sandance.ru/
81.177.140.121302 Moved Temporarily 154 B IP 81.177.140.121:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 05 Dec 2022 22:09:55 GMT
Content-Type: text/html
Content-Length: 154
Connection: keep-alive
Location: https://sandance.ru/
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10140
Expires: Tue, 06 Dec 2022 00:58:55 GMT
Date: Mon, 05 Dec 2022 22:09:55 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1074
Cache-Control: max-age=131958
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 22:09:55 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 10:49:13 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8034
Expires: Tue, 06 Dec 2022 00:23:49 GMT
Date: Mon, 05 Dec 2022 22:09:55 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Gf6HaM715qA9UHR3SDiYCRqe210EKRdv6MqB3oWqN+N8/B3TKgB7PRXJQayQnmlJq257iis18R0=
x-amz-request-id: MMA9B2N0EZ8XXGVE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 05 Dec 2022 21:46:50 GMT
age: 1385
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 05 Dec 2022 21:20:20 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2975
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 22:09:55 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 2ee7fa6eb49b238c7f87b37957626fbb
f9d6c9b441098bf848515ff3ba31abf76084f199
37645e9aacc9153298384b828f5c566d1f3ea65fdf565be25d4177299c47671c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "37645E9AACC9153298384B828F5C566D1F3EA65FDF565BE25D4177299C47671C"
Last-Modified: Sun, 04 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 06 Dec 2022 04:09:55 GMT
Date: Mon, 05 Dec 2022 22:09:55 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 05 Dec 2022 22:08:58 GMT
cache-control: public,max-age=3600
age: 58
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1062
Cache-Control: max-age=126878
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 22:09:56 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 09:24:34 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
sandance.ru/
81.177.140.121200 OK 12 kB IP 81.177.140.121:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381)
Hash 3f001da1f42e312708f7e2af55a24ffb
eeaf35d9982b721b168203dcc8307f1374bd4418
6ceb157f96ac0611147aecff9fdf94e47d0cf731be8c2db79ee39b484222838b
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: text/html; charset=UTF-8
content-length: 11606
server: Jino.ru/mod_pizza
x-ua-compatible: IE=edge
link: <https://sandance.ru/wp-json/>; rel="https://api.w.org/", <https://sandance.ru/wp-json/wp/v2/pages/24>; rel="alternate"; type="application/json", <https://sandance.ru/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-includes/css/classic-themes.min.css?ver=1
81.177.140.121200 OK 189 B URL HTTP/2 sandance.ru/wp-includes/css/classic-themes.min.css?ver=1
IP 81.177.140.121:0
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: text/css
content-length: 189
server: Jino.ru/mod_pizza
last-modified: Wed, 02 Nov 2022 10:28:38 GMT
etag: "792fca4-d9-5ec7a4dc6ae33"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
81.177.140.121200 OK 12 kB URL HTTP/2 sandance.ru/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 81.177.140.121:0
File type ASCII text, with very long lines (47826)
Hash 8fa87dd23394a22621248ec378d2af59
9305bc637a89b1700d7f56a19a80bd32b0feb2f7
c162f7de24fa2d4e93e0da254ef287ff72f4a3e03f42443265097968351388dc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: text/css
content-length: 12518
server: Jino.ru/mod_pizza
last-modified: Tue, 15 Nov 2022 22:14:32 GMT
etag: "792d3a3-172a9-5ed89ae342ca1"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0
81.177.140.121200 OK 2.4 kB URL HTTP/2 sandance.ru/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0
IP 81.177.140.121:0
File type ASCII text, with very long lines (10927), with no line terminators
Hash b7f880d3d6576839c39fb874393776ea
acfc8d24c079e731e8a50993f0439c2a1e33d61d
4b1b66388483c41bc47b85314f17e46bf1f0eb304ff87d13caccab2319613609
GET /wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: text/css
content-length: 2448
server: Jino.ru/mod_pizza
last-modified: Wed, 29 Jun 2022 07:09:44 GMT
etag: "792e6ad-2aaf-5e290d66cf7f9"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1
81.177.140.121200 OK 13 kB URL HTTP/2 sandance.ru/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1
IP 81.177.140.121:0
File type ASCII text, with very long lines (59158)
Hash 77adb61e8b73b03c938831ca2e7cd41d
3b0c1f53c1161696277d33d1cb6c311f25d2f961
b170b9f3758097a377a7068667a531e07a82612331808b5bb2b7ed863bf63e0e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: text/css
content-length: 12868
server: Jino.ru/mod_pizza
last-modified: Wed, 29 Jun 2022 07:09:44 GMT
etag: "792e67d-e7d0-5e290d66cc918"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
81.177.140.121200 OK 4.0 kB URL HTTP/2 sandance.ru/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 81.177.140.121:0
File type ASCII text, with very long lines (19233)
Hash 24dc15839234f4dbd06f677098762e1c
a285318fa3f4d9a1491f523f080cd32e1df12315
016fdb3d864bb8491d6450906f97c734548f76ca9ead4b13b92dc7112c5568c6
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: text/css
content-length: 3961
server: Jino.ru/mod_pizza
last-modified: Mon, 12 Sep 2022 08:47:45 GMT
etag: "792ecbf-4b4f-5e876f30fcbc8"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.3.3
81.177.140.121200 OK 27 kB URL HTTP/2 sandance.ru/wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.3.3
IP 81.177.140.121:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65531), with no line terminators
Hash bd62e734ae1b4ceec8324dc515d8877d
f1252908a1ccac6a2cc94841448389d80d38309e
8d669eeb0ef78b2db44493842597a460a89ac16e650aeebdcb0a6d7bb56b0c09
GET /wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.3.3 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: text/css
content-length: 26913
server: Jino.ru/mod_pizza
last-modified: Wed, 29 Jun 2022 07:09:44 GMT
etag: "792e6ec-2b3e4-5e290d66d22f2"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.4
81.177.140.121200 OK 14 kB URL HTTP/2 sandance.ru/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.4
IP 81.177.140.121:0
File type ASCII text, with very long lines (65497)
Hash c03c8367d61f9c6a128dd94cb1743bcd
5450f470ddd5f5a8e6afde6d5a777694ce3ed1aa
b640ed29f2b17045d16f605ad768f79d2eb346081025ab306dcdaa68449aad01
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.4 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: text/css
content-length: 14106
server: Jino.ru/mod_pizza
last-modified: Mon, 12 Sep 2022 08:47:45 GMT
etag: "792ed32-1a788-5e876f3103d12"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/uploads/elementor/css/post-19.css?ver=1662974630
81.177.140.121200 OK 356 B URL HTTP/2 sandance.ru/wp-content/uploads/elementor/css/post-19.css?ver=1662974630
IP 81.177.140.121:0
File type ASCII text, with very long lines (1118), with no line terminators
Hash 9579d58a2f9e4a2ea26a23dd1b05f30f
498c22d7f640fc1038b49192703aa391fd9e8a79
9d0a5d698e2c4a6508ee122a3f58482727753908a776affbe96a0901f9e6ae1b
GET /wp-content/uploads/elementor/css/post-19.css?ver=1662974630 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: text/css
content-length: 356
server: Jino.ru/mod_pizza
last-modified: Mon, 12 Sep 2022 09:23:50 GMT
etag: "7921123-45e-5e877741c0d47"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/uploads/elementor/css/global.css?ver=1663075362
81.177.140.121200 OK 834 B URL HTTP/2 sandance.ru/wp-content/uploads/elementor/css/global.css?ver=1663075362
IP 81.177.140.121:0
File type ASCII text, with very long lines (6697)
Hash 2293ed79272563f3da94cb6591e19a1f
e5168d2f62c954f85611089ea8e6be9241c37cd9
977634309dfe776c26f96766e342a63b53b66d187191b80131237362879fae05
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/global.css?ver=1663075362 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: text/css
content-length: 834
server: Jino.ru/mod_pizza
last-modified: Tue, 13 Sep 2022 13:22:42 GMT
etag: "792e54d-2503-5e88ee8304068"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 22:09:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sandance.ru/wp-content/uploads/elementor/css/post-24.css?ver=1666182302
81.177.140.121200 OK 2.0 kB URL HTTP/2 sandance.ru/wp-content/uploads/elementor/css/post-24.css?ver=1666182302
IP 81.177.140.121:0
File type Unicode text, UTF-8 text, with very long lines (15304), with no line terminators
Hash 89c07484c1455e976f794bf6855f757c
372e13cbc63a10748584f12c958e9538bb044930
0319b833f1da24353f68b318d367b189d285dc811346e9376ecaed79d44599c3
GET /wp-content/uploads/elementor/css/post-24.css?ver=1666182302 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: text/css
content-length: 1954
server: Jino.ru/mod_pizza
last-modified: Wed, 19 Oct 2022 12:25:02 GMT
etag: "792169b-3bd5-5eb624c470345"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
81.177.140.121200 OK 308 B URL HTTP/2 sandance.ru/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 81.177.140.121:0
File type ASCII text, with very long lines (489)
Hash 0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: text/css
content-length: 308
server: Jino.ru/mod_pizza
last-modified: Mon, 12 Sep 2022 08:47:45 GMT
etag: "792ec6f-2a3-5e876f30f5a7e"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.1.1
81.177.140.121200 OK 6.7 kB URL HTTP/2 sandance.ru/wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.1.1
IP 81.177.140.121:0
File type Unicode text, UTF-8 text, with very long lines (51619), with no line terminators
Hash e1ea11deddc23ad41910e459d2e1beb6
4feaf8acc42c5b2f72e14ffd7ac1d08ec86d7a72
46e34eda1e74b7a1a132fe4545f51e2bcc01008c89b7c24f1e88de555edcce55
GET /wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.1.1 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: text/css
content-length: 6661
server: Jino.ru/mod_pizza
last-modified: Mon, 12 Sep 2022 08:46:28 GMT
etag: "792e60a-c9a7-5e876ee835466"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
81.177.140.121200 OK 13 kB URL HTTP/2 sandance.ru/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 81.177.140.121:0
File type ASCII text, with very long lines (57726)
Hash 991d00cd7cb62d50a29295522d554f1f
e128a5238f141e9c4da1979716108d858340fe03
b8fcb61816168fc6a7ee01bb09fa4378398838dc6e4f49dc411872876355d113
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: text/css
content-length: 12582
server: Jino.ru/mod_pizza
last-modified: Mon, 12 Sep 2022 08:47:45 GMT
etag: "792ec7b-e238-5e876f30f5e66"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
81.177.140.121200 OK 4.2 kB URL HTTP/2 sandance.ru/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 81.177.140.121:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: application/javascript
content-length: 4169
server: Jino.ru/mod_pizza
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
etag: "792cf58-2bd8-5b45debe27b80"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-includes/js/imagesloaded.min.js?ver=4.1.4
81.177.140.121200 OK 1.8 kB URL HTTP/2 sandance.ru/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 81.177.140.121:0
File type ASCII text, with very long lines (5477)
Hash 951ae46ca55ec7b0e401e2074bdf8b54
64bbbdc28a351b26cab9c230e134ca8eb4d4f83e
fd5d4c623e9d68551114b2a1303584b6792e592e864d4416145904fe8b9edd91
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: application/javascript
content-length: 1834
server: Jino.ru/mod_pizza
last-modified: Sat, 13 Jun 2020 18:53:27 GMT
etag: "792d340-15fd-5a7fbb57c37c0"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.3
81.177.140.121200 OK 3.6 kB URL HTTP/2 sandance.ru/wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.3
IP 81.177.140.121:0
File type ASCII text, with very long lines (14087), with no line terminators
Hash d66cbccc7402f9163b685b7899b2ffaf
cb6d875c4658f1238e839028e87c31e1b659b248
d0529cedcda7635855d4983bb3232313aac11ec29887dbe9e015cf6e8a7effc1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.3 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: application/javascript
content-length: 3618
server: Jino.ru/mod_pizza
last-modified: Wed, 29 Jun 2022 07:09:44 GMT
etag: "792e700-3707-5e290d66d367a"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.3
81.177.140.121200 OK 4.3 kB URL HTTP/2 sandance.ru/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.3
IP 81.177.140.121:0
File type ASCII text, with very long lines (19789), with no line terminators
Hash 41ddefd7ed262527f45837e0bb6cd0bd
83ace71be639a7db7b4c4f53f2326bc1ce83c4f3
d3b07ec484a164d48ca70700b82c3f1920ae523e69e3e33a04a0375da6849d4b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.3 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: application/javascript
content-length: 4286
server: Jino.ru/mod_pizza
last-modified: Wed, 29 Jun 2022 07:09:44 GMT
etag: "792e703-4d4d-5e290d66d3a62"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.3.3
81.177.140.121200 OK 2.1 kB URL HTTP/2 sandance.ru/wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.3.3
IP 81.177.140.121:0
File type ASCII text, with very long lines (7540), with no line terminators
Hash 12437c18329117202a4a97d8b19a718e
53fc5436c658e8eb6c8c87497076c49298b0a61d
f546a77d6fb0775cbd3c66f8663eba383c8458ab0c7fb1e43330bc0ed93297d3
GET /wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.3.3 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: application/javascript
content-length: 2088
server: Jino.ru/mod_pizza
last-modified: Wed, 29 Jun 2022 07:09:44 GMT
etag: "792e706-1d74-5e290d66d3a62"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
81.177.140.121200 OK 31 kB URL HTTP/2 sandance.ru/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 81.177.140.121:0
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: application/javascript
content-length: 30995
server: Jino.ru/mod_pizza
last-modified: Wed, 02 Nov 2022 10:28:39 GMT
etag: "792cfb0-15e54-5ec7a4dd354b6"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.3
81.177.140.121200 OK 1.4 kB URL HTTP/2 sandance.ru/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.3
IP 81.177.140.121:0
File type ASCII text, with very long lines (4111), with no line terminators
Hash e3468b419f28420aecf0db338008f369
7f266366f6f93bd0e7a5cc63516dc49c5064def3
b56b7b02d36aceb464e52573f06a48ed06ebdab4526607967a24cc4614223684
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.3 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: application/javascript
content-length: 1441
server: Jino.ru/mod_pizza
last-modified: Wed, 29 Jun 2022 07:09:44 GMT
etag: "792e6ee-100f-5e290d66d2eaa"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.3
81.177.140.121200 OK 7.3 kB URL HTTP/2 sandance.ru/wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.3
IP 81.177.140.121:0
File type ASCII text, with very long lines (20087)
Hash efa6db60af1529649bd3b95c4220e9ba
4b6b8cd07ee784e67c7702c147e0c80e0bb3bd90
5723d10c2697c434b25b904f2fcec179ad231ccaebc4c77daa7732c7949a1e99
GET /wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.3 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: application/javascript
content-length: 7346
server: Jino.ru/mod_pizza
last-modified: Wed, 29 Jun 2022 07:09:44 GMT
etag: "792e6f5-4ef8-5e290d66d3292"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.3
81.177.140.121200 OK 14 kB URL HTTP/2 sandance.ru/wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.3
IP 81.177.140.121:0
File type ASCII text, with very long lines (21914)
Hash 367fad458df4b9cf792a22129ae5b5c0
99d0237f3ba8ce2aa4c2e7f73d9d9ada51858c47
97d7cd13b1e444cce8c03dbac7884bdd5a56337d03adc872be3cae26d5004d02
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.3 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: application/javascript
content-length: 14101
server: Jino.ru/mod_pizza
last-modified: Wed, 29 Jun 2022 07:09:44 GMT
etag: "792e6f7-e0a9-5e290d66d3292"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.3
81.177.140.121200 OK 882 B URL HTTP/2 sandance.ru/wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.3
IP 81.177.140.121:0
File type ASCII text, with very long lines (2002), with no line terminators
Hash edfd5b09760aef31b42e6b0e0b88dfc9
1a9070889902b6a52e4b29e5f0482cc3ce30c513
f69d3a3659cd3cf17676e1acc939d592a391224f38c41f083d04f6f10518a32f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.3 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: application/javascript
content-length: 882
server: Jino.ru/mod_pizza
last-modified: Wed, 29 Jun 2022 07:09:44 GMT
etag: "792e6f0-7d2-5e290d66d2eaa"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/uploads/2022/09/%D0%A1%D1%8D%D0%BD%D0%B4%D1%8D%D0%BD%D1%81-%D0%BB%D0%BE%D0%B3%D0%BE-%D0%B1%D0%B5%D0%BB%D1%8B%D0%B9-1536x768.png
81.177.140.121200 OK 168 kB URL HTTP/2 sandance.ru/wp-content/uploads/2022/09/%D0%A1%D1%8D%D0%BD%D0%B4%D1%8D%D0%BD%D1%81-%D0%BB%D0%BE%D0%B3%D0%BE-%D0%B1%D0%B5%D0%BB%D1%8B%D0%B9-1536x768.png
IP 81.177.140.121:0
File type PNG image data, 1536 x 768, 8-bit/color RGBA, non-interlaced\012- data
Size 168 kB (168356 bytes)
Hash ada301d03845424c90ec4471b5cd73e1
8a5b5713e3f0e4c32c368325df52312a1da6dc8a
b825be3a999b9b670a4e22ca2a7ba6a5d2a513fce18aeff7d117e4a6751fd83e
GET /wp-content/uploads/2022/09/%D0%A1%D1%8D%D0%BD%D0%B4%D1%8D%D0%BD%D1%81-%D0%BB%D0%BE%D0%B3%D0%BE-%D0%B1%D0%B5%D0%BB%D1%8B%D0%B9-1536x768.png HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: image/png
content-length: 168356
server: Jino.ru/mod_pizza
last-modified: Tue, 13 Sep 2022 13:26:26 GMT
etag: "792e553-291a4-5e88ef58d16ea"
accept-ranges: bytes
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.148.242.254101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.242.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Myfr4xpZYUCusL78NJ/IGA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: VdK/9VlPMIhGk6Pxqn34yw7AruE=
sandance.ru/wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.3
81.177.140.121200 OK 2.3 kB URL HTTP/2 sandance.ru/wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.3
IP 81.177.140.121:0
File type ASCII text, with very long lines (8989), with no line terminators
Hash 525cd91e665e6d4faad63aabb4924554
aeace4ca1a643bfdcd5e6b56b3db8db86f26b5f1
ce2368b0842ace4636c04dbbd496e9e64f9223108decc733a48301ede2203e49
GET /wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.3 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: application/javascript
content-length: 2322
server: Jino.ru/mod_pizza
last-modified: Wed, 29 Jun 2022 07:09:44 GMT
etag: "792e6ef-231d-5e290d66d2eaa"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.3
81.177.140.121200 OK 1.5 kB URL HTTP/2 sandance.ru/wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.3
IP 81.177.140.121:0
File type ASCII text, with very long lines (5181), with no line terminators
Hash 89af611b0b4a9a0eae054c97475e6ddb
d2fd1b4d2ae3e7114bc38ee7bb3374a82662bed6
216e928e36481d51656d3f4076c822a20f42278633551eeba7dd8c6007366667
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.3 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: application/javascript
content-length: 1528
server: Jino.ru/mod_pizza
last-modified: Wed, 29 Jun 2022 07:09:44 GMT
etag: "792e702-143d-5e290d66d367a"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.3
81.177.140.121200 OK 3.2 kB URL HTTP/2 sandance.ru/wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.3
IP 81.177.140.121:0
File type ASCII text, with very long lines (12402), with no line terminators
Hash 34bc3f8cba165371b09aeab96c5f2390
bd8393975e859efecd5faf2ba09c472b87e80463
88d95fb296c8088a5750cc76ef92be5e59c2084d5a64e8aa691ca1196c4a6a50
GET /wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.3 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: application/javascript
content-length: 3237
server: Jino.ru/mod_pizza
last-modified: Wed, 29 Jun 2022 07:09:44 GMT
etag: "792e6f2-3072-5e290d66d2eaa"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.4
81.177.140.121200 OK 2.2 kB URL HTTP/2 sandance.ru/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.4
IP 81.177.140.121:0
File type ASCII text, with very long lines (4918)
Hash abb2562ceee4773df98cc901e4c61cde
efddcd92a69b097df49c243dc0963dc281600392
9066b7f939e1b991e409f25d3308b523da39efcb70bef563a829b9cccd837c0a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.4 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: application/javascript
content-length: 2194
server: Jino.ru/mod_pizza
last-modified: Mon, 12 Sep 2022 08:47:45 GMT
etag: "792edac-135d-5e876f310aa74"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
81.177.140.121200 OK 3.0 kB URL HTTP/2 sandance.ru/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 81.177.140.121:0
File type ASCII text, with very long lines (12198), with no line terminators
Hash cfea3c51880820f2962a7773fbc864f9
45aa7ddc9b0c4201097d0df36791ab346470b734
12296ac9ef200103f8eea198a2bcd92692119dacece39538499758a0349035fb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: application/javascript
content-length: 2993
server: Jino.ru/mod_pizza
last-modified: Mon, 12 Sep 2022 08:47:45 GMT
etag: "792ec9a-2fa6-5e876f30f8d47"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
81.177.140.121200 OK 7.1 kB URL HTTP/2 sandance.ru/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 81.177.140.121:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash fc922a895f5f92269c928556b67564f6
8759e1f16a826dd6dd73f4161a65a79a049c4d6f
d7445c88608e9da487d81ef5167866c42ff1099b5f48efda4b5f5ac41aa7d9b8
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: application/javascript
content-length: 7097
server: Jino.ru/mod_pizza
last-modified: Wed, 02 Nov 2022 10:28:39 GMT
etag: "792cf72-53c0-5ec7a4dd3124d"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.4
81.177.140.121200 OK 11 kB URL HTTP/2 sandance.ru/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.4
IP 81.177.140.121:0
File type Unicode text, UTF-8 text, with very long lines (32889)
Hash f8807b6b8e451a2df8a5d77c069061bb
c9ba64c11c46559a785e907ae2d613e781079d02
33413b25a8c9939bd3f3ffeaf2c06f8764e9c1f1deeab67610bb265227239047
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.4 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: application/javascript
content-length: 10742
server: Jino.ru/mod_pizza
last-modified: Mon, 12 Sep 2022 08:47:45 GMT
etag: "792edaf-80a1-5e876f310ae5c"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
81.177.140.121200 OK 5.0 kB URL HTTP/2 sandance.ru/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 81.177.140.121:0
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: application/javascript
content-length: 5009
server: Jino.ru/mod_pizza
last-modified: Tue, 12 Apr 2022 05:56:23 GMT
etag: "792d338-48b9-5dc6eb878efc0"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.4
81.177.140.121200 OK 12 kB URL HTTP/2 sandance.ru/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.4
IP 81.177.140.121:0
File type ASCII text, with very long lines (40474)
Hash 689df1c289dad25396bba432c3144611
780f05effa97e8f5e10eee562074bc52348c53b9
7fd31114fcbed972e169ec6c46af4dab69236c8d397cf0b49259bbe24de8553f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.4 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:56 GMT
content-type: application/javascript
content-length: 12045
server: Jino.ru/mod_pizza
last-modified: Mon, 12 Sep 2022 08:47:45 GMT
etag: "792ed90-9e41-5e876f310a2a4"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 22:09:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 22:09:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/spacemono/v12/i7dPIFZifjKcF5UAWdDRYEF8RQ.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/spacemono/v12/i7dPIFZifjKcF5UAWdDRYEF8RQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15788, version 1.0\012- data
Hash 756b5974f5617abf694d2bfc6b15a338
5d05e3417fad965a22ea8f5af58466189b98205e
d459ece356a7aed8b848fae17def65862f04138ddebcc748631f5d323b9c8f1c
GET /s/spacemono/v12/i7dPIFZifjKcF5UAWdDRYEF8RQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sandance.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15788
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 03:57:40 GMT
expires: Thu, 30 Nov 2023 03:57:40 GMT
cache-control: public, max-age=31536000
age: 497537
last-modified: Tue, 30 Aug 2022 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 22:09:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/ibmplexmono/v12/-F6qfjptAgt5VM-kVkqdyU8n3pQPwlRFgtIU.woff2
216.58.207.227200 OK 8.4 kB URL HTTP/2 fonts.gstatic.com/s/ibmplexmono/v12/-F6qfjptAgt5VM-kVkqdyU8n3pQPwlRFgtIU.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 8444, version 1.0\012- data
Hash 5ebe29e709b7fcaf1ccd3d52e41d75d6
c86cabc50dd96e3abbcf7aeb1a80f58c491e456b
982af536c8bbd12eb724d48d87893d70bb0ebc5502b6f0d4151487b422960952
GET /s/ibmplexmono/v12/-F6qfjptAgt5VM-kVkqdyU8n3pQPwlRFgtIU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sandance.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8444
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:23:50 GMT
expires: Wed, 29 Nov 2023 14:23:50 GMT
cache-control: public, max-age=31536000
age: 546367
last-modified: Tue, 26 Apr 2022 14:54:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sandance.ru/wp-content/uploads/2022/09/%D0%91%D0%B0%D0%BD%D0%BD%D0%B5%D1%80-%D0%BF%D0%BB%D1%8F%D0%B6-%D0%BC%D0%B0%D0%BB-scaled.jpg
81.177.140.121200 OK 904 kB URL HTTP/2 sandance.ru/wp-content/uploads/2022/09/%D0%91%D0%B0%D0%BD%D0%BD%D0%B5%D1%80-%D0%BF%D0%BB%D1%8F%D0%B6-%D0%BC%D0%B0%D0%BB-scaled.jpg
IP 81.177.140.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1708, components 3\012- data
Size 904 kB (904198 bytes)
Hash 53e601c8dcc8a8eb1f70a4fd75d71661
ac776d5e75c92c7768a2a0a28640a21346ebab87
49cfd8b3b814dc5178f590756742470790d211efbe197acf7cf9ad3ef86d3938
GET /wp-content/uploads/2022/09/%D0%91%D0%B0%D0%BD%D0%BD%D0%B5%D1%80-%D0%BF%D0%BB%D1%8F%D0%B6-%D0%BC%D0%B0%D0%BB-scaled.jpg HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/wp-content/uploads/elementor/css/post-24.css?ver=1666182302
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:57 GMT
content-type: image/jpeg
content-length: 904198
server: Jino.ru/mod_pizza
last-modified: Tue, 13 Sep 2022 12:09:05 GMT
etag: "792e52c-dcc06-5e88de0ef81ee"
accept-ranges: bytes
X-Firefox-Spdy: h2
sandance.ru/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
81.177.140.121200 OK 77 kB URL HTTP/2 sandance.ru/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 81.177.140.121:0
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://sandance.ru/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:57 GMT
content-type: text/html; charset=utf-8
content-length: 76764
server: Jino.ru/mod_pizza
last-modified: Mon, 12 Sep 2022 08:47:45 GMT
etag: "792ec8d-12bdc-5e876f30f79bf"
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ibmplexmono/v12/-F6qfjptAgt5VM-kVkqdyU8n3pQPwlBFgg.woff2
216.58.207.227200 OK 14 kB URL HTTP/2 fonts.gstatic.com/s/ibmplexmono/v12/-F6qfjptAgt5VM-kVkqdyU8n3pQPwlBFgg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 13888, version 1.0\012- data
Hash 02dbd9e1c7fd1c045db2fd028b7c915a
4a0f8d98089634fe1ed36934241bf2d4b77887f6
aef44cafab47388d2e62f559e0b5f6a37078cf68055dacf3ada3080080994c31
GET /s/ibmplexmono/v12/-F6qfjptAgt5VM-kVkqdyU8n3pQPwlBFgg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sandance.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13888
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 08:02:31 GMT
expires: Fri, 01 Dec 2023 08:02:31 GMT
cache-control: public, max-age=31536000
age: 396446
last-modified: Tue, 26 Apr 2022 14:56:15 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sandance.ru/wp-content/uploads/2022/09/%D1%82%D0%B0%D0%BD%D0%B3%D0%BE-%D0%BD%D0%B0-%D1%81%D0%B0%D0%B9%D1%82-%D0%BC%D0%B0%D0%BB-681x1024.jpg
81.177.140.121200 OK 47 kB URL HTTP/2 sandance.ru/wp-content/uploads/2022/09/%D1%82%D0%B0%D0%BD%D0%B3%D0%BE-%D0%BD%D0%B0-%D1%81%D0%B0%D0%B9%D1%82-%D0%BC%D0%B0%D0%BB-681x1024.jpg
IP 81.177.140.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 681x1024, components 3\012- data
Hash b7c843223de355283101b0ec1dcb1cd0
66af77cd89ad5b81171a921dde96427891d1fb94
503404cde421688e4420b3922488e75105c4f63a95266f9a0395a833c225dd50
GET /wp-content/uploads/2022/09/%D1%82%D0%B0%D0%BD%D0%B3%D0%BE-%D0%BD%D0%B0-%D1%81%D0%B0%D0%B9%D1%82-%D0%BC%D0%B0%D0%BB-681x1024.jpg HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:57 GMT
content-type: image/jpeg
content-length: 46825
server: Jino.ru/mod_pizza
last-modified: Mon, 12 Sep 2022 12:21:31 GMT
etag: "792e269-b6e9-5e879ef96cf6d"
accept-ranges: bytes
X-Firefox-Spdy: h2
sandance.ru/wp-content/uploads/2022/09/%D0%9E%D0%BB%D1%8F-%D0%A5%D1%83%D0%BB%D0%B0-%D0%BC%D0%B0%D0%BB-576x1024.jpg
81.177.140.121200 OK 211 kB URL HTTP/2 sandance.ru/wp-content/uploads/2022/09/%D0%9E%D0%BB%D1%8F-%D0%A5%D1%83%D0%BB%D0%B0-%D0%BC%D0%B0%D0%BB-576x1024.jpg
IP 81.177.140.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 576x1024, components 3\012- data
Size 211 kB (210795 bytes)
Hash 491eb51d102c32de44f0286eee7772fa
917fe80f59c34920f5541739d10efbb720c974c1
019e02a717ea872459f2449c59fefe9afb38f99676abb5fd1779a7152e55b518
GET /wp-content/uploads/2022/09/%D0%9E%D0%BB%D1%8F-%D0%A5%D1%83%D0%BB%D0%B0-%D0%BC%D0%B0%D0%BB-576x1024.jpg HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:57 GMT
content-type: image/jpeg
content-length: 210795
server: Jino.ru/mod_pizza
last-modified: Mon, 12 Sep 2022 12:33:15 GMT
etag: "792e39b-3376b-5e87a198e77f7"
accept-ranges: bytes
X-Firefox-Spdy: h2
sandance.ru/wp-content/uploads/2022/09/%D0%B2%D0%BE%D0%B2%D0%B0-5-769x1024.jpg
81.177.140.121200 OK 100 kB URL HTTP/2 sandance.ru/wp-content/uploads/2022/09/%D0%B2%D0%BE%D0%B2%D0%B0-5-769x1024.jpg
IP 81.177.140.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 769x1024, components 3\012- data
Size 100 kB (100149 bytes)
Hash 07763aadf8c04cefa70339b028015136
a4ad1ac2598fde0244a5f188d2823b7bde559b8a
97b43bca57a7dc14110d87de38896b368a066a0dd49d98cac7ddb1e6a3f733cb
GET /wp-content/uploads/2022/09/%D0%B2%D0%BE%D0%B2%D0%B0-5-769x1024.jpg HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:57 GMT
content-type: image/jpeg
content-length: 100149
server: Jino.ru/mod_pizza
last-modified: Mon, 12 Sep 2022 12:32:57 GMT
etag: "792e272-18735-5e87a187ac0ca"
accept-ranges: bytes
X-Firefox-Spdy: h2
sandance.ru/wp-content/uploads/2022/09/Fusion5-min-734x1024.jpg
81.177.140.121200 OK 153 kB URL HTTP/2 sandance.ru/wp-content/uploads/2022/09/Fusion5-min-734x1024.jpg
IP 81.177.140.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 734x1024, components 3\012- data
Size 153 kB (153024 bytes)
Hash 3642b527c601abdac30ddb4d711f0b72
8b6ab5e46aeba01f331eb7738bbc7627b9009ded
296b54d4c3e57b3ce203f2adf86ad5716dc78192f495a1907b775fe4ab4492cd
GET /wp-content/uploads/2022/09/Fusion5-min-734x1024.jpg HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:57 GMT
content-type: image/jpeg
content-length: 153024
server: Jino.ru/mod_pizza
last-modified: Mon, 12 Sep 2022 12:37:02 GMT
etag: "792e3a1-255c0-5e87a2710bd3c"
accept-ranges: bytes
X-Firefox-Spdy: h2
sandance.ru/wp-content/uploads/2022/09/%D0%9B%D0%BE%D0%B3%D0%BE-%D1%82%D0%B0%D0%BD%D0%B3%D0%BE-%D0%B1%D0%B5%D0%BB%D1%8B%D0%B9-300x201.png
81.177.140.121200 OK 17 kB URL HTTP/2 sandance.ru/wp-content/uploads/2022/09/%D0%9B%D0%BE%D0%B3%D0%BE-%D1%82%D0%B0%D0%BD%D0%B3%D0%BE-%D0%B1%D0%B5%D0%BB%D1%8B%D0%B9-300x201.png
IP 81.177.140.121:0
File type PNG image data, 300 x 201, 8-bit/color RGBA, non-interlaced\012- data
Hash 61bc8478d1601d31ce6ebd0a26cce42c
44334ebe1ef928976cbecf48b3b24444d5541587
32ac8d592fe109370600315afae0e74bc0ef9f45030ba62010473578b0da68b9
GET /wp-content/uploads/2022/09/%D0%9B%D0%BE%D0%B3%D0%BE-%D1%82%D0%B0%D0%BD%D0%B3%D0%BE-%D0%B1%D0%B5%D0%BB%D1%8B%D0%B9-300x201.png HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:57 GMT
content-type: image/png
content-length: 17315
server: Jino.ru/mod_pizza
last-modified: Tue, 13 Sep 2022 13:04:52 GMT
etag: "792e545-43a3-5e88ea871a024"
accept-ranges: bytes
X-Firefox-Spdy: h2
sandance.ru/wp-content/uploads/2022/10/%D0%92%D0%B2%D0%BE%D0%B4%D0%BD%D0%BE%D0%B5-%D1%81%D0%B0%D0%BB%D1%8C%D1%81%D0%B0-%D0%BE%D0%BA%D1%82-2022_%D0%90%D1%84%D0%B8%D1%88%D0%B0-1024x1024.jpg
81.177.140.121200 OK 108 kB URL HTTP/2 sandance.ru/wp-content/uploads/2022/10/%D0%92%D0%B2%D0%BE%D0%B4%D0%BD%D0%BE%D0%B5-%D1%81%D0%B0%D0%BB%D1%8C%D1%81%D0%B0-%D0%BE%D0%BA%D1%82-2022_%D0%90%D1%84%D0%B8%D1%88%D0%B0-1024x1024.jpg
IP 81.177.140.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1024x1024, components 3\012- data
Size 108 kB (108272 bytes)
Hash 9897d6f97f8281d7e54faede73c09c34
4a6d88db5e0b3db09a32abffa306dadf6973b489
53c801a958fb993ea7484eea4be7b6d49ac53eea3cd214401748d19ce070b8eb
GET /wp-content/uploads/2022/10/%D0%92%D0%B2%D0%BE%D0%B4%D0%BD%D0%BE%D0%B5-%D1%81%D0%B0%D0%BB%D1%8C%D1%81%D0%B0-%D0%BE%D0%BA%D1%82-2022_%D0%90%D1%84%D0%B8%D1%88%D0%B0-1024x1024.jpg HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:57 GMT
content-type: image/jpeg
content-length: 108272
server: Jino.ru/mod_pizza
last-modified: Wed, 19 Oct 2022 12:21:38 GMT
etag: "792168f-1a6f0-5eb624022d5b4"
accept-ranges: bytes
X-Firefox-Spdy: h2
sandance.ru/wp-content/uploads/2022/10/%D0%B0%D1%84%D0%B8%D1%88%D0%B0-%D0%BC%D0%BA-%D1%85%D1%83%D0%BB%D0%B0-%D0%B0%D0%BA%D0%B2%D0%B0%D1%82%D0%BE%D1%80%D0%B8%D1%8F-16.10.22.jpg
81.177.140.121200 OK 497 kB URL HTTP/2 sandance.ru/wp-content/uploads/2022/10/%D0%B0%D1%84%D0%B8%D1%88%D0%B0-%D0%BC%D0%BA-%D1%85%D1%83%D0%BB%D0%B0-%D0%B0%D0%BA%D0%B2%D0%B0%D1%82%D0%BE%D1%80%D0%B8%D1%8F-16.10.22.jpg
IP 81.177.140.121:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.0 (Windows), datetime=2022:10:13 13:19:18], progressive, precision 8, 960x960, components 3\012- data
Size 497 kB (497392 bytes)
Hash 7a89609be64561f05795845a4b310a8b
8cf7087664e0a332e8c45631b446913deb5d889e
9fb2982c51aec09450940e3ebae0c7d1f1c3d563e4e36021c579d788f8cad11e
GET /wp-content/uploads/2022/10/%D0%B0%D1%84%D0%B8%D1%88%D0%B0-%D0%BC%D0%BA-%D1%85%D1%83%D0%BB%D0%B0-%D0%B0%D0%BA%D0%B2%D0%B0%D1%82%D0%BE%D1%80%D0%B8%D1%8F-16.10.22.jpg HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:57 GMT
content-type: image/jpeg
content-length: 497392
server: Jino.ru/mod_pizza
last-modified: Wed, 19 Oct 2022 12:24:01 GMT
etag: "790165f-796f0-5eb62489bd407"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 22:09:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sandance.ru/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
81.177.140.121200 OK 665 B URL HTTP/2 sandance.ru/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 81.177.140.121:0
File type ASCII text, with very long lines (1320)
Hash 620ef9f8a0267c826ee65857badf7c72
20b9d0ccf5fe311d5d3f58266724c36397d94955
c7f48a3ecb5727ece293bac9fbbefd23bf68e17430fddf14414182814ced1a56
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:57 GMT
content-type: application/javascript
content-length: 665
server: Jino.ru/mod_pizza
last-modified: Mon, 12 Sep 2022 08:47:45 GMT
etag: "792eda6-54f-5e876f310aa74"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/favicon.ico
81.177.140.121302 Found 20 B IP 81.177.140.121:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /favicon.ico HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
date: Mon, 05 Dec 2022 22:09:57 GMT
content-type: text/html; charset=UTF-8
content-length: 20
location: https://sandance.ru/wp-includes/images/w-logo-blue-white-bg.png
server: Jino.ru/mod_pizza
x-ua-compatible: IE=edge
link: <https://sandance.ru/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sandance.ru/wp-includes/images/w-logo-blue-white-bg.png
81.177.140.121200 OK 4.1 kB URL HTTP/2 sandance.ru/wp-includes/images/w-logo-blue-white-bg.png
IP 81.177.140.121:0
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: sandance.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sandance.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 22:09:57 GMT
content-type: image/png
content-length: 4119
server: Jino.ru/mod_pizza
last-modified: Tue, 16 Nov 2021 00:04:01 GMT
etag: "792d4fe-1017-5d0dca9a37e40"
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14704
Expires: Tue, 06 Dec 2022 02:15:01 GMT
Date: Mon, 05 Dec 2022 22:09:57 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14704
Expires: Tue, 06 Dec 2022 02:15:01 GMT
Date: Mon, 05 Dec 2022 22:09:57 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14704
Expires: Tue, 06 Dec 2022 02:15:01 GMT
Date: Mon, 05 Dec 2022 22:09:57 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14704
Expires: Tue, 06 Dec 2022 02:15:01 GMT
Date: Mon, 05 Dec 2022 22:09:57 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14704
Expires: Tue, 06 Dec 2022 02:15:01 GMT
Date: Mon, 05 Dec 2022 22:09:57 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5220d724-28cf-4a09-a474-466d05000e9f.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5220d724-28cf-4a09-a474-466d05000e9f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 608271b2522dc7e726dd2ad4af7ffe02
8182a51b3060e7b6ffaf840c1c2ef50ab06abd10
dde60941a5eec5a314d4c7c7303188769ae810d9f84ba9ae9f088d0d107f59a6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5220d724-28cf-4a09-a474-466d05000e9f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8424
x-amzn-requestid: 52481098-a257-4529-b85a-094d2bf39871
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSuYEdKIAMFc9g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64c2-2b1f26e951823d4f1cd2507d;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:10 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cq7s5taxMAwOO4vq776dk4842DfboBgSx5FnNfK2Ilcn8evZYaTfGQ==
via: 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:41:56 GMT
etag: "8182a51b3060e7b6ffaf840c1c2ef50ab06abd10"
content-type: image/jpeg
age: 1681
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcfc1e29-0017-4346-aacf-66d3875076ce.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcfc1e29-0017-4346-aacf-66d3875076ce.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 18bbcbf84b00d3bc602830478ff1bd7f
1f25392db4cf3693259202b24e898f21093b8bf9
cb2b44e1f74a9bb43fab48536f6146e273c728b34e4889ff3f18a411d14d2282
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcfc1e29-0017-4346-aacf-66d3875076ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5790
x-amzn-requestid: 2e409a5f-ce04-4b9b-b3a2-74e5bbd256d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSvoEoUoAMFsxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64ca-72e1bb13187b18aa26c8566f;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jr6GWYa2SFKmDWscGBd9-g7b0RKr6j4GrgNisS0-DYiojh7Kv1oMJQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:47:06 GMT
etag: "1f25392db4cf3693259202b24e898f21093b8bf9"
content-type: image/jpeg
age: 1371
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffbcb6f9-483c-4254-9451-927fa2fc2294.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffbcb6f9-483c-4254-9451-927fa2fc2294.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9838b65dde746487c806ee9739f8b222
1c95a1e47e903cc6775df2c5ed3f2f58cca42dc8
cf3ddc240b33d0f588d5acb30593b6846874a192bff9f5b69455877d7f63be53
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffbcb6f9-483c-4254-9451-927fa2fc2294.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3968
x-amzn-requestid: 55111bc4-d002-44a0-855a-533251b144fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSveGo_IAMFQvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64c9-28e0a83d7f9f1ffc7544bb3d;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _Hf2XblY73dHIIWTqWgeDzJJalBo6ooCAit1eQ8G8n4385ORBBDakA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:47:06 GMT
etag: "1c95a1e47e903cc6775df2c5ed3f2f58cca42dc8"
content-type: image/jpeg
age: 1371
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f60a6490f38a772dcd50a1132e98e1b
ff254a1df087d2c157d88a6ef04e395dc49efe5e
653e40becd103cd76cc2f194a87e933e8c548d346f87520fefca3b16430fc4ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8469
x-amzn-requestid: c17eff92-da62-4f0f-9e75-2741012ec43a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_sqFSjoAMFQ6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-61d61d2f0bb01ecb21b809ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TKSlCefkyQ7VDufJJOh1D7zhioft93jfOsoXxTD4ncAK5ktxlPvIoA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:52:07 GMT
age: 1070
etag: "ff254a1df087d2c157d88a6ef04e395dc49efe5e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f48f157-f5b1-44b8-91c0-da7927555031.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f48f157-f5b1-44b8-91c0-da7927555031.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 17c7b7e3a4e6f3ad9ccf7f42c400749c
76432db96e8280e24da56670fba8f8f80a95ab31
f67d401ebc225c2a9dac5b4f98dc969e22f927455c2537df353ac86f046cc4c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f48f157-f5b1-44b8-91c0-da7927555031.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4905
x-amzn-requestid: c1a43d09-3653-422d-99a2-fe6469bc4bcc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSzsG7BoAMF42Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e4-27f51f1e5f786838157d1ee5;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VkYlpfFF-t9c_vWc14oqmL9Z6o6lA1_TqgXk4VUtZmHTkZwuMT5C6w==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:47:06 GMT
age: 1371
etag: "76432db96e8280e24da56670fba8f8f80a95ab31"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01b6b798-4c76-47d4-ae22-c8967b0f2c5c.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01b6b798-4c76-47d4-ae22-c8967b0f2c5c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9fda84db003d0cfc70d73dcb6a3763dd
5c54b4ca3db1c975b3ad7f780f0ebdc867fc2ef4
f00aa6b88dd85164d8f6ee685937a3ca8039b98b442a2e6aede1c4c421b4fc4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01b6b798-4c76-47d4-ae22-c8967b0f2c5c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8997
x-amzn-requestid: 54d7ed8c-119c-4583-929c-fd053524814c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csT_8F78IAMFY6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e66cc-3d9816725e7e0b1b3404bc4a;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:46:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ScASzeq_stezoHeSOmqluKJimg3R6YD6yd6guTD2d5Mjl8F_vQP0rg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:47:06 GMT
age: 1371
etag: "5c54b4ca3db1c975b3ad7f780f0ebdc867fc2ef4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CSpace+Mono%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CIBM+Plex+Mono%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&subset=cyrillic&ver=6.1.1
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CSpace+Mono%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CIBM+Plex+Mono%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&subset=cyrillic&ver=6.1.1
IP 142.250.74.74:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CSpace+Mono%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CIBM+Plex+Mono%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&subset=cyrillic&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sandance.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 05 Dec 2022 22:09:56 GMT
date: Mon, 05 Dec 2022 22:09:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2