| comicextra.org/images/site/logo.png | 104.21.54.180 | 200 OK | 8.8 kB |
URL GET HTTP/3comicextra.org/images/site/logo.png IP104.21.54.180:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectcomicextra.org Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT
File typePNG image data, 180 x 80, 8-bit/color RGBA, non-interlaced Hash442e06338efebfb13d77658eba30344c 40c62300db63fb21001e6b0b9b355f0a3be2d7e9 7220672dbd768664fc09e10f65a54cef7050eba60065f2bbca1137b3216c2158
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/site/logo.png HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/png
content-length: 8765
last-modified: Sat, 09 Mar 2024 09:33:58 GMT
etag: "65ec2d06-223d"
expires: Thu, 30 May 2024 16:20:24 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 365659
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SoiQq5S1rTmIXiu3yesmqS%2BBt9wpsYfzqKqhv4P2PZyT8psjxHfo1ZbpfExjNVfDdimUVon2dSHqBxchw%2BiKPllS8gUcBeFjW%2F5EmXX5IbZEhMJWJXbeEh69kHnusTzIlg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1dba5756bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| comicextra.org/styles/all.css | 104.21.54.180 | 200 OK | 62 kB |
URL GET HTTP/3comicextra.org/styles/all.css IP104.21.54.180:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectcomicextra.org Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (34590), with CRLF line terminators Hashb0cccbb21f636e7a3a2a3a007382b1fb 1b68beabab77a713ffd53a4cf48ef2a06673ab5f 2211d65d1a36e1b198aea806d9773621448d5026bae28925072f9d0f91881197
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /styles/all.css HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: text/css
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-bgj: minify
cf-polished: status=cannot_optimize
etag: W/"65ec2c9c-43d1d"
expires: Thu, 30 May 2024 18:51:03 GMT
last-modified: Sat, 09 Mar 2024 09:32:12 GMT
pragma: public
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 356620
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mcvJLNuhOlVjV2APJ40TKusaxtfEYDaWGYIIgVHquY8EBhTgww6dM8RFABG%2Fs7wHDLW9tF4Q30s5gHMzBMUlDMFeTPz45eOw%2BPbE5YC8cBSnuPnTWmdX7kh9DP9HiqDd5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebbb1dba5156bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Open+Sans:400,300,600,700&subset=latin,latin-ext | 142.250.74.106 | 200 OK | 13 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Open+Sans:400,300,600,700&subset=latin,latin-ext IP142.250.74.106:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hasha07376caceae8ce2a34875e3697be6c5 67256db47f6a80ca8de63504f73045147df23338 2018e8568172c4f5d874a3b65cfb067429580ad6325c838e3ae9d9767e3466ec
GET /css?family=Open+Sans:400,300,600,700&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 21:54:43 GMT
date: Sat, 04 May 2024 21:54:43 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| comicextra.org/images/site/header-bg.jpg | 104.21.54.180 | 200 OK | 22 kB |
URL GET HTTP/3comicextra.org/images/site/header-bg.jpg IP104.21.54.180:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectcomicextra.org Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2016:07:24 10:34:36], baseline, precision 8, 30x108, components 3 Hash8c60b1958bdd635f335ffd5ae83667ab a00598f52a2923d127fb8338b4d0bf07e8e3c0d9 c025afc331753402c2a3060ab7d37ca8ef1898f1e1ff9d6bf15d5fc868a8f611
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/site/header-bg.jpg HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/jpeg
content-length: 21822
last-modified: Sat, 09 Mar 2024 09:33:59 GMT
etag: "65ec2d07-553e"
expires: Thu, 30 May 2024 19:47:42 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 353221
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6AwOk%2Bny5zN2LJBo9gIxDu%2BkDMq4Sgxv%2Bej%2FjgA9goAMaRNrWF5asWyXErbuTOTh%2BXklySrBTV%2FO5zM4ogrHVQzQTZqk65z8W6c2cJ%2FnaFU%2F3YYdK4jfXV%2Bpuxy5SKvNmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1f3b4956bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| comicextra.org/images/site/nav-bg.jpg | 104.21.54.180 | 200 OK | 1.1 kB |
URL GET HTTP/3comicextra.org/images/site/nav-bg.jpg IP104.21.54.180:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectcomicextra.org Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, height=46, bps=146, orientation=upper-left, width=5], baseline, precision 8, 5x46, components 3 Hasha0a921d4c199ea1b3d982e8fae8783f8 11d8ae391b947d59929b55fc32b04085dffcd85b fe0eb4435e8ce9f218ff5f1782b7c684a8b3bd0174286b81e8cba3aea73de2c4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/site/nav-bg.jpg HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/jpeg
content-length: 1055
last-modified: Sat, 09 Mar 2024 09:33:54 GMT
etag: "65ec2d02-41f"
expires: Thu, 30 May 2024 20:15:03 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 351580
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TH20w8xx1Dt8Jgq%2B%2F7Ad8eyvPB4UafLBjIp4fMt8ziixwLEjJB0d7KdicPoSMBAuDWQJ1QEcO9%2F1AYgkT3CU8WRxr%2F3%2FpZ%2BXdYMz%2BZUp3Ufhg9GOR3COKjLcqqUkHOrlNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1f4b6e56bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| comicextra.org/images/site/spotlight.png | 104.21.54.180 | 200 OK | 1.1 kB |
URL GET HTTP/3comicextra.org/images/site/spotlight.png IP104.21.54.180:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectcomicextra.org Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hashed560df1f95ed87d1cb839d9121d26b7 bbe0431764c073b5c7a2b388006dc342680e4fd9 dcbb43587bde3037e51412a66f1087650564715dc92300077c70fd20eb2b5c8e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/site/spotlight.png HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/png
content-length: 1145
last-modified: Sat, 09 Mar 2024 09:34:03 GMT
etag: "65ec2d0b-479"
expires: Thu, 30 May 2024 16:20:32 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 365651
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R6w8qpm63jd1QAvK96Gg512RalDALh7e5aIjglczEI%2FKb2ed1poqhcOLoY3WWnLkIMhHFXUnOVjVrN9tDr6aayyMOADbBcTJ6Q2h5WfU2gtcYkHXYeW6QCYR%2F1AsusC5tw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1f4b7656bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| comicextra.org/images/site/divider_line.gif | 104.21.54.180 | 200 OK | 50 B |
URL GET HTTP/3comicextra.org/images/site/divider_line.gif IP104.21.54.180:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectcomicextra.org Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT
File typeGIF image data, version 89a, 2 x 2 Hash5d5622c63de7ee3577e983d45a90e1cb ce792b84f092bfe6dfc9b9211a1304d18ce79e5e 00f4047c7ff299cec1c6103524ca1ec3900fe357fe7cdc19c4d7abbb3bac4f88
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/site/divider_line.gif HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/gif
content-length: 50
last-modified: Sat, 09 Mar 2024 09:33:59 GMT
etag: "65ec2d07-32"
expires: Thu, 30 May 2024 16:49:23 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 363920
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AKhc2PCr8nKs2mlmtk21uuP%2FcvJsrtAUDjbvuHcOg58uNDkbhdOwysyl70fGzbBAnNPLFycOKu%2B73emfJ9NlQ0Odxfsaz6LIOyKsaKiVgIappUPbz%2FpI2pK6Gy6JtP8jPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1f5b7e56bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| comicextra.org/comic-updates | 104.21.54.180 | 200 OK | 14 kB |
URL User Request GET HTTP/2comicextra.org/comic-updates IP104.21.54.180:443
CertificateIssuerGoogle Trust Services LLC Subjectcomicextra.org Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (354) Hash723d50039f06ff7115128d70ed80fe61 8a96740da1bfd54dc7508f7b4db23cf52370875c b5c424fc89d3e8a3cb64eec2a0475d57bc0526f6c2cd7833b28511f2623fc428
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /comic-updates HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
set-cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; expires=Sat, 04-May-2024 23:54:43 GMT; Max-Age=7200; path=/
laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D; expires=Sat, 04-May-2024 23:54:43 GMT; Max-Age=7200; path=/; httponly
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block, 1; mode=block
x-content-type-options: nosniff, nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4S4IGrHk%2F6mup02kJVdKTmaCeNwCCzDvgQrSAsuBiyjJQyyoFsYTrpmLK1%2FECvWe7ZwWa4KWH1ZQYlkdGl1GcBUh7v6x9HZpc84grvUpsTwXlaTwQJZiesnsaGVCMZeqgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebbb1879b05695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| comicextra.org/images/site/ongoing.png | 104.21.54.180 | 200 OK | 1.5 kB |
URL GET HTTP/3comicextra.org/images/site/ongoing.png IP104.21.54.180:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectcomicextra.org Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hashe83ba8c26e3c7bf7525cb7133a11a8e8 f0b1a72db71471db64ea214681057cfda6963857 90c66b4289d235f6217b6810f0d048b3b92ca7cfcbcb3fbda34ec4d45a23d9fb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/site/ongoing.png HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/png
content-length: 1493
last-modified: Sat, 09 Mar 2024 09:33:54 GMT
etag: "65ec2d02-5d5"
expires: Thu, 30 May 2024 19:47:42 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 353221
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CiFGoiLpmcROdvrWqHzFTx8Xx%2BrqRjG6vc2unlHUD%2FqkeCCWB5P%2F04sp2%2FXcYmQ5HwMuA8nzg9Hp712s67WIqOf01dh4hCvct7eYtgaxDhJeAgSyWRHn2H4gPKeCTOlhrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1f6b8b56bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| comicextra.org/images/site/completed.png | 104.21.54.180 | 200 OK | 970 B |
URL GET HTTP/3comicextra.org/images/site/completed.png IP104.21.54.180:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectcomicextra.org Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hash8ac851ae07df5750910861d183185c6e 7586f3f0e3785f605bd2c5c22b4ef35a4036b0be a83ec2695f0623b434b8298f6dab80de9b126efc0a19989a47c9e236c7021e4a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/site/completed.png HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/png
content-length: 970
last-modified: Sat, 09 Mar 2024 09:33:57 GMT
etag: "65ec2d05-3ca"
expires: Thu, 30 May 2024 19:47:42 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 353221
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XjWUOpUyT6owlzVGjFvUsrrv5lmxSB77V%2B9QHwUM7KF7C41PbDUmQffMsVFqvkrUvkCu6ds5YT8LUUyQzCS8Ss5fDkwSULDyOedaJQT9eAFXvjBc%2FGbyMIVQZt%2FkxBO2jA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1f6b9556bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| comicextra.org/images/site/image.png | 104.21.54.180 | 200 OK | 110 kB |
URL GET HTTP/3comicextra.org/images/site/image.png IP104.21.54.180:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectcomicextra.org Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT
File typePNG image data, 432 x 900, 8-bit/color RGBA, non-interlaced Size110 kB (109809 bytes) Hash5eebb013334763762c19def5b96f0118 15c4dac72036a6db5bd1f2069a4e0f9d8e00b417 10ec980c0a92b46b82bc93729b958255c82e9e553297a8fe0c92a1fb73102e7a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/site/image.png HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/png
content-length: 109809
last-modified: Sat, 09 Mar 2024 09:34:04 GMT
etag: "65ec2d0c-1acf1"
expires: Thu, 30 May 2024 20:15:03 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 351580
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Or3%2FuUEN9XGFYCgdEBNHCtodLiPOUV0lyY99sAclDHujo1P4TZwD3nZ4yqTHI7QVbEVWZGElBHZdkykEbeVQkorU3bt%2FgC7rkBYAXkpaguTS8R66UeqLbX2Szj37FL4Tbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1f6b9e56bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| comicextra.org/images/sites/default.jpg | 104.21.54.180 | 200 OK | 2.4 kB |
URL GET HTTP/3comicextra.org/images/sites/default.jpg IP104.21.54.180:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectcomicextra.org Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x168, components 3 Hashf320b1a2a7d26898d07d4dc9fe9e1c57 985fb68ca818fa8309a1c6770d9efabc00f620ff 00b3ca4925d94266cf57ff2571a7c20318e0181cd43c36d7e47bdd58f6bbea30
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/sites/default.jpg HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/jpeg
content-length: 2397
last-modified: Sat, 09 Mar 2024 09:33:51 GMT
etag: "65ec2cff-95d"
expires: Thu, 30 May 2024 18:51:03 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 356620
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lOMwnZzvdTKPVKqpwoXwmNe4R%2B%2FIwDGBJ5TwOzOF74SwPh21C5CQzF6eN7%2F04aKinLtKgxdqC8XkosES%2FsPpu2VCaYVCLOl4IRAEGw0xpW%2F7NjphSRHrGqx0K5Ud81EycQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1f9bb956bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| comicextra.org/images/site/tag-middle.png | 104.21.54.180 | 200 OK | 170 B |
URL GET HTTP/3comicextra.org/images/site/tag-middle.png IP104.21.54.180:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectcomicextra.org Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT
File typePNG image data, 4 x 27, 8-bit/color RGBA, non-interlaced Hash879aaa3b9f22047b67e08aa1ed4b48c6 01e175881b4ce6875e772df0958844352f92107f 74deae6382843f538d96019a40aeedb2179955dc3bc9f097ef6f27100e5ce727
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/site/tag-middle.png HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/png
content-length: 170
last-modified: Sat, 09 Mar 2024 09:33:58 GMT
etag: "65ec2d06-aa"
expires: Thu, 30 May 2024 16:49:23 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 363920
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7ay2vGnYI6DBLTmwuQUEwE%2F2mCkByXuonYXFSQz1sT1gNeYd31JLIJEfuaCxJeOdm3794qOkDHElvNWzyUdeMra15TRINeSdTZ16svjmV%2B22j76xYULiCVSd1%2FDH3ddIVA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1fabc256bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| comicextra.org/images/site/micro_carbon.png | 104.21.54.180 | 200 OK | 141 B |
URL GET HTTP/3comicextra.org/images/site/micro_carbon.png IP104.21.54.180:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectcomicextra.org Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT
File typePNG image data, 4 x 4, 8-bit grayscale, non-interlaced Hash6cba7c8db98f7003a148b946fcf0f9f1 12e6172fd92e5ee440a76e38d1acce607cbeb382 8b8c6135eee23afc1a7a2ef6296289957afdee4616158dfc536b342df4f1104f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/site/micro_carbon.png HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/png
content-length: 141
last-modified: Sat, 09 Mar 2024 09:33:53 GMT
etag: "65ec2d01-8d"
expires: Thu, 30 May 2024 16:49:23 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 363920
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dnAUeDOgJElzFJID8ITFuC3v0JHffjF%2Ff9phMHQSe5Uo9U%2BNTyPI5FgYHjyZiBHHELyGZcI746MMikVHYLFoKZA2MhtgU1n%2BAQxHRVD2A6P5%2FbMPtTYxWzG76tbQSRSClA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1fcbdc56bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| comicextra.org/styles/fonts/utm_cafeta-webfont.woff | 104.21.54.180 | 200 OK | 25 kB |
URL GET HTTP/3comicextra.org/styles/fonts/utm_cafeta-webfont.woff IP104.21.54.180:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectcomicextra.org Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT
File typeWeb Open Font Format, TrueType, length 24584, version 1.0 Hashe0c08907451362097dc23d28896bed5f 3e49e976d5c6f0f4520f22bbd355c4e17b8fcaa3 08d1900046b1b8176df255a89c48aece0c510c27092dec458800f2863463e06a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /styles/fonts/utm_cafeta-webfont.woff HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: font/woff
content-length: 24584
last-modified: Sat, 09 Mar 2024 09:34:17 GMT
etag: "65ec2d19-6008"
expires: Thu, 30 May 2024 20:15:03 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 351580
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HBA8Wb9t9lGv%2B0cDYxkJM%2F3aLfqMXiKLtpo2NuRXGw6R%2FalnH584GS0nCSSlEAMj5w6ith0sYRc%2BZU6a7BjswzwWaoVdV%2FQoJYZbyq%2F9sxSpWvb9vdNP8Denjx2ieqmARQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb200c0a56bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1.bp.blogspot.com/-wYjopUD0gWU/XdpEg2QPqPI/AAAAAAAASlk/xVf5j36GuRYVTN7ByHCy6K9PVanHR0_4wCLcBGAsYHQ/s1600/2507.jpg | 142.250.74.161 | 200 OK | 25 kB |
URL GET HTTP/21.bp.blogspot.com/-wYjopUD0gWU/XdpEg2QPqPI/AAAAAAAASlk/xVf5j36GuRYVTN7ByHCy6K9PVanHR0_4wCLcBGAsYHQ/s1600/2507.jpg IP142.250.74.161:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00 ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 200x250, components 3 Hash3cbb29a8f7aa7010c9eb4622c19c1bbe 201873046a7e5eb469994e97226613bb8baebbb5 e912f2c8a8a6ce9bd24484b568305d4b79d3bc020c7cb90e45f759c81ad6819a
GET /-wYjopUD0gWU/XdpEg2QPqPI/AAAAAAAASlk/xVf5j36GuRYVTN7ByHCy6K9PVanHR0_4wCLcBGAsYHQ/s1600/2507.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2507.jpg"
x-content-type-options: nosniff
server: fife
content-length: 24662
x-xss-protection: 0
date: Sat, 04 May 2024 21:24:14 GMT
expires: Sun, 05 May 2024 21:24:14 GMT
cache-control: public, max-age=86400, no-transform
age: 1829
etag: "v4a5a"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 1.bp.blogspot.com/-ib93lvLAxH0/WwKtVaBHZ4I/AAAAAAAABtc/bZO3V5UgwzUR9ue9E8cwstu5zZpe3dyxQCLcBGAs/s1600/6690%2B%25281%2529.jpg | 142.250.74.161 | 200 OK | 32 kB |
URL GET HTTP/21.bp.blogspot.com/-ib93lvLAxH0/WwKtVaBHZ4I/AAAAAAAABtc/bZO3V5UgwzUR9ue9E8cwstu5zZpe3dyxQCLcBGAs/s1600/6690%2B%25281%2529.jpg IP142.250.74.161:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00 ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 240x300, components 3 Hasha31737e9808ff7dbc83cb9fbf356db20 5bd19bbabda76e0d295a1f138951de6e025fb4dd dd4311d67e77a57d875d6e0b1eef791e79ba94690c6e0e0a6950675aa55d78b2
GET /-ib93lvLAxH0/WwKtVaBHZ4I/AAAAAAAABtc/bZO3V5UgwzUR9ue9E8cwstu5zZpe3dyxQCLcBGAs/s1600/6690%2B%25281%2529.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="6690 (1).jpg"
x-content-type-options: nosniff
server: fife
content-length: 32513
x-xss-protection: 0
date: Sat, 04 May 2024 21:24:14 GMT
expires: Sun, 05 May 2024 21:24:14 GMT
cache-control: public, max-age=86400, no-transform
age: 1829
etag: "v6d8"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 1.bp.blogspot.com/-HHzIRBuMU4k/XmQtFv1ySQI/AAAAAAAAVdg/cyt4ASap-rcImzutsD3fKugjkRx2Oe5AgCLcBGAsYHQ/s1600/Crossed-min.jpg | 142.250.74.161 | 200 OK | 22 kB |
URL GET HTTP/21.bp.blogspot.com/-HHzIRBuMU4k/XmQtFv1ySQI/AAAAAAAAVdg/cyt4ASap-rcImzutsD3fKugjkRx2Oe5AgCLcBGAsYHQ/s1600/Crossed-min.jpg IP142.250.74.161:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00 ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 200x260, components 3 Hashd565a6d182bfebb629fe7150ed33b446 194833d339d985d99019c1df533d987f2f77309d 30bedc76e1f4c1d3f58557c07aa9875888db916d1e175c908b8645335912df87
GET /-HHzIRBuMU4k/XmQtFv1ySQI/AAAAAAAAVdg/cyt4ASap-rcImzutsD3fKugjkRx2Oe5AgCLcBGAsYHQ/s1600/Crossed-min.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="Crossed-min.jpg"
x-content-type-options: nosniff
server: fife
content-length: 21863
x-xss-protection: 0
cross-origin-resource-policy: cross-origin
date: Sat, 04 May 2024 21:24:14 GMT
expires: Sun, 05 May 2024 21:24:14 GMT
cache-control: public, max-age=86400, no-transform
age: 1829
etag: "v55dc"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| comicextra.org/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js | 104.21.54.180 | 200 OK | 21 kB |
URL GET HTTP/3comicextra.org/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP104.21.54.180:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectcomicextra.org Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT
File typegzip compressed data, from Unix Hash2f894a7db4f9d2c5a33ee6e082e8bedf 105c48f2cfb4d8c16833523f8ac8fa5952596945 c29627c00f8e420a02080f1cfebf0f37a5426a9339ad398905cf2ea9684582b2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 15:20:25 GMT
etag: W/"66310c39-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pk9lhB8G%2FwkCgs5LxNHt3LSZp%2FTLiMvktqECdYAc0O3RKyt5orX0uJHjjbozqcmS1y%2BuRwuWTM72CQZUH5VnKIbRat97j9rDdHnkexG8d4YWH5N%2Ffn4tYyg%2BZ4jshd47iQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1dba5b56bf-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Mon, 06 May 2024 21:54:43 GMT
cache-control: max-age=172800, public
content-encoding: gzip
|
|
| 3.bp.blogspot.com/-VvSFvz41QCc/W_QamlZw4TI/AAAAAAAAH98/cK8HqhYjLYEIEWkwFFvDOz5mA9B6OkdEACLcBGAs/s1600/The%2BAmazing%2BSpider-Man%2B%25281963%2529-min.jpg | 142.250.74.161 | 200 OK | 31 kB |
URL GET HTTP/23.bp.blogspot.com/-VvSFvz41QCc/W_QamlZw4TI/AAAAAAAAH98/cK8HqhYjLYEIEWkwFFvDOz5mA9B6OkdEACLcBGAs/s1600/The%2BAmazing%2BSpider-Man%2B%25281963%2529-min.jpg IP142.250.74.161:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00 ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 200x260, components 3 Hash415a468b463ab93a209fde114d61e108 2648061d1afac2a36263df027834739404c706f2 3792f3aa7f3236c3404bddce7c5afd146796c266ebe1923a0e0e34c6e1704a22
GET /-VvSFvz41QCc/W_QamlZw4TI/AAAAAAAAH98/cK8HqhYjLYEIEWkwFFvDOz5mA9B6OkdEACLcBGAs/s1600/The%2BAmazing%2BSpider-Man%2B%25281963%2529-min.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="The Amazing Spider-Man (1963)-min.jpg"
x-content-type-options: nosniff
server: fife
content-length: 31402
x-xss-protection: 0
cross-origin-resource-policy: cross-origin
date: Sat, 04 May 2024 21:27:38 GMT
expires: Sun, 05 May 2024 21:27:38 GMT
cache-control: public, max-age=86400, no-transform
age: 1626
etag: "v1fe1"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 1.bp.blogspot.com/-Q7FxRfXOJMs/YF-8vOPVn3I/AAAAAAAArbg/AvRM4NqRgBUzog8cU0YM_J8IC4bB5w5BQCLcBGAsYHQ/s0/The%2BBoys-min.jpg | 142.250.74.161 | 200 OK | 20 kB |
URL GET HTTP/21.bp.blogspot.com/-Q7FxRfXOJMs/YF-8vOPVn3I/AAAAAAAArbg/AvRM4NqRgBUzog8cU0YM_J8IC4bB5w5BQCLcBGAsYHQ/s0/The%2BBoys-min.jpg IP142.250.74.161:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00 ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 200x260, components 3 Hashf12f0e1d86e4493bf1c61c4b3d807c88 e941e07282a930fa4a2e975e4642a2e87d846a70 d2a9cfad8ec7c4dc72d6dfb292814b72813110324e61002e195119c974219d0f
GET /-Q7FxRfXOJMs/YF-8vOPVn3I/AAAAAAAArbg/AvRM4NqRgBUzog8cU0YM_J8IC4bB5w5BQCLcBGAsYHQ/s0/The%2BBoys-min.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="The Boys-min.jpg"
x-content-type-options: nosniff
server: fife
content-length: 19507
x-xss-protection: 0
date: Sat, 04 May 2024 21:24:14 GMT
expires: Sun, 05 May 2024 21:24:14 GMT
cache-control: public, max-age=86400, no-transform
age: 1830
etag: "vadbe"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-7QH9Y9V6K4 | 142.250.74.72 | 200 OK | 102 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-7QH9Y9V6K4 IP142.250.74.72:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size102 kB (101691 bytes) Hash99720e38ceb36a74d9c13a80bff10f70 4e466278c9e2224f8cc45165022023948fe17d31 ad99841965ed82eb62425788d5a8f6b65dd37d79189d406c6990270e8f7f4e82
GET /gtag/js?id=G-7QH9Y9V6K4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 21:54:44 GMT
expires: Sat, 04 May 2024 21:54:44 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101691
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| comicextra.org/images/site/favicon.ico | 104.21.54.180 | 200 OK | 1.1 kB |
URL GET HTTP/3comicextra.org/images/site/favicon.ico IP104.21.54.180:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectcomicextra.org Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash0b54f3a9d42735bebaa020f3e447fc53 4335e625ed3965da5a76f8d24b0000872067b0b3 dc876de2c284df8b30d068004c2fa10ea61dd8ecb973a70973f1e3b806cf9868
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/site/favicon.ico HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:44 GMT
content-type: image/x-icon
last-modified: Sat, 09 Mar 2024 09:33:50 GMT
etag: W/"65ec2cfe-47e"
expires: Fri, 31 May 2024 23:52:58 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 252106
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cDTmQzQ0ugZg9e1AID0B7f2Xgw%2BNhmwXq2auBkWuGZnBPjLaNeJGKoOttSoeLWoMAAjMSyF0nphSisuqagBywRTH%2FWuTQdxL9Yfqm5rRzuIHDaXS0jrWrR%2BoX3wF8bKimQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb25896056bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhuJUFhFXkXkFN2zyId7ynD5qfz3z_sAYmEn1RySAVb0x5XVUJzvveiP-V7__H7F89ijD_2iG8770nB0XO2cim9FmHlsGxOMFxVQrGpVra2uKnpyTsI0CbJVVy9K5KMXnhUvv9lksfZD6lwhYsExKxnPnVatoE6RiarZH5kqFJqaodb5lUlb8kZ4mSm/s1600/Sunstone-holacomic.jpeg | 142.250.74.97 | 200 OK | 16 kB |
URL GET HTTP/2blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhuJUFhFXkXkFN2zyId7ynD5qfz3z_sAYmEn1RySAVb0x5XVUJzvveiP-V7__H7F89ijD_2iG8770nB0XO2cim9FmHlsGxOMFxVQrGpVra2uKnpyTsI0CbJVVy9K5KMXnhUvv9lksfZD6lwhYsExKxnPnVatoE6RiarZH5kqFJqaodb5lUlb8kZ4mSm/s1600/Sunstone-holacomic.jpeg IP142.250.74.97:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com Fingerprint7B:64:D0:4F:29:87:0A:A8:90:15:F1:9F:B6:8F:FB:D6:AC:D2:76:56 ValidityTue, 16 Apr 2024 04:13:47 GMT - Tue, 09 Jul 2024 04:13:46 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 200x260, components 3 Hash7ca763246444b4cc8b6320620343af79 da6aa7901f4dd5738e47d7ce9c462a86a725e28d 9b697177f36db86855065df5e14585d75e583dff8f27c4347ab8d66fe34ff7d0
GET /img/b/R29vZ2xl/AVvXsEhuJUFhFXkXkFN2zyId7ynD5qfz3z_sAYmEn1RySAVb0x5XVUJzvveiP-V7__H7F89ijD_2iG8770nB0XO2cim9FmHlsGxOMFxVQrGpVra2uKnpyTsI0CbJVVy9K5KMXnhUvv9lksfZD6lwhYsExKxnPnVatoE6RiarZH5kqFJqaodb5lUlb8kZ4mSm/s1600/Sunstone-holacomic.jpeg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "ve281"
expires: Sun, 05 May 2024 21:54:45 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Sunstone-holacomic.jpeg"
x-content-type-options: nosniff
date: Sat, 04 May 2024 21:54:45 GMT
server: fife
content-length: 15513
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.topcreativeformat.com/4f84e32d4148d0aec24b50f292691774/invoke.js | 172.240.253.132 | 200 OK | 0 B |
URL GET HTTP/1.1www.topcreativeformat.com/4f84e32d4148d0aec24b50f292691774/invoke.js IP172.240.253.132:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerLet's Encrypt Subjecttopcreativeformat.com Fingerprint6D:98:D9:61:FC:CF:D9:8C:FE:5E:1C:15:5A:A5:F2:28:38:04:A4:A4 ValidityWed, 20 Mar 2024 07:51:41 GMT - Tue, 18 Jun 2024 07:51:40 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /4f84e32d4148d0aec24b50f292691774/invoke.js HTTP/1.1
Host: www.topcreativeformat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 21:54:45 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c12a79cf0a76d25b4c40fdba1c094438
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7QH9Y9V6K4&cid=804121757.1714859686>m=45je4510v9168520151za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=264948637 | 172.217.21.163 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7QH9Y9V6K4&cid=804121757.1714859686>m=45je4510v9168520151za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=264948637 IP172.217.21.163:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint7D:68:6D:B1:32:34:52:51:20:C9:53:FF:B9:B7:8F:7E:05:F9:F5:97 ValidityTue, 16 Apr 2024 04:31:00 GMT - Tue, 09 Jul 2024 04:30:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7QH9Y9V6K4&cid=804121757.1714859686>m=45je4510v9168520151za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=264948637 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 May 2024 21:54:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-7QH9Y9V6K4>m=45je4510v9168520151za200&_p=1714859685945&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=804121757.1714859686&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714859686&sct=1&seg=0&dl=https%3A%2F%2Fcomicextra.org%2Fcomic-updates&dt=Latest%20Comic%20Issues%20Released%20-%20Read%20Comics%20Online%20for%20Free&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=3698 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-7QH9Y9V6K4>m=45je4510v9168520151za200&_p=1714859685945&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=804121757.1714859686&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714859686&sct=1&seg=0&dl=https%3A%2F%2Fcomicextra.org%2Fcomic-updates&dt=Latest%20Comic%20Issues%20Released%20-%20Read%20Comics%20Online%20for%20Free&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=3698 IP216.239.32.36:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-7QH9Y9V6K4>m=45je4510v9168520151za200&_p=1714859685945&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=804121757.1714859686&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714859686&sct=1&seg=0&dl=https%3A%2F%2Fcomicextra.org%2Fcomic-updates&dt=Latest%20Comic%20Issues%20Released%20-%20Read%20Comics%20Online%20for%20Free&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=3698 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: null
date: Sat, 04 May 2024 21:54:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 3.bp.blogspot.com/-bZzN6pgw8CE/XB7zCqaEwNI/AAAAAAAAJG0/hNIKwqzonUkvuXGLH6VGzgHavkJTXDRYACLcBGAs/s1600/Invincible-min.jpg | 142.250.74.161 | 200 OK | 17 kB |
URL GET HTTP/23.bp.blogspot.com/-bZzN6pgw8CE/XB7zCqaEwNI/AAAAAAAAJG0/hNIKwqzonUkvuXGLH6VGzgHavkJTXDRYACLcBGAs/s1600/Invincible-min.jpg IP142.250.74.161:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00 ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 200x260, components 3 Hash0634f0ca115c33bff5094de2b830bd3a 19d7ba56f9e96fee0771712c34ad7e0ad345d568 77fbbfc6c16892875b1b6473a4ee8034fa6c4ffb53592ae0c24e5bdc39e72fd7
GET /-bZzN6pgw8CE/XB7zCqaEwNI/AAAAAAAAJG0/hNIKwqzonUkvuXGLH6VGzgHavkJTXDRYACLcBGAs/s1600/Invincible-min.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="Invincible-min.jpg"
x-content-type-options: nosniff
server: fife
content-length: 17414
x-xss-protection: 0
cross-origin-resource-policy: cross-origin
date: Sat, 04 May 2024 21:54:44 GMT
expires: Sun, 05 May 2024 21:54:44 GMT
cache-control: public, max-age=86400, no-transform
etag: "v2470"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| comicextra.org/images/site/item_bg.gif | 104.21.54.180 | 200 OK | 6.5 kB |
URL GET HTTP/3comicextra.org/images/site/item_bg.gif IP104.21.54.180:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectcomicextra.org Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT
File typeGIF image data, version 89a, 212 x 70 Hash4379543a1586b956d655f12260d1d6cb fa2139d7857f73beeeffc61ad686c1dfa6b6a5e2 909d5cafbd0573665d74a4e84328fc706695161b73387090f885d28b425aa6bd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/site/item_bg.gif HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/gif
content-length: 6505
last-modified: Sat, 09 Mar 2024 09:34:04 GMT
etag: "65ec2d0c-1969"
expires: Thu, 30 May 2024 19:47:42 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 353221
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JsHKurpcDrKNvov%2BlXJujGuIXmva%2BxdRrr7ZXfKfcYftu2avDTHFfdzapdhpSRyDvCFFJZykAOjAuDG8uYPdUavrG9SEBdglBh%2B1y8SBIyliHBvGypgu9A07Qxiybm0omA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1f5b8256bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| comicextra.org/images/site/body_bg.gif | 104.21.54.180 | 200 OK | 11 kB |
URL GET HTTP/3comicextra.org/images/site/body_bg.gif IP104.21.54.180:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectcomicextra.org Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT
File typeGIF image data, version 89a, 160 x 152 Hash4a57be689c5606084384fa4e4146f1d1 234c8c86ad8509e5b717a64ad8978ff428b20077 07b968f6566378b91936898db46bf0c5024513658194a8f66aa4847fd9840b3d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/site/body_bg.gif HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/gif
content-length: 11287
last-modified: Sat, 09 Mar 2024 09:33:51 GMT
etag: "65ec2cff-2c17"
expires: Thu, 30 May 2024 19:47:42 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 353221
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0ajUtCEoxIafLeqeGaaLU6L%2BCIlRLlN6tzcW2U3A3sZfD0L%2FjKxgdaUubFhzuyprefYSJsfj3lQXAJCSSlHCBvewIAnqpXXhO81wywrkUAPOlZMubMT8UmXhMwD1LS8acg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1f2b4656bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| comicextra.org/scripts/scripts.min.js | 104.21.54.180 | 200 OK | 646 kB |
URL GET HTTP/3comicextra.org/scripts/scripts.min.js IP104.21.54.180:443
Requested byhttps://comicextra.org/comic-updates CertificateIssuerGoogle Trust Services LLC Subjectcomicextra.org Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT
Size646 kB (646162 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /scripts/scripts.min.js HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
last-modified: Sat, 09 Mar 2024 09:32:11 GMT
etag: W/"65ec2c9b-9dc12"
expires: Thu, 30 May 2024 16:49:23 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 363920
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kOq%2FUTIlHOkL38GyI3L%2FgDMtTKsfB5%2BrQPrbuIhlRAAmfagMxoBUjc8oe5oLLjmYqPA0K7NOE%2FhfAkWfj%2FNNF0Vq11DFWhwOTk2U%2FDzWCssPi9GH%2B8t2w%2FFe98Hts3L3VQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebbb1ffc0356bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|