Report - drama-cool.com.pl/queen-of-tears-episode-14/

Report Overview

Submitted URL
drama-cool.com.pl/queen-of-tears-episode-14/
IP
172.67.154.226
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-24 22:48:52
Access
public
Website Title
Watch Queen of Tears Episode 14 with Eng Sub Online at Dramacool
Final URL
drama-cool.com.pl/queen-of-tears-episode-14/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
drama-cool.com.pl	unknown	unknown	No data	No data	7.7 kB	345 kB	104.21.6.137
bracemascara.com	unknown	unknown	No data	No data	437 B	32 kB	192.243.61.225
excessstumbledvisited.com	unknown	unknown	No data	No data	493 B	467 B	192.243.61.227
capaciousdrewreligion.com	unknown	2023-11-07	2023-11-27	2024-04-22	416 B	327 B	172.240.108.76
downstairsnegotiatebarren.com	unknown	2024-03-04	2024-03-04	2024-04-23	412 B	29 kB	172.67.180.87
unseenreport.com	unknown	2022-03-30	2022-03-30	2024-04-23	737 B	423 B	192.243.59.20
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-04-24	437 B	426 B	35.158.46.84

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-24	medium	bracemascara.com	Sinkholed
2024-04-24	medium	excessstumbledvisited.com	Sinkholed
2024-04-24	medium	unseenreport.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (9)

	URL	Size	First Seen	Last Seen
	drama-cool.com.pl/wp-content/themes/dramacool/js/jquery-3.1.1.min.js?ver=3.1.1	87 kB	2023-03-07	2024-05-04
Pretty URL drama-cool.com.pl/wp-content/themes/dramacool/js/jquery-3.1.1.min.js?ver=3.1.1 IP 104.21.6.137 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:34 Last Seen2024-05-04 10:42:44 Times Seen266991 Hash e071abda8fe61194711cfc2ab99fe104 f647a6d37dc4ca055ced3cf64bbc1f490070acba 85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf Loading...

	drama-cool.com.pl/wp-content/themes/dramacool/js/jquery.lazyload.min.js?ver=1	3.4 kB	2023-03-07	2024-05-04
Pretty URL drama-cool.com.pl/wp-content/themes/dramacool/js/jquery.lazyload.min.js?ver=1 IP 104.21.6.137 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:48 Last Seen2024-05-04 09:16:27 Times Seen4105 Hash 112c8d1b40b3e62e883c743e9d71e0bf 338318e930487b2791a7bcf53ad4601630cc41e2 ad79ce7e34d1a788809bb853031133de2ae45f3c19ac4955dae46c7490188c2e Loading...

	drama-cool.com.pl/wp-includes/js/comment-reply.min.js?ver=6.5.2	3.0 kB	2023-03-07	2024-05-04
Pretty URL drama-cool.com.pl/wp-includes/js/comment-reply.min.js?ver=6.5.2 IP 104.21.6.137 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-05-04 13:26:36 Times Seen29663 Hash 492f2c1a7ea7eb83fe42e0ff7cb51aa2 db36a77f6aaa2063bfbec02c2c0e967438c5a245 e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789 Loading...

	bracemascara.com/62/44/0f/62440f18fbdb9c7d7a22ac8b3c36b7f5.js	84 kB	2024-04-25	2024-04-25
Pretty URL bracemascara.com/62/44/0f/62440f18fbdb9c7d7a22ac8b3c36b7f5.js IP 192.243.61.225 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 00:48:59 Last Seen2024-04-25 00:48:59 Times Seen2 Hash 807ca94504d8a2a0c937fe86a6c249db cef739abacf2cafb65dc3d56505e1ac7db0502d8 dfe8f7d90f0f5202d44478b0e86751826658e475c4425f60db5cd6695b3b9995 Loading...

	downstairsnegotiatebarren.com/sfp.js	86 kB	2024-03-29	2024-05-04
Pretty URL downstairsnegotiatebarren.com/sfp.js IP 172.67.180.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 13:13:34 Last Seen2024-05-04 14:25:21 Times Seen2101 Hash f4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716 Loading...

	capaciousdrewreligion.com/advertisers.js	0 B	2023-03-07	2024-05-04
Pretty URL capaciousdrewreligion.com/advertisers.js IP 172.240.108.76 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-04 14:33:52 Times Seen37336927 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	drama-cool.com.pl/queen-of-tears-episode-14/	972 B	2024-04-25	2024-05-03
Pretty URL drama-cool.com.pl/queen-of-tears-episode-14/ IP 104.21.6.137 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 00:48:59 Last Seen2024-05-03 20:32:32 Times Seen2 Hash bf04b955d2a8f2292407533ec3026f35 f1d04cdb34c520ea3e168332709ec7ea11152ce1 c426ab17726610bf7291463fd94774ab611464b4da87e5c485805417de94de86 Loading...

	drama-cool.com.pl/queen-of-tears-episode-14/	158 B	2023-05-11	2024-05-03
Pretty URL drama-cool.com.pl/queen-of-tears-episode-14/ IP 104.21.6.137 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-11 08:55:12 Last Seen2024-05-03 20:32:33 Times Seen3 Hash 095925addbc4e9858703a89682c130fe 812c77616c93d5a5771d93366bfd5abeb920a96f 15eb21ae6b643b514a5ee4a34e40d98df2a1bd884c2f34b94a5d2b1e3f853c73 Loading...

	drama-cool.com.pl/wp-content/themes/dramacool/js/main.js?ver=20171003	6.6 kB	2023-12-01	2024-05-03
Pretty URL drama-cool.com.pl/wp-content/themes/dramacool/js/main.js?ver=20171003 IP 104.21.6.137 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-01 19:50:08 Last Seen2024-05-03 20:32:32 Times Seen5 Hash 0c773e4c41b4f7c91e80385a0990742d 017c2b952d112a10e80d5e680c49a9a99e4744eb b90331e541bb972f152edf0c52d8ca25d7369c6e0b4d369b2cc6b19ef5af4c08 Loading...

HTTP Transactions (21)

URL IP Response Size

drama-cool.com.pl/wp-content/themes/dramacool/images/dramacool.jpg

104.21.6.137

200 OK

5.0 kB

URL GET HTTP/3
drama-cool.com.pl/wp-content/themes/dramacool/images/dramacool.jpg
IP
104.21.6.137:443
ASN
#13335 CLOUDFLARENET

Requested by
https://drama-cool.com.pl/queen-of-tears-episode-14/
Certificate
IssuerLet's Encrypt
Subjectdrama-cool.com.pl
FingerprintBA:4B:06:32:79:9C:C1:35:6C:31:FD:ED:A1:3B:83:01:C5:DC:58:88
ValidityThu, 07 Mar 2024 21:22:09 GMT - Wed, 05 Jun 2024 21:22:08 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 970x73, components 3
Size
5.0 kB (4967 bytes)
Hash
dfe71b61ff24c02a7e32961126f1f2b0
494a18fae5a5548b186f61c3413a8ddaed2a896f
40aa0428d1ca81211efca4d159a7734b5bfc7b480f2af6106bd7b99cba004901

HTTP Headers

GET /wp-content/themes/dramacool/images/dramacool.jpg HTTP/1.1
Host: drama-cool.com.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://drama-cool.com.pl/queen-of-tears-episode-14/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 22:48:27 GMT
content-type: image/jpeg
content-length: 4967
cache-control: public, max-age=43200
expires: Tue, 16 Apr 2024 00:10:07 GMT
etag: "1367-652c21e0-14607b4;;;"
last-modified: Sun, 15 Oct 2023 17:31:12 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 1103
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rmr5CAv27DUC%2BGRDqHZnaUcORrGNqQyzgmO8D1uKdjaqnyTGvQknu719SxB4b%2Fiay7QMBAjXM7%2BYLH2fordVrWYM1imiqUSY5AHhCbtNiRxg2zn0d9hcog2bwLfgpS%2BLtCCg6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799a41239385693-OSL

drama-cool.com.pl/wp-content/themes/dramacool/images/dramacool-mobile.png

104.21.6.137

200 OK

2.9 kB

URL GET HTTP/3
drama-cool.com.pl/wp-content/themes/dramacool/images/dramacool-mobile.png
IP
104.21.6.137:443
ASN
#13335 CLOUDFLARENET

Requested by
https://drama-cool.com.pl/queen-of-tears-episode-14/
Certificate
IssuerLet's Encrypt
Subjectdrama-cool.com.pl
FingerprintBA:4B:06:32:79:9C:C1:35:6C:31:FD:ED:A1:3B:83:01:C5:DC:58:88
ValidityThu, 07 Mar 2024 21:22:09 GMT - Wed, 05 Jun 2024 21:22:08 GMT

File type
PNG image data, 112 x 15, 8-bit/color RGBA, non-interlaced
Size
2.9 kB (2891 bytes)
Hash
d119611e2ffa77eb97786c3e99c515d0
722bac04483c295660eb056ab27f874f6d1a0517
02e359ce2a9a6df5792c5e146bed2af8d22ddebd39b407f6063959e74f6ab46d

HTTP Headers

GET /wp-content/themes/dramacool/images/dramacool-mobile.png HTTP/1.1
Host: drama-cool.com.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://drama-cool.com.pl/queen-of-tears-episode-14/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 22:48:27 GMT
content-type: image/png
content-length: 2891
cache-control: public, max-age=43200
expires: Tue, 16 Apr 2024 00:10:07 GMT
etag: "b4b-652c21e0-1460794;;;"
last-modified: Sun, 15 Oct 2023 17:31:12 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 1103
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ABck12kc0Pv%2BEWvlZEMRUcrZYnMsUzpEYOmcWNfjv65vCkwOkVYoZgOeRiUkOp9pdRppiwpTWHgO7Bd3HVr1xa%2BJJAoxDELhyMUgUq9W2KEKIzrwOKSE%2FvV26mQNpaKonOlTCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799a412493c5693-OSL

drama-cool.com.pl/wp-content/themes/dramacool/fonts/simple-line-icons.woff?v=2.3.3

104.21.6.137

200 OK

16 kB

URL GET HTTP/3
drama-cool.com.pl/wp-content/themes/dramacool/fonts/simple-line-icons.woff?v=2.3.3
IP
104.21.6.137:443
ASN
#13335 CLOUDFLARENET

Requested by
https://drama-cool.com.pl/queen-of-tears-episode-14/
Certificate
IssuerLet's Encrypt
Subjectdrama-cool.com.pl
FingerprintBA:4B:06:32:79:9C:C1:35:6C:31:FD:ED:A1:3B:83:01:C5:DC:58:88
ValidityThu, 07 Mar 2024 21:22:09 GMT - Wed, 05 Jun 2024 21:22:08 GMT

File type
Web Open Font Format, CFF, length 15472, version 1.0
Size
16 kB (15472 bytes)
Hash
902c481d0bfc7ba95a1725de43572979
aaf3337bb9cdbe586a1f11b57adee6d5b220667b
e9759750d37fbbaa7144bd7435964e2dd94def6abbe2385265fb636873e4816b

HTTP Headers

GET /wp-content/themes/dramacool/fonts/simple-line-icons.woff?v=2.3.3 HTTP/1.1
Host: drama-cool.com.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://drama-cool.com.pl/wp-content/themes/dramacool/fonts/simple-line-icons.min.css?ver=2.3.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 22:48:27 GMT
content-type: application/font-woff
content-length: 15472
etag: "3c70-652c21e0-146081a;;;"
last-modified: Sun, 15 Oct 2023 17:31:12 GMT
alt-svc: h3=":443"; ma=86400
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xT8QrfxAvNt4dL%2BWC7IIB9s8fdXW7hww7mtBVDrot4R3lZonq14sTMPkC96oKCTuuEYGVkXFolh3jA9SfUaNgtDbG5d8jx4n1qWamOq6Oer7lUYNRCuhKfa%2B2BESj4Rivr%2BZzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799a41359cb5693-OSL

bracemascara.com/62/44/0f/62440f18fbdb9c7d7a22ac8b3c36b7f5.js

192.243.61.225

200 OK

31 kB

URL GET HTTP/1.1
bracemascara.com/62/44/0f/62440f18fbdb9c7d7a22ac8b3c36b7f5.js
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://drama-cool.com.pl/queen-of-tears-episode-14/
Certificate
IssuerLet's Encrypt
Subjectbracemascara.com
FingerprintB2:B0:B1:15:6D:88:D6:69:76:39:8C:F4:D1:19:85:A8:F5:FA:1D:DE
ValidityThu, 04 Apr 2024 08:12:13 GMT - Wed, 03 Jul 2024 08:12:12 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
31 kB (31062 bytes)
Hash
807ca94504d8a2a0c937fe86a6c249db
cef739abacf2cafb65dc3d56505e1ac7db0502d8
dfe8f7d90f0f5202d44478b0e86751826658e475c4425f60db5cd6695b3b9995

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /62/44/0f/62440f18fbdb9c7d7a22ac8b3c36b7f5.js HTTP/1.1
Host: bracemascara.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://drama-cool.com.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 22:48:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-2931_layer=0; expires=Sat, 27 Apr 2024 22:48:27 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: abc6a584dc68492f58e15dc7858c59c4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

drama-cool.com.pl/wp-content/themes/dramacool/js/jquery.lazyload.min.js?ver=1

104.21.6.137

200 OK

1.3 kB

URL GET HTTP/3
drama-cool.com.pl/wp-content/themes/dramacool/js/jquery.lazyload.min.js?ver=1
IP
104.21.6.137:443
ASN
#13335 CLOUDFLARENET

Requested by
https://drama-cool.com.pl/queen-of-tears-episode-14/
Certificate
IssuerLet's Encrypt
Subjectdrama-cool.com.pl
FingerprintBA:4B:06:32:79:9C:C1:35:6C:31:FD:ED:A1:3B:83:01:C5:DC:58:88
ValidityThu, 07 Mar 2024 21:22:09 GMT - Wed, 05 Jun 2024 21:22:08 GMT

File type
JavaScript source, ASCII text, with very long lines (3309)
Size
1.3 kB (1325 bytes)
Hash
112c8d1b40b3e62e883c743e9d71e0bf
338318e930487b2791a7bcf53ad4601630cc41e2
ad79ce7e34d1a788809bb853031133de2ae45f3c19ac4955dae46c7490188c2e

HTTP Headers

GET /wp-content/themes/dramacool/js/jquery.lazyload.min.js?ver=1 HTTP/1.1
Host: drama-cool.com.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://drama-cool.com.pl/queen-of-tears-episode-14/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 22:48:27 GMT
content-type: application/x-javascript
cache-control: public, max-age=43200
expires: Tue, 16 Apr 2024 00:10:07 GMT
etag: W/"d35-652c21e0-14607f4;br"
last-modified: Sun, 15 Oct 2023 17:31:12 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 1104
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mzcGFbmBVOy9zlEjMpJ2tMtFSBt%2FPhkqzC9cX2%2FN0XjFmLe5LZKv0jwJiEkkZALdMPz3wdjbw3%2FaHPOjbuh59KFpxevvTJg5gP5W%2Fac6tkK%2BYK6fDAe0AVbg82dBvgSvkeUokw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799a41239375693-OSL
content-encoding: br

excessstumbledvisited.com/pixel/purst?dl=0&th=0&sc=0&rs=1364&rd=1364&fd=928&bv=24.4.4887&tmpl=70

192.243.61.227

200 OK

0 B

URL GET HTTP/1.1
excessstumbledvisited.com/pixel/purst?dl=0&th=0&sc=0&rs=1364&rd=1364&fd=928&bv=24.4.4887&tmpl=70
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://drama-cool.com.pl/queen-of-tears-episode-14/
Certificate
IssuerLet's Encrypt
Subjectexcessstumbledvisited.com
FingerprintF6:CE:79:E1:1A:35:E2:A3:44:FF:13:1F:F1:48:18:54:55:70:8F:FE
ValidityMon, 22 Apr 2024 09:06:49 GMT - Sun, 21 Jul 2024 09:06:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=1364&rd=1364&fd=928&bv=24.4.4887&tmpl=70 HTTP/1.1
Host: excessstumbledvisited.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://drama-cool.com.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 22:48:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

drama-cool.com.pl/wp-content/themes/dramacool/favicon.png

104.21.6.137

200 OK

2.8 kB

URL GET HTTP/3
drama-cool.com.pl/wp-content/themes/dramacool/favicon.png
IP
104.21.6.137:443
ASN
#13335 CLOUDFLARENET

Requested by
https://drama-cool.com.pl/queen-of-tears-episode-14/
Certificate
IssuerLet's Encrypt
Subjectdrama-cool.com.pl
FingerprintBA:4B:06:32:79:9C:C1:35:6C:31:FD:ED:A1:3B:83:01:C5:DC:58:88
ValidityThu, 07 Mar 2024 21:22:09 GMT - Wed, 05 Jun 2024 21:22:08 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced
Size
2.8 kB (2784 bytes)
Hash
4c2cf79ae728be69f9281db784a36eff
12391e5c0698f823ef9d297a2c2c0ca55d98d540
4fbf34a3026dddaf0dacf496079c7a886ebc80b11fe2b8e24f7f57d1e702125f

HTTP Headers

GET /wp-content/themes/dramacool/favicon.png HTTP/1.1
Host: drama-cool.com.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://drama-cool.com.pl/queen-of-tears-episode-14/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=a5cac974-6c32-4a85-9f69-5ec889101fc7%3A2%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 22:48:28 GMT
content-type: image/png
content-length: 2784
cache-control: public, max-age=43200
expires: Tue, 16 Apr 2024 00:10:08 GMT
etag: "ae0-652c21e0-1460805;;;"
last-modified: Sun, 15 Oct 2023 17:31:12 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IIBudP5HeKLqw2m9zE4d2Ks7HF0eTwr8rQavJrpYxxTcD1UfKhXtLNHbEuKWBfxTu9BRH9h8pd8ATjAF7RaX5z4lGUQa02t9vUaCtElQCIbCEThhrBm7smkCLg4psMTgR0gpng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799a41a9db55693-OSL

drama-cool.com.pl/wp-content/themes/dramacool/favicon.png

104.21.6.137

200 OK

2.8 kB

URL GET HTTP/3
drama-cool.com.pl/wp-content/themes/dramacool/favicon.png
IP
104.21.6.137:443
ASN
#13335 CLOUDFLARENET

Requested by
https://drama-cool.com.pl/queen-of-tears-episode-14/
Certificate
IssuerLet's Encrypt
Subjectdrama-cool.com.pl
FingerprintBA:4B:06:32:79:9C:C1:35:6C:31:FD:ED:A1:3B:83:01:C5:DC:58:88
ValidityThu, 07 Mar 2024 21:22:09 GMT - Wed, 05 Jun 2024 21:22:08 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced
Size
2.8 kB (2784 bytes)
Hash
4c2cf79ae728be69f9281db784a36eff
12391e5c0698f823ef9d297a2c2c0ca55d98d540
4fbf34a3026dddaf0dacf496079c7a886ebc80b11fe2b8e24f7f57d1e702125f

HTTP Headers

GET /wp-content/themes/dramacool/favicon.png HTTP/1.1
Host: drama-cool.com.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://drama-cool.com.pl/queen-of-tears-episode-14/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=a5cac974-6c32-4a85-9f69-5ec889101fc7%3A2%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 22:48:28 GMT
content-type: image/png
content-length: 2784
cache-control: public, max-age=43200
expires: Tue, 16 Apr 2024 00:10:08 GMT
etag: "ae0-652c21e0-1460805;;;"
last-modified: Sun, 15 Oct 2023 17:31:12 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fAcdV5JmeJIl65DM3m6pkAqZF1c%2BYFhO3MbfPMDEPGL%2Bzx1qlYgIpy3q9Kexw%2FdsiAPJuGs1zDvOCIIpuuLkLHLMp4%2BFaqmlWeiuBzEozX0jXbf70trmB0meWC%2BLbLye5xL4aw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799a41a9db75693-OSL

capaciousdrewreligion.com/advertisers.js

172.240.108.76

200 OK

0 B

URL GET HTTP/1.1
capaciousdrewreligion.com/advertisers.js
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://drama-cool.com.pl/queen-of-tears-episode-14/
Certificate
IssuerLet's Encrypt
Subjectcapaciousdrewreligion.com
Fingerprint53:B6:ED:C6:B5:B6:60:3E:6D:02:5A:92:2E:C3:12:74:64:A1:23:DC
ValidityWed, 06 Mar 2024 11:57:32 GMT - Tue, 04 Jun 2024 11:57:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://drama-cool.com.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 22:48:28 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f7a8948bcff88339b176f36489b7793b
Strict-Transport-Security: max-age=0; includeSubdomains

downstairsnegotiatebarren.com/sfp.js

172.67.180.87

200 OK

28 kB

URL GET HTTP/2
downstairsnegotiatebarren.com/sfp.js
IP
172.67.180.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://drama-cool.com.pl/queen-of-tears-episode-14/
Certificate
IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44
ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
28 kB (27964 bytes)
Hash
f4a2f8f9f99541c6f105bbd0a025bd40
1f8e3eff12168fdd9e719adfc098d24a45b6916a
b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://drama-cool.com.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 22:48:28 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 4377154ae96b1a76e682be5b562bf014
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: STALE
age: 1
last-modified: Wed, 24 Apr 2024 22:48:27 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AsRsFR2hOBvDz%2FtJlgv5Vm%2FO%2BE4V4AELldjWJ%2BCwWiFnJeyKAyBUjHVoj7MWMozUg5ZccyhFXh465qRnmGp3zkhfCd%2BNrjVL4bdXzZcEnh94D4Hm01SQVZkw8qtj6N26wnb9A9UiMoIaUxb3E6GW6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799a4182bcd56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

unseenreport.com/pxf.gif?uuid=a5cac974-6c32-4a85-9f69-5ec889101fc7&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=62440f18fbdb9c7d7a22ac8b3c36b7f5&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22

192.243.59.20

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=a5cac974-6c32-4a85-9f69-5ec889101fc7&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=62440f18fbdb9c7d7a22ac8b3c36b7f5&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://drama-cool.com.pl/queen-of-tears-episode-14/
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=a5cac974-6c32-4a85-9f69-5ec889101fc7&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=62440f18fbdb9c7d7a22ac8b3c36b7f5&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://drama-cool.com.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 22:48:29 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0c9d0717e4c95c9515a949fedb2a5f4a
Strict-Transport-Security: max-age=0; includeSubdomains

proftrafficcounter.com/stats

35.158.46.84

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
35.158.46.84:443
ASN
#16509 AMAZON-02

Requested by
https://drama-cool.com.pl/queen-of-tears-episode-14/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
f87fabc78ba0ba31a72f3702b9dce702
a4612fcf12c66b1ecec659837d0a6f855d9447f8
949ec8e76f9029a65669ec518f3b8216c0bde36d02e48aa0cb92efb178cd0014

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://drama-cool.com.pl
DNT: 1
Connection: keep-alive
Referer: https://drama-cool.com.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 22:48:28 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://drama-cool.com.pl
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=a5cac974-6c32-4a85-9f69-5ec889101fc7:2:1; expires=Sat, 22 Apr 2034 22:48:28 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

drama-cool.com.pl/queen-of-tears-episode-14/

104.21.6.137

200 OK

36 kB

URL User Request GET HTTP/2
drama-cool.com.pl/queen-of-tears-episode-14/
IP
104.21.6.137:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectdrama-cool.com.pl
FingerprintBA:4B:06:32:79:9C:C1:35:6C:31:FD:ED:A1:3B:83:01:C5:DC:58:88
ValidityThu, 07 Mar 2024 21:22:09 GMT - Wed, 05 Jun 2024 21:22:08 GMT

File type

Size
36 kB (35914 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /queen-of-tears-episode-14/ HTTP/1.1
Host: drama-cool.com.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 22:48:27 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Cookie
x-pingback: https://drama-cool.com.pl/xmlrpc.php
link: <https://drama-cool.com.pl/wp-json/>; rel="https://api.w.org/", <https://drama-cool.com.pl/wp-json/wp/v2/posts/595>; rel="alternate"; type="application/json", <https://drama-cool.com.pl/?p=595>; rel=shortlink
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=grwm9cxbhdcbx48%2BC8VWWMiL5xUyocbTWwcTsuGPq1J0NKAR%2BtSc7%2FzNHlFU40Yk%2FRCTjKXn7IRAvS8fi7PC7sFBs%2FHmRaHmNBJYLWCXi84dNruan1LVCNfYm0Dsi6U%2BzIJlwg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799a40fff06b51e-OSL
content-encoding: br
X-Firefox-Spdy: h2

drama-cool.com.pl/wp-content/themes/dramacool/js/jquery-3.1.1.min.js?ver=3.1.1

104.21.6.137

200 OK

87 kB

URL GET HTTP/3
drama-cool.com.pl/wp-content/themes/dramacool/js/jquery-3.1.1.min.js?ver=3.1.1
IP
104.21.6.137:443
ASN
#13335 CLOUDFLARENET

Requested by
https://drama-cool.com.pl/queen-of-tears-episode-14/
Certificate
IssuerLet's Encrypt
Subjectdrama-cool.com.pl
FingerprintBA:4B:06:32:79:9C:C1:35:6C:31:FD:ED:A1:3B:83:01:C5:DC:58:88
ValidityThu, 07 Mar 2024 21:22:09 GMT - Wed, 05 Jun 2024 21:22:08 GMT

File type
JavaScript source, ASCII text, with very long lines (32030)
Size
87 kB (86709 bytes)
Hash
e071abda8fe61194711cfc2ab99fe104
f647a6d37dc4ca055ced3cf64bbc1f490070acba
85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf

HTTP Headers

GET /wp-content/themes/dramacool/js/jquery-3.1.1.min.js?ver=3.1.1 HTTP/1.1
Host: drama-cool.com.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://drama-cool.com.pl/queen-of-tears-episode-14/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 22:48:27 GMT
content-type: application/x-javascript
cache-control: public, max-age=43200
expires: Wed, 17 Apr 2024 08:47:04 GMT
etag: W/"152b5-652c21e0-14607f3;br"
last-modified: Sun, 15 Oct 2023 17:31:12 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 2900
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nv4RHTpslIHgqby4O1nnDI2Bp4NGlQz%2Fzd2CCA3eccDpYDa7DXRKwIOxLGAz971PCBS3HLz20%2BF%2BidiiUJ5gqeUuZ%2ByJ6XPkKGT5%2FgCMZ3U24NHxhpS%2BiMUzThoTbq1ZcSmL3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799a41239365693-OSL
content-encoding: br

drama-cool.com.pl/wp-content/themes/dramacool/css/style.css?ver=6.5.2

104.21.6.137

200 OK

411 B

URL GET HTTP/3
drama-cool.com.pl/wp-content/themes/dramacool/css/style.css?ver=6.5.2
IP
104.21.6.137:443
ASN
#13335 CLOUDFLARENET

Requested by
https://drama-cool.com.pl/queen-of-tears-episode-14/
Certificate
IssuerLet's Encrypt
Subjectdrama-cool.com.pl
FingerprintBA:4B:06:32:79:9C:C1:35:6C:31:FD:ED:A1:3B:83:01:C5:DC:58:88
ValidityThu, 07 Mar 2024 21:22:09 GMT - Wed, 05 Jun 2024 21:22:08 GMT

File type
ASCII text, with very long lines (411), with no line terminators
Size
411 B (411 bytes)
Hash
05ce889cb02f0b0747cce41e4c42a180
ac7f864c11e587e08fe1db9ea8c6c202a3355a0f
d261205cf1f286a5d6255461ac2332f0c24327323aa37cbabc04886411b2f9d2

HTTP Headers

GET /wp-content/themes/dramacool/css/style.css?ver=6.5.2 HTTP/1.1
Host: drama-cool.com.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://drama-cool.com.pl/queen-of-tears-episode-14/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 22:48:27 GMT
content-type: text/css
cache-control: public, max-age=43200
cf-bgj: minify
cf-polished: origSize=577
alt-svc: h3=":443"; ma=86400
etag: W/"241-652c21e0-1460760;br"
expires: Tue, 16 Apr 2024 07:54:00 GMT
last-modified: Sun, 15 Oct 2023 17:31:12 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1104
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LLlAEV9NXgzkm8CLyGuX7DLzPYWTD5DOFCGZJMb%2F2UVBmOLQL8j76CAEF5MQByH7i7d8lPLWNcTLcemBziTUSyia2%2BcA5IAmp5qfd3SGjBXO5P0NMnIUhTA%2FoEVvjDDA04D3bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799a41239325693-OSL
content-encoding: br

drama-cool.com.pl/wp-content/themes/dramacool/js/main.js?ver=20171003

104.21.6.137

200 OK

6.6 kB

URL GET HTTP/3
drama-cool.com.pl/wp-content/themes/dramacool/js/main.js?ver=20171003
IP
104.21.6.137:443
ASN
#13335 CLOUDFLARENET

Requested by
https://drama-cool.com.pl/queen-of-tears-episode-14/
Certificate
IssuerLet's Encrypt
Subjectdrama-cool.com.pl
FingerprintBA:4B:06:32:79:9C:C1:35:6C:31:FD:ED:A1:3B:83:01:C5:DC:58:88
ValidityThu, 07 Mar 2024 21:22:09 GMT - Wed, 05 Jun 2024 21:22:08 GMT

File type
JavaScript source, ASCII text, with very long lines (6656), with no line terminators
Size
6.6 kB (6588 bytes)
Hash
4c912f7e8d7b3a2b1974862753d9d918
a438c278e04c06c1daca0e916a332c4ca25bbb37
aa3b2fee28ef976a38d06d5aaada6bc8c5681af689e934f27d8b438681f5904a

HTTP Headers

GET /wp-content/themes/dramacool/js/main.js?ver=20171003 HTTP/1.1
Host: drama-cool.com.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://drama-cool.com.pl/queen-of-tears-episode-14/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 22:48:27 GMT
content-type: application/x-javascript
cache-control: public, max-age=43200
cf-bgj: minify
cf-polished: origSize=9677
alt-svc: h3=":443"; ma=86400
etag: W/"25cd-652c21e0-14607f5;br"
expires: Tue, 16 Apr 2024 00:10:07 GMT
last-modified: Sun, 15 Oct 2023 17:31:12 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1104
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t0%2Fhwy2zteONDHIKrFDy3GbBROteFxAq%2F%2B6z4iPi0EzE09cWeOBNlWbY3VnKogVOPqG3nwnIE9iEDvAqY6aEQKn7TZp2s86dLtufNx9q92wQFyBiUZa%2FU9%2BYpqAKMbBNmC2Tsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799a412493f5693-OSL
content-encoding: br

drama-cool.com.pl/wp-includes/js/comment-reply.min.js?ver=6.5.2

104.21.6.137

200 OK

3.0 kB

URL GET HTTP/3
drama-cool.com.pl/wp-includes/js/comment-reply.min.js?ver=6.5.2
IP
104.21.6.137:443
ASN
#13335 CLOUDFLARENET

Requested by
https://drama-cool.com.pl/queen-of-tears-episode-14/
Certificate
IssuerLet's Encrypt
Subjectdrama-cool.com.pl
FingerprintBA:4B:06:32:79:9C:C1:35:6C:31:FD:ED:A1:3B:83:01:C5:DC:58:88
ValidityThu, 07 Mar 2024 21:22:09 GMT - Wed, 05 Jun 2024 21:22:08 GMT

File type
ASCII text, with very long lines (3056), with no line terminators
Size
3.0 kB (2981 bytes)
Hash
dc7f90d513295c29acc441fe114a2cab
ca9e5069d9afc4aa13ab2e152313dfb476e842ef
f87915c58d8c25473c726646b58d2fe0ba9a136987571e6c810aba3c67b4f74c

HTTP Headers

GET /wp-includes/js/comment-reply.min.js?ver=6.5.2 HTTP/1.1
Host: drama-cool.com.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://drama-cool.com.pl/queen-of-tears-episode-14/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 22:48:27 GMT
content-type: application/x-javascript
cache-control: public, max-age=43200
expires: Tue, 16 Apr 2024 07:54:00 GMT
etag: W/"ba5-625095f6-1461400;br"
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 1104
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sWyxWauQX5Z4FQfAbJT%2FSE9EicebvNncJVRlY8%2BXYAlX09K9CpNwQeshjHxm2JilhkwvOOzkojgvfgtGJqohCqoSQB8bkIcWpoMYSrqpJ9UZO8nmDXOagzOFRROd4PLEcXBz0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799a41249405693-OSL
content-encoding: br

drama-cool.com.pl/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2

104.21.6.137

200 OK

113 kB

URL GET HTTP/3
drama-cool.com.pl/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2
IP
104.21.6.137:443
ASN
#13335 CLOUDFLARENET

Requested by
https://drama-cool.com.pl/queen-of-tears-episode-14/
Certificate
IssuerLet's Encrypt
Subjectdrama-cool.com.pl
FingerprintBA:4B:06:32:79:9C:C1:35:6C:31:FD:ED:A1:3B:83:01:C5:DC:58:88
ValidityThu, 07 Mar 2024 21:22:09 GMT - Wed, 05 Jun 2024 21:22:08 GMT

File type

Size
113 kB (113381 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 HTTP/1.1
Host: drama-cool.com.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://drama-cool.com.pl/queen-of-tears-episode-14/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 22:48:27 GMT
content-type: text/css
cache-control: public, max-age=43200
expires: Tue, 16 Apr 2024 07:54:00 GMT
etag: W/"1bae5-65ddf637-1460cac;br"
last-modified: Tue, 27 Feb 2024 14:48:23 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 1104
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MCgYmC14%2FyxOevD%2BIP7A4jXyy0UxXNPiCgkUMrWjGnLideob8oAAcCpOT%2B48uz%2F5GEIQE7BY%2BIyZBoZOYvaUH9nCIW9k3TUTmt2tXo%2FzHLiP8HNR8zdGg7PTAshnmump5TLmmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799a412392d5693-OSL
content-encoding: br

drama-cool.com.pl/wp-content/themes/dramacool/style.css?ver=6.1

104.21.6.137

200 OK

52 kB

URL GET HTTP/3
drama-cool.com.pl/wp-content/themes/dramacool/style.css?ver=6.1
IP
104.21.6.137:443
ASN
#13335 CLOUDFLARENET

Requested by
https://drama-cool.com.pl/queen-of-tears-episode-14/
Certificate
IssuerLet's Encrypt
Subjectdrama-cool.com.pl
FingerprintBA:4B:06:32:79:9C:C1:35:6C:31:FD:ED:A1:3B:83:01:C5:DC:58:88
ValidityThu, 07 Mar 2024 21:22:09 GMT - Wed, 05 Jun 2024 21:22:08 GMT

File type
assembler source, ASCII text
Size
52 kB (52228 bytes)
Hash
e966f5dc9a921dc6f18b632a1e7b240a
e465fc45d0390b705f06accab9728b775b9c39ff
6d0bedb3f0c76b852e9bd1b4bf22994c3af4f88db176d777f7b9aadd5f7e561f

HTTP Headers

GET /wp-content/themes/dramacool/style.css?ver=6.1 HTTP/1.1
Host: drama-cool.com.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://drama-cool.com.pl/queen-of-tears-episode-14/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 22:48:27 GMT
content-type: text/css
cache-control: public, max-age=43200
cf-bgj: minify
cf-polished: status=cannot_optimize
alt-svc: h3=":443"; ma=86400
etag: W/"cc04-660ed67e-1460766;br"
expires: Tue, 16 Apr 2024 00:10:07 GMT
last-modified: Thu, 04 Apr 2024 16:34:06 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1104
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ni5ZZefdfTCHI3jgd5l52Z5OxX8G3Ok35raoU1JUBcGZXJgfhYT%2FOAi9sKvpkq2dZOyZ%2FXEE3Ty0MzpF2G%2BEcA976xQRiHAaJF1CGofqFJ5ajfZnMH1%2B0iO0mWrq7G4qHroEbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799a41239305693-OSL
content-encoding: br

drama-cool.com.pl/wp-content/themes/dramacool/css/vscf-style.min.css?ver=6.5.2

104.21.6.137

200 OK

977 B

URL GET HTTP/3
drama-cool.com.pl/wp-content/themes/dramacool/css/vscf-style.min.css?ver=6.5.2
IP
104.21.6.137:443
ASN
#13335 CLOUDFLARENET

Requested by
https://drama-cool.com.pl/queen-of-tears-episode-14/
Certificate
IssuerLet's Encrypt
Subjectdrama-cool.com.pl
FingerprintBA:4B:06:32:79:9C:C1:35:6C:31:FD:ED:A1:3B:83:01:C5:DC:58:88
ValidityThu, 07 Mar 2024 21:22:09 GMT - Wed, 05 Jun 2024 21:22:08 GMT

File type
ASCII text, with very long lines (983), with no line terminators
Size
977 B (977 bytes)
Hash
0a0aa3f760ca7be93bd13b28e7e57bee
93b614768b84d08cdddcbd92a97f0971cbf35a00
6d3e2e9e4af59bd41c1288356e6d17b782ed83207c518f9d394ac23aea00c4f2

HTTP Headers

GET /wp-content/themes/dramacool/css/vscf-style.min.css?ver=6.5.2 HTTP/1.1
Host: drama-cool.com.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://drama-cool.com.pl/queen-of-tears-episode-14/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 22:48:27 GMT
content-type: text/css
cache-control: public, max-age=43200
expires: Tue, 16 Apr 2024 07:54:00 GMT
etag: W/"3d1-652c21e0-1460762;br"
last-modified: Sun, 15 Oct 2023 17:31:12 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 1104
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RwCqWbRatObVsfMa2qc8AAZkIj12JF%2FMjcdrAYbbWoDs4EDP6L5ENGurrMZ%2F0CgUYViTIiPDctuLeaOsGzcivWN1EgFvBNRSRRwYWT8m2m6V0ep9EP0isgcTpBWU4yWNQUTT7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799a41239335693-OSL
content-encoding: br

drama-cool.com.pl/wp-content/themes/dramacool/fonts/simple-line-icons.min.css?ver=2.3.3

104.21.6.137

200 OK

4.0 kB

URL GET HTTP/3
drama-cool.com.pl/wp-content/themes/dramacool/fonts/simple-line-icons.min.css?ver=2.3.3
IP
104.21.6.137:443
ASN
#13335 CLOUDFLARENET

Requested by
https://drama-cool.com.pl/queen-of-tears-episode-14/
Certificate
IssuerLet's Encrypt
Subjectdrama-cool.com.pl
FingerprintBA:4B:06:32:79:9C:C1:35:6C:31:FD:ED:A1:3B:83:01:C5:DC:58:88
ValidityThu, 07 Mar 2024 21:22:09 GMT - Wed, 05 Jun 2024 21:22:08 GMT

File type
ASCII text, with very long lines (4319), with no line terminators
Size
4.0 kB (4011 bytes)
Hash
1646956a8ee4f574c5dd2e7bd74e41ff
1bf3f837134a250b01f4a072a05d73af38047ee2
e0ebd64c7a0f7a41c6134bb3f65a0cfc6ee521ab0b8d57fb3a115a159ae0b94e

HTTP Headers

GET /wp-content/themes/dramacool/fonts/simple-line-icons.min.css?ver=2.3.3 HTTP/1.1
Host: drama-cool.com.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://drama-cool.com.pl/queen-of-tears-episode-14/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 22:48:27 GMT
content-type: text/css
cache-control: public, max-age=43200
expires: Tue, 16 Apr 2024 00:10:07 GMT
etag: W/"fab-652c21e0-146081b;br"
last-modified: Sun, 15 Oct 2023 17:31:12 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 1104
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1dNo1FzHHO%2BH%2FYg6wrJg4lVv9DSuSYmeWfPFXq2DEOJ85vM1iyioR0szHDOSr2CBItU6eQ4NbjaO8KPCO4PlxzXq58uvKBieX2nQDTe%2Bg23hEPT3%2BoXJhvb8h3aicl%2BwWAgwUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799a412392f5693-OSL
content-encoding: br

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (9)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML