Overview

URLmetupachat.com/
IP 192.185.48.209 (United States)
ASN#46606 UNIFIEDLAYER-AS-1
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-04 11:27:55 UTC
StatusLoading report..
IDS alerts0
Blocklist alert71
urlquery alerts No alerts detected
Tags None

Domain Summary (12)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
ocsp.pki.goog (9) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.35
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 52.43.253.52
fonts.googleapis.com (2) 8877 2013-06-10 20:14:26 UTC 2022-11-04 10:38:21 UTC 142.250.74.10
r3.o.lencr.org (8) 344 No data No data 23.36.76.226
metupachat.com (71) 0 2021-11-26 10:25:10 UTC 2022-09-28 16:33:45 UTC 192.185.48.209 Unknown ranking
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
fonts.gstatic.com (5) 0 2014-09-09 00:40:21 UTC 2022-11-04 06:14:02 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
s.w.org (8) 748 2017-01-30 04:56:16 UTC 2022-11-04 05:25:33 UTC 192.0.77.48
websitedemos.net (3) 106460 2017-11-25 18:56:24 UTC 2022-11-04 04:20:27 UTC 104.26.4.45
ocsp.digicert.com (3) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-04 05:51:42 UTC 34.117.237.239
img-getpocket.cdn.mozilla.net (8) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
 No alerts detected

mnemonic secure dns
 No alerts detected

Quad9 DNS
Scan Date Severity Indicator Comment
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed
2022-11-04 2 metupachat.com Sinkholed


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 192.185.48.209
Date UQ / IDS / BL URL IP
2022-11-04 11:27:55 +0000 0 - 0 - 71 metupachat.com/ 192.185.48.209


Last 5 reports on ASN: UNIFIEDLAYER-AS-1
Date UQ / IDS / BL URL IP
2023-01-29 01:37:20 +0000 0 - 1 - 2 qsa.co.in/ 162.241.148.21
2023-01-29 01:35:45 +0000 0 - 0 - 2 webpageconsulting.net/public/4o368pvoWKdD4KDy (...) 66.147.240.98
2023-01-29 01:28:06 +0000 0 - 0 - 2 austenfromaustin.com/2016/11/page/2 192.185.165.238
2023-01-29 01:25:37 +0000 0 - 0 - 5 oneinfotech.com/ 192.185.195.14
2023-01-29 01:24:35 +0000 0 - 1 - 3 mendezplumbingservicellc.com/101.exe 162.215.97.2


Last 1 reports on domain: metupachat.com
Date UQ / IDS / BL URL IP
2022-11-04 11:27:55 +0000 0 - 0 - 71 metupachat.com/ 192.185.48.209


No other reports with similar screenshot

JavaScript

Executed Scripts (42)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (120)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B93410A9D62DA3F219796D753B61A0F730CC272C13596724AA9D20EFBA298B44"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9597
Expires: Fri, 04 Nov 2022 14:07:40 GMT
Date: Fri, 04 Nov 2022 11:27:43 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2458
Cache-Control: max-age=168260
Date: Fri, 04 Nov 2022 11:27:43 GMT
Etag: "6364dbd9-1d7"
Expires: Sun, 06 Nov 2022 10:12:03 GMT
Last-Modified: Fri, 04 Nov 2022 09:31:05 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2458
Cache-Control: max-age=168260
Date: Fri, 04 Nov 2022 11:27:43 GMT
Etag: "6364dbd9-1d7"
Expires: Sun, 06 Nov 2022 10:12:03 GMT
Last-Modified: Fri, 04 Nov 2022 09:31:05 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         192.185.48.209
HTTP/1.1 302 Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 04 Nov 2022 11:27:43 GMT
Server: nginx/1.21.6
Content-Length: 207
Location: https://metupachat.com/
X-Server-Cache: true
X-Proxy-Cache: MISS


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   207
Md5:    f1a45b9c2850a2aef2552cd6d7a24dc8
Sha1:   dafeb40fd1f136a719a3c894a1affb2f3141dedd
Sha256: 060c42e51085ba287acf8910578d9aae87d9dbdab6177b9195a18d1a85b0f815

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DD5DD09FEC51669ADF36B3014BBF65D7BFF608F72018D037F9ED9B414675037C"
Last-Modified: Fri, 04 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7142
Expires: Fri, 04 Nov 2022 13:26:45 GMT
Date: Fri, 04 Nov 2022 11:27:43 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: 5P+nhYbyv3JsEsBEFEuyxMss8oIzRRHNXcWIjwXx4zYhMSupM6fjm93i2AD4nrM63adk9lExzZR+ntCQbx6e/Q==
x-amz-request-id: 6V4CGAZ0613CJC77
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 04 Nov 2022 11:09:34 GMT
age: 1089
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    67d5a988edcda47bc3b3b3f65d32b4b6
Sha1:   d4f0e0da8b3690cc7da925026d3414b68c7d954f
Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 04 Nov 2022 11:27:43 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E0C84586C2A68E2BC3F140DA7FEB5A34E38B9AD1633D2B738A9303DB96E5A88"
Last-Modified: Wed, 02 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21496
Expires: Fri, 04 Nov 2022 17:26:00 GMT
Date: Fri, 04 Nov 2022 11:27:44 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4391
Cache-Control: max-age=165134
Date: Fri, 04 Nov 2022 11:27:44 GMT
Etag: "6364c817-1d7"
Expires: Sun, 06 Nov 2022 09:19:58 GMT
Last-Modified: Fri, 04 Nov 2022 08:06:47 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7206
Expires: Fri, 04 Nov 2022 13:27:50 GMT
Date: Fri, 04 Nov 2022 11:27:44 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7206
Expires: Fri, 04 Nov 2022 13:27:50 GMT
Date: Fri, 04 Nov 2022 11:27:44 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7206
Expires: Fri, 04 Nov 2022 13:27:50 GMT
Date: Fri, 04 Nov 2022 11:27:44 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7206
Expires: Fri, 04 Nov 2022 13:27:50 GMT
Date: Fri, 04 Nov 2022 11:27:44 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7206
Expires: Fri, 04 Nov 2022 13:27:50 GMT
Date: Fri, 04 Nov 2022 11:27:44 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c45c5ed-4fd2-4e66-a47f-772395ce0860.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9866
x-amzn-requestid: a0aa9bd7-1d42-409c-b474-92be9fca9957
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0RrFzIoAMFTCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364340a-592d43a27b2ee494424770a4;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:06 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qNdNbORoi1KNd4r11LTrjUG6cRkz0T7mwTE24VVLQqPpGc9w_fRFUw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:53:08 GMT
age: 48876
etag: "8755ead9d94462f54cda2899213091587536e5c5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9866
Md5:    2de2d97028ee074a101930b1eb702cdd
Sha1:   8755ead9d94462f54cda2899213091587536e5c5
Sha256: 41de8ff5d34fabc0860286540f5c2c8e9b1aa80c1b62ed5de9ea64d99822e28f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10462
x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aMF6oEz_oAMF8Hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: w5Nv6yf06dCHv6q9wt8-guOfQSMywfZFoXxwWvcLc9FtdwgRIqPcUQ==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 18:32:15 GMT
age: 60929
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10462
Md5:    4e2853cc6ec6223160471401e6871f4b
Sha1:   f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
Sha256: bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08eaa5d0-649d-4568-ac8b-ca60d91ab718.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7703
x-amzn-requestid: 4f835957-6df6-4001-9c34-ed9749000b46
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0RpFGwoAMF0-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364340a-3f7b7dd36cb07d057b64ec2f;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:06 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5_POzz6quaFlv3R4djTMvwuiLWqmvHLCrZ58DtyQPJG8yWQoxV0LjQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:53:11 GMT
etag: "d4d2ee1aa9beb5bbd19aaaf590c8a0832fb180cd"
age: 48873
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7703
Md5:    9a763d44e05fa357713a41ab1388974a
Sha1:   d4d2ee1aa9beb5bbd19aaaf590c8a0832fb180cd
Sha256: f351b7e90e5435af071892b62af3ac591bc553281b3ea63b1ae067a3d03f572d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d1ffcec-ac2d-417a-85e7-0b20637346cd.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6535
x-amzn-requestid: 92454d07-58a9-4fbf-b528-bd481f9d8bbd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0WkH58oAMFV2w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63643429-6394260c28b7778c7573b946;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:37 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Hwoh3Qf6s6V9hUqTmgYd2yXVdWAi0cHINMzCJM0ZCdNXhHLLiy_hYA==
via: 1.1 637ef0a7bc474e9a314fa064b65e8082.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:51:50 GMT
age: 48954
etag: "4f69918018bc3fb0ab6344279a8ab5aaab062279"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6535
Md5:    624674545b8fd9d4011cd2c1ddc67746
Sha1:   4f69918018bc3fb0ab6344279a8ab5aaab062279
Sha256: f1b180cacf2f836e35b567d009e173dc8a8339d146d7157fc6bb429cc4e3adc6
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6557
x-amzn-requestid: f2e39db1-fb8a-4a9b-8a1d-ee08000ddeb6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC1VyFHuIAMF5Eg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636435be-7a03ef677f8dbd680f72de90;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:42:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: I6mALhsUwtQqMP_p_HxFaiCyfRDTtVzPIJjeDrKSEq7Tc_d5EcNw3Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:53:00 GMT
age: 48884
etag: "594e5a82ce82fb4cd76548b6d2d6b4cc419b7e4c"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6557
Md5:    ca6c7517d7015fbc35fa290c1c2d6afd
Sha1:   594e5a82ce82fb4cd76548b6d2d6b4cc419b7e4c
Sha256: a746b36be50209915a0e5657abd219aab382eee4b7556142aa1316daf3a9f5a4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1cdc7f46-586b-486f-968f-5fe03bbb41a9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7601
x-amzn-requestid: bec1a71e-c5bd-4332-ac60-18b49304a5a3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a275aEHYoAMFwlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635f736f-1b36c60a43415790430fbecf;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 07:04:15 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qU7wyWD8EdHphWbT-IrDcYYXxqUgabGPLXE5_CRJ1rwnbQMC93r4dw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 04:09:51 GMT
age: 26273
etag: "c721a00ae618e6ed997e102fa3d977ef830cac05"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7601
Md5:    ae1ac87f2e6534322ba259d6e06fcaa5
Sha1:   c721a00ae618e6ed997e102fa3d977ef830cac05
Sha256: 2f4cab8b925f6a79ed96b08edc00f04186d33ed9cfd4ba565884a931e83ae408
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 04 Nov 2022 11:27:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /LP19FKNB+0pgROxdDKk9g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         52.43.253.52
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: r66XdYspbDpX/hZJrzD8UaDDKA4=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 04 Nov 2022 11:27:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/astra/assets/css/minified/main.min-rtl.css?ver=3.8.2 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Mon, 13 Jun 2022 16:17:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 11432
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (37644)
Size:   11432
Md5:    7853b2b718ebc2022cdbd90b0927cab6
Sha1:   21c0e18847c68feac21c150e8dc9d42af3a14d75
Sha256: d11a856a0b7396a183b68dbff449af3a8bd000db722ab95300d7678e7158d027

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 24 May 2022 22:19:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 5321
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15660)
Size:   5321
Md5:    710f8b142ea44c0682dc2c30f318f065
Sha1:   49144e9b3a76d3d383b1d4359cf7a25e947f4233
Sha256: 708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/astra/assets/css/minified/menu-animation.min.css?ver=3.8.2 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Mon, 13 Jun 2022 16:17:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 468
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3412), with no line terminators
Size:   468
Md5:    f88a6a529851c8ed1ffe2bd83219e490
Sha1:   597ff167b702900ee4473e31e390808b8de95664
Sha256: ae20c6ea52a0534fdda58a7ae13839ac66194434406e00a3bb5f4538f9909886

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 04 Nov 2022 11:27:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.8 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 07 Oct 2022 14:18:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 4487
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21597)
Size:   4487
Md5:    7f01d3c2dd8fdc231241f6a3b10def8c
Sha1:   76646b14e9ce97d384b9adb20c622f09c7ecd140
Sha256: 999c4a983cd4b5a1a7652aa436630a18c1a6dbf91de090c903ab507b07df536a

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.3 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 07 Oct 2022 14:18:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 2985
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10435), with no line terminators
Size:   2985
Md5:    a6099ee677b6d930b6b878cf0cb08422
Sha1:   a2eb69454196d4250d624d25aaec587e97686642
Sha256: 755acd6dc98e63baff6d8b105b1bcaf63b79f935381fb3f32a79dace7faae0ac

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/tp-product-image-flipper-for-woocommerce/css/tp-product-image-flipper-for-woocommerce.css?ver=6.1 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Mon, 13 Jun 2022 16:16:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 176
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   176
Md5:    34c4a19ab035e9ac4c3ce635b4f07985
Sha1:   46af0382eef5a548293291e66b9f942c170b66c9
Sha256: ab773aa80a87e896175adf15cc5b7724a3c97f90630910f18f9959d985a8ca2c

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woolentor-addons/woolentor-blocks/src/assets/css/common-style.css?ver=2.4.5 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 07 Oct 2022 14:18:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 664
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   664
Md5:    9f9d1b6f340b685503bbbdc848c14556
Sha1:   1f6b601bc585295d079564ce659fe0faf58c634f
Sha256: fcf3b9ba53e2f6a1329873d85c50dedb6cadb0250e3b71a0e4580c97d9bf6807

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woolentor-addons/woolentor-blocks/src/assets/css/style-index.css?ver=2.4.5 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 07 Oct 2022 14:18:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 3307
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   3307
Md5:    bf3c65ccc45add814ee356e8295c5acb
Sha1:   cd5ed86188c95102c9559b5477dd02f02798ebd2
Sha256: 319181d2410ab446205012ac6c1b3914c985ad2e552a1f14a3b0cb6127546803

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 07 Oct 2022 14:18:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 323
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   323
Md5:    b24c24b7da3ffeed6ae8ade102a4d317
Sha1:   c4445b3977ce704b927508108e100213eea67a3c
Sha256: 5421ad49b70f379553eaceec744d753e74d4b065966c08aa7c7dd949553ca9a8

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woolentor-addons/assets/css/slick.css?ver=2.4.5 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 07 Oct 2022 14:18:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 564
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   564
Md5:    52dc6a8e85abdf73203fdae4e4b6f9fd
Sha1:   d19e874bdab0b560891082c591b33b7a481149f7
Sha256: a6ed9df694f9885f6959a20b8aa2090235427dd579b89eed311fbad2d70cfce7

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-860.css?ver=1659440378 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 02 Aug 2022 11:39:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 408
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2864), with no line terminators
Size:   408
Md5:    61c23d8f92b9a6729ce0f838f94f8a9a
Sha1:   c5bd99dedaf5333cf0cfc9008091dc6c2664b06c
Sha256: ed59d48aca5b580a907d7b9d0b1c79ca000bd8df7c414782bd66e6a04453b778

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-15.css?ver=1665152983 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 07 Oct 2022 14:29:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 2837
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15268), with no line terminators
Size:   2837
Md5:    c36aaea06f1896925554da9d919cad0f
Sha1:   c5ad0263ce7d40459415f3364e2d21092d1017d5
Sha256: 808be2cd28978cca776697b769104e4d599248c519ad0e4a7bfdbdf679d270a7

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-17.css?ver=1659440378 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 02 Aug 2022 11:39:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 356
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1118), with no line terminators
Size:   356
Md5:    03c5b88d8278e83e0de8679030445515
Sha1:   70f075ec246b2bb06e3ffff4cdf476bae29affa9
Sha256: bc2b52d4f0af16d3b2f610fed72576f6321bebc8e1b0156eedbbba71a4acc6b5

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 07 Oct 2022 14:18:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 309
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (483)
Size:   309
Md5:    0ea43e394ddaae5fdb710dbbc8869e58
Sha1:   3b0c93adc80720236096201db5cc2751e703996d
Sha256: 85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woolentor-addons/assets/css/simple-line-icons.css?ver=2.4.5 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 07 Oct 2022 14:18:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 1948
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (360)
Size:   1948
Md5:    3573572af4c98da663f961bdc5fe8596
Sha1:   b300d4d6cad6a9ecddf2428925854bea969773db
Sha256: 51c5416748136529089c8358319af0e5bdfdbd7145669f417248e378612c7ecf

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woolentor-addons/assets/css/htflexboxgrid.css?ver=2.4.5 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 07 Oct 2022 14:18:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 3060
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   3060
Md5:    6b9e50335297c4b3a83fd1fecef2f019
Sha1:   b3ac9c978a2532456d788df23aebc4771cb2cbd1
Sha256: 22f2d0c1d1de5a4d9c05ff1e4f823d34ec5509018d57e6b0d4609723e15ec6fb

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 07 Oct 2022 14:18:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 11654
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (1646)
Size:   11654
Md5:    e56098a703c5beb99abc9c3a870be594
Sha1:   76e54634e0628ab91310c760d619360151e26be1
Sha256: 0eb4438e57550f2c2a321d45a5cb1c92fb22d58f6dbcc9c189fc3bd1e4f78b8f

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 07 Oct 2022 14:18:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 12577
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (57726)
Size:   12577
Md5:    dc63c0a8e2d5857cc7a00a4b5456dabb
Sha1:   ee29df5eb2a4bf3eb805b160551c1afd84b42599
Sha256: 035ef40b1dd3df1eefb2dd3c8c2096425727fb939b06f3aa0bc6ef91dafd5441

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woolentor-addons/assets/css/woolentor-widgets-rtl.css?ver=2.4.5 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 07 Oct 2022 14:18:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 1787
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1787
Md5:    4c797e3a93bc57f31052758c32b89983
Sha1:   78ff2478a878fe12425276c06ccaf1897794b2eb
Sha256: f3d24eb02410879b205cb1c209a6dec5374f9730780b53d272996dcfc5a087f0

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 18 Nov 2020 20:36:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 4618
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   4618
Md5:    acdb97105af28a7066790c6748ae2e1e
Sha1:   65794d2c5a9d04f747faf370bc8bacd330e69e5a
Sha256: dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/pojo-accessibility/assets/css/style.min.css?ver=1.0.0 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 16 Aug 2022 14:32:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 6567
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (52105)
Size:   6567
Md5:    a7d47dfc44848089e070fc502a72975b
Sha1:   80beaa68c03cd22bfe25dc48427567e54b169ca3
Sha256: 70ba5e0fe2bdc6533aeeb1931165575e3ec28fecde390164561ba5c852959e79

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 07 Oct 2022 14:18:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 7112
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30837)
Size:   7112
Md5:    09b8b6cbc1b0486aa66786792e8c6984
Sha1:   73a077a16ce58b6b5c7169a61989f7421a913936
Sha256: a8e462cb54773ddf7cd4fdc03715c0cd12a537c633c026635d5810b621246db6

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout-grid.min-rtl.css?ver=3.8.2 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Mon, 13 Jun 2022 16:17:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 2315
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15325), with no line terminators
Size:   2315
Md5:    01336252da9773ae811e785e514667b5
Sha1:   3e725f63acabe21e7dfbab0f3b1edfe3be7feb9b
Sha256: ae5f3d72099064ba845e22ccf68c6d35e1c5bbcb5780b16ddd4f9a7e5d105d80

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 07 Oct 2022 14:18:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 4008
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19233)
Size:   4008
Md5:    2701214b028ad24fa347df8335b36d12
Sha1:   156bc8a7ad2657f00881890637f07c6052636499
Sha256: 9a6e62615ceeec7a9763e4f9614e4715d04fd87873b23db2b3ead06c996cad27

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/instagram-feed/img/placeholder.png HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Fri, 07 Oct 2022 14:18:43 GMT
accept-ranges: bytes
content-length: 176
content-security-policy: upgrade-insecure-requests
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1000 x 560, 1-bit colormap, non-interlaced\012- data
Size:   176
Md5:    a5443c5bb9bd40f1b1e6652eedce9925
Sha1:   aefb6c761d953a69c8b7ee7d98cad00545d74364
Sha256: f623564c53c2e08780c064012cfbdbde0a80ee56816f4d5d3d52c46ed285cb95

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/css/widget-icon-box-rtl.min.css HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 07 Oct 2022 14:18:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 2108
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12953)
Size:   2108
Md5:    c859922411ff59b193de3e7b0b291af9
Sha1:   1d88bc422eea3c5ecca7206feb41a904c63045b5
Sha256: e04ddf46fced15fbf21c8cbbd2291cee8381598bcf3d5350f6a6451d7c755cfe

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET / HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Fri, 04 Nov 2022 11:27:40 GMT
server: Apache
link: <https://metupachat.com/wp-json/>; rel="https://api.w.org/", <https://metupachat.com/wp-json/wp/v2/pages/15>; rel="alternate"; type="application/json", <https://metupachat.com/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
x-server-cache: true
x-proxy-cache: EXPIRED
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (62181), with CRLF, LF line terminators
Size:   70890
Md5:    4a6c217ce6952df4081390ca59d3f389
Sha1:   d20b97e820a59b20c50c583dc89e7608eb9905e9
Sha256: 04f0b72ca451c9df16e99b4c2f8974d8310ae0881505186171277922c338acf1

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CHeebo%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&subset=hebrew&ver=6.1 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 04 Nov 2022 11:27:44 GMT
date: Fri, 04 Nov 2022 11:27:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9115)
Size:   5649
Md5:    25c4dde4b8c8305a6ec47db3da5af6b4
Sha1:   38b4ae1a111dabc108c064492a25de744e7496ab
Sha256: e3db0f8547882b62ad178b4a76a6612733f0e203f5c53b487523d3ceb5cc0421
                                        
                                            GET /wp-content/themes/astra/assets/js/minified/mobile-cart.min.js?ver=3.8.2 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 13 Jun 2022 16:17:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 908
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2772), with no line terminators
Size:   908
Md5:    35455aaceff31152feba5b26a3d73b21
Sha1:   5d0d24a4325c8e64a044d396b94cb14c5d8cb550
Sha256: 59d0f67a74d1d22ce471b4343f558b367d276edc93530b9ac1c0e9d07c46bbb8

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woolentor-addons/woolentor-blocks/src/assets/js/script.js?ver=2.4.5 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 07 Oct 2022 14:18:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 2106
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (476)
Size:   2106
Md5:    f5d918fb0120aef95b41a5230b9bd8a4
Sha1:   515c0c5443736cff77a16cabf03012c5ad8ba566
Sha256: 91e76bbc32d2dcc2e67ad25a184a21ae750ad8304960bfa3557d53261a789542

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.4 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 07 Oct 2022 14:18:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 1093
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2938), with no line terminators
Size:   1093
Md5:    769e9d3f7fc383ec1a02024e39730474
Sha1:   4f5a5edf28ed19b48c5e40747ec6896f0df8f09e
Sha256: 4636689d57889e984a7a1a1c6e2516b7a2d951407ca826aaf505c50002e2b486

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woolentor-addons/assets/js/accordion.min.js?ver=2.4.5 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 07 Oct 2022 14:18:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 1615
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (3889), with CRLF line terminators
Size:   1615
Md5:    daae9ff9d4c5a7a4a4af5d568519419e
Sha1:   8b4ccfad2acd82fb32418a14c434396068840666
Sha256: d842905d49d1424c559e340a7ceee5abf31593951458afa94d8b50c1b191879e

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/pojo-accessibility/assets/js/app.min.js?ver=1.0.0 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 16 Aug 2022 14:32:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 1818
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5265)
Size:   1818
Md5:    c5a176b8ac794146e16a59d633b1a778
Sha1:   59a1ce86c104cc667c8c244891586ccecf23b449
Sha256: e1ac99036f1c2dc66d2ebec0749bbc34d1f4ff7c53ef712a343c3a2c8881f5bb

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.4 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 07 Oct 2022 14:18:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 792
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2139), with no line terminators
Size:   792
Md5:    1ca3f41c13e0027acc45f0601f8b640f
Sha1:   cced34af0c6a59e9cee4229faa66ab39c7031506
Sha256: d3bc5eaf4c6be9473dbba690825cce9a1a6f4accb6721dae7875efef54942f41

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.4 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 07 Oct 2022 14:18:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 1000
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1668)
Size:   1000
Md5:    0bebfb5722cbc8ac04e62aa40698be49
Sha1:   3bc5e4f29cb19a2d80d46dee242dabf7e42c0fd3
Sha256: 70d02eabbadbe176455a2bb53d8d567feca69847c067a5274987a8bdc65e3c05

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woolentor-addons/assets/js/slick.min.js?ver=2.4.5 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 07 Oct 2022 14:18:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 14097
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32077)
Size:   14097
Md5:    607ec6e018e544fc80afaaa0aed2e555
Sha1:   2b0f3efd3ff6094176775d42394c963d874792ec
Sha256: b707feefe85f6c8a8e99b1b5f434f2a19462ea81e99faa0fa8e1253a2ec26f0d

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.4 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 07 Oct 2022 14:18:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 1202
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (3037), with no line terminators
Size:   1202
Md5:    267e8958dbad03e5b8e684648aa15aa2
Sha1:   fb81c3ab32d537817004715e011c33f2f7efaa81
Sha256: 8d2937738bf3b55c9ec65b0f2429361d4a2b0679f52ef2b9700192ae20acb03e

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/wp-util.min.js?ver=6.1 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 02 Nov 2022 10:15:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 758
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1391)
Size:   758
Md5:    60bc75e3b14030c62d9fd3a3d317d8a8
Sha1:   6d919bbd05a3984a8e5e67b693e6d5d41cc885f9
Sha256: e22df84be1a3ffe3b54352a4a39e14adb3fac69f2ce755e4c7babbc243c5bb4b

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 02 Nov 2022 10:15:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 8305
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18798)
Size:   8305
Md5:    ac9c7baaab74ef2576932d5798161987
Sha1:   fa202113e12b09696788a7024984879bddd29143
Sha256: c03d52f8f157e9209646e3e696e9845d7d2b3cf3e73c8204f371b7393e738026

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 07 Oct 2022 14:18:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 3747
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12198), with no line terminators
Size:   3747
Md5:    e2a8decccf4d0a6b925af707a36077a9
Sha1:   26a0febc9c3d91e75410f74b9ec62099ba1cbe90
Sha256: 09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 02 Nov 2022 10:15:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 8344
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (8189)
Size:   8344
Md5:    838560e989767f2ef5951b9eeee20352
Sha1:   6bf8419cb4d68d9beced9e4b79b22b347ae16a46
Sha256: 72e6d275c5229613a59aef94523fc6a96330553976aee003d8544d5806fa0c3d

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 07 Oct 2022 14:18:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 16151
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (40474)
Size:   16151
Md5:    eb7e2c1cbf83cab4aa6a7fef0dd47eb2
Sha1:   774647abb91ffaee699a8047c9d2fd8a65daff35
Sha256: bdb3c3194100984be02d52864d7ade76025aa5c3028133d27d947ffb2a75b1e7

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 07 Oct 2022 14:18:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 2313
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4918)
Size:   2313
Md5:    a8a064f7e05640436a939b0839c64a66
Sha1:   e9bbdd085a3038acd63d108accba8dfb5499f4c0
Sha256: 2173daddf76795f8194c34463bfc5c9be793aecc545b4672ed5a6f9afcb473c3

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woolentor-addons/assets/js/woolentor-widgets-active.js?ver=2.4.5 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 07 Oct 2022 14:18:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 4848
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (472)
Size:   4848
Md5:    8d4153bee81a49d8f0aa1277f294d889
Sha1:   fc70bd580f27509e41c4089e3abf5800041a3548
Sha256: 8505b9c7b8544f3f865d18151cea86a4b15d785b73c3afcf0b401c25f06332b5

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 07 Oct 2022 14:18:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 13281
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (32889)
Size:   13281
Md5:    a3a9966edbcf4ff24cbce6355e84c975
Sha1:   4c31a0c1e12987b364c178689b8283d09e4f8a63
Sha256: d50d738abb2b285ac79c3552d286706f3a99e60add08edad08f20b2d4adbdb8d

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.7.1 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 07 Oct 2022 14:18:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 374
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (754), with no line terminators
Size:   374
Md5:    ef785f463505633971eae5c08ad626d4
Sha1:   624e22257f386801822229db3a4bbd2e24b25e2f
Sha256: b2a0dc77f0f79d81698a7e3893e16ecba7b0d980b80a5233656d9b11f1d8160d

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.9.4 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 07 Oct 2022 14:18:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 4621
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13887), with no line terminators
Size:   4621
Md5:    4d728e71811e2eec3160d805315170dc
Sha1:   1a2ebcf16c0e29b7ae388187f4dd528e671fec5e
Sha256: 53ce82cb57a4d3fa593c481a1788d16cc939d0d7b0b7fa2f7c914e8cfbf77b1c

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=6.0.8 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 07 Oct 2022 14:18:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 9776
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27578)
Size:   9776
Md5:    0ed40f6324a5b865c2420ef2ee54e122
Sha1:   1f437f4efc895cb01d41aed4bb6fa5cb1c26df15
Sha256: b30f9ec7831aa91b205849c4e45d7ccb20d3fb3a7f157b53bedbed9221f78585

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 04 Nov 2022 11:27:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 04 Nov 2022 11:27:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 04 Nov 2022 11:27:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 04 Nov 2022 11:27:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 04 Nov 2022 11:27:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://metupachat.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Nov 2022 16:40:18 GMT
expires: Fri, 03 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 67647
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size:   30928
Md5:    ac0d2859ea5f8fd6bcb3c305c08ec184
Sha1:   7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
Sha256: ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
                                        
                                            GET /s/heebo/v21/NGS6v5_NC0k9P9H2TbE.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://metupachat.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27116
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 01 Nov 2022 15:03:06 GMT
expires: Wed, 01 Nov 2023 15:03:06 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:35:20 GMT
age: 246279
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 27116, version 1.0\012- data
Size:   27116
Md5:    13c1ac7fc8f934e169620e81471a3a54
Sha1:   d111242b230c54204e9ec061537869f8ce20cb53
Sha256: b38977ea35fde92fe200fa14ac7cc55e2edce54b998ce9a08734ba1dd9053fed
                                        
                                            GET /s/heebo/v21/NGS6v5_NC0k9P9H0TbFzsQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://metupachat.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 28 Oct 2022 16:45:43 GMT
expires: Sat, 28 Oct 2023 16:45:43 GMT
cache-control: public, max-age=31536000
age: 585722
last-modified: Mon, 11 Jul 2022 20:35:20 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11764, version 1.0\012- data
Size:   11764
Md5:    271271faf099fdfab30e2b7560c2f3a8
Sha1:   5c3fbf8ea016ce4eb80e75ea09875fab0ef24846
Sha256: e83a43067942e341ebb7319116315855d2c24e463c9f0eda69f1a4b5f66ded18
                                        
                                            GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen-grid.min-rtl.css?ver=3.8.2 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Mon, 13 Jun 2022 16:17:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 933
date: Fri, 04 Nov 2022 11:27:42 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5732), with no line terminators
Size:   933
Md5:    3ffb5ef0d6ba57b4808496c1f87a3e66
Sha1:   3b9c205789e581082b007cd43fd6845b272254ca
Sha256: 6989b890ee6e42cd04b089ce9348c3ae2dff02090e85cb7e0510f7f86de4502f

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /s/fahkwang/v16/Noa26Uj3zpmBOgbNpOJXnKlWHCs.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://metupachat.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 01 Nov 2022 15:20:58 GMT
expires: Wed, 01 Nov 2023 15:20:58 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 16:23:29 GMT
age: 245207
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 10412, version 1.0\012- data
Size:   10412
Md5:    86478330db8159b3028e05ca956dbccd
Sha1:   0395a1707ea65ebfac319e10bdc2ef0cfc95186a
Sha256: 8c1e1cc6546776927d93f41b5a0ca7d5ba34bc33b81d552c77d56b9006831244
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 04 Nov 2022 11:27:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://metupachat.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: font/woff2
                                        
last-modified: Fri, 07 Oct 2022 14:18:37 GMT
accept-ranges: bytes
content-length: 78196
content-security-policy: upgrade-insecure-requests
date: Fri, 04 Nov 2022 11:27:42 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Size:   78196
Md5:    e8a427e15cc502bef99cfd722b37ea98
Sha1:   a9922842a120a7f1eaced667480c5e185a106d69
Sha256: d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /images/core/emoji/14.0.0/svg/1f34e.svg HTTP/1.1 
Host: s.w.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.0.77.48
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 04 Nov 2022 11:27:45 GMT
content-length: 446
last-modified: Tue, 12 Apr 2022 03:47:26 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (446), with no line terminators
Size:   446
Md5:    d963d0ebb1bc7743dc37568e3b7c5cfb
Sha1:   9aa85260cd46c479f1eb6c58b42caf8d39da5b9c
Sha256: b55a6ab3403f37e8404dab174ed26b5997f48a67df2ac317c442b86916343d3e
                                        
                                            GET /wp-content/uploads/2022/09/IMG_3493-2-e1665152690799.jpg HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Fri, 07 Oct 2022 14:24:50 GMT
accept-ranges: bytes
content-length: 151055
content-security-policy: upgrade-insecure-requests
date: Fri, 04 Nov 2022 11:27:42 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 944x1255, components 3\012- data
Size:   151055
Md5:    d5f48b8950f411652aee7d98890b3b22
Sha1:   0d0a88edc4c590b2069f71a03f3cb9d44b5bca11
Sha256: e39c388a604a3c8435bdecb14926aa15c0ffd13cdc0868afdd90e5eee1ad3811

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2022/09/IMG_3142.jpg HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Wed, 14 Sep 2022 19:18:11 GMT
accept-ranges: bytes
content-length: 920071
content-security-policy: upgrade-insecure-requests
date: Fri, 04 Nov 2022 11:27:42 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 216x216, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 953x1270, components 3\012- data
Size:   920071
Md5:    2254d2630b361bfaf8d9f39243a49285
Sha1:   e3c4f55c2a603aaaf34fb4a08c35ce69a7c6fcb7
Sha256: 1040427afbe89004770e13fec51d049d9f28ad8d7702de8945c0f6d76940b8b1

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: image/x-icon
                                        
date: Fri, 04 Nov 2022 11:27:42 GMT
server: Apache
content-length: 2780
last-modified: Tue, 25 Mar 2014 18:05:39 GMT
cache-control: max-age=604800
expires: Mon, 07 Nov 2022 09:42:17 GMT
content-security-policy: upgrade-insecure-requests
x-server-cache: true
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 2 icons, 16x16 with PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced, 8 bits/pixel, 32x32 with PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced, 8 bits/pixel\012- data
Size:   2780
Md5:    dabe9ce5581670f84e89a789a78d09b8
Sha1:   1662f23ff5553364505a29cac571102cf370fc85
Sha256: 04ec9ba779be752a6480758574feae350370480887bc7fe52fd968519cf27208

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wdhyzbi.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://metupachat.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 28 Oct 2022 23:09:38 GMT
expires: Sat, 28 Oct 2023 23:09:38 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:59:41 GMT
age: 562687
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 25036, version 1.0\012- data
Size:   25036
Md5:    9dd150fb7229e143e0f71ba1fe8c8f63
Sha1:   664abfc4941054600213dda51a3d6f0d05b3c312
Sha256: cffe139366b3882387dddbd10d59e7d9aa29345793fdbf51ddde809ca6a0bec2
                                        
                                            GET /wp-content/uploads/sb-instagram-feed-images/311600209_1285598898863530_1892244906508971537_nlow.jpg HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Fri, 14 Oct 2022 10:46:43 GMT
accept-ranges: bytes
content-length: 14604
content-security-policy: upgrade-insecure-requests
date: Fri, 04 Nov 2022 11:27:42 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x569, components 3\012- data
Size:   14604
Md5:    27102fdeeabd8f2a385d08dc9ac188f7
Sha1:   ee5adb9386a93a0b00d16f4a980d371af9814551
Sha256: 28bd86aa8cf2ab4c37442694741577bf5f628cab9944ec110afa64f2127eb604

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/sb-instagram-feed-images/307875110_627882569004561_6464119170728781734_nlow.jpg HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Thu, 22 Sep 2022 22:15:39 GMT
accept-ranges: bytes
content-length: 18222
content-security-policy: upgrade-insecure-requests
date: Fri, 04 Nov 2022 11:27:42 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x400, components 3\012- data
Size:   18222
Md5:    bfdd7d2917dc8e4922b9226cf487e30c
Sha1:   7fb418a549faf120079fb446ebf4d42f03c6f921
Sha256: cc7e51b87c9e75aa61fd80cc4dfd7188dd5a7b4eb982834fea886437050aefb8

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/sb-instagram-feed-images/311672329_502161045103230_4331041961378130144_nlow.jpg HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Wed, 12 Oct 2022 22:00:03 GMT
accept-ranges: bytes
content-length: 22390
content-security-policy: upgrade-insecure-requests
date: Fri, 04 Nov 2022 11:27:42 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x400, components 3\012- data
Size:   22390
Md5:    b4732baa1f6730eddc3ea51f34cd85c5
Sha1:   8436c7a98208a4438c81d0bd17ca6f6e454a9497
Sha256: 123dc668215b133a5128e52ce7d81dab7109347be5b31adc8fd003a3529a8a90

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /fashion-designer-boutique-02/wp-content/uploads/sites/917/2021/07/fashion-designer-cc-visa-icon.svg HTTP/1.1 
Host: websitedemos.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.26.4.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 04 Nov 2022 11:27:45 GMT
last-modified: Tue, 27 Jul 2021 08:43:34 GMT
vary: Accept-Encoding
etag: W/"60ffc736-554"
expires: Sun, 04 Dec 2022 05:08:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 21979
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D5LXkhrRCgJl1Sc2lbFQYOir%2FS9lNVYUxITH9femRrc2z2lJexNvWwLqVFYdHmA%2FyEl0QFm6EvYQkM7DZMWTut1uQMh9sAzkPCJNNzo%2BzW%2BGLkUAhZMQSHDhmjPhVsRwQKA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 764d009259f7b4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1260)
Size:   24481
Md5:    36e6efa4b97fe00f0f9d9a6b2830354c
Sha1:   c5791ad1d0d1d7dcdfeca56e6ee02092f1201862
Sha256: 0c078b5558cbc11b80be6c308717317ab9276f04f69bfeddf40fb607a5344798
                                        
                                            GET /fashion-designer-boutique-02/wp-content/uploads/sites/917/2021/07/fashion-designer-cc-mastercard-icon.svg HTTP/1.1 
Host: websitedemos.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.26.4.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 04 Nov 2022 11:27:45 GMT
last-modified: Tue, 27 Jul 2021 08:43:33 GMT
vary: Accept-Encoding
etag: W/"60ffc735-4d6"
expires: Sun, 04 Dec 2022 05:08:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 21979
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PK01WWEajD%2FU0dlHwQvbhtG%2Ble6CpzfrpgeUIjvg0YSKMgQTd4sybotVLQhJMO82vO02rcNdHjU0BqjaXKSiKJHZvtMr9DYygFT%2F4zbkF0Gpp6aqR%2BL%2BA6N1ik4aldPaO4Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 764d009259f2b4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1134)
Size:   27795
Md5:    b1b8ec14f3ecd4da82141361d1a10dd8
Sha1:   b26c13423fe5456623e22703138cd955ae70ea09
Sha256: ed3943d75f8a628de3be8e47aea52d188907e079b1796e5ac05ef05838ab7511
                                        
                                            GET /wp-content/uploads/sb-instagram-feed-images/311612877_639486830962480_7292584121250708104_nlow.jpg HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Sun, 16 Oct 2022 10:00:41 GMT
accept-ranges: bytes
content-length: 19958
content-security-policy: upgrade-insecure-requests
date: Fri, 04 Nov 2022 11:27:42 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x400, components 3\012- data
Size:   19958
Md5:    533fc028eaeda067524cf60152718e03
Sha1:   c91f92d3f9a6897be5c91c335837a4f4582d056d
Sha256: 0f5a33f2577ee93e116eb1e1b361022083f1602271f8fe4f350c4ca4e136b7be

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/sb-instagram-feed-images/311799568_614959030362323_5396161623276940623_nlow.jpg HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 18 Oct 2022 22:12:14 GMT
accept-ranges: bytes
content-length: 17266
content-security-policy: upgrade-insecure-requests
date: Fri, 04 Nov 2022 11:27:42 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x569, components 3\012- data
Size:   17266
Md5:    a6be02421aa21b62af8cdf9bbba2540a
Sha1:   19bc1982915d6829505b3771cd8723d2cdee609d
Sha256: f23ed297617e5724b94a9610d113bb24d4557a1f85e7f6921c982cb207fb23eb

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /css?family=Montserrat%3A400%2C600%7CFahkwang%3A600&display=fallback&ver=3.8.2 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 04 Nov 2022 11:27:44 GMT
date: Fri, 04 Nov 2022 11:27:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   21588
Md5:    eaeb4f15d8b32135c2c6d82e60918f35
Sha1:   de3a0b19fb9e584923da47e04cdf01f1c0e31d62
Sha256: 37bae2d6236ca8356a04404e35a0cc8edfc28294ddc8f9c33a937896be633274
                                        
                                            GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 07 Oct 2022 14:18:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 671
date: Fri, 04 Nov 2022 11:27:42 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1320)
Size:   671
Md5:    5ccb71a38d381c56ef048a0608f55dcc
Sha1:   c19eef8a9e0a40b3d1b01d0bf6868762316db311
Sha256: b0f9cf59a8daca1c19fb220bdaba817c5745c2565bfcbcadf8f5d2b8e2962022

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /?wc-ajax=get_refreshed_fragments HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://metupachat.com
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
access-control-allow-origin: https://metupachat.com
access-control-allow-credentials: true
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-robots-tag: noindex
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
content-length: 488
date: Fri, 04 Nov 2022 11:27:42 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1232), with no line terminators
Size:   488
Md5:    3398cc792537334e64b40efa0ac56727
Sha1:   9171969bfdc495ee3baf3f522e998612a9a5d100
Sha256: 1d47f1266c379b7ebfdfc98f17f002c7c40ac72757436130babdb8a9dce1e0d0

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2022/06/IMG_9564-300x300.jpg HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 26 Jul 2022 20:12:10 GMT
accept-ranges: bytes
content-length: 24872
content-security-policy: upgrade-insecure-requests
date: Fri, 04 Nov 2022 11:27:42 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 216x216, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 300x300, components 3\012- data
Size:   24872
Md5:    568e1129414326a87edbfb64b8a35464
Sha1:   e1ea58b1228f93f9ba33c23fb897acd8702b8cd0
Sha256: 7e05fdd72f5bab78a8570d53c31d6b065f2411cf1d7b7643291f339db42102fa

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2022/02/ae2c630c-4f0d-4aea-9c63-2f48ac152bd5-1-1-300x300.jpg HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Fri, 11 Feb 2022 13:37:40 GMT
accept-ranges: bytes
content-length: 12290
content-security-policy: upgrade-insecure-requests
date: Fri, 04 Nov 2022 11:27:42 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2], baseline, precision 8, 300x300, components 3\012- data
Size:   12290
Md5:    f6401acfb1ce566c8d1cf2a82e0a5e6e
Sha1:   5985a211c0ad5fb3615d36394d2af276afb7b34f
Sha256: 0d90016fc4578afd84ed15cc56aeba9a25d70c2d808c94d39048882034e88223

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /images/core/emoji/14.0.0/svg/1f34b.svg HTTP/1.1 
Host: s.w.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.0.77.48
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 04 Nov 2022 11:27:45 GMT
vary: Accept-Encoding
last-modified: Tue, 12 Apr 2022 03:47:50 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   26326
Md5:    93bd73b9818fd76e2e919d4a0c09d462
Sha1:   d97f309469ef600ca727b0c6c78bac4a782cabbb
Sha256: 8e8c7214796473089217e18a97e279792cd563f9ce2edaf56dc974774e5acf8e
                                        
                                            GET /wp-content/uploads/2022/07/IMG_9587-300x300.jpg HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 26 Jul 2022 20:08:12 GMT
accept-ranges: bytes
content-length: 22811
content-security-policy: upgrade-insecure-requests
date: Fri, 04 Nov 2022 11:27:42 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 216x216, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 300x300, components 3\012- data
Size:   22811
Md5:    66dbec037ed8d30aef45f9ab6d47724e
Sha1:   b19ca6523d7a220d49ecc7821d422d6a9617e216
Sha256: 98c1f956d21b1dfe08223546336d12f4a0a51088bdaf657e2a33918a1f2b19e7

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2022/02/EE3FB2DC-AF88-4C7F-A093-D31B406365E9-300x300.jpeg HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Fri, 04 Nov 2022 11:27:45 GMT
server: Apache
content-length: 14307
last-modified: Thu, 22 Sep 2022 13:02:13 GMT
content-security-policy: upgrade-insecure-requests
x-server-cache: true
x-proxy-cache: EXPIRED
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 300x300, components 3\012- data
Size:   14307
Md5:    bba9a755bcd5a363fe6ba5181d5dd6b9
Sha1:   515c114352f09e4968c9fd4262d592c96e33c302
Sha256: 2a88d764a1089cd26453329ff86a0d25adcf59b94807777c07a5030e6e0c40da

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f952f80-88d2-4881-a879-4d2680d4b6ee.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5691
x-amzn-requestid: 0aec00d5-d966-4166-af0d-ea2643c8c3d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0TBE9FIAMFm3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63643413-64916cd42060451d18cbc060;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:15 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 1XFb8vn11i6SPmrXYU5itq7elgIFNAmuQVBtMhOPCFJa7oKQlEOs0A==
via: 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 22:12:44 GMT
etag: "936152386cf80e4e857943561af97c10d2346d75"
age: 47707
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5691
Md5:    4208f9a8b666cae4d746ded7876acef6
Sha1:   936152386cf80e4e857943561af97c10d2346d75
Sha256: d4666c8ffec1b3c4c6955fbaa09f76d37e37932a49ad92fc587c13b200007f00
                                        
                                            GET /wp-content/uploads/2022/09/IMG_3122-300x300.jpg HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Wed, 14 Sep 2022 20:48:20 GMT
accept-ranges: bytes
content-length: 19331
content-security-policy: upgrade-insecure-requests
date: Fri, 04 Nov 2022 11:27:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 216x216, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 300x300, components 3\012- data
Size:   19331
Md5:    ce4488f9d26426043754d9aee8d1677c
Sha1:   c680a5d9d5183abf09b9204cded9121c568a83c0
Sha256: 86237085a53caa1c6cf9820480b7b159affc6903d72e94de3125319055955b38

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a631333-54a4-458c-b54b-2dd96d4ede5a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11188
x-amzn-requestid: 72e0a128-e0c4-4a93-8e29-01a574b2d1c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0XNHPcoAMFkNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364342d-341a40d37b7bcc9153749d67;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: eo3FBGjoivBN1-4xP1UiTocKbLd87acRtOX2AQrPr1a4yDboDrXYRA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:53:19 GMT
age: 48873
etag: "29ca25963b777fd7463c65d8cde6d65172c996e1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11188
Md5:    5aedde5b1d003651d773c89833460868
Sha1:   29ca25963b777fd7463c65d8cde6d65172c996e1
Sha256: 04b95b954d7d992e6547d05d052c6f3f8a4cfb4a5988f9e6c6629969053bf7b3
                                        
                                            GET /fashion-designer-boutique-02/wp-content/uploads/sites/917/2021/07/fashion-designer-cc-apple-pay-icon.svg HTTP/1.1 
Host: websitedemos.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.26.4.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 04 Nov 2022 11:27:45 GMT
last-modified: Tue, 27 Jul 2021 08:43:31 GMT
vary: Accept-Encoding
etag: W/"60ffc733-84d"
expires: Sun, 04 Dec 2022 05:08:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 21979
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5L9HyRjUyw5VSeaN7tgP%2B9iaq3PLG%2F7%2FYukGR9pCJL6ZQe7%2FGhdSqQDf%2BVgGakrwypgSY9dk6Kajyu%2Bg%2BgRE%2F686EAvpLY%2BpX9A%2BBclTYQl%2BaGeuA9jLx5TmoNP7tSCwnwE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 764d009259f8b4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/elementor/assets/css/frontend-lite-rtl.min.css?ver=3.7.8 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 07 Oct 2022 14:18:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /images/core/emoji/14.0.0/svg/1f38b.svg HTTP/1.1 
Host: s.w.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.0.77.48
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 04 Nov 2022 11:27:45 GMT
vary: Accept-Encoding
last-modified: Tue, 12 Apr 2022 03:47:50 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /images/core/emoji/14.0.0/svg/1f33f.svg HTTP/1.1 
Host: s.w.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.0.77.48
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 04 Nov 2022 11:27:45 GMT
vary: Accept-Encoding
last-modified: Tue, 12 Apr 2022 03:50:38 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /images/core/emoji/14.0.0/svg/1f331.svg HTTP/1.1 
Host: s.w.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.0.77.48
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 04 Nov 2022 11:27:45 GMT
vary: Accept-Encoding
last-modified: Tue, 12 Apr 2022 03:47:26 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 02 Nov 2022 10:15:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/css/dist/block-library/style-rtl.min.css?ver=6.1 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Wed, 02 Nov 2022 10:15:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style-rtl.css?ver=8.3.3 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 07 Oct 2022 14:18:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /images/core/emoji/14.0.0/svg/1f34f.svg HTTP/1.1 
Host: s.w.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.0.77.48
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 04 Nov 2022 11:27:45 GMT
vary: Accept-Encoding
last-modified: Tue, 12 Apr 2022 03:53:43 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-grid.min-rtl.css?ver=3.8.2 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Mon, 13 Jun 2022 16:17:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /images/core/emoji/14.0.0/svg/1f929.svg HTTP/1.1 
Host: s.w.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.0.77.48
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 04 Nov 2022 11:27:45 GMT
vary: Accept-Encoding
last-modified: Tue, 12 Apr 2022 03:53:44 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /images/core/emoji/14.0.0/svg/1f36f.svg HTTP/1.1 
Host: s.w.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.0.77.48
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 04 Nov 2022 11:27:45 GMT
vary: Accept-Encoding
last-modified: Tue, 12 Apr 2022 03:47:26 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/woolentor-addons/assets/css/woolentor-widgets.css?ver=2.4.5 HTTP/1.1 
Host: metupachat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://metupachat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.185.48.209
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 07 Oct 2022 14:18:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
date: Fri, 04 Nov 2022 11:27:41 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed