r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10655
Expires: Fri, 03 Feb 2023 01:18:43 GMT
Date: Thu, 02 Feb 2023 22:21:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ec47f9eed203ae063b9c210009de54a9
19ff156471b9cffbc2432c5b65543bdd18e36271
3974208ce1840f6c9467287b7e220379ed881d76db64939f411dbc500c103d48
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3974208CE1840F6C9467287B7E220379ED881D76DB64939F411DBC500C103D48"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8619
Expires: Fri, 03 Feb 2023 00:44:47 GMT
Date: Thu, 02 Feb 2023 22:21:08 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 21:36:07 GMT
content-type: application/json
age: 2701
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11626
Expires: Fri, 03 Feb 2023 01:34:54 GMT
Date: Thu, 02 Feb 2023 22:21:08 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PBv4t++X9sqrrTbFzsgi1075nyyZgtUvxdOxakr3/bV756QENfgzNaIMdZz6Dm/p64mn5OvozZE=
x-amz-request-id: 40YQNVQ86TTNFDJ0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 21:52:08 GMT
age: 1740
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
naijawide.com/
69.89.20.142301 Moved Permanently 230 B IP 69.89.20.142:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6a7450b34bea887420bb3201e42aa8f7
147628d0c1f4dcd9fb8ed1317e3e5c0cec136231
92d2c2cc23f32623615a3dfeb92ca6f6373b5dd6ccf605e23e7f14482db42f3a
GET / HTTP/1.1
Host: naijawide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Feb 2023 22:21:08 GMT
Server: Apache
Location: https://naijawide.com/
Content-Length: 230
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:08 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 21:49:05 GMT
age: 1923
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 22ad38534b4f7d12043394d6725e203e
1f1ec09da24227b813e6026d7ae5c98e726fb138
1253c042da54eeb0efc646555abcfa0ea4fbed4db0f195c47e525779660a4f9c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1253C042DA54EEB0EFC646555ABCFA0EA4FBED4DB0F195C47E525779660A4F9C"
Last-Modified: Wed, 01 Feb 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5756
Expires: Thu, 02 Feb 2023 23:57:04 GMT
Date: Thu, 02 Feb 2023 22:21:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9473
Expires: Fri, 03 Feb 2023 00:59:01 GMT
Date: Thu, 02 Feb 2023 22:21:08 GMT
Connection: keep-alive
c0.wp.com/c/6.1.1/wp-includes/css/classic-themes.min.css
192.0.77.37200 OK 217 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/css/classic-themes.min.css
IP 192.0.77.37:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /c/6.1.1/wp-includes/css/classic-themes.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:09 GMT
content-type: text/css
content-length: 217
last-modified: Tue, 25 Oct 2022 13:45:16 GMT
expires: Fri, 02 Feb 2024 22:21:09 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.89.20.60101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.20.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 73KKmSp4jeUjNv18CO1Yww==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kR6fnMI3I9JCdXbbSyRA166u+bU=
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e98b051ab16391f67c98d0261f9b4f4e
a9fabc55a751f6752d4aac2b9a8be17cc454b34c
502b9f2bd43befa1837d5c53acdfa7d8f6f716fbceb2fd4b727d968e8f494a09
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5521
Cache-Control: max-age=128113
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:21:09 GMT
Etag: "63db7335-117"
Expires: Sat, 04 Feb 2023 09:56:22 GMT
Last-Modified: Thu, 02 Feb 2023 08:24:21 GMT
Server: ECS (amb/6B89)
X-Cache: HIT
Content-Length: 279
c0.wp.com/p/jetpack/11.7.1/_inc/build/photon/photon.min.js
192.0.77.37200 OK 819 B URL HTTP/2 c0.wp.com/p/jetpack/11.7.1/_inc/build/photon/photon.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (685), with no line terminators
Hash b21423d96933b66069a70f1fa0fc9074
b5612203991fdeca0bfcaf7706d06e8532801381
25ce6f73cecddc8cc5c9555fde817c4283eaffd4f98fdae8cc30b6bc3949c7bc
GET /p/jetpack/11.7.1/_inc/build/photon/photon.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:09 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 07 Dec 2021 16:56:47 GMT
content-encoding: br
expires: Fri, 02 Feb 2024 22:21:09 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
naijawide.com/wp-content/plugins/whatsapp/style.css?ver=6.1.1
69.89.20.142200 OK 370 B URL HTTP/2 naijawide.com/wp-content/plugins/whatsapp/style.css?ver=6.1.1
IP 69.89.20.142:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash b6f7a73c4e2c5bbfe8afdcea0d70d5a1
86c5725cd0917e525e0e984e4e407c3da8782b0d
1f8b517902523165500e6acdcc82671d037091895a6d601c88c9e4a30e473d67
GET /wp-content/plugins/whatsapp/style.css?ver=6.1.1 HTTP/1.1
Host: naijawide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://naijawide.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 10 Jul 2022 03:46:36 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 02 Feb 2024 22:21:09 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.12
content-length: 370
content-type: text/css
date: Thu, 02 Feb 2023 22:21:09 GMT
server: Apache
X-Firefox-Spdy: h2
naijawide.com/wp-content/plugins/download-monitor/assets/css/frontend.css?ver=6.1.1
69.89.20.142200 OK 1.3 kB URL HTTP/2 naijawide.com/wp-content/plugins/download-monitor/assets/css/frontend.css?ver=6.1.1
IP 69.89.20.142:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5280), with no line terminators
Hash 859775a20e81d18ab07f58d4c5b9c9de
f3d370dc84c48889685c019ba62dd2b08b09f4b4
d35ddf29786df7c6bed3728cdafe3ed3a6ca09f74ed29315a9be33d6fc90b88b
GET /wp-content/plugins/download-monitor/assets/css/frontend.css?ver=6.1.1 HTTP/1.1
Host: naijawide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://naijawide.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 19 Oct 2022 06:43:01 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 02 Feb 2024 22:21:09 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.12
content-length: 1335
content-type: text/css
date: Thu, 02 Feb 2023 22:21:09 GMT
server: Apache
X-Firefox-Spdy: h2
naijawide.com/wp-content/themes/naijawide-mobile-themee/style.css?ver=6.1.1
69.89.20.142200 OK 14 kB URL HTTP/2 naijawide.com/wp-content/themes/naijawide-mobile-themee/style.css?ver=6.1.1
IP 69.89.20.142:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (586)
Hash 0a24f6d2785478d55b91821241492807
77643f15d8bcefad11cbac0a07e49553e04bedb9
84f08d3979a8414ef5cf32f1ec862e538ab9253d5512131a39ab7011bb2818c5
GET /wp-content/themes/naijawide-mobile-themee/style.css?ver=6.1.1 HTTP/1.1
Host: naijawide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://naijawide.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 25 Oct 2022 04:04:12 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 02 Feb 2024 22:21:09 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.12
content-length: 13594
content-type: text/css
date: Thu, 02 Feb 2023 22:21:09 GMT
server: Apache
X-Firefox-Spdy: h2
i0.wp.com/naijawide.com/wp-content/uploads/2023/02/Wande-Coal-Kpe-Paso-Video.jpeg?resize=326%2C245&ssl=1
192.0.77.2200 OK 13 kB URL HTTP/2 i0.wp.com/naijawide.com/wp-content/uploads/2023/02/Wande-Coal-Kpe-Paso-Video.jpeg?resize=326%2C245&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 326x245, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1e04441174cb72c51dd324de9a8f47ea
40df9abbd415cb100906ce1d034f2acfe08c0c57
dd614282d31f53ca075202dfc8661e56e4dbaf71d9f65feacdf66ad2aac86c41
GET /naijawide.com/wp-content/uploads/2023/02/Wande-Coal-Kpe-Paso-Video.jpeg?resize=326%2C245&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:09 GMT
content-type: image/webp
content-length: 13240
last-modified: Thu, 02 Feb 2023 20:16:33 GMT
expires: Sun, 02 Feb 2025 08:16:33 GMT
cache-control: public, max-age=63115200
link: <https://naijawide.com/wp-content/uploads/2023/02/Wande-Coal-Kpe-Paso-Video.jpeg>; rel="canonical"
x-content-type-options: nosniff
etag: "beb0ccbf43e77a7c"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-82279839-1
172.217.21.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-82279839-1
IP 172.217.21.168:0
File type ASCII text, with very long lines (1759)
Hash a61809619b9de157d26490a6042c4078
727297c908b3e7e904280505d8892049fd08945d
c55f50e1cdf1a8a8a210700e7839477971d85594d27e6d5b239493affffcdeb1
GET /gtag/js?id=UA-82279839-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 22:21:09 GMT
expires: Thu, 02 Feb 2023 22:21:09 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 21:28:30 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43894
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
naijawide.com/wp-content/plugins/application-banner-google-playstore-applestore/include//js.cookie.js?ver=6.1.1
69.89.20.142200 OK 1.5 kB URL HTTP/2 naijawide.com/wp-content/plugins/application-banner-google-playstore-applestore/include//js.cookie.js?ver=6.1.1
IP 69.89.20.142:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash f49bf1c725a4a9bad431a48f098003dc
39c15bad26e21c334a7b293ed1c53553636ac877
beb64abe86eafeba12b78bfc49d76c1893e0d3aab1cd49e36ba93a941a0b09b6
GET /wp-content/plugins/application-banner-google-playstore-applestore/include//js.cookie.js?ver=6.1.1 HTTP/1.1
Host: naijawide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://naijawide.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 28 Sep 2022 05:24:59 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 02 Feb 2024 22:21:09 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.12
content-length: 1488
content-type: application/x-javascript
date: Thu, 02 Feb 2023 22:21:09 GMT
server: Apache
X-Firefox-Spdy: h2
naijawide.com/wp-content/themes/naijawide-mobile-themee/includes/font-awesome.min.css
69.89.20.142200 OK 7.1 kB URL HTTP/2 naijawide.com/wp-content/themes/naijawide-mobile-themee/includes/font-awesome.min.css
IP 69.89.20.142:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30837)
Hash 82a55032c4b614390aea6ef6870d3e90
bb21577feea531540a8d4f27ac3730ffac111e1b
4f068500ef9ef0dbffa5b76ac10f1970a7a9de8ff033f84228971a140eb20069
GET /wp-content/themes/naijawide-mobile-themee/includes/font-awesome.min.css HTTP/1.1
Host: naijawide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://naijawide.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 10 Jul 2022 04:11:08 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 02 Feb 2024 22:21:09 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.12
content-length: 7114
content-type: text/css
date: Thu, 02 Feb 2023 22:21:09 GMT
server: Apache
X-Firefox-Spdy: h2
naijawide.com/wp-content/plugins/auto-tag-links//css/styles.css
69.89.20.142200 OK 164 B URL HTTP/2 naijawide.com/wp-content/plugins/auto-tag-links//css/styles.css
IP 69.89.20.142:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash e87c199b3a1b914d66e0382abbcd2c3b
fc38bfdbcb296bf169ddf3805f2df78c0951b648
d8ccd7fadac0c53930f74b483409eb97e81c903c60d471384b175e1b8f596df2
GET /wp-content/plugins/auto-tag-links//css/styles.css HTTP/1.1
Host: naijawide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://naijawide.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 10 Jul 2022 03:46:29 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 02 Feb 2024 22:21:09 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.12
content-length: 164
content-type: text/css
date: Thu, 02 Feb 2023 22:21:09 GMT
server: Apache
X-Firefox-Spdy: h2
babssata.com/fiaFMlPrtu7dKkSf/49075
23.109.87.78200 OK 26 B URL HTTP/1.1 babssata.com/fiaFMlPrtu7dKkSf/49075
IP 23.109.87.78:0
File type ASCII text, with no line terminators
Hash 4e5d65669f8dcd928dad06adf883f025
d771713d758c3348dd7e5b38bb40c7935399ae46
0bebbf029fa045e4f462855e6c44edf8aaa36ded05b07a8ce456b67416d20c95
Analyzer Verdict Alert quad9 Sinkholed
GET /fiaFMlPrtu7dKkSf/49075 HTTP/1.1
Host: babssata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 22:21:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://naijawide.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; expires=Fri, 03-Feb-2023 22:21:09 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJw9i7sOgkAURAENEQXMJH6APyA%2BgoWtWhoojPUG8Wo2wl7Crg%2F8elETq5mcOWNZljMK4cgK%2FmoerWZRvIjmyxidCzGcJIWf802ZuhEqKwluwvUja%2BDWdJGsAgx%2BReR8IvSTdHJQV8UP9R8%2BtwDdXJomgPeJrxv20JG6Qrgu5HO85%2BJmWlvDU2SErohO8DbZsaDpdr9D%2BKffs2ujJ7Woan42bR8aWdKLFQk%2BnzWZFtl313kDsc5BIg%3D%3D; expires=Fri, 03-Feb-2023 22:21:09 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e98b051ab16391f67c98d0261f9b4f4e
a9fabc55a751f6752d4aac2b9a8be17cc454b34c
502b9f2bd43befa1837d5c53acdfa7d8f6f716fbceb2fd4b727d968e8f494a09
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5521
Cache-Control: max-age=128113
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:21:09 GMT
Etag: "63db7335-117"
Expires: Sat, 04 Feb 2023 09:56:22 GMT
Last-Modified: Thu, 02 Feb 2023 08:24:21 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Lora:wght@400;500;700&display=swap
142.250.74.106200 OK 1.0 kB URL HTTP/2 fonts.googleapis.com/css2?family=Lora:wght@400;500;700&display=swap
IP 142.250.74.106:0
Hash 98f6dc7067ce10d1d72b586827e0fd3a
45f75068d37f56ab93ff1dd16fa6ee21f6096714
4588f3c0986b7a2c79935e89f0a8402a34d2c38d5ddc2fde6814c168ff291a6e
GET /css2?family=Lora:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 22:21:09 GMT
date: Thu, 02 Feb 2023 22:21:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
naijawide.com/wp-content/themes/naijawide-mobile-themee/js/scripts.js?ver=6.1.1
69.89.20.142200 OK 15 kB URL HTTP/2 naijawide.com/wp-content/themes/naijawide-mobile-themee/js/scripts.js?ver=6.1.1
IP 69.89.20.142:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (21960)
Hash 9845fd46cdbab1308b73dd975cb5a525
e36949fb7352d7eb73d653b6f227b4ab4a6f51c2
d139c04a2fe89f3f1555dddc05c272bfe7b1d71eaf87e00d9434a305e334be9c
GET /wp-content/themes/naijawide-mobile-themee/js/scripts.js?ver=6.1.1 HTTP/1.1
Host: naijawide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://naijawide.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 10 Jul 2022 04:11:07 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 02 Feb 2024 22:21:09 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.12
content-length: 14697
content-type: application/x-javascript
date: Thu, 02 Feb 2023 22:21:09 GMT
server: Apache
X-Firefox-Spdy: h2
naijawide.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
69.89.20.142200 OK 5.3 kB URL HTTP/2 naijawide.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 69.89.20.142:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: naijawide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://naijawide.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 25 Jan 2023 21:13:45 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 02 Feb 2024 22:21:09 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.12
content-length: 5321
content-type: application/x-javascript
date: Thu, 02 Feb 2023 22:21:09 GMT
server: Apache
X-Firefox-Spdy: h2
naijawide.com/wp-content/uploads/2022/09/unnamed.webp
69.89.20.142200 OK 4.0 kB URL HTTP/2 naijawide.com/wp-content/uploads/2022/09/unnamed.webp
IP 69.89.20.142:0
ASN #46606 UNIFIEDLAYER-AS-1
File type RIFF (little-endian) data, Web/P image\012- data
Hash a9da92d1be641ff46a418030f2802323
d4f3886ebbbdb404d011480a4b22cf901dac4b74
0cfc026c73f67b94e2056a54397e62ec898539f1cedeb32c132778b6bedc42f5
GET /wp-content/uploads/2022/09/unnamed.webp HTTP/1.1
Host: naijawide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://naijawide.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:09 GMT
server: nginx/1.21.6
content-type: image/webp
content-length: 3998
last-modified: Wed, 28 Sep 2022 05:38:29 GMT
cache-control: max-age=31536000, public
expires: Sat, 27 Jan 2024 16:51:46 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.12
x-server-cache: true
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
naijawide.com/wp-content/uploads/2022/01/naijwide-logo22-1024x206-1.webp
69.89.20.142200 OK 24 kB URL HTTP/2 naijawide.com/wp-content/uploads/2022/01/naijwide-logo22-1024x206-1.webp
IP 69.89.20.142:0
ASN #46606 UNIFIEDLAYER-AS-1
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7ec81cbfafbd50682b0bc226a74d9cd2
4e574b6bd62469ad3ab4609fb2e50b71bda48d40
bab12e62eeadca81c7938093c6c7a628f39b06f4fe2dbf88e2afb0b1bee6beba
GET /wp-content/uploads/2022/01/naijwide-logo22-1024x206-1.webp HTTP/1.1
Host: naijawide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://naijawide.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:09 GMT
server: nginx/1.21.6
content-type: image/webp
content-length: 24516
last-modified: Tue, 26 Apr 2022 12:23:11 GMT
cache-control: max-age=31536000, public
expires: Thu, 25 Jan 2024 05:24:24 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.12
x-server-cache: true
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e647db7ce657e1a8ee6e4a403e09b6e5
e129c21901c4421ea80c63597414123746c848de
1b0095920d4fd1a54e5db1589e0adcbf35f9139ead04c93db3b514fe335b7f8f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1B0095920D4FD1A54E5DB1589E0ADCBF35F9139EAD04C93DB3B514FE335B7F8F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9691
Expires: Fri, 03 Feb 2023 01:02:40 GMT
Date: Thu, 02 Feb 2023 22:21:09 GMT
Connection: keep-alive
snoopundesirable.com/c2/65/8c/c2658c7848ca6e765264f8085093706c.js
192.243.59.12200 OK 13 kB URL HTTP/1.1 snoopundesirable.com/c2/65/8c/c2658c7848ca6e765264f8085093706c.js
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37159), with no line terminators
Hash 59e27da6e6050134f59b50945db9e15d
a1cdc7e18c11981a918bed438b30ab9495cbff91
c5af1f171581b8380b71e40aae82afe2673722cfb94e1e11ccf9883b15935777
GET /c2/65/8c/c2658c7848ca6e765264f8085093706c.js HTTP/1.1
Host: snoopundesirable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Thu, 02 Feb 2023 22:21:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1ca80eac794c3f6c2141bc2ad3a6dde6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
stats.wp.com/e-202305.js
192.0.76.3200 OK 3.0 kB IP 192.0.76.3:0
File type ASCII text, with very long lines (2690)
Hash e19d1b627d22b9ae41f53f5d3f05ddcc
02da51745f72da589ee6724b619791beca6d7f2d
1f6e966d80f28327a54f70ec75912f12ce0219d064f4066d4a59f1f151e8888f
GET /e-202305.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:09 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-3508"
content-encoding: br
expires: Wed, 24 Jan 2024 05:54:37 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dde2c749c196c5c411a2ceed2cd1da07
5ac939841ebacdace7e97e900056fcacdce1ee51
a153214f1fe422c54f64ba0e259c63c010f97ae9dca05ab953fcac10a4706946
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "A153214F1FE422C54F64BA0E259C63C010F97AE9DCA05AB953FCAC10A4706946"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15855
Expires: Fri, 03 Feb 2023 02:45:25 GMT
Date: Thu, 02 Feb 2023 22:21:10 GMT
Connection: keep-alive
snoopundesirable.com/53878dfa731e5a82b8cabc5c67d72f1e/invoke.js
192.243.59.12200 OK 9.8 kB URL HTTP/1.1 snoopundesirable.com/53878dfa731e5a82b8cabc5c67d72f1e/invoke.js
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26969), with no line terminators
Hash fbf37c28ac43aa7c9edeab354c41002c
c4ae0d52cb4b3888f87d4370f49dfcca91a08894
499e4c6fa89c65218060f07d0f2102782c45874d2c04c022099c8af0e7869f7b
GET /53878dfa731e5a82b8cabc5c67d72f1e/invoke.js HTTP/1.1
Host: snoopundesirable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Thu, 02 Feb 2023 22:21:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7e46e1ce64dca47a9f74145721cdbe04
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 3f11c62617c2bee07a8ed3cf82151243
ba58aa99e6fda4e73216a5b6a382dfd4f1f5b33a
a0b39826bd54ed8244e2c90f71d51146feaba0b9100446256479344837c50228
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 22:21:10 GMT
Last-Modified: Thu, 02 Feb 2023 20:54:01 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LnTBcVa3DisDIIKCrdjBV7qwfAx4mAFbaRN-zWEjuFFMDhJgEPApmA==
Age: 5229
simplewebanalysis.com/stats
35.156.167.37200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 35.156.167.37:0
File type ASCII text, with no line terminators
Hash a2dcaac45e206dfec59d11a9c3781aeb
a771ff3bae34bfecc530aae77f9b16810df9352e
be56215d551a5e49a46236042efa89d8e017f6a7894ac6a83aae981549c1985b
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://naijawide.com
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:10 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://naijawide.com
access-control-allow-credentials: true
set-cookie: uid_id2=4f688f31-3817-4928-bac2-4b320a28a0a4:1:1; expires=Sun, 30 Jan 2033 22:21:10 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
35.156.167.37200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 35.156.167.37:0
File type ASCII text, with no line terminators
Hash a40dc59a4a21af33cad1a631a67a90f1
2ed432760fec7a06bcc2585ac51419df4c55f5ee
14553688f2d384b282f2d9f5d3cac34348e8457e67736bc722324ebe6e74a510
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://naijawide.com
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:10 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://naijawide.com
access-control-allow-credentials: true
set-cookie: uid_id2=2b786b8a-4f00-436a-abde-d8e3584adffe:3:1; expires=Sun, 30 Jan 2033 22:21:10 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9939
Expires: Fri, 03 Feb 2023 01:06:49 GMT
Date: Thu, 02 Feb 2023 22:21:10 GMT
Connection: keep-alive
snoopundesirable.com/fc25c593397ecc63a41a131e0dee4f34/invoke.js
192.243.59.12200 OK 9.8 kB URL HTTP/1.1 snoopundesirable.com/fc25c593397ecc63a41a131e0dee4f34/invoke.js
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26953), with no line terminators
Hash 6887a62f98a316f62ecb87cabb53ab2b
e7e56f778f6656d63aeb08a35de69d8a797f8e6e
0e4dfe52ea16f2930e21caa77fdee031136173fef926e1b42d76a87d25a73373
GET /fc25c593397ecc63a41a131e0dee4f34/invoke.js HTTP/1.1
Host: snoopundesirable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Thu, 02 Feb 2023 22:21:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: efca1af184fc72f9e9ca03fb6fb147e2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9939
Expires: Fri, 03 Feb 2023 01:06:49 GMT
Date: Thu, 02 Feb 2023 22:21:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9939
Expires: Fri, 03 Feb 2023 01:06:49 GMT
Date: Thu, 02 Feb 2023 22:21:10 GMT
Connection: keep-alive
c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
192.0.77.37200 OK 2.9 kB URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP 192.0.77.37:0
File type ASCII text, with very long lines (11256), with no line terminators
Hash f645cac2526b3a0298e721add0b95699
c7435f7958164c439c913d4476d1ff82fd2b5c94
408d254930738e3f41c6dc1e198bc4591ff053e48cb40291f77769281705fc54
GET /c/6.1.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:09 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
content-encoding: br
expires: Fri, 02 Feb 2024 22:21:09 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9939
Expires: Fri, 03 Feb 2023 01:06:49 GMT
Date: Thu, 02 Feb 2023 22:21:10 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cf80667db0c35c9c6139eca4ba5d12fd
4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590
d63e69f4b6ea16333d242bf33d4f02a4a6c96a739ca018d86afc5741d85b774d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13065
x-amzn-requestid: 20c6f462-0f1f-44d1-9b6b-6afbc4e79e8b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpYpcELtIAMFvFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63da07d5-44cd803c0feba28919b0a9ec;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 06:33:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T3PhGRcHX1X2hn8K_4587fXBrEyuY5Em-b9Jg41uH4uyQXeFoRBIYg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:55:01 GMT
age: 1569
etag: "4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-admin/css/farbtastic.min.css
192.0.77.37200 OK 3.6 kB URL HTTP/2 c0.wp.com/c/6.1.1/wp-admin/css/farbtastic.min.css
IP 192.0.77.37:0
File type ASCII text, with very long lines (502)
Hash 21c417c275471e5bddb5d885e2206ac8
b8be25421c156ad83cc8d297d356ecfa054e5ca9
c147384beeae63813f1e1e22aa2f7c3420c6e7626057041004aa527530903be4
GET /c/6.1.1/wp-admin/css/farbtastic.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:09 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 19 Aug 2017 20:10:47 GMT
content-encoding: br
expires: Fri, 02 Feb 2024 22:21:09 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dde2c749c196c5c411a2ceed2cd1da07
5ac939841ebacdace7e97e900056fcacdce1ee51
a153214f1fe422c54f64ba0e259c63c010f97ae9dca05ab953fcac10a4706946
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "A153214F1FE422C54F64BA0E259C63C010F97AE9DCA05AB953FCAC10A4706946"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15855
Expires: Fri, 03 Feb 2023 02:45:25 GMT
Date: Thu, 02 Feb 2023 22:21:10 GMT
Connection: keep-alive
naijawide.com/
69.89.20.142200 OK 22 kB IP 69.89.20.142:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash e3c70842b11a1f45143446fa96122d1a
6400f451dd26d05bab6fa66118d00219f6654726
8a8985e890b8f9848659774fb77019f5cf2a3c8d8f6ed946aa5da921285a8eeb
GET / HTTP/1.1
Host: naijawide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:08 GMT
server: nginx/1.21.6
content-type: text/html; charset=UTF-8
expires: Thu, 02 Feb 2023 22:48:18 GMT
pragma: public
cache-control: max-age=3600, public
x-powered-by: W3 Total Cache/2.2.12
content-encoding: gzip
vary: Accept-Encoding
last-modified: Thu, 02 Feb 2023 21:48:18 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
referrer-policy: no-referrer-when-downgrade
x-server-cache: true
x-proxy-cache: HIT
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e690e4c-e16d-49e9-ac12-24a092d6a60c.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e690e4c-e16d-49e9-ac12-24a092d6a60c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a1d6fa4715c4e78250b2f72ddd2706f1
be04ac3a50aa6f1b349a2410ad386d92de3222be
d1c3c1b7016428bf2a085b71ca0d1e215a64b3d31ff15b0ef8bf5a78f11d9ae5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e690e4c-e16d-49e9-ac12-24a092d6a60c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8543
x-amzn-requestid: 3dc0960e-97db-42c8-99ac-623a44e8bb3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuv0wGJhIAMFaTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ceb-5ad3ef033a62559762db42b9;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EKWOeGruQEm9HuSlJMiEEw_gN1p37qTTIhYqaiQ6bFaCF65kUfmMtA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:55:01 GMT
age: 1569
etag: "be04ac3a50aa6f1b349a2410ad386d92de3222be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ab97f766ee1ed6ebbb2b3889a9157b4
f87f165404dec4d65531e6e25146cb77601f3616
f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14071
x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTo4Ek2oAMFs6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aTs6L8dJENFRdtBn7ggAbY5yaYRAzSY2B0bmElV4YNPrJg-KRDAyNA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:46:56 GMT
age: 2054
etag: "f87f165404dec4d65531e6e25146cb77601f3616"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bc75469-aee4-46b2-9ae0-75869ae8bb2a.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bc75469-aee4-46b2-9ae0-75869ae8bb2a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 40d4165b4e6dbb637204df196545ada8
a01f74c0c2c3ec1e5e7d6498415df8fbf109ae94
25d54e72b043f2d9553be6a8dedfce3ce39df4ac2b992f7e6d32ef04e96a3266
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bc75469-aee4-46b2-9ae0-75869ae8bb2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8912
x-amzn-requestid: 4fdceb0c-8af7-4ffb-b28b-c0d9e22f2456
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpQ4KGUsoAMFlcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9fb67-68ef58c454f6bd834eb05485;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 05:40:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: o7j1Zm4FhgxOrVdmJ5AK1gr_5W9koIYYryCIm5iAeJgHMlwDgDO9VA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:55:08 GMT
age: 1562
etag: "a01f74c0c2c3ec1e5e7d6498415df8fbf109ae94"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
snoopundesirable.com/157560d0afe7e947abd716a10b99e3ad/invoke.js
192.243.59.12200 OK 9.8 kB URL HTTP/1.1 snoopundesirable.com/157560d0afe7e947abd716a10b99e3ad/invoke.js
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26963), with no line terminators
Hash f5b4a4f688db0b584222f89331dea0e9
246dc865a96591446d5787965c472217e52aba4d
a57301c0568917c0c03cd39e5dc1138640913e958d95cac0227c297595230c25
GET /157560d0afe7e947abd716a10b99e3ad/invoke.js HTTP/1.1
Host: snoopundesirable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Thu, 02 Feb 2023 22:21:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 171eb198be5624a4dc6aaa9b7b50c898
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fcfded24631a1b18f0c0f0ca0d37a32d
40a4731eb28232749631636c3ad4924248cfe059
aea7c9ebb4fbbd587bb77a4d1b40674f72a1e573778272ab025186599ea60c2a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEA7C9EBB4FBBD587BB77A4D1B40674F72A1E573778272AB025186599EA60C2A"
Last-Modified: Thu, 02 Feb 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4054
Expires: Thu, 02 Feb 2023 23:28:44 GMT
Date: Thu, 02 Feb 2023 22:21:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d6742c7572f09dabd5444424ca66705d
00e8b8e4fb4b5b6bcfa50ef44e56091c3c065d77
4d1431f1cdaf0f9e20b7379bdf77a7f7911dd9970dfe7537c92d0a7269564ff1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D1431F1CDAF0F9E20B7379BDF77A7F7911DD9970DFE7537C92D0A7269564FF1"
Last-Modified: Tue, 31 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6184
Expires: Fri, 03 Feb 2023 00:04:14 GMT
Date: Thu, 02 Feb 2023 22:21:10 GMT
Connection: keep-alive
snoopundesirable.com/329324c7db68cbdfd350f51ec53d8557/invoke.js
192.243.59.12200 OK 9.8 kB URL HTTP/1.1 snoopundesirable.com/329324c7db68cbdfd350f51ec53d8557/invoke.js
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26957), with no line terminators
Hash 86295fee54e926cfe2925fd6d76d40a2
b61515431a29e8caf8468c4be68a350ac70e26c9
024e3c01ae47735eab4de29579ea9701c370a67554a78834a8bf57dcad1fc053
GET /329324c7db68cbdfd350f51ec53d8557/invoke.js HTTP/1.1
Host: snoopundesirable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Thu, 02 Feb 2023 22:21:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ed688365ad5e838cddfd9e52e3b86587
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
subscribestormyapprobation.com/watch.1105313549133.js?key=53878dfa731e5a82b8cabc5c67d72f1e&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1
173.233.137.60307 Temporary Redirect 0 B URL HTTP/1.1 subscribestormyapprobation.com/watch.1105313549133.js?key=53878dfa731e5a82b8cabc5c67d72f1e&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1105313549133.js?key=53878dfa731e5a82b8cabc5c67d72f1e&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1 HTTP/1.1
Host: subscribestormyapprobation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://naijawide.com
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:21:10 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://naijawide.com
Access-Control-Allow-Origin: https://naijawide.com
Access-Control-Allow-Credentials: true
Location: https://subscribestormyapprobation.com/watch.1105313549133.js?key=53878dfa731e5a82b8cabc5c67d72f1e&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1&shu=bf9657c567f0acabc28431818e5e0b12a131207586c54532ab68ebc41117a49a94a9eb718472c0325472407d91aa20bd674d349b4df516e5dd6e7dbf834155f79d1f467d5b239212c37c140f610942c8284ac4eb7c0eedcb2682a1828b065b&pst=1675376530&rmtc=t
Set-Cookie: u_pl=15374425; expires=Fri, 03 Feb 2023 22:21:10 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.kKWSJrUIFKP1H5EbIt4hsEyothvFP1NSzrDO4a5vWVc; expires=Thu, 02 Feb 2023 22:22:10 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d6d69ce8cdb4f9f482b7c1df7c9d894a
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 62eaeb13a1754898f3cf9705521d7006
1e19795248e9fdc846b4e21cfac713d909c6f56f
d634fb511d5e7c62267de7f4bc580692a4d2115a5010b3c47c5283bc4bb4e9bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D634FB511D5E7C62267DE7F4BC580692A4D2115A5010B3C47C5283BC4BB4E9BF"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7687
Expires: Fri, 03 Feb 2023 00:29:17 GMT
Date: Thu, 02 Feb 2023 22:21:10 GMT
Connection: keep-alive
peevishchasingstir.com/watch.1419503838295.js?key=fc25c593397ecc63a41a131e0dee4f34&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=4f688f31-3817-4928-bac2-4b320a28a0a4%3A1%3A1
173.233.137.44307 Temporary Redirect 0 B URL HTTP/1.1 peevishchasingstir.com/watch.1419503838295.js?key=fc25c593397ecc63a41a131e0dee4f34&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=4f688f31-3817-4928-bac2-4b320a28a0a4%3A1%3A1
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1419503838295.js?key=fc25c593397ecc63a41a131e0dee4f34&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=4f688f31-3817-4928-bac2-4b320a28a0a4%3A1%3A1 HTTP/1.1
Host: peevishchasingstir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://naijawide.com
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:21:10 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://naijawide.com
Access-Control-Allow-Origin: https://naijawide.com
Access-Control-Allow-Credentials: true
Location: https://peevishchasingstir.com/watch.1419503838295.js?key=fc25c593397ecc63a41a131e0dee4f34&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=4f688f31-3817-4928-bac2-4b320a28a0a4%3A1%3A1&shu=6e64ddf72b3a2f73d740bf88ddf9b2403f457dd17893830f129497f5541eaea7ba773fb79b33e1e8ddecd04f449bd8bbc41f9deb9082898754f4c3735973fa950e1cd4f4a2c7c1874ec00c6a2f2e9510622e715642d56ee31ecc4cd711be44bb8bf857cf&pst=1675376530&rmtc=t
Set-Cookie: u_pl=15830515; expires=Fri, 03 Feb 2023 22:21:10 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.WnbEHnjQymEw8lJTozq54euyb-r6lz6N4d9otZkg0o8; expires=Thu, 02 Feb 2023 22:22:10 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9727ef96f38f99b6ca5837463d87d35a
Strict-Transport-Security: max-age=0; includeSubdomains
snoopundesirable.com/78b8824ae7483a3707097684cef48d9c/invoke.js
192.243.59.12200 OK 9.8 kB URL HTTP/1.1 snoopundesirable.com/78b8824ae7483a3707097684cef48d9c/invoke.js
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26951), with no line terminators
Hash 9f4dfc94cceae7aaa438453734879d62
14df41414781f55b80291c584ad2af2b3723cfbc
39dfa39e04cc14535332ff736ff57f5505f516c88a16923f64d373a026fe919f
GET /78b8824ae7483a3707097684cef48d9c/invoke.js HTTP/1.1
Host: snoopundesirable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Thu, 02 Feb 2023 22:21:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 559af71290fa89c6bc3146343463e750
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 47d3156a01937914d3788651a5a1df4e
9f757e95fa9ba9ea3949d29f2617040b3088464a
95796fa7ec26c1f9f6f4d1503b0034405e323786758ae835de2ae53f6e378ec5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "95796FA7EC26C1F9F6F4D1503B0034405E323786758AE835DE2AE53F6E378EC5"
Last-Modified: Thu, 02 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3938
Expires: Thu, 02 Feb 2023 23:26:48 GMT
Date: Thu, 02 Feb 2023 22:21:10 GMT
Connection: keep-alive
peevishchasingstir.com/watch.1419503838295.js?key=fc25c593397ecc63a41a131e0dee4f34&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=4f688f31-3817-4928-bac2-4b320a28a0a4%3A1%3A1&shu=6e64ddf72b3a2f73d740bf88ddf9b2403f457dd17893830f129497f5541eaea7ba773fb79b33e1e8ddecd04f449bd8bbc41f9deb9082898754f4c3735973fa950e1cd4f4a2c7c1874ec00c6a2f2e9510622e715642d56ee31ecc4cd711be44bb8bf857cf&pst=1675376530&rmtc=t
173.233.137.44200 OK 634 B URL HTTP/1.1 peevishchasingstir.com/watch.1419503838295.js?key=fc25c593397ecc63a41a131e0dee4f34&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=4f688f31-3817-4928-bac2-4b320a28a0a4%3A1%3A1&shu=6e64ddf72b3a2f73d740bf88ddf9b2403f457dd17893830f129497f5541eaea7ba773fb79b33e1e8ddecd04f449bd8bbc41f9deb9082898754f4c3735973fa950e1cd4f4a2c7c1874ec00c6a2f2e9510622e715642d56ee31ecc4cd711be44bb8bf857cf&pst=1675376530&rmtc=t
IP 173.233.137.44:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (581)
Hash 93e04a8a0e673c66b6b4237055e50a87
e31a3d9d0586c37143b7ab4e72c85ce31e87b75a
ca220369c5201ac13527b3a749fc1d0a62b9a420093c000329edf332ffe5991e
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1419503838295.js?key=fc25c593397ecc63a41a131e0dee4f34&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=4f688f31-3817-4928-bac2-4b320a28a0a4%3A1%3A1&shu=6e64ddf72b3a2f73d740bf88ddf9b2403f457dd17893830f129497f5541eaea7ba773fb79b33e1e8ddecd04f449bd8bbc41f9deb9082898754f4c3735973fa950e1cd4f4a2c7c1874ec00c6a2f2e9510622e715642d56ee31ecc4cd711be44bb8bf857cf&pst=1675376530&rmtc=t HTTP/1.1
Host: peevishchasingstir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://naijawide.com
Referer: https://naijawide.com/
Connection: keep-alive
Cookie: u_pl=15830515; ain=eyJhbGciOiJIUzI1NiJ9.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.WnbEHnjQymEw8lJTozq54euyb-r6lz6N4d9otZkg0o8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:21:10 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://naijawide.com
Access-Control-Allow-Origin: https://naijawide.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=4f688f31-3817-4928-bac2-4b320a28a0a4:1:1; expires=Thu, 09 Feb 2023 22:21:10 GMT; secure; SameSite=None
iprc40da6b2ced4f44de37cff8fbe2c285c9=2717343; expires=Sat, 04 Feb 2023 00:21:10 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 03 Feb 2023 22:21:10 GMT; secure; SameSite=None
uncs=1; expires=Fri, 03 Feb 2023 22:21:10 GMT; secure; SameSite=None
pdhtkv23=true; expires=Fri, 03 Feb 2023 22:21:10 GMT; secure; SameSite=None
uncs23=1; expires=Fri, 03 Feb 2023 22:21:10 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c9cbf2fbc8a28044557144b82b60825e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
pixel.wp.com/g.gif?v=ext&blog=104456881&post=0&tz=1&srv=naijawide.com&j=1%3A11.7.1&host=naijawide.com&ref=&fcp=0&rand=0.11697297310399313
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&blog=104456881&post=0&tz=1&srv=naijawide.com&j=1%3A11.7.1&host=naijawide.com&ref=&fcp=0&rand=0.11697297310399313
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&blog=104456881&post=0&tz=1&srv=naijawide.com&j=1%3A11.7.1&host=naijawide.com&ref=&fcp=0&rand=0.11697297310399313 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:10 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 164ea2435c404442fdae1f20af484d99
2d7cbec1459e9d963901711cd6c16c585c99d647
9d485c723098f331af1d237a091d290bab46fe452910d3a2caf7ada2dc45625d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4160
Cache-Control: max-age=148730
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:21:10 GMT
Etag: "63dbc910-116"
Expires: Sat, 04 Feb 2023 15:40:00 GMT
Last-Modified: Thu, 02 Feb 2023 14:30:40 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 278
subscribestormyapprobation.com/watch.1105313549133.js?key=53878dfa731e5a82b8cabc5c67d72f1e&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1&shu=bf9657c567f0acabc28431818e5e0b12a131207586c54532ab68ebc41117a49a94a9eb718472c0325472407d91aa20bd674d349b4df516e5dd6e7dbf834155f79d1f467d5b239212c37c140f610942c8284ac4eb7c0eedcb2682a1828b065b&pst=1675376530&rmtc=t
173.233.137.60200 OK 635 B URL HTTP/1.1 subscribestormyapprobation.com/watch.1105313549133.js?key=53878dfa731e5a82b8cabc5c67d72f1e&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1&shu=bf9657c567f0acabc28431818e5e0b12a131207586c54532ab68ebc41117a49a94a9eb718472c0325472407d91aa20bd674d349b4df516e5dd6e7dbf834155f79d1f467d5b239212c37c140f610942c8284ac4eb7c0eedcb2682a1828b065b&pst=1675376530&rmtc=t
IP 173.233.137.60:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (582)
Hash 2f25c743545428b3a88c92d01fe47659
f6490215d9e3e4562330c130663351773939b8ba
4f7995e6a7ea49146577ac0b1a27a1b16747ad493217fb12e9bc6e538b740412
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1105313549133.js?key=53878dfa731e5a82b8cabc5c67d72f1e&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1&shu=bf9657c567f0acabc28431818e5e0b12a131207586c54532ab68ebc41117a49a94a9eb718472c0325472407d91aa20bd674d349b4df516e5dd6e7dbf834155f79d1f467d5b239212c37c140f610942c8284ac4eb7c0eedcb2682a1828b065b&pst=1675376530&rmtc=t HTTP/1.1
Host: subscribestormyapprobation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://naijawide.com
Referer: https://naijawide.com/
Connection: keep-alive
Cookie: u_pl=15374425; ain=eyJhbGciOiJIUzI1NiJ9.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.kKWSJrUIFKP1H5EbIt4hsEyothvFP1NSzrDO4a5vWVc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:21:10 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://naijawide.com
Access-Control-Allow-Origin: https://naijawide.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=2b786b8a-4f00-436a-abde-d8e3584adffe:3:1; expires=Thu, 09 Feb 2023 22:21:10 GMT; secure; SameSite=None
iprc4cbcdc19074c1211618f4d6a81c9b353=2717340; expires=Sat, 04 Feb 2023 00:21:10 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 03 Feb 2023 22:21:10 GMT; secure; SameSite=None
uncs=1; expires=Fri, 03 Feb 2023 22:21:10 GMT; secure; SameSite=None
pdhtkv5=true; expires=Fri, 03 Feb 2023 22:21:10 GMT; secure; SameSite=None
uncs5=1; expires=Fri, 03 Feb 2023 22:21:10 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8f7b746c45bbd764814223b43c708383
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:21:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:21:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:21:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sweepfrequencydissolved.com/watch.36342575092.js?key=157560d0afe7e947abd716a10b99e3ad&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1
192.243.61.227307 Temporary Redirect 0 B URL HTTP/1.1 sweepfrequencydissolved.com/watch.36342575092.js?key=157560d0afe7e947abd716a10b99e3ad&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.36342575092.js?key=157560d0afe7e947abd716a10b99e3ad&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1 HTTP/1.1
Host: sweepfrequencydissolved.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://naijawide.com
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:21:10 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://naijawide.com
Access-Control-Allow-Origin: https://naijawide.com
Access-Control-Allow-Credentials: true
Location: https://sweepfrequencydissolved.com/watch.36342575092.js?key=157560d0afe7e947abd716a10b99e3ad&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1&shu=ca8287600ff6582b9ceaf69fc61e1cf3bf1a51c6ea1b4a020e46f2eebaabe0015d61a5c99bd9e20557486c49fc9e7bda14f39bc9d926ad9ce8a850ddf33691db7283bfd3ae8256903c7e548a7ec344174505f53d&pst=1675376530&rmtc=t
Set-Cookie: u_pl=16109813; expires=Fri, 03 Feb 2023 22:21:10 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.IozG9xGV3VJ5vg3Ue0RLLjG4rGJhpkkKC3FZp_WvyzI; expires=Thu, 02 Feb 2023 22:22:10 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8387cf50d04abacb2270cdabc8c5dd16
Strict-Transport-Security: max-age=0; includeSubdomains
fonts.gstatic.com/s/lora/v26/0QIvMX1D_JOuMwr7Iw.woff2
216.58.207.227200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/lora/v26/0QIvMX1D_JOuMwr7Iw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 35660, version 1.0\012- data
Hash 0d0d3e5824e5e67a9e993960df2b67a9
328d67bb1d5899a7809df9f4385181863fd035f1
38da98e06ba18c4204f547d30572cd81a2dd3fd5438d306856d2617480ee8639
GET /s/lora/v26/0QIvMX1D_JOuMwr7Iw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://naijawide.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 10:14:36 GMT
expires: Thu, 01 Feb 2024 10:14:36 GMT
cache-control: public, max-age=31536000
age: 129994
last-modified: Mon, 15 Aug 2022 18:07:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i0.wp.com/naijawide.com/wp-content/uploads/2023/02/ii_1675259409.webp?resize=317%2C245&ssl=1
192.0.77.2200 OK 73 kB URL HTTP/2 i0.wp.com/naijawide.com/wp-content/uploads/2023/02/ii_1675259409.webp?resize=317%2C245&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 5ab5f5877be8e04ee74e4cfbb05524af
04091bcaf8a2bb3ab4af8e500e353b23f9374f82
6934cdf4ff6309f893051c2ecf18994fda5eef28cd45245f0aaef78da9f34226
GET /naijawide.com/wp-content/uploads/2023/02/ii_1675259409.webp?resize=317%2C245&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:10 GMT
content-type: image/webp
content-length: 73094
last-modified: Thu, 02 Feb 2023 13:57:41 GMT
expires: Sun, 02 Feb 2025 01:57:41 GMT
cache-control: public, max-age=63115200
link: <https://naijawide.com/wp-content/uploads/2023/02/ii_1675259409.webp>; rel="canonical"
x-content-type-options: nosniff
etag: "afb11ad2d47b417f"
vary: Accept
x-nc: HIT arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/naijawide.com/wp-content/uploads/2023/02/AGE-Ojo-Ori.jpeg?resize=326%2C245&ssl=1
192.0.77.2200 OK 13 kB URL HTTP/2 i0.wp.com/naijawide.com/wp-content/uploads/2023/02/AGE-Ojo-Ori.jpeg?resize=326%2C245&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 326x245, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash eced8e3786a4ae5f77b6628005741e94
98e05682114b91c478f2cfa041fa2da2cbb1f6fa
c4d26ecc2cecfdde5c1e54511309cea2ad8a0ea3db66ec7d9545c9df53de0772
GET /naijawide.com/wp-content/uploads/2023/02/AGE-Ojo-Ori.jpeg?resize=326%2C245&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:10 GMT
content-type: image/webp
content-length: 12940
last-modified: Thu, 02 Feb 2023 20:16:48 GMT
expires: Sun, 02 Feb 2025 08:16:48 GMT
cache-control: public, max-age=63115200
link: <https://naijawide.com/wp-content/uploads/2023/02/AGE-Ojo-Ori.jpeg>; rel="canonical"
x-content-type-options: nosniff
etag: "73768d7aaef0ae26"
vary: Accept
x-nc: HIT arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/naijawide.com/wp-content/uploads/2023/02/Destined.jpeg?resize=326%2C245&ssl=1
192.0.77.2200 OK 11 kB URL HTTP/2 i0.wp.com/naijawide.com/wp-content/uploads/2023/02/Destined.jpeg?resize=326%2C245&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 326x245, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a626bccdf297d2f1608bbcd9d283473f
6f4675414e4aab1b1e33e6adc2dc55d7329830c7
d3601ad58488c4de0a3724737e9cbf8ac7e902b576b5cdc543fe29fd1d7846a9
GET /naijawide.com/wp-content/uploads/2023/02/Destined.jpeg?resize=326%2C245&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:10 GMT
content-type: image/webp
content-length: 11056
last-modified: Thu, 02 Feb 2023 20:16:49 GMT
expires: Sun, 02 Feb 2025 08:16:49 GMT
cache-control: public, max-age=63115200
link: <https://naijawide.com/wp-content/uploads/2023/02/Destined.jpeg>; rel="canonical"
x-content-type-options: nosniff
etag: "f2783930b6da9dd9"
vary: Accept
x-nc: HIT arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/naijawide.com/wp-content/uploads/2023/02/DJ-Neptune-Bienvenue-Video.jpeg?resize=326%2C245&ssl=1
192.0.77.2200 OK 9.5 kB URL HTTP/2 i0.wp.com/naijawide.com/wp-content/uploads/2023/02/DJ-Neptune-Bienvenue-Video.jpeg?resize=326%2C245&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 326x245, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2791546830eeb4b4808f67cf3ab99ab3
15e6c682ea37e0aba53a5efa1517d7120c96f6bc
a09c02573fe569c40e611e23127ec02dff264a32e56c3e9c7ea94046b0566889
GET /naijawide.com/wp-content/uploads/2023/02/DJ-Neptune-Bienvenue-Video.jpeg?resize=326%2C245&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:10 GMT
content-type: image/webp
content-length: 9470
last-modified: Thu, 02 Feb 2023 20:16:50 GMT
expires: Sun, 02 Feb 2025 08:16:50 GMT
cache-control: public, max-age=63115200
link: <https://naijawide.com/wp-content/uploads/2023/02/DJ-Neptune-Bienvenue-Video.jpeg>; rel="canonical"
x-content-type-options: nosniff
etag: "20611c57e6de4bbe"
vary: Accept
x-nc: HIT arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/naijawide.com/wp-content/uploads/2023/02/Folajomi-2.jpeg?resize=326%2C245&ssl=1
192.0.77.2200 OK 16 kB URL HTTP/2 i0.wp.com/naijawide.com/wp-content/uploads/2023/02/Folajomi-2.jpeg?resize=326%2C245&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 326x245, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 830d75c1b509cd48e24c5804b8ed1ea8
e6bd464f45451e5d494f5a7950d3610efbb7fe8c
0744eaa74f783f3ef42921e4da8baa5d1f339d04f9814f94316a1679078930ef
GET /naijawide.com/wp-content/uploads/2023/02/Folajomi-2.jpeg?resize=326%2C245&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:10 GMT
content-type: image/webp
content-length: 16138
last-modified: Thu, 02 Feb 2023 20:16:50 GMT
expires: Sun, 02 Feb 2025 08:16:50 GMT
cache-control: public, max-age=63115200
link: <https://naijawide.com/wp-content/uploads/2023/02/Folajomi-2.jpeg>; rel="canonical"
x-content-type-options: nosniff
etag: "12990735cb9cd3c0"
vary: Accept
x-nc: HIT arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/naijawide.com/wp-content/uploads/2023/02/Afadapakun.jpeg?resize=326%2C245&ssl=1
192.0.77.2200 OK 11 kB URL HTTP/2 i0.wp.com/naijawide.com/wp-content/uploads/2023/02/Afadapakun.jpeg?resize=326%2C245&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 326x245, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash abef4bd6b9ea95b01df1d8c17b95f34d
4533665981631d718c711e28df103102fe69dcbb
c65d4fa8c55aa4e3c09960880af3fa31d2f219e56febdf17dd22d983c5b79b41
GET /naijawide.com/wp-content/uploads/2023/02/Afadapakun.jpeg?resize=326%2C245&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:10 GMT
content-type: image/webp
content-length: 10564
last-modified: Thu, 02 Feb 2023 19:12:31 GMT
expires: Sun, 02 Feb 2025 07:12:31 GMT
cache-control: public, max-age=63115200
link: <https://naijawide.com/wp-content/uploads/2023/02/Afadapakun.jpeg>; rel="canonical"
x-content-type-options: nosniff
etag: "68a4733f9c41810a"
vary: Accept
x-nc: HIT arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/naijawide.com/wp-content/uploads/2023/02/Screenshot_20230202-144939_Brave.jpg?resize=326%2C245&ssl=1
192.0.77.2200 OK 51 kB URL HTTP/2 i0.wp.com/naijawide.com/wp-content/uploads/2023/02/Screenshot_20230202-144939_Brave.jpg?resize=326%2C245&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash b7ca0bc241a85e15638143325be3cffb
44da2a1ce31b8899ab52e088e6bbb68101db296f
9ea5bd2cff48cd38481dd02e9c8eb0584130e8a9a3fb9c2247b0e169622485df
GET /naijawide.com/wp-content/uploads/2023/02/Screenshot_20230202-144939_Brave.jpg?resize=326%2C245&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:10 GMT
content-type: image/webp
content-length: 50666
last-modified: Thu, 02 Feb 2023 13:57:41 GMT
expires: Sun, 02 Feb 2025 01:57:41 GMT
cache-control: public, max-age=63115200
link: <https://naijawide.com/wp-content/uploads/2023/02/Screenshot_20230202-144939_Brave.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "6a26873f3d91c247"
vary: Accept
x-nc: HIT arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:21:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i0.wp.com/naijawide.com/wp-content/uploads/2023/02/Pounds-Dollars-Viddeo.jpeg?resize=326%2C245&ssl=1
192.0.77.2200 OK 18 kB URL HTTP/2 i0.wp.com/naijawide.com/wp-content/uploads/2023/02/Pounds-Dollars-Viddeo.jpeg?resize=326%2C245&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 326x245, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1905a8f0d16acc5afcc142fb7fb9df9c
05b082906cdfeb94b50998db69826178eaaa105f
89b98405aef967bd4711875552ad33a05193970938a023a436e6b9b4894bb60b
GET /naijawide.com/wp-content/uploads/2023/02/Pounds-Dollars-Viddeo.jpeg?resize=326%2C245&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:10 GMT
content-type: image/webp
content-length: 18282
last-modified: Thu, 02 Feb 2023 20:01:21 GMT
expires: Sun, 02 Feb 2025 08:01:21 GMT
cache-control: public, max-age=63115200
link: <https://naijawide.com/wp-content/uploads/2023/02/Pounds-Dollars-Viddeo.jpeg>; rel="canonical"
x-content-type-options: nosniff
etag: "fe1a7d6d69d8bb44"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://naijawide.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:52:41 GMT
expires: Tue, 30 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 271710
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c8611e357c9178eb9cbc556f25962cc5
127f3ac8209e6d5f1733c0d2bdf8aefa9b4e08e1
0609222bf9448cd72d555ede70f1571d737fc34da836650c9dea93f23b7ce6c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0609222BF9448CD72D555EDE70F1571D737FC34DA836650C9DEA93F23B7CE6C2"
Last-Modified: Wed, 01 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16382
Expires: Fri, 03 Feb 2023 02:54:13 GMT
Date: Thu, 02 Feb 2023 22:21:11 GMT
Connection: keep-alive
subscribestormyapprobation.com/sbar.json?key=c2658c7848ca6e765264f8085093706c&uuid=4f688f31-3817-4928-bac2-4b320a28a0a4%3A1%3A1
173.233.137.60200 OK 4.4 kB URL HTTP/1.1 subscribestormyapprobation.com/sbar.json?key=c2658c7848ca6e765264f8085093706c&uuid=4f688f31-3817-4928-bac2-4b320a28a0a4%3A1%3A1
IP 173.233.137.60:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (6210), with no line terminators
Hash 26bdbdfc8ea1b58ff90e75ead1d58424
ee406c3b412cc2f959d9d35c646e8a5fafc89bfd
6b80c055df0a44562184cd871d46c6674abb5b0e01879c6dbc822428839f8a4b
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=c2658c7848ca6e765264f8085093706c&uuid=4f688f31-3817-4928-bac2-4b320a28a0a4%3A1%3A1 HTTP/1.1
Host: subscribestormyapprobation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://naijawide.com
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:21:10 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://naijawide.com
Access-Control-Allow-Origin: https://naijawide.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16957271; expires=Fri, 03 Feb 2023 22:21:10 GMT; secure; SameSite=None
uid_id2=4f688f31-3817-4928-bac2-4b320a28a0a4:1:1; expires=Thu, 09 Feb 2023 22:21:10 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 03 Feb 2023 22:21:10 GMT; secure; SameSite=None
uncs=1; expires=Fri, 03 Feb 2023 22:21:10 GMT; secure; SameSite=None
pdhtkv29=true; expires=Fri, 03 Feb 2023 22:21:10 GMT; secure; SameSite=None
uncs29=1; expires=Fri, 03 Feb 2023 22:21:10 GMT; secure; SameSite=None
slecc2658c7848ca6e765264f8085093706c=[3952979]; expires=Thu, 02 Feb 2023 22:21:15 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5afedbd817448b36a208e9ddd4cfe6d6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
s.w.org/images/core/emoji/14.0.0/svg/26a1.svg
192.0.77.48200 OK 451 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/26a1.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (451), with no line terminators
Hash bcca43b1c7aa91d47f62962ce2422ae1
6bd13c3ba629e5f79d9ddf15cc79b7dc34729638
d3a6d0c18f6887f771aa3cd51db375e7a9588e1af63801cc100cd9bcc5bccaac
GET /images/core/emoji/14.0.0/svg/26a1.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:11 GMT
content-type: image/svg+xml
content-length: 451
last-modified: Tue, 12 Apr 2022 03:53:44 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/2716.svg
192.0.77.48200 OK 500 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/2716.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (500), with no line terminators
Hash 133b77ff9fc321682fed3cde12d6355c
4cadfe2e9f50307a51f9d040a916cd4c09baaaa8
f39e7ecf003f57bad813ff5b686add8eca88b02f364e0ba946d1ddd8eb25e61e
GET /images/core/emoji/14.0.0/svg/2716.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:11 GMT
content-type: image/svg+xml
content-length: 500
last-modified: Tue, 12 Apr 2022 03:50:38 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:21:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1bfe15ad4794fb1867a49ac52499cf45
479b64c64d36f54593854cade627c7758b3f4d03
5ad5ca2ca9dea6562afd2872e66a828373f203047e94df5151bf449173ee7027
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5AD5CA2CA9DEA6562AFD2872E66A828373F203047E94DF5151BF449173EE7027"
Last-Modified: Thu, 02 Feb 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3996
Expires: Thu, 02 Feb 2023 23:27:47 GMT
Date: Thu, 02 Feb 2023 22:21:11 GMT
Connection: keep-alive
inflectedminimalbits.com/watch.382642619764.js?key=329324c7db68cbdfd350f51ec53d8557&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1
173.233.137.36307 Temporary Redirect 0 B URL HTTP/1.1 inflectedminimalbits.com/watch.382642619764.js?key=329324c7db68cbdfd350f51ec53d8557&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1
IP 173.233.137.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.382642619764.js?key=329324c7db68cbdfd350f51ec53d8557&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1 HTTP/1.1
Host: inflectedminimalbits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://naijawide.com
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:21:11 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://naijawide.com
Access-Control-Allow-Origin: https://naijawide.com
Access-Control-Allow-Credentials: true
Location: https://inflectedminimalbits.com/watch.382642619764.js?key=329324c7db68cbdfd350f51ec53d8557&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1&shu=d21307e21f9f7dc0b5f86d7d4fd1cc17cb048ea307e0a926b6759dcb75280235a09df9fca0b552447efd1068f5e462a2908393cb662f400284bd4e84bc3db90e82644ff9bbf02376da42581b4f415355a93a36f630378378b66259b4c2188bba&pst=1675376531&rmtc=t
Set-Cookie: u_pl=17082372; expires=Fri, 03 Feb 2023 22:21:11 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.l_U5mqfar2fyM2uTk-U4dm61G4V-C5LqjEvt6Nvg-eI; expires=Thu, 02 Feb 2023 22:22:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 66177ff4ead47c212dd48824ebae459a
Strict-Transport-Security: max-age=0; includeSubdomains
naijawide.com/wp-content/themes/naijawide-mobile-themee/fonts/fontawesome-webfont.woff2?v=4.7.0
69.89.20.142200 OK 77 kB URL HTTP/2 naijawide.com/wp-content/themes/naijawide-mobile-themee/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 69.89.20.142:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/naijawide-mobile-themee/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: naijawide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://naijawide.com/wp-content/themes/naijawide-mobile-themee/includes/font-awesome.min.css
Connection: keep-alive
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1; sb_page_c2658c7848ca6e765264f8085093706c=1; sb_onpage_c2658c7848ca6e765264f8085093706c=1; sb_main_c2658c7848ca6e765264f8085093706c=1; sb_count_c2658c7848ca6e765264f8085093706c=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 10 Jul 2022 04:11:17 GMT
accept-ranges: bytes
content-length: 77160
cache-control: max-age=31536000, public
expires: Fri, 02 Feb 2024 22:21:10 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.12
content-type: application/font-woff2
date: Thu, 02 Feb 2023 22:21:10 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 280 B IP 172.64.155.188:0
Hash a276193a48c4e77877da81e099a3b504
a641e796e689acb14da9d8f820f6d3795bc69a06
07f6df38eec3e8357decd9388da978f0a43519a76d96be8d03be1a8b6cd64f67
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:21:11 GMT
Content-Type: application/ocsp-response
Content-Length: 280
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 04:43:15 GMT
Expires: Thu, 09 Feb 2023 04:43:14 GMT
Etag: "a641e796e689acb14da9d8f820f6d3795bc69a06"
Cache-Control: max-age=540722,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793651800a19b527-OSL
i0.wp.com/naijawide.com/wp-content/uploads/2023/02/271696421_293155609502753_3338088975198067067_n.jpg?resize=326%2C245&ssl=1
192.0.77.2200 OK 12 kB URL HTTP/2 i0.wp.com/naijawide.com/wp-content/uploads/2023/02/271696421_293155609502753_3338088975198067067_n.jpg?resize=326%2C245&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 326x245, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 710e4867d5f704eac0699d1f589a969d
f7c39dbf94128dda9741ce9e62e05a979247c19d
f66684b6a9c74af8271b3aa3d0e1c9ad5ca1ce1f9114cf9571e356bd9e708e9a
GET /naijawide.com/wp-content/uploads/2023/02/271696421_293155609502753_3338088975198067067_n.jpg?resize=326%2C245&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:11 GMT
content-type: image/webp
content-length: 12314
last-modified: Thu, 02 Feb 2023 13:57:41 GMT
expires: Sun, 02 Feb 2025 01:57:41 GMT
cache-control: public, max-age=63115200
link: <https://naijawide.com/wp-content/uploads/2023/02/271696421_293155609502753_3338088975198067067_n.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "e7cdc1b9b96f078a"
vary: Accept
x-nc: HIT arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d62d6b1aa5d380b6cdbfae5d3dca5421
f715b643ffd374ace9695098eb3ed3a70de0fde1
04f32494a66d0cd2ed4b1a8078b86edcfca40190fedcf0334d9cd62ca2ca6d19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "04F32494A66D0CD2ED4B1A8078B86EDCFCA40190FEDCF0334D9CD62CA2CA6D19"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9105
Expires: Fri, 03 Feb 2023 00:52:56 GMT
Date: Thu, 02 Feb 2023 22:21:11 GMT
Connection: keep-alive
cdn.barscreative1.com/sb/au/5e/2f/d4/5e2fd4b3d4c51bdf7b2952c27a9795ef/1652872195.html
45.133.44.3200 OK 955 B URL HTTP/2 cdn.barscreative1.com/sb/au/5e/2f/d4/5e2fd4b3d4c51bdf7b2952c27a9795ef/1652872195.html
IP 45.133.44.3:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document, ASCII text
Hash 3311b451b6e90781dab5ae61a1e4f65d
940e4700d9c5fbf74f8c15dcf10c28661e34cf2c
3def788280ca0f9ba09e050e3f3bfba82e5268fe2104f1c02a8f265c12774023
Analyzer Verdict Alert fortinet Phishing
GET /sb/au/5e/2f/d4/5e2fd4b3d4c51bdf7b2952c27a9795ef/1652872195.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://naijawide.com
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:11 GMT
content-type: text/html; charset=utf-8
content-length: 955
server: nginx/1.17.6
last-modified: Wed, 18 May 2022 11:09:59 GMT
etag: "6284d407-3bb"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
expires: Thu, 02 Feb 2023 23:21:11 GMT
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
subscribestormyapprobation.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSujtnTnvxxERT64EHBzFb3dM%2F0uEJ0XVeC6%2B66Wc1NqK6unlRS09VUdU9Pgkp0QfY44sVj55tkg7qKexVlZeJFcnIUNBDzNwiCB08yk4Hgg%2B73Xn3v8H3fe5%2FslqeEomTHt97S21IpdilsUPf5NZklurLujTuuRxv0srsms1Zw2R1Mf6b%2FkkfDBn3BfUPwTX3Jpx6lHvXca9KIVA8uzVDI%2FEHHa3RoI%2FAbXhhgYP7f29KBZQ6S%2Fil5AjKZXFj%2F%2BSEkHyPrfXtV2M1C5y%2B%2B3isVK7RBPzl4J9vMdJWhd16mxkGaHcynoe2EkM8XoLODuQLo%2Ft5UAWI5Ic7vHuLsYE4TcX%2F%2FjGmsIDLEyUVU%2FTGEGkOyMbi%2BC5n8QgCe4MZNZL37N7Sp2NYZyqbohCz%2B8zdkNSGLfz6FrPfNFSUH7qpWZSF1ZjFIa8jBGLI7Rl4eoth2IKtD8OJjyIQg69WQyfFzQdqKorTpLTUjr70UdPxoKWbcXwripk%2BZHzHKgpk1Uo4h0zGUGIJZB%2BX0kw7K1EGZO%2Bglxy4LOyml7TROm80o4Jw3m5yHUSsJk2YQpRQln3IfosiH4GoIbnaQmx1syiFM%2BSPseg2bOLAFQT%2BpUQmCyhJUjKCSBFVBUPXr%2FURZ39b3E2XL2Jtnf56b9UgX3V22r4uuyMhufkoenxrmLDxaw6Y4drnfCiPejoKIs5Zot0K%2FFaQRjULaabZpi8PKGtIuzGRuywl58uQCcjkhCyevIGaHsOoQXD4DVj4LVo3aPgVbHwURxXb2dcbkBqtkIhpc95DoGnmxiGLL2VWn5OnZ5l5%2BexWCHy3%2F8Vnx%2FcaH%2F4KbGrmpsSF%2FIuiqe6PbuiJ7t3VlycObeSF7cptNt7pasEIsfvmm2Kq0SVau2uEXr%2FIpMC0f3BG2uM6yRGZdS766IpNEmGvacEF%2BWLFrIr5V2vUrpcnK%2FPqt166t9HIjrJU6G4PJCSEfvQ8uJ%2BSik80u1h2cQpoxTFmjVx6ReUDqQ%2FB8BzY%2FWv5t5bv3wuUPYDWBUeczce6gKuuR8ePzRyUJlDjvWVzDinMTYnH06K8zbNfeQ9c4YMXd2Z32TY2%2BqsHUELZ8bFTk5mj51%2BYsECtnFCvj7MXKqE%2FPzLXy2BVhSlNBfRGnnThtM5p00qATs44n2nHIPBR2wk%2Fa7%2F4HAAD%2F%2FwEAAP%2F%2FgoHtx4kEAAA%3D
173.233.137.60200 OK 7 B URL HTTP/1.1 subscribestormyapprobation.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSujtnTnvxxERT64EHBzFb3dM%2F0uEJ0XVeC6%2B66Wc1NqK6unlRS09VUdU9Pgkp0QfY44sVj55tkg7qKexVlZeJFcnIUNBDzNwiCB08yk4Hgg%2B73Xn3v8H3fe5%2FslqeEomTHt97S21IpdilsUPf5NZklurLujTuuRxv0srsms1Zw2R1Mf6b%2FkkfDBn3BfUPwTX3Jpx6lHvXca9KIVA8uzVDI%2FEHHa3RoI%2FAbXhhgYP7f29KBZQ6S%2Fil5AjKZXFj%2F%2BSEkHyPrfXtV2M1C5y%2B%2B3isVK7RBPzl4J9vMdJWhd16mxkGaHcynoe2EkM8XoLODuQLo%2Ft5UAWI5Ic7vHuLsYE4TcX%2F%2FjGmsIDLEyUVU%2FTGEGkOyMbi%2BC5n8QgCe4MZNZL37N7Sp2NYZyqbohCz%2B8zdkNSGLfz6FrPfNFSUH7qpWZSF1ZjFIa8jBGLI7Rl4eoth2IKtD8OJjyIQg69WQyfFzQdqKorTpLTUjr70UdPxoKWbcXwripk%2BZHzHKgpk1Uo4h0zGUGIJZB%2BX0kw7K1EGZO%2Bglxy4LOyml7TROm80o4Jw3m5yHUSsJk2YQpRQln3IfosiH4GoIbnaQmx1syiFM%2BSPseg2bOLAFQT%2BpUQmCyhJUjKCSBFVBUPXr%2FURZ39b3E2XL2Jtnf56b9UgX3V22r4uuyMhufkoenxrmLDxaw6Y4drnfCiPejoKIs5Zot0K%2FFaQRjULaabZpi8PKGtIuzGRuywl58uQCcjkhCyevIGaHsOoQXD4DVj4LVo3aPgVbHwURxXb2dcbkBqtkIhpc95DoGnmxiGLL2VWn5OnZ5l5%2BexWCHy3%2F8Vnx%2FcaH%2F4KbGrmpsSF%2FIuiqe6PbuiJ7t3VlycObeSF7cptNt7pasEIsfvmm2Kq0SVau2uEXr%2FIpMC0f3BG2uM6yRGZdS766IpNEmGvacEF%2BWLFrIr5V2vUrpcnK%2FPqt166t9HIjrJU6G4PJCSEfvQ8uJ%2BSik80u1h2cQpoxTFmjVx6ReUDqQ%2FB8BzY%2FWv5t5bv3wuUPYDWBUeczce6gKuuR8ePzRyUJlDjvWVzDinMTYnH06K8zbNfeQ9c4YMXd2Z32TY2%2BqsHUELZ8bFTk5mj51%2BYsECtnFCvj7MXKqE%2FPzLXy2BVhSlNBfRGnnThtM5p00qATs44n2nHIPBR2wk%2Fa7%2F4HAAD%2F%2FwEAAP%2F%2FgoHtx4kEAAA%3D
IP 173.233.137.60:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSujtnTnvxxERT64EHBzFb3dM%2F0uEJ0XVeC6%2B66Wc1NqK6unlRS09VUdU9Pgkp0QfY44sVj55tkg7qKexVlZeJFcnIUNBDzNwiCB08yk4Hgg%2B73Xn3v8H3fe5%2FslqeEomTHt97S21IpdilsUPf5NZklurLujTuuRxv0srsms1Zw2R1Mf6b%2FkkfDBn3BfUPwTX3Jpx6lHvXca9KIVA8uzVDI%2FEHHa3RoI%2FAbXhhgYP7f29KBZQ6S%2Fil5AjKZXFj%2F%2BSEkHyPrfXtV2M1C5y%2B%2B3isVK7RBPzl4J9vMdJWhd16mxkGaHcynoe2EkM8XoLODuQLo%2Ft5UAWI5Ic7vHuLsYE4TcX%2F%2FjGmsIDLEyUVU%2FTGEGkOyMbi%2BC5n8QgCe4MZNZL37N7Sp2NYZyqbohCz%2B8zdkNSGLfz6FrPfNFSUH7qpWZSF1ZjFIa8jBGLI7Rl4eoth2IKtD8OJjyIQg69WQyfFzQdqKorTpLTUjr70UdPxoKWbcXwripk%2BZHzHKgpk1Uo4h0zGUGIJZB%2BX0kw7K1EGZO%2Bglxy4LOyml7TROm80o4Jw3m5yHUSsJk2YQpRQln3IfosiH4GoIbnaQmx1syiFM%2BSPseg2bOLAFQT%2BpUQmCyhJUjKCSBFVBUPXr%2FURZ39b3E2XL2Jtnf56b9UgX3V22r4uuyMhufkoenxrmLDxaw6Y4drnfCiPejoKIs5Zot0K%2FFaQRjULaabZpi8PKGtIuzGRuywl58uQCcjkhCyevIGaHsOoQXD4DVj4LVo3aPgVbHwURxXb2dcbkBqtkIhpc95DoGnmxiGLL2VWn5OnZ5l5%2BexWCHy3%2F8Vnx%2FcaH%2F4KbGrmpsSF%2FIuiqe6PbuiJ7t3VlycObeSF7cptNt7pasEIsfvmm2Kq0SVau2uEXr%2FIpMC0f3BG2uM6yRGZdS766IpNEmGvacEF%2BWLFrIr5V2vUrpcnK%2FPqt166t9HIjrJU6G4PJCSEfvQ8uJ%2BSik80u1h2cQpoxTFmjVx6ReUDqQ%2FB8BzY%2FWv5t5bv3wuUPYDWBUeczce6gKuuR8ePzRyUJlDjvWVzDinMTYnH06K8zbNfeQ9c4YMXd2Z32TY2%2BqsHUELZ8bFTk5mj51%2BYsECtnFCvj7MXKqE%2FPzLXy2BVhSlNBfRGnnThtM5p00qATs44n2nHIPBR2wk%2Fa7%2F4HAAD%2F%2FwEAAP%2F%2FgoHtx4kEAAA%3D HTTP/1.1
Host: subscribestormyapprobation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Cookie: u_pl=16957271; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNTM3NDQyNSwiayI6IjUzODc4ZGZhNzMxZTVhODJiOGNhYmM1YzY3ZDcyZjFlIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxMzAxNTA5LCJwaWQiOjE4NzQ1NiwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyOCwiYWlkIjo1LCJwdCI6NCwicGsiOiJ2eDd3OTk0dCIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjo5MDc1MzQ1NywiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjM4OTE0LCJvbiI6IldpbmRvd3MiLCJvdiI6IjEwLjAiLCJiaWQiOjEyMDYyNSwiYm4iOiJGaXJlZm94IiwiYnYiOiIxMDUuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL25haWphd2lkZS5jb20vIn19.kKWSJrUIFKP1H5EbIt4hsEyothvFP1NSzrDO4a5vWVc; uid_id2=4f688f31-3817-4928-bac2-4b320a28a0a4:1:1; iprc4cbcdc19074c1211618f4d6a81c9b353=2717340; pdhtkv=true; uncs=1; pdhtkv5=true; uncs5=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:21:11 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a898689e22680368bf38d1a46a1eccb0
Strict-Transport-Security: max-age=0; includeSubdomains
naijawide.com/wp-content/themes/naijawide-mobile-themee/fonts/fontawesome-webfont.woff?v=4.7.0
69.89.20.142200 OK 98 kB URL HTTP/2 naijawide.com/wp-content/themes/naijawide-mobile-themee/fonts/fontawesome-webfont.woff?v=4.7.0
IP 69.89.20.142:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Hash fee66e712a8a08eef5805a46892932ad
28b782240b3e76db824e12c02754a9731a167527
ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07
GET /wp-content/themes/naijawide-mobile-themee/fonts/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1
Host: naijawide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://naijawide.com/wp-content/themes/naijawide-mobile-themee/includes/font-awesome.min.css
Connection: keep-alive
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1; sb_page_c2658c7848ca6e765264f8085093706c=1; sb_onpage_c2658c7848ca6e765264f8085093706c=1; sb_main_c2658c7848ca6e765264f8085093706c=1; sb_count_c2658c7848ca6e765264f8085093706c=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=subscribestormyapprobation.com
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 10 Jul 2022 04:11:16 GMT
accept-ranges: bytes
content-length: 98024
cache-control: max-age=31536000, public
expires: Fri, 02 Feb 2024 22:21:11 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.12
content-type: application/font-woff
date: Thu, 02 Feb 2023 22:21:11 GMT
server: Apache
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e1326b1d0b68cc5f9b8efc40c36f9231
d3578c1a32fbc184b8169373299d315ca68b2f12
25c07b57c23f9ecc3499e3f95c6f44c74a532a1ac521562c689d665a29fc9614
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "25C07B57C23F9ECC3499E3F95C6F44C74A532A1AC521562C689D665A29FC9614"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16274
Expires: Fri, 03 Feb 2023 02:52:25 GMT
Date: Thu, 02 Feb 2023 22:21:11 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e1326b1d0b68cc5f9b8efc40c36f9231
d3578c1a32fbc184b8169373299d315ca68b2f12
25c07b57c23f9ecc3499e3f95c6f44c74a532a1ac521562c689d665a29fc9614
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "25C07B57C23F9ECC3499E3F95C6F44C74A532A1AC521562C689D665A29FC9614"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16274
Expires: Fri, 03 Feb 2023 02:52:25 GMT
Date: Thu, 02 Feb 2023 22:21:11 GMT
Connection: keep-alive
inflectedminimalbits.com/watch.382642619764?key=329324c7db68cbdfd350f51ec53d8557&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1
173.233.137.36200 OK 1.2 kB URL HTTP/1.1 inflectedminimalbits.com/watch.382642619764?key=329324c7db68cbdfd350f51ec53d8557&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1
IP 173.233.137.36:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (504)
Hash 404e26811dc87af95decc4aebf5262a3
ac5924792771ff3dd531f5a776417726f5531b90
2a924b3c41980c0ddc498a724c14df12e16e4ff3ea0a8f925129c4f806f44d7d
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.382642619764?key=329324c7db68cbdfd350f51ec53d8557&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1 HTTP/1.1
Host: inflectedminimalbits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Cookie: u_pl=17082372; ain=eyJhbGciOiJIUzI1NiJ9.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.l_U5mqfar2fyM2uTk-U4dm61G4V-C5LqjEvt6Nvg-eI
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:21:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: ain=eyJhbGciOiJIUzI1NiJ9.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.CVwnbD4f8Q0jviuAGsvLW8ISYKjxNaqJ4BhnK73KLVA; expires=Thu, 02 Feb 2023 22:22:11 GMT; secure; SameSite=None
uid_id2=2b786b8a-4f00-436a-abde-d8e3584adffe:3:1; expires=Thu, 09 Feb 2023 22:21:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fdaa2e20811a0999e1861142a630b706
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d1ede23ab1ddbc0d7fa930fd3810e49e
879f79b820606c514ae97d5a3c2be12533440a51
7ec120a673fc6ae1a147829269069666ef47b0258b832030906da7dc97ab2a14
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7EC120A673FC6AE1A147829269069666EF47B0258B832030906DA7DC97AB2A14"
Last-Modified: Tue, 31 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8555
Expires: Fri, 03 Feb 2023 00:43:46 GMT
Date: Thu, 02 Feb 2023 22:21:11 GMT
Connection: keep-alive
sweepfrequencydissolved.com/watch.36342575092?key=157560d0afe7e947abd716a10b99e3ad&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1
192.243.61.227200 OK 1.2 kB URL HTTP/1.1 sweepfrequencydissolved.com/watch.36342575092?key=157560d0afe7e947abd716a10b99e3ad&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (504)
Hash f772a8ffd79db3902a57fd5cdd3ffe6e
a9aab48e39f4762a33795f842f54c229c235ae27
a0a5f709f067043e95a0bc7702c93d3100ed1f2596ab71764bf11377392d7e04
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.36342575092?key=157560d0afe7e947abd716a10b99e3ad&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1 HTTP/1.1
Host: sweepfrequencydissolved.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Cookie: u_pl=16109813; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjEwOTgxMywiayI6IjE1NzU2MGQwYWZlN2U5NDdhYmQ3MTZhMTBiOTllM2FkIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxMzAxNTA5LCJwaWQiOjE4NzQ1NiwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyOCwiYWlkIjoyNSwicHQiOjQsInBrIjoic3g1a3JpamsiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6OTA3NTM0NTcsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMjA2MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTA1LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9uYWlqYXdpZGUuY29tLyJ9fQ.IozG9xGV3VJ5vg3Ue0RLLjG4rGJhpkkKC3FZp_WvyzI
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:21:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: ain=eyJhbGciOiJIUzI1NiJ9.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.fT2qGekFBW6CkK2GYOI4_ZSXS2grooYYLfKNtsdq0gQ; expires=Thu, 02 Feb 2023 22:22:11 GMT; secure; SameSite=None
uid_id2=2b786b8a-4f00-436a-abde-d8e3584adffe:3:1; expires=Thu, 09 Feb 2023 22:21:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3cfc1037bfa63c632b4a422b2f04a3ab
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.cloudimagesb.com/si/e3/38/1c/e3381c2969587380b30458753c6349d5/1674361501.png
45.133.44.10200 OK 12 kB URL HTTP/2 cdn.cloudimagesb.com/si/e3/38/1c/e3381c2969587380b30458753c6349d5/1674361501.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash c07f1baac701b672939b359081f813c7
d38ffbae259aae1e8ad3b38959339bb29da9b69f
85bc8e3de3651f6f03dc381ea4bbaff350d8973c37f598582838677817bf1826
GET /si/e3/38/1c/e3381c2969587380b30458753c6349d5/1674361501.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:11 GMT
content-type: image/png
content-length: 12186
server: nginx/1.17.6
last-modified: Sun, 22 Jan 2023 04:25:10 GMT
etag: "63ccbaa6-2f9a"
expires: Sat, 04 Feb 2023 22:21:11 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e1326b1d0b68cc5f9b8efc40c36f9231
d3578c1a32fbc184b8169373299d315ca68b2f12
25c07b57c23f9ecc3499e3f95c6f44c74a532a1ac521562c689d665a29fc9614
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "25C07B57C23F9ECC3499E3F95C6F44C74A532A1AC521562C689D665A29FC9614"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16274
Expires: Fri, 03 Feb 2023 02:52:25 GMT
Date: Thu, 02 Feb 2023 22:21:11 GMT
Connection: keep-alive
publishercounting.com/watch.798983289021?key=78b8824ae7483a3707097684cef48d9c&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1
192.243.61.227200 OK 1.2 kB URL HTTP/1.1 publishercounting.com/watch.798983289021?key=78b8824ae7483a3707097684cef48d9c&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (504)
Hash ad6eb5c6802826abdbd1d44600a897ab
39b7b886a0c65d32070de357da5c220a75df3aff
dedbb4e1cfb94d22bf3cc58de372e2637283e5e1c209e1e74889f58cfdf73c16
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.798983289021?key=78b8824ae7483a3707097684cef48d9c&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1 HTTP/1.1
Host: publishercounting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:21:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=15389995; expires=Fri, 03 Feb 2023 22:21:11 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNTM4OTk5NSwiayI6Ijc4Yjg4MjRhZTc0ODNhMzcwNzA5NzY4NGNlZjQ4ZDljIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxMzAxNTA5LCJwaWQiOjE4NzQ1NiwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyOCwiYWlkIjozMiwicHQiOjQsInBrIjoidHE5NHRyd3oiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6OTA3NTM0NTcsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMjA2MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTA1LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9uYWlqYXdpZGUuY29tLyJ9fQ.8o7-iwOR6bncHG6RRwzxUHX8Bd6sFLlUicaP77qB-7I; expires=Thu, 02 Feb 2023 22:22:11 GMT; secure; SameSite=None
uid_id2=2b786b8a-4f00-436a-abde-d8e3584adffe:3:1; expires=Thu, 09 Feb 2023 22:21:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4d0f009dfaf0aa2c3dfd8d06e28e7437
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
inflectedminimalbits.com/watch.382642619764?shu=fbba22f5a4e90821567881916e12ad365fac2e0ac9163dcdc79e32be8d852f96cb3aaea3f443d492763f6626f0d062f8faee5c8280d2137945f402442071e487b1ce17f9785c6f6ba6cba5aab964ffafd5f58342fe8f245ce95629b8ae8e58c3140f3b&pst=1675376531&rmtc=t&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1&pii=&in=false&key=329324c7db68cbdfd350f51ec53d8557&refer=https%3A%2F%2Fnaijawide.com%2F&dev=e&res=12.1055&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&tz=0
173.233.137.36200 OK 1.8 kB URL HTTP/1.1 inflectedminimalbits.com/watch.382642619764?shu=fbba22f5a4e90821567881916e12ad365fac2e0ac9163dcdc79e32be8d852f96cb3aaea3f443d492763f6626f0d062f8faee5c8280d2137945f402442071e487b1ce17f9785c6f6ba6cba5aab964ffafd5f58342fe8f245ce95629b8ae8e58c3140f3b&pst=1675376531&rmtc=t&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1&pii=&in=false&key=329324c7db68cbdfd350f51ec53d8557&refer=https%3A%2F%2Fnaijawide.com%2F&dev=e&res=12.1055&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&tz=0
IP 173.233.137.36:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2524)
Hash 6b8cd2dc042a2dbe03580c78964f2210
f54a4021c5d2055d5d8d362d98f96fbdce77ee8d
f7674c317c57f0e833e55e6aae404a78de0e4276a154c07614f3669c42cf23c8
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.382642619764?shu=fbba22f5a4e90821567881916e12ad365fac2e0ac9163dcdc79e32be8d852f96cb3aaea3f443d492763f6626f0d062f8faee5c8280d2137945f402442071e487b1ce17f9785c6f6ba6cba5aab964ffafd5f58342fe8f245ce95629b8ae8e58c3140f3b&pst=1675376531&rmtc=t&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1&pii=&in=false&key=329324c7db68cbdfd350f51ec53d8557&refer=https%3A%2F%2Fnaijawide.com%2F&dev=e&res=12.1055&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&tz=0 HTTP/1.1
Host: inflectedminimalbits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://inflectedminimalbits.com/watch.382642619764?key=329324c7db68cbdfd350f51ec53d8557&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1
Cookie: u_pl=17082372; ain=eyJhbGciOiJIUzI1NiJ9.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.CVwnbD4f8Q0jviuAGsvLW8ISYKjxNaqJ4BhnK73KLVA; uid_id2=2b786b8a-4f00-436a-abde-d8e3584adffe:3:1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:21:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://naijawide.com/
Access-Control-Allow-Origin: https://naijawide.com/
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=2b786b8a-4f00-436a-abde-d8e3584adffe:3:1; expires=Thu, 09 Feb 2023 22:21:11 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 03 Feb 2023 22:21:11 GMT; secure; SameSite=None
uncs=1; expires=Fri, 03 Feb 2023 22:21:11 GMT; secure; SameSite=None
pdhtkv26=true; expires=Fri, 03 Feb 2023 22:21:11 GMT; secure; SameSite=None
uncs26=1; expires=Fri, 03 Feb 2023 22:21:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b87c91fffa258a8ea6038c54a2eaa60d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
sweepfrequencydissolved.com/watch.36342575092?shu=7801a1655aa3c69db9d201e87d9d9f2a1f1c4165bcdc6e647703c294533568c06d391b283afa1ce21b3f7ecf91816a3c2cb379324567e7b2227101eb25cc7f38790b16af948bc5bf1a422ab8a8ea67a180ba41f11b1ae46bc60421f01b0cac&pst=1675376531&rmtc=t&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1&pii=&in=false&key=157560d0afe7e947abd716a10b99e3ad&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D
192.243.61.227200 OK 1.7 kB URL HTTP/1.1 sweepfrequencydissolved.com/watch.36342575092?shu=7801a1655aa3c69db9d201e87d9d9f2a1f1c4165bcdc6e647703c294533568c06d391b283afa1ce21b3f7ecf91816a3c2cb379324567e7b2227101eb25cc7f38790b16af948bc5bf1a422ab8a8ea67a180ba41f11b1ae46bc60421f01b0cac&pst=1675376531&rmtc=t&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1&pii=&in=false&key=157560d0afe7e947abd716a10b99e3ad&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2411)
Hash 3c56f8b68d7cad3739c57ef86b02f0e2
438f0388740de79836f9aa7cefb06452b1b82068
3e8e35f60b08aa074a12f29fb5a8b1fe51359f9999a1418b9bcebe9223e90770
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.36342575092?shu=7801a1655aa3c69db9d201e87d9d9f2a1f1c4165bcdc6e647703c294533568c06d391b283afa1ce21b3f7ecf91816a3c2cb379324567e7b2227101eb25cc7f38790b16af948bc5bf1a422ab8a8ea67a180ba41f11b1ae46bc60421f01b0cac&pst=1675376531&rmtc=t&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1&pii=&in=false&key=157560d0afe7e947abd716a10b99e3ad&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D HTTP/1.1
Host: sweepfrequencydissolved.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweepfrequencydissolved.com/watch.36342575092?key=157560d0afe7e947abd716a10b99e3ad&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1
Cookie: u_pl=16109813; ain=eyJhbGciOiJIUzI1NiJ9.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.fT2qGekFBW6CkK2GYOI4_ZSXS2grooYYLfKNtsdq0gQ; uid_id2=2b786b8a-4f00-436a-abde-d8e3584adffe:3:1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:21:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://naijawide.com/
Access-Control-Allow-Origin: https://naijawide.com/
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=2b786b8a-4f00-436a-abde-d8e3584adffe:3:1; expires=Thu, 09 Feb 2023 22:21:11 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 03 Feb 2023 22:21:11 GMT; secure; SameSite=None
uncs=1; expires=Fri, 03 Feb 2023 22:21:11 GMT; secure; SameSite=None
pdhtkv25=true; expires=Fri, 03 Feb 2023 22:21:11 GMT; secure; SameSite=None
uncs25=1; expires=Fri, 03 Feb 2023 22:21:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: aad52f1e5f1cab32c6a4e4674665bf85
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ed38d0c095010beffbefd5493030dde6
283ec58d73589f555dd49c7fd2e19c1bc0ed8a92
4034b89955d03c028c1ccd0d9dda7b7528f34ad892996dc7bc420fb64366da02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4034B89955D03C028C1CCD0D9DDA7B7528F34AD892996DC7BC420FB64366DA02"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9091
Expires: Fri, 03 Feb 2023 00:52:42 GMT
Date: Thu, 02 Feb 2023 22:21:11 GMT
Connection: keep-alive
cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/css/animate.css
172.64.167.9200 OK 19 kB URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/css/animate.css
IP 172.64.167.9:0
Hash 23c4844990054f06d70c4ad88ec9dfa1
07fb93f34943695505192889f289cb1487039ec8
dc6dd5c95aaa2c3a8b3173412f227b9ba346e69294afaba7a8b29b918c1c293d
GET /sb/notifications/software/us/ios/desk-new-big/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://naijawide.com
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:11 GMT
content-type: text/css
last-modified: Wed, 17 Feb 2021 11:44:02 GMT
etag: W/"602d0182-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g5LkbeB10gW3AzCOM4B8h6VXoRx8cxt0K3hnZ752nOkorWCA6vhT3sHiZLNHvnd%2BFUr9H7ZuP2Ph9vYRikhP7CPZ9U6j%2BrQsExBujI%2B3nxmxTm9VHoZt2s4rx4%2F%2Fhsi%2BbOHAYptHrmzj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793651820a3f23ab-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/a5/1a/59/a51a59ea03c32405c055b3437df11600/1627915726.png
45.133.44.10200 OK 105 kB URL HTTP/2 cdn.cloudimagesb.com/cti/a5/1a/59/a51a59ea03c32405c055b3437df11600/1627915726.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 160 x 600, 8-bit/color RGB, non-interlaced\012- data
Size 105 kB (105260 bytes)
Hash 925c13a863c35e8717ecbdb960eed2c7
d01f5fbcf2de1362bf8df7435e6e49d1a805da37
5b3cc508d8197d7e68efdc200377a782eda5f0b13751e9559c4c593475611772
GET /cti/a5/1a/59/a51a59ea03c32405c055b3437df11600/1627915726.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweepfrequencydissolved.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:11 GMT
content-type: image/png
content-length: 105260
server: nginx/1.17.6
last-modified: Mon, 02 Aug 2021 14:48:55 GMT
etag: "610805d7-19b2c"
expires: Sat, 04 Feb 2023 22:21:11 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
publishercounting.com/watch.798983289021?shu=d8ffa23a44eba0797a80a3b4b1f50f53f77d4cc92ba9ec13b6b40bcccab8f2ff3ae00f92d57e4ecf035db165e622185de20e9d1b81fdd512fcd729e6e71c8b5553b18635bbab24a0b6b192ce94f79647eb93a42c8b0491b4b6dd8eda5cd894ce5e&pst=1675376531&rmtc=t&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1&pii=&in=false&key=78b8824ae7483a3707097684cef48d9c&refer=https%3A%2F%2Fnaijawide.com%2F&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&tz=0&dev=e&res=12.1055
192.243.61.227200 OK 1.8 kB URL HTTP/1.1 publishercounting.com/watch.798983289021?shu=d8ffa23a44eba0797a80a3b4b1f50f53f77d4cc92ba9ec13b6b40bcccab8f2ff3ae00f92d57e4ecf035db165e622185de20e9d1b81fdd512fcd729e6e71c8b5553b18635bbab24a0b6b192ce94f79647eb93a42c8b0491b4b6dd8eda5cd894ce5e&pst=1675376531&rmtc=t&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1&pii=&in=false&key=78b8824ae7483a3707097684cef48d9c&refer=https%3A%2F%2Fnaijawide.com%2F&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&tz=0&dev=e&res=12.1055
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2510)
Hash d290b6922a47aaade8b2f4da68810656
cd19a3613a99ebe2d66cca8f36895fc62b1c906b
5fd6e19a733df0aa8851f86f5edeb1609492069f12bdac74217826945a136835
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.798983289021?shu=d8ffa23a44eba0797a80a3b4b1f50f53f77d4cc92ba9ec13b6b40bcccab8f2ff3ae00f92d57e4ecf035db165e622185de20e9d1b81fdd512fcd729e6e71c8b5553b18635bbab24a0b6b192ce94f79647eb93a42c8b0491b4b6dd8eda5cd894ce5e&pst=1675376531&rmtc=t&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1&pii=&in=false&key=78b8824ae7483a3707097684cef48d9c&refer=https%3A%2F%2Fnaijawide.com%2F&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&tz=0&dev=e&res=12.1055 HTTP/1.1
Host: publishercounting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://publishercounting.com/watch.798983289021?key=78b8824ae7483a3707097684cef48d9c&kw=%5B%22naijawide%22%2C%22-%22%2C%22the%22%2C%22wide%22%2C%22range%22%2C%22of%22%2C%22entertainment%22%5D&refer=https%3A%2F%2Fnaijawide.com%2F&tz=0&dev=e&res=12.1055&uuid=2b786b8a-4f00-436a-abde-d8e3584adffe%3A3%3A1
Cookie: u_pl=15389995; ain=eyJhbGciOiJIUzI1NiJ9.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.8o7-iwOR6bncHG6RRwzxUHX8Bd6sFLlUicaP77qB-7I; uid_id2=2b786b8a-4f00-436a-abde-d8e3584adffe:3:1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:21:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://naijawide.com/
Access-Control-Allow-Origin: https://naijawide.com/
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=2b786b8a-4f00-436a-abde-d8e3584adffe:3:1; expires=Thu, 09 Feb 2023 22:21:11 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 03 Feb 2023 22:21:11 GMT; secure; SameSite=None
uncs=1; expires=Fri, 03 Feb 2023 22:21:11 GMT; secure; SameSite=None
pdhtkv32=true; expires=Fri, 03 Feb 2023 22:21:11 GMT; secure; SameSite=None
uncs32=1; expires=Fri, 03 Feb 2023 22:21:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: bbfb6105fe77b501e1f39df7d0864d37
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.cloudimagesb.com/bi/39/11/fc/3911fc2bc5686d19aba937b2ee4a8d74/1632786309.jpg
45.133.44.10200 OK 36 kB URL HTTP/2 cdn.cloudimagesb.com/bi/39/11/fc/3911fc2bc5686d19aba937b2ee4a8d74/1632786309.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:09:23 18:26:47], progressive, precision 8, 320x50, components 3\012- data
Hash 1589cbe926dd90002498e981b0ba014c
b1529257efe5c6548b5d7dbf805ef37a7f327edb
34b53c080b4ed6153263eb3dc6ec474d5e527456f7f78d4b23e5992011ca7f31
GET /bi/39/11/fc/3911fc2bc5686d19aba937b2ee4a8d74/1632786309.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://publishercounting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:11 GMT
content-type: image/jpeg
content-length: 36125
server: nginx/1.17.6
last-modified: Mon, 27 Sep 2021 23:45:20 GMT
etag: "61525790-8d1d"
expires: Sat, 04 Feb 2023 22:21:11 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
jennyvisits.com/dyfc1k09?key=863705bcbb4b6a554ddb359665395a6f&psid=15374425
173.233.137.60200 OK 1.3 kB URL HTTP/1.1 jennyvisits.com/dyfc1k09?key=863705bcbb4b6a554ddb359665395a6f&psid=15374425
IP 173.233.137.60:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 6c57d3eaf87b270ae715841175dba678
72df0aa90319bcb2646b808449eaeba804a92a0b
f13ec35c69dc825e58e5bfa2f13ad43d111c935a24dbc40ca3506faefa1d4cee
Analyzer Verdict Alert quad9 Sinkholed
GET /dyfc1k09?key=863705bcbb4b6a554ddb359665395a6f&psid=15374425 HTTP/1.1
Host: jennyvisits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:21:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=16122660; expires=Fri, 03 Feb 2023 22:21:11 GMT
ain=eyJhbGciOiJIUzI1NiJ9.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.hWDcP_rvJUZAjB_ZomQMxx597MCaw-652YAeltYDf88; expires=Thu, 02 Feb 2023 22:22:11 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 68d8bdbc9d8a9691585fc917c2aff70c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
subscribestormyapprobation.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSujtnTnvxxERT64EHBzPavmelxhei6rgTX3XWzmptQXVU9qaSmq6nqnp4EleiC7HHEi8fON8kGdRX3KsrKxIvk5ChoIOZvEAQPnmQmA8EH3e%2B9%2Bt7h%2B773PtktT4mHkh7fektvS6XopWbDc59fkxnXlXVv3HF9r%2BFddtdk1oouu4Ppz%2FRf8r1mw3vBfUOwTX0p8HzP8z3fvSaNSPXg0gyFzB90%2FEbHa0RBw29GGJj%2F97Z0YKkD3j8lT0DyyYX1nx9CsjGy3rdXhd0sdP7i671S0UIb9PnBO9lmpqsMvfMyNQ7S7GA%2BDW0nhHy%2BAJ0dzBVA9%2FemCpDICXF%2B95FkB3OaSPr7Z0wTBZEh4RdR9ccQagxJx2D6LiT%2FhQCM48ZNZL37N7Sp6NYZSqfohCz%2B8zdkNSGLfz6FrPfNFSUH7qpWZSF1ZjFIa8jBGLI7Rl4eoth2IKtDsOJjSE6Q9WpIfvxclLbiOA39pTD220tRJ4iXEsqCpSgJA48GMfVoNLNGyjFkOoYSQ1DroJx%2B0kGZOihzBz1%2B7NJmJ%2FW8dpqkYRhHjLEwZKwZt3iTh1GceijZlPsQRT4EU0Mws4Pc7GBTDmHKH2HXa1juwBYEfV6jEgSVJagoQSUJqoKg6tf7XNnA1ve5smXiz3Mwz2E90kV3l%2B7roisyspufksenhjkLj9awKY5dFrSaMWvHUcxoS7RbzaAVpbEXN71O2PZaDFbWkHZhJnNbTsiTJxeQywlZOHkFCT2EVYdg8hnQ8lnQatQOPND1URR72M6%2BzqjcoJXkosF0D1zXyItFFFvOrjolT8829%2FLbqxDsaPmPz4rvNz78F8zUyE2NDfkTQVfdG93WFdm7rStLHt7MC9mT23S61dWCFmLxyzfFVqUNX7lqh1%2B8yqbAtHxwR9jiOs24zLqWfHVFci7MNW2YID%2Bs2DWR3Crt%2BpXSZGV%2B%2FdZr11Z6uRHWSp2NQeWEkI%2FeB5MTctHJZhfrDk4hzRimrNErj8g8IPUhWL4Dmx8t%2F7by3XvN5Q9gNYFR5zNJ7qAq65EJkvNHJQmUOO9pUsOKcxMScfTorzNs195D1zigxd3ZnfZNjb6qQdUQtnxsVOTmaPnXcBZIlDNKlHH2EmXUp2fmWnnsNv1IxEncZpwngnG%2FHYRx6HkB51G7I%2FwOCjthJ%2B13%2FwMAAP%2F%2FAQAA%2F%2F%2BWiWMhiQQAAA%3D%3D
173.233.137.60200 OK 7 B URL HTTP/1.1 subscribestormyapprobation.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSujtnTnvxxERT64EHBzPavmelxhei6rgTX3XWzmptQXVU9qaSmq6nqnp4EleiC7HHEi8fON8kGdRX3KsrKxIvk5ChoIOZvEAQPnmQmA8EH3e%2B9%2Bt7h%2B773PtktT4mHkh7fektvS6XopWbDc59fkxnXlXVv3HF9r%2BFddtdk1oouu4Ppz%2FRf8r1mw3vBfUOwTX0p8HzP8z3fvSaNSPXg0gyFzB90%2FEbHa0RBw29GGJj%2F97Z0YKkD3j8lT0DyyYX1nx9CsjGy3rdXhd0sdP7i671S0UIb9PnBO9lmpqsMvfMyNQ7S7GA%2BDW0nhHy%2BAJ0dzBVA9%2FemCpDICXF%2B95FkB3OaSPr7Z0wTBZEh4RdR9ccQagxJx2D6LiT%2FhQCM48ZNZL37N7Sp6NYZSqfohCz%2B8zdkNSGLfz6FrPfNFSUH7qpWZSF1ZjFIa8jBGLI7Rl4eoth2IKtDsOJjSE6Q9WpIfvxclLbiOA39pTD220tRJ4iXEsqCpSgJA48GMfVoNLNGyjFkOoYSQ1DroJx%2B0kGZOihzBz1%2B7NJmJ%2FW8dpqkYRhHjLEwZKwZt3iTh1GceijZlPsQRT4EU0Mws4Pc7GBTDmHKH2HXa1juwBYEfV6jEgSVJagoQSUJqoKg6tf7XNnA1ve5smXiz3Mwz2E90kV3l%2B7roisyspufksenhjkLj9awKY5dFrSaMWvHUcxoS7RbzaAVpbEXN71O2PZaDFbWkHZhJnNbTsiTJxeQywlZOHkFCT2EVYdg8hnQ8lnQatQOPND1URR72M6%2BzqjcoJXkosF0D1zXyItFFFvOrjolT8829%2FLbqxDsaPmPz4rvNz78F8zUyE2NDfkTQVfdG93WFdm7rStLHt7MC9mT23S61dWCFmLxyzfFVqUNX7lqh1%2B8yqbAtHxwR9jiOs24zLqWfHVFci7MNW2YID%2Bs2DWR3Crt%2BpXSZGV%2B%2FdZr11Z6uRHWSp2NQeWEkI%2FeB5MTctHJZhfrDk4hzRimrNErj8g8IPUhWL4Dmx8t%2F7by3XvN5Q9gNYFR5zNJ7qAq65EJkvNHJQmUOO9pUsOKcxMScfTorzNs195D1zigxd3ZnfZNjb6qQdUQtnxsVOTmaPnXcBZIlDNKlHH2EmXUp2fmWnnsNv1IxEncZpwngnG%2FHYRx6HkB51G7I%2FwOCjthJ%2B13%2FwMAAP%2F%2FAQAA%2F%2F%2BWiWMhiQQAAA%3D%3D
IP 173.233.137.60:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSujtnTnvxxERT64EHBzPavmelxhei6rgTX3XWzmptQXVU9qaSmq6nqnp4EleiC7HHEi8fON8kGdRX3KsrKxIvk5ChoIOZvEAQPnmQmA8EH3e%2B9%2Bt7h%2B773PtktT4mHkh7fektvS6XopWbDc59fkxnXlXVv3HF9r%2BFddtdk1oouu4Ppz%2FRf8r1mw3vBfUOwTX0p8HzP8z3fvSaNSPXg0gyFzB90%2FEbHa0RBw29GGJj%2F97Z0YKkD3j8lT0DyyYX1nx9CsjGy3rdXhd0sdP7i671S0UIb9PnBO9lmpqsMvfMyNQ7S7GA%2BDW0nhHy%2BAJ0dzBVA9%2FemCpDICXF%2B95FkB3OaSPr7Z0wTBZEh4RdR9ccQagxJx2D6LiT%2FhQCM48ZNZL37N7Sp6NYZSqfohCz%2B8zdkNSGLfz6FrPfNFSUH7qpWZSF1ZjFIa8jBGLI7Rl4eoth2IKtDsOJjSE6Q9WpIfvxclLbiOA39pTD220tRJ4iXEsqCpSgJA48GMfVoNLNGyjFkOoYSQ1DroJx%2B0kGZOihzBz1%2B7NJmJ%2FW8dpqkYRhHjLEwZKwZt3iTh1GceijZlPsQRT4EU0Mws4Pc7GBTDmHKH2HXa1juwBYEfV6jEgSVJagoQSUJqoKg6tf7XNnA1ve5smXiz3Mwz2E90kV3l%2B7roisyspufksenhjkLj9awKY5dFrSaMWvHUcxoS7RbzaAVpbEXN71O2PZaDFbWkHZhJnNbTsiTJxeQywlZOHkFCT2EVYdg8hnQ8lnQatQOPND1URR72M6%2BzqjcoJXkosF0D1zXyItFFFvOrjolT8829%2FLbqxDsaPmPz4rvNz78F8zUyE2NDfkTQVfdG93WFdm7rStLHt7MC9mT23S61dWCFmLxyzfFVqUNX7lqh1%2B8yqbAtHxwR9jiOs24zLqWfHVFci7MNW2YID%2Bs2DWR3Crt%2BpXSZGV%2B%2FdZr11Z6uRHWSp2NQeWEkI%2FeB5MTctHJZhfrDk4hzRimrNErj8g8IPUhWL4Dmx8t%2F7by3XvN5Q9gNYFR5zNJ7qAq65EJkvNHJQmUOO9pUsOKcxMScfTorzNs195D1zigxd3ZnfZNjb6qQdUQtnxsVOTmaPnXcBZIlDNKlHH2EmXUp2fmWnnsNv1IxEncZpwngnG%2FHYRx6HkB51G7I%2FwOCjthJ%2B13%2FwMAAP%2F%2FAQAA%2F%2F%2BWiWMhiQQAAA%3D%3D HTTP/1.1
Host: subscribestormyapprobation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Cookie: u_pl=16957271; ain=eyJhbGciOiJIUzI1NiJ9.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.kKWSJrUIFKP1H5EbIt4hsEyothvFP1NSzrDO4a5vWVc; uid_id2=4f688f31-3817-4928-bac2-4b320a28a0a4:1:1; iprc4cbcdc19074c1211618f4d6a81c9b353=2717340; pdhtkv=true; uncs=1; pdhtkv5=true; uncs5=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:21:11 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: dce8d7bc54ad609f52186ea1d07caade
Strict-Transport-Security: max-age=0; includeSubdomains
subscribestormyapprobation.com/pixel/sbs?c=1
173.233.137.60200 OK 0 B URL HTTP/1.1 subscribestormyapprobation.com/pixel/sbs?c=1
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: subscribestormyapprobation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Cookie: u_pl=16957271; ain=eyJhbGciOiJIUzI1NiJ9.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.kKWSJrUIFKP1H5EbIt4hsEyothvFP1NSzrDO4a5vWVc; uid_id2=4f688f31-3817-4928-bac2-4b320a28a0a4:1:1; iprc4cbcdc19074c1211618f4d6a81c9b353=2717340; pdhtkv=true; uncs=1; pdhtkv5=true; uncs5=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:21:11 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
jennyvisits.com/dyfc1k09?shu=9e743f66af1d36ac33a6c0cd15c2e60fc005023c663d5ec165e76653c99282ffe6d292894aada6c02d228f15c366a6afb79b6bbe7f83c8e3595e22ad60516fd4ec8d2b18cbefba275c9504fa217410ba4b6c48c77daa3cf7736de42b67075980875f&pst=1675376531&rmtc=t&uuid=&pii=&in=false&key=863705bcbb4b6a554ddb359665395a6f&refer=https%3A%2F%2Fnaijawide.com%2F&psid=15374425
173.233.137.60302 Found 0 B URL HTTP/1.1 jennyvisits.com/dyfc1k09?shu=9e743f66af1d36ac33a6c0cd15c2e60fc005023c663d5ec165e76653c99282ffe6d292894aada6c02d228f15c366a6afb79b6bbe7f83c8e3595e22ad60516fd4ec8d2b18cbefba275c9504fa217410ba4b6c48c77daa3cf7736de42b67075980875f&pst=1675376531&rmtc=t&uuid=&pii=&in=false&key=863705bcbb4b6a554ddb359665395a6f&refer=https%3A%2F%2Fnaijawide.com%2F&psid=15374425
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /dyfc1k09?shu=9e743f66af1d36ac33a6c0cd15c2e60fc005023c663d5ec165e76653c99282ffe6d292894aada6c02d228f15c366a6afb79b6bbe7f83c8e3595e22ad60516fd4ec8d2b18cbefba275c9504fa217410ba4b6c48c77daa3cf7736de42b67075980875f&pst=1675376531&rmtc=t&uuid=&pii=&in=false&key=863705bcbb4b6a554ddb359665395a6f&refer=https%3A%2F%2Fnaijawide.com%2F&psid=15374425 HTTP/1.1
Host: jennyvisits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jennyvisits.com/dyfc1k09?key=0f22c1fd609f13cb7947c8cabfe1a90d&submetric=16122660
Cookie: u_pl=16122660; ain=eyJhbGciOiJIUzI1NiJ9.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.hWDcP_rvJUZAjB_ZomQMxx597MCaw-652YAeltYDf88; cjs=t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Server: nginx/1.19.5
Date: Thu, 02 Feb 2023 22:21:12 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Location: https://adserving.unibet.com/redirect.aspx?bid=37950&pid=15135578&sref=ADST&ADST=16122660
Set-Cookie: pdhtkv=true; expires=Fri, 03 Feb 2023 22:21:12 GMT
uncs=1; expires=Fri, 03 Feb 2023 22:21:12 GMT
pdhtkv28=true; expires=Fri, 03 Feb 2023 22:21:12 GMT
uncs28=1; expires=Fri, 03 Feb 2023 22:21:12 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8f6c7ac99038c3558f7d45c4de7a4698
Strict-Transport-Security: max-age=0; includeSubdomains
adserving.unibet.com/redirect.aspx?bid=37950&pid=15135578&sref=ADST&ADST=16122660
23.36.79.43307 Temporary Redirect 0 B URL HTTP/2 adserving.unibet.com/redirect.aspx?bid=37950&pid=15135578&sref=ADST&ADST=16122660
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?bid=37950&pid=15135578&sref=ADST&ADST=16122660 HTTP/1.1
Host: adserving.unibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jennyvisits.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
content-type: text/html
content-length: 0
location: https://www.unibet.nu/stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&sref=ADST&ADST=16122660&affiliateId=1&pid=68246908&bid=37950
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Thu, 02 Feb 2023 22:21:12 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 02 Feb 2023 22:21:12 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675376472434)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2023222221%22%7d%5d; SameSite=None;; domain=.unibet.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228773965472%7c1%22%7d%5d; domain=.unibet.com; expires=Sat, 02-Feb-3022 22:21:12 GMT; path=/; secure; SameSite=Strict
server-timing: cdn-cache; desc=MISS, edge; dur=19, origin; dur=123
X-Firefox-Spdy: h2
www.unibet.nu/stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&sref=ADST&ADST=16122660&affiliateId=1&pid=68246908&bid=37950
85.184.96.0301 Moved Permanently 0 B URL HTTP/2 www.unibet.nu/stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&sref=ADST&ADST=16122660&affiliateId=1&pid=68246908&bid=37950
IP 85.184.96.0:0
ASN #47171 Unibet Services Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&sref=ADST&ADST=16122660&affiliateId=1&pid=68246908&bid=37950 HTTP/1.1
Host: www.unibet.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jennyvisits.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Thu, 02 Feb 2023 22:21:12 GMT
content-length: 0
location: https://www.unibet.nu:443/stan/redirecttocampaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&sref=ADST&ADST=16122660&affiliateId=1&pid=68246908&bid=37950&landingPageUrl=https%3A%2F%2Fwelcome.unibet.com%2Fnu%2Fpop%2Fsportsbook%2Fmultisports%2Findex.html%3Fmktid%3D1%3A127656177%3A68246908-37950
set-cookie: JSESSIONID=node01cdm6c5tgbdkk1v9q7dqyc1sb71424165.node0; Path=/stan; Secure; HttpOnly; SameSite=Strict
__ucbt=node01cdm6c5tgbdkk1v9q7dqyc1sb; Path=/; Domain=.unibet.nu; Expires=Sat, 01-Feb-2025 22:21:12 GMT; Max-Age=63072000; Secure; SameSite=None
uniattr=ST.0.T; Path=/; Domain=.unibet.nu; Expires=Sat, 01-Feb-2025 22:21:12 GMT; Max-Age=63072000; Secure; SameSite=None
uniattr_ref="https://jennyvisits.com/"; Path=/; Domain=.unibet.nu; Expires=Sat, 01-Feb-2025 22:21:12 GMT; Max-Age=63072000; Secure; SameSite=None
UNIBET_REQUEST_URL=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
AFFILIATE_REQUEST_URL=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
UNIBET_INTERNAL_CAMPAIGN_ID=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
affid=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
netwid=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
CLAIM_CODE=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
REGISTRATION_CODE=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
campaignId=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
affiliateId=1; Path=/; Domain=.unibet.nu; Secure; SameSite=None
B-TAG=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6; Path=/; Domain=.unibet.nu; Secure; SameSite=None
REGISTRATION_CODE=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
BID=37950; Path=/; Domain=.unibet.nu; Secure; SameSite=None
PID=68246908; Path=/; Domain=.unibet.nu; Secure; SameSite=None
CHID=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
REFERER=https%3A%2F%2Fjennyvisits.com%2F; Path=/; Domain=.unibet.nu; Secure; SameSite=None
UNIBET_INTERNAL_CAMPAIGN_ID=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
UNIBET_REQUEST_URL=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
AFFILIATE_REQUEST_URL=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
AFFILIATE_CAMPAIGN_ID=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
AMS_INVITE_CHAT_ACCEPTED=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
AMS_INVITE_CHAT_DECLINED=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
BOCAID=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
PRODUCT_ID=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
AFFID=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
AFFILIATE_REQUEST_URL=https%3A%2F%2Fwww.unibet.nu%2Fstan%2Fcampaign.do%3FcmpId%3D2799402%26affiliateId%3D1%26unibetTarget%3D%2Fnu%2Fpop%2Fsportsbook%2Fmultisports%2Findex.html%26targetDomain%3Dhttps%3A%2F%2Fwelcome.unibet.com%26btag%3D127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6%26sref%3DADST%26ADST%3D16122660%26affiliateId%3D1%26pid%3D68246908%26bid%3D37950; Path=/; Domain=.unibet.nu; Secure; SameSite=None
AFFILIATE_CAMPAIGN_ID=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
campaignId=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
clientId=polopoly_desktop; Domain=www.unibet.nu; Path=/; SameSite=None; Secure
referer: https://jennyvisits.com/
cache-control: max-age=0, no-cache, no-store, must-revalidate, proxy-revalidate
expires: Thu, 01 Jan 1970 00:00:00 GMT, Thu, 02 Feb 2023 22:21:12 GMT
server: kindred-loadbalancer
strict-transport-security: max-age=63072000; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src 'unsafe-inline' 'unsafe-eval' http: https: data: wss: blob: jockey: unibetpro: *;
x-browser-class: A
x-os-class: M
x-ooops-debug: /500-pages/www.unibet.nu/index.html
X-Firefox-Spdy: h2
www.unibet.nu/stan/redirecttocampaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&sref=ADST&ADST=16122660&affiliateId=1&pid=68246908&bid=37950&landingPageUrl=https%3A%2F%2Fwelcome.unibet.com%2Fnu%2Fpop%2Fsportsbook%2Fmultisports%2Findex.html%3Fmktid%3D1%3A127656177%3A68246908-37950
85.184.96.0301 Moved Permanently 0 B URL HTTP/2 www.unibet.nu/stan/redirecttocampaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&sref=ADST&ADST=16122660&affiliateId=1&pid=68246908&bid=37950&landingPageUrl=https%3A%2F%2Fwelcome.unibet.com%2Fnu%2Fpop%2Fsportsbook%2Fmultisports%2Findex.html%3Fmktid%3D1%3A127656177%3A68246908-37950
IP 85.184.96.0:0
ASN #47171 Unibet Services Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stan/redirecttocampaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&sref=ADST&ADST=16122660&affiliateId=1&pid=68246908&bid=37950&landingPageUrl=https%3A%2F%2Fwelcome.unibet.com%2Fnu%2Fpop%2Fsportsbook%2Fmultisports%2Findex.html%3Fmktid%3D1%3A127656177%3A68246908-37950 HTTP/1.1
Host: www.unibet.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jennyvisits.com/
Connection: keep-alive
Cookie: __ucbt=node01cdm6c5tgbdkk1v9q7dqyc1sb; uniattr=ST.0.T; uniattr_ref="https://jennyvisits.com/"; affiliateId=1; B-TAG=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6; BID=37950; PID=68246908; REFERER=https%3A%2F%2Fjennyvisits.com%2F; AFFILIATE_REQUEST_URL=https%3A%2F%2Fwww.unibet.nu%2Fstan%2Fcampaign.do%3FcmpId%3D2799402%26affiliateId%3D1%26unibetTarget%3D%2Fnu%2Fpop%2Fsportsbook%2Fmultisports%2Findex.html%26targetDomain%3Dhttps%3A%2F%2Fwelcome.unibet.com%26btag%3D127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6%26sref%3DADST%26ADST%3D16122660%26affiliateId%3D1%26pid%3D68246908%26bid%3D37950; clientId=polopoly_desktop
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Thu, 02 Feb 2023 22:21:12 GMT
content-length: 0
location: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&bid=37950&campaignId=2799402&pid=68246908
cache-control: max-age=0, no-cache, no-store, must-revalidate, proxy-revalidate
expires: Thu, 02 Feb 2023 22:21:12 GMT
server: kindred-loadbalancer
strict-transport-security: max-age=63072000; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src 'unsafe-inline' 'unsafe-eval' http: https: data: wss: blob: jockey: unibetpro: *;
x-browser-class: A
x-os-class: M
x-ooops-debug: /500-pages/www.unibet.nu/index.html
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 412cf641cf40d1c51e67153f00424ee3
9b652dd5a147af9e839c161af1498d1b3c571f15
d40766b53750af8e814d656a26bdda12a08669792c465838949dcdc4d0974918
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D40766B53750AF8E814D656A26BDDA12A08669792C465838949DCDC4D0974918"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17919
Expires: Fri, 03 Feb 2023 03:19:51 GMT
Date: Thu, 02 Feb 2023 22:21:12 GMT
Connection: keep-alive
a1s-cdn.unibet.com/unibet/bannerflow/scripts/master_tag.js
85.184.96.5200 OK 956 B URL HTTP/2 a1s-cdn.unibet.com/unibet/bannerflow/scripts/master_tag.js
IP 85.184.96.5:0
ASN #47171 Unibet Services Limited
Hash fd48e87ecd4d06d9c5df490b91dc813e
a65a437db44444634e4f41732c590c1d14433b3f
2f786ae3f4577ed970f60aa7a9edf726300a740fdb360a8364db7ff4b7ca8e47
GET /unibet/bannerflow/scripts/master_tag.js HTTP/1.1
Host: a1s-cdn.unibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675376472434)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2023222221%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228773965472%7c1%22%7d%5d; btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: application/javascript
content-length: 956
last-modified: Mon, 25 Apr 2022 12:19:34 GMT
etag: "3bc-5dd7996cc0ce1"
cache-control: max-age=1800, public, must-revalidate
server: kindred-loadbalancer
strict-transport-security: max-age=63072000; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src 'unsafe-inline' 'unsafe-eval' http: https: data: wss: blob: jockey: unibetpro: *;
x-browser-class: A
x-os-class: M
set-cookie: clientId=polopoly_desktop; Domain=a1s-cdn.unibet.com; Path=/; SameSite=None; Secure
accept-ranges: bytes
X-Firefox-Spdy: h2
welcome.unibet.com/nu/pop/sportsbook/multisports/1-styles.css
104.18.25.188200 OK 5.7 kB URL HTTP/2 welcome.unibet.com/nu/pop/sportsbook/multisports/1-styles.css
IP 104.18.25.188:0
Hash ecac9484642513ab1a6fa3a8c142424a
36027dd202bc9a41557a3211de2783f06e109692
7611d5458a640f64d4cc716763eb1e6a5b5ff4ee1b0ac7e83bb1a141fdd94fa8
GET /nu/pop/sportsbook/multisports/1-styles.css HTTP/1.1
Host: welcome.unibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&bid=37950&campaignId=2799402&pid=68246908
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675376472434)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2023222221%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228773965472%7c1%22%7d%5d; btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=900, immutable
content-md5: zXkBqwBMviPPaK5rBIapmA==
last-modified: Thu, 26 Jan 2023 12:30:17 GMT
etag: W/"0x8DAFF9914DE94BB"
x-ms-request-id: 580bcb77-701e-0034-8081-3121ca000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: HIT
age: 35441
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936518cef6d1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:21:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
142.250.74.138200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (65451)
Hash 0f83cadc148d2ad7e53c91f6c4ee05bb
90035c5fffedf4b0f099465f6b929a030b46c92b
3f59aa77bbbed7760a9968af27d3c19ffddda021c948edf0bf0c0f828dd308ae
GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30399
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 22:28:50 GMT
expires: Thu, 01 Feb 2024 22:28:50 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 85943
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
welcome.unibet.com/nu/pop/sportsbook/multisports/app-sports-icon.svg
104.18.25.188200 OK 108 kB URL HTTP/2 welcome.unibet.com/nu/pop/sportsbook/multisports/app-sports-icon.svg
IP 104.18.25.188:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (15888), with no line terminators
Size 108 kB (108288 bytes)
Hash 20e1be88ab762598fb55d4f1a8a46cb4
1c9c8cc8ec9230774f806b496f897320f53888e8
e8b7ce4b5ad7585896502c0ec2f2065322e307ed2ae223f7aba901434c8056a5
GET /nu/pop/sportsbook/multisports/app-sports-icon.svg HTTP/1.1
Host: welcome.unibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&bid=37950&campaignId=2799402&pid=68246908
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675376472434)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2023222221%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228773965472%7c1%22%7d%5d; btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: image/svg+xml
cache-control: public, max-age=900, immutable
content-md5: Lm+dv7pV36kTdto2PoEyYQ==
last-modified: Thu, 26 Jan 2023 12:30:22 GMT
etag: W/"0x8DAFF991835F51F"
x-ms-request-id: 1328b90b-701e-0024-5c81-31e4a2000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: HIT
age: 35447
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936518cff7f1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
welcome.unibet.com/nu/pop/sportsbook/multisports/1-main.js
104.18.25.188200 OK 13 kB URL HTTP/2 welcome.unibet.com/nu/pop/sportsbook/multisports/1-main.js
IP 104.18.25.188:0
File type HTML document, Unicode text, UTF-8 text
Hash 27b6f5d3d1841cb707b0762104afb932
b4bfd78c6f4917189407ac5a28ef70c7c6cb7938
b09a789ce9b5c944dec4738dc7963a60b2371073c19a97556624ca449e816e81
GET /nu/pop/sportsbook/multisports/1-main.js HTTP/1.1
Host: welcome.unibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&bid=37950&campaignId=2799402&pid=68246908
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675376472434)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2023222221%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228773965472%7c1%22%7d%5d; btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=900, immutable
content-md5: BPxI3njL/F0VV+nfOZx3Mw==
last-modified: Thu, 26 Jan 2023 12:30:23 GMT
etag: W/"0x8DAFF99188E686E"
x-ms-request-id: fae4441f-101e-0040-4d81-31153a000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: HIT
age: 35447
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936518cef6e1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
welcome.unibet.com/nu/pop/sportsbook/multisports/icon-expert.svg
104.18.25.188200 OK 997 B URL HTTP/2 welcome.unibet.com/nu/pop/sportsbook/multisports/icon-expert.svg
IP 104.18.25.188:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (966), with no line terminators
Hash 9d384705cd39db65cd4059f6d0263e6a
0ce0da0ae0ce44f0ccb70b937b62dd0b2807711d
0de7cb0f9d842faf7a58aad48fef27b54dd2ac7cb4a6fb343fb86930cd7aecae
GET /nu/pop/sportsbook/multisports/icon-expert.svg HTTP/1.1
Host: welcome.unibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&bid=37950&campaignId=2799402&pid=68246908
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675376472434)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2023222221%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228773965472%7c1%22%7d%5d; btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: image/svg+xml
cache-control: public, max-age=900, immutable
content-md5: Z4302O+bSqlX5UM92U+35A==
last-modified: Thu, 26 Jan 2023 12:30:21 GMT
etag: W/"0x8DAFF99174612EA"
x-ms-request-id: 82c2bcc2-201e-0029-1081-312c76000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: HIT
age: 35446
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936518cff841c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.7.1/css/all.css
172.64.132.15200 OK 86 kB URL HTTP/2 use.fontawesome.com/releases/v5.7.1/css/all.css
IP 172.64.132.15:0
File type ASCII text, with very long lines (54456), with no line terminators
Hash 9a10b9d62735ad404554b98ca50b83cb
09b2e90544dbccece01b213f77c294d290b7cc51
cb9745da30a59d89c78c7e23420f18a2fba00681e61f7af27732adf32ca52c59
GET /releases/v5.7.1/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://welcome.unibet.com
Connection: keep-alive
Referer: https://welcome.unibet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: text/css
x-amz-id-2: kIWUcp4/gRprxrhG4Bo7YL49QfCfoJzgcb+lBni7kDeALpU6YcOHbXZK3Ce3+VKgInDBPr7yuoA=
x-amz-request-id: GQJ6HHGYZ6JW9X6Q
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:45:37 GMT
etag: W/"7b1d7f457d056ace7b230b587b9f3753"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 522531
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zM2k5KMFHooE0XWH8B9%2FE0HJ2cWm8TLKioWrVZtbV4%2FIidsLdUePWxDKgAn6MroeyY9j1ON9%2Ff2JyWpFcsXAyrlc84iSCydxdFzZ99piORjPUS3rdPpeYkP2w8QUl6PpXB5HGoDw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7936518d6c047717-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
welcome.unibet.com/nu/pop/sportsbook/multisports/unibet-logo.svg
104.18.25.188200 OK 1.5 kB URL HTTP/2 welcome.unibet.com/nu/pop/sportsbook/multisports/unibet-logo.svg
IP 104.18.25.188:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (3207), with no line terminators
Hash 3be46eec4382ed8ebcffe95cf9e7c2b0
8e837341d5fd1a9233f7ac49141c503b984881a2
b48520c1b208dcdc781d621c9441521a605e629fab9864826306de23983c63fe
GET /nu/pop/sportsbook/multisports/unibet-logo.svg HTTP/1.1
Host: welcome.unibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&bid=37950&campaignId=2799402&pid=68246908
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675376472434)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2023222221%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228773965472%7c1%22%7d%5d; btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: image/svg+xml
cache-control: public, max-age=900, immutable
content-md5: cw5jdwcrd9gLyjDZb7Y7Jw==
last-modified: Thu, 26 Jan 2023 12:30:18 GMT
etag: W/"0x8DAFF9915A7459F"
x-ms-request-id: e677fb13-901e-0061-5581-313141000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: HIT
age: 35447
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936518cff7c1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:21:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://welcome.unibet.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 346753
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:21:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
welcome.unibet.com/nu/pop/sportsbook/multisports/icon-trust.svg
104.18.25.188200 OK 16 kB URL HTTP/2 welcome.unibet.com/nu/pop/sportsbook/multisports/icon-trust.svg
IP 104.18.25.188:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1066), with no line terminators
Hash eb6d47c6f2fd5da94745814ea3170f70
337cc8fac9100cba36d94a64f5a4992e6da72d95
2b3cf7431e3f699143032649b1ec476d358580e298a15a4ccfb7d06bb11b6e16
GET /nu/pop/sportsbook/multisports/icon-trust.svg HTTP/1.1
Host: welcome.unibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&bid=37950&campaignId=2799402&pid=68246908
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675376472434)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2023222221%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228773965472%7c1%22%7d%5d; btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: image/svg+xml
cache-control: public, max-age=900, immutable
content-md5: 9k4H3E55HXB5I94VinrUOQ==
last-modified: Thu, 26 Jan 2023 12:30:21 GMT
etag: W/"0x8DAFF99173FAB3F"
x-ms-request-id: af16bb2e-701e-0046-1c81-312685000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: HIT
age: 35446
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936518cff831c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,500
142.250.74.106200 OK 82 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,500
IP 142.250.74.106:0
Hash 30b302597df49134158a4d1c1c1ec6f9
8ce7adebc8ffb9c7173df4e9f774413c1196150d
0f86fe8c5b6e081abc886d08283cb9ca45c2fbb680ea1f65f610acb1978cd63e
GET /css?family=Roboto:300,400,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 22:21:13 GMT
date: Thu, 02 Feb 2023 22:21:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash a62fb196730dab6ac28eab662fcbbc25
6ebf23821a92ee8fb4b1b1407549cff3bcee7723
2509e4cd4cd3dc8149a22a79f78be468d1ca3649d4b58bbedf969019a177c619
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1818
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:21:13 GMT
Last-Modified: Thu, 02 Feb 2023 21:50:55 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 278
script.crazyegg.com/pages/data-scripts/0012/9242/site/welcome.unibet.com.json?t=1
104.19.148.8200 OK 365 B URL HTTP/2 script.crazyegg.com/pages/data-scripts/0012/9242/site/welcome.unibet.com.json?t=1
IP 104.19.148.8:0
File type JSON data\012- , ASCII text, with very long lines (704), with no line terminators
Hash 06bc780827f60094dff7e35de4f5eaee
d9115a54989fcae922973009e467d6096dd8ba7c
a025d668e610262f70614cb93da905b2de313e5cde081b9cc2684ac31373f64b
GET /pages/data-scripts/0012/9242/site/welcome.unibet.com.json?t=1 HTTP/1.1
Host: script.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://welcome.unibet.com
Connection: keep-alive
Referer: https://welcome.unibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: application/json
content-length: 365
access-control-expose-headers: CE-Version
ce-version: 11.5.22
cache-control: public, max-age=300, s-maxage=1209600
timing-allow-origin: *
last-modified: Thu, 02 Feb 2023 17:00:21 GMT
content-encoding: gzip
access-control-allow-origin: *
cf-cache-status: HIT
age: 19252
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936518f1fe7b4f7-OSL
X-Firefox-Spdy: h2
secure.adnxs.com/seg?add=9755599
185.89.210.122307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/seg?add=9755599
IP 185.89.210.122:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /seg?add=9755599 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 22:21:13 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fseg%3Fadd%3D9755599
AN-X-Request-Uuid: 15d3058a-86bd-48ea-9acd-eedfbf14e736
Set-Cookie: uuid2=6436415815478522733; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 03-May-2023 22:21:13 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 954.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 376568ad565582b9a012526b079e1d15
8a3d0933e4ad5e6b4942abc856e2b06bd518cb86
8638da6b826ab2e28955fa6963b3fbac2fb85c937e5eb0e629b8a10b3e029498
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4476
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:21:13 GMT
Last-Modified: Thu, 02 Feb 2023 21:06:37 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
secure.adnxs.com/bounce?%2Fseg%3Fadd%3D9755599
185.89.210.122200 OK 43 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fseg%3Fadd%3D9755599
IP 185.89.210.122:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /bounce?%2Fseg%3Fadd%3D9755599 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://welcome.unibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 22:21:13 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 38acd088-fb25-4b1c-bc9f-b293fa9afdb8
Set-Cookie: anj=dTM7k!M4/8CxrEQF']wIg2GVPrdhd$!]tbP6j2F-XstGt!@DpX$uOCP; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 03-May-2023 22:21:13 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 954.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
dpm.demdex.net/id?d_visid_ver=4.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=F431E3BC5593E3887F000101%40AdobeOrg&d_nsid=0&ts=1675376501560
54.72.143.161200 OK 499 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=4.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=F431E3BC5593E3887F000101%40AdobeOrg&d_nsid=0&ts=1675376501560
IP 54.72.143.161:0
File type JSON data\012- , ASCII text, with very long lines (791), with no line terminators
Hash 1fdb53e8cc4bfd35dc7e3f24cb233122
bea129a7bac0d2b9f29b2a313e187f7c969489de
ad3c43cc7b06d5bb64d6f071c411d699b72d68693fff30c468deca2cececf50e
GET /id?d_visid_ver=4.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=F431E3BC5593E3887F000101%40AdobeOrg&d_nsid=0&ts=1675376501560 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://welcome.unibet.com
Connection: keep-alive
Referer: https://welcome.unibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://welcome.unibet.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-2-v045-05ee5fd88.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=47455325608926413370561935187524012288; Max-Age=15552000; Expires=Tue, 01 Aug 2023 22:21:13 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: ELd/kv9RTyE=
Content-Length: 499
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 37fe709691877d51d3b945dd6d18bd6d
6e692fafe7fd368321adeb7028ffe86a40e9db89
71a6a4b35bda61cd61a949353bbf0d9d348c775d3620ac44c42b40a451a3bdb6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3644
Cache-Control: max-age=123383
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:21:13 GMT
Etag: "63db6814-1d7"
Expires: Sat, 04 Feb 2023 08:37:36 GMT
Last-Modified: Thu, 02 Feb 2023 07:36:52 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
unibetlondonltd.d3.sc.omtrdc.net/id?d_visid_ver=4.4.0&d_fieldgroup=A&mcorgid=F431E3BC5593E3887F000101%40AdobeOrg&mid=47437783853126936660559195005392663707&ts=1675376501773
13.37.25.97200 OK 2 B URL HTTP/2 unibetlondonltd.d3.sc.omtrdc.net/id?d_visid_ver=4.4.0&d_fieldgroup=A&mcorgid=F431E3BC5593E3887F000101%40AdobeOrg&mid=47437783853126936660559195005392663707&ts=1675376501773
IP 13.37.25.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /id?d_visid_ver=4.4.0&d_fieldgroup=A&mcorgid=F431E3BC5593E3887F000101%40AdobeOrg&mid=47437783853126936660559195005392663707&ts=1675376501773 HTTP/1.1
Host: unibetlondonltd.d3.sc.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://welcome.unibet.com
Connection: keep-alive
Referer: https://welcome.unibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://welcome.unibet.com
access-control-allow-credentials: true
date: Thu, 02 Feb 2023 22:21:13 GMT
p3p: CP="This is not a P3P policy"
server: jag
vary: Origin
content-type: application/x-javascript;charset=utf-8
content-length: 2
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
unibetlondonltd.d3.sc.omtrdc.net/b/ss/unibetlondonunibetwebprod/1/JS-2.22.4/s76522502788772?AQB=1&ndh=1&pf=1&t=2%2F1%2F2023%2022%3A21%3A41%204%200&mid=47437783853126936660559195005392663707&aamlh=6&ce=UTF-8&pageName=LP%3A2022%20-%20Multi%20Sports%20-%20popunders&g=https%3A%2F%2Fwelcome.unibet.com%2Fnu%2Fpop%2Fsportsbook%2Fmultisports%2Findex.html%3Fmktid%3D1%3A127656177%3A68246908-37950%26btag%3D127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6%26bid%3D37950%26campaignId%3D2799402%26pid%3D68246908&r=https%3A%2F%2Fjennyvisits.com%2F&cc=GBP&ch=bf_landingpage&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=https%3A%2F%2Fwelcome.unibet.com%2Fnu%2Fpop%2Fsportsbook%2Fmultisports%2Findex.html%3Fmktid%3D1%3A127656177%3A68246908-37950%26btag%3D127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6%26bid%3D37950%26campaignId%3D2799402%26pid%3D68246908&v1=welcome.unibet.com%3A%3A%3Adesktop%3Anu%3Apop%3Asportsbook%3Amultisports%3Aindex.html&c2=No%20CMS%5ENo%20ClientID%5ENo%20Locale%5ENo%20Juristiction&v2=bf_landingpage&v3=welcome.unibet.com&v4=No%20CMS%5ENo%20ClientID%5ENo%20Locale%5ENo%20Juristiction&c6=10%3A21%20PM%7CThursday&v6=10%3A21%20PM%7CThursday&v11=GBP&c14=New&v14=New&c16=1675376502&v21=Not%20Logged-In&c73=unibet&v120=popunder&v121=1%3A127656177%3A68246908-37950&v122=NONE&v124=2799402&v125=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&v126=68246908&v127=37950&v134=1675376501&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=F431E3BC5593E3887F000101%40AdobeOrg&AQE=1
13.37.25.97200 OK 43 B URL HTTP/2 unibetlondonltd.d3.sc.omtrdc.net/b/ss/unibetlondonunibetwebprod/1/JS-2.22.4/s76522502788772?AQB=1&ndh=1&pf=1&t=2%2F1%2F2023%2022%3A21%3A41%204%200&mid=47437783853126936660559195005392663707&aamlh=6&ce=UTF-8&pageName=LP%3A2022%20-%20Multi%20Sports%20-%20popunders&g=https%3A%2F%2Fwelcome.unibet.com%2Fnu%2Fpop%2Fsportsbook%2Fmultisports%2Findex.html%3Fmktid%3D1%3A127656177%3A68246908-37950%26btag%3D127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6%26bid%3D37950%26campaignId%3D2799402%26pid%3D68246908&r=https%3A%2F%2Fjennyvisits.com%2F&cc=GBP&ch=bf_landingpage&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=https%3A%2F%2Fwelcome.unibet.com%2Fnu%2Fpop%2Fsportsbook%2Fmultisports%2Findex.html%3Fmktid%3D1%3A127656177%3A68246908-37950%26btag%3D127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6%26bid%3D37950%26campaignId%3D2799402%26pid%3D68246908&v1=welcome.unibet.com%3A%3A%3Adesktop%3Anu%3Apop%3Asportsbook%3Amultisports%3Aindex.html&c2=No%20CMS%5ENo%20ClientID%5ENo%20Locale%5ENo%20Juristiction&v2=bf_landingpage&v3=welcome.unibet.com&v4=No%20CMS%5ENo%20ClientID%5ENo%20Locale%5ENo%20Juristiction&c6=10%3A21%20PM%7CThursday&v6=10%3A21%20PM%7CThursday&v11=GBP&c14=New&v14=New&c16=1675376502&v21=Not%20Logged-In&c73=unibet&v120=popunder&v121=1%3A127656177%3A68246908-37950&v122=NONE&v124=2799402&v125=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&v126=68246908&v127=37950&v134=1675376501&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=F431E3BC5593E3887F000101%40AdobeOrg&AQE=1
IP 13.37.25.97:0
File type GIF image data, version 89a, 2 x 2\012- data
Hash ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506
GET /b/ss/unibetlondonunibetwebprod/1/JS-2.22.4/s76522502788772?AQB=1&ndh=1&pf=1&t=2%2F1%2F2023%2022%3A21%3A41%204%200&mid=47437783853126936660559195005392663707&aamlh=6&ce=UTF-8&pageName=LP%3A2022%20-%20Multi%20Sports%20-%20popunders&g=https%3A%2F%2Fwelcome.unibet.com%2Fnu%2Fpop%2Fsportsbook%2Fmultisports%2Findex.html%3Fmktid%3D1%3A127656177%3A68246908-37950%26btag%3D127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6%26bid%3D37950%26campaignId%3D2799402%26pid%3D68246908&r=https%3A%2F%2Fjennyvisits.com%2F&cc=GBP&ch=bf_landingpage&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=https%3A%2F%2Fwelcome.unibet.com%2Fnu%2Fpop%2Fsportsbook%2Fmultisports%2Findex.html%3Fmktid%3D1%3A127656177%3A68246908-37950%26btag%3D127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6%26bid%3D37950%26campaignId%3D2799402%26pid%3D68246908&v1=welcome.unibet.com%3A%3A%3Adesktop%3Anu%3Apop%3Asportsbook%3Amultisports%3Aindex.html&c2=No%20CMS%5ENo%20ClientID%5ENo%20Locale%5ENo%20Juristiction&v2=bf_landingpage&v3=welcome.unibet.com&v4=No%20CMS%5ENo%20ClientID%5ENo%20Locale%5ENo%20Juristiction&c6=10%3A21%20PM%7CThursday&v6=10%3A21%20PM%7CThursday&v11=GBP&c14=New&v14=New&c16=1675376502&v21=Not%20Logged-In&c73=unibet&v120=popunder&v121=1%3A127656177%3A68246908-37950&v122=NONE&v124=2799402&v125=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&v126=68246908&v127=37950&v134=1675376501&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=F431E3BC5593E3887F000101%40AdobeOrg&AQE=1 HTTP/1.1
Host: unibetlondonltd.d3.sc.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
date: Thu, 02 Feb 2023 22:21:13 GMT
expires: Wed, 01 Feb 2023 22:21:13 GMT
last-modified: Fri, 03 Feb 2023 22:21:13 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3597843581783343104-4619604421661651959
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
welcome.unibet.com/nu/pop/sportsbook/multisports/google-play-ro.svg
104.18.25.188200 OK 4.9 kB URL HTTP/2 welcome.unibet.com/nu/pop/sportsbook/multisports/google-play-ro.svg
IP 104.18.25.188:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (5740), with no line terminators
Hash 5ed262c471b6951685b6a9ce2ff57d4c
8f9420f59ec065fa2ab1c6430a070e836d6ac27c
965eab9d61ddd594ae7fb059c69c4d6bfadc8b0e8aa6ea3ff406bfd934aac989
GET /nu/pop/sportsbook/multisports/google-play-ro.svg HTTP/1.1
Host: welcome.unibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&bid=37950&campaignId=2799402&pid=68246908
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675376472434)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2023222221%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228773965472%7c1%22%7d%5d; btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: image/svg+xml
cache-control: public, max-age=900, immutable
content-md5: 2fR27yW0b9kBp/ebW9u59A==
last-modified: Thu, 26 Jan 2023 12:30:22 GMT
etag: W/"0x8DAFF99184AD9A4"
x-ms-request-id: fa9ed380-a01e-0027-7f81-3105c6000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: HIT
age: 35446
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936518cff821c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 8c94c7e326283ffcf1579151b5f5091d
9d17acbbdac6431aa5f55ade4991614cfb404bf3
3b15a0cee8a7848e9ba91bf6aefdc79419d1f0502930e1206c5705b7c2ba1bc2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=147539
Date: Thu, 02 Feb 2023 22:21:14 GMT
Etag: "63dbc220-1d7"
Expires: Sat, 04 Feb 2023 15:20:13 GMT
Last-Modified: Thu, 02 Feb 2023 14:01:04 GMT
Server: ECS (nyb/1D18)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Qz7jw_RLRzEJU0IZIMLM6v3lP4F5t7RmYOTVnxbR8fal_H0axF7f1A==
Age: 4750
cm.everesttech.net/cm/dd?d_uuid=47455325608926413370561935187524012288
54.229.62.148302 0 B URL HTTP/1.1 cm.everesttech.net/cm/dd?d_uuid=47455325608926413370561935187524012288
IP 54.229.62.148:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/dd?d_uuid=47455325608926413370561935187524012288 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 22:21:14 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9w3WgAAAL-48gNe; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 22:21:14 GMT; Path=/
everest_session_v2=Y9w3WgAAAL-48wNe; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://dpm.demdex.net/ibs:dpid=411&dpuuid=Y9w3WgAAAL-48gNe
Server: AMO-cookiemap/1.1
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash be1f25e16da7c6ea4ee916ee312ad5e8
e6b000527e0bd611a706fbb306bc998575ce7257
b6c001ccd1951e0df93f10bd7b50b76402b36e2695a7485d9f028e4f8d59eb79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6263
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:21:14 GMT
Last-Modified: Thu, 02 Feb 2023 20:36:52 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash be1f25e16da7c6ea4ee916ee312ad5e8
e6b000527e0bd611a706fbb306bc998575ce7257
b6c001ccd1951e0df93f10bd7b50b76402b36e2695a7485d9f028e4f8d59eb79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3942
Cache-Control: max-age=144198
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:21:14 GMT
Etag: "63dbb83a-117"
Expires: Sat, 04 Feb 2023 14:24:32 GMT
Last-Modified: Thu, 02 Feb 2023 13:18:50 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash be1f25e16da7c6ea4ee916ee312ad5e8
e6b000527e0bd611a706fbb306bc998575ce7257
b6c001ccd1951e0df93f10bd7b50b76402b36e2695a7485d9f028e4f8d59eb79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6263
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:21:14 GMT
Last-Modified: Thu, 02 Feb 2023 20:36:52 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
welcome.unibet.com/nu/pop/sportsbook/multisports/gambling-commission.png
104.18.25.188404 Not Found 9.8 kB URL HTTP/2 welcome.unibet.com/nu/pop/sportsbook/multisports/gambling-commission.png
IP 104.18.25.188:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash d347eb61c21cd647e531f4214b85f859
ab3d93a10747fcc28e3e2333cf3076ab6df41683
63a42154d2e46cb62803064d1a43432a9950ac98883c6e96747cc6bc8c30ae47
GET /nu/pop/sportsbook/multisports/gambling-commission.png HTTP/1.1
Host: welcome.unibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&bid=37950&campaignId=2799402&pid=68246908
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675376472434)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2023222221%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228773965472%7c1%22%7d%5d; btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: application/xml
x-ms-request-id: dc7bf900-201e-004b-2e54-37ee51000000
x-ms-version: 2014-02-14
access-control-allow-origin: *
cf-cache-status: HIT
age: 279
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936518d0f8b1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.bannerflow.com/resources/mga-logo-16e5f569-f45f-4c4f-a7ab-0a1f83c58415.svg
104.16.171.188200 OK 2.0 kB URL HTTP/2 cdn.bannerflow.com/resources/mga-logo-16e5f569-f45f-4c4f-a7ab-0a1f83c58415.svg
IP 104.16.171.188:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a6fafd3d488f05c8307a1ce63090e7c7
ed3c0360efd907a3b52765806904e34eba898b01
6e6ddc2ba748c0059251a49a22bd9644c5bddd4c5d55063b92c3d0439fc1e505
GET /resources/mga-logo-16e5f569-f45f-4c4f-a7ab-0a1f83c58415.svg HTTP/1.1
Host: cdn.bannerflow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:14 GMT
content-type: image/svg+xml
cache-control: public,max-age=604800
content-md5: FAAw5O0EvruykoHDQoRDMA==
last-modified: Fri, 27 Nov 2020 14:00:02 GMT
etag: W/"0x8D892DCBC6EB927"
x-ms-request-id: 0c05a17a-201e-0074-2dff-f626f2000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: HIT
age: 378
vary: Accept-Encoding
server: cloudflare
cf-ray: 793651942884b50f-OSL
content-encoding: br
X-Firefox-Spdy: h2
adbit.biz/js/show_ads.js
188.114.97.1200 OK 0 B IP 188.114.97.1:0
GET /js/show_ads.js HTTP/1.1
Host: adbit.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:09 GMT
content-type: application/javascript
cache-control: max-age=604800
cf-bgj: minify
cf-polished: origSize=13619
etag: W/"62b02fd0-3533"
expires: Mon, 06 Feb 2023 15:06:04 GMT
last-modified: Mon, 20 Jun 2022 08:29:04 GMT
cf-cache-status: HIT
age: 90783
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JgR%2B%2BiTWETiv27FQQx1lgYYvdlp%2FYnA%2BrWuc6W3pJ3SyAuDEudSmpXjyPjKDgYiDYGTpmr%2FlwZJM5oGDX0Q3ixiXIbJYtKeuV7pFoqEjmScJnbyKc7HZHBZs%2FjM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793651748eb30b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
script.crazyegg.com/pages/scripts/0012/9242.js?465382
104.19.148.8200 OK 0 B URL HTTP/2 script.crazyegg.com/pages/scripts/0012/9242.js?465382
IP 104.19.148.8:0
GET /pages/scripts/0012/9242.js?465382 HTTP/1.1
Host: script.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: text/javascript
access-control-allow-origin: *
access-control-expose-headers: CE-Version
ce-version: 11.5.22
cache-control: public, max-age=300, s-maxage=1209600
cf-bgj: minify
cf-polished: origSize=6088
last-modified: Thu, 02 Feb 2023 17:00:20 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 19253
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936518f1fe4b4f7-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
welcome.unibet.com/custom.js
104.18.25.188200 OK 0 B URL HTTP/2 welcome.unibet.com/custom.js
IP 104.18.25.188:0
GET /custom.js HTTP/1.1
Host: welcome.unibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&bid=37950&campaignId=2799402&pid=68246908
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675376472434)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2023222221%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228773965472%7c1%22%7d%5d; btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: application/javascript
content-md5: e/Aekt1V1fopj1X7y5r9MA==
last-modified: Tue, 29 Mar 2022 08:25:09 GMT
etag: W/"0x8DA115DA300B0C1"
x-ms-request-id: d013a120-f01e-003a-7703-03087a000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: HIT
age: 308918
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936518cef741c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
welcome.unibet.com/nu/pop/sportsbook/multisports/com-payments.svg
104.18.25.188200 OK 0 B URL HTTP/2 welcome.unibet.com/nu/pop/sportsbook/multisports/com-payments.svg
IP 104.18.25.188:0
GET /nu/pop/sportsbook/multisports/com-payments.svg HTTP/1.1
Host: welcome.unibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&bid=37950&campaignId=2799402&pid=68246908
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675376472434)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2023222221%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228773965472%7c1%22%7d%5d; btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: image/svg+xml
cache-control: public, max-age=900, immutable
content-md5: vwb7ospRft2xzGDtJvR3WA==
last-modified: Thu, 26 Jan 2023 12:30:18 GMT
etag: W/"0x8DAFF9915D02464"
x-ms-request-id: 9ee27f41-c01e-000e-3881-313bb2000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: HIT
age: 35445
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936518d1f941c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
script.crazyegg.com/pages/scripts/0012/9242.js
104.19.148.8200 OK 0 B URL HTTP/2 script.crazyegg.com/pages/scripts/0012/9242.js
IP 104.19.148.8:0
GET /pages/scripts/0012/9242.js HTTP/1.1
Host: script.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: text/javascript
access-control-allow-origin: *
access-control-expose-headers: CE-Version
ce-version: 11.5.22
cache-control: public, max-age=300, s-maxage=1209600
cf-bgj: minify
cf-polished: origSize=6088
last-modified: Thu, 02 Feb 2023 17:00:20 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 19253
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936518eefabb4f7-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery.min.js
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:09 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 19 Sep 2022 14:16:24 GMT
content-encoding: br
expires: Fri, 02 Feb 2024 22:21:09 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:09 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
content-encoding: br
expires: Fri, 02 Feb 2024 22:21:09 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.7.1/css/jetpack.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/11.7.1/css/jetpack.css
IP 192.0.77.37:0
GET /p/jetpack/11.7.1/css/jetpack.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:09 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 17:26:50 GMT
content-encoding: br
expires: Fri, 02 Feb 2024 22:21:09 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
welcome.unibet.com/nu/pop/sportsbook/multisports/read_json.js
104.18.25.188200 OK 0 B URL HTTP/2 welcome.unibet.com/nu/pop/sportsbook/multisports/read_json.js
IP 104.18.25.188:0
GET /nu/pop/sportsbook/multisports/read_json.js HTTP/1.1
Host: welcome.unibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&bid=37950&campaignId=2799402&pid=68246908
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675376472434)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2023222221%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228773965472%7c1%22%7d%5d; btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=900, immutable
content-md5: rGS1nJi75Qz2m2yY+jlYXA==
last-modified: Thu, 26 Jan 2023 12:30:23 GMT
etag: W/"0x8DAFF991898A021"
x-ms-request-id: e9253db8-601e-0075-8081-31792e000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: HIT
age: 35441
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936518cef721c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
welcome.unibet.com/widget/betslip/betslip.js
104.18.25.188200 OK 0 B URL HTTP/2 welcome.unibet.com/widget/betslip/betslip.js
IP 104.18.25.188:0
GET /widget/betslip/betslip.js HTTP/1.1
Host: welcome.unibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&bid=37950&campaignId=2799402&pid=68246908
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675376472434)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2023222221%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228773965472%7c1%22%7d%5d; btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=900, immutable
content-md5: V3DcYDl/+4NNEoCqe8670A==
last-modified: Tue, 15 Jan 2019 09:54:22 GMT
etag: W/"0x8D67ACF6D112CB5"
x-ms-request-id: 556a432d-701e-0079-3f03-03ee26000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: HIT
age: 308918
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936518dd8391c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
welcome.unibet.com/nu/pop/sportsbook/multisports/favicon.ico
104.18.25.188200 OK 0 B URL HTTP/2 welcome.unibet.com/nu/pop/sportsbook/multisports/favicon.ico
IP 104.18.25.188:0
GET /nu/pop/sportsbook/multisports/favicon.ico HTTP/1.1
Host: welcome.unibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&bid=37950&campaignId=2799402&pid=68246908
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675376472434)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2023222221%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228773965472%7c1%22%7d%5d; btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: image/x-icon
cache-control: public, max-age=900, immutable
content-md5: rS2fRBxmkqgGx7Qnuz5TbQ==
last-modified: Thu, 26 Jan 2023 12:30:17 GMT
etag: W/"0x8DAFF9914F4D898"
x-ms-request-id: e6735b96-c01e-0021-0381-313679000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: HIT
age: 35438
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936518ec8cf1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
welcome.unibet.com/nu/pop/sportsbook/multisports/app-store-ro.svg
104.18.25.188200 OK 0 B URL HTTP/2 welcome.unibet.com/nu/pop/sportsbook/multisports/app-store-ro.svg
IP 104.18.25.188:0
GET /nu/pop/sportsbook/multisports/app-store-ro.svg HTTP/1.1
Host: welcome.unibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&bid=37950&campaignId=2799402&pid=68246908
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675376472434)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2023222221%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228773965472%7c1%22%7d%5d; btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: image/svg+xml
cache-control: public, max-age=900, immutable
content-md5: epgiRapjJpA7DniTiF5C+w==
last-modified: Thu, 26 Jan 2023 12:30:22 GMT
etag: W/"0x8DAFF99183CF8FA"
x-ms-request-id: d4160c8c-201e-0016-7481-31e4d5000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: HIT
age: 35446
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936518cff801c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
welcome.unibet.com/nu/pop/sportsbook/multisports/utv-logo.svg
104.18.25.188200 OK 0 B URL HTTP/2 welcome.unibet.com/nu/pop/sportsbook/multisports/utv-logo.svg
IP 104.18.25.188:0
GET /nu/pop/sportsbook/multisports/utv-logo.svg HTTP/1.1
Host: welcome.unibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&bid=37950&campaignId=2799402&pid=68246908
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675376472434)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2023222221%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228773965472%7c1%22%7d%5d; btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: image/svg+xml
cache-control: public, max-age=900, immutable
content-md5: QazcDvviTF55mXL/M8kCWQ==
last-modified: Thu, 26 Jan 2023 12:30:18 GMT
etag: W/"0x8DAFF99157C1D3C"
x-ms-request-id: ec6073d8-501e-0051-6881-318f8e000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: HIT
age: 35447
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936518cff7e1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&bid=37950&campaignId=2799402&pid=68246908
104.18.25.188200 OK 0 B URL HTTP/2 welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&bid=37950&campaignId=2799402&pid=68246908
IP 104.18.25.188:0
GET /nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&bid=37950&campaignId=2799402&pid=68246908 HTTP/1.1
Host: welcome.unibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jennyvisits.com/
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675376472434)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2023222221%22%7d%5d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: text/html; charset=utf-8
cache-control: public, max-age=900, immutable
content-md5: djoKeCzytkLU3NSdQsOPbQ==
last-modified: Thu, 26 Jan 2023 12:30:17 GMT
x-ms-request-id: 328c12fe-601e-0038-6a54-37b6c2000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: MISS
vary: Accept-Encoding
set-cookie: btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6;max-age=2592000; domain=.unibet.com;path=/;secure;samesite=none;httponly
server: cloudflare
cf-ray: 7936518aad6f1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,400italic,700,600
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,400italic,700,600
IP 142.250.74.106:0
GET /css?family=Open+Sans:400,400italic,700,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 22:21:09 GMT
date: Thu, 02 Feb 2023 22:21:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/css/style.css
172.64.167.9200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/css/style.css
IP 172.64.167.9:0
GET /sb/notifications/software/us/ios/desk-new-big/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://naijawide.com
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:11 GMT
content-type: text/css
last-modified: Thu, 23 Sep 2021 12:16:53 GMT
etag: W/"614c7035-145e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rqrE1dSoKNFpQHNghArJwim%2FH%2B9fRFiGFg8KbrQ6J0PPTASXqkU%2BvxVs3pd0XvB7Sp%2FcroX9qDy82s0y3Z2wTDZC8BRgCF1Gkfay99IobcRo5dzkAlIvj6LWMKQ96Z%2BM0uH4W%2BiP2Vht"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793651821a4e23ab-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/css/dist/block-library/style.min.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/css/dist/block-library/style.min.css
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:09 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 11 Nov 2022 14:56:45 GMT
content-encoding: br
expires: Fri, 02 Feb 2024 22:21:09 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/wp-mediaelement.min.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:21:09 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
content-encoding: br
expires: Fri, 02 Feb 2024 22:21:09 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
welcome.unibet.com/nu/pop/sportsbook/multisports/icon-sports.svg
104.18.25.188200 OK 0 B URL HTTP/2 welcome.unibet.com/nu/pop/sportsbook/multisports/icon-sports.svg
IP 104.18.25.188:0
GET /nu/pop/sportsbook/multisports/icon-sports.svg HTTP/1.1
Host: welcome.unibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6&bid=37950&campaignId=2799402&pid=68246908
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675376472434)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2023222221%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228773965472%7c1%22%7d%5d; btag=127656177_BA1EF3FA2856400CB11E3BCDE51CC3B6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:13 GMT
content-type: image/svg+xml
cache-control: public, max-age=900, immutable
content-md5: Kch+tYuo05USS5JaESq1rA==
last-modified: Thu, 26 Jan 2023 12:30:21 GMT
etag: W/"0x8DAFF9917716257"
x-ms-request-id: 78c0b78e-401e-0000-7881-311202000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: HIT
age: 35446
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936518cff851c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
172.64.202.23200 OK 0 B URL HTTP/2 friendshipmale.com/sfp.js
IP 172.64.202.23:0
Analyzer Verdict Alert fortinet Malware
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:10 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 279cacef760df59eab416c2d1f20aebb
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Thu, 02 Feb 2023 22:21:09 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eIzs0b%2BAqL7gY3g9uhA5N%2FZay2N4LON7yCEssMbA0dwUBWaAs7B3h4uIiebKyM%2BDsAn4%2BheyZB%2BE4hcYyCnww7KZ54u%2BDYsJLvQQuNOHrv8h3FTkrp2SFDXu7kKzJjW229IyODw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7936517a4a3923dd-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
naijawide.com/font.woff2
69.89.20.142404 Not Found 0 B IP 69.89.20.142:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /font.woff2 HTTP/1.1
Host: naijawide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://naijawide.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cf-edge-cache: cache,platform=wordpress
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-powered-by: W3 Total Cache/2.2.12
link: <https://naijawide.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
referrer-policy: no-referrer-when-downgrade
content-type: text/html; charset=UTF-8
date: Thu, 02 Feb 2023 22:21:09 GMT
server: Apache
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/js/script.js
172.64.167.9200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/js/script.js
IP 172.64.167.9:0
GET /sb/notifications/software/us/ios/desk-new-big/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://naijawide.com
Connection: keep-alive
Referer: https://naijawide.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:11 GMT
content-type: application/javascript
last-modified: Wed, 17 Feb 2021 11:44:05 GMT
etag: W/"602d0185-183"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5xYWfqJa4I5xGj2phSqnqkB8JHzsWV6P2wMcJL0hEyJM6NBKTD8KnrLVIzRGbEsrOIiSQYVgQyn%2BfbIbz1f%2B1k0hV94jQviHVtXRBTzqMTmxdLksmO1MAaxS2RrlmOz%2Bawkg2CvSFAFP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793651820a3423ab-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.bannerflow.com/resources/18-plus-adbfd412-ffe0-4780-a5c3-1b540d6ceed3.svg
104.16.171.188200 OK 0 B URL HTTP/2 cdn.bannerflow.com/resources/18-plus-adbfd412-ffe0-4780-a5c3-1b540d6ceed3.svg
IP 104.16.171.188:0
GET /resources/18-plus-adbfd412-ffe0-4780-a5c3-1b540d6ceed3.svg HTTP/1.1
Host: cdn.bannerflow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://welcome.unibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:21:14 GMT
content-type: image/svg+xml
cache-control: public,max-age=604800
content-md5: DtBEzXf8HuXNecd90Rx/1w==
last-modified: Fri, 27 Nov 2020 14:00:01 GMT
etag: W/"0x8D892DCBC244A27"
x-ms-request-id: f9c36029-201e-0105-665e-a57399000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: HIT
age: 74
vary: Accept-Encoding
server: cloudflare
cf-ray: 793651943892b50f-OSL
content-encoding: br
X-Firefox-Spdy: h2