firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 31 Aug 2022 10:08:11 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EspooyPhpUIC7Gvl8Lj2CpghMQ64wG1jfmoHMFjfbxpWXm8f_p16OA==
Age: 2837
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 31 Aug 2022 02:27:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0D4Oen9CXbS1IHR5M5HP3hn0JNsuHR_A09G_yNBhKwsKLlLQzStEnA==
age: 30504
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 517693963cc46e7a35a054296d0edfd5
11dfcd7e118e5f8d31e664e56ac29c57f973b8b3
ece269e8b9be8a5839d75c1343823d68b96930c593c2e3e8d522999176ee3149
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECE269E8B9BE8A5839D75C1343823D68B96930C593C2E3E8D522999176EE3149"
Last-Modified: Mon, 29 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4499
Expires: Wed, 31 Aug 2022 12:10:27 GMT
Date: Wed, 31 Aug 2022 10:55:28 GMT
Connection: keep-alive
metastar.com.ng/
109.228.34.46301 Moved Permanently 0 B IP 109.228.34.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 31 Aug 2022 10:55:28 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
X-Redirect-By: WordPress
Location: https://metastar.com.ng/
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 10:55:29 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 31 Aug 2022 10:17:12 GMT
Cache-Control: max-age=3600
Expires: Wed, 31 Aug 2022 10:36:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Ogs61C8TYHg1GBxdHtsQmdMJyMsim6Adbv3j2CFHnAQL86Z8KeNF-Q==
Age: 2297
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 83be4ca2ebb87af44323dd073807bc9e
3ef0ca2b0c351c7d1eb1b7f4daeba6453a632fc6
1ba9c4dbdbd577bf443bc6499ab1edb2e0ea3b382f529fdc2d98021276a3158b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5221
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 10:55:29 GMT
Last-Modified: Wed, 31 Aug 2022 09:28:28 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/css/all.min.css?ver=6.0.2
104.17.24.14200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/css/all.min.css?ver=6.0.2
IP 104.17.24.14:0
File type ASCII text, with very long lines (59119)
Hash 14e1692fd4263ccfea0b84299bdbf1f5
7783020a9ced5f32c8d38205357c7d10798be1fd
8ff0cd2d1e7f0b6203a762fb9811256d4445a3ad0d97f07102e038ba0eb3db72
GET /ajax/libs/font-awesome/5.15.4/css/all.min.css?ver=6.0.2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://metastar.com.ng
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 10:55:29 GMT
content-type: text/css; charset=utf-8
content-length: 10462
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "613fa20b-28de"
last-modified: Mon, 13 Sep 2021 19:10:03 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 1875200
expires: Mon, 21 Aug 2023 10:55:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q3h6WQtUi9zHbZaEaCxSaVcD70P52jiokMM5gEBZC%2BzCIeiAlfF4aEakbBOaAOQyacW4Kjl9XpGDvY6NVX7Gy3qpjcP5b4TFOUTYT3bWi7VB5RkBECw1N96Dkaexa99IfQtIrp8U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74353bf2fbd50b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
metastar.com.ng/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
109.228.34.46200 OK 15 kB URL HTTP/2 metastar.com.ng/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 109.228.34.46:0
File type ASCII text, with very long lines (43771)
Hash bf35c103a20814c77700ce356e3bbd34
dfc3389b9ea5a5b250a8d3c78fc7b4ab778fe85f
7c203dc4d91160389a46a2d319d3a356ce816f97aa0ebe43d0a3a5eeb39c9ecc
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 15141
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Tue, 12 Jul 2022 18:46:32 GMT
etag: "15b64-5e3a01658d6f7-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/plugins/heroic-table-of-contents/dist/blocks.style.build.css?ver=1652985974
109.228.34.46200 OK 775 B URL HTTP/2 metastar.com.ng/wp-content/plugins/heroic-table-of-contents/dist/blocks.style.build.css?ver=1652985974
IP 109.228.34.46:0
File type ASCII text, with very long lines (2682)
Hash 06b67befea79b6629565bc70a6891ae9
7ce91a6d577e4cb7145d99addcfa0f01536d56d8
90fc57b52e0932a6bb7802ac345755b6df8bb56a4543348db866219884173fe9
GET /wp-content/plugins/heroic-table-of-contents/dist/blocks.style.build.css?ver=1652985974 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 775
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Thu, 19 May 2022 18:46:14 GMT
etag: "a7b-5df61c9d3b1cd-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/plugins/buttonizer-multifunctional-button/assets/legacy/frontend.css?v=070afde0274dc6039a8a8949d12a15cd&ver=6.0.2
109.228.34.46200 OK 1.2 kB URL HTTP/2 metastar.com.ng/wp-content/plugins/buttonizer-multifunctional-button/assets/legacy/frontend.css?v=070afde0274dc6039a8a8949d12a15cd&ver=6.0.2
IP 109.228.34.46:0
File type ASCII text, with very long lines (7116)
Hash df549da77df47f6173034c99620a39fa
f9576360cae8d937d081c240b0bddd3fd3e3e6bf
bdd42ae182df41730b5bea9c568e1d6c571eff0872d3955de34b4b29124f1296
GET /wp-content/plugins/buttonizer-multifunctional-button/assets/legacy/frontend.css?v=070afde0274dc6039a8a8949d12a15cd&ver=6.0.2 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 1213
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Tue, 23 Aug 2022 18:44:25 GMT
etag: "2043-5e6ecf4167200-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/plugins/notix-web-push-notifications/public/css/notix-public.css?ver=1.1.1
109.228.34.46200 OK 488 B URL HTTP/2 metastar.com.ng/wp-content/plugins/notix-web-push-notifications/public/css/notix-public.css?ver=1.1.1
IP 109.228.34.46:0
Hash b6aaf11dbbfb0c7ab74cb3b1f0bb9b59
becfbc07aae5e330987f808b2fcac3244bd0917e
bd3e64002df77361e8ce3572a8e9813fdde0f847ffba0e1916ee680c7a52c7c9
GET /wp-content/plugins/notix-web-push-notifications/public/css/notix-public.css?ver=1.1.1 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 488
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Sun, 24 Jul 2022 07:08:49 GMT
etag: "57b-5e487bd33283a-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/plugins/inline-tweet-sharer/inline-tweet-sharer.css?ver=2.5.3
109.228.34.46200 OK 325 B URL HTTP/2 metastar.com.ng/wp-content/plugins/inline-tweet-sharer/inline-tweet-sharer.css?ver=2.5.3
IP 109.228.34.46:0
File type ASCII text, with CRLF line terminators
Hash 0e633e9963d42c7ac7b4960bd84dd51b
7a2d829b9862dc02b078a38cc615ad2e0eb714ef
ca0bd3880a5be5d1526d112bc9f8a2b58572ff3750dbe53dec6781299e9e0bc1
GET /wp-content/plugins/inline-tweet-sharer/inline-tweet-sharer.css?ver=2.5.3 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 325
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Wed, 27 Jul 2022 14:20:38 GMT
etag: "35a-5e4ca1f0879ae-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/themes/jannah/assets/css/base.min.css?ver=5.0.7
109.228.34.46200 OK 11 kB URL HTTP/2 metastar.com.ng/wp-content/themes/jannah/assets/css/base.min.css?ver=5.0.7
IP 109.228.34.46:0
File type ASCII text, with very long lines (41392)
Hash 85e9554e90cc24195d37ff6d42e8e9c1
d8023a53283eb151661ab8737ae031d416491d83
36dc4c097b321ac8e62b096788ef0905649f01c4f4c423c0e05c0e4088336bc7
GET /wp-content/themes/jannah/assets/css/base.min.css?ver=5.0.7 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 10770
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Fri, 29 Apr 2022 06:16:13 GMT
etag: "a1b1-5ddc4faba184b-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/themes/jannah/assets/css/widgets.min.css?ver=5.0.7
109.228.34.46200 OK 12 kB URL HTTP/2 metastar.com.ng/wp-content/themes/jannah/assets/css/widgets.min.css?ver=5.0.7
IP 109.228.34.46:0
File type ASCII text, with very long lines (53843)
Hash 4059f624730bffb3cd6c1ea03f2e7861
ecd3e64831aa9342a8130edfee7fe6459d1e3d8c
0a28ffbc2791b45f74995d66d7f3dcd7dfd57ed7d2da4929726b373819f4d18b
GET /wp-content/themes/jannah/assets/css/widgets.min.css?ver=5.0.7 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 11858
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Fri, 29 Apr 2022 06:16:13 GMT
etag: "d254-5ddc4faba184b-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0982b9e784a0a990d6318c92e33860a1
764377c393017e86d98a696da455509cba1806ac
27a19ec4ca0a052faface8ad45dca4d9a4a739c658d10f0e693aea065bdc607f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 10:55:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
metastar.com.ng/wp-content/themes/jannah/assets/css/style.min.css?ver=5.0.7
109.228.34.46200 OK 39 kB URL HTTP/2 metastar.com.ng/wp-content/themes/jannah/assets/css/style.min.css?ver=5.0.7
IP 109.228.34.46:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 05376adc96dab69942464ceb7fcdae31
5a9c6ecb02e60f16f07935aec4e1dc23a895dff9
8df7bed11323e8ef4a1e9d3b64f4c52c806b2ce9819954b095bb8b235aa63e67
GET /wp-content/themes/jannah/assets/css/style.min.css?ver=5.0.7 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 39059
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Fri, 29 Apr 2022 06:16:13 GMT
etag: "2a68e-5ddc4faba184b-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/themes/jannah/assets/css/helpers.min.css?ver=5.0.7
109.228.34.46200 OK 4.1 kB URL HTTP/2 metastar.com.ng/wp-content/themes/jannah/assets/css/helpers.min.css?ver=5.0.7
IP 109.228.34.46:0
File type ASCII text, with very long lines (15146)
Hash d05cc4535375054c13b2b22f21a0cb76
3d0e9fe6dc9ecef3133565e6e8819c69b77c2bf4
cea2546bbd851a24c9f6c3c6f9d4acef70d47cfa119131defd6f183a7a9b8bf6
GET /wp-content/themes/jannah/assets/css/helpers.min.css?ver=5.0.7 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 4055
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Fri, 29 Apr 2022 06:16:13 GMT
etag: "3b2b-5ddc4faba184b-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0982b9e784a0a990d6318c92e33860a1
764377c393017e86d98a696da455509cba1806ac
27a19ec4ca0a052faface8ad45dca4d9a4a739c658d10f0e693aea065bdc607f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 10:55:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
metastar.com.ng/wp-content/themes/jannah/assets/ilightbox/dark-skin/skin.css?ver=5.0.7
109.228.34.46200 OK 2.7 kB URL HTTP/2 metastar.com.ng/wp-content/themes/jannah/assets/ilightbox/dark-skin/skin.css?ver=5.0.7
IP 109.228.34.46:0
File type ASCII text, with very long lines (4936), with CRLF line terminators
Hash d5106e38fbd7b0004a410553af3081e4
7e1b00c154d11fa292b3023b0ccf4fb8ec75db16
c084f729b73b56190e6b77f4509a49d46b441ba53250d66fd6e3810c27058098
GET /wp-content/themes/jannah/assets/ilightbox/dark-skin/skin.css?ver=5.0.7 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 2680
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Fri, 29 Apr 2022 06:16:13 GMT
etag: "2fc4-5ddc4fabaa4ec-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/themes/jannah/assets/css/fontawesome.css?ver=5.0.7
109.228.34.46200 OK 14 kB URL HTTP/2 metastar.com.ng/wp-content/themes/jannah/assets/css/fontawesome.css?ver=5.0.7
IP 109.228.34.46:0
File type ASCII text, with very long lines (58661)
Hash b822e77b71f8faf30ba6e109a419f7b3
708779d6c322a0126493574a8a21b25075f3effe
904c5cd97a3e348b158aa37159a5c19601254f57cf187bb65251bde2089eea17
GET /wp-content/themes/jannah/assets/css/fontawesome.css?ver=5.0.7 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 14341
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Fri, 29 Apr 2022 06:16:13 GMT
etag: "e526-5ddc4faba184b-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/plugins/fasthosts-assistant/js/cookies.js?ver=1650998668
109.228.34.46200 OK 459 B URL HTTP/2 metastar.com.ng/wp-content/plugins/fasthosts-assistant/js/cookies.js?ver=1650998668
IP 109.228.34.46:0
Hash 111f43b17c4cc18e824bce5f73d84dcc
44b410a1fa614dccf1edc7ac25e42317ac14f96a
6955775c4262ad5959a33909d1a3281bf7247fbd3251d1fcf492e8af1a7a418e
GET /wp-content/plugins/fasthosts-assistant/js/cookies.js?ver=1650998668 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 459
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Tue, 26 Apr 2022 18:44:28 GMT
etag: "39c-5dd9315298fa3-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.8.2
109.228.34.46200 OK 3.6 kB URL HTTP/2 metastar.com.ng/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.8.2
IP 109.228.34.46:0
File type ASCII text, with very long lines (1577)
Hash 9e1370ab315a89cf4e927de54f98644c
5cce4a5194da26c0298aa968d5d02cf787e5e581
ba043db569a269062a1d4911ee9a301df70c55a36a19ab7f3cbbb9153fed637a
GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.8.2 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3555
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Sat, 27 Aug 2022 06:44:24 GMT
etag: "2e7a-5e7335c79827c-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
metastar.com.ng/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
109.228.34.46200 OK 36 kB URL HTTP/2 metastar.com.ng/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 109.228.34.46:0
File type ASCII text, with very long lines (65447)
Hash 19794544ea8a95a7f373243810e83876
ddc367f688e43f1fb864933be9ba4a425d98b146
e02d14430d46b20d28fa1a666b5b31996c2afe85f58e933d8d6acd473cc4957e
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 36108
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Tue, 26 Apr 2022 18:44:12 GMT
etag: "15db1-5dd93143c4f16-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-9VZ13PC6P3
142.250.74.72200 OK 65 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-9VZ13PC6P3
IP 142.250.74.72:0
File type ASCII text, with very long lines (5376)
Hash 2461346da9b8e15a7cd9a692f33c8d89
dadcb4d5db9f44057186354eca5b23de63c259ce
fe2a88eba270d8e208f7d427d9c2acff86e3b9583ea16c3f397b0f01844eb944
GET /gtag/js?id=G-9VZ13PC6P3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 31 Aug 2022 10:55:29 GMT
expires: Wed, 31 Aug 2022 10:55:29 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 64861
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
metastar.com.ng/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
109.228.34.46200 OK 4.6 kB URL HTTP/2 metastar.com.ng/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 109.228.34.46:0
File type ASCII text, with very long lines (11126)
Hash 7cec71a53f4e94ce6da66a0fd94b9e5c
ac8f00b06df2956b97202b24ce8d818934283b5b
9bdd49aa215000ec53e722aa93cbe0e30f509bd1430ac5b5b509bf9b78a78d31
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 4563
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Tue, 26 Apr 2022 18:44:12 GMT
etag: "2bd8-5dd93143c3f76-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/plugins/notix-web-push-notifications/public/js/notix-public.js?ver=1.1.1
109.228.34.46200 OK 486 B URL HTTP/2 metastar.com.ng/wp-content/plugins/notix-web-push-notifications/public/js/notix-public.js?ver=1.1.1
IP 109.228.34.46:0
Hash 16c2dcbeddd0252881e7bdf15a03320a
433f28af9621a42efa96beced8ea0cfc0744cd67
9ecab41278d32aceab736e7bd4507aadae02599acf4f4fb678646ffa87fca82c
GET /wp-content/plugins/notix-web-push-notifications/public/js/notix-public.js?ver=1.1.1 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 486
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Sun, 24 Jul 2022 07:08:49 GMT
etag: "346-5e487bd33283a-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/plugins/inline-tweet-sharer/inline-tweet-sharer.js?ver=2.5.3
109.228.34.46200 OK 252 B URL HTTP/2 metastar.com.ng/wp-content/plugins/inline-tweet-sharer/inline-tweet-sharer.js?ver=2.5.3
IP 109.228.34.46:0
File type ASCII text, with CRLF line terminators
Hash 31fa1f39dec454b168ad00c2b40588ca
e8f3ae35e58ca44e581fedc45a2e41892937b1ec
8b24d052766bb6d33b369ae510603babf05e6cdde8a09d8e6653e9b140d3c2a8
GET /wp-content/plugins/inline-tweet-sharer/inline-tweet-sharer.js?ver=2.5.3 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 252
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Wed, 27 Jul 2022 14:20:38 GMT
etag: "15d-5e4ca1f0879ae-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/uploads/2022/04/cropped-InShot_20220427_071426894-2.jpg
109.228.34.46200 OK 33 kB URL HTTP/2 metastar.com.ng/wp-content/uploads/2022/04/cropped-InShot_20220427_071426894-2.jpg
IP 109.228.34.46:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 512x512, components 3\012- data
Hash c8e28c2c1f99be08c0ab207a544bb760
78ce7da3d65d906186d8608df676d28ccd13318f
e7dec6c46df8374fe3df729098eba6090fef67d6e2942fc6fa8606c81bc63c72
GET /wp-content/uploads/2022/04/cropped-InShot_20220427_071426894-2.jpg HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 33021
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Wed, 27 Apr 2022 06:21:11 GMT
etag: "80fd-5dd9cd0d19a28"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/uploads/2022/08/Screenshot_20220813-142650-390x220.jpg
109.228.34.46200 OK 19 kB URL HTTP/2 metastar.com.ng/wp-content/uploads/2022/08/Screenshot_20220813-142650-390x220.jpg
IP 109.228.34.46:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 390x220, components 3\012- data
Hash 092f6610aac2f327660f2707247a8670
1ca192f23b3f6b29124b098543a393cb8f20ddc0
3b4df09985ca7dd0c69a3a6a99abd1bb3f3d047667864530f8f3958546f72642
GET /wp-content/uploads/2022/08/Screenshot_20220813-142650-390x220.jpg HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 18673
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Sat, 13 Aug 2022 13:27:26 GMT
etag: "48f1-5e61f5c15098d"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/plugins/heroic-table-of-contents/dist/script.min.js?ver=1652985974
109.228.34.46200 OK 412 B URL HTTP/2 metastar.com.ng/wp-content/plugins/heroic-table-of-contents/dist/script.min.js?ver=1652985974
IP 109.228.34.46:0
File type ASCII text, with very long lines (813), with no line terminators
Hash b3c607aaa01908054f06d29a015b190a
d886ca4f89da608fbc1450b19c18db04a3bd3804
ff54458f17cc3b5b06eb42388117e1e0b5482444129a76a173a5c904bf7c08a7
GET /wp-content/plugins/heroic-table-of-contents/dist/script.min.js?ver=1652985974 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 412
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Thu, 19 May 2022 18:46:14 GMT
etag: "32d-5df61c9d3b1cd-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/themes/jannah/assets/js/scripts.min.js?ver=5.0.7
109.228.34.46200 OK 7.9 kB URL HTTP/2 metastar.com.ng/wp-content/themes/jannah/assets/js/scripts.min.js?ver=5.0.7
IP 109.228.34.46:0
File type HTML document, ASCII text, with very long lines (22310)
Hash a58a4c360ffdce16d54b3ad5be1ef30c
e4b1d85a360f5c49dff781ae3a4bdcbd73545694
d4cd37c429bab6b59c99116172629f38ad08618870c76d502918e041eba9c352
GET /wp-content/themes/jannah/assets/js/scripts.min.js?ver=5.0.7 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 7914
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Fri, 29 Apr 2022 06:16:13 GMT
etag: "5727-5ddc4fabc98f1-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/themes/jannah/assets/ilightbox/lightbox.js?ver=5.0.7
109.228.34.46200 OK 30 kB URL HTTP/2 metastar.com.ng/wp-content/themes/jannah/assets/ilightbox/lightbox.js?ver=5.0.7
IP 109.228.34.46:0
File type ASCII text, with very long lines (2026)
Hash 9ad9144e3c52316f7eeb54aa7d6a5cb4
bf329e40d28f612d9e1880e26e95cdf23e1b8b97
0aa421b83aeda93c8ec5c0635f0af560a34ddd90afae6a2742586deb36c890d9
GET /wp-content/themes/jannah/assets/ilightbox/lightbox.js?ver=5.0.7 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 29527
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Fri, 29 Apr 2022 06:16:13 GMT
etag: "13dd4-5ddc4fabbbe2f-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/themes/jannah/assets/js/desktop.min.js?ver=5.0.7
109.228.34.46200 OK 6.1 kB URL HTTP/2 metastar.com.ng/wp-content/themes/jannah/assets/js/desktop.min.js?ver=5.0.7
IP 109.228.34.46:0
File type ASCII text, with very long lines (16791)
Hash 9f98726b69f20a18cc2998b791d7c033
e499e0b45a687930693ec77905199fb990eb654c
34bdc81c99282d90585ef9e6b2f767be3482fd071fd78799462c77a36a29faff
GET /wp-content/themes/jannah/assets/js/desktop.min.js?ver=5.0.7 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 6076
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Fri, 29 Apr 2022 06:16:13 GMT
etag: "4198-5ddc4fabc98f1-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/themes/jannah/assets/js/live-search.js?ver=5.0.7
109.228.34.46200 OK 5.4 kB URL HTTP/2 metastar.com.ng/wp-content/themes/jannah/assets/js/live-search.js?ver=5.0.7
IP 109.228.34.46:0
File type ASCII text, with very long lines (13532)
Hash 1699039ede230ec07927eb3e760806ab
e09f4e194bc336ca96d3a69e2e5771524e71e01c
246312406e00d8d081004748f0fae03d3e40b24aec61c8bd0885a8352efb5f43
GET /wp-content/themes/jannah/assets/js/live-search.js?ver=5.0.7 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 5350
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Fri, 29 Apr 2022 06:16:13 GMT
etag: "3909-5ddc4fabc98f1-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
metastar.com.ng/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
109.228.34.46200 OK 5.8 kB URL HTTP/2 metastar.com.ng/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 109.228.34.46:0
File type ASCII text, with very long lines (15660)
Hash 5dd90c13d1cb6624cba0f3bc7828c4bb
734a400e956fed5389a6e20fabf89327710cf6eb
e573bfe941e733fe9f4580cd6fd65468cf7398b6403488229dbbd7687c42f55c
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 5792
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Wed, 25 May 2022 06:46:23 GMT
etag: "48b9-5dfd06e8272f3-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0982b9e784a0a990d6318c92e33860a1
764377c393017e86d98a696da455509cba1806ac
27a19ec4ca0a052faface8ad45dca4d9a4a739c658d10f0e693aea065bdc607f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 10:55:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c5cc856b014f874ed0716b1b22fce4f7
0b21bf3134264e23eb4933c2fd887bad1bd44e65
bf1a7dc300303c456a4a819a6a7d1f3269e01a570213b8cb8e04f321b79272c0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF1A7DC300303C456A4A819A6A7D1F3269E01A570213B8CB8E04F321B79272C0"
Last-Modified: Mon, 29 Aug 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1675
Expires: Wed, 31 Aug 2022 11:23:25 GMT
Date: Wed, 31 Aug 2022 10:55:30 GMT
Connection: keep-alive
push.services.mozilla.com/
52.89.255.30101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.255.30:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Oo/xm2S4yVwAH7dKQvqBIQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9LTMQlm3w/TkvzBboytD7NYImiQ=
notix.io/ent/current/enot.min.js
139.45.240.92200 OK 21 kB URL HTTP/2 notix.io/ent/current/enot.min.js
IP 139.45.240.92:0
Hash 22ace9127bfd35232dc177aaf1bfc035
b0a7338a9df82b96f46891710f72e574adefce88
2c0c7b89a846cefcecb9dd1eea2101cbd9c9bf399c6cfee627159348d3e687dc
GET /ent/current/enot.min.js HTTP/1.1
Host: notix.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 10:55:18 GMT
content-type: application/javascript
last-modified: Thu, 25 Aug 2022 14:56:15 GMT
etag: W/"63078d8f-10f41"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
notix.io/event
139.45.240.92200 OK 0 B IP 139.45.240.92:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /event HTTP/1.1
Host: notix.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://metastar.com.ng/
Origin: https://metastar.com.ng
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 10:55:19 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://metastar.com.ng
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9bf505b170dd24209613162e9145e948
ca2ffaace88d2d0df0d5e8b784f8f1a531672b05
d9fe6c81743fbb2a654f48b585857a029592cfef4ba3a14b4a1647677327f6c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9FE6C81743FBB2A654F48B585857A029592CFEF4BA3A14B4A1647677327F6C2"
Last-Modified: Wed, 31 Aug 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11901
Expires: Wed, 31 Aug 2022 14:13:51 GMT
Date: Wed, 31 Aug 2022 10:55:30 GMT
Connection: keep-alive
notix.io/event
139.45.240.92200 OK 0 B IP 139.45.240.92:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /event HTTP/1.1
Host: notix.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://metastar.com.ng/
Origin: https://metastar.com.ng
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 10:55:19 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://metastar.com.ng
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2
notix.io/event
139.45.240.92200 OK 0 B IP 139.45.240.92:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /event HTTP/1.1
Host: notix.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://metastar.com.ng/
Origin: https://metastar.com.ng
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 10:55:19 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://metastar.com.ng
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2
notix.io/event
139.45.240.92200 OK 15 B IP 139.45.240.92:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 28ec1eee5f4049e3c4f2135069c1d2c8
3505519507ca1c2a089c46e100b80408ca278421
edc48cd3b0bc4fa7ba23aad40b8508a17d370ca38be174bae2a2f64634e65a2b
POST /event HTTP/1.1
Host: notix.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 63
Origin: https://metastar.com.ng
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 10:55:19 GMT
content-type: application/json; charset=utf-8
content-length: 15
access-control-allow-origin: https://metastar.com.ng
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9bf505b170dd24209613162e9145e948
ca2ffaace88d2d0df0d5e8b784f8f1a531672b05
d9fe6c81743fbb2a654f48b585857a029592cfef4ba3a14b4a1647677327f6c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9FE6C81743FBB2A654F48B585857A029592CFEF4BA3A14B4A1647677327F6C2"
Last-Modified: Wed, 31 Aug 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21589
Expires: Wed, 31 Aug 2022 16:55:19 GMT
Date: Wed, 31 Aug 2022 10:55:30 GMT
Connection: keep-alive
notix.io/event
139.45.240.92200 OK 15 B IP 139.45.240.92:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 28ec1eee5f4049e3c4f2135069c1d2c8
3505519507ca1c2a089c46e100b80408ca278421
edc48cd3b0bc4fa7ba23aad40b8508a17d370ca38be174bae2a2f64634e65a2b
POST /event HTTP/1.1
Host: notix.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1850
Origin: https://metastar.com.ng
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 10:55:19 GMT
content-type: application/json; charset=utf-8
content-length: 15
access-control-allow-origin: https://metastar.com.ng
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
notix.io/event
139.45.240.92200 OK 15 B IP 139.45.240.92:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 28ec1eee5f4049e3c4f2135069c1d2c8
3505519507ca1c2a089c46e100b80408ca278421
edc48cd3b0bc4fa7ba23aad40b8508a17d370ca38be174bae2a2f64634e65a2b
POST /event HTTP/1.1
Host: notix.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 79
Origin: https://metastar.com.ng
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 10:55:19 GMT
content-type: application/json; charset=utf-8
content-length: 15
access-control-allow-origin: https://metastar.com.ng
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
antibioticborough.com/72/a5/a9/72a5a9ede3409388de60621449c4f7d6.js
192.243.59.12200 OK 20 kB URL HTTP/1.1 antibioticborough.com/72/a5/a9/72a5a9ede3409388de60621449c4f7d6.js
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (59383), with no line terminators
Hash 6e7e3e05d6a958666e1cb5208425f0de
6748df7268a9e1273e7b1e7181f90876ce444102
f5b041f7fa8ab1c62b282af5c791c266245470960bd4663c583c2c6337463801
Analyzer Verdict Alert quad9 Sinkholed
GET /72/a5/a9/72a5a9ede3409388de60621449c4f7d6.js HTTP/1.1
Host: antibioticborough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Wed, 31 Aug 2022 10:55:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 25c335dea7a07e673ca31925f88f2f4b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
antibioticborough.com/9d/f6/80/9df680c07a575f24f371515fa9060086.js
192.243.59.12200 OK 13 kB URL HTTP/1.1 antibioticborough.com/9d/f6/80/9df680c07a575f24f371515fa9060086.js
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37154), with no line terminators
Hash 0b00ea99d0b332a29c53791d175b0b28
4ee307cd0f8a458ee6e6c5957bbca7b7c1de9015
61337a499058f468076dd8a672e5be97560548b91b26de55b3206e6a21941d2e
Analyzer Verdict Alert quad9 Sinkholed
GET /9d/f6/80/9df680c07a575f24f371515fa9060086.js HTTP/1.1
Host: antibioticborough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Wed, 31 Aug 2022 10:55:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 10634b0b69733d823db2e1d37f42187c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
metastar.com.ng/wp-content/themes/jannah/assets/fonts/tielabs-fonticon/tielabs-fonticon.woff
109.228.34.46200 OK 40 kB URL HTTP/2 metastar.com.ng/wp-content/themes/jannah/assets/fonts/tielabs-fonticon/tielabs-fonticon.woff
IP 109.228.34.46:0
File type Web Open Font Format, TrueType, length 40536, version 2.0\012- data
Hash 9773facce663de3a1554b64583ae667c
f77938c8eb3bf18fc89fdfdf6653aaf2a6ea2a8e
82649ad7d4ec9c61f1e525b2dade75153ffb03610b88d22e1ba3ba98fd55de81
GET /wp-content/themes/jannah/assets/fonts/tielabs-fonticon/tielabs-fonticon.woff HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://metastar.com.ng/wp-content/themes/jannah/assets/css/helpers.min.css?ver=5.0.7
Cookie: _ga_9VZ13PC6P3=GS1.1.1661943330.1.0.1661943330.0.0.0; _ga=GA1.1.1776098502.1661943330; _ga_K9TKTHX7EL=GS1.1.1661943330.1.0.1661943330.0.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff
content-length: 40536
date: Wed, 31 Aug 2022 10:55:30 GMT
server: Apache
last-modified: Fri, 29 Apr 2022 06:16:13 GMT
etag: "9e58-5ddc4faba56cc"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:30 GMT
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash da3a77ff935180689ca472846c2da89b
8186aed8ca2e76090eb7795a68c31c499ad5a98c
a5bc7049e45cd638904a9a7dd6cc9a1fc8040440148ef1656f54360f0ab28e80
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "A5BC7049E45CD638904A9A7DD6CC9A1FC8040440148EF1656F54360F0AB28E80"
Last-Modified: Sun, 28 Aug 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20548
Expires: Wed, 31 Aug 2022 16:37:58 GMT
Date: Wed, 31 Aug 2022 10:55:30 GMT
Connection: keep-alive
region1.google-analytics.com/g/collect?v=2&tid=G-9VZ13PC6P3>m=2oe8t0&_p=700277566&gdid=dZGIzZG&cid=1776098502.1661943330&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1661943330&sct=1&seg=0&dl=https%3A%2F%2Fmetastar.com.ng%2F&dt=MetaStar%20Tech-Jolly%20Arena&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-9VZ13PC6P3>m=2oe8t0&_p=700277566&gdid=dZGIzZG&cid=1776098502.1661943330&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1661943330&sct=1&seg=0&dl=https%3A%2F%2Fmetastar.com.ng%2F&dt=MetaStar%20Tech-Jolly%20Arena&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-9VZ13PC6P3>m=2oe8t0&_p=700277566&gdid=dZGIzZG&cid=1776098502.1661943330&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1661943330&sct=1&seg=0&dl=https%3A%2F%2Fmetastar.com.ng%2F&dt=MetaStar%20Tech-Jolly%20Arena&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://metastar.com.ng
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://metastar.com.ng
date: Wed, 31 Aug 2022 10:55:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash a95e91498d7dcaa762948aee96c33fa6
0e03197b344bd8d4210ed9e54965cc1b62de3b34
2da87d7b314c5ab2b6b13be3ae6fd1207ebc6b0815dd8da7dd09bbf0cc7763da
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=95586
Date: Wed, 31 Aug 2022 10:55:30 GMT
Etag: "630e02fa-1d7"
Expires: Thu, 01 Sep 2022 13:28:36 GMT
Last-Modified: Tue, 30 Aug 2022 12:30:50 GMT
Server: ECS (nyb/1D34)
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ZMAeszSP_dqqiv-RvDRHEkmnnMyvHYP-jkd5tKodVEA931t7ukJAgg==
Age: 3466
simplewebanalysis.com/stats
18.192.162.188200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.192.162.188:0
File type ASCII text, with no line terminators
Hash 8e58e86fd9c2775ea9bc23d6da48c821
de190b527a0757c725ba033f90b3f9f9a63f4fa7
6399580acc9a211c5a9f73474fac4841e2fbe45b79a03ed8c2af96314a20ee65
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://metastar.com.ng
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 10:55:30 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://metastar.com.ng
access-control-allow-credentials: true
set-cookie: uid_id2=79554b23-d20f-49e3-9188-e0f9a64f5c3e:3:1; expires=Sat, 28 Aug 2032 10:55:30 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash a95e91498d7dcaa762948aee96c33fa6
0e03197b344bd8d4210ed9e54965cc1b62de3b34
2da87d7b314c5ab2b6b13be3ae6fd1207ebc6b0815dd8da7dd09bbf0cc7763da
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 31 Aug 2022 10:55:30 GMT
Last-Modified: Wed, 31 Aug 2022 09:16:07 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: iPoMZz5f5qWdxRTIffZDD0IJv4ofugpf9A3rF0JAO5DEhlO53Pc2kg==
Age: 5963
metastar.com.ng/wp-content/themes/jannah/assets/fonts/fontawesome/fa-brands-400.woff2
109.228.34.46200 OK 77 kB URL HTTP/2 metastar.com.ng/wp-content/themes/jannah/assets/fonts/fontawesome/fa-brands-400.woff2
IP 109.228.34.46:0
File type Web Open Font Format (Version 2), TrueType, length 76612, version 331.524\012- data
Hash a06da7f0950f9dd366fc9db9d56d618a
509988477da79c146cb93fb728405f18e923c2de
5d9190292acdd48ba0fc35080f7e7448f3cdf0d79199a4d23f0f49b5341fdf29
GET /wp-content/themes/jannah/assets/fonts/fontawesome/fa-brands-400.woff2 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://metastar.com.ng/wp-content/themes/jannah/assets/css/fontawesome.css?ver=5.0.7
Cookie: _ga_9VZ13PC6P3=GS1.1.1661943330.1.0.1661943330.0.0.0; _ga=GA1.1.1776098502.1661943330; _ga_K9TKTHX7EL=GS1.1.1661943330.1.0.1661943330.0.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-length: 76612
date: Wed, 31 Aug 2022 10:55:30 GMT
server: Apache
last-modified: Fri, 29 Apr 2022 06:16:13 GMT
etag: "12b44-5ddc4faba472b"
accept-ranges: bytes
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
18.192.162.188200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.192.162.188:0
File type ASCII text, with no line terminators
Hash e31ce2d693481d97231860caec05f640
da7ea834e20c602c12a172b88c296b2fd894076d
63df0cc8e3cc95882b450f5e37ffe630f252b41d4ad4e425a89c514bd40041eb
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://metastar.com.ng
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 10:55:30 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://metastar.com.ng
access-control-allow-credentials: true
set-cookie: uid_id2=4fa19bb5-f459-45e4-b0e9-a94fb1831dd9:3:1; expires=Sat, 28 Aug 2032 10:55:30 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/uploads/2022/08/Screenshot_20220812-205557-390x220.jpg
109.228.34.46200 OK 18 kB URL HTTP/2 metastar.com.ng/wp-content/uploads/2022/08/Screenshot_20220812-205557-390x220.jpg
IP 109.228.34.46:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 390x220, components 3\012- data
Hash 97399237c116431c972966472298aa06
cc8f1e9711dd37f3d9500ef814d07cc2b7dae2fb
acbce9111e5424b061b3605c1bb787f25e2501f10745d6e8b60f035e3e5b6502
GET /wp-content/uploads/2022/08/Screenshot_20220812-205557-390x220.jpg HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Cookie: _ga_9VZ13PC6P3=GS1.1.1661943330.1.0.1661943330.0.0.0; _ga=GA1.1.1776098502.1661943330; _ga_K9TKTHX7EL=GS1.1.1661943330.1.0.1661943330.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 17669
date: Wed, 31 Aug 2022 10:55:30 GMT
server: Apache
last-modified: Fri, 12 Aug 2022 19:57:12 GMT
etag: "4505-5e610b01dced1"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:30 GMT
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/uploads/2022/05/UCScreenshot20220524013316-390x220.jpg
109.228.34.46200 OK 23 kB URL HTTP/2 metastar.com.ng/wp-content/uploads/2022/05/UCScreenshot20220524013316-390x220.jpg
IP 109.228.34.46:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 390x220, components 3\012- data
Hash 77cace52d02780c44e5a90e25e228479
9ced8d53f7065b93f9619021d4c10f829074d33e
76e1357d2007c5099dbebf8d8268cb84fe4d49e42d6c28e26a5da5aa41105f10
GET /wp-content/uploads/2022/05/UCScreenshot20220524013316-390x220.jpg HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Cookie: _ga_9VZ13PC6P3=GS1.1.1661943330.1.0.1661943330.0.0.0; _ga=GA1.1.1776098502.1661943330; _ga_K9TKTHX7EL=GS1.1.1661943330.1.0.1661943330.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 23001
date: Wed, 31 Aug 2022 10:55:30 GMT
server: Apache
last-modified: Tue, 24 May 2022 05:32:25 GMT
etag: "59d9-5dfbb481b5ed6"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:30 GMT
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/uploads/2022/08/Screenshot_20220831-095825-390x220.jpg
109.228.34.46200 OK 21 kB URL HTTP/2 metastar.com.ng/wp-content/uploads/2022/08/Screenshot_20220831-095825-390x220.jpg
IP 109.228.34.46:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 390x220, components 3\012- data
Hash e7146e137c3d99fec10fa27c38a9e075
081303eb4dfb7dff11e33706e68b075ceff4dcec
fa7e24eaaffdd6ea4d27ed21a92c200388d8b29e0bf9d4bce662d651b16318cb
GET /wp-content/uploads/2022/08/Screenshot_20220831-095825-390x220.jpg HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Cookie: _ga_9VZ13PC6P3=GS1.1.1661943330.1.0.1661943330.0.0.0; _ga=GA1.1.1776098502.1661943330; _ga_K9TKTHX7EL=GS1.1.1661943330.1.0.1661943330.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 21147
date: Wed, 31 Aug 2022 10:55:30 GMT
server: Apache
last-modified: Wed, 31 Aug 2022 09:04:03 GMT
etag: "529b-5e785c746f03e"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:30 GMT
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/plugins/buttonizer-multifunctional-button/assets/legacy/frontend.min.js?v=070afde0274dc6039a8a8949d12a15cd&ver=6.0.2
109.228.34.46200 OK 85 kB URL HTTP/2 metastar.com.ng/wp-content/plugins/buttonizer-multifunctional-button/assets/legacy/frontend.min.js?v=070afde0274dc6039a8a8949d12a15cd&ver=6.0.2
IP 109.228.34.46:0
Hash c03a72f1ccb98ff1e9e83ed610cf5ff5
68da3ad5db7e998f0ecac1d3e1b0b4e98bdd6d57
eadb67eea5ea3160af6c0a89675542e846f42fbc1b277f372194670bd23e5a8d
GET /wp-content/plugins/buttonizer-multifunctional-button/assets/legacy/frontend.min.js?v=070afde0274dc6039a8a8949d12a15cd&ver=6.0.2 HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
last-modified: Tue, 23 Aug 2022 18:44:25 GMT
etag: "4d71d-5e6ecf4167200-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:29 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash da3a77ff935180689ca472846c2da89b
8186aed8ca2e76090eb7795a68c31c499ad5a98c
a5bc7049e45cd638904a9a7dd6cc9a1fc8040440148ef1656f54360f0ab28e80
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "A5BC7049E45CD638904A9A7DD6CC9A1FC8040440148EF1656F54360F0AB28E80"
Last-Modified: Sun, 28 Aug 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20547
Expires: Wed, 31 Aug 2022 16:37:58 GMT
Date: Wed, 31 Aug 2022 10:55:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f0d01a647b6735857bd9232ca0852d21
7c00238b9022a013aaf100c7fc4c45911e78d358
5813452c3d297c4255397fedbb133f573629b0305f27863d65da6ddf8d42fff9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5813452C3D297C4255397FEDBB133F573629B0305F27863D65DA6DDF8D42FFF9"
Last-Modified: Wed, 31 Aug 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1915
Expires: Wed, 31 Aug 2022 11:27:26 GMT
Date: Wed, 31 Aug 2022 10:55:31 GMT
Connection: keep-alive
metastar.com.ng/wp-content/uploads/2022/04/cropped-InShot_20220427_192952186-1-192x192.jpg
109.228.34.46200 OK 9.7 kB URL HTTP/2 metastar.com.ng/wp-content/uploads/2022/04/cropped-InShot_20220427_192952186-1-192x192.jpg
IP 109.228.34.46:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 192x192, components 3\012- data
Hash 5474beae698716d96814ba0896afb86d
42b28e53892461ddf3b49b8d5790dce817445eef
d22b316befd5a962c5ad188fb31439e33c2079093989ba361036c7097ce7f136
GET /wp-content/uploads/2022/04/cropped-InShot_20220427_192952186-1-192x192.jpg HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Cookie: _ga_9VZ13PC6P3=GS1.1.1661943330.1.0.1661943330.0.0.0; _ga=GA1.1.1776098502.1661943330; _ga_K9TKTHX7EL=GS1.1.1661943330.1.0.1661943330.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 9656
date: Wed, 31 Aug 2022 10:55:31 GMT
server: Apache
last-modified: Wed, 27 Apr 2022 18:34:37 GMT
etag: "25b8-5dda70fc8506e"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:31 GMT
X-Firefox-Spdy: h2
metastar.com.ng/wp-content/uploads/2022/04/cropped-InShot_20220427_192952186-1-32x32.jpg
109.228.34.46200 OK 1.3 kB URL HTTP/2 metastar.com.ng/wp-content/uploads/2022/04/cropped-InShot_20220427_192952186-1-32x32.jpg
IP 109.228.34.46:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 32x32, components 3\012- data
Hash 674261b7bf3b9eead30f07fa63ddf371
b0239742e96271fcb12544c1a9852ce306505190
3ad24cdc0f944350d8e6fc26203d054a73e96679a29388e6115c3e5d6525a6f7
GET /wp-content/uploads/2022/04/cropped-InShot_20220427_192952186-1-32x32.jpg HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Cookie: _ga_9VZ13PC6P3=GS1.1.1661943330.1.0.1661943330.0.0.0; _ga=GA1.1.1776098502.1661943330; _ga_K9TKTHX7EL=GS1.1.1661943330.1.0.1661943330.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 1301
date: Wed, 31 Aug 2022 10:55:31 GMT
server: Apache
last-modified: Wed, 27 Apr 2022 18:34:37 GMT
etag: "515-5dda70fc8ae2e"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Wed, 28 Sep 2022 10:55:31 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ef80a390dc7608c27e29fe3516eb0565
5062143217d04ed6de8fa77555d9a83938391c87
373c43367776cfcbb9f69a45443f59dfb774eab11241928134a25bcb7d75e83b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 10:55:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Wed, 31 Aug 2022 10:41:12 GMT
expires: Wed, 31 Aug 2022 12:41:12 GMT
cache-control: public, max-age=7200
age: 859
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ef80a390dc7608c27e29fe3516eb0565
5062143217d04ed6de8fa77555d9a83938391c87
373c43367776cfcbb9f69a45443f59dfb774eab11241928134a25bcb7d75e83b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 10:55:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 162103fea2d2770a892523dda40eb8d3
18fdbf868daac86329ddd87b5d70794108888c1f
6ef5338f6861732e340a5bbb77948cbc56fff65861dab47485e2aade1c3f94bb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 10:55:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
creepingbrings.com/sfp.js
104.21.234.232200 OK 28 kB URL HTTP/2 creepingbrings.com/sfp.js
IP 104.21.234.232:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 7e63cc9e8fc41b2e4f705547f7204d7f
8f8fc68769057bca24acce28ed19e440031a4c74
2946ef82dd1b0e241df96fd4643740a694f66988727ba082ba66d5cc511c9a3e
GET /sfp.js HTTP/1.1
Host: creepingbrings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 10:55:30 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: c46eb73dd721d24724ceed07be1daf20
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Wed, 31 Aug 2022 10:55:30 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yUBHehovCVdcSH%2BM8TQEef6n0xwuS4r%2F0gMEtp%2FhzgQcLB2v3u2wwfV8E5dwpzNa0yLTrv9tbRvObSbM0PGvoHySsw6APR5Pwtgs8MG1OTyC8Y7d5%2Bc6groamQtg9Uy7LI9TF%2Bg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74353bf8af7a068e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-8901057908615324
216.58.207.226200 OK 57 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-8901057908615324
IP 216.58.207.226:0
File type ASCII text, with very long lines (2897)
Hash b57bcbbe930499260c24b8be326ef71c
5294843742f8b1256c9983a577e6c1ab8752b9bc
c97c7e041441ad49ac688a29308fa6752b954bed60d727e2b13e5b389e0741c0
GET /pagead/js/adsbygoogle.js?client=ca-pub-8901057908615324 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://metastar.com.ng
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Wed, 31 Aug 2022 10:55:31 GMT
expires: Wed, 31 Aug 2022 10:55:31 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 8459168218656705116
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 57326
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 162103fea2d2770a892523dda40eb8d3
18fdbf868daac86329ddd87b5d70794108888c1f
6ef5338f6861732e340a5bbb77948cbc56fff65861dab47485e2aade1c3f94bb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 10:55:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ef80a390dc7608c27e29fe3516eb0565
5062143217d04ed6de8fa77555d9a83938391c87
373c43367776cfcbb9f69a45443f59dfb774eab11241928134a25bcb7d75e83b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 10:55:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9829f3ffea1f304be0e54c722f9d5d40
f9609aa9bc142c1cff0788772b2bb1f9abc1dd70
1dcac98963add83d0646205786f56cc701574b69208cce02bb3ba1b080f8db73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 10:55:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
unwillingsnick.com/pixel/purst?dl=0&th=0&sc=0&rs=1866&rd=1866&fd=937&bv=22.8.v.1&tmpl=70
192.243.61.227200 OK 0 B URL HTTP/1.1 unwillingsnick.com/pixel/purst?dl=0&th=0&sc=0&rs=1866&rd=1866&fd=937&bv=22.8.v.1&tmpl=70
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1866&rd=1866&fd=937&bv=22.8.v.1&tmpl=70 HTTP/1.1
Host: unwillingsnick.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 31 Aug 2022 10:55:31 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9829f3ffea1f304be0e54c722f9d5d40
f9609aa9bc142c1cff0788772b2bb1f9abc1dd70
1dcac98963add83d0646205786f56cc701574b69208cce02bb3ba1b080f8db73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 10:55:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
142.250.74.163200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://metastar.com.ng
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Aug 2022 19:30:59 GMT
expires: Thu, 24 Aug 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 573872
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
142.250.74.163200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://metastar.com.ng
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Aug 2022 19:32:09 GMT
expires: Thu, 24 Aug 2023 19:32:09 GMT
cache-control: public, max-age=31536000
age: 573802
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20220829/r20190131/zrt_lookup.html
216.58.207.194200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20220829/r20190131/zrt_lookup.html
IP 216.58.207.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 09a8bd805dba1307ae0bd76a0c9ca73d
bdc16e7610abae944da47ff3a0e5fea818241fb0
e3978f36e9c5f0b909ed64015db629e2c64b46e75d165c6d1d146fcb792cdbde
GET /pagead/html/r20220829/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4412
x-xss-protection: 0
date: Wed, 31 Aug 2022 10:31:08 GMT
expires: Wed, 14 Sep 2022 10:31:08 GMT
cache-control: public, max-age=1209600
etag: 8616628553774171045
content-type: text/html; charset=UTF-8
age: 1463
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 281 B IP 104.18.32.68:0
Hash 32757ad91de5ec82fe1aca252f8e70a4
2e232d2662f7588edc97a6ba23bd6d273a09db59
9bae39a314bcdf3fc58b97d2b0113f47154fa36691c4bb8e3230ab56391e5901
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 31 Aug 2022 10:55:31 GMT
Content-Type: application/ocsp-response
Content-Length: 281
Connection: keep-alive
Last-Modified: Tue, 30 Aug 2022 09:53:50 GMT
Expires: Tue, 06 Sep 2022 09:53:49 GMT
Etag: "2e232d2662f7588edc97a6ba23bd6d273a09db59"
Cache-Control: max-age=514097,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74353bf93b05b51b-OSL
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9829f3ffea1f304be0e54c722f9d5d40
f9609aa9bc142c1cff0788772b2bb1f9abc1dd70
1dcac98963add83d0646205786f56cc701574b69208cce02bb3ba1b080f8db73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 10:55:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10030
Expires: Wed, 31 Aug 2022 13:42:41 GMT
Date: Wed, 31 Aug 2022 10:55:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10030
Expires: Wed, 31 Aug 2022 13:42:41 GMT
Date: Wed, 31 Aug 2022 10:55:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10030
Expires: Wed, 31 Aug 2022 13:42:41 GMT
Date: Wed, 31 Aug 2022 10:55:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10030
Expires: Wed, 31 Aug 2022 13:42:41 GMT
Date: Wed, 31 Aug 2022 10:55:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10030
Expires: Wed, 31 Aug 2022 13:42:41 GMT
Date: Wed, 31 Aug 2022 10:55:31 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5b5a9a-050c-4a84-9e0d-dfa84795640f.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5b5a9a-050c-4a84-9e0d-dfa84795640f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6b2c036e67f8c39c136f6c69b0922eb1
98e27f0dafd7b1b49e159ee038b41a811096a2d0
9dc9e00e6f63a22dd85f54ba26326a9733f6c1d7a19c7b1636f14fca2722e6eb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5b5a9a-050c-4a84-9e0d-dfa84795640f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8009
x-amzn-requestid: 6d716dae-efa3-449a-a505-fb5f3d99c2df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XsvlaFEaoAMFwDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e92ef-708228ce7e1fb3cb770cb490;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 22:45:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 03y3JoF38R7gjBYS3gHyOsivob68ykKlwvAIFEwiat2FjYfKWh-afA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 22:47:54 GMT
age: 43657
etag: "98e27f0dafd7b1b49e159ee038b41a811096a2d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5b52af4-c35f-46ea-90ff-e852694f28fc.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5b52af4-c35f-46ea-90ff-e852694f28fc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 86f8262e56bfc862a54d62d05d47b544
9ff013d9a2c3fb0e480b243c7548478cd5f6ab0e
5fd8512ac37a6fb3397db9065c9f5d6e45376b35211b749ef15735eaead93eaf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5b52af4-c35f-46ea-90ff-e852694f28fc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10699
x-amzn-requestid: db908e82-34ac-464e-b429-106ff4fde1a5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xd2gvGgwIAMFn3A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63089e04-35b534e159f111b059b0181e;Sampled=0
x-amzn-remapped-date: Fri, 26 Aug 2022 10:18:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _2uO433rJvDHZ_TM5VZqZ5XXHNlGB3AnosN-vgBceiKcyTG7kuECWw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:46:22 GMT
age: 47349
etag: "9ff013d9a2c3fb0e480b243c7548478cd5f6ab0e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d2b8cd4-2da8-44e6-9499-b1190e129379.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d2b8cd4-2da8-44e6-9499-b1190e129379.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9843fcd5eb49c75b942e3dd042f3a931
ff6de19656bc0ee5649c1367448116a9576a690a
8e9679e05e1b2194e44a962a19f226793b5d7fc2334df64f8dd560498532ad3a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d2b8cd4-2da8-44e6-9499-b1190e129379.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6266
x-amzn-requestid: 82231f45-328a-479a-b346-108fe6a0c190
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XjU6bEP5IAMFaGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630acea8-6545154a39b44bb04d3bc18c;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 02:10:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: P_a-E2SVJUpYrlOzoX9kDtHoAeyEpcqEXau-5wDupR-9AAk3gQgaHQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 11:52:53 GMT
age: 82958
etag: "ff6de19656bc0ee5649c1367448116a9576a690a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffecb9c4d-4c5b-4ac8-8afc-eb30449d31a6.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffecb9c4d-4c5b-4ac8-8afc-eb30449d31a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c51bb130fc57dd07939eefca1788f2bf
fffae16c540075f7b9556bff9499fa42b96d1d5d
097cc700622c334f7e26d3e01da9b5b79ea914778bbdf5d327dfa035bf5d7065
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffecb9c4d-4c5b-4ac8-8afc-eb30449d31a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11139
x-amzn-requestid: 6497a1a2-3c42-45e6-a4f7-804c10ab1cc1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XaHqZE7gIAMFm3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63071fdb-5a6f1047389fe8c002ed28e6;Sampled=0
x-amzn-remapped-date: Thu, 25 Aug 2022 07:08:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wwtNm3HyRtZkesTZ4V8vdgUaHM6D_EEHgnrDuRtoPuJkb89G6cHObA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 14:44:28 GMT
age: 72663
etag: "fffae16c540075f7b9556bff9499fa42b96d1d5d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c3b7580a37e6eb7e5bd18491f1d4dd6
288b82ad8f924eb9570ae1c55da84d041f862366
046d1ef76448c53446068ef5f8315b7299484996cdebfd9d1e749b4ded9c7d3c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5079
x-amzn-requestid: 3b19c77a-2e9b-499f-890b-36fc4ee72ba7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XslOVEtZIAMFv1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e825b-01b7b71617b59f7414a0e5e5;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 21:34:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: zYT0vF7Bxa5m84D12jI2w_A-MzR3wIMBOb0ubTEdNMlpYUes5aYdlQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:44:23 GMT
age: 47468
etag: "288b82ad8f924eb9570ae1c55da84d041f862366"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d294083-a431-468c-a1ef-4df4295be72a.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d294083-a431-468c-a1ef-4df4295be72a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c96a8515aca08228b53a33becf0f79b
8609a382648785901de3ab9f474b7319601921ba
2b9307cfcacfc4c15ecdc67b8045d7f4ecafd6a94d710e040a7e0d6911548caf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d294083-a431-468c-a1ef-4df4295be72a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6173
x-amzn-requestid: d5d519c7-88e2-4faa-8cbd-c828d40a0698
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XelESE0MoAMFptQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6308e881-0f2a5fe86a7bc81610835e6c;Sampled=0
x-amzn-remapped-date: Fri, 26 Aug 2022 15:36:33 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hAYsuuAnParaODBY0scpZ9hounVraQbSL7JnTeqSpkKJWm421xPm4A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:59:37 GMT
age: 46554
etag: "8609a382648785901de3ab9f474b7319601921ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e995979fad7629b93435860fb8a9065d
4ecd053c3dfdb39f6b59537d17528adaa65b1a4e
be59efc0ec991319f5384ed6cc1527c09356bf10d21db040172713772eaf98cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE59EFC0EC991319F5384ED6CC1527C09356BF10D21DB040172713772EAF98CF"
Last-Modified: Wed, 31 Aug 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4087
Expires: Wed, 31 Aug 2022 12:03:38 GMT
Date: Wed, 31 Aug 2022 10:55:31 GMT
Connection: keep-alive
ad.a-ads.com/2059543?size=320x50
78.46.32.91200 OK 43 kB URL HTTP/2 ad.a-ads.com/2059543?size=320x50
IP 78.46.32.91:0
ASN #24940 Hetzner Online GmbH
Hash 9d37c022307177fb393f32759547648c
686b148a0d82515a22d570cc134899371c6cfb65
a05ffdb2044f4375c9f87829ee17f4229f656304139cd2332644516760ad4852
GET /2059543?size=320x50 HTTP/1.1
Host: ad.a-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 10:55:31 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding, Accept-Encoding
status: 200 OK
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: Phusion Passenger(R)
x-original-referer: https://metastar.com.ng/
x-robots-tag: noindex, nofollow, nosnippet, noarchive
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c801938c41135cf3d9c2d6298c6d7bfe
70b05508140c02154f7d9066a4266f28c43c5761
dccc792cd2b8f25c666deffd611429ded01b93209b6b2eb6385ea3cde254c518
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DCCC792CD2B8F25C666DEFFD611429DED01B93209B6B2EB6385EA3CDE254C518"
Last-Modified: Mon, 29 Aug 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7238
Expires: Wed, 31 Aug 2022 12:56:09 GMT
Date: Wed, 31 Aug 2022 10:55:31 GMT
Connection: keep-alive
static.a-ads.com/a-ads-banners/406678/320x50?region=eu-central-1
78.46.32.91200 OK 406 kB URL HTTP/2 static.a-ads.com/a-ads-banners/406678/320x50?region=eu-central-1
IP 78.46.32.91:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 320 x 50\012- data
Size 406 kB (406165 bytes)
Hash 15fb17d0bb9a26b0a194b66c860e9d15
5cb1da4546a36e2e2b0fcd7314eff108835da726
142cecf84e332c087feffa033a2c072b4765b52057d9d895d8d46327b9066898
GET /a-ads-banners/406678/320x50?region=eu-central-1 HTTP/1.1
Host: static.a-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.a-ads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 10:55:31 GMT
content-type: image/gif
content-length: 406165
x-amz-id-2: Ygwb6UTKMvVUbx1Ii+4g2RY9PWcHo2qgJO3tRg6Wni79M/WbVhHCr27U39WrDv+JB5IvmcgPnOM=
x-amz-request-id: 6F3SZEQYA9BVSY1H
x-amz-replication-status: COMPLETED
last-modified: Thu, 04 Aug 2022 08:12:38 GMT
etag: "15fb17d0bb9a26b0a194b66c860e9d15"
cache-control: max-age=315360000
x-amz-version-id: d8z5luthmT_Tb1UUXyz2HJlU9l9GWDKK
expires: Thu, 31 Dec 2037 23:55:55 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d540bb36b9dd961eb542506943f01784
fc85b89327b75d3d6643766a70f343f6ea0b7a30
1bcfead20bfe1a9677f25dbcec756dbb3244f6e53069b2a830529fd991baabce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 10:55:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cb57f70cc3dfd408affeddac5e51ce2c
85fe4cd5f546cdf2c2834ac5665becb84de93b6a
d377d0292cd789fa483c883b04aeee09c0ac26a1e8834fdce23f7fdfbffe3028
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 10:55:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=metastar.com.ng
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=metastar.com.ng
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=metastar.com.ng HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 31 Aug 2022 10:55:31 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=metastar.com.ng
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=metastar.com.ng
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=metastar.com.ng HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 31 Aug 2022 10:55:31 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cb57f70cc3dfd408affeddac5e51ce2c
85fe4cd5f546cdf2c2834ac5665becb84de93b6a
d377d0292cd789fa483c883b04aeee09c0ac26a1e8834fdce23f7fdfbffe3028
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 10:55:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d540bb36b9dd961eb542506943f01784
fc85b89327b75d3d6643766a70f343f6ea0b7a30
1bcfead20bfe1a9677f25dbcec756dbb3244f6e53069b2a830529fd991baabce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 10:55:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
locomotiveconvenientriddle.com/sbar.json?key=9df680c07a575f24f371515fa9060086
192.243.61.227200 OK 3.9 kB URL HTTP/1.1 locomotiveconvenientriddle.com/sbar.json?key=9df680c07a575f24f371515fa9060086
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , ASCII text, with very long lines (5616), with no line terminators
Hash 8d443b5b35dd9e3f0e45404f39646612
370565322c1ae6465660afbef3866c77acc5e780
761030dd391e2428101bcf7830e57159270567058a70d1a2557883e2ad72afb6
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=9df680c07a575f24f371515fa9060086 HTTP/1.1
Host: locomotiveconvenientriddle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://metastar.com.ng
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 31 Aug 2022 10:55:31 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://metastar.com.ng
Access-Control-Allow-Origin: https://metastar.com.ng
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17133390; expires=Thu, 01 Sep 2022 10:55:31 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 01 Sep 2022 10:55:31 GMT; secure; SameSite=None
uncs=1; expires=Thu, 01 Sep 2022 10:55:31 GMT; secure; SameSite=None
pdhtkv29=true; expires=Thu, 01 Sep 2022 10:55:31 GMT; secure; SameSite=None
uncs29=1; expires=Thu, 01 Sep 2022 10:55:31 GMT; secure; SameSite=None
slec9df680c07a575f24f371515fa9060086=[3364902]; expires=Wed, 31 Aug 2022 10:55:36 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1879cff505587cd8895a8e63791a7053
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
banquetunarmedgrater.com/advertisers.js
192.243.59.20200 OK 0 B URL HTTP/1.1 banquetunarmedgrater.com/advertisers.js
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Wed, 31 Aug 2022 10:55:31 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d177a07fb92dbfea274762f092531bf1
Strict-Transport-Security: max-age=0; includeSubdomains
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6a310ffd228695926d686df060437f9b
2ebe10b3f16788251778346e56535d9a957fd573
3742d6514f0c44b7664a651175308ac7e3c7d4ceb1518b90762510f55b167b41
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 10:55:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=metastar.com.ng&callback=_gfp_s_&client=ca-pub-8901057908615324
142.250.74.98200 OK 202 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=metastar.com.ng&callback=_gfp_s_&client=ca-pub-8901057908615324
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash c55d760ca55c69f8574fdc607ec8be38
e538b487bc16c855bf07957220228c1a0b21a431
c3451fba275a9a213d1fff64eee9d6030f07f3cebc0d93bd32f02bfa81da7180
GET /gampad/cookie.js?domain=metastar.com.ng&callback=_gfp_s_&client=ca-pub-8901057908615324 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 31 Aug 2022 10:55:31 GMT
server: cafe
cache-control: private
content-length: 202
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6a310ffd228695926d686df060437f9b
2ebe10b3f16788251778346e56535d9a957fd573
3742d6514f0c44b7664a651175308ac7e3c7d4ceb1518b90762510f55b167b41
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 10:55:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
locomotiveconvenientriddle.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWsk1Rd9Ncnvh%2BBClNn4SYMgCtKp6o%2FqbgccjDESzCTjjOLs9NV7VZ1nXtUr3kdXJ6vgoGTZ%2FgeV08mE0cEPcOsgnYFZBIQpV1mY%2F0GEWbmQ7gm2XijuOXXO4tx731cH7pz4cPRs5ZraFVLSpXbdr71%2BKwiu1NZF5oa1YTf8NGxdqenBW72w7r9Rez9m22qp4Qe%2BH%2FhBbVXoOFHDpakIkd%2FrBfWeX2816kG7haH%2BLzfOg6Ee%2BOCcPAfBq8UH3mUINkGW%2FrASm22r8jffS52kVmkM%2BPHH2XamigzpHCbaQ5IdX7ihzKPV%2B1DZ0Swu1OAfYyQq4j28jyg7vgiJaHA4yxlJxBki%2FjSKwQSxnEDQCZi6DcEfEYBxbGwiS%2B9sKF3QnScqnaoVWXz8J0RRkcXfLyNLv1uWYli7qaSzQmUGw6SEGE4g%2BhPk7gR29xJEcQJmv4Dgv5Klx%2BvI0sNNIxUEL2ezCzGBSCaQ8QjUeHDTT3hwiQeXe0j5WY0FQdDxOaN%2Bt8dYk3fiKOR%2BQDtJQAM%2F7MKxabwRbD4CkyMwvYdc72FbjKDdLzBbJQz3YGxFvA%2F3MOAlipigMAQFJSgEQWEJikF5xKVpmPIOl8ZFwUVvXPRmOVa2f0CPlO3HGTnIz8mz0714%2F1Mb2I7Paj2ehF2f%2BR3a7rSTRitpdoJ20E5ozw99vxvCiBLCXJqNuisq8uI5kIuK%2FP9wCRE9gZEnYOIlUPcyaDHuNHzQrXGr62M3%2Bz6NLTWW6jpTaT3rg6sSuV2E3fEO5Dl5fnai5q3XELPTq59F16o%2F7v4FpkvkusTn4gFBX%2B6Pb6iCHN5QhSE%2FbuZWpGKXTs9301IbL3zzQbxTKM3XVszo7jtsKkzhvY9iY9dpxkXWN%2BTbZcF5rFeVZjH5ec18EkfXndladjpz%2Bfr1d1fX0lzHxgiVTUBFRcjDUzBRkad%2BOpq9zBe%2B3IfQE2hXInWn5KIg1AlYvgeTz%2FMbtQAt554o91C4cqwb0fynFAQynnMalTD%2F4tEcH5h99PUroPY2srTEQJcYyBJUjmDcwtjm%2BvTqb81ZIZLeOJLaO4ykll8%2FWa4RZ7VOs%2BnTsNcOOh0ad6JWo5uEAae00QobYUibsKZiz7z96t8AAAD%2F%2FwEAAP%2F%2FoA72fGQEAAA%3D
192.243.61.227200 OK 7 B URL HTTP/1.1 locomotiveconvenientriddle.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWsk1Rd9Ncnvh%2BBClNn4SYMgCtKp6o%2FqbgccjDESzCTjjOLs9NV7VZ1nXtUr3kdXJ6vgoGTZ%2FgeV08mE0cEPcOsgnYFZBIQpV1mY%2F0GEWbmQ7gm2XijuOXXO4tx731cH7pz4cPRs5ZraFVLSpXbdr71%2BKwiu1NZF5oa1YTf8NGxdqenBW72w7r9Rez9m22qp4Qe%2BH%2FhBbVXoOFHDpakIkd%2FrBfWeX2816kG7haH%2BLzfOg6Ee%2BOCcPAfBq8UH3mUINkGW%2FrASm22r8jffS52kVmkM%2BPHH2XamigzpHCbaQ5IdX7ihzKPV%2B1DZ0Swu1OAfYyQq4j28jyg7vgiJaHA4yxlJxBki%2FjSKwQSxnEDQCZi6DcEfEYBxbGwiS%2B9sKF3QnScqnaoVWXz8J0RRkcXfLyNLv1uWYli7qaSzQmUGw6SEGE4g%2BhPk7gR29xJEcQJmv4Dgv5Klx%2BvI0sNNIxUEL2ezCzGBSCaQ8QjUeHDTT3hwiQeXe0j5WY0FQdDxOaN%2Bt8dYk3fiKOR%2BQDtJQAM%2F7MKxabwRbD4CkyMwvYdc72FbjKDdLzBbJQz3YGxFvA%2F3MOAlipigMAQFJSgEQWEJikF5xKVpmPIOl8ZFwUVvXPRmOVa2f0CPlO3HGTnIz8mz0714%2F1Mb2I7Paj2ehF2f%2BR3a7rSTRitpdoJ20E5ozw99vxvCiBLCXJqNuisq8uI5kIuK%2FP9wCRE9gZEnYOIlUPcyaDHuNHzQrXGr62M3%2Bz6NLTWW6jpTaT3rg6sSuV2E3fEO5Dl5fnai5q3XELPTq59F16o%2F7v4FpkvkusTn4gFBX%2B6Pb6iCHN5QhSE%2FbuZWpGKXTs9301IbL3zzQbxTKM3XVszo7jtsKkzhvY9iY9dpxkXWN%2BTbZcF5rFeVZjH5ec18EkfXndladjpz%2Bfr1d1fX0lzHxgiVTUBFRcjDUzBRkad%2BOpq9zBe%2B3IfQE2hXInWn5KIg1AlYvgeTz%2FMbtQAt554o91C4cqwb0fynFAQynnMalTD%2F4tEcH5h99PUroPY2srTEQJcYyBJUjmDcwtjm%2BvTqb81ZIZLeOJLaO4ykll8%2FWa4RZ7VOs%2BnTsNcOOh0ad6JWo5uEAae00QobYUibsKZiz7z96t8AAAD%2F%2FwEAAP%2F%2FoA72fGQEAAA%3D
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSzWsk1Rd9Ncnvh%2BBClNn4SYMgCtKp6o%2FqbgccjDESzCTjjOLs9NV7VZ1nXtUr3kdXJ6vgoGTZ%2FgeV08mE0cEPcOsgnYFZBIQpV1mY%2F0GEWbmQ7gm2XijuOXXO4tx731cH7pz4cPRs5ZraFVLSpXbdr71%2BKwiu1NZF5oa1YTf8NGxdqenBW72w7r9Rez9m22qp4Qe%2BH%2FhBbVXoOFHDpakIkd%2FrBfWeX2816kG7haH%2BLzfOg6Ee%2BOCcPAfBq8UH3mUINkGW%2FrASm22r8jffS52kVmkM%2BPHH2XamigzpHCbaQ5IdX7ihzKPV%2B1DZ0Swu1OAfYyQq4j28jyg7vgiJaHA4yxlJxBki%2FjSKwQSxnEDQCZi6DcEfEYBxbGwiS%2B9sKF3QnScqnaoVWXz8J0RRkcXfLyNLv1uWYli7qaSzQmUGw6SEGE4g%2BhPk7gR29xJEcQJmv4Dgv5Klx%2BvI0sNNIxUEL2ezCzGBSCaQ8QjUeHDTT3hwiQeXe0j5WY0FQdDxOaN%2Bt8dYk3fiKOR%2BQDtJQAM%2F7MKxabwRbD4CkyMwvYdc72FbjKDdLzBbJQz3YGxFvA%2F3MOAlipigMAQFJSgEQWEJikF5xKVpmPIOl8ZFwUVvXPRmOVa2f0CPlO3HGTnIz8mz0714%2F1Mb2I7Paj2ehF2f%2BR3a7rSTRitpdoJ20E5ozw99vxvCiBLCXJqNuisq8uI5kIuK%2FP9wCRE9gZEnYOIlUPcyaDHuNHzQrXGr62M3%2Bz6NLTWW6jpTaT3rg6sSuV2E3fEO5Dl5fnai5q3XELPTq59F16o%2F7v4FpkvkusTn4gFBX%2B6Pb6iCHN5QhSE%2FbuZWpGKXTs9301IbL3zzQbxTKM3XVszo7jtsKkzhvY9iY9dpxkXWN%2BTbZcF5rFeVZjH5ec18EkfXndladjpz%2Bfr1d1fX0lzHxgiVTUBFRcjDUzBRkad%2BOpq9zBe%2B3IfQE2hXInWn5KIg1AlYvgeTz%2FMbtQAt554o91C4cqwb0fynFAQynnMalTD%2F4tEcH5h99PUroPY2srTEQJcYyBJUjmDcwtjm%2BvTqb81ZIZLeOJLaO4ykll8%2FWa4RZ7VOs%2BnTsNcOOh0ad6JWo5uEAae00QobYUibsKZiz7z96t8AAAD%2F%2FwEAAP%2F%2FoA72fGQEAAA%3D HTTP/1.1
Host: locomotiveconvenientriddle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Cookie: u_pl=17133390; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9df680c07a575f24f371515fa9060086=[3364902]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 31 Aug 2022 10:55:32 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 820840521b8728f4a102b0a57c1446ba
Strict-Transport-Security: max-age=0; includeSubdomains
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20220829&st=env
216.58.207.226200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20220829&st=env
IP 216.58.207.226:0
File type JSON data\012- , ASCII text, with very long lines (14706), with no line terminators
Hash b55c906e50ac7484bbac4fa89829e23d
75e325d710ed8b6361961f89f09c386dd1d2db8f
8b51598e0189593f83d65a11337fc391578e6c2fbfb80a06ab3894cdfe624e61
GET /getconfig/sodar?sv=200&tid=gda&tv=r20220829&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://metastar.com.ng
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 31 Aug 2022 10:55:32 GMT
server: cafe
cache-control: private
content-length: 11167
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4c0c3b533df38be7bdfbd8b8246b48c2
8fa1977230e302c4d0df2482eb22d9202a7cf961
2f505285bbf066d84efdc1df659265354728ecf67077f7544bd586b19d9b38ad
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "2F505285BBF066D84EFDC1DF659265354728ECF67077F7544BD586B19D9B38AD"
Last-Modified: Wed, 31 Aug 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2121
Expires: Wed, 31 Aug 2022 11:30:53 GMT
Date: Wed, 31 Aug 2022 10:55:32 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4c0c3b533df38be7bdfbd8b8246b48c2
8fa1977230e302c4d0df2482eb22d9202a7cf961
2f505285bbf066d84efdc1df659265354728ecf67077f7544bd586b19d9b38ad
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "2F505285BBF066D84EFDC1DF659265354728ECF67077F7544BD586B19D9B38AD"
Last-Modified: Wed, 31 Aug 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2121
Expires: Wed, 31 Aug 2022 11:30:53 GMT
Date: Wed, 31 Aug 2022 10:55:32 GMT
Connection: keep-alive
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/13/img/icon.jpg
104.21.51.177200 OK 60 kB URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/13/img/icon.jpg
IP 104.21.51.177:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=821, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1232], progressive, precision 8, 281x290, components 3\012- data
Hash 9337eb4f9526f6d16e6d1602d8fee3ae
203c7272c5a60a752db43857b2d337d644f690f5
1e803197ccab280a9285cdae1adbea170504d59ef0bbf02aab3d9785c0871422
GET /sb/notifications/utility/default/us/blog/Progamerage/flip_icon/13/img/icon.jpg HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 10:55:32 GMT
content-type: image/jpeg
content-length: 59931
last-modified: Tue, 08 Feb 2022 14:18:00 GMT
etag: "62027b98-ea1b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 2422266
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VPPqnIkolvybKJPoY1yfaCT0H6NV1LnkkoANEJCeiWR%2FGjJUHaCC5uZL4WaMSwXLMYax9kMbHub2xzXlaf6qckAEp6qOtYcfsnYr1F6%2Bsw%2BVUivXNLGLrVS5Ehj4jYys8A0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74353c04bdce0b02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
locomotiveconvenientriddle.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F13%2Findex.html&l=1688&fd=520
192.243.61.227200 OK 0 B URL HTTP/1.1 locomotiveconvenientriddle.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F13%2Findex.html&l=1688&fd=520
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F13%2Findex.html&l=1688&fd=520 HTTP/1.1
Host: locomotiveconvenientriddle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Cookie: u_pl=17133390; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9df680c07a575f24f371515fa9060086=[3364902]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 31 Aug 2022 10:55:32 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4c0c3b533df38be7bdfbd8b8246b48c2
8fa1977230e302c4d0df2482eb22d9202a7cf961
2f505285bbf066d84efdc1df659265354728ecf67077f7544bd586b19d9b38ad
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "2F505285BBF066D84EFDC1DF659265354728ECF67077F7544BD586B19D9B38AD"
Last-Modified: Wed, 31 Aug 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6450
Expires: Wed, 31 Aug 2022 12:43:02 GMT
Date: Wed, 31 Aug 2022 10:55:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f86e5174c45e7dff486006a914664555
6d2e065eb83bcd0c12d3060f8059d9a82a78e9f8
622635990c9ad24dcd427f59a9631befb33c9dc8fa25d265c5679c164077fc60
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "622635990C9AD24DCD427F59A9631BEFB33C9DC8FA25D265C5679C164077FC60"
Last-Modified: Mon, 29 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7233
Expires: Wed, 31 Aug 2022 12:56:05 GMT
Date: Wed, 31 Aug 2022 10:55:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f86e5174c45e7dff486006a914664555
6d2e065eb83bcd0c12d3060f8059d9a82a78e9f8
622635990c9ad24dcd427f59a9631befb33c9dc8fa25d265c5679c164077fc60
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "622635990C9AD24DCD427F59A9631BEFB33C9DC8FA25D265C5679C164077FC60"
Last-Modified: Mon, 29 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7233
Expires: Wed, 31 Aug 2022 12:56:05 GMT
Date: Wed, 31 Aug 2022 10:55:32 GMT
Connection: keep-alive
locomotiveconvenientriddle.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F13%2Fjs%2Fscript.js&l=468&fd=301
192.243.61.227200 OK 0 B URL HTTP/1.1 locomotiveconvenientriddle.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F13%2Fjs%2Fscript.js&l=468&fd=301
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F13%2Fjs%2Fscript.js&l=468&fd=301 HTTP/1.1
Host: locomotiveconvenientriddle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Cookie: u_pl=17133390; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9df680c07a575f24f371515fa9060086=[3364902]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 31 Aug 2022 10:55:32 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
unseenreport.com/pxf.gif?uuid=4fa19bb5-f459-45e4-b0e9-a94fb1831dd9&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=0&pk=72a5a9ede3409388de60621449c4f7d6&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=10
192.243.61.225200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=4fa19bb5-f459-45e4-b0e9-a94fb1831dd9&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=0&pk=72a5a9ede3409388de60621449c4f7d6&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=10
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=4fa19bb5-f459-45e4-b0e9-a94fb1831dd9&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=0&pk=72a5a9ede3409388de60621449c4f7d6&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=10 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 31 Aug 2022 10:55:32 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0c4f42495e26d51f1a4dc48f8c82754f
Strict-Transport-Security: max-age=0; includeSubdomains
locomotiveconvenientriddle.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F13%2Fcss%2Fstyle.css&l=10065&fd=325
192.243.61.227200 OK 0 B URL HTTP/1.1 locomotiveconvenientriddle.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F13%2Fcss%2Fstyle.css&l=10065&fd=325
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F13%2Fcss%2Fstyle.css&l=10065&fd=325 HTTP/1.1
Host: locomotiveconvenientriddle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Cookie: u_pl=17133390; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9df680c07a575f24f371515fa9060086=[3364902]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 31 Aug 2022 10:55:32 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://metastar.com.ng
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Aug 2022 19:34:08 GMT
expires: Thu, 24 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 573685
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://metastar.com.ng
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Aug 2022 19:34:08 GMT
expires: Thu, 24 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 573685
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=4fa19bb5-f459-45e4-b0e9-a94fb1831dd9&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=0&pk=9df680c07a575f24f371515fa9060086&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=10
192.243.61.225200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=4fa19bb5-f459-45e4-b0e9-a94fb1831dd9&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=0&pk=9df680c07a575f24f371515fa9060086&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=10
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=4fa19bb5-f459-45e4-b0e9-a94fb1831dd9&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=0&pk=9df680c07a575f24f371515fa9060086&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=10 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 31 Aug 2022 10:55:32 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 57ed2ba701f9e0d4b646d148e807aad9
Strict-Transport-Security: max-age=0; includeSubdomains
locomotiveconvenientriddle.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F13%2Fcss%2Fanimate.css&l=79245&fd=311
192.243.61.227200 OK 0 B URL HTTP/1.1 locomotiveconvenientriddle.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F13%2Fcss%2Fanimate.css&l=79245&fd=311
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F13%2Fcss%2Fanimate.css&l=79245&fd=311 HTTP/1.1
Host: locomotiveconvenientriddle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Cookie: u_pl=17133390; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9df680c07a575f24f371515fa9060086=[3364902]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 31 Aug 2022 10:55:33 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
locomotiveconvenientriddle.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzWsk1Rd9Ncnvh%2BBClNn4SYMgCtKp6u92wMEYI8FMMs4ozk7fV3WeeVWveK9eVyer4KBk2f4HldPJhNHBD3DrIJ2BWQSEaVdZmP9BhFm5kO4Jtl4o7jl1zuLce99XB%2F6chPD0bOWa2VVa06VmNay8fiuKrlTWVeoHlUGn9WmrcaVi%2B291W9Xwjcr7km%2BbpVoYhWEURpVVZWVsBktTESq7142q3bDaqFWjZgMD%2B1%2FufABHA4j%2BOXkOSkwWHwSXofgYafLDinTbucnefC%2FxmubGoi%2BOP063U1OkSOYwtgHi9PjCDeMerd6HSY9mcWH6%2FxiZmpDg4X2w9PgiJFj%2FcJaTacgUTDyNoj%2BG1GMoOgY3t6HEIwJwgY1NpMmdDWMLuvNEpVN1QhYf%2FwlVTMji75eRJt8tazWo3DTa58qkDoO4hBqMoXpjZP4E%2Be4lqOIEPP8CSvxKlh6vI00ON502UKKcza7UGCoeQ8shqAvgp58K4OMAPguQiLMKj6KoHQpOw06X87poS9YSYUTbcUSjsNWB59N4Q%2BTZEFwPwe0eMruHbTWE9b%2FAbZVwIoDLJyT4cA99UaKQBIUjKChBoQiKnKDol0dCu5or7wjtPIsueu2i18uRyXsH9MjkPZmSg%2BycPDvdS%2FA%2Fs4FteVbpirjVCXnYps12M6414no7akbNmHbDVhh2WnCqhHKXZqPuqgl58RzI1IT8%2F3AJjJ7A6RNw9RKofxm0GLVrIejWqNEJsZt%2Bn8icupzaKjdJNe1BmBJZvoh8JzjQ5%2BT52Ynqt16D5KdXP2PXJn%2Fc%2FQvclshsic%2FVA4Ke3h%2FdMAU5vGEKR37czHKVqF06Pd%2FNnOZy4ZsP5E5hrFhbccO77%2FCpMIX3PpIuX6epUGnPkW%2BXlRDSrhrLJfl5zX0i2XXvtpa9TX22fv3d1bUks9I5ZdIxqJoQ8vAUXE3IUz8dzV7mC1%2FuQ9kxrC%2BR%2BFNyUVDmBDzbg8vm%2BZ1ZgNVzD8sCFL4c2Rqb%2F9SKQMs5p6yE%2Bxdnc3zg9tGzr4Dmt5EmJfq2RF%2BXoHoI5xdGeWZPr%2F5WnxWYDkZM2%2BCQaau%2FfrJcp84q9VC0mYxlm8lGsxFLLlizyUIec1YXnQ5H7ib8mbdf%2FRsAAP%2F%2FAQAA%2F%2F8g2iOUZAQAAA%3D%3D
192.243.61.227200 OK 667 B URL HTTP/1.1 locomotiveconvenientriddle.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzWsk1Rd9Ncnvh%2BBClNn4SYMgCtKp6u92wMEYI8FMMs4ozk7fV3WeeVWveK9eVyer4KBk2f4HldPJhNHBD3DrIJ2BWQSEaVdZmP9BhFm5kO4Jtl4o7jl1zuLce99XB%2F6chPD0bOWa2VVa06VmNay8fiuKrlTWVeoHlUGn9WmrcaVi%2B291W9Xwjcr7km%2BbpVoYhWEURpVVZWVsBktTESq7142q3bDaqFWjZgMD%2B1%2FufABHA4j%2BOXkOSkwWHwSXofgYafLDinTbucnefC%2FxmubGoi%2BOP063U1OkSOYwtgHi9PjCDeMerd6HSY9mcWH6%2FxiZmpDg4X2w9PgiJFj%2FcJaTacgUTDyNoj%2BG1GMoOgY3t6HEIwJwgY1NpMmdDWMLuvNEpVN1QhYf%2FwlVTMji75eRJt8tazWo3DTa58qkDoO4hBqMoXpjZP4E%2Be4lqOIEPP8CSvxKlh6vI00ON502UKKcza7UGCoeQ8shqAvgp58K4OMAPguQiLMKj6KoHQpOw06X87poS9YSYUTbcUSjsNWB59N4Q%2BTZEFwPwe0eMruHbTWE9b%2FAbZVwIoDLJyT4cA99UaKQBIUjKChBoQiKnKDol0dCu5or7wjtPIsueu2i18uRyXsH9MjkPZmSg%2BycPDvdS%2FA%2Fs4FteVbpirjVCXnYps12M6414no7akbNmHbDVhh2WnCqhHKXZqPuqgl58RzI1IT8%2F3AJjJ7A6RNw9RKofxm0GLVrIejWqNEJsZt%2Bn8icupzaKjdJNe1BmBJZvoh8JzjQ5%2BT52Ynqt16D5KdXP2PXJn%2Fc%2FQvclshsic%2FVA4Ke3h%2FdMAU5vGEKR37czHKVqF06Pd%2FNnOZy4ZsP5E5hrFhbccO77%2FCpMIX3PpIuX6epUGnPkW%2BXlRDSrhrLJfl5zX0i2XXvtpa9TX22fv3d1bUks9I5ZdIxqJoQ8vAUXE3IUz8dzV7mC1%2FuQ9kxrC%2BR%2BFNyUVDmBDzbg8vm%2BZ1ZgNVzD8sCFL4c2Rqb%2F9SKQMs5p6yE%2Bxdnc3zg9tGzr4Dmt5EmJfq2RF%2BXoHoI5xdGeWZPr%2F5WnxWYDkZM2%2BCQaau%2FfrJcp84q9VC0mYxlm8lGsxFLLlizyUIec1YXnQ5H7ib8mbdf%2FRsAAP%2F%2FAQAA%2F%2F8g2iOUZAQAAA%3D%3D
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type gzip compressed data, max compression\012- data
Hash cf0a55b1c474cdca97ba07ca66e5e8b8
fafffadd847d673c8dd7a6f7636433381b4beb0d
460230eb7b3d6b76fbd32e370cfeb600355e1b94ebda915f60ac713e8a82eacd
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSzWsk1Rd9Ncnvh%2BBClNn4SYMgCtKp6u92wMEYI8FMMs4ozk7fV3WeeVWveK9eVyer4KBk2f4HldPJhNHBD3DrIJ2BWQSEaVdZmP9BhFm5kO4Jtl4o7jl1zuLce99XB%2F6chPD0bOWa2VVa06VmNay8fiuKrlTWVeoHlUGn9WmrcaVi%2B291W9Xwjcr7km%2BbpVoYhWEURpVVZWVsBktTESq7142q3bDaqFWjZgMD%2B1%2FufABHA4j%2BOXkOSkwWHwSXofgYafLDinTbucnefC%2FxmubGoi%2BOP063U1OkSOYwtgHi9PjCDeMerd6HSY9mcWH6%2FxiZmpDg4X2w9PgiJFj%2FcJaTacgUTDyNoj%2BG1GMoOgY3t6HEIwJwgY1NpMmdDWMLuvNEpVN1QhYf%2FwlVTMji75eRJt8tazWo3DTa58qkDoO4hBqMoXpjZP4E%2Be4lqOIEPP8CSvxKlh6vI00ON502UKKcza7UGCoeQ8shqAvgp58K4OMAPguQiLMKj6KoHQpOw06X87poS9YSYUTbcUSjsNWB59N4Q%2BTZEFwPwe0eMruHbTWE9b%2FAbZVwIoDLJyT4cA99UaKQBIUjKChBoQiKnKDol0dCu5or7wjtPIsueu2i18uRyXsH9MjkPZmSg%2BycPDvdS%2FA%2Fs4FteVbpirjVCXnYps12M6414no7akbNmHbDVhh2WnCqhHKXZqPuqgl58RzI1IT8%2F3AJjJ7A6RNw9RKofxm0GLVrIejWqNEJsZt%2Bn8icupzaKjdJNe1BmBJZvoh8JzjQ5%2BT52Ynqt16D5KdXP2PXJn%2Fc%2FQvclshsic%2FVA4Ke3h%2FdMAU5vGEKR37czHKVqF06Pd%2FNnOZy4ZsP5E5hrFhbccO77%2FCpMIX3PpIuX6epUGnPkW%2BXlRDSrhrLJfl5zX0i2XXvtpa9TX22fv3d1bUks9I5ZdIxqJoQ8vAUXE3IUz8dzV7mC1%2FuQ9kxrC%2BR%2BFNyUVDmBDzbg8vm%2BZ1ZgNVzD8sCFL4c2Rqb%2F9SKQMs5p6yE%2Bxdnc3zg9tGzr4Dmt5EmJfq2RF%2BXoHoI5xdGeWZPr%2F5WnxWYDkZM2%2BCQaau%2FfrJcp84q9VC0mYxlm8lGsxFLLlizyUIec1YXnQ5H7ib8mbdf%2FRsAAP%2F%2FAQAA%2F%2F8g2iOUZAQAAA%3D%3D HTTP/1.1
Host: locomotiveconvenientriddle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Cookie: u_pl=17133390; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9df680c07a575f24f371515fa9060086=[3364902]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 31 Aug 2022 10:55:33 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8e739ac8ad1901606223383f958c1636
Strict-Transport-Security: max-age=0; includeSubdomains
locomotiveconvenientriddle.com/pixel/sbs?c=1
192.243.61.227200 OK 0 B URL HTTP/1.1 locomotiveconvenientriddle.com/pixel/sbs?c=1
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: locomotiveconvenientriddle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Cookie: u_pl=17133390; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9df680c07a575f24f371515fa9060086=[3364902]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 31 Aug 2022 10:55:33 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/13/index.html
104.26.7.19200 OK 905 B URL HTTP/2 cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/13/index.html
IP 104.26.7.19:0
File type HTML document text\012- HTML document, ASCII text
Hash 588ef15aca8598ce37aa03c9e49eac88
30bb279ad34d81fa0a7ddd19aa8217b43b2e0532
eb57acaa14bf9b584078bf00805a573ababa4b07aa573376e541ebda97dff091
GET /sb/notifications/utility/default/us/blog/Progamerage/flip_icon/13/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://metastar.com.ng
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 10:55:32 GMT
content-type: text/html
last-modified: Wed, 09 Feb 2022 11:16:34 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZhVAEKT9u7p1C9HjcykfQltQeqy3D9uIdUPENJhnKf%2FTc%2FIdZxN%2FwHwQqcDzqKBra8ZaVShudoKpAwMfa3lxPlRfkQCkdg64EPiL7oj7hFqIXxWhZAYaIxN2OpDQl1czXZjd%2B6U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74353c00eefb0b51-OSL
content-encoding: br
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Wed, 31 Aug 2022 10:55:33 GMT
expires: Wed, 31 Aug 2022 10:55:33 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.33200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 10:30:47 GMT
expires: Thu, 31 Aug 2023 10:30:47 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 1486
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a3174f909a7792a326742671bb6d3dde
fa4703fd1dc5829d61209aaf18407b4498f8a478
bc171d0c715235ad2ba48dbbb594a35ea1af13107fe7b54e988a63a61fa9fb22
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 10:55:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 514 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 97ed961731ecd07dcd262700d366028d
0bdd205b7236b9c48c8843047dcb00bf42da2ea8
321592254a30af5f33200bebeb47af1709410dfe80acb00fc0021c378db16d42
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Wed, 31 Aug 2022 10:55:33 GMT
date: Wed, 31 Aug 2022 10:55:33 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-i5dHg_JZ9OTlj4CCBP7YWg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 514
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins:600,regular&subset=latin&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins:600,regular&subset=latin&display=swap
IP 142.250.74.10:0
GET /css?family=Poppins:600,regular&subset=latin&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 31 Aug 2022 10:55:31 GMT
date: Wed, 31 Aug 2022 10:55:31 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ad.a-ads.com/2059543?size=320x50
78.46.32.91200 OK 0 B URL HTTP/2 ad.a-ads.com/2059543?size=320x50
IP 78.46.32.91:0
ASN #24940 Hetzner Online GmbH
GET /2059543?size=320x50 HTTP/1.1
Host: ad.a-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 10:55:31 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding, Accept-Encoding
status: 200 OK
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: Phusion Passenger(R)
x-original-referer: https://metastar.com.ng/
x-robots-tag: noindex, nofollow, nosnippet, noarchive
content-encoding: gzip
X-Firefox-Spdy: h2
addresseepaper.com/sfp.js
104.21.235.2200 OK 0 B URL HTTP/2 addresseepaper.com/sfp.js
IP 104.21.235.2:0
GET /sfp.js HTTP/1.1
Host: addresseepaper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 10:55:30 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: b013f84ee9682f43a000e0f742e6270f
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Wed, 31 Aug 2022 10:55:30 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cdoJkegsVrG7QINNiGTVfZrqw4GeJHLLAfsIjHjndRk%2Fy9JkvVUsoVrYgagrBwO6o3SceHhdCLQ76%2F2fA1vDKUlcHtsl6Rcv0UW4%2Fl7T4Zi6q7X8LRY3DWXVwy2HJd21XITpd7k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74353bf9180e8892-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/13/css/style.css
104.21.51.177200 OK 0 B URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/13/css/style.css
IP 104.21.51.177:0
GET /sb/notifications/utility/default/us/blog/Progamerage/flip_icon/13/css/style.css HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://metastar.com.ng
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 10:55:32 GMT
content-type: text/css
last-modified: Wed, 09 Feb 2022 11:16:21 GMT
etag: W/"6203a285-2751"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fJCXcuYZvy33h%2FFKjFnhI%2BcgQD%2BdTMD6l0SE0tc2oko2XRTk8iVdRYRi21WGlqMXA0eqUefuwZwSkB6uJZASkfForgSPQKSMTccfKH95Lpu9XsuFV%2FP7y5Sxd31MbEIwPC0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74353c046d750b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
metastar.com.ng/
109.228.34.46200 OK 0 B IP 109.228.34.46:0
GET / HTTP/1.1
Host: metastar.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Wed, 31 Aug 2022 10:55:29 GMT
server: Apache
x-powered-by: PHP/7.4.30
link: <https://metastar.com.ng/wp-json/>; rel="https://api.w.org/"
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/13/js/script.js
104.21.51.177200 OK 0 B URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/13/js/script.js
IP 104.21.51.177:0
GET /sb/notifications/utility/default/us/blog/Progamerage/flip_icon/13/js/script.js HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://metastar.com.ng
Connection: keep-alive
Referer: https://metastar.com.ng/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 10:55:32 GMT
content-type: application/javascript
last-modified: Mon, 17 Jan 2022 14:40:54 GMT
etag: W/"61e57ff6-1e8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mUC%2F4Iwe2%2FJb2RfCE0HxocH05HYRmZKpeYOP0QDPlakItMAr3vn32XkUDkzzsWOwkBNS21ag5LQMy7YWLce5%2BOoIc4%2BNah%2BzkNtdZC5P2cPE7F3rxnTcaHqBBpgLvN1rX0c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74353c046d7f0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/13/img/close.svg
104.21.51.177200 OK 0 B URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/13/img/close.svg
IP 104.21.51.177:0
GET /sb/notifications/utility/default/us/blog/Progamerage/flip_icon/13/img/close.svg HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 10:55:32 GMT
content-type: image/svg+xml
last-modified: Mon, 17 Jan 2022 14:26:00 GMT
etag: W/"61e57c78-415"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 2422266
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X1cMS0oROIfiar80D%2F3qKG2xnBC18y8b8Pnq%2F%2FJtH1ag5CF8LDlwRmtV7JiKhXdsCaW3VZ6bcoU8Vgr9rzou4m8MTaZvUzutsBqW0DQ53yN5gBuQ9OePDLHIBrXVF3UKCwY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74353c04bdcd0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2