Report - comicextra.org/comic-updates

Report Overview

Submitted URL
comicextra.org/comic-updates
IP
104.21.54.180
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-04 21:55:09
Access
public
Website Title
Latest Comic Issues Released - Read Comics Online for Free
Final URL
comicextra.org/comic-updates
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
38

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-03	387 B	102 kB	142.250.74.72
blogger.googleusercontent.com	16485	2008-11-17	2012-05-25	2024-05-04	627 B	16 kB	142.250.74.97
region1.analytics.google.com	unknown	1997-09-15	2022-03-17	2024-05-04	749 B	427 B	216.239.32.36
comicextra.org	unknown	2024-03-17	2024-03-17	2024-04-17	21 kB	951 kB	104.21.54.180
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-04	433 B	14 kB	142.250.74.106
www.topcreativeformat.com	unknown	2023-11-21	2023-11-22	2024-05-03	407 B	706 B	172.240.253.132
www.google.no	25607	2001-02-26	2016-04-05	2024-05-03	544 B	578 B	172.217.21.163
1.bp.blogspot.com	8403	2000-07-31	2012-05-21	2024-05-03	1.9 kB	101 kB	142.250.74.161
3.bp.blogspot.com	11048	2000-07-31	2012-05-21	2024-05-04	995 B	50 kB	142.250.74.161

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-04	medium	comicextra.org	Sinkholed
2024-05-04	medium	comicextra.org	Sinkholed
2024-05-04	medium	comicextra.org	Sinkholed
2024-05-04	medium	comicextra.org	Sinkholed
2024-05-04	medium	comicextra.org	Sinkholed
2024-05-04	medium	comicextra.org	Sinkholed
2024-05-04	medium	comicextra.org	Sinkholed
2024-05-04	medium	comicextra.org	Sinkholed
2024-05-04	medium	comicextra.org	Sinkholed
2024-05-04	medium	comicextra.org	Sinkholed
2024-05-04	medium	comicextra.org	Sinkholed
2024-05-04	medium	comicextra.org	Sinkholed
2024-05-04	medium	comicextra.org	Sinkholed
2024-05-04	medium	comicextra.org	Sinkholed
2024-05-04	medium	comicextra.org	Sinkholed
2024-05-04	medium	comicextra.org	Sinkholed
2024-05-04	medium	comicextra.org	Sinkholed
2024-05-04	medium	comicextra.org	Sinkholed
2024-05-04	medium	comicextra.org	Sinkholed

ThreatFox

No alerts detected

JavaScript (11)

	URL	Size	First Seen	Last Seen
	comicextra.org/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	12 kB	2023-03-07	2024-05-18
Pretty URL comicextra.org/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 104.21.54.180 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-18 11:55:47 Times Seen44325 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	comicextra.org/scripts/scripts.min.js	646 kB	2024-05-04	2024-05-04
Pretty URL comicextra.org/scripts/scripts.min.js IP 104.21.54.180 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:55:11 Last Seen2024-05-04 23:55:11 Times Seen1 Hash bc8bb4e55127590923088531ddca1ef1 90222a53bf3168f90e6267e1bf19e00f88b23d32 a6b77e64d573243f6b0639b72ef3c45f925596f97b2e7a14728153f8c735e2ab Loading...

	unknown	387 B	2023-12-12	2024-05-04
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-12 13:27:11 Last Seen2024-05-04 23:55:11 Times Seen2 Hash 23e08daaa691a796c2b8ac24657f6308 ce43048af69437df5834467b362520d03bc4d174 e9ed952780c9b9108414e1742a9f1be9810ab7d381055de6b0a32a11b66280f2 Loading...

	unknown	5.6 kB	2024-05-04	2024-05-04
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2024-05-04 23:55:11 Last Seen2024-05-04 23:55:11 Times Seen1 Hash c1225f5f9a6048ee5aab753c597ba37a 829b399b1ad24c3a91692219b6f44c3ee7970d12 2bffdf5ddc7da0d7b69d6c8c31c6824de8ec53081fbf2dd81bde5bc9b00757af Loading...

	unknown	5.6 kB	2024-05-04	2024-05-04
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2024-05-04 23:55:11 Last Seen2024-05-04 23:55:11 Times Seen1 Hash 4f73b1f09fffb4c95be04875bbaf8416 9bb9b018bfdde9d23a6b308c53166a8aff174483 2d1e3e92a713a803730222d3478dcb5f7bf0851e5813c33265bf3de848f38db8 Loading...

	unknown	287 B	2024-05-04	2024-05-04
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:55:11 Last Seen2024-05-04 23:55:11 Times Seen1 Hash 5246083c9943904ab5482a4f9908a7f7 67761dfb271b20a3a9b3618363f8a43fbd7a81e5 5abc59df62f710b38e9232147f07ba9c7ae221a77b65d14fd4698438787de68c Loading...

	www.topcreativeformat.com/4f84e32d4148d0aec24b50f292691774/invoke.js	0 B	2023-03-07	2024-05-18
Pretty URL www.topcreativeformat.com/4f84e32d4148d0aec24b50f292691774/invoke.js IP 172.240.253.132 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-18 12:46:48 Times Seen37785250 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	153 B	2024-05-04	2024-05-04
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:55:11 Last Seen2024-05-04 23:55:11 Times Seen1 Hash efcc76f5bff591ed3bc61ea9df32cd21 75585d617ee1656bed5379ad97cd9904fa22d2a6 147394ee9c1810c8144caa12e2b921e6b1ed77d9d3abd9eefdaf802a562289e1 Loading...

	unknown	188 B	2024-05-04	2024-05-04
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:55:11 Last Seen2024-05-04 23:55:11 Times Seen1 Hash c9c82345301ff644522108c87ee24aae 7bba3884bc1ec215e05173138a12e82998e9a9af 251027d27b72631c7284a64a8c8888e21ebeca05d5d4c8038baca687d385aeed Loading...

	www.googletagmanager.com/gtag/js?id=G-7QH9Y9V6K4	306 kB	2024-05-04	2024-05-04
Pretty URL www.googletagmanager.com/gtag/js?id=G-7QH9Y9V6K4 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:55:11 Last Seen2024-05-04 23:55:11 Times Seen2 Hash 99720e38ceb36a74d9c13a80bff10f70 4e466278c9e2224f8cc45165022023948fe17d31 ad99841965ed82eb62425788d5a8f6b65dd37d79189d406c6990270e8f7f4e82 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 776bdabb610bb9bcd1a00eb9b810049b	59 kB	2023-03-07	2024-05-16
Pretty Observations First Seen2023-03-07 13:09:29 Last Seen2024-05-16 11:40:00 Times Seen81 Hash 776bdabb610bb9bcd1a00eb9b810049b 19e29caed760664b1066e98dc32e3289a6753ece 59a18b7d8877db32872f3aaf2791352876d4a1294dae99ede36d292c787d47f6 Loading...

HTTP Transactions (31)

URL IP Response Size

comicextra.org/images/site/logo.png

104.21.54.180

200 OK

8.8 kB

URL GET HTTP/3
comicextra.org/images/site/logo.png
IP
104.21.54.180:443
ASN
#13335 CLOUDFLARENET

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectcomicextra.org
Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A
ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT

File type
PNG image data, 180 x 80, 8-bit/color RGBA, non-interlaced
Size
8.8 kB (8765 bytes)
Hash
442e06338efebfb13d77658eba30344c
40c62300db63fb21001e6b0b9b355f0a3be2d7e9
7220672dbd768664fc09e10f65a54cef7050eba60065f2bbca1137b3216c2158

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/site/logo.png HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/png
content-length: 8765
last-modified: Sat, 09 Mar 2024 09:33:58 GMT
etag: "65ec2d06-223d"
expires: Thu, 30 May 2024 16:20:24 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 365659
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SoiQq5S1rTmIXiu3yesmqS%2BBt9wpsYfzqKqhv4P2PZyT8psjxHfo1ZbpfExjNVfDdimUVon2dSHqBxchw%2BiKPllS8gUcBeFjW%2F5EmXX5IbZEhMJWJXbeEh69kHnusTzIlg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1dba5756bf-OSL
alt-svc: h3=":443"; ma=86400

comicextra.org/styles/all.css

104.21.54.180

200 OK

62 kB

URL GET HTTP/3
comicextra.org/styles/all.css
IP
104.21.54.180:443
ASN
#13335 CLOUDFLARENET

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectcomicextra.org
Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A
ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (34590), with CRLF line terminators
Size
62 kB (61749 bytes)
Hash
b0cccbb21f636e7a3a2a3a007382b1fb
1b68beabab77a713ffd53a4cf48ef2a06673ab5f
2211d65d1a36e1b198aea806d9773621448d5026bae28925072f9d0f91881197

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /styles/all.css HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: text/css
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-bgj: minify
cf-polished: status=cannot_optimize
etag: W/"65ec2c9c-43d1d"
expires: Thu, 30 May 2024 18:51:03 GMT
last-modified: Sat, 09 Mar 2024 09:32:12 GMT
pragma: public
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 356620
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mcvJLNuhOlVjV2APJ40TKusaxtfEYDaWGYIIgVHquY8EBhTgww6dM8RFABG%2Fs7wHDLW9tF4Q30s5gHMzBMUlDMFeTPz45eOw%2BPbE5YC8cBSnuPnTWmdX7kh9DP9HiqDd5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebbb1dba5156bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Open+Sans:400,300,600,700&subset=latin,latin-ext

142.250.74.106

200 OK

13 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans:400,300,600,700&subset=latin,latin-ext
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
gzip compressed data, max compression
Size
13 kB (13029 bytes)
Hash
a07376caceae8ce2a34875e3697be6c5
67256db47f6a80ca8de63504f73045147df23338
2018e8568172c4f5d874a3b65cfb067429580ad6325c838e3ae9d9767e3466ec

HTTP Headers

GET /css?family=Open+Sans:400,300,600,700&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 21:54:43 GMT
date: Sat, 04 May 2024 21:54:43 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

comicextra.org/images/site/header-bg.jpg

104.21.54.180

200 OK

22 kB

URL GET HTTP/3
comicextra.org/images/site/header-bg.jpg
IP
104.21.54.180:443
ASN
#13335 CLOUDFLARENET

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectcomicextra.org
Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A
ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2016:07:24 10:34:36], baseline, precision 8, 30x108, components 3
Size
22 kB (21822 bytes)
Hash
8c60b1958bdd635f335ffd5ae83667ab
a00598f52a2923d127fb8338b4d0bf07e8e3c0d9
c025afc331753402c2a3060ab7d37ca8ef1898f1e1ff9d6bf15d5fc868a8f611

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/site/header-bg.jpg HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/jpeg
content-length: 21822
last-modified: Sat, 09 Mar 2024 09:33:59 GMT
etag: "65ec2d07-553e"
expires: Thu, 30 May 2024 19:47:42 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 353221
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6AwOk%2Bny5zN2LJBo9gIxDu%2BkDMq4Sgxv%2Bej%2FjgA9goAMaRNrWF5asWyXErbuTOTh%2BXklySrBTV%2FO5zM4ogrHVQzQTZqk65z8W6c2cJ%2FnaFU%2F3YYdK4jfXV%2Bpuxy5SKvNmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1f3b4956bf-OSL
alt-svc: h3=":443"; ma=86400

comicextra.org/images/site/nav-bg.jpg

104.21.54.180

200 OK

1.1 kB

URL GET HTTP/3
comicextra.org/images/site/nav-bg.jpg
IP
104.21.54.180:443
ASN
#13335 CLOUDFLARENET

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectcomicextra.org
Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A
ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, height=46, bps=146, orientation=upper-left, width=5], baseline, precision 8, 5x46, components 3
Size
1.1 kB (1055 bytes)
Hash
a0a921d4c199ea1b3d982e8fae8783f8
11d8ae391b947d59929b55fc32b04085dffcd85b
fe0eb4435e8ce9f218ff5f1782b7c684a8b3bd0174286b81e8cba3aea73de2c4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/site/nav-bg.jpg HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/jpeg
content-length: 1055
last-modified: Sat, 09 Mar 2024 09:33:54 GMT
etag: "65ec2d02-41f"
expires: Thu, 30 May 2024 20:15:03 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 351580
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TH20w8xx1Dt8Jgq%2B%2F7Ad8eyvPB4UafLBjIp4fMt8ziixwLEjJB0d7KdicPoSMBAuDWQJ1QEcO9%2F1AYgkT3CU8WRxr%2F3%2FpZ%2BXdYMz%2BZUp3Ufhg9GOR3COKjLcqqUkHOrlNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1f4b6e56bf-OSL
alt-svc: h3=":443"; ma=86400

comicextra.org/images/site/spotlight.png

104.21.54.180

200 OK

1.1 kB

URL GET HTTP/3
comicextra.org/images/site/spotlight.png
IP
104.21.54.180:443
ASN
#13335 CLOUDFLARENET

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectcomicextra.org
Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A
ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
1.1 kB (1145 bytes)
Hash
ed560df1f95ed87d1cb839d9121d26b7
bbe0431764c073b5c7a2b388006dc342680e4fd9
dcbb43587bde3037e51412a66f1087650564715dc92300077c70fd20eb2b5c8e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/site/spotlight.png HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/png
content-length: 1145
last-modified: Sat, 09 Mar 2024 09:34:03 GMT
etag: "65ec2d0b-479"
expires: Thu, 30 May 2024 16:20:32 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 365651
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R6w8qpm63jd1QAvK96Gg512RalDALh7e5aIjglczEI%2FKb2ed1poqhcOLoY3WWnLkIMhHFXUnOVjVrN9tDr6aayyMOADbBcTJ6Q2h5WfU2gtcYkHXYeW6QCYR%2F1AsusC5tw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1f4b7656bf-OSL
alt-svc: h3=":443"; ma=86400

comicextra.org/images/site/divider_line.gif

104.21.54.180

200 OK

50 B

URL GET HTTP/3
comicextra.org/images/site/divider_line.gif
IP
104.21.54.180:443
ASN
#13335 CLOUDFLARENET

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectcomicextra.org
Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A
ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT

File type
GIF image data, version 89a, 2 x 2
Size
50 B (50 bytes)
Hash
5d5622c63de7ee3577e983d45a90e1cb
ce792b84f092bfe6dfc9b9211a1304d18ce79e5e
00f4047c7ff299cec1c6103524ca1ec3900fe357fe7cdc19c4d7abbb3bac4f88

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/site/divider_line.gif HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/gif
content-length: 50
last-modified: Sat, 09 Mar 2024 09:33:59 GMT
etag: "65ec2d07-32"
expires: Thu, 30 May 2024 16:49:23 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 363920
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AKhc2PCr8nKs2mlmtk21uuP%2FcvJsrtAUDjbvuHcOg58uNDkbhdOwysyl70fGzbBAnNPLFycOKu%2B73emfJ9NlQ0Odxfsaz6LIOyKsaKiVgIappUPbz%2FpI2pK6Gy6JtP8jPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1f5b7e56bf-OSL
alt-svc: h3=":443"; ma=86400

comicextra.org/comic-updates

104.21.54.180

200 OK

14 kB

URL User Request GET HTTP/2
comicextra.org/comic-updates
IP
104.21.54.180:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectcomicextra.org
Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A
ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (354)
Size
14 kB (13472 bytes)
Hash
723d50039f06ff7115128d70ed80fe61
8a96740da1bfd54dc7508f7b4db23cf52370875c
b5c424fc89d3e8a3cb64eec2a0475d57bc0526f6c2cd7833b28511f2623fc428

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /comic-updates HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
set-cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; expires=Sat, 04-May-2024 23:54:43 GMT; Max-Age=7200; path=/
laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D; expires=Sat, 04-May-2024 23:54:43 GMT; Max-Age=7200; path=/; httponly
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block, 1; mode=block
x-content-type-options: nosniff, nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4S4IGrHk%2F6mup02kJVdKTmaCeNwCCzDvgQrSAsuBiyjJQyyoFsYTrpmLK1%2FECvWe7ZwWa4KWH1ZQYlkdGl1GcBUh7v6x9HZpc84grvUpsTwXlaTwQJZiesnsaGVCMZeqgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebbb1879b05695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

comicextra.org/images/site/ongoing.png

104.21.54.180

200 OK

1.5 kB

URL GET HTTP/3
comicextra.org/images/site/ongoing.png
IP
104.21.54.180:443
ASN
#13335 CLOUDFLARENET

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectcomicextra.org
Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A
ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
1.5 kB (1493 bytes)
Hash
e83ba8c26e3c7bf7525cb7133a11a8e8
f0b1a72db71471db64ea214681057cfda6963857
90c66b4289d235f6217b6810f0d048b3b92ca7cfcbcb3fbda34ec4d45a23d9fb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/site/ongoing.png HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/png
content-length: 1493
last-modified: Sat, 09 Mar 2024 09:33:54 GMT
etag: "65ec2d02-5d5"
expires: Thu, 30 May 2024 19:47:42 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 353221
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CiFGoiLpmcROdvrWqHzFTx8Xx%2BrqRjG6vc2unlHUD%2FqkeCCWB5P%2F04sp2%2FXcYmQ5HwMuA8nzg9Hp712s67WIqOf01dh4hCvct7eYtgaxDhJeAgSyWRHn2H4gPKeCTOlhrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1f6b8b56bf-OSL
alt-svc: h3=":443"; ma=86400

comicextra.org/images/site/completed.png

104.21.54.180

200 OK

970 B

URL GET HTTP/3
comicextra.org/images/site/completed.png
IP
104.21.54.180:443
ASN
#13335 CLOUDFLARENET

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectcomicextra.org
Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A
ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
970 B (970 bytes)
Hash
8ac851ae07df5750910861d183185c6e
7586f3f0e3785f605bd2c5c22b4ef35a4036b0be
a83ec2695f0623b434b8298f6dab80de9b126efc0a19989a47c9e236c7021e4a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/site/completed.png HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/png
content-length: 970
last-modified: Sat, 09 Mar 2024 09:33:57 GMT
etag: "65ec2d05-3ca"
expires: Thu, 30 May 2024 19:47:42 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 353221
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XjWUOpUyT6owlzVGjFvUsrrv5lmxSB77V%2B9QHwUM7KF7C41PbDUmQffMsVFqvkrUvkCu6ds5YT8LUUyQzCS8Ss5fDkwSULDyOedaJQT9eAFXvjBc%2FGbyMIVQZt%2FkxBO2jA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1f6b9556bf-OSL
alt-svc: h3=":443"; ma=86400

comicextra.org/images/site/image.png

104.21.54.180

200 OK

110 kB

URL GET HTTP/3
comicextra.org/images/site/image.png
IP
104.21.54.180:443
ASN
#13335 CLOUDFLARENET

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectcomicextra.org
Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A
ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT

File type
PNG image data, 432 x 900, 8-bit/color RGBA, non-interlaced
Size
110 kB (109809 bytes)
Hash
5eebb013334763762c19def5b96f0118
15c4dac72036a6db5bd1f2069a4e0f9d8e00b417
10ec980c0a92b46b82bc93729b958255c82e9e553297a8fe0c92a1fb73102e7a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/site/image.png HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/png
content-length: 109809
last-modified: Sat, 09 Mar 2024 09:34:04 GMT
etag: "65ec2d0c-1acf1"
expires: Thu, 30 May 2024 20:15:03 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 351580
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Or3%2FuUEN9XGFYCgdEBNHCtodLiPOUV0lyY99sAclDHujo1P4TZwD3nZ4yqTHI7QVbEVWZGElBHZdkykEbeVQkorU3bt%2FgC7rkBYAXkpaguTS8R66UeqLbX2Szj37FL4Tbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1f6b9e56bf-OSL
alt-svc: h3=":443"; ma=86400

comicextra.org/images/sites/default.jpg

104.21.54.180

200 OK

2.4 kB

URL GET HTTP/3
comicextra.org/images/sites/default.jpg
IP
104.21.54.180:443
ASN
#13335 CLOUDFLARENET

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectcomicextra.org
Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A
ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x168, components 3
Size
2.4 kB (2397 bytes)
Hash
f320b1a2a7d26898d07d4dc9fe9e1c57
985fb68ca818fa8309a1c6770d9efabc00f620ff
00b3ca4925d94266cf57ff2571a7c20318e0181cd43c36d7e47bdd58f6bbea30

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/sites/default.jpg HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/jpeg
content-length: 2397
last-modified: Sat, 09 Mar 2024 09:33:51 GMT
etag: "65ec2cff-95d"
expires: Thu, 30 May 2024 18:51:03 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 356620
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lOMwnZzvdTKPVKqpwoXwmNe4R%2B%2FIwDGBJ5TwOzOF74SwPh21C5CQzF6eN7%2F04aKinLtKgxdqC8XkosES%2FsPpu2VCaYVCLOl4IRAEGw0xpW%2F7NjphSRHrGqx0K5Ud81EycQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1f9bb956bf-OSL
alt-svc: h3=":443"; ma=86400

comicextra.org/images/site/tag-middle.png

104.21.54.180

200 OK

170 B

URL GET HTTP/3
comicextra.org/images/site/tag-middle.png
IP
104.21.54.180:443
ASN
#13335 CLOUDFLARENET

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectcomicextra.org
Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A
ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT

File type
PNG image data, 4 x 27, 8-bit/color RGBA, non-interlaced
Size
170 B (170 bytes)
Hash
879aaa3b9f22047b67e08aa1ed4b48c6
01e175881b4ce6875e772df0958844352f92107f
74deae6382843f538d96019a40aeedb2179955dc3bc9f097ef6f27100e5ce727

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/site/tag-middle.png HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/png
content-length: 170
last-modified: Sat, 09 Mar 2024 09:33:58 GMT
etag: "65ec2d06-aa"
expires: Thu, 30 May 2024 16:49:23 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 363920
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7ay2vGnYI6DBLTmwuQUEwE%2F2mCkByXuonYXFSQz1sT1gNeYd31JLIJEfuaCxJeOdm3794qOkDHElvNWzyUdeMra15TRINeSdTZ16svjmV%2B22j76xYULiCVSd1%2FDH3ddIVA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1fabc256bf-OSL
alt-svc: h3=":443"; ma=86400

comicextra.org/images/site/micro_carbon.png

104.21.54.180

200 OK

141 B

URL GET HTTP/3
comicextra.org/images/site/micro_carbon.png
IP
104.21.54.180:443
ASN
#13335 CLOUDFLARENET

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectcomicextra.org
Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A
ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT

File type
PNG image data, 4 x 4, 8-bit grayscale, non-interlaced
Size
141 B (141 bytes)
Hash
6cba7c8db98f7003a148b946fcf0f9f1
12e6172fd92e5ee440a76e38d1acce607cbeb382
8b8c6135eee23afc1a7a2ef6296289957afdee4616158dfc536b342df4f1104f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/site/micro_carbon.png HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/png
content-length: 141
last-modified: Sat, 09 Mar 2024 09:33:53 GMT
etag: "65ec2d01-8d"
expires: Thu, 30 May 2024 16:49:23 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 363920
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dnAUeDOgJElzFJID8ITFuC3v0JHffjF%2Ff9phMHQSe5Uo9U%2BNTyPI5FgYHjyZiBHHELyGZcI746MMikVHYLFoKZA2MhtgU1n%2BAQxHRVD2A6P5%2FbMPtTYxWzG76tbQSRSClA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1fcbdc56bf-OSL
alt-svc: h3=":443"; ma=86400

comicextra.org/styles/fonts/utm_cafeta-webfont.woff

104.21.54.180

200 OK

25 kB

URL GET HTTP/3
comicextra.org/styles/fonts/utm_cafeta-webfont.woff
IP
104.21.54.180:443
ASN
#13335 CLOUDFLARENET

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectcomicextra.org
Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A
ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT

File type
Web Open Font Format, TrueType, length 24584, version 1.0
Size
25 kB (24584 bytes)
Hash
e0c08907451362097dc23d28896bed5f
3e49e976d5c6f0f4520f22bbd355c4e17b8fcaa3
08d1900046b1b8176df255a89c48aece0c510c27092dec458800f2863463e06a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /styles/fonts/utm_cafeta-webfont.woff HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: font/woff
content-length: 24584
last-modified: Sat, 09 Mar 2024 09:34:17 GMT
etag: "65ec2d19-6008"
expires: Thu, 30 May 2024 20:15:03 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 351580
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HBA8Wb9t9lGv%2B0cDYxkJM%2F3aLfqMXiKLtpo2NuRXGw6R%2FalnH584GS0nCSSlEAMj5w6ith0sYRc%2BZU6a7BjswzwWaoVdV%2FQoJYZbyq%2F9sxSpWvb9vdNP8Denjx2ieqmARQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb200c0a56bf-OSL
alt-svc: h3=":443"; ma=86400

1.bp.blogspot.com/-wYjopUD0gWU/XdpEg2QPqPI/AAAAAAAASlk/xVf5j36GuRYVTN7ByHCy6K9PVanHR0_4wCLcBGAsYHQ/s1600/2507.jpg

142.250.74.161

200 OK

25 kB

URL GET HTTP/2
1.bp.blogspot.com/-wYjopUD0gWU/XdpEg2QPqPI/AAAAAAAASlk/xVf5j36GuRYVTN7ByHCy6K9PVanHR0_4wCLcBGAsYHQ/s1600/2507.jpg
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00
ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 200x250, components 3
Size
25 kB (24662 bytes)
Hash
3cbb29a8f7aa7010c9eb4622c19c1bbe
201873046a7e5eb469994e97226613bb8baebbb5
e912f2c8a8a6ce9bd24484b568305d4b79d3bc020c7cb90e45f759c81ad6819a

HTTP Headers

GET /-wYjopUD0gWU/XdpEg2QPqPI/AAAAAAAASlk/xVf5j36GuRYVTN7ByHCy6K9PVanHR0_4wCLcBGAsYHQ/s1600/2507.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2507.jpg"
x-content-type-options: nosniff
server: fife
content-length: 24662
x-xss-protection: 0
date: Sat, 04 May 2024 21:24:14 GMT
expires: Sun, 05 May 2024 21:24:14 GMT
cache-control: public, max-age=86400, no-transform
age: 1829
etag: "v4a5a"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

1.bp.blogspot.com/-ib93lvLAxH0/WwKtVaBHZ4I/AAAAAAAABtc/bZO3V5UgwzUR9ue9E8cwstu5zZpe3dyxQCLcBGAs/s1600/6690%2B%25281%2529.jpg

142.250.74.161

200 OK

32 kB

URL GET HTTP/2
1.bp.blogspot.com/-ib93lvLAxH0/WwKtVaBHZ4I/AAAAAAAABtc/bZO3V5UgwzUR9ue9E8cwstu5zZpe3dyxQCLcBGAs/s1600/6690%2B%25281%2529.jpg
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00
ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 240x300, components 3
Size
32 kB (32513 bytes)
Hash
a31737e9808ff7dbc83cb9fbf356db20
5bd19bbabda76e0d295a1f138951de6e025fb4dd
dd4311d67e77a57d875d6e0b1eef791e79ba94690c6e0e0a6950675aa55d78b2

HTTP Headers

GET /-ib93lvLAxH0/WwKtVaBHZ4I/AAAAAAAABtc/bZO3V5UgwzUR9ue9E8cwstu5zZpe3dyxQCLcBGAs/s1600/6690%2B%25281%2529.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="6690 (1).jpg"
x-content-type-options: nosniff
server: fife
content-length: 32513
x-xss-protection: 0
date: Sat, 04 May 2024 21:24:14 GMT
expires: Sun, 05 May 2024 21:24:14 GMT
cache-control: public, max-age=86400, no-transform
age: 1829
etag: "v6d8"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

1.bp.blogspot.com/-HHzIRBuMU4k/XmQtFv1ySQI/AAAAAAAAVdg/cyt4ASap-rcImzutsD3fKugjkRx2Oe5AgCLcBGAsYHQ/s1600/Crossed-min.jpg

142.250.74.161

200 OK

22 kB

URL GET HTTP/2
1.bp.blogspot.com/-HHzIRBuMU4k/XmQtFv1ySQI/AAAAAAAAVdg/cyt4ASap-rcImzutsD3fKugjkRx2Oe5AgCLcBGAsYHQ/s1600/Crossed-min.jpg
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00
ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 200x260, components 3
Size
22 kB (21863 bytes)
Hash
d565a6d182bfebb629fe7150ed33b446
194833d339d985d99019c1df533d987f2f77309d
30bedc76e1f4c1d3f58557c07aa9875888db916d1e175c908b8645335912df87

HTTP Headers

GET /-HHzIRBuMU4k/XmQtFv1ySQI/AAAAAAAAVdg/cyt4ASap-rcImzutsD3fKugjkRx2Oe5AgCLcBGAsYHQ/s1600/Crossed-min.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="Crossed-min.jpg"
x-content-type-options: nosniff
server: fife
content-length: 21863
x-xss-protection: 0
cross-origin-resource-policy: cross-origin
date: Sat, 04 May 2024 21:24:14 GMT
expires: Sun, 05 May 2024 21:24:14 GMT
cache-control: public, max-age=86400, no-transform
age: 1829
etag: "v55dc"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

comicextra.org/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

104.21.54.180

200 OK

21 kB

URL GET HTTP/3
comicextra.org/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
104.21.54.180:443
ASN
#13335 CLOUDFLARENET

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectcomicextra.org
Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A
ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT

File type
gzip compressed data, from Unix
Size
21 kB (21300 bytes)
Hash
2f894a7db4f9d2c5a33ee6e082e8bedf
105c48f2cfb4d8c16833523f8ac8fa5952596945
c29627c00f8e420a02080f1cfebf0f37a5426a9339ad398905cf2ea9684582b2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 15:20:25 GMT
etag: W/"66310c39-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pk9lhB8G%2FwkCgs5LxNHt3LSZp%2FTLiMvktqECdYAc0O3RKyt5orX0uJHjjbozqcmS1y%2BuRwuWTM72CQZUH5VnKIbRat97j9rDdHnkexG8d4YWH5N%2Ffn4tYyg%2BZ4jshd47iQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1dba5b56bf-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Mon, 06 May 2024 21:54:43 GMT
cache-control: max-age=172800, public
content-encoding: gzip

3.bp.blogspot.com/-VvSFvz41QCc/W_QamlZw4TI/AAAAAAAAH98/cK8HqhYjLYEIEWkwFFvDOz5mA9B6OkdEACLcBGAs/s1600/The%2BAmazing%2BSpider-Man%2B%25281963%2529-min.jpg

142.250.74.161

200 OK

31 kB

URL GET HTTP/2
3.bp.blogspot.com/-VvSFvz41QCc/W_QamlZw4TI/AAAAAAAAH98/cK8HqhYjLYEIEWkwFFvDOz5mA9B6OkdEACLcBGAs/s1600/The%2BAmazing%2BSpider-Man%2B%25281963%2529-min.jpg
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00
ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 200x260, components 3
Size
31 kB (31402 bytes)
Hash
415a468b463ab93a209fde114d61e108
2648061d1afac2a36263df027834739404c706f2
3792f3aa7f3236c3404bddce7c5afd146796c266ebe1923a0e0e34c6e1704a22

HTTP Headers

GET /-VvSFvz41QCc/W_QamlZw4TI/AAAAAAAAH98/cK8HqhYjLYEIEWkwFFvDOz5mA9B6OkdEACLcBGAs/s1600/The%2BAmazing%2BSpider-Man%2B%25281963%2529-min.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="The Amazing Spider-Man (1963)-min.jpg"
x-content-type-options: nosniff
server: fife
content-length: 31402
x-xss-protection: 0
cross-origin-resource-policy: cross-origin
date: Sat, 04 May 2024 21:27:38 GMT
expires: Sun, 05 May 2024 21:27:38 GMT
cache-control: public, max-age=86400, no-transform
age: 1626
etag: "v1fe1"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

1.bp.blogspot.com/-Q7FxRfXOJMs/YF-8vOPVn3I/AAAAAAAArbg/AvRM4NqRgBUzog8cU0YM_J8IC4bB5w5BQCLcBGAsYHQ/s0/The%2BBoys-min.jpg

142.250.74.161

200 OK

20 kB

URL GET HTTP/2
1.bp.blogspot.com/-Q7FxRfXOJMs/YF-8vOPVn3I/AAAAAAAArbg/AvRM4NqRgBUzog8cU0YM_J8IC4bB5w5BQCLcBGAsYHQ/s0/The%2BBoys-min.jpg
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00
ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 200x260, components 3
Size
20 kB (19507 bytes)
Hash
f12f0e1d86e4493bf1c61c4b3d807c88
e941e07282a930fa4a2e975e4642a2e87d846a70
d2a9cfad8ec7c4dc72d6dfb292814b72813110324e61002e195119c974219d0f

HTTP Headers

GET /-Q7FxRfXOJMs/YF-8vOPVn3I/AAAAAAAArbg/AvRM4NqRgBUzog8cU0YM_J8IC4bB5w5BQCLcBGAsYHQ/s0/The%2BBoys-min.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="The Boys-min.jpg"
x-content-type-options: nosniff
server: fife
content-length: 19507
x-xss-protection: 0
date: Sat, 04 May 2024 21:24:14 GMT
expires: Sun, 05 May 2024 21:24:14 GMT
cache-control: public, max-age=86400, no-transform
age: 1830
etag: "vadbe"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-7QH9Y9V6K4

142.250.74.72

200 OK

102 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-7QH9Y9V6K4
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
102 kB (101691 bytes)
Hash
99720e38ceb36a74d9c13a80bff10f70
4e466278c9e2224f8cc45165022023948fe17d31
ad99841965ed82eb62425788d5a8f6b65dd37d79189d406c6990270e8f7f4e82

HTTP Headers

GET /gtag/js?id=G-7QH9Y9V6K4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 21:54:44 GMT
expires: Sat, 04 May 2024 21:54:44 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101691
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

comicextra.org/images/site/favicon.ico

104.21.54.180

200 OK

1.1 kB

URL GET HTTP/3
comicextra.org/images/site/favicon.ico
IP
104.21.54.180:443
ASN
#13335 CLOUDFLARENET

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectcomicextra.org
Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A
ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Size
1.1 kB (1112 bytes)
Hash
0b54f3a9d42735bebaa020f3e447fc53
4335e625ed3965da5a76f8d24b0000872067b0b3
dc876de2c284df8b30d068004c2fa10ea61dd8ecb973a70973f1e3b806cf9868

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/site/favicon.ico HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:44 GMT
content-type: image/x-icon
last-modified: Sat, 09 Mar 2024 09:33:50 GMT
etag: W/"65ec2cfe-47e"
expires: Fri, 31 May 2024 23:52:58 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 252106
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cDTmQzQ0ugZg9e1AID0B7f2Xgw%2BNhmwXq2auBkWuGZnBPjLaNeJGKoOttSoeLWoMAAjMSyF0nphSisuqagBywRTH%2FWuTQdxL9Yfqm5rRzuIHDaXS0jrWrR%2BoX3wF8bKimQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb25896056bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhuJUFhFXkXkFN2zyId7ynD5qfz3z_sAYmEn1RySAVb0x5XVUJzvveiP-V7__H7F89ijD_2iG8770nB0XO2cim9FmHlsGxOMFxVQrGpVra2uKnpyTsI0CbJVVy9K5KMXnhUvv9lksfZD6lwhYsExKxnPnVatoE6RiarZH5kqFJqaodb5lUlb8kZ4mSm/s1600/Sunstone-holacomic.jpeg

142.250.74.97

200 OK

16 kB

URL GET HTTP/2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhuJUFhFXkXkFN2zyId7ynD5qfz3z_sAYmEn1RySAVb0x5XVUJzvveiP-V7__H7F89ijD_2iG8770nB0XO2cim9FmHlsGxOMFxVQrGpVra2uKnpyTsI0CbJVVy9K5KMXnhUvv9lksfZD6lwhYsExKxnPnVatoE6RiarZH5kqFJqaodb5lUlb8kZ4mSm/s1600/Sunstone-holacomic.jpeg
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint7B:64:D0:4F:29:87:0A:A8:90:15:F1:9F:B6:8F:FB:D6:AC:D2:76:56
ValidityTue, 16 Apr 2024 04:13:47 GMT - Tue, 09 Jul 2024 04:13:46 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 200x260, components 3
Size
16 kB (15513 bytes)
Hash
7ca763246444b4cc8b6320620343af79
da6aa7901f4dd5738e47d7ce9c462a86a725e28d
9b697177f36db86855065df5e14585d75e583dff8f27c4347ab8d66fe34ff7d0

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEhuJUFhFXkXkFN2zyId7ynD5qfz3z_sAYmEn1RySAVb0x5XVUJzvveiP-V7__H7F89ijD_2iG8770nB0XO2cim9FmHlsGxOMFxVQrGpVra2uKnpyTsI0CbJVVy9K5KMXnhUvv9lksfZD6lwhYsExKxnPnVatoE6RiarZH5kqFJqaodb5lUlb8kZ4mSm/s1600/Sunstone-holacomic.jpeg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "ve281"
expires: Sun, 05 May 2024 21:54:45 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Sunstone-holacomic.jpeg"
x-content-type-options: nosniff
date: Sat, 04 May 2024 21:54:45 GMT
server: fife
content-length: 15513
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.topcreativeformat.com/4f84e32d4148d0aec24b50f292691774/invoke.js

172.240.253.132

200 OK

0 B

URL GET HTTP/1.1
www.topcreativeformat.com/4f84e32d4148d0aec24b50f292691774/invoke.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerLet's Encrypt
Subjecttopcreativeformat.com
Fingerprint6D:98:D9:61:FC:CF:D9:8C:FE:5E:1C:15:5A:A5:F2:28:38:04:A4:A4
ValidityWed, 20 Mar 2024 07:51:41 GMT - Tue, 18 Jun 2024 07:51:40 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /4f84e32d4148d0aec24b50f292691774/invoke.js HTTP/1.1
Host: www.topcreativeformat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 21:54:45 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c12a79cf0a76d25b4c40fdba1c094438
Strict-Transport-Security: max-age=0; includeSubdomains

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7QH9Y9V6K4&cid=804121757.1714859686&gtm=45je4510v9168520151za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=264948637

172.217.21.163

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7QH9Y9V6K4&cid=804121757.1714859686&gtm=45je4510v9168520151za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=264948637
IP
172.217.21.163:443
ASN
#15169 GOOGLE

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint7D:68:6D:B1:32:34:52:51:20:C9:53:FF:B9:B7:8F:7E:05:F9:F5:97
ValidityTue, 16 Apr 2024 04:31:00 GMT - Tue, 09 Jul 2024 04:30:59 GMT

File type
GIF image data, version 89a, 1 x 1
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7QH9Y9V6K4&cid=804121757.1714859686&gtm=45je4510v9168520151za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=264948637 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 May 2024 21:54:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-7QH9Y9V6K4&gtm=45je4510v9168520151za200&_p=1714859685945&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=804121757.1714859686&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714859686&sct=1&seg=0&dl=https%3A%2F%2Fcomicextra.org%2Fcomic-updates&dt=Latest%20Comic%20Issues%20Released%20-%20Read%20Comics%20Online%20for%20Free&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=3698

216.239.32.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-7QH9Y9V6K4&gtm=45je4510v9168520151za200&_p=1714859685945&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=804121757.1714859686&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714859686&sct=1&seg=0&dl=https%3A%2F%2Fcomicextra.org%2Fcomic-updates&dt=Latest%20Comic%20Issues%20Released%20-%20Read%20Comics%20Online%20for%20Free&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=3698
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-7QH9Y9V6K4&gtm=45je4510v9168520151za200&_p=1714859685945&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=804121757.1714859686&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714859686&sct=1&seg=0&dl=https%3A%2F%2Fcomicextra.org%2Fcomic-updates&dt=Latest%20Comic%20Issues%20Released%20-%20Read%20Comics%20Online%20for%20Free&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=3698 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: null
date: Sat, 04 May 2024 21:54:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

3.bp.blogspot.com/-bZzN6pgw8CE/XB7zCqaEwNI/AAAAAAAAJG0/hNIKwqzonUkvuXGLH6VGzgHavkJTXDRYACLcBGAs/s1600/Invincible-min.jpg

142.250.74.161

200 OK

17 kB

URL GET HTTP/2
3.bp.blogspot.com/-bZzN6pgw8CE/XB7zCqaEwNI/AAAAAAAAJG0/hNIKwqzonUkvuXGLH6VGzgHavkJTXDRYACLcBGAs/s1600/Invincible-min.jpg
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00
ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 200x260, components 3
Size
17 kB (17414 bytes)
Hash
0634f0ca115c33bff5094de2b830bd3a
19d7ba56f9e96fee0771712c34ad7e0ad345d568
77fbbfc6c16892875b1b6473a4ee8034fa6c4ffb53592ae0c24e5bdc39e72fd7

HTTP Headers

GET /-bZzN6pgw8CE/XB7zCqaEwNI/AAAAAAAAJG0/hNIKwqzonUkvuXGLH6VGzgHavkJTXDRYACLcBGAs/s1600/Invincible-min.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="Invincible-min.jpg"
x-content-type-options: nosniff
server: fife
content-length: 17414
x-xss-protection: 0
cross-origin-resource-policy: cross-origin
date: Sat, 04 May 2024 21:54:44 GMT
expires: Sun, 05 May 2024 21:54:44 GMT
cache-control: public, max-age=86400, no-transform
etag: "v2470"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

comicextra.org/images/site/item_bg.gif

104.21.54.180

200 OK

6.5 kB

URL GET HTTP/3
comicextra.org/images/site/item_bg.gif
IP
104.21.54.180:443
ASN
#13335 CLOUDFLARENET

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectcomicextra.org
Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A
ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT

File type
GIF image data, version 89a, 212 x 70
Size
6.5 kB (6505 bytes)
Hash
4379543a1586b956d655f12260d1d6cb
fa2139d7857f73beeeffc61ad686c1dfa6b6a5e2
909d5cafbd0573665d74a4e84328fc706695161b73387090f885d28b425aa6bd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/site/item_bg.gif HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/gif
content-length: 6505
last-modified: Sat, 09 Mar 2024 09:34:04 GMT
etag: "65ec2d0c-1969"
expires: Thu, 30 May 2024 19:47:42 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 353221
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JsHKurpcDrKNvov%2BlXJujGuIXmva%2BxdRrr7ZXfKfcYftu2avDTHFfdzapdhpSRyDvCFFJZykAOjAuDG8uYPdUavrG9SEBdglBh%2B1y8SBIyliHBvGypgu9A07Qxiybm0omA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1f5b8256bf-OSL
alt-svc: h3=":443"; ma=86400

comicextra.org/images/site/body_bg.gif

104.21.54.180

200 OK

11 kB

URL GET HTTP/3
comicextra.org/images/site/body_bg.gif
IP
104.21.54.180:443
ASN
#13335 CLOUDFLARENET

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectcomicextra.org
Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A
ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT

File type
GIF image data, version 89a, 160 x 152
Size
11 kB (11287 bytes)
Hash
4a57be689c5606084384fa4e4146f1d1
234c8c86ad8509e5b717a64ad8978ff428b20077
07b968f6566378b91936898db46bf0c5024513658194a8f66aa4847fd9840b3d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/site/body_bg.gif HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://comicextra.org/styles/all.css
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: image/gif
content-length: 11287
last-modified: Sat, 09 Mar 2024 09:33:51 GMT
etag: "65ec2cff-2c17"
expires: Thu, 30 May 2024 19:47:42 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 353221
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0ajUtCEoxIafLeqeGaaLU6L%2BCIlRLlN6tzcW2U3A3sZfD0L%2FjKxgdaUubFhzuyprefYSJsfj3lQXAJCSSlHCBvewIAnqpXXhO81wywrkUAPOlZMubMT8UmXhMwD1LS8acg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebbb1f2b4656bf-OSL
alt-svc: h3=":443"; ma=86400

comicextra.org/scripts/scripts.min.js

104.21.54.180

200 OK

646 kB

URL GET HTTP/3
comicextra.org/scripts/scripts.min.js
IP
104.21.54.180:443
ASN
#13335 CLOUDFLARENET

Requested by
https://comicextra.org/comic-updates
Certificate
IssuerGoogle Trust Services LLC
Subjectcomicextra.org
Fingerprint75:7E:E0:11:EB:F7:ED:2A:A5:F3:A8:51:6E:08:F0:F9:AD:3E:51:3A
ValiditySun, 17 Mar 2024 15:06:51 GMT - Sat, 15 Jun 2024 15:06:50 GMT

File type

Size
646 kB (646162 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /scripts/scripts.min.js HTTP/1.1
Host: comicextra.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Ik9sY3NlMFZ6N0RJUUJUSGFhYXhFZmc9PSIsInZhbHVlIjoidmlSakxuZUZTWXUrYWx6eHdVS1ZrVFhIVUh6cllBc1dYOUdhYXJJM2piRzZ4WU95bGRoRGs1L05tL0VpWUIvU3QyQmUzQjloZWZZTjlJZ2YvS1l5TXRrd3ZjUEcwRGNVanFTcGttZjNCYWZjcUcvcmQ0OXEwZ2x3VjB0ZWtpbFciLCJtYWMiOiIwNzNmMzczODQ1ZWUxZTViMDA5ZTUxODYxOWQyYWU3OTgyMDc5Nzk0YmI5YjAxZjEyM2Q4N2Q2NDFhNTMyYjBjIn0%3D; laravel_session=eyJpdiI6IjRIWU9VdFFSZ2d5MC9LWEtGa0lEalE9PSIsInZhbHVlIjoiRHNqeVRJcUZzS20xN2tiMFlvZ3FXZEFzdnRXdHlaK1BMaUlVYkdkTm96bHgza2FGYmowNitYN1pRSWhCUjJtMjdNeC9hZzYvRXdjT0k2eG5SOWdXOEJrbGE3WHQ0UHMrRDJoVXBLR2FYQ3E1NnROa296SFphRGxKSHFnSk04MGEiLCJtYWMiOiJjNjk0OGUwMTc1NjhjOWFmNDgzMjVmZmY0ODQxM2JmNjUyODVjYTFjMzgzN2ZmNzM0YTFhZmZhMTc2NTFmNmQzIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 21:54:43 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
last-modified: Sat, 09 Mar 2024 09:32:11 GMT
etag: W/"65ec2c9b-9dc12"
expires: Thu, 30 May 2024 16:49:23 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 363920
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kOq%2FUTIlHOkL38GyI3L%2FgDMtTKsfB5%2BrQPrbuIhlRAAmfagMxoBUjc8oe5oLLjmYqPA0K7NOE%2FhfAkWfj%2FNNF0Vq11DFWhwOTk2U%2FDzWCssPi9GH%2B8t2w%2FFe98Hts3L3VQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebbb1ffc0356bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash