d520714a3a6bd8d33fb511277592d96e188
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/vendor.e7db4a95.js.download HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/saved_resource.html
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.1.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1; _ga_YWQ5FX4GZX=GS1.1.1669759922.1.0.1669759922.0.0.0; mdLogger=false; kampyle_userid=8b67-f648-ee39-6ed4-f9b8-84d9-9b51-919b; kampyleUserSession=1669759923161; kampyleSessionPageCounter=1; kampyleUserSessionsCount=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://effexorbuy.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 6792
date: Tue, 29 Nov 2022 22:12:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsps.ssl.com/
52.6.97.148200 OK 1.8 kB IP 52.6.97.148:0
Hash 13e484b924f026d406a0ab93e744e4b6
d83a02dce884e996b2f3de0b0054539f58a5feb9
0d3764e39ada527c720ec8f4ed0ddcba11ee7f525196e4460eb806176b112382
POST / HTTP/1.1
Host: ocsps.ssl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:12:04 GMT
Content-Type: application/ocsp-response
Content-Length: 1810
Connection: keep-alive
Expires: Tue, 06 Dec 2022 15:25:16 GMT
Cache-Control: max-age=86400,public,no-transform,must-revalidate
ETag: "d83a02dce884e996b2f3de0b0054539f58a5feb9"
Last-Modified: Tue, 29 Nov 2022 15:25:17 GMT
X-Proxy-Cache: HIT
effexorbuy.com/mtn-n/fonts/materialdesignicons-webfont.woff2?v=3.6.95
66.29.132.103404 Not Found 38 kB URL HTTP/2 effexorbuy.com/mtn-n/fonts/materialdesignicons-webfont.woff2?v=3.6.95
IP 66.29.132.103:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 2c8d2cd3f1b411c19e7316751b9bce62
d864796c27cb145d605b608dce6b25bcc3a4587a
f3429132c2e675cf0adc7530aa674cf4c0b65d4187595053e6e1633322aabf25
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/fonts/materialdesignicons-webfont.woff2?v=3.6.95 HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/materialdesignicons.min.css
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.2.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://effexorbuy.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
date: Tue, 29 Nov 2022 22:12:03 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/app.16b3af44.js.download
66.29.132.103404 Not Found 6.8 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/app.16b3af44.js.download
IP 66.29.132.103:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash e87b673ad2312be15668c084ce0ee67b
8ba460a73ecb35b115646633e499a474d5432618
67e6334ac777c78697c4a2063ccf8d520714a3a6bd8d33fb511277592d96e188
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/app.16b3af44.js.download HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/saved_resource.html
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.1.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1; _ga_YWQ5FX4GZX=GS1.1.1669759922.1.0.1669759922.0.0.0; mdLogger=false; kampyle_userid=8b67-f648-ee39-6ed4-f9b8-84d9-9b51-919b; kampyleUserSession=1669759923161; kampyleSessionPageCounter=1; kampyleUserSessionsCount=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://effexorbuy.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 6792
date: Tue, 29 Nov 2022 22:12:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
service.supercounters.com/fc.php?id=1650659&w=1&v=2&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&ref=&url=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&sw=1280&sh=1024&rand=19
172.104.29.90200 OK 48 B URL HTTP/1.1 service.supercounters.com/fc.php?id=1650659&w=1&v=2&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&ref=&url=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&sw=1280&sh=1024&rand=19
IP 172.104.29.90:0
File type ASCII text, with CRLF line terminators
Hash e0d79fcae3331f127e77433c6b204284
8cc3291a82c1eb0a2067b15390c5b0f343e765b4
a9f655d65383620fb51d3c727ba1eb5a166a46cc9810c7598ca129546fd8f202
GET /fc.php?id=1650659&w=1&v=2&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&ref=&url=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&sw=1280&sh=1024&rand=19 HTTP/1.1
Host: service.supercounters.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 29 Nov 2022 22:12:04 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.13
Content-Encoding: gzip
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/runtime.8464523e.js.download
66.29.132.103404 Not Found 6.8 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/runtime.8464523e.js.download
IP 66.29.132.103:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash e87b673ad2312be15668c084ce0ee67b
8ba460a73ecb35b115646633e499a474d5432618
67e6334ac777c78697c4a2063ccf8d520714a3a6bd8d33fb511277592d96e188
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/runtime.8464523e.js.download HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/saved_resource.html
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.1.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1; _ga_YWQ5FX4GZX=GS1.1.1669759922.1.0.1669759922.0.0.0; mdLogger=false; kampyle_userid=8b67-f648-ee39-6ed4-f9b8-84d9-9b51-919b; kampyleUserSession=1669759923161; kampyleSessionPageCounter=1; kampyleUserSessionsCount=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://effexorbuy.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 6792
date: Tue, 29 Nov 2022 22:12:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
mtnng-prod.voiceweb.eu/bm/embed/embed.css?dt=1669759923486
51.145.185.205200 OK 8.7 kB URL HTTP/1.1 mtnng-prod.voiceweb.eu/bm/embed/embed.css?dt=1669759923486
IP 51.145.185.205:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type assembler source, ASCII text
Hash 0518498245627b22cbfecb1cd1003661
84233625c28c8f9ac10b4e3a80a68e19cd426f53
9de3c8dc0ac23a624c43c3a740c407149cd7b8ded2c159f2126ffa8abee919e6
GET /bm/embed/embed.css?dt=1669759923486 HTTP/1.1
Host: mtnng-prod.voiceweb.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 22:12:04 GMT
Content-Type: text/css
Content-Length: 8711
Connection: keep-alive
Server: nginx/1.18.0
Last-Modified: Wed, 26 Oct 2022 17:53:05 GMT
ETag: "63597401-2207"
Accept-Ranges: bytes
region1.google-analytics.com/g/collect?v=2&tid=G-YWQ5FX4GZX>m=2oeb90&_p=798370755&cid=1609358847.1669759923&ul=en-us&sr=1280x1024&_s=1&sid=1669759922&sct=1&seg=0&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&dt=LATEST%20-%20MTN-N&en=page_view&_fv=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-YWQ5FX4GZX>m=2oeb90&_p=798370755&cid=1609358847.1669759923&ul=en-us&sr=1280x1024&_s=1&sid=1669759922&sct=1&seg=0&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&dt=LATEST%20-%20MTN-N&en=page_view&_fv=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-YWQ5FX4GZX>m=2oeb90&_p=798370755&cid=1609358847.1669759923&ul=en-us&sr=1280x1024&_s=1&sid=1669759922&sct=1&seg=0&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&dt=LATEST%20-%20MTN-N&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://effexorbuy.com
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://effexorbuy.com
date: Tue, 29 Nov 2022 22:12:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
udc-neb.kampyle.com/egw/5/qceuv8449dzg58ptt1bhda9g8ue19c7s/track/__cool.gif?data=eyJldmVudHMiOiBbCiAgICB7InNlc3Npb25fc2NyZWVuX3NpemUiOiAiMTI4MHgxMDI0Iiwic2Vzc2lvbl9kdWEiOiAiTW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTA1LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTA1LjAiLCJzZXNzaW9uX3BsYXRmb3JtIjogIkxpbnV4IHg4Nl82NCIsInBhZ2VfdGl0bGUiOiAiTEFURVNUIC0gTVROLU4iLCJwYWdlX3VybCI6ICJodHRwczovL2VmZmV4b3JidXkuY29tL210bi1uLyIsInRyYWNrZXJfdHlwZSI6ICJqYXZhc2NyaXB0IiwidHJhY2tlcl92ZXJzaW9uIjogIjIuMi4yMyIsImV2ZW50X25hbWUiOiAibmVidWxhX3BhZ2VfdmlldyIsImV2ZW50X3RpbWVzdGFtcF9lcG9jaCI6ICIxNjY5NzU5OTIzMTYzIiwiZXZlbnRfdGltZXpvbmVfb2Zmc2V0IjogMCwidXNlcl9pZCI6ICIxODRjNTcyNzNjZjYyLTBjNWUwYjA2MDkyZWYxLWM1MDU0MjUtMTQwMDAwLTE4NGM1NzI3M2QwNDUxIiwiZW52aXJvbWVudCI6ICJkaWdpdGFsLWNsb3VkLWV1IiwiYWNjb3VudElkIjogMjA3MTk5LCJ1cmwiOiAiaHR0cHM6Ly9lZmZleG9yYnV5LmNvbS9tdG4tbi8iLCJ3ZWJzaXRlSWQiOiAyMDcyMDEsImZvcm1JZCI6IG51bGwsImZvcm1UcmlnZ2VyVHlwZSI6IG51bGwsImthbXB5bGVfZGF0YSI6IHsibWRfaXNTdXJ2ZXlTdWJtaXR0ZWRJblNlc3Npb24iOiAiIiwiTEFTVF9JTlZJVEFUSU9OX1ZJRVciOiAiIiwiREVDTElORURfREFURSI6ICIiLCJrYW1weWxlSW52aXRlUHJlc2VudGVkIjogIiIsImthbXB5bGVfdXNlcmlkIjogIjhiNjctZjY0OC1lZTM5LTZlZDQtZjliOC04NGQ5LTliNTEtOTE5YiIsImthbXB5bGVVc2VyU2Vzc2lvbiI6ICIxNjY5NzU5OTIzMTYxIiwia2FtcHlsZVVzZXJQZXJjZW50aWxlIjogIiIsIlNVQk1JVFRFRF9EQVRFIjogIiJ9LCJjb29raWVfc2l6ZSI6IDQxMSwia2FtcHlsZV92ZXJzaW9uIjogIjIuNDguMCIsIm9uc2l0ZV92ZXJzaW9uIjogIjIuNDguMCIsImhpc3RvcnlfbGVuZ3RoIjogMSwiZXZlbnRfbG9jYWxfdGltZXN0YW1wIjogMTY2OTc1OTkyMzE2MywicG9zaXRpb24iOiBudWxsLCJpc1VzZXJJZGVudGlmaWVkIjogZmFsc2V9Cl19
35.241.45.82200 OK 0 B URL HTTP/2 udc-neb.kampyle.com/egw/5/qceuv8449dzg58ptt1bhda9g8ue19c7s/track/__cool.gif?data=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
IP 35.241.45.82:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /egw/5/qceuv8449dzg58ptt1bhda9g8ue19c7s/track/__cool.gif?data=eyJldmVudHMiOiBbCiAgICB7InNlc3Npb25fc2NyZWVuX3NpemUiOiAiMTI4MHgxMDI0Iiwic2Vzc2lvbl9kdWEiOiAiTW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTA1LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTA1LjAiLCJzZXNzaW9uX3BsYXRmb3JtIjogIkxpbnV4IHg4Nl82NCIsInBhZ2VfdGl0bGUiOiAiTEFURVNUIC0gTVROLU4iLCJwYWdlX3VybCI6ICJodHRwczovL2VmZmV4b3JidXkuY29tL210bi1uLyIsInRyYWNrZXJfdHlwZSI6ICJqYXZhc2NyaXB0IiwidHJhY2tlcl92ZXJzaW9uIjogIjIuMi4yMyIsImV2ZW50X25hbWUiOiAibmVidWxhX3BhZ2VfdmlldyIsImV2ZW50X3RpbWVzdGFtcF9lcG9jaCI6ICIxNjY5NzU5OTIzMTYzIiwiZXZlbnRfdGltZXpvbmVfb2Zmc2V0IjogMCwidXNlcl9pZCI6ICIxODRjNTcyNzNjZjYyLTBjNWUwYjA2MDkyZWYxLWM1MDU0MjUtMTQwMDAwLTE4NGM1NzI3M2QwNDUxIiwiZW52aXJvbWVudCI6ICJkaWdpdGFsLWNsb3VkLWV1IiwiYWNjb3VudElkIjogMjA3MTk5LCJ1cmwiOiAiaHR0cHM6Ly9lZmZleG9yYnV5LmNvbS9tdG4tbi8iLCJ3ZWJzaXRlSWQiOiAyMDcyMDEsImZvcm1JZCI6IG51bGwsImZvcm1UcmlnZ2VyVHlwZSI6IG51bGwsImthbXB5bGVfZGF0YSI6IHsibWRfaXNTdXJ2ZXlTdWJtaXR0ZWRJblNlc3Npb24iOiAiIiwiTEFTVF9JTlZJVEFUSU9OX1ZJRVciOiAiIiwiREVDTElORURfREFURSI6ICIiLCJrYW1weWxlSW52aXRlUHJlc2VudGVkIjogIiIsImthbXB5bGVfdXNlcmlkIjogIjhiNjctZjY0OC1lZTM5LTZlZDQtZjliOC04NGQ5LTliNTEtOTE5YiIsImthbXB5bGVVc2VyU2Vzc2lvbiI6ICIxNjY5NzU5OTIzMTYxIiwia2FtcHlsZVVzZXJQZXJjZW50aWxlIjogIiIsIlNVQk1JVFRFRF9EQVRFIjogIiJ9LCJjb29raWVfc2l6ZSI6IDQxMSwia2FtcHlsZV92ZXJzaW9uIjogIjIuNDguMCIsIm9uc2l0ZV92ZXJzaW9uIjogIjIuNDguMCIsImhpc3RvcnlfbGVuZ3RoIjogMSwiZXZlbnRfbG9jYWxfdGltZXN0YW1wIjogMTY2OTc1OTkyMzE2MywicG9zaXRpb24iOiBudWxsLCJpc1VzZXJJZGVudGlmaWVkIjogZmFsc2V9Cl19 HTTP/1.1
Host: udc-neb.kampyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 22:12:04 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, DELETE
access-control-allow-headers: X-Requested-With, Origin, Content-Type, Accept
access-control-max-age: 1800
x-me: prod-instance-gatewayservice-green-lzjd
x-application-context: application:9090
content-type: image/gif; charset=UTF-8
content-length: 0
server: Jetty(9.2.11.v20150529)
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
mtnng-prod.voiceweb.eu/bm/api/bot/webcontainer?ch=web&hl=en-US
51.145.185.205403 Forbidden 52 B URL HTTP/1.1 mtnng-prod.voiceweb.eu/bm/api/bot/webcontainer?ch=web&hl=en-US
IP 51.145.185.205:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with no line terminators
Hash 703b04c96280781a4d9b64b2be5d5327
8121e43f9f581890d2547e36aac04a3193b47948
49d5099f0555b4eafbb43b79dab5cb5edbd0a499b00651594a71a549d23a6182
GET /bm/api/bot/webcontainer?ch=web&hl=en-US HTTP/1.1
Host: mtnng-prod.voiceweb.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://effexorbuy.com
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Date: Tue, 29 Nov 2022 22:12:04 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.18.0
Cache-Control: no-cache, private
Access-Control-Allow-Origin: https://mtnng-prod.voiceweb.eu/
X-Frame-Options: ALLOW-FROM https://mtnng-prod.voiceweb.eu/
Referrer-Policy: strict-origin-when-cross-origin
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: wss:;script-src 'self' 'unsafe-inline';style-src 'self' 'unsafe-inline';frame-src none;frame-ancestors https://mtnng-prod.voiceweb.eu/
Strict-Transport-Security: max-age=31536000
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.210200 OK 4.6 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.210:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (12961)
Hash c1a25b303b61b25e995516f5559bcdea
3c16a6fa3a2a6dc59d57a9ea1588c4f259884688
2063d2d1415ce9437e9331cb9a798714a5b2e106a65d6dc0ef0d426a5a4c30f2
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 18:52:45 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=50668
date: Tue, 29 Nov 2022 22:12:04 GMT
content-length: 4581
x-cdn: AKAM
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c3c6fcc1a6ec6e438b371359a220d437
646d2c502eb3579d0c394dbdd16ef10f60f43063
5e75d86847b64e661c218e63d1b4b2c4a9ade7506b3b50fce16dd39ebaa5c5fe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5789
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:12:04 GMT
Last-Modified: Tue, 29 Nov 2022 20:35:35 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a0fe20d41a043db700a84924cd9793f3
c0da481fef6cd00558f6e68b074acb34bef8292f
03caeb65ab9e22f6d6fe0d344d327950d20ee9ed144e2da0e5e062943a03fc56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:12:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/282795813086576
66.29.132.103200 OK 33 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/282795813086576
IP 66.29.132.103:0
Hash 9f76e3cfc7004feb9ce079034e23e117
72de3bc9fb2af8778f9879e6c98a279c05287943
ce187eee3afe4ef83bf55d60b5be15cdc6b7dd6ff8e77f40af45bcdae63f32d9
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/282795813086576 HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 10:10:20 GMT
accept-ranges: bytes
content-length: 299693
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/846515181/?random=1669759922672&cv=11&fst=1669759922672&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&label=2019%20Data%20Propositions&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&tiba=LATEST%20-%20MTN-N&auid=1462456706.1669759923&rfmt=3&fmt=4
142.250.74.34200 OK 918 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/846515181/?random=1669759922672&cv=11&fst=1669759922672&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&label=2019%20Data%20Propositions&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&tiba=LATEST%20-%20MTN-N&auid=1462456706.1669759923&rfmt=3&fmt=4
IP 142.250.74.34:0
File type ASCII text, with very long lines (1894), with no line terminators
Hash 29eb5180ffbe21a3df232fc306b22f9d
3f2ce088be523eda82c79780ec14ad8ac7ded610
65727f77d610bf3fed4e42a42a34f2d1321a2e3ffb5b4d39c3042a881d1ee15e
GET /pagead/viewthroughconversion/846515181/?random=1669759922672&cv=11&fst=1669759922672&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&label=2019%20Data%20Propositions&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&tiba=LATEST%20-%20MTN-N&auid=1462456706.1669759923&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 29 Nov 2022 22:12:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 918
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 29-Nov-2022 22:27:04 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US%20/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US%20/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US%20/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: xr+xkHi+nFkiJdr0z+mQhsoEEsGUeaDC3PAD03EDwBsyh3nZb21wdPDc7pRjjo1d+oErh9VEcTYWqhTh6yhLlQ==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 2074150462
date: Tue, 29 Nov 2022 22:12:04 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-6042224-1&cid=1609358847.1669759923&jid=1811903039&_u=aGBACEAAFAAAACAAI~&z=838286546
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-6042224-1&cid=1609358847.1669759923&jid=1811903039&_u=aGBACEAAFAAAACAAI~&z=838286546
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-6042224-1&cid=1609358847.1669759923&jid=1811903039&_u=aGBACEAAFAAAACAAI~&z=838286546 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 29 Nov 2022 22:12:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 55 B IP 93.184.220.29:0
File type HTML document, ASCII text
Hash 9f073354411bbaf7a319b1519f10b4b7
571498f38548829bf186f49f5be9d5fa6e689a68
4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6570
Content-Type: text/html
Date: Tue, 29 Nov 2022 22:12:04 GMT
Etag: "638651bf-37"
Last-Modified: Tue, 29 Nov 2022 18:38:55 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 55
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-6042224-1&cid=1609358847.1669759923&jid=1811903039&_u=aGBACEAAFAAAACAAI~&z=838286546
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-6042224-1&cid=1609358847.1669759923&jid=1811903039&_u=aGBACEAAFAAAACAAI~&z=838286546
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-6042224-1&cid=1609358847.1669759923&jid=1811903039&_u=aGBACEAAFAAAACAAI~&z=838286546 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 29 Nov 2022 22:12:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/4628321/domain/effexorbuy.com/token
54.230.111.112200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/4628321/domain/effexorbuy.com/token
IP 54.230.111.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /partner/4628321/domain/effexorbuy.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://effexorbuy.com/
Origin: https://effexorbuy.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Tue, 29 Nov 2022 18:29:26 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: p3OdaCirjYBaVWtgVhhLH9YG9W8XvXdpycxJdSNmYn_P-GeC3DV9zA==
age: 13358
X-Firefox-Spdy: h2
www.mtn.ng/wp-content/uploads/2022/02/cropped-MTN_2022_Logo_Yellow_RGB-192x192.png
197.210.3.42200 OK 7.3 kB URL HTTP/1.1 www.mtn.ng/wp-content/uploads/2022/02/cropped-MTN_2022_Logo_Yellow_RGB-192x192.png
IP 197.210.3.42:0
ASN #29465 MTN NIGERIA Communication limited
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 93f07ec1313e342eaca75bbb79e2a1c9
d281fc01d7a0fe12912a4d29d6495dba4584c046
eec7d2dc7ad0de4c84c48811b03fc8ff4875bfdad0c45aeef37cf32929f16655
GET /wp-content/uploads/2022/02/cropped-MTN_2022_Logo_Yellow_RGB-192x192.png HTTP/1.1
Host: www.mtn.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sun, 27 Feb 2022 09:13:09 GMT
ETag: "1c88-5d8fc5729c219"
Accept-Ranges: bytes
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=100
Content-Type: image/png
Connection: Keep-Alive
Date: Tue, 29 Nov 2022 22:12:04 GMT
Age: 524
Content-Length: 7304
www.mtn.ng/wp-content/uploads/2022/02/cropped-MTN_2022_Logo_Yellow_RGB-32x32.png
197.210.3.42200 OK 814 B URL HTTP/1.1 www.mtn.ng/wp-content/uploads/2022/02/cropped-MTN_2022_Logo_Yellow_RGB-32x32.png
IP 197.210.3.42:0
ASN #29465 MTN NIGERIA Communication limited
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 9a284da5db632c0d287f466e42de7527
14bb28002e2156743948c766449db35c95d1323a
cdfcb7c04e29eb83c653ae22c9fe8bc6014299f4041c8c80f2b2ee7d29db0f49
GET /wp-content/uploads/2022/02/cropped-MTN_2022_Logo_Yellow_RGB-32x32.png HTTP/1.1
Host: www.mtn.ng
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sun, 27 Feb 2022 09:13:09 GMT
ETag: "32e-5d8fc572a2320"
Accept-Ranges: bytes
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=100
Content-Type: image/png
Vary: Accept-Encoding
Connection: Keep-Alive
Date: Tue, 29 Nov 2022 22:12:04 GMT
Age: 2470
Content-Length: 814
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 798c6088f000b3a2464e23a92271c24d
2a53b3d3bd4a9104c79595f664276db5b32b9bad
dcccfc9bb4da634286d08301fcf23be3ae26bb429b35349fb72dde530fdb3ae4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:12:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash abd55ecd24d357a9f02612558f723a90
6a1e6963864f0b53ddc6205d35225e6cf0bcbeec
195fa531e0462be58d5c62ebbe6060e147c94bdb1d38ff46c341c74e0ab2671a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:12:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
px.ads.linkedin.com/collect?v=2&fmt=js&pid=&time=1669759920716&url=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=&time=1669759920716&url=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=&time=1669759920716&url=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&f8b4b063-ac69-4aca-801d-0e6c3a29ddc5"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 29-Nov-2023 22:12:04 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2379:u=1:x=1:i=1669759924:t=1669846324:v=2:sig=AQEhKVOFnku_E9DXR9T38E2x847RK2eM"; Expires=Wed, 30 Nov 2022 22:12:04 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXuo0cvhUeREczSND10Gw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 9FD57FEDF92B4B389DF1DDA4ECB4FD4B Ref B: OSL30EDGE0407 Ref C: 2022-11-29T22:12:04Z
date: Tue, 29 Nov 2022 22:12:04 GMT
content-length: 0
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=282795813086576&ev=PageView&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&rl=&if=false&ts=1669759924843&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1669759924838.577966864&it=1669759923934&coo=false&eid=44990924738&tm=1&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=282795813086576&ev=PageView&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&rl=&if=false&ts=1669759924843&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1669759924838.577966864&it=1669759923934&coo=false&eid=44990924738&tm=1&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=282795813086576&ev=PageView&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&rl=&if=false&ts=1669759924843&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1669759924838.577966864&it=1669759923934&coo=false&eid=44990924738&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 29 Nov 2022 22:12:06 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=2353459561548855&ev=PageView&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&rl=&if=false&ts=1669759924838&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%222683180281995596%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22NGN%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%221027917384301594%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&fbp=fb.1.1669759924838.577966864&it=1669759923934&coo=false&eid=94510306231131&tm=1&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=2353459561548855&ev=PageView&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&rl=&if=false&ts=1669759924838&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%222683180281995596%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22NGN%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%221027917384301594%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&fbp=fb.1.1669759924838.577966864&it=1669759923934&coo=false&eid=94510306231131&tm=1&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=2353459561548855&ev=PageView&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&rl=&if=false&ts=1669759924838&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%222683180281995596%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22NGN%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%221027917384301594%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&fbp=fb.1.1669759924838.577966864&it=1669759923934&coo=false&eid=94510306231131&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 29 Nov 2022 22:12:06 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=2353459561548855&ev=PageView&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&rl=&if=false&ts=1669759924851&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=1&o=30&par[0]=%7B%22extractorID%22%3A%222683180281995596%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22NGN%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%221027917384301594%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&fbp=fb.1.1669759924838.577966864&it=1669759923934&coo=false&eid=92036952428451&tm=1&rqm=GET
31.13.72.36200 OK 86 kB URL HTTP/2 www.facebook.com/tr/?id=2353459561548855&ev=PageView&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&rl=&if=false&ts=1669759924851&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=1&o=30&par[0]=%7B%22extractorID%22%3A%222683180281995596%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22NGN%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%221027917384301594%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&fbp=fb.1.1669759924838.577966864&it=1669759923934&coo=false&eid=92036952428451&tm=1&rqm=GET
IP 31.13.72.36:0
File type gzip compressed data, from Unix\012- data
Hash 4ac80b3c5aa3c1d8ba6048e49ff40a60
cc7a7d4077cba9d3611345eaf62aeca118b64b33
9dff37aeb9c708914631fa93408c393c42aecd98a296c19938b630639da963af
GET /tr/?id=2353459561548855&ev=PageView&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&rl=&if=false&ts=1669759924851&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=1&o=30&par[0]=%7B%22extractorID%22%3A%222683180281995596%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22NGN%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%221027917384301594%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&fbp=fb.1.1669759924838.577966864&it=1669759923934&coo=false&eid=92036952428451&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 29 Nov 2022 22:12:06 GMT
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/fonts/MTNBrighterSans-Medium.woff
66.29.132.103404 Not Found 32 kB URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/fonts/MTNBrighterSans-Medium.woff
IP 66.29.132.103:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash ca0f5dc4ce78ef9789e4689f03ce6603
a114ad43e3b12bc50bc7a3373a706120dc1f188c
db5948b6cc8531c5200a5f3fa058c5d6a970d95c72181be441b05865c67597fe
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/fonts/MTNBrighterSans-Medium.woff HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/theme-style.min.css
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.2.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://effexorbuy.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
date: Tue, 29 Nov 2022 22:12:03 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=2353459561548855&ev=AddToCart&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&rl=&if=false&ts=1669759924855&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=2&o=30&fbp=fb.1.1669759924838.577966864&it=1669759923934&coo=false&eid=68327718418068&tm=1&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=2353459561548855&ev=AddToCart&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&rl=&if=false&ts=1669759924855&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=2&o=30&fbp=fb.1.1669759924838.577966864&it=1669759923934&coo=false&eid=68327718418068&tm=1&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=2353459561548855&ev=AddToCart&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&rl=&if=false&ts=1669759924855&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=2&o=30&fbp=fb.1.1669759924838.577966864&it=1669759923934&coo=false&eid=68327718418068&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 29 Nov 2022 22:12:06 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=282795813086576&ev=AddToCart&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&rl=&if=false&ts=1669759924857&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=2&o=30&fbp=fb.1.1669759924838.577966864&it=1669759923934&coo=false&eid=42896706964219&tm=1&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=282795813086576&ev=AddToCart&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&rl=&if=false&ts=1669759924857&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=2&o=30&fbp=fb.1.1669759924838.577966864&it=1669759923934&coo=false&eid=42896706964219&tm=1&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=282795813086576&ev=AddToCart&dl=https%3A%2F%2Feffexorbuy.com%2Fmtn-n%2F&rl=&if=false&ts=1669759924857&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=2&o=30&fbp=fb.1.1669759924838.577966864&it=1669759923934&coo=false&eid=42896706964219&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 29 Nov 2022 22:12:06 GMT
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa44c8657-c62c-4dd0-8688-d6b89a767fb4.png
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa44c8657-c62c-4dd0-8688-d6b89a767fb4.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2cb669522a324cd5d9ba1b1743138d38
71e4307194ea9fb15d29c8a5e35f9bfd3cb0c6e0
a997731964710b80affb001f7f2e2f05a93550b06c1626279516d78b11332803
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa44c8657-c62c-4dd0-8688-d6b89a767fb4.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8337
x-amzn-requestid: 88e6ec5a-6b04-4787-91e4-02f316d0d6e2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhgYHViIAMFZrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867c68-10f0d81a09c0ae930f6be726;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:40:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8XATm-S2y3wzXWzJxgof2GIbXx_7WzuEMKrhI5By_tGaB8EiYeGkLg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:59:07 GMT
age: 780
etag: "71e4307194ea9fb15d29c8a5e35f9bfd3cb0c6e0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/fonts/MTNBrighterSans-Light.woff
66.29.132.103404 Not Found 0 B URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/fonts/MTNBrighterSans-Light.woff
IP 66.29.132.103:0
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/fonts/MTNBrighterSans-Light.woff HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/theme-style.min.css
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.2.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://effexorbuy.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
date: Tue, 29 Nov 2022 22:12:03 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/fonts/MTNBrighterSans-Bold.woff
66.29.132.103404 Not Found 0 B URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/fonts/MTNBrighterSans-Bold.woff
IP 66.29.132.103:0
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/fonts/MTNBrighterSans-Bold.woff HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/theme-style.min.css
Connection: keep-alive
Cookie: _gcl_au=1.1.1462456706.1669759923; _ga=GA1.2.1609358847.1669759923; _gid=GA1.2.1220793929.1669759923; _gat_UA-6042224-1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://effexorbuy.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
date: Tue, 29 Nov 2022 22:12:03 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/2353459561548855
66.29.132.103200 OK 0 B URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/2353459561548855
IP 66.29.132.103:0
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/2353459561548855 HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 10:10:22 GMT
accept-ranges: bytes
content-length: 300820
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
s2s.mtnonline.com/static/DhPixel.js
216.239.32.21200 OK 0 B URL HTTP/2 s2s.mtnonline.com/static/DhPixel.js
IP 216.239.32.21:0
GET /static/DhPixel.js HTTP/1.1
Host: s2s.mtnonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 22:12:06 GMT
expires: Tue, 29 Nov 2022 22:22:06 GMT
cache-control: public, max-age=600
etag: "N7SQSw"
x-cloud-trace-context: 40cf7f0d7c201b7619645a33c15c51a4
content-type: text/plain
content-encoding: gzip
server: Google Frontend
X-Firefox-Spdy: h2
effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/js
66.29.132.103200 OK 0 B URL HTTP/2 effexorbuy.com/mtn-n/Products%20-%20MTN%20Nigeria_files/js
IP 66.29.132.103:0
Analyzer Verdict Alert fortinet Phishing
GET /mtn-n/Products%20-%20MTN%20Nigeria_files/js HTTP/1.1
Host: effexorbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://effexorbuy.com/mtn-n/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 10:10:18 GMT
accept-ranges: bytes
content-length: 217118
date: Tue, 29 Nov 2022 22:12:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/4628321/domain/effexorbuy.com/token
54.230.111.112200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/4628321/domain/effexorbuy.com/token
IP 54.230.111.112:0
GET /partner/4628321/domain/effexorbuy.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://effexorbuy.com
Connection: keep-alive
Referer: https://effexorbuy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Tue, 29 Nov 2022 21:33:35 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AqKVSw5AgtOrlXUbbB3kR_Kky28wpo3734I-uz_1DLkcdlU4PWnNWA==
age: 2309
X-Firefox-Spdy: h2