Overview

URL maidan1.ru/home/acc/account
IP80.78.250.67
ASNAS43146 Agava Ltd.
Location Russian Federation
Report completed2019-06-10 19:47:22 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-06-10 2 maidan1.ru/home/acc/account Phishing
2019-06-10 2 maidan1.ru/modules/system/system.menus.css?paco74 Phishing
2019-06-10 2 maidan1.ru/modules/system/system.theme.css?paco74 Phishing
2019-06-10 2 maidan1.ru/modules/system/system.messages.css?paco74 Phishing
2019-06-10 2 maidan1.ru/modules/field/theme/field.css?paco74 Phishing
2019-06-10 2 maidan1.ru/modules/search/search.css?paco74 Phishing
2019-06-10 2 maidan1.ru/misc/jquery.once.js?v=1.2 Phishing
2019-06-10 2 maidan1.ru/misc/drupal.js?paco74 Phishing
2019-06-10 2 maidan1.ru/misc/jquery.js?v=1.4.4 Phishing
2019-06-10 2 maidan1.ru/sites/default/files/languages/ru_-L2xYGzqdS_OvFCSZQd_DNZmvlKQ_CQ (...) Phishing
2019-06-10 2 maidan1.ru/sites/all/themes/corporate/js/effects.js?paco74 Phishing
2019-06-10 2 maidan1.ru/sites/all/themes/corporate/fonts/BebasNeue-webfont.woff Phishing
2019-06-10 2 maidan1.ru/sites/default/files/%D0%B1%D0%B0%D0%BD%D0%BD%D0%B5%D1%80.bmp Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 80.78.250.67

Date UQ / IDS / BL URL IP
2019-06-09 19:06:52 +0200
0 - 0 - 13 maidan1.ru/home/acc 80.78.250.67
2019-06-09 15:31:55 +0200
0 - 0 - 1 peleduy-school.ru/language/en-GB/barclays 80.78.250.67
2019-06-09 14:36:00 +0200
0 - 0 - 3 slet-fortuna.ru/file/PHP/chines/10dee2e03eb10 (...) 80.78.250.67
2019-06-09 01:27:37 +0200
0 - 0 - 3 fotolegko.ru/024exypc/biz/personal 80.78.250.67
2019-06-06 06:30:22 +0200
0 - 0 - 1 gusevpni.ru/wp-content/uploads/2016/07/Poryad (...) 80.78.250.67
2019-06-05 19:39:10 +0200
0 - 0 - 1 gusevpni.ru/wp-content/uploads/2016/07/Poryad (...) 80.78.250.67
2019-06-04 23:05:45 +0200
0 - 1 - 0 vorteks.ru/ 80.78.250.67
2019-06-04 16:04:07 +0200
0 - 0 - 1 peleduy-school.ru/bgku/tfvuk 80.78.250.67
2019-06-04 11:52:27 +0200
0 - 0 - 1 gusevpni.ru/wp-content/uploads/2016/07/Poryad (...) 80.78.250.67
2019-06-04 11:52:17 +0200
0 - 0 - 1 gusevpni.ru/wp-content/uploads/2016/07/Izmene (...) 80.78.250.67

Last 10 reports on ASN: AS43146 Agava Ltd.

Date UQ / IDS / BL URL IP
2019-06-30 01:01:48 +0200
0 - 0 - 0 www.multitran.ru/c/m.exe 89.108.112.70
2019-06-16 12:14:12 +0200
0 - 0 - 0 kraskovo-kkc.ru 80.78.250.103
2019-06-16 09:32:13 +0200
0 - 0 - 0 kraskovo-kkc.ru 80.78.250.103
2019-06-16 08:48:17 +0200
0 - 0 - 0 kraskovo-kkc.ru 80.78.250.103
2019-06-10 20:33:02 +0200
0 - 0 - 3 stihiya.info/wp-includes/lkd/login.php 80.78.250.93
2019-06-10 20:33:00 +0200
0 - 0 - 3 stihiya.info/wp-includes/lkd 80.78.250.93
2019-06-10 20:32:59 +0200
0 - 0 - 3 stihiya.info/wp-includes/pomo/linn/login.php 80.78.250.93
2019-06-10 20:32:55 +0200
0 - 0 - 3 stihiya.info/wp-includes/pomo/lin 80.78.250.93
2019-06-10 20:27:16 +0200
0 - 0 - 20 er-bronnitsy.ru/projects/22 89.108.84.41
2019-06-10 20:27:15 +0200
0 - 0 - 21 er-bronnitsy.ru/news/20190205/1024 89.108.84.41

Last 5 reports on domain: maidan1.ru

Date UQ / IDS / BL URL IP
2019-06-09 19:06:52 +0200
0 - 0 - 13 maidan1.ru/home/acc 80.78.250.67
2018-11-28 18:36:49 +0100
0 - 0 - 12 maidan1.ru/support/account 80.78.250.67
2018-05-23 03:22:49 +0200
0 - 0 - 12 maidan1.ru/home/acc/account 80.78.250.67
2018-05-23 01:39:42 +0200
0 - 0 - 12 maidan1.ru/home/acc/account/61a9c/verifie/sig (...) 80.78.250.67
2017-08-31 07:20:10 +0200
0 - 0 - 12 maidan1.ru/support/account/2c5f8 80.78.250.67


JavaScript

Executed Scripts (11)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (27)


Request Response
                                        
                                            GET /home/acc/account HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         80.78.250.67
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.3.28
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: no-cache, must-revalidate
X-Content-Type-Options: nosniff
Content-Language: ru
X-Frame-Options: SAMEORIGIN
X-Generator: Drupal 7 (http://drupal.org)
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3637
Md5:    25fc6e9d321c79f82b7fbca25257b7c9
Sha1:   0f109ceef8a7b664d7e36fe3fda2e4532219c13c
Sha256: ffffa152dd13f35f2530d949657003617eb91a387faadc65c0b1135fd90797c6

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /modules/system/system.base.css?paco74 HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Fri, 15 Jun 2018 05:45:54 GMT
Etag: W/"30cee31-1534-56ea7baac4880"
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:49 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1882
Md5:    60c98829855614aecdffc587b8de5156
Sha1:   b0f56578c68c28a34d628ab3616f3746b0d6fd87
Sha256: 0a46bcf612829d084e34f4c853771df8fd13b7a285a2a962b90c0f970bca0d48
                                        
                                            GET /modules/system/system.menus.css?paco74 HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Fri, 15 Jun 2018 05:45:57 GMT
Etag: W/"30cee39-7f3-56ea7bada0f40"
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:49 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   662
Md5:    d8af9282b0c669a85ae8a36203f4c8a6
Sha1:   3a3e748052e281d945e718a4b33b932b8d627834
Sha256: eea2b9f3a5fe0eb49ba8360c038a99d63144e7933d2772d9b7aacb322207503d

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /modules/system/system.theme.css?paco74 HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Fri, 15 Jun 2018 05:46:08 GMT
Etag: W/"30cee41-e7f-56ea7bb81e800"
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:49 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1219
Md5:    bb609e3fa923a827e45d7fae7357eb1f
Sha1:   f4b5748280f508680235db1a730cd84e66d2d92a
Sha256: 5ec15d0f04b28b4e96c6d41613216c84130d5f4feff28f34dfd3e48be0f6d79d

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /modules/system/system.messages.css?paco74 HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Fri, 15 Jun 2018 05:45:58 GMT
Etag: W/"30cee3b-3c1-56ea7bae95180"
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:49 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   382
Md5:    40a7ad55840d8d70bbdfa97dac15918d
Sha1:   a5c4ca3421b1875fcc8bbfabedcb5a3a8d0ecdf3
Sha256: f2b5680e9521dd1a16d3d880f2541e29f7967fe6045fed65ed6f6d7da2ddb8ea

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /modules/field/theme/field.css?paco74 HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Fri, 15 Jun 2018 05:42:12 GMT
Etag: W/"30cec9a-226-56ea7ad70d500"
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:49 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   235
Md5:    c9269abcf7f16f1e534bbfc9716f465e
Sha1:   ebada8a29fafb63305e10a8b509b552add09db14
Sha256: 69047468eb55ddbba5082abe5a283e1afdd4ccd2bad6c42b8afc520ea21d70ca

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /modules/comment/comment.css?paco74 HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Fri, 15 Jun 2018 05:41:28 GMT
Etag: W/"30cc840-b8-56ea7aad17200"
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:49 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   142
Md5:    c275508833c66c4b8aa337bffe410e0a
Sha1:   52e8404c5b5fcbcec48ee5ba833110f34f638950
Sha256: 9cb5377c054a3a74a27c6af9899034aa2c6c50013d9342b1118a18157651b6df
                                        
                                            GET /modules/node/node.css?paco74 HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Fri, 15 Jun 2018 05:43:02 GMT
Etag: W/"30cc92e-90-56ea7b06bc580"
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:49 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   109
Md5:    b9104e8074f03449d5040f859270351b
Sha1:   8b700d3ac4cc263d51c2a2fb7615b64840e5066f
Sha256: 65122fd1734c6594c6b738b57ece3d0ab626493180401059527e80a7f025bedb
                                        
                                            GET /modules/search/search.css?paco74 HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Fri, 15 Jun 2018 05:43:41 GMT
Etag: W/"30cca47-234-56ea7b2bedd40"
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:49 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   232
Md5:    f42c4ac2deabfdcc21dde33dfacff2a1
Sha1:   6db9012ff5ee4dfd5a8249decaee8c4ac909a5cd
Sha256: df14bffe54fb697d21eedd995040730500f5f8c3a10062fd248a2f5277c2741a

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /sites/all/themes/corporate/style.css?paco74 HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Thu, 09 Mar 2017 18:24:37 GMT
Etag: W/"315cac0-4988-54a505b878340"
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:49 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4561
Md5:    c3d864ebcc4336cd90c0617f1ce48f67
Sha1:   68e937b8f0f756b327536ff363c7ad8b5bf697d9
Sha256: c2aef1ddfa6195bc8f32706a3088e2cec2eddc205bcb498698966e1275c2c5a6
                                        
                                            GET /sites/all/modules/visually_impaired_module/css/visually_impaired_module.css?paco74 HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Fri, 27 Apr 2018 05:45:23 GMT
Etag: W/"30d60c1-18a-56ace0299e2c0"
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:49 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   206
Md5:    15b9e68848d3e9e160deb8794e51c4dd
Sha1:   4fd452c650f90d21e1fb70af45482b1dd076a1cb
Sha256: 2c3cbb7d674fabe07e76fc7e11cd4f44d1db87c52ff1414c81f4d4169b428810
                                        
                                            GET /modules/user/user.css?paco74 HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Fri, 15 Jun 2018 05:46:42 GMT
Etag: W/"30cee98-723-56ea7bd88b480"
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:49 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   698
Md5:    7ffa6643bbe99196bec8fdd3ea9c190d
Sha1:   e098ba3ed1b447f3a3275e876d9cf26ceafec2af
Sha256: 34c99659f7035579bf0f52e9f3dfe11705e1b608181abf840115e2d2847df86f
                                        
                                            GET /misc/jquery.once.js?v=1.2 HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Fri, 15 Jun 2018 05:40:31 GMT
Etag: W/"30cc798-b9e-56ea7a76bb1c0"
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:49 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1066
Md5:    47dd38773450ed7f9922c55c54e31525
Sha1:   09fb8199cc7e293f71968d349678b1f68156df7a
Sha256: 76bc9a45f16da68d2a62c4a24888449522a4e259fd3c7a1503eb323ad2dd7ca1

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /misc/drupal.js?paco74 HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Fri, 15 Jun 2018 05:40:27 GMT
Etag: W/"30cc78c-4efb-56ea7a72ea8c0"
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:49 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6929
Md5:    68a26db806c63f5fe80d8e9bb2024292
Sha1:   69ee8c14860324f5fe2d1df756d603cbb9d13c7b
Sha256: 8a72f76702fb0b41f509ab6d6a52d2b29bc11312979b7913752feaaf38e353fb

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /misc/jquery.js?v=1.4.4 HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Fri, 15 Jun 2018 05:40:30 GMT
Etag: W/"30cc797-1330a-56ea7a75c6f80"
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:49 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   27079
Md5:    ef93539dafb9b07b3a76002078ae5e1c
Sha1:   51aaca1f36e889346912ad5d97788736b7759954
Sha256: f4ba98317c89270d1cc3022dac6c50a847d46ea087dfbabe7582833339954e4f

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /misc/jquery.cookie.js?v=1.0 HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Fri, 15 Jun 2018 05:40:29 GMT
Etag: W/"30cc795-3c1-56ea7a74d2d40"
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:49 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   555
Md5:    d20a2f20e4cbf07cf3884091ad8ca87b
Sha1:   9a8e3d8ad0a95fc6979360e3bc8877fc035c6544
Sha256: ccf162c66c060c19b828c444ae63465e12b266e2d3f5857e9d75319e5ba8fcb7
                                        
                                            GET /sites/default/files/languages/ru_-L2xYGzqdS_OvFCSZQd_DNZmvlKQ_CQeT74VjMoJw1Q.js?paco74 HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Sun, 04 Sep 2016 16:45:56 GMT
Etag: W/"30f0fc1-2217-53bb14c207900"
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:49 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2094
Md5:    99196ca9871b5b4d5c6889bb10e70c59
Sha1:   492a6b426df3621cbab18263115a80c1c91e8f5e
Sha256: c22762ec8dc0676223ebccf4f1f93c9979eee4408ee518aa469218ef9df90a9d

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /img/icon.png HTTP/1.1 
Host: uomps.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         80.78.250.64
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:49 GMT
Content-Length: 30438
Connection: keep-alive
Last-Modified: Wed, 26 Apr 2017 06:11:08 GMT
Etag: "48d8767-76e6-54e0bb4c57700"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 200 x 200, 8-bit/color RGB, non-interlaced
Size:   30438
Md5:    9d62244f2040cae974ce0a60fdd46666
Sha1:   0c08c11f0da77d3d1ab6182b8f803028a6145c63
Sha256: 2a4c47501e494928d35d404bdc0f1c6072103b9ab2110515f211ade2965fe3f3
                                        
                                            GET /sites/all/themes/corporate/js/effects.js?paco74 HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Thu, 09 Mar 2017 18:24:37 GMT
Etag: W/"3168c6f-141-54a505b878340"
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:49 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   229
Md5:    e3b253fa3e38814694030c0e8027a1a6
Sha1:   7d0216b36fc3593faf1b351a356dd88c667434d2
Sha256: 555a34f7d85ae2ba38a318d9b69a5c9d3f59f5685706f3cc6c7df274a62d5278

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /sites/all/themes/corporate/js/superfish.js?paco74 HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Thu, 09 Mar 2017 18:24:37 GMT
Etag: W/"3168ca6-e81-54a505b878340"
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:49 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1512
Md5:    4cf688d4b39fab97ee761a7fb9087f29
Sha1:   8b2a40a9e642fd12c4d40e374aa3c437d895abf7
Sha256: ad73bcbe5a66dd155d17be792528a628f10325bce17f9225b5607ab666dec710
                                        
                                            GET /sites/all/modules/visually_impaired_module/images/visually_impaired.png HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/sites/all/modules/visually_impaired_module/css/visually_impaired_module.css?paco74
Cookie: has_js=1

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:50 GMT
Content-Length: 3274
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Fri, 27 Apr 2018 05:45:23 GMT
Etag: "30d60bf-cca-56ace0299e2c0"
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:50 GMT


--- Additional Info ---
Magic:  PNG image, 200 x 67, 8-bit gray+alpha, non-interlaced
Size:   3274
Md5:    e6a9482843fea84a7dd0972cd5ca8de3
Sha1:   f2c79b012d6560e979b2210381f8ec277b563a6d
Sha256: af3710a52849e7d72987228a84acaad1de97aae6e93d61f0a01cc1228a6e055c
                                        
                                            GET /sites/all/themes/corporate/fonts/BebasNeue-webfont.woff HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/sites/all/themes/corporate/style.css?paco74
Cookie: has_js=1

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:50 GMT
Content-Length: 11632
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Thu, 09 Mar 2017 18:24:37 GMT
Etag: "3164cfa-2d70-54a505b878340"
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:50 GMT


--- Additional Info ---
Magic:  data
Size:   11632
Md5:    6f04d3d6e28184a5ace603e80b97433e
Sha1:   1998cb7315be9d506cc738032bb81412b17f6036
Sha256: dd360ae94b4d7230efb497196eb6b948f8afeb2e41ec8ff6113309ee971c3721

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /sites/default/files/%D0%B1%D0%B0%D0%BD%D0%BD%D0%B5%D1%80.bmp HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: image/bmp
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:50 GMT
Content-Length: 220954
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Tue, 16 Apr 2019 05:12:20 GMT
Etag: "30ce309-35f1a-5869ed03a7500"
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:50 GMT


--- Additional Info ---
Magic:  PC bitmap, Windows 3.x format, 313 x 235 x 24
Size:   220954
Md5:    a2a87cfda701639ce18a51a0231f92a4
Sha1:   cd45df13046fe571dc2e925971779fe75c63a796
Sha256: 6e553b0a0920382c62c4c97f27746918abcfc42586c59d92b9ef22d17df9f51b

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /sites/all/themes/corporate/images/body.png HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/sites/all/themes/corporate/style.css?paco74
Cookie: has_js=1

                                         
                                         80.78.250.67
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:50 GMT
Content-Length: 180685
Connection: keep-alive
X-Content-Type-Options: nosniff
Last-Modified: Thu, 09 Mar 2017 18:24:37 GMT
Etag: "3166d03-2c1cd-54a505b878340"
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 24 Jun 2019 17:46:50 GMT


--- Additional Info ---
Magic:  PNG image, 1400 x 800, 8-bit/color RGBA, non-interlaced
Size:   180685
Md5:    5bf1dda2814ae3db023788853ad76521
Sha1:   ec63659557c63a527ec080e9b6077578c1a49c83
Sha256: 20a60e87d1647efd1edeadc26249f54d44578e4fd9b208ae6ea0fdb4de91aa5f
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: has_js=1

                                         
                                         80.78.250.67
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.3.28
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: no-cache, must-revalidate
X-Content-Type-Options: nosniff
Content-Language: ru
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   234
Md5:    e5ffd6f5337c6dbf0258fb085c1c8d57
Sha1:   d05dc80c8d7fdd61759d0e09d0f63e7f5413728f
Sha256: 0c90cf4b7736a9d432acb0fb4af4a8d6d3bd7815d88e144a0be49e0af0efa4bd
                                        
                                            GET /script/widget/6vaQL5GPnV HTTP/1.1 
Host: code.jivosite.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maidan1.ru/home/acc/account

                                         
                                         176.34.103.105
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Access-Control-Allow-Origin: *
Cache-Control: max-age=7200
Content-Encoding: gzip
Date: Mon, 10 Jun 2019 17:46:50 GMT
Etag: "5cf7c731-16bb"
Expires: Mon, 10 Jun 2019 19:46:50 GMT
Last-Modified: Wed, 05 Jun 2019 13:44:17 GMT
Server: nginx
Vary: Accept-Encoding
Content-Length: 5819
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5819
Md5:    2df02f2a99c4856899f38bfe1dced423
Sha1:   74ab111802a09f58272cb9ae104adcb1db18500b
Sha256: b88ad04f5b9a307f4ec5b9cb5dc5a36ffe4e202f9c4f811f86769e63072c6536
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: maidan1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: has_js=1

                                         
                                         80.78.250.67
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.14.0
Date: Mon, 10 Jun 2019 17:46:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.3.28
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: no-cache, must-revalidate
X-Content-Type-Options: nosniff
Content-Language: ru
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   234
Md5:    e5ffd6f5337c6dbf0258fb085c1c8d57
Sha1:   d05dc80c8d7fdd61759d0e09d0f63e7f5413728f
Sha256: 0c90cf4b7736a9d432acb0fb4af4a8d6d3bd7815d88e144a0be49e0af0efa4bd