| metafaq.org/favicon.ico |  104.21.48.1 | 200 OK | 15 kB |
IP104.21.48.1:443
CertificateIssuerCLOUDFLARE, INC. Subjectmetafaq.org Fingerprint79:CB:C2:68:8E:CF:64:A3:74:2A:E7:EF:78:A5:CF:4D:57:C1:C2:9D ValidityFri, 25 Apr 2025 21:24:20 GMT - Thu, 24 Jul 2025 21:32:47 GMT
File typeMS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Hash76f74a140d2e97e1224eff29ccb306e9 7c927faf1ae307cb6379609a8d5a530f1e86d967 7f33b33facf191d0dc2365f463c6ce7ec4ada3240a1afb93ffdc0b7bdf151deb
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: metafaq.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://metafaq.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 03 May 2025 12:43:31 GMT
content-type: image/x-icon
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ryihr%2FR1zF5qYVE00ehLYHxTVLuZH%2BS57uWiCXIuqcyDYqDBuRdim%2BzDiKKUiun%2BxftW%2FZUTjKIU9yp8I%2Fkr6lReFZ98fOoluRBLp9Ub5SSKvbd07wtGnq2o6uIybw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=604800
expires: Thu, 08 May 2025 06:04:19 GMT
last-modified: Tue, 29 Apr 2025 19:02:13 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 196752
content-encoding: br
cf-ray: 939fd82e9a8c56a5-OSL
server: cloudflare
x-content-type-options: nosniff
strict-transport-security: max-age=0; includeSubDomains; preload
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3657&min_rtt=953&rtt_var=2539&sent=107&recv=118&lost=0&retrans=0&sent_bytes=56759&recv_bytes=7092&delivery_rate=5019155&cwnd=48000&unsent_bytes=0&cid=d42ac5075ea379ee&ts=474&x=16"
|
|
| metafaq.org/Assets/Images/Icon-512x512.png | 104.21.48.1 | 200 OK | 48 kB |
URL GET metafaq.org/Assets/Images/Icon-512x512.png IP104.21.48.1:443
CertificateIssuerCLOUDFLARE, INC. Subjectmetafaq.org Fingerprint79:CB:C2:68:8E:CF:64:A3:74:2A:E7:EF:78:A5:CF:4D:57:C1:C2:9D ValidityFri, 25 Apr 2025 21:24:20 GMT - Thu, 24 Jul 2025 21:32:47 GMT
File typePNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced Hash9ea5fd21e73199b39680374e92f9ca6b 194c9756d4b531b22871669fa2ff75059d8b344a 669e4b70e051d9e65a49bf251518a766df6cb4aac98f8f584bdf37be1f92899d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /Assets/Images/Icon-512x512.png HTTP/1.1
Host: metafaq.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://metafaq.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 03 May 2025 12:43:31 GMT
content-type: image/png
content-length: 48027
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=604800
expires: Fri, 09 May 2025 03:57:29 GMT
last-modified: Tue, 29 Apr 2025 19:02:13 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
age: 117961
cf-cache-status: HIT
cf-ray: 939fd82e9a8b56a5-OSL
server: cloudflare
x-content-type-options: nosniff
strict-transport-security: max-age=0; includeSubDomains; preload
vary: Accept-Encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Op32v5O2vWPxrjJKxuEXf7i1XXV5eIgt7k28DGmdu5%2FDfVELrfT4mzuQhhrBqPrc4aFTiyKoSRKLyM1KP2cn8j9wyhXVwjeprhlRCqqsWMelSX5LMbO7rc1jYnQ6Gg%3D%3D"}],"group":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4658&min_rtt=953&rtt_var=2542&sent=65&recv=115&lost=0&retrans=0&sent_bytes=6806&recv_bytes=6959&delivery_rate=2171&cwnd=12000&unsent_bytes=0&cid=d42ac5075ea379ee&ts=466&x=16"
|
|
| | 104.21.48.1 | 200 OK | 22 kB |
IP104.21.48.1:443
CertificateIssuerCLOUDFLARE, INC. Subjectmetafaq.org Fingerprint79:CB:C2:68:8E:CF:64:A3:74:2A:E7:EF:78:A5:CF:4D:57:C1:C2:9D ValidityFri, 25 Apr 2025 21:24:20 GMT - Thu, 24 Jul 2025 21:32:47 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (593), with CRLF line terminators Hashe86faff1ea630b961d5b6b5d020ecfcc 89ad024a486356215f0bc784b97be21bd5809e3d 3f1501a07d9c8fa4d5c103f36c56828799503b744a33b030b9ce0801bc384970
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: metafaq.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 03 May 2025 12:43:30 GMT
content-type: text/html; charset=UTF-8
cf-ray: 939fd8292b46b4f3-OSL
server: cloudflare
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6xeyF50gW4rD4OljxbFqqSi4DMFirK%2B8p1LkiNua3TMWvtMqJ7kWKHQkbydx7YHsC9KlECHN84mASIY%2F0BcR0y7e8FCGsQAoDwDEDMNTfRuFwLF0RVEklRCRdcc5%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6487&min_rtt=472&rtt_var=12063&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3547&recv_bytes=1238&delivery_rate=7554782&cwnd=237&unsent_bytes=0&cid=cb0e75314d620a9b&ts=455&x=0"
X-Firefox-Spdy: h2
|
|
| metafaq.org/Assets/Css/Style.css | 104.21.48.1 | 200 OK | 18 kB |
URL GET metafaq.org/Assets/Css/Style.css IP104.21.48.1:443
CertificateIssuerCLOUDFLARE, INC. Subjectmetafaq.org Fingerprint79:CB:C2:68:8E:CF:64:A3:74:2A:E7:EF:78:A5:CF:4D:57:C1:C2:9D ValidityFri, 25 Apr 2025 21:24:20 GMT - Thu, 24 Jul 2025 21:32:47 GMT
File typeUnicode text, UTF-8 text, with CRLF line terminators Hasha78af3a54067e46d7b4e208966b27358 4fa5da46db70884d4ea8d4318335ad52682f6856 03ecf55bbe1503d560460360a6afbbccf756933cbd78999171a58a87114858e8
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /Assets/Css/Style.css HTTP/1.1
Host: metafaq.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://metafaq.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 03 May 2025 12:43:30 GMT
content-type: text/css
cf-ray: 939fd82cd916b4f3-OSL
server: cloudflare
content-encoding: br
cache-control: public, max-age=604800
expires: Sat, 10 May 2025 12:43:30 GMT
last-modified: Tue, 29 Apr 2025 19:12:18 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oRVrC13jwEeYFLxt0eTe7ThU5N4p4TQ1h6f%2F7AH5gOeHKMwYiN3heiOpYVat92GXvHdO%2BVeROzhQ2CVbEAlU1VJA3kyqdc%2BZcmXKJqwW3pjpFxwx6IJ1rPCmDSN%2Fnw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2071&min_rtt=429&rtt_var=3149&sent=19&recv=23&lost=0&retrans=0&sent_bytes=11100&recv_bytes=1495&delivery_rate=10588665&cwnd=240&unsent_bytes=0&cid=cb0e75314d620a9b&ts=693&x=0"
X-Firefox-Spdy: h2
|
|
| images.dmca.com/Badges/dmca_protected_sml_120m.png?ID=4a97ff0f-b4b6-4d26-b082-bc3809aaef2f |  194.242.11.186 | 200 OK | 2.2 kB |
URL GET images.dmca.com/Badges/dmca_protected_sml_120m.png?ID=4a97ff0f-b4b6-4d26-b082-bc3809aaef2f IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
CertificateIssuerLet's Encrypt Subjectimages.dmca.com FingerprintA2:FB:37:2A:0D:79:99:CF:53:AE:DC:9F:56:DA:68:C6:E9:83:7A:10 ValidityMon, 07 Apr 2025 09:13:44 GMT - Sun, 06 Jul 2025 09:13:43 GMT
File typePNG image data, 121 x 24, 8-bit/color RGBA, non-interlaced Hashb6c626298d2bc133121172b17e8ac5cf 7e0d59debd84381b1c5a64136e6ef4c4f24034cc 075535cca15623d527f533d7a54e63ed6f4443eb7113d850447b959569fbc6b3
GET /Badges/dmca_protected_sml_120m.png?ID=4a97ff0f-b4b6-4d26-b082-bc3809aaef2f HTTP/1.1
Host: images.dmca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://metafaq.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 03 May 2025 12:43:30 GMT
content-type: image/png
content-length: 2152
server: BunnyCDN-NO1-830
cdn-pullzone: 1574055
cdn-uid: c136c664-112d-4533-8247-f90f6849ab39
cdn-requestcountrycode: NO
cache-control: public, max-age=31536000
etag: "20bc6d33e0ebca1:0"
last-modified: Tue, 04 May 2010 23:19:10 GMT
x-powered-by: ASP.NET
cdn-proxyver: 1.23
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/19/2025 19:21:07
cdn-edgestorageid: 830
link: <https://dmca-images.azurewebsites.net/Badges/dmca_protected_sml_120m.png?ID=5db71a03-606b-41be-ba47-d02f7ce5e450>; rel="canonical"
cdn-requestid: af24e1185a9d48297efaa2bbb886cc2e
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| images.dmca.com/Badges/DMCABadgeHelper.min.js | 194.242.11.186 | 200 OK | 465 B |
URL GET images.dmca.com/Badges/DMCABadgeHelper.min.js IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
CertificateIssuerLet's Encrypt Subjectimages.dmca.com FingerprintA2:FB:37:2A:0D:79:99:CF:53:AE:DC:9F:56:DA:68:C6:E9:83:7A:10 ValidityMon, 07 Apr 2025 09:13:44 GMT - Sun, 06 Jul 2025 09:13:43 GMT
File typeJavaScript source, ASCII text Hashbac6fb686027b93b6565e1b1e5e8e213 e585bdd95488444f0ce2888d8281dbdaf73ca2ea e8021f1a9dad409f7e699457ac334653bf800464df69900237c4de1c29e275d0
GET /Badges/DMCABadgeHelper.min.js HTTP/1.1
Host: images.dmca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://metafaq.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 03 May 2025 12:43:30 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 1574055
cdn-uid: c136c664-112d-4533-8247-f90f6849ab39
cdn-requestcountrycode: NO
vary: Accept-Encoding
cache-control: public, max-age=31536000
content-encoding: br
etag: "26b181f16d28d51:0"
last-modified: Fri, 21 Jun 2019 20:14:34 GMT
x-powered-by: ASP.NET
cdn-proxyver: 1.27
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/30/2025 11:23:44
cdn-edgestorageid: 830
link: <https://dmca-images.azurewebsites.net/Badges/DMCABadgeHelper.min.js>; rel="canonical"
cdn-requestid: c2eef6e36bd234c9dc3bf094a7d468f7
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
|
|
| metafaq.org/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js | 104.21.48.1 | 200 OK | 1.2 kB |
URL GET metafaq.org/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP104.21.48.1:443
CertificateIssuerCLOUDFLARE, INC. Subjectmetafaq.org Fingerprint79:CB:C2:68:8E:CF:64:A3:74:2A:E7:EF:78:A5:CF:4D:57:C1:C2:9D ValidityFri, 25 Apr 2025 21:24:20 GMT - Thu, 24 Jul 2025 21:32:47 GMT
File typeJavaScript source, ASCII text, with very long lines (1238) Hash9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: metafaq.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://metafaq.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 03 May 2025 12:43:30 GMT
content-type: application/javascript
last-modified: Fri, 25 Apr 2025 17:08:28 GMT
content-encoding: gzip
cache-control: max-age=172800, public
etag: W/"680bc18c-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BCp7pRdaTdHcxUcWh77Kac3ykkeKMbOSx1HkHSKYCMO2Tg%2F2p%2BQm5hgEC2jnyMDsQnbpBC8vXei6HrFGfBPNd7LltDJwpwTpTp5fNj%2Fx%2FGzn8132jSvbJWukTVVuyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 939fd82ce920b4f3-OSL
x-frame-options: DENY
expires: Mon, 05 May 2025 12:43:30 GMT
X-Firefox-Spdy: h2
|
|
| metafaq.org/Assets/Images/Thumbnail.png | 104.21.48.1 | 200 OK | 355 kB |
URL GET metafaq.org/Assets/Images/Thumbnail.png IP104.21.48.1:443
CertificateIssuerCLOUDFLARE, INC. Subjectmetafaq.org Fingerprint79:CB:C2:68:8E:CF:64:A3:74:2A:E7:EF:78:A5:CF:4D:57:C1:C2:9D ValidityFri, 25 Apr 2025 21:24:20 GMT - Thu, 24 Jul 2025 21:32:47 GMT
File typePNG image data, 1536 x 1024, 4-bit colormap, non-interlaced Size355 kB (355260 bytes) Hash78951e0ee1c272ed0caf2a84cd7281f9 6f30b7f01d2c9bd45609468c39f10238dfdd7ee9 f371164b444cae05cb3e9d06d5d6fb92ffd8f8ba8c653d117ccec3f8979e21e5
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /Assets/Images/Thumbnail.png HTTP/1.1
Host: metafaq.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://metafaq.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 03 May 2025 12:43:30 GMT
content-type: image/png
content-length: 355260
server: cloudflare
x-content-type-options: nosniff
cf-ray: 939fd82e1b5fb4f3-OSL
cache-control: public, max-age=604800
expires: Thu, 08 May 2025 07:32:26 GMT
last-modified: Tue, 29 Apr 2025 19:02:13 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
age: 191464
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XK2uCvJ6g0obVpX%2BqUIMbv0CfHIwBWvzIWXpjPPxtCHxK3eUUn%2FMsl37wNUJ%2BLEv5qFh5CNLLrZpP9bJytc0yTF6AAByHqx5qEV%2FIjMxIMPbsmriXpvePCei922%2Buw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1302&min_rtt=404&rtt_var=1624&sent=24&recv=29&lost=0&retrans=0&sent_bytes=14923&recv_bytes=1608&delivery_rate=10588665&cwnd=240&unsent_bytes=0&cid=cb0e75314d620a9b&ts=852&x=0"
X-Firefox-Spdy: h2
|
|