{"report_id":"2c786198-1442-4cf4-9783-f13ed80db0c5","version":0,"status":"done","tags":[],"date":"2026-06-18T13:33:07Z","url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":0,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"final":{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"title":"grandchem.online","dom":{"size":11638,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (5749)","md5":"69818145a6e5f140ba596db9aed2b75d","sha1":"78b40aba5ebda43535f8fb8f748e98250886f8f6","sha256":"3a83dd77c4a0db211bf4a6f106498f5a86169a68d1a35462cdaaab7d57fe240f","sha512":"73b0851d3a0d08cad50704023e66a3724ac1651c89e2bcccfa1a3b6da8fb007e54dab4a8f5e5596cabd65dec02cd8ee70e8b1639ef3b25c2ed592f5ad2755982","ssdeep":"192:HgDWNqju86VeVKV1f/N7zEa1dR5UNgbFtuATD+/ku1erCyL5TV9qq:wWUybwsd7IAz+ODlLr/ZF","tlshash":"a03286610812f07f0a437af9e26ebf4c74de40adda869d00f9ec05543bd1ee1da65639","dom_hash":"domhash4f72511d776b914c704ec8c7f638902d","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":0,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-23T13:33:07Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"grandchem.online","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"grandchem.online","ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"domain_registered":"2025-02-27","domain_rank":0,"first_seen":"2025-07-31T01:18:06.683657Z","last_seen":"2025-08-19T11:37:09.380195Z","alert_count":7,"request_count":7,"received_data":313855,"sent_data":2747,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"www.reg.ru","ip":{"addr":"194.67.72.31","port":443,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"domain_registered":"2005-10-31","domain_rank":279116,"first_seen":"2012-05-30T11:53:54Z","last_seen":"2026-06-17T09:55:17.561925Z","alert_count":0,"request_count":1,"received_data":712,"sent_data":532,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"files.reg.ru","ip":{"addr":"194.67.72.33","port":443,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"domain_registered":"2005-10-31","domain_rank":5588631,"first_seen":"2022-11-17T08:46:40Z","last_seen":"2026-06-12T16:19:45.681758Z","alert_count":0,"request_count":2,"received_data":206449,"sent_data":1037,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"yastatic.net","ip":{"addr":"37.9.64.225","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"domain_registered":"2013-11-28","domain_rank":3963,"first_seen":"2014-03-11T07:15:28Z","last_seen":"2026-06-15T12:31:39.167187Z","alert_count":0,"request_count":9,"received_data":1489480,"sent_data":4479,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"yandex.ru","ip":{"addr":"77.88.55.88","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"domain_registered":"1997-09-23","domain_rank":248,"first_seen":"2012-05-21T21:15:36Z","last_seen":"2026-06-17T21:46:26.297365Z","alert_count":0,"request_count":1,"received_data":3146,"sent_data":5608,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"9bae51b8e92fcd4a4ae6d8007b20907b","sha1":"2d349dcc80d19591a083ac2989fa2b941e6e7001","sha256":"d8a0560358c51b493362768b5e550e2a0f7e5403e9a5e58f37e0eb28ab75c594","sha512":"965511c40a366a367bcd31fcde5ff53ba352eea23c004732a706f9e90fee8b03473b7253a441febd3f64bdab4c0b883d34bfa7475fa1f1c21b048beb6dea852a","ssdeep":"","tlshash":"39a02208a020220888a230b2c2b3f0280aab000c0c088a0203020008080200b8088afe","size":60,"data":"","first_seen":"2023-03-07T01:15:28Z","last_seen":"2026-06-22T00:11:08.500094Z","times_seen":2759,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"e73aecda17aef85b6300a100806ae6e9","sha1":"d15cc4385370d4aa893cfe76c3a0e0297f7e5f1d","sha256":"fde5d3a6db7a00495d7b38ab493e7aacaf2392a703794b1caf37563b50ef6afd","sha512":"31adb611ef56722e02428f23de9b2813a67748ea0b0f0e3d711203469908e8f1bbbcc9d58960dd654c6a6f5f70507c13a7575ac2b9d5a8de00afd1b93fbffc53","ssdeep":"","tlshash":"369000a82202808222a080200f0b23802230202880a280208820200cb0c08038a200fa","size":41,"data":"","first_seen":"2023-03-07T01:02:59Z","last_seen":"2026-06-23T23:08:25.744714Z","times_seen":14367,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"15c4089d1e32973c5727325e1076c386","sha1":"097c486112fd84a3b3975c91c72891a9e5246950","sha256":"e7ae699b7fef5d8d20b096bcf7c379698dbe6a7c4afca57af7124979bd20a2a7","sha512":"dad4407274ac4d55f7b33a8d0d757b3678de7085eea62e3e55ff908a248678dc28ade83bc3e7b87667ae792703c3123f01f3a330a617f8d4ab416648673a0bb3","ssdeep":"","tlshash":"3ed012176671257501936010581c041d16520153574c45547f0c301d2bec11a269669c","size":241,"data":"","first_seen":"2025-12-01T21:25:25.735676Z","last_seen":"2026-06-22T00:11:08.501643Z","times_seen":729,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"5ee793c7e955f32ef7bc903715597bb5","sha1":"cb3a7f6e143c138a20d1fca1efccc4148f78c2ac","sha256":"0e5370a0ce2dc8b1fbd8f4eb568319d48c4391f40f1dbdda9495552b30fedbe0","sha512":"a03da8b50ced066a9efb4a231d9ba34268684da42d1fd87ab0304408f59cceab192aa1c9dd1e35cc8c8414b91627116d94aed9349de611a9201e4f63afd0b3a6","ssdeep":"","tlshash":"6111b5049db7406c045374b5d66bb31461e6d127552ed808fc4cf9487f50bac3ea6fb9","size":935,"data":"","first_seen":"2026-06-18T13:33:13.079929Z","last_seen":"2026-06-18T13:33:13.079929Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"1ead9c76f84f97c38149323f6aa83797","sha1":"b35677b8c85e1a9cc5663c208da94034e9ef399b","sha256":"f4dc7cd91bcb6286a259d08880cf295641224bf9aab0ee3220099163855af2a1","sha512":"10f08784d72c1c73554eb85138a4fabab1d1eaa620e6ea38fde949230d1d2c1a8ce58ba440a613d5b656d461d472ff9aebf3d026f88055a7ee6afe7119bb6108","ssdeep":"","tlshash":"a011892c2ca5012cd6f37279a9e8b280785a1107aaa2d408fa5c64050fe0c39be76fdc","size":902,"data":"","first_seen":"2026-06-18T13:33:13.081784Z","last_seen":"2026-06-18T13:33:13.081784Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"6357d37a3edcc55461f4e2f0e501316c","sha1":"87ad2975e234cb0cdf779750962c55691b95de40","sha256":"14d02a3502d07296225450c5b4f8eeee501864367bb3885c7bef31763ad2d634","sha512":"fe8e301537d2e6c63e52e941a0c2858f1a7d67cd3824809fd00b3196a15a0a8d78bc3effe3465a1599f3d374c9bbe68b7362a6eb7eb50dc1d1ee14751ade9b59","ssdeep":"","tlshash":"1cf00ea53cdc84398337102267bba2487479a93a2c4afc15f54cc4812f99efc18bb98c","size":530,"data":"","first_seen":"2024-12-31T07:10:36.5379Z","last_seen":"2026-06-22T00:11:08.503969Z","times_seen":2376,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/head-scripts.js","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"8e2d9b76e9458363d6f965e0f4270960","sha1":"cf4eda3788fc9b76ab694233838018075713e1a6","sha256":"951819b4acc883fa5e8e3bf3ade8bf32e79bc7895de07f2665097b8c15ccb748","sha512":"37a79eeb3bc0b14c36e2ef6e836a37a511141c2265076c8f51f15477e166995c0462c1f1c610ac31980f1d1d89abc460a80fecbb3066a6e221ac4019a0b84870","ssdeep":"768:hZgOQuhhf/wNvdVnR4I/6rorELrKN260RJB9:X3l9/wlRCMUrp","tlshash":"be839344faf0aea51679a111b36bc4c3f967425090e3841466cef9e4ec6f53e71a3b2c","size":85185,"data":"","first_seen":"2024-10-13T12:37:54.663849Z","last_seen":"2026-06-23T08:02:15.255845Z","times_seen":2538,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"eventHandler","is_inline":false,"md5":"223df5584c6ae20363251af3f42518ca","sha1":"a9fc6f70a65fc4af507feebef6435dc898bcac3a","sha256":"82839328e0573e00fd00bee3854b0f53cd9c83681558a65e7206f5d75cb1e4f8","sha512":"f3fdf1f8a2432d8f691d16af1b08cdab01daad5f39afe49d10b9f1b3e54e4427d3c99f452070468dad5e565715a4578badd0f1cce1583132a9cb0028348bb518","ssdeep":"","tlshash":"1890040c5c40dc7c5c1415433333df44175c05033505dd5141d1141430041434d0057c","size":42,"data":"","first_seen":"2023-04-11T09:22:34Z","last_seen":"2026-06-22T00:11:08.504528Z","times_seen":2719,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yastatic.net/partner-code-bundles/1305407/ba3cdb7c403520ff.js","fqdn":"yastatic.net","domain":"yastatic.net","tld":"net"},"ip":{"addr":"37.9.64.225","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"c566436e02ee307bc1f891caf9fb7aa0","sha1":"a3c9f084d1451cb967458153c075c3c8ca1a8dde","sha256":"0f72f378ae91a5df8d9234e47b7c25eccceeb1fa2e53df9a7d4ad617733ee3f3","sha512":"2d153acc6405acb29badb93a67ea4fda316f54e05ca6fdc4cc8f7423674cf86c49d0d163c35f2ae95c33dcd4c030ca04c579b6f78dca42fb535f6df71aa9c2bb","ssdeep":"3072:GogjYLBYH7lD3XxPQpwbFhTPTWaLUeWBWv8gocioJAGhXau10Kw1Pnu3kRdpNZa2:GogWYblD3XxPQpwbFhTPTWaLUeWBWv8f","tlshash":"cef3c78db2e1b47142d7a0f5503f6a0af23a6459a4098094f72de9e16fb898f4137f3d","size":160873,"data":"","first_seen":"2026-06-18T08:19:56.609597Z","last_seen":"2026-06-19T07:34:29.712644Z","times_seen":37,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yastatic.net/partner-code-bundles/1305407/269795db31b0ea7d.js","fqdn":"yastatic.net","domain":"yastatic.net","tld":"net"},"ip":{"addr":"37.9.64.225","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"b0876528dd4647fc5d9b30aa49144e85","sha1":"aeb366776217ebc40e310f90c8e0fb139df1a357","sha256":"526400902c8bdef432fc2819be1a65d9710acdc020c48636ce8097d4af1983dd","sha512":"6739ebbc0957716d0d849b14dea80a2bd45f03f9fe63625d3c9aa6cc357f9d85be0f34aa08166a1bf4316cb10f4d0459a00cb6e9981d96011332a80dc6f91e99","ssdeep":"12288:wbnU9nhBcnzBm5JqkcQPwI0xpIi1IjFs/bkxWYt6fX5HE/F/WK0:wbnUF59PwI0xpIiOjFs/bkxWYt6fX5HL","tlshash":"4ce4d88af5e1b07142e7a0f9803f160ff23a79155509c0a4f62ae8e56eb858e5137f3d","size":690092,"data":"","first_seen":"2026-06-18T08:19:56.637918Z","last_seen":"2026-06-19T07:34:29.665584Z","times_seen":38,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/manifest.js","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"d276783c3eff75365ec2af2eb275b4dc","sha1":"13be1a62346242bc92b7b2d61cbfc54556d69505","sha256":"c1e2076faa42b9dabb88ded60783c45dca8163ecc05cb63b375275b67bb82edb","sha512":"21f9b5025cf0f942c04f315a01dfad3148e525328e8162ef6256f234085f43cf7f627efd0aeedc241ff7e45efaad4ecd041d8fbfbe62a36d475789eed85a3d87","ssdeep":"96:9s2RDpVjtVzQuHLn6h7u1ixk8LDk1y7VAU20Jc8De+/:9Dp7Vrrn6h7u187VbMa","tlshash":"8c91b7ba2354e5bb269009d05a2ed197fa157037252b94f0ab1bdc76f87cec08466b70","size":4278,"data":"","first_seen":"2024-10-13T12:37:54.659345Z","last_seen":"2026-06-23T08:02:15.254814Z","times_seen":2549,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"eventHandler","is_inline":false,"md5":"5b057d8aa1e34436f8d5fd111b6491ce","sha1":"02b8cad77321003b4b409e66834f858541576457","sha256":"4ab09ea291b2663ca5bbf7dc04757e161bdbb7ce39a4add0865e5fd5458db231","sha512":"0355002a1535fe31144fd551611d520d2a7189ec7e210962ce3b9ec8f2a055e39a6a5c5b189534e90cb50c0a6c811a2f84a6f12a6e1a6a05719c51aa878c9187","ssdeep":"","tlshash":"d18004043c445cc45c1405013373d3053f5c05051105f4d1c5d3344330411574f1017c","size":38,"data":"","first_seen":"2023-04-11T09:22:34Z","last_seen":"2026-06-22T00:11:08.499321Z","times_seen":2740,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"9bae51b8e92fcd4a4ae6d8007b20907b","sha1":"2d349dcc80d19591a083ac2989fa2b941e6e7001","sha256":"d8a0560358c51b493362768b5e550e2a0f7e5403e9a5e58f37e0eb28ab75c594","sha512":"965511c40a366a367bcd31fcde5ff53ba352eea23c004732a706f9e90fee8b03473b7253a441febd3f64bdab4c0b883d34bfa7475fa1f1c21b048beb6dea852a","ssdeep":"","tlshash":"39a02208a020220888a230b2c2b3f0280aab000c0c088a0203020008080200b8088afe","size":60,"data":"","first_seen":"2023-03-07T01:15:28Z","last_seen":"2026-06-22T00:11:08.500094Z","times_seen":2759,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"e73aecda17aef85b6300a100806ae6e9","sha1":"d15cc4385370d4aa893cfe76c3a0e0297f7e5f1d","sha256":"fde5d3a6db7a00495d7b38ab493e7aacaf2392a703794b1caf37563b50ef6afd","sha512":"31adb611ef56722e02428f23de9b2813a67748ea0b0f0e3d711203469908e8f1bbbcc9d58960dd654c6a6f5f70507c13a7575ac2b9d5a8de00afd1b93fbffc53","ssdeep":"","tlshash":"369000a82202808222a080200f0b23802230202880a280208820200cb0c08038a200fa","size":41,"data":"","first_seen":"2023-03-07T01:02:59Z","last_seen":"2026-06-23T23:08:25.744714Z","times_seen":14367,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"15c4089d1e32973c5727325e1076c386","sha1":"097c486112fd84a3b3975c91c72891a9e5246950","sha256":"e7ae699b7fef5d8d20b096bcf7c379698dbe6a7c4afca57af7124979bd20a2a7","sha512":"dad4407274ac4d55f7b33a8d0d757b3678de7085eea62e3e55ff908a248678dc28ade83bc3e7b87667ae792703c3123f01f3a330a617f8d4ab416648673a0bb3","ssdeep":"","tlshash":"3ed012176671257501936010581c041d16520153574c45547f0c301d2bec11a269669c","size":241,"data":"","first_seen":"2025-12-01T21:25:25.735676Z","last_seen":"2026-06-22T00:11:08.501643Z","times_seen":729,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"5ee793c7e955f32ef7bc903715597bb5","sha1":"cb3a7f6e143c138a20d1fca1efccc4148f78c2ac","sha256":"0e5370a0ce2dc8b1fbd8f4eb568319d48c4391f40f1dbdda9495552b30fedbe0","sha512":"a03da8b50ced066a9efb4a231d9ba34268684da42d1fd87ab0304408f59cceab192aa1c9dd1e35cc8c8414b91627116d94aed9349de611a9201e4f63afd0b3a6","ssdeep":"","tlshash":"6111b5049db7406c045374b5d66bb31461e6d127552ed808fc4cf9487f50bac3ea6fb9","size":935,"data":"","first_seen":"2026-06-18T13:33:13.079929Z","last_seen":"2026-06-18T13:33:13.079929Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"1ead9c76f84f97c38149323f6aa83797","sha1":"b35677b8c85e1a9cc5663c208da94034e9ef399b","sha256":"f4dc7cd91bcb6286a259d08880cf295641224bf9aab0ee3220099163855af2a1","sha512":"10f08784d72c1c73554eb85138a4fabab1d1eaa620e6ea38fde949230d1d2c1a8ce58ba440a613d5b656d461d472ff9aebf3d026f88055a7ee6afe7119bb6108","ssdeep":"","tlshash":"a011892c2ca5012cd6f37279a9e8b280785a1107aaa2d408fa5c64050fe0c39be76fdc","size":902,"data":"","first_seen":"2026-06-18T13:33:13.081784Z","last_seen":"2026-06-18T13:33:13.081784Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"6357d37a3edcc55461f4e2f0e501316c","sha1":"87ad2975e234cb0cdf779750962c55691b95de40","sha256":"14d02a3502d07296225450c5b4f8eeee501864367bb3885c7bef31763ad2d634","sha512":"fe8e301537d2e6c63e52e941a0c2858f1a7d67cd3824809fd00b3196a15a0a8d78bc3effe3465a1599f3d374c9bbe68b7362a6eb7eb50dc1d1ee14751ade9b59","ssdeep":"","tlshash":"1cf00ea53cdc84398337102267bba2487479a93a2c4afc15f54cc4812f99efc18bb98c","size":530,"data":"","first_seen":"2024-12-31T07:10:36.5379Z","last_seen":"2026-06-22T00:11:08.503969Z","times_seen":2376,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/parking-rdap-auto.js","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"daacb0eadbbe89b15a54f55858a487ee","sha1":"871c07c2fc8fed3b0d3e9484b829e87c25c87a49","sha256":"48883fa5b4644faa17ff9ff6d093f8712df13bf9ec08fe8d707b7fe1355ab4b6","sha512":"e38ceb363ddb465357517d89c00216855f3efe388890dd89a3788ae5edf558e66c7f1f41f22a387e313bf63afafc5c5dc306160ff98abee00ae388429000a1a4","ssdeep":"384:2oDRuENCSoVeV56kz4DAClPb93ZC8ompYA+MJlsNjD8ZubaSsOFxbnUI:wkcAClbJl2D8Z0a7OFxbnR","tlshash":"5962b98078f61e6d27f215d6590b0dc2e4174a043c558c84e78bf572baedc3f917ab2a","size":14578,"data":"","first_seen":"2023-06-30T16:30:07Z","last_seen":"2026-06-22T00:11:08.493973Z","times_seen":1474,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"eventHandler","is_inline":false,"md5":"c49d56f44059c342bf0c1861ae3b6904","sha1":"9778326eb13bb7caf7272efb71d0e3262676326f","sha256":"466c504ae63ff78f98f291ab8d7fcc10a1e10b29c22251ba746e326d27fee79f","sha512":"5c1cee5e18a0eb6c6cac6aa0c75a6b50af2b994a9e75a50cd361c36d6e8059f081f2b363e425cd993d7673c5af8660959e39f1551cf67d76ecb16247ff5238b0","ssdeep":"","tlshash":"6790026418809c585d251e01631aae045ad454424118a8518145242224451025580179","size":46,"data":"","first_seen":"2023-04-18T10:46:20Z","last_seen":"2026-06-22T00:11:08.505435Z","times_seen":1451,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"9bae51b8e92fcd4a4ae6d8007b20907b","sha1":"2d349dcc80d19591a083ac2989fa2b941e6e7001","sha256":"d8a0560358c51b493362768b5e550e2a0f7e5403e9a5e58f37e0eb28ab75c594","sha512":"965511c40a366a367bcd31fcde5ff53ba352eea23c004732a706f9e90fee8b03473b7253a441febd3f64bdab4c0b883d34bfa7475fa1f1c21b048beb6dea852a","ssdeep":"","tlshash":"39a02208a020220888a230b2c2b3f0280aab000c0c088a0203020008080200b8088afe","size":60,"data":"","first_seen":"2023-03-07T01:15:28Z","last_seen":"2026-06-22T00:11:08.500094Z","times_seen":2759,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"e73aecda17aef85b6300a100806ae6e9","sha1":"d15cc4385370d4aa893cfe76c3a0e0297f7e5f1d","sha256":"fde5d3a6db7a00495d7b38ab493e7aacaf2392a703794b1caf37563b50ef6afd","sha512":"31adb611ef56722e02428f23de9b2813a67748ea0b0f0e3d711203469908e8f1bbbcc9d58960dd654c6a6f5f70507c13a7575ac2b9d5a8de00afd1b93fbffc53","ssdeep":"","tlshash":"369000a82202808222a080200f0b23802230202880a280208820200cb0c08038a200fa","size":41,"data":"","first_seen":"2023-03-07T01:02:59Z","last_seen":"2026-06-23T23:08:25.744714Z","times_seen":14367,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"15c4089d1e32973c5727325e1076c386","sha1":"097c486112fd84a3b3975c91c72891a9e5246950","sha256":"e7ae699b7fef5d8d20b096bcf7c379698dbe6a7c4afca57af7124979bd20a2a7","sha512":"dad4407274ac4d55f7b33a8d0d757b3678de7085eea62e3e55ff908a248678dc28ade83bc3e7b87667ae792703c3123f01f3a330a617f8d4ab416648673a0bb3","ssdeep":"","tlshash":"3ed012176671257501936010581c041d16520153574c45547f0c301d2bec11a269669c","size":241,"data":"","first_seen":"2025-12-01T21:25:25.735676Z","last_seen":"2026-06-22T00:11:08.501643Z","times_seen":729,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"5ee793c7e955f32ef7bc903715597bb5","sha1":"cb3a7f6e143c138a20d1fca1efccc4148f78c2ac","sha256":"0e5370a0ce2dc8b1fbd8f4eb568319d48c4391f40f1dbdda9495552b30fedbe0","sha512":"a03da8b50ced066a9efb4a231d9ba34268684da42d1fd87ab0304408f59cceab192aa1c9dd1e35cc8c8414b91627116d94aed9349de611a9201e4f63afd0b3a6","ssdeep":"","tlshash":"6111b5049db7406c045374b5d66bb31461e6d127552ed808fc4cf9487f50bac3ea6fb9","size":935,"data":"","first_seen":"2026-06-18T13:33:13.079929Z","last_seen":"2026-06-18T13:33:13.079929Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"1ead9c76f84f97c38149323f6aa83797","sha1":"b35677b8c85e1a9cc5663c208da94034e9ef399b","sha256":"f4dc7cd91bcb6286a259d08880cf295641224bf9aab0ee3220099163855af2a1","sha512":"10f08784d72c1c73554eb85138a4fabab1d1eaa620e6ea38fde949230d1d2c1a8ce58ba440a613d5b656d461d472ff9aebf3d026f88055a7ee6afe7119bb6108","ssdeep":"","tlshash":"a011892c2ca5012cd6f37279a9e8b280785a1107aaa2d408fa5c64050fe0c39be76fdc","size":902,"data":"","first_seen":"2026-06-18T13:33:13.081784Z","last_seen":"2026-06-18T13:33:13.081784Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"6357d37a3edcc55461f4e2f0e501316c","sha1":"87ad2975e234cb0cdf779750962c55691b95de40","sha256":"14d02a3502d07296225450c5b4f8eeee501864367bb3885c7bef31763ad2d634","sha512":"fe8e301537d2e6c63e52e941a0c2858f1a7d67cd3824809fd00b3196a15a0a8d78bc3effe3465a1599f3d374c9bbe68b7362a6eb7eb50dc1d1ee14751ade9b59","ssdeep":"","tlshash":"1cf00ea53cdc84398337102267bba2487479a93a2c4afc15f54cc4812f99efc18bb98c","size":530,"data":"","first_seen":"2024-12-31T07:10:36.5379Z","last_seen":"2026-06-22T00:11:08.503969Z","times_seen":2376,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"9bae51b8e92fcd4a4ae6d8007b20907b","sha1":"2d349dcc80d19591a083ac2989fa2b941e6e7001","sha256":"d8a0560358c51b493362768b5e550e2a0f7e5403e9a5e58f37e0eb28ab75c594","sha512":"965511c40a366a367bcd31fcde5ff53ba352eea23c004732a706f9e90fee8b03473b7253a441febd3f64bdab4c0b883d34bfa7475fa1f1c21b048beb6dea852a","ssdeep":"","tlshash":"39a02208a020220888a230b2c2b3f0280aab000c0c088a0203020008080200b8088afe","size":60,"data":"","first_seen":"2023-03-07T01:15:28Z","last_seen":"2026-06-22T00:11:08.500094Z","times_seen":2759,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"e73aecda17aef85b6300a100806ae6e9","sha1":"d15cc4385370d4aa893cfe76c3a0e0297f7e5f1d","sha256":"fde5d3a6db7a00495d7b38ab493e7aacaf2392a703794b1caf37563b50ef6afd","sha512":"31adb611ef56722e02428f23de9b2813a67748ea0b0f0e3d711203469908e8f1bbbcc9d58960dd654c6a6f5f70507c13a7575ac2b9d5a8de00afd1b93fbffc53","ssdeep":"","tlshash":"369000a82202808222a080200f0b23802230202880a280208820200cb0c08038a200fa","size":41,"data":"","first_seen":"2023-03-07T01:02:59Z","last_seen":"2026-06-23T23:08:25.744714Z","times_seen":14367,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"15c4089d1e32973c5727325e1076c386","sha1":"097c486112fd84a3b3975c91c72891a9e5246950","sha256":"e7ae699b7fef5d8d20b096bcf7c379698dbe6a7c4afca57af7124979bd20a2a7","sha512":"dad4407274ac4d55f7b33a8d0d757b3678de7085eea62e3e55ff908a248678dc28ade83bc3e7b87667ae792703c3123f01f3a330a617f8d4ab416648673a0bb3","ssdeep":"","tlshash":"3ed012176671257501936010581c041d16520153574c45547f0c301d2bec11a269669c","size":241,"data":"","first_seen":"2025-12-01T21:25:25.735676Z","last_seen":"2026-06-22T00:11:08.501643Z","times_seen":729,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"5ee793c7e955f32ef7bc903715597bb5","sha1":"cb3a7f6e143c138a20d1fca1efccc4148f78c2ac","sha256":"0e5370a0ce2dc8b1fbd8f4eb568319d48c4391f40f1dbdda9495552b30fedbe0","sha512":"a03da8b50ced066a9efb4a231d9ba34268684da42d1fd87ab0304408f59cceab192aa1c9dd1e35cc8c8414b91627116d94aed9349de611a9201e4f63afd0b3a6","ssdeep":"","tlshash":"6111b5049db7406c045374b5d66bb31461e6d127552ed808fc4cf9487f50bac3ea6fb9","size":935,"data":"","first_seen":"2026-06-18T13:33:13.079929Z","last_seen":"2026-06-18T13:33:13.079929Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"1ead9c76f84f97c38149323f6aa83797","sha1":"b35677b8c85e1a9cc5663c208da94034e9ef399b","sha256":"f4dc7cd91bcb6286a259d08880cf295641224bf9aab0ee3220099163855af2a1","sha512":"10f08784d72c1c73554eb85138a4fabab1d1eaa620e6ea38fde949230d1d2c1a8ce58ba440a613d5b656d461d472ff9aebf3d026f88055a7ee6afe7119bb6108","ssdeep":"","tlshash":"a011892c2ca5012cd6f37279a9e8b280785a1107aaa2d408fa5c64050fe0c39be76fdc","size":902,"data":"","first_seen":"2026-06-18T13:33:13.081784Z","last_seen":"2026-06-18T13:33:13.081784Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"6357d37a3edcc55461f4e2f0e501316c","sha1":"87ad2975e234cb0cdf779750962c55691b95de40","sha256":"14d02a3502d07296225450c5b4f8eeee501864367bb3885c7bef31763ad2d634","sha512":"fe8e301537d2e6c63e52e941a0c2858f1a7d67cd3824809fd00b3196a15a0a8d78bc3effe3465a1599f3d374c9bbe68b7362a6eb7eb50dc1d1ee14751ade9b59","ssdeep":"","tlshash":"1cf00ea53cdc84398337102267bba2487479a93a2c4afc15f54cc4812f99efc18bb98c","size":530,"data":"","first_seen":"2024-12-31T07:10:36.5379Z","last_seen":"2026-06-22T00:11:08.503969Z","times_seen":2376,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.reg.ru/domain/shop/get_parking_info?dname=grandchem.online\u0026rand=0.9417392320171621\u0026callback=ondata","fqdn":"www.reg.ru","domain":"reg.ru","tld":"ru"},"ip":{"addr":"194.67.72.31","port":443,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"577d64a989b9b2a14bf3c8ab2fef5a29","sha1":"12fa5057045e02b094a7b5453343c53dbbc34a6f","sha256":"f42a31d102e9528d80c38fbcaaf0c839073ff211eadf598d491aee6dc428bb03","sha512":"b1f0afcb473313429a7ab94b46c99d66c1db4fec3b2cc4fe479f3f6e7dfeaae46465e6cba2cf27709b5c6d31d250f286edfb4a1d1834bd1ce21d9f1382799050","ssdeep":"","tlshash":"0aa022082e3e8cbc8ac020c32c8bb80a023fe3a00c008c80e033000cb030bccbba2008","size":80,"data":"","first_seen":"2026-06-18T13:33:13.055575Z","last_seen":"2026-06-18T13:33:13.055575Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"9bae51b8e92fcd4a4ae6d8007b20907b","sha1":"2d349dcc80d19591a083ac2989fa2b941e6e7001","sha256":"d8a0560358c51b493362768b5e550e2a0f7e5403e9a5e58f37e0eb28ab75c594","sha512":"965511c40a366a367bcd31fcde5ff53ba352eea23c004732a706f9e90fee8b03473b7253a441febd3f64bdab4c0b883d34bfa7475fa1f1c21b048beb6dea852a","ssdeep":"","tlshash":"39a02208a020220888a230b2c2b3f0280aab000c0c088a0203020008080200b8088afe","size":60,"data":"","first_seen":"2023-03-07T01:15:28Z","last_seen":"2026-06-22T00:11:08.500094Z","times_seen":2759,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"e73aecda17aef85b6300a100806ae6e9","sha1":"d15cc4385370d4aa893cfe76c3a0e0297f7e5f1d","sha256":"fde5d3a6db7a00495d7b38ab493e7aacaf2392a703794b1caf37563b50ef6afd","sha512":"31adb611ef56722e02428f23de9b2813a67748ea0b0f0e3d711203469908e8f1bbbcc9d58960dd654c6a6f5f70507c13a7575ac2b9d5a8de00afd1b93fbffc53","ssdeep":"","tlshash":"369000a82202808222a080200f0b23802230202880a280208820200cb0c08038a200fa","size":41,"data":"","first_seen":"2023-03-07T01:02:59Z","last_seen":"2026-06-23T23:08:25.744714Z","times_seen":14367,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"15c4089d1e32973c5727325e1076c386","sha1":"097c486112fd84a3b3975c91c72891a9e5246950","sha256":"e7ae699b7fef5d8d20b096bcf7c379698dbe6a7c4afca57af7124979bd20a2a7","sha512":"dad4407274ac4d55f7b33a8d0d757b3678de7085eea62e3e55ff908a248678dc28ade83bc3e7b87667ae792703c3123f01f3a330a617f8d4ab416648673a0bb3","ssdeep":"","tlshash":"3ed012176671257501936010581c041d16520153574c45547f0c301d2bec11a269669c","size":241,"data":"","first_seen":"2025-12-01T21:25:25.735676Z","last_seen":"2026-06-22T00:11:08.501643Z","times_seen":729,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"5ee793c7e955f32ef7bc903715597bb5","sha1":"cb3a7f6e143c138a20d1fca1efccc4148f78c2ac","sha256":"0e5370a0ce2dc8b1fbd8f4eb568319d48c4391f40f1dbdda9495552b30fedbe0","sha512":"a03da8b50ced066a9efb4a231d9ba34268684da42d1fd87ab0304408f59cceab192aa1c9dd1e35cc8c8414b91627116d94aed9349de611a9201e4f63afd0b3a6","ssdeep":"","tlshash":"6111b5049db7406c045374b5d66bb31461e6d127552ed808fc4cf9487f50bac3ea6fb9","size":935,"data":"","first_seen":"2026-06-18T13:33:13.079929Z","last_seen":"2026-06-18T13:33:13.079929Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"1ead9c76f84f97c38149323f6aa83797","sha1":"b35677b8c85e1a9cc5663c208da94034e9ef399b","sha256":"f4dc7cd91bcb6286a259d08880cf295641224bf9aab0ee3220099163855af2a1","sha512":"10f08784d72c1c73554eb85138a4fabab1d1eaa620e6ea38fde949230d1d2c1a8ce58ba440a613d5b656d461d472ff9aebf3d026f88055a7ee6afe7119bb6108","ssdeep":"","tlshash":"a011892c2ca5012cd6f37279a9e8b280785a1107aaa2d408fa5c64050fe0c39be76fdc","size":902,"data":"","first_seen":"2026-06-18T13:33:13.081784Z","last_seen":"2026-06-18T13:33:13.081784Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"6357d37a3edcc55461f4e2f0e501316c","sha1":"87ad2975e234cb0cdf779750962c55691b95de40","sha256":"14d02a3502d07296225450c5b4f8eeee501864367bb3885c7bef31763ad2d634","sha512":"fe8e301537d2e6c63e52e941a0c2858f1a7d67cd3824809fd00b3196a15a0a8d78bc3effe3465a1599f3d374c9bbe68b7362a6eb7eb50dc1d1ee14751ade9b59","ssdeep":"","tlshash":"1cf00ea53cdc84398337102267bba2487479a93a2c4afc15f54cc4812f99efc18bb98c","size":530,"data":"","first_seen":"2024-12-31T07:10:36.5379Z","last_seen":"2026-06-22T00:11:08.503969Z","times_seen":2376,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"9bae51b8e92fcd4a4ae6d8007b20907b","sha1":"2d349dcc80d19591a083ac2989fa2b941e6e7001","sha256":"d8a0560358c51b493362768b5e550e2a0f7e5403e9a5e58f37e0eb28ab75c594","sha512":"965511c40a366a367bcd31fcde5ff53ba352eea23c004732a706f9e90fee8b03473b7253a441febd3f64bdab4c0b883d34bfa7475fa1f1c21b048beb6dea852a","ssdeep":"","tlshash":"39a02208a020220888a230b2c2b3f0280aab000c0c088a0203020008080200b8088afe","size":60,"data":"","first_seen":"2023-03-07T01:15:28Z","last_seen":"2026-06-22T00:11:08.500094Z","times_seen":2759,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"e73aecda17aef85b6300a100806ae6e9","sha1":"d15cc4385370d4aa893cfe76c3a0e0297f7e5f1d","sha256":"fde5d3a6db7a00495d7b38ab493e7aacaf2392a703794b1caf37563b50ef6afd","sha512":"31adb611ef56722e02428f23de9b2813a67748ea0b0f0e3d711203469908e8f1bbbcc9d58960dd654c6a6f5f70507c13a7575ac2b9d5a8de00afd1b93fbffc53","ssdeep":"","tlshash":"369000a82202808222a080200f0b23802230202880a280208820200cb0c08038a200fa","size":41,"data":"","first_seen":"2023-03-07T01:02:59Z","last_seen":"2026-06-23T23:08:25.744714Z","times_seen":14367,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"15c4089d1e32973c5727325e1076c386","sha1":"097c486112fd84a3b3975c91c72891a9e5246950","sha256":"e7ae699b7fef5d8d20b096bcf7c379698dbe6a7c4afca57af7124979bd20a2a7","sha512":"dad4407274ac4d55f7b33a8d0d757b3678de7085eea62e3e55ff908a248678dc28ade83bc3e7b87667ae792703c3123f01f3a330a617f8d4ab416648673a0bb3","ssdeep":"","tlshash":"3ed012176671257501936010581c041d16520153574c45547f0c301d2bec11a269669c","size":241,"data":"","first_seen":"2025-12-01T21:25:25.735676Z","last_seen":"2026-06-22T00:11:08.501643Z","times_seen":729,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"5ee793c7e955f32ef7bc903715597bb5","sha1":"cb3a7f6e143c138a20d1fca1efccc4148f78c2ac","sha256":"0e5370a0ce2dc8b1fbd8f4eb568319d48c4391f40f1dbdda9495552b30fedbe0","sha512":"a03da8b50ced066a9efb4a231d9ba34268684da42d1fd87ab0304408f59cceab192aa1c9dd1e35cc8c8414b91627116d94aed9349de611a9201e4f63afd0b3a6","ssdeep":"","tlshash":"6111b5049db7406c045374b5d66bb31461e6d127552ed808fc4cf9487f50bac3ea6fb9","size":935,"data":"","first_seen":"2026-06-18T13:33:13.079929Z","last_seen":"2026-06-18T13:33:13.079929Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"1ead9c76f84f97c38149323f6aa83797","sha1":"b35677b8c85e1a9cc5663c208da94034e9ef399b","sha256":"f4dc7cd91bcb6286a259d08880cf295641224bf9aab0ee3220099163855af2a1","sha512":"10f08784d72c1c73554eb85138a4fabab1d1eaa620e6ea38fde949230d1d2c1a8ce58ba440a613d5b656d461d472ff9aebf3d026f88055a7ee6afe7119bb6108","ssdeep":"","tlshash":"a011892c2ca5012cd6f37279a9e8b280785a1107aaa2d408fa5c64050fe0c39be76fdc","size":902,"data":"","first_seen":"2026-06-18T13:33:13.081784Z","last_seen":"2026-06-18T13:33:13.081784Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"6357d37a3edcc55461f4e2f0e501316c","sha1":"87ad2975e234cb0cdf779750962c55691b95de40","sha256":"14d02a3502d07296225450c5b4f8eeee501864367bb3885c7bef31763ad2d634","sha512":"fe8e301537d2e6c63e52e941a0c2858f1a7d67cd3824809fd00b3196a15a0a8d78bc3effe3465a1599f3d374c9bbe68b7362a6eb7eb50dc1d1ee14751ade9b59","ssdeep":"","tlshash":"1cf00ea53cdc84398337102267bba2487479a93a2c4afc15f54cc4812f99efc18bb98c","size":530,"data":"","first_seen":"2024-12-31T07:10:36.5379Z","last_seen":"2026-06-22T00:11:08.503969Z","times_seen":2376,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yandex.ru/ads/system/context.js","fqdn":"yandex.ru","domain":"yandex.ru","tld":"ru"},"ip":{"addr":"77.88.55.88","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"a37190e9b3bd29cccc3ef22079683d6f","sha1":"0158aa8f28782e0d85efc2af13db355d861e5e46","sha256":"1881b90176a909d19739c6c749025665240c6560f8556af0d127cf1e4f557c00","sha512":"190b6c6712718891b298ea95d0f22017fce5174ba1630ccde1a60ba84f1ef8be3e46b9a967e474e5cc7f78e61627c299e094c2671b190d0a7334c6032b5fb28c","ssdeep":"6144:6djrFIvKxzGCVoGcz8WJKO2O0G4vg2NGhIO8i/AdtPCFZXTrNO8rVjp2jlpPecTC:0raYy0UWts","tlshash":"8784c69db1e2b4a143d761a4803f5a0bf23a6955780e9090e325e8d5bcbc99f9133f3d","size":393913,"data":"","first_seen":"2026-06-18T13:33:13.087869Z","last_seen":"2026-06-18T13:33:13.087869Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yastatic.net/partner-code-bundles/libs/libs-033ae686.js","fqdn":"yastatic.net","domain":"yastatic.net","tld":"net"},"ip":{"addr":"37.9.64.225","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"8e28de8572712134d1bc4a77e52bafe5","sha1":"dea7f17d1a27bb63cb09902e4e21ad59809f2480","sha256":"4cb8e701d93fbf469464d6711bf8aec61ea16595a804ee56d926e999ae12920a","sha512":"0699663a24d534849484ec03b3f2cebf8ea5dd856d9c0760de18332920aa940d097ac8edf246fe153ac91cd1d9c06c9ca04994f654f39a7297032d3847dcef74","ssdeep":"192:iHFHNNSZkrXmgldEq88LX15yvOYq7YLYIP3qt4MV+9XE:iHFn8CX+q8Y1yqcsLWMQ9XE","tlshash":"8a12d9f932a1b8c012f669c1085f557b01ba7e07b90e255b472659927d240ce60f2fef","size":9232,"data":"","first_seen":"2026-05-27T08:51:43.706545Z","last_seen":"2026-06-24T02:00:20.710057Z","times_seen":1333,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yastatic.net/safeframe-bundles/0.86/host.js","fqdn":"yastatic.net","domain":"yastatic.net","tld":"net"},"ip":{"addr":"37.9.64.225","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"3ad08f4c1fa9586b9199af6c10d9fadc","sha1":"15131d3c1a1c9f9f2eddacac6c9c1ebdee40605f","sha256":"0f873f453c7e3c49cb1d561a7993dfc4f41238e0dcd78165c6f0bd0530ee3bd8","sha512":"88d3af361ff7c72fffedcc3650c0bd5a5e21e140f4cfd6dd5368d3a84eed38fd79f37cf7236e1854d1fbe3e4ce6d5d2a238f4b6e17fcced06818a762a3bb19e3","ssdeep":"768:r3gRk8LqR60Uta+vPG6lLJTrzCLLV/1vjWcPykZkG:r3skAbA+ve6p4LqclZF","tlshash":"a423c8ef3195b8b502c3a0b4443f220ea33b592564199484b327d8e5bd36acf5167fbe","size":49449,"data":"","first_seen":"2026-06-16T15:52:39.218435Z","last_seen":"2026-06-24T02:00:20.710583Z","times_seen":213,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yastatic.net/partner-code-bundles/1305407/5479cdc6a7f04c32.js","fqdn":"yastatic.net","domain":"yastatic.net","tld":"net"},"ip":{"addr":"37.9.64.225","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"e47f5bb0553de1150df1d15d522d8c4b","sha1":"3c45aaa7f41e297419504cb7cbf5811c0ec415ec","sha256":"108f48033560c906c507f90ca822b2acd8936f4d0aa811a887bf12c0bd0c7b57","sha512":"bc10fb0e05e5f9e0398c1e87141009e3f50606fc4c93efd292ec5f01b96faf4219550b050f65d7e522f3ca36b9d55f1e8ff8727a060151e73665799fb77a2e21","ssdeep":"96:TwE8Osi264XfWRP5OPWiwY6dFecX75XiosPCxhtkkmaXYmSXbSTv1J0a2q2:Tt8e2oRP5OPJwYEXNpBYfQv1JzL2","tlshash":"df81d8ad3681327583c315e481bb9506f63e0d21980a7121f11d84523db5f9760eff9e","size":4158,"data":"","first_seen":"2026-06-18T08:19:56.636173Z","last_seen":"2026-06-19T07:34:29.709829Z","times_seen":36,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yastatic.net/partner-code-bundles/1305407/c59c7c611d521583.js","fqdn":"yastatic.net","domain":"yastatic.net","tld":"net"},"ip":{"addr":"37.9.64.225","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"4a2da015b0863e64e5916ac603f6958b","sha1":"7a0f3a537cd5568a2f1528acd736a9d2fe75a14d","sha256":"ab1c3c8e27714433d46cd186ccf52ad6a9c05b04e98711909f3e4e4401b92114","sha512":"b0df09af35b13a56b90fb07b64af786d6e7848ab06e0885f1b1e1757cc67a408d06e262cd4cd30907f02a040f81dea882a3074c1a870cfcb2a2ead3a31c84fb4","ssdeep":"768:eS0S2XuKTeA/lCUtC8cgjCa7AbCGRCq9SN3iG8eIz0gFZmrm0ZrdzS8HMVdHJwQT:lay0bLrAv79mv+ATckK","tlshash":"f403b58db1d1f0a24a97a0b0813f210ff3376895a81e9440f666e4d17cba99f5073f6d","size":38659,"data":"","first_seen":"2026-06-18T08:19:56.63703Z","last_seen":"2026-06-19T07:34:29.752835Z","times_seen":36,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yastatic.net/partner-code-bundles/1305407/8193ade9039b059d.js","fqdn":"yastatic.net","domain":"yastatic.net","tld":"net"},"ip":{"addr":"37.9.64.225","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"b69a3ba5b1f39baa9f4d646d9774b692","sha1":"29ebf868e6c3d96a1d85e51c0b583cd1cda02346","sha256":"45dd08050c1fb04f4864c1666bf2190f65519dda41ae0bbc976d6c821a39a03b","sha512":"08a43201a20ebe76d74f3497fcb22468a4c3a62696da5d338c4853c862c25ade853e0342bd2f3aa55e816e187439a4e3acce814933ae82d821a189840ae1b594","ssdeep":"1536:J21aRXkutwZ1df1XUiYnasmKUG3N/wckKiN0ON02ekHPDf/:3Y1df2W6N/wckv7HPDf/","tlshash":"c644a7d6db69182d2a503184ea32fbdd0c50a891d20ad3364fbc56cbef54385d3a2bdd","size":253806,"data":"","first_seen":"2026-06-18T08:19:56.646565Z","last_seen":"2026-06-19T07:34:29.733135Z","times_seen":36,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yastatic.net/partner-code-bundles/libs/libs_render-033ae686.js","fqdn":"yastatic.net","domain":"yastatic.net","tld":"net"},"ip":{"addr":"37.9.64.225","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"d754269422d94f98d69252e63d2024cc","sha1":"2258f9d30e0785989a536f5fb220b6be68219328","sha256":"9858dd7119d0f2eccec9bfa316d4aa0f99b6ddef5e1320cd1722f735674bc6da","sha512":"e9956dc4f9326cb89b82cc774831de1656309a9423f2a764fd156944e9c2560d02f4ed9a049ba2770c97636ba1b568b4dcce303c81e305dd0d0254f917002028","ssdeep":"1536:dBD/fF6QaNTGIc7cX8qeLaAryfkEeOR66llyp23j4GOQ6ckUcWRxH4tEluKR1i0i:P5SGX7g8BYlyp2z2BWoy5Xix","tlshash":"9434c5e1863a0d1c1dea3142ea752c3e24662cc7d908cb6dee6f915fe544be4f38135a","size":249149,"data":"","first_seen":"2026-05-28T17:31:03.147441Z","last_seen":"2026-06-24T02:00:20.706478Z","times_seen":492,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"yastatic.net/partner-code-bundles/1305407/c59c7c611d521583.js","fqdn":"yastatic.net","domain":"yastatic.net","tld":"net"},"ip":{"addr":"37.9.64.225","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://grandchem.online/","date":"2026-06-18T13:32:45.320Z","timestamp":1781789565320,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.yastatic-net.ru","organization":""},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 30 Apr 2026 11:34:07 GMT","end":"Wed, 28 Oct 2026 20:59:59 GMT"},"fingerprint":{"sha1":"14:F1:2A:10:FA:A0:C8:25:E4:FA:ED:1B:89:69:12:33:27:F7:15:83","sha256":"C4:5F:F3:D1:06:B5:27:D4:9D:32:12:86:B3:BF:A1:45:D4:C3:D0:F7:8C:1D:83:41:1D:52:97:A1:9F:EE:A2:79"}}},"request":{"raw":"GET /partner-code-bundles/1305407/c59c7c611d521583.js HTTP/1.1\r\nHost: yastatic.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: http://grandchem.online\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://grandchem.online/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 18 Jun 2026 13:32:45 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 11155\r\ncache-control: public, max-age=946708560\r\nexpires: Sat, 17 Jun 2056 19:58:43 GMT\r\nvary: Accept-Encoding\r\nlast-modified: Wed, 17 Jun 2026 15:51:45 GMT\r\ntiming-allow-origin: *\r\nreport-to: { \"group\": \"network-errors\", \"max_age\": 7200, \"endpoints\": [ { \"url\": \"https://dr.yandex.net/nel\"}]}\r\nx-robots-tag: noindex, noarchive, nofollow\r\ncontent-encoding: br\r\netag: \"fef3fcf736869954ed9452b6780db0db\"\r\nstrict-transport-security: max-age=43200000; includeSubDomains;\r\nnel: {\"report_to\": \"network-errors\", \"max_age\": 7200, \"success_fraction\": 0.001, \"failure_fraction\": 0.01}\r\naccess-control-allow-origin: *\r\nx-strm-log-split: 1\r\nx-request-id: e10d452b406e05d7\r\ncache-host: cloudcdn-rad-10.cdn.yandex.net\r\ncache-status: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":38659,"size_decoded":12050,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (38617)","md5":"4a2da015b0863e64e5916ac603f6958b","sha1":"7a0f3a537cd5568a2f1528acd736a9d2fe75a14d","sha256":"ab1c3c8e27714433d46cd186ccf52ad6a9c05b04e98711909f3e4e4401b92114","sha512":"b0df09af35b13a56b90fb07b64af786d6e7848ab06e0885f1b1e1757cc67a408d06e262cd4cd30907f02a040f81dea882a3074c1a870cfcb2a2ead3a31c84fb4","ssdeep":"768:eS0S2XuKTeA/lCUtC8cgjCa7AbCGRCq9SN3iG8eIz0gFZmrm0ZrdzS8HMVdHJwQT:lay0bLrAv79mv+ATckK","tlshash":"f403b58db1d1f0a24a97a0b0813f210ff3376895a81e9440f666e4d17cba99f5073f6d","first_seen":"2026-06-18T08:19:56.63703Z","last_seen":"2026-06-19T07:34:29.752835Z","times_seen":36,"resource_available":true,"data":null}},"time_used":84,"timings":{"blocked":-1,"dns":0,"connect":14,"send":0,"wait":43,"receive":6,"ssl":20},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yandex.ru/ads/meta/17817361?target-ref=http%3A%2F%2Fgrandchem.online%2F\u0026pcode-version=1305407\u0026pcodever=1305407\u0026comboblock-unencoded-vast=1\u0026ad-session-id=1728401781789565360\u0026target-id=37860357\u0026pcode-test-ids=918197%2C0%2C79%3B1387854%2C0%2C14%3B1605364%2C0%2C41%3B1588537%2C0%2C88%3B1560057%2C0%2C89%3B1471934%2C0%2C49%3B1534006%2C0%2C31%3B1579167%2C0%2C45%3B1588628%2C0%2C30%3B1596106%2C0%2C27%3B1584246%2C0%2C83%3B1564093%2C0%2C0%3B1503321%2C0%2C88%3B1597992%2C0%2C48%3B1603881%2C0%2C0%3B1578647%2C0%2C63%3B1599011%2C0%2C6%3B1513548%2C0%2C38%3B1595640%2C0%2C27%3B1596466%2C0%2C53%3B912280%2C0%2C87%3B1581214%2C0%2C33\u0026csrf-token=7ed85626783c255bfb16f017b7880e5008d61be0%3A1781789565\u0026pcode-uid=6454672801781789565\u0026pcode-flags-map=eJyNlttu2zgQht9F10EhWdSpd7Q4sglTJJdDyfEWxSBt092iRrrYuItdFHn3Qoc4kTeVcmXY1nyc%2BeefoX4EB44WPV8raMEFb9%2F9CP65OX6%2FDd4G0Zs8Y28iFrM0uApOt%2Fcn%2Ban7OQ3TvFgFD%2B%2BvgpYjDcHUgkNp9JQQh1GaT6NjlrEk76OFxD5UAHpnDgTXHpzmikoH3MsWiAtqEByVyiAQtKD95IDbf%2F%2BawBkrVlkSPFwtPPKUvYOSq7JR3AM5%2BK0B9FSD3xpBlXG0d9xacNQ4NX9wEiYs6alcCJI13wBtuFLgDiQ1aWic6QqVGz0PyqMiZI8gqTfUfXhpOl0sd7wGDw775IRE7%2BS68Ze6%2Fx%2BaFkU%2BL0v3yHAu6L4r1sFaChKNFLPwJMyLYii9QSDsRNReckXKcNG1sMsVd9KSNzuYzzSJ4jgPz92punqpa4EW1EoBhlAZT96QMPU8KWZRnJ%2FT8txtwJODapBOkS2NgGVENoNoOS4D0h6wAQ2OK0LvuIfNgfbSb8lYXkp%2FmEA%2B3xyPH24%2BfqVvd8f%2FpjgWRVHR4yp5TXuphdmTNsZ28PlMWJKlg%2BsVcFEZVyO1XEnRGd9ujV6QgiUZK0ZbVuaauODWv2IwkjQtkui5ryokgaTMZkG7jK2KQTvLHcLQL5K6MiS1N%2BNIlUZXckMtm8BON3%2F%2FcXu64GXFOPcDD7dO6h11SqL8HQhN48oFFZ4YvPHGKl5CDdqT1K3ZAXHlqeRKrXm5mwflyerZzHS2WptG9%2FNeKtkhHZS%2B91n3pzVuccjTkOXZYPhBqvnFnLAwu1zrj8Uhr2AYvReC83QalYWrob8ImkNL0VyWRZRHRfbcDugd8Hoc7j2sDa7CKKc2nmA%2Bno6XkxWGgzsAEXQJVJu17O01H5gVUZq9GKiMccQXll2ep6t8Ev4Y169jqUtPHBE8jtwJ7v7L6fb45e7r%2FauhKD0oqXdIpWm0fwEa%2FQLV7c%2FzjSrQ0vrQfyi%2BBjWvUZFGo7hSj4Att1ZqQCRsXAsHkuWFp%2F68uft0URZbsQGDaKnmUpFrxk5XUvmlnZWysIjPtXQvKmMw6I3U0H3hfL6SMI5Hdz4qKwB33thXtrvIivFVZ7HdI3jC%2B%2FD9dPp29yukbZxVQGvV9C1emO44z4dKBMctiHMYNVqAU3Jhgz8DPN3FpGQtfeeMml8Pd3S3CxcmKE9Z9nRFS1UbLI0FGie6H%2BIFgxVhNBaDdjjXVBWCnw%2BL4oTlZ0M5sycHr3inSorOSsHD%2B4ef5Mgu%2Bw%3D%3D\u0026pcode-icookie=fg2bDFTlYUHOKxvHFSB8VHat%2B4lqXYyn61HbopX9pmJWoDVm%2F9RFfcMNLGfFO9b%2FupnRHPDTK1hqKw1mIrVNZvtLEuo%3D\u0026disable-base64=1\u0026imp-id=2\u0026banner-lang=ru\u0026ecma-version=es2017\u0026same-node-hit-number=0\u0026test-tag=228423540670466\u0026tga-with-creatives=1\u0026top-ancestor=http%3A%2F%2Fgrandchem.online\u0026top-ancestor-undetermined=0\u0026layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A1024%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A800%2C%22h%22%3A0%2C%22width%22%3A0%2C%22height%22%3A0%2C%22visible%22%3A0%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A240%2C%22top%22%3A1486%2C%22ad_no%22%3A0%2C%22safeArea%22%3A%7B%22top%22%3A0%2C%22bottom%22%3A0%2C%22left%22%3A0%2C%22right%22%3A0%7D%2C%22req_no%22%3A0%7D\u0026grab-orig-len=1892\u0026grab=eyJncmFiX3ZlcnNpb24iOjJ9CjKntJAkue8B1IsxXnpbvy58FWyE1C_9-SVcT12Xds-g31ZbETYwJX5y57L96_flK5KuC6u_gdepC_sD9IkArkBm2tataRWnEl74rBsTjYkZZGaQeVFJ7TCiVEmTLqdU2bEdJZQytwfyVJqEVH4QxUGiUpeGSl2IKnw5SZ5G3XHAgKvIvC5L8gKstEm8ROl1lzQOZNNkRlQqZMoolkltuAW7xKVUyWOYupqFoLJQZYFvbw07AfFQN8iN03hN1Lh5Q27iSnwk1CasRJXwCMIDchpaEy8NGhKGqrMqPXTSQ4Cx0FNV4kqgUvdHfFwGAwsthU0n77kfLuOXpbApVR4dCOWJk7qxZ8d-AI_AmxAJo7G32dhDUKANTxuwR_c2hcS2_cDJYLjd8xL3N-h_LnS5iaxM_ch3lW5ClrhJkCYseicGIVEGvhv2KEdcA1G7mD2MWK6v7nW5fElH3ZX9NZCkfuyM4_UJ77-6kutHcMBQ7oc9Dv4PkD8WQhPlFa9xKm4lyBuK-Qa13gtalGlw3bXjdE1CCkuf6Hogt4DK5xO5pquIZZEMcffWT2r7ni4Xy2Qb5HXiOmGTIqhEjV_gcq2XpLB0psVCO7brX0URyi1L_dDr6Zoh4D_8lnn8uA1VpS7ltfbD5H7P9UM_cySKUiLKwleLA6XC_xHh9SvYuCHe1lAqcP-CW7Eb-HzMCL1iF2PZ7piX7g_JpziK6YRupE-WdFviJo6pfA2oxy9u6I-dX7Ee90RbsehFXBJ8vmi_R1Tx8oVg1BL_QHhzw1Tjjoby17KbuCgZ9BMlXHhOJUTCoKDwybO3loyAqkS7wdMYOPOXAJsAoBX_OYmaYJyItglWzHyzsfrCtepHaNGzre0WzZaLi8MfZ8WdGMcgH0MD_94JApSoAXuVPQ-huIGp2E8bdQ6wUhjlFzXex_JJI9-1xPvOHHBC3FN-5D5_nHEIsjFxllWyJzThOyj6wNVroGOXCC2i58a3FRL9JtokEdOEjsaGiTyWhKbCsug2xozWdZP6jv3eb4b6kNFLFBWrzKherbpGNLtxmmhU6_3XvmnlKgUzOaWyh74k-ANggn1B53g9MImn0u5mri9RREkWdDuG-dr34IkfWEGpJWRoQZSQPaRHFh27Fby8cQFmBd6AilkpaFpUqGPihDdwcVGKcYfmZDg5yKCQj31Q3MVptxM5_HdSL2BM5xeLfQVRPraIshgehVmhXzuhbY8_rsV_5sSNVyQ0v2JaMoVjKdZVkV-hvSBnkyEatYRgLuqOwyobZzAkGtvBrVgFq1tIxVltf5VTXrP2_PzHfInfFw5i-XvTfVcwSVuzRz3-p1UyjBkoIj8lpc0Kfh2wm9kBkYvRMDGltBs-pB_LtYQ2wXz0kIyXd-9p8QaUVeYtfy9863BGTPMHQ-xjv94dTlM87hMNQd5duKzk-PaTVTGna5i-6QnUxslHsCLvdG5GABw_M-biyqGxnYS66xwn-lCfz0jLe_Dxl0FrDXZh3snJQctGwBCPrMf_k4Ii-E31HlVc_c1XMiJhgJWzZnjdnLNsnxbuCECYhz_6F4AeEUpwASScgXhITFuBkEmxeNBzbGV_GDOck6KWWAnW5LwYso8W5RMDQsv1WtPH7P_ZHjoeNZZypMqCRxNpdzLXTZvFp57UlfFKwjszh2Nxn9wp9sSp8wZpoOatdhEWNYWTr9LtGBUV2qErWIsPN_Ne-sfbmHXxkQaEFGUVir17tuQLucHJYqIEhxdu6mXjp_cMx3vPz8JWNNpBDjqo2aRuKOkUFVIxEHwmH9QZq6MFXgVxLjDkumCiYBewvWVQu56nBJfKczreuIk_7wnNmHjl713YruNgrSwM0F31ggYsWO0CNB-Q\u0026uniformat=true\u0026callback=Ya%5B9969839622507%5D","fqdn":"yandex.ru","domain":"yandex.ru","tld":"ru"},"ip":{"addr":"77.88.55.88","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://grandchem.online/","date":"2026-06-18T13:32:45.549Z","timestamp":1781789565549,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.yandex.tr","organization":""},"issuer":{"commonName":"GlobalSign ECC OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 06 Feb 2026 06:58:08 GMT","end":"Thu, 06 Aug 2026 20:59:59 GMT"},"fingerprint":{"sha1":"60:59:19:A6:7A:7A:52:5E:F5:B8:9A:A0:2C:24:3D:1C:0E:39:E3:EF","sha256":"00:4B:73:AB:C7:08:25:68:A0:71:82:92:46:23:A2:69:73:FB:7F:4A:B4:ED:30:A5:F0:22:C3:FA:17:C3:55:EB"}}},"request":{"raw":"GET /ads/meta/17817361?target-ref=http%3A%2F%2Fgrandchem.online%2F\u0026pcode-version=1305407\u0026pcodever=1305407\u0026comboblock-unencoded-vast=1\u0026ad-session-id=1728401781789565360\u0026target-id=37860357\u0026pcode-test-ids=918197%2C0%2C79%3B1387854%2C0%2C14%3B1605364%2C0%2C41%3B1588537%2C0%2C88%3B1560057%2C0%2C89%3B1471934%2C0%2C49%3B1534006%2C0%2C31%3B1579167%2C0%2C45%3B1588628%2C0%2C30%3B1596106%2C0%2C27%3B1584246%2C0%2C83%3B1564093%2C0%2C0%3B1503321%2C0%2C88%3B1597992%2C0%2C48%3B1603881%2C0%2C0%3B1578647%2C0%2C63%3B1599011%2C0%2C6%3B1513548%2C0%2C38%3B1595640%2C0%2C27%3B1596466%2C0%2C53%3B912280%2C0%2C87%3B1581214%2C0%2C33\u0026csrf-token=7ed85626783c255bfb16f017b7880e5008d61be0%3A1781789565\u0026pcode-uid=6454672801781789565\u0026pcode-flags-map=eJyNlttu2zgQht9F10EhWdSpd7Q4sglTJJdDyfEWxSBt092iRrrYuItdFHn3Qoc4kTeVcmXY1nyc%2BeefoX4EB44WPV8raMEFb9%2F9CP65OX6%2FDd4G0Zs8Y28iFrM0uApOt%2Fcn%2Ban7OQ3TvFgFD%2B%2BvgpYjDcHUgkNp9JQQh1GaT6NjlrEk76OFxD5UAHpnDgTXHpzmikoH3MsWiAtqEByVyiAQtKD95IDbf%2F%2BawBkrVlkSPFwtPPKUvYOSq7JR3AM5%2BK0B9FSD3xpBlXG0d9xacNQ4NX9wEiYs6alcCJI13wBtuFLgDiQ1aWic6QqVGz0PyqMiZI8gqTfUfXhpOl0sd7wGDw775IRE7%2BS68Ze6%2Fx%2BaFkU%2BL0v3yHAu6L4r1sFaChKNFLPwJMyLYii9QSDsRNReckXKcNG1sMsVd9KSNzuYzzSJ4jgPz92punqpa4EW1EoBhlAZT96QMPU8KWZRnJ%2FT8txtwJODapBOkS2NgGVENoNoOS4D0h6wAQ2OK0LvuIfNgfbSb8lYXkp%2FmEA%2B3xyPH24%2BfqVvd8f%2FpjgWRVHR4yp5TXuphdmTNsZ28PlMWJKlg%2BsVcFEZVyO1XEnRGd9ujV6QgiUZK0ZbVuaauODWv2IwkjQtkui5ryokgaTMZkG7jK2KQTvLHcLQL5K6MiS1N%2BNIlUZXckMtm8BON3%2F%2FcXu64GXFOPcDD7dO6h11SqL8HQhN48oFFZ4YvPHGKl5CDdqT1K3ZAXHlqeRKrXm5mwflyerZzHS2WptG9%2FNeKtkhHZS%2B91n3pzVuccjTkOXZYPhBqvnFnLAwu1zrj8Uhr2AYvReC83QalYWrob8ImkNL0VyWRZRHRfbcDugd8Hoc7j2sDa7CKKc2nmA%2Bno6XkxWGgzsAEXQJVJu17O01H5gVUZq9GKiMccQXll2ep6t8Ev4Y169jqUtPHBE8jtwJ7v7L6fb45e7r%2FauhKD0oqXdIpWm0fwEa%2FQLV7c%2FzjSrQ0vrQfyi%2BBjWvUZFGo7hSj4Att1ZqQCRsXAsHkuWFp%2F68uft0URZbsQGDaKnmUpFrxk5XUvmlnZWysIjPtXQvKmMw6I3U0H3hfL6SMI5Hdz4qKwB33thXtrvIivFVZ7HdI3jC%2B%2FD9dPp29yukbZxVQGvV9C1emO44z4dKBMctiHMYNVqAU3Jhgz8DPN3FpGQtfeeMml8Pd3S3CxcmKE9Z9nRFS1UbLI0FGie6H%2BIFgxVhNBaDdjjXVBWCnw%2BL4oTlZ0M5sycHr3inSorOSsHD%2B4ef5Mgu%2Bw%3D%3D\u0026pcode-icookie=fg2bDFTlYUHOKxvHFSB8VHat%2B4lqXYyn61HbopX9pmJWoDVm%2F9RFfcMNLGfFO9b%2FupnRHPDTK1hqKw1mIrVNZvtLEuo%3D\u0026disable-base64=1\u0026imp-id=2\u0026banner-lang=ru\u0026ecma-version=es2017\u0026same-node-hit-number=0\u0026test-tag=228423540670466\u0026tga-with-creatives=1\u0026top-ancestor=http%3A%2F%2Fgrandchem.online\u0026top-ancestor-undetermined=0\u0026layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A1024%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A800%2C%22h%22%3A0%2C%22width%22%3A0%2C%22height%22%3A0%2C%22visible%22%3A0%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A240%2C%22top%22%3A1486%2C%22ad_no%22%3A0%2C%22safeArea%22%3A%7B%22top%22%3A0%2C%22bottom%22%3A0%2C%22left%22%3A0%2C%22right%22%3A0%7D%2C%22req_no%22%3A0%7D\u0026grab-orig-len=1892\u0026grab=eyJncmFiX3ZlcnNpb24iOjJ9CjKntJAkue8B1IsxXnpbvy58FWyE1C_9-SVcT12Xds-g31ZbETYwJX5y57L96_flK5KuC6u_gdepC_sD9IkArkBm2tataRWnEl74rBsTjYkZZGaQeVFJ7TCiVEmTLqdU2bEdJZQytwfyVJqEVH4QxUGiUpeGSl2IKnw5SZ5G3XHAgKvIvC5L8gKstEm8ROl1lzQOZNNkRlQqZMoolkltuAW7xKVUyWOYupqFoLJQZYFvbw07AfFQN8iN03hN1Lh5Q27iSnwk1CasRJXwCMIDchpaEy8NGhKGqrMqPXTSQ4Cx0FNV4kqgUvdHfFwGAwsthU0n77kfLuOXpbApVR4dCOWJk7qxZ8d-AI_AmxAJo7G32dhDUKANTxuwR_c2hcS2_cDJYLjd8xL3N-h_LnS5iaxM_ch3lW5ClrhJkCYseicGIVEGvhv2KEdcA1G7mD2MWK6v7nW5fElH3ZX9NZCkfuyM4_UJ77-6kutHcMBQ7oc9Dv4PkD8WQhPlFa9xKm4lyBuK-Qa13gtalGlw3bXjdE1CCkuf6Hogt4DK5xO5pquIZZEMcffWT2r7ni4Xy2Qb5HXiOmGTIqhEjV_gcq2XpLB0psVCO7brX0URyi1L_dDr6Zoh4D_8lnn8uA1VpS7ltfbD5H7P9UM_cySKUiLKwleLA6XC_xHh9SvYuCHe1lAqcP-CW7Eb-HzMCL1iF2PZ7piX7g_JpziK6YRupE-WdFviJo6pfA2oxy9u6I-dX7Ee90RbsehFXBJ8vmi_R1Tx8oVg1BL_QHhzw1Tjjoby17KbuCgZ9BMlXHhOJUTCoKDwybO3loyAqkS7wdMYOPOXAJsAoBX_OYmaYJyItglWzHyzsfrCtepHaNGzre0WzZaLi8MfZ8WdGMcgH0MD_94JApSoAXuVPQ-huIGp2E8bdQ6wUhjlFzXex_JJI9-1xPvOHHBC3FN-5D5_nHEIsjFxllWyJzThOyj6wNVroGOXCC2i58a3FRL9JtokEdOEjsaGiTyWhKbCsug2xozWdZP6jv3eb4b6kNFLFBWrzKherbpGNLtxmmhU6_3XvmnlKgUzOaWyh74k-ANggn1B53g9MImn0u5mri9RREkWdDuG-dr34IkfWEGpJWRoQZSQPaRHFh27Fby8cQFmBd6AilkpaFpUqGPihDdwcVGKcYfmZDg5yKCQj31Q3MVptxM5_HdSL2BM5xeLfQVRPraIshgehVmhXzuhbY8_rsV_5sSNVyQ0v2JaMoVjKdZVkV-hvSBnkyEatYRgLuqOwyobZzAkGtvBrVgFq1tIxVltf5VTXrP2_PzHfInfFw5i-XvTfVcwSVuzRz3-p1UyjBkoIj8lpc0Kfh2wm9kBkYvRMDGltBs-pB_LtYQ2wXz0kIyXd-9p8QaUVeYtfy9863BGTPMHQ-xjv94dTlM87hMNQd5duKzk-PaTVTGna5i-6QnUxslHsCLvdG5GABw_M-biyqGxnYS66xwn-lCfz0jLe_Dxl0FrDXZh3snJQctGwBCPrMf_k4Ii-E31HlVc_c1XMiJhgJWzZnjdnLNsnxbuCECYhz_6F4AeEUpwASScgXhITFuBkEmxeNBzbGV_GDOck6KWWAnW5LwYso8W5RMDQsv1WtPH7P_ZHjoeNZZypMqCRxNpdzLXTZvFp57UlfFKwjszh2Nxn9wp9sSp8wZpoOatdhEWNYWTr9LtGBUV2qErWIsPN_Ne-sfbmHXxkQaEFGUVir17tuQLucHJYqIEhxdu6mXjp_cMx3vPz8JWNNpBDjqo2aRuKOkUFVIxEHwmH9QZq6MFXgVxLjDkumCiYBewvWVQu56nBJfKczreuIk_7wnNmHjl713YruNgrSwM0F31ggYsWO0CNB-Q\u0026uniformat=true\u0026callback=Ya%5B9969839622507%5D HTTP/1.1\r\nHost: yandex.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nContent-Type: application/x-www-form-urlencoded\r\nOrigin: http://grandchem.online\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://grandchem.online/\r\nCookie: pi=J0D0y4NZYCwapR2sgnJjy0GBDHhQy1/1jEwpczEfOPvFwzVi4Q3WVwjWw3vykcD+Pdi/uLbU5Ztysm2t3CTK5KxpPzc=; i=8vhJWA67kNT0F6N4w+P4B32WDlnmMM4qxJXkWCzSwGjFuug28QzSVR8flkcW4tEbiRsaR/9P9ffavob9Ew07ksWwnu0=; yandexuid=1754583641781789565; yashr=5078639961781789565; bh=YP3mz9EGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nx-yt-request-id: 749bbe1f-33103c71-ecf87f98-5db7e7e9\r\nx-content-type-options: nosniff\r\nuniformat-product-type: None\r\ncontent-encoding: gzip\r\nlast-modified: Thu, 18 Jun 2026 13:32:45 GMT\r\ncache-control: private, no-cache, no-store, must-revalidate, max-age=0\r\nreport-to: { \"group\": \"network-errors\", \"max_age\": 100, \"endpoints\": [{\"url\": \"https://dr.yandex.net/nel\", \"priority\": 1}, {\"url\": \"https://dr2.yandex.net/nel\", \"priority\": 2}]}\r\nset-cookie: yuidss=1754583641781789565; domain=yandex.ru; path=/; expires=Sun, 15-Jun-2036 13:32:45 GMT; SameSite=None; Secure\r\ndate: Thu, 18 Jun 2026 13:32:45 GMT\r\naccess-control-allow-origin: http://grandchem.online\r\nx-yandex-req-id: 1781789565566398-14695396836551831031-balancer-l7leveler-kubr-yp-sas-152-BAL\r\nx-ads-loadaverageonarrival: 0.545455\r\naccept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Sec-CH-Viewport-Width, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT, Width, Sec-Ch-Viewport-Height\r\nx-ads-queuetime: 0.095000\r\ntiming-allow-origin: *\r\nx-ads-cpu-exts: laas=287,bigb.eagle=4256\r\ncontent-security-policy: upgrade-insecure-requests; default-src 'none'; base-uri 'none'; script-src 'report-sample' 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: abs.yandex.ru an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs\u0026project=yabs\u0026yandex_login=\u0026platform=\r\nx-ads-loadaverage: 0.575758\r\nx-xss-protection: 1; mode=block\r\nx-ads-degradation: 0.000000\r\nx-yt-trace-id: 0-1-0-0\r\nx-ads-service-name: yabs-server.partner.meta\r\nnel: {\"report_to\": \"network-errors\", \"max_age\": 100, \"success_fraction\": 0.001, \"failure_fraction\": 0.1}\r\nuniformat: true\r\npragma: no-cache\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-credentials: true\r\nexpires: Thu, 18 Jun 2026 13:32:45 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":688,"size_decoded":2864,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"54562473660ac1b5c80013607d63d105","sha1":"0ce48a57052bd691c7a5de82a2a3416d9e494c3e","sha256":"16d227aba0c53cce25efd3871028950b7d50c7a6bd4ecb892d56318c0e133008","sha512":"5fc4c52f164cc58fd197e115bc1147fd14db20b0fbd95ed9e3607bbd3b2f9b3fbbdf4f0062b51dce9e7d3b60114a7aca6cd19016deff5b631d6650e16dd93274","ssdeep":"","tlshash":"5a01c699a963dc5ac7032225a6e95b2838bd0273cf98d0769ccf8e0d94ec0830204a4a","first_seen":"2026-06-18T13:33:13.049852Z","last_seen":"2026-06-18T13:33:13.049852Z","times_seen":1,"resource_available":false,"data":null}},"time_used":113,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":113,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/parking-rdap-auto.js","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://grandchem.online/","date":"2026-06-18T13:32:44.300Z","timestamp":1781789564300,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /parking-rdap-auto.js HTTP/1.1\r\nHost: grandchem.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://grandchem.online/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 18 Jun 2026 13:32:44 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 4278\r\nLast-Modified: Mon, 01 Dec 2025 15:17:11 GMT\r\nConnection: keep-alive\r\nETag: \"692db177-10b6\"\r\nContent-Encoding: gzip\r\nExpires: Tue, 02 Dec 2025 15:17:11 GMT\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14578,"size_decoded":4591,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3635)","md5":"daacb0eadbbe89b15a54f55858a487ee","sha1":"871c07c2fc8fed3b0d3e9484b829e87c25c87a49","sha256":"48883fa5b4644faa17ff9ff6d093f8712df13bf9ec08fe8d707b7fe1355ab4b6","sha512":"e38ceb363ddb465357517d89c00216855f3efe388890dd89a3788ae5edf558e66c7f1f41f22a387e313bf63afafc5c5dc306160ff98abee00ae388429000a1a4","ssdeep":"384:2oDRuENCSoVeV56kz4DAClPb93ZC8ompYA+MJlsNjD8ZubaSsOFxbnUI:wkcAClbJl2D8Z0a7OFxbnR","tlshash":"5962b98078f61e6d27f215d6590b0dc2e4174a043c558c84e78bf572baedc3f917ab2a","first_seen":"2023-06-30T16:30:07Z","last_seen":"2026-06-22T00:11:08.493973Z","times_seen":1474,"resource_available":true,"data":null}},"time_used":86,"timings":{"blocked":-1,"dns":0,"connect":43,"send":0,"wait":43,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"grandchem.online","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.reg.ru/domain/shop/get_parking_info?dname=grandchem.online\u0026rand=0.9417392320171621\u0026callback=ondata","fqdn":"www.reg.ru","domain":"reg.ru","tld":"ru"},"ip":{"addr":"194.67.72.31","port":443,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://grandchem.online/","date":"2026-06-18T13:32:44.451Z","timestamp":1781789564451,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.reg.ru","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 EV TLS CA 2025","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 07 Nov 2025 08:59:55 GMT","end":"Wed, 09 Dec 2026 08:59:54 GMT"},"fingerprint":{"sha1":"44:8E:D8:54:C0:26:75:15:9E:B5:ED:77:FB:D0:73:17:AF:CE:AE:F3","sha256":"06:7B:34:65:88:F3:9A:6E:3D:73:2A:64:5C:03:87:9F:5A:95:BA:DF:45:E6:07:0B:F7:6A:56:5D:F7:ED:73:00"}}},"request":{"raw":"GET /domain/shop/get_parking_info?dname=grandchem.online\u0026rand=0.9417392320171621\u0026callback=ondata HTTP/1.1\r\nHost: www.reg.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://grandchem.online/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: 194.67.72.31\r\ndate: Thu, 18 Jun 2026 13:32:44 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\npragma: public\r\nexpires: 0\r\nset-cookie: SESSION_ID=1bb51e983e65d317d0ed34e26fd3d7e7b7c1c5fd; domain=reg.ru; path=/; expires=Sat, 20-Jun-2026 13:32:44 GMT; secure; HttpOnly\r\nx-request-id: bdee48187a2c762ab59d5a46fe3a13c7\r\nx-frame-options: Deny\r\ncache-control: must-revalidate, post-check=0,pre-check=0, no-cache, no-store\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=10886400; includeSubDomains; preload\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":80,"size_decoded":725,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"577d64a989b9b2a14bf3c8ab2fef5a29","sha1":"12fa5057045e02b094a7b5453343c53dbbc34a6f","sha256":"f42a31d102e9528d80c38fbcaaf0c839073ff211eadf598d491aee6dc428bb03","sha512":"b1f0afcb473313429a7ab94b46c99d66c1db4fec3b2cc4fe479f3f6e7dfeaae46465e6cba2cf27709b5c6d31d250f286edfb4a1d1834bd1ce21d9f1382799050","ssdeep":"","tlshash":"0aa022082e3e8cbc8ac020c32c8bb80a023fe3a00c008c80e033000cb030bccbba2008","first_seen":"2026-06-18T13:33:13.055575Z","last_seen":"2026-06-18T13:33:13.055575Z","times_seen":1,"resource_available":true,"data":null}},"time_used":393,"timings":{"blocked":-1,"dns":4,"connect":43,"send":0,"wait":285,"receive":0,"ssl":60},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"files.reg.ru/fonts/inter/Inter-SemiBold.woff2","fqdn":"files.reg.ru","domain":"reg.ru","tld":"ru"},"ip":{"addr":"194.67.72.33","port":443,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://grandchem.online/","date":"2026-06-18T13:32:44.493Z","timestamp":1781789564493,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.reg.ru","organization":""},"issuer":{"commonName":"GlobalSign GCC R6 AlphaSSL CA 2025","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 24 Mar 2026 10:56:31 GMT","end":"Fri, 09 Oct 2026 10:56:31 GMT"},"fingerprint":{"sha1":"DB:56:E3:C0:A3:22:98:B6:7A:BB:9D:E2:65:D1:38:1D:AF:24:B5:8C","sha256":"F2:E9:10:F2:BF:5E:6B:A8:94:03:EC:C0:5A:56:25:D8:41:55:BF:82:DA:87:DE:A9:24:F0:8C:68:B6:ED:A5:99"}}},"request":{"raw":"GET /fonts/inter/Inter-SemiBold.woff2 HTTP/1.1\r\nHost: files.reg.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: http://grandchem.online\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://grandchem.online/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 18 Jun 2026 13:32:44 GMT\r\ncontent-length: 105804\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: http://grandchem.online\r\naccess-control-expose-headers: Date, Etag, Server, Connection, Accept-Ranges, Content-Range, Content-Encoding, Content-Length, Content-Type, Content-Disposition, Last-Modified, Content-Language, Cache-Control, Retry-After, X-Amz-Bucket-Region, Expires, X-Amz*, X-Amz*, *\r\ncontent-security-policy: block-all-mixed-content\r\netag: \"007ad31a53f4ab3f58ee74f2308482ce\"\r\nlast-modified: Tue, 25 Oct 2022 11:42:32 GMT\r\nvary: Accept-Encoding, Origin\r\nx-xss-protection: 1; mode=block\r\nx-amz-meta-mtime: 1666084006\r\nx-request-id: 4184979fb192009b88a6dccab0ac3c32\r\nexpires: Wed, 09 Jun 2027 13:32:44 GMT\r\ncache-control: max-age=30758400\r\nContent-Type: font/woff2,font/woff2\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":105804,"size_decoded":106693,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 105804, version 1.0","md5":"007ad31a53f4ab3f58ee74f2308482ce","sha1":"dfa9f8f3d79bf8a0001fe72eeadad0490cba59cc","sha256":"152261291c938aa5aad6a56d52b47ffcb893d1c0387e76d7f270a7382ff786d5","sha512":"48aef263aca876ba4db5a596fbb8332524d6b440a8a516e1baa7899f2f1da0e1c44452d0380869ec455d27a6e0b931210b1fb669b36e36914ca27235f34e8558","ssdeep":"3072:wo/8sikhizn8CQRxZ9UXsfH0K1yjewt8G5VYqLS8b:a5z3iHCAHjaJtZ5dLS8b","tlshash":"6fa312cab961eaecd2b1d42806545efaacf3eff0c1e315225697014898accd35ed4f84","first_seen":"2023-04-12T20:55:47Z","last_seen":"2026-06-24T02:06:19.180201Z","times_seen":18437,"resource_available":false,"data":null}},"time_used":440,"timings":{"blocked":-1,"dns":0,"connect":44,"send":0,"wait":172,"receive":44,"ssl":179},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/favicon.ico?1","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://grandchem.online/","date":"2026-06-18T13:32:44.937Z","timestamp":1781789564937,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico?1 HTTP/1.1\r\nHost: grandchem.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://grandchem.online/\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 18 Jun 2026 13:32:44 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 14134\r\nLast-Modified: Thu, 26 Oct 2023 07:37:01 GMT\r\nConnection: keep-alive\r\nETag: \"653a171d-3736\"\r\nExpires: Fri, 27 Oct 2023 07:37:01 GMT\r\nCache-Control: no-cache\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14134,"size_decoded":14436,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"c79cecb75624b00f9e69b603e79bb4bd","sha1":"7f68e4de425b71357d0c569a44cd2848754bb8f8","sha256":"7fccb84339fd382be7267a5cf90e04e8fb96c99c82fecaa4a0ccbb36686bf5bb","sha512":"9d10ad7942269e75627302a7b41315dfac62392360b3f7f5f5d7a97dbe7c0485b48b15805a5c5b4f4af6cdb425a5d1311b92a218fc143cbfe2e2e3b7c6f70e6e","ssdeep":"12:j/qs0e3iiii+7777777777777777777777bOnCezeJ0/tRCX+X9Rrl2lb77oIIIk:jysv7HK7qXauUUUUUUNZ","tlshash":"4a52851c2b9eec0ec3162fba6819d29622757cfa89d045373cf66b1f2af52c55c70264","first_seen":"2023-09-15T16:38:47Z","last_seen":"2026-06-22T00:11:08.490876Z","times_seen":2949,"resource_available":false,"data":null}},"time_used":86,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":43,"receive":43,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"grandchem.online","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"yastatic.net/partner-code-bundles/1305407/8193ade9039b059d.js","fqdn":"yastatic.net","domain":"yastatic.net","tld":"net"},"ip":{"addr":"37.9.64.225","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://grandchem.online/","date":"2026-06-18T13:32:45.322Z","timestamp":1781789565322,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.yastatic-net.ru","organization":""},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 30 Apr 2026 11:34:07 GMT","end":"Wed, 28 Oct 2026 20:59:59 GMT"},"fingerprint":{"sha1":"14:F1:2A:10:FA:A0:C8:25:E4:FA:ED:1B:89:69:12:33:27:F7:15:83","sha256":"C4:5F:F3:D1:06:B5:27:D4:9D:32:12:86:B3:BF:A1:45:D4:C3:D0:F7:8C:1D:83:41:1D:52:97:A1:9F:EE:A2:79"}}},"request":{"raw":"GET /partner-code-bundles/1305407/8193ade9039b059d.js HTTP/1.1\r\nHost: yastatic.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: http://grandchem.online\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://grandchem.online/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 18 Jun 2026 13:32:45 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 27041\r\nlast-modified: Wed, 17 Jun 2026 15:51:44 GMT\r\ncontent-encoding: br\r\ntiming-allow-origin: *\r\nvary: Accept-Encoding\r\netag: \"ffdacb5bf958b3d7a7b12d027e92891e\"\r\nexpires: Sat, 17 Jun 2056 19:58:43 GMT\r\nx-robots-tag: noindex, noarchive, nofollow\r\nreport-to: { \"group\": \"network-errors\", \"max_age\": 7200, \"endpoints\": [ { \"url\": \"https://dr.yandex.net/nel\"}]}\r\ncache-control: public, max-age=946708560\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=43200000; includeSubDomains;\r\nnel: {\"report_to\": \"network-errors\", \"max_age\": 7200, \"success_fraction\": 0.001, \"failure_fraction\": 0.01}\r\nx-strm-log-split: 7\r\nx-request-id: 9251abf5f9eb9cd0\r\ncache-host: cloudcdn-rad-10.cdn.yandex.net\r\ncache-status: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":253806,"size_decoded":27936,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65495)","md5":"b69a3ba5b1f39baa9f4d646d9774b692","sha1":"29ebf868e6c3d96a1d85e51c0b583cd1cda02346","sha256":"45dd08050c1fb04f4864c1666bf2190f65519dda41ae0bbc976d6c821a39a03b","sha512":"08a43201a20ebe76d74f3497fcb22468a4c3a62696da5d338c4853c862c25ade853e0342bd2f3aa55e816e187439a4e3acce814933ae82d821a189840ae1b594","ssdeep":"1536:J21aRXkutwZ1df1XUiYnasmKUG3N/wckKiN0ON02ekHPDf/:3Y1df2W6N/wckv7HPDf/","tlshash":"c644a7d6db69182d2a503184ea32fbdd0c50a891d20ad3364fbc56cbef54385d3a2bdd","first_seen":"2026-06-18T08:19:56.646565Z","last_seen":"2026-06-19T07:34:29.733135Z","times_seen":36,"resource_available":true,"data":null}},"time_used":84,"timings":{"blocked":-1,"dns":0,"connect":14,"send":0,"wait":43,"receive":8,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yastatic.net/partner-code-bundles/1305407/269795db31b0ea7d.js","fqdn":"yastatic.net","domain":"yastatic.net","tld":"net"},"ip":{"addr":"37.9.64.225","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://grandchem.online/","date":"2026-06-18T13:32:45.326Z","timestamp":1781789565326,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.yastatic-net.ru","organization":""},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 30 Apr 2026 11:34:07 GMT","end":"Wed, 28 Oct 2026 20:59:59 GMT"},"fingerprint":{"sha1":"14:F1:2A:10:FA:A0:C8:25:E4:FA:ED:1B:89:69:12:33:27:F7:15:83","sha256":"C4:5F:F3:D1:06:B5:27:D4:9D:32:12:86:B3:BF:A1:45:D4:C3:D0:F7:8C:1D:83:41:1D:52:97:A1:9F:EE:A2:79"}}},"request":{"raw":"GET /partner-code-bundles/1305407/269795db31b0ea7d.js HTTP/1.1\r\nHost: yastatic.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: http://grandchem.online\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://grandchem.online/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 18 Jun 2026 13:32:45 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 132390\r\ncache-control: public, max-age=946708560\r\naccess-control-allow-origin: *\r\nexpires: Sat, 17 Jun 2056 19:28:42 GMT\r\nreport-to: { \"group\": \"network-errors\", \"max_age\": 7200, \"endpoints\": [ { \"url\": \"https://dr.yandex.net/nel\"}]}\r\nstrict-transport-security: max-age=43200000; includeSubDomains;\r\nlast-modified: Wed, 17 Jun 2026 15:51:43 GMT\r\nvary: Accept-Encoding\r\nnel: {\"report_to\": \"network-errors\", \"max_age\": 7200, \"success_fraction\": 0.001, \"failure_fraction\": 0.01}\r\ncontent-encoding: br\r\ntiming-allow-origin: *\r\nx-robots-tag: noindex, noarchive, nofollow\r\netag: \"367d586f49ea75f6c41c5ab03fa16ef5\"\r\nx-strm-log-split: 4\r\nx-request-id: f16d473a375c8527\r\ncache-host: cloudcdn-rad-10.cdn.yandex.net\r\ncache-status: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":690092,"size_decoded":133286,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65496)","md5":"b0876528dd4647fc5d9b30aa49144e85","sha1":"aeb366776217ebc40e310f90c8e0fb139df1a357","sha256":"526400902c8bdef432fc2819be1a65d9710acdc020c48636ce8097d4af1983dd","sha512":"6739ebbc0957716d0d849b14dea80a2bd45f03f9fe63625d3c9aa6cc357f9d85be0f34aa08166a1bf4316cb10f4d0459a00cb6e9981d96011332a80dc6f91e99","ssdeep":"12288:wbnU9nhBcnzBm5JqkcQPwI0xpIi1IjFs/bkxWYt6fX5HE/F/WK0:wbnUF59PwI0xpIiOjFs/bkxWYt6fX5HL","tlshash":"4ce4d88af5e1b07142e7a0f9803f160ff23a79155509c0a4f62ae8e56eb858e5137f3d","first_seen":"2026-06-18T08:19:56.637918Z","last_seen":"2026-06-19T07:34:29.665584Z","times_seen":38,"resource_available":true,"data":null}},"time_used":66,"timings":{"blocked":20,"dns":0,"connect":0,"send":0,"wait":30,"receive":16,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-18T13:32:41.483Z","timestamp":1781789561483,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: grandchem.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-24T02:14:24.076076Z","times_seen":16667887,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"grandchem.online","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-18T13:32:44.047Z","timestamp":1781789564047,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: grandchem.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 18 Jun 2026 13:32:44 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nExpires: Thu, 19 Feb 2026 12:55:29 GMT\r\nCache-Control: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10462,"size_decoded":3929,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (5883)","md5":"a945dd6d88d68a5374d1a047e5b52d05","sha1":"f73fdc39d1a5b0ab8b193748722917d84631ffcc","sha256":"3d676ba2704df9ec108e5d9b78ca468287237db9c9c669b0ea2728951c6b2861","sha512":"04dba0426d56ad4baacc8d50beb7331a53b050b7880bd72f4b49af2420f57e0a9713560d887abfb4e220ec142b051a33a0946b5c14b0fb2fba6c7d01b6f9913e","ssdeep":"192:bgDo86VeVKVm/N7/aBdUNgbFcuATD+/ku1erCyL5TV9qE:MobwsS7/ad+3DlLr/Zz","tlshash":"492296510856f03f0a437af9e27fbf4874dd40a9de869900faec005937d1ea1da6972a","first_seen":"2026-06-18T13:33:13.062124Z","last_seen":"2026-06-18T13:33:13.062124Z","times_seen":1,"resource_available":true,"data":null}},"time_used":95,"timings":{"blocked":-1,"dns":5,"connect":45,"send":0,"wait":45,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"grandchem.online","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/parking-rdap-auto.css","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://grandchem.online/","date":"2026-06-18T13:32:44.290Z","timestamp":1781789564290,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /parking-rdap-auto.css HTTP/1.1\r\nHost: grandchem.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://grandchem.online/\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 18 Jun 2026 13:32:44 GMT\r\nContent-Type: text/css\r\nContent-Length: 18958\r\nLast-Modified: Mon, 01 Dec 2025 15:17:11 GMT\r\nConnection: keep-alive\r\nETag: \"692db177-4a0e\"\r\nContent-Encoding: gzip\r\nExpires: Tue, 02 Dec 2025 15:17:11 GMT\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":183441,"size_decoded":19258,"mime_type":"text/css","magic":"ASCII text, with very long lines (25481)","md5":"f02aa05f29aa86a85baefe0cb2fdd9f5","sha1":"227423a46928013d510160fcf52b527e93b324bc","sha256":"0e92a5c32b01644c566f05118a9d8053901ae650b4af9bed013603ee91825639","sha512":"0b1053931ad3a31c4ced22c432a538c32559d3ea4550ca05955e5cb9127235492ab8489598fe11160c6c9bd673ce81a5981c0ea7097971801cca434c6f7698f3","ssdeep":"384:Hq+8EpHAsL5pCAJLcmoQQ/rtYtmvIX99tB5DlQMCVghifjVmxRkCOd8SwbbjWfVQ:K+Ec+4gibU4bH3lKhd4","tlshash":"62049c064b700c3bd21f1da9d5e7d8c2fb462aa2a2fdc58ffd02f726d15e248672550a","first_seen":"2025-12-01T21:25:25.692819Z","last_seen":"2026-06-22T00:11:08.495551Z","times_seen":663,"resource_available":false,"data":null}},"time_used":86,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":43,"receive":43,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"grandchem.online","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"yastatic.net/partner-code-bundles/1305407/5479cdc6a7f04c32.js","fqdn":"yastatic.net","domain":"yastatic.net","tld":"net"},"ip":{"addr":"37.9.64.225","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://grandchem.online/","date":"2026-06-18T13:32:45.314Z","timestamp":1781789565314,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.yastatic-net.ru","organization":""},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 30 Apr 2026 11:34:07 GMT","end":"Wed, 28 Oct 2026 20:59:59 GMT"},"fingerprint":{"sha1":"14:F1:2A:10:FA:A0:C8:25:E4:FA:ED:1B:89:69:12:33:27:F7:15:83","sha256":"C4:5F:F3:D1:06:B5:27:D4:9D:32:12:86:B3:BF:A1:45:D4:C3:D0:F7:8C:1D:83:41:1D:52:97:A1:9F:EE:A2:79"}}},"request":{"raw":"GET /partner-code-bundles/1305407/5479cdc6a7f04c32.js HTTP/1.1\r\nHost: yastatic.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: http://grandchem.online\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://grandchem.online/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 18 Jun 2026 13:32:45 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 1772\r\ncache-control: public, max-age=946708560\r\nnel: {\"report_to\": \"network-errors\", \"max_age\": 7200, \"success_fraction\": 0.001, \"failure_fraction\": 0.01}\r\nstrict-transport-security: max-age=43200000; includeSubDomains;\r\nvary: Accept-Encoding\r\netag: \"e6d0d2193aa71d922943652b3af7a46e\"\r\nexpires: Sat, 17 Jun 2056 19:58:40 GMT\r\ncontent-encoding: br\r\ntiming-allow-origin: *\r\nreport-to: { \"group\": \"network-errors\", \"max_age\": 7200, \"endpoints\": [ { \"url\": \"https://dr.yandex.net/nel\"}]}\r\nlast-modified: Wed, 17 Jun 2026 15:51:44 GMT\r\naccess-control-allow-origin: *\r\nx-robots-tag: noindex, noarchive, nofollow\r\nx-strm-log-split: 7\r\nx-request-id: a52b84f0e0ab35ac\r\ncache-host: cloudcdn-rad-10.cdn.yandex.net\r\ncache-status: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4158,"size_decoded":2666,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (4119)","md5":"e47f5bb0553de1150df1d15d522d8c4b","sha1":"3c45aaa7f41e297419504cb7cbf5811c0ec415ec","sha256":"108f48033560c906c507f90ca822b2acd8936f4d0aa811a887bf12c0bd0c7b57","sha512":"bc10fb0e05e5f9e0398c1e87141009e3f50606fc4c93efd292ec5f01b96faf4219550b050f65d7e522f3ca36b9d55f1e8ff8727a060151e73665799fb77a2e21","ssdeep":"96:TwE8Osi264XfWRP5OPWiwY6dFecX75XiosPCxhtkkmaXYmSXbSTv1J0a2q2:Tt8e2oRP5OPJwYEXNpBYfQv1JzL2","tlshash":"df81d8ad3681327583c315e481bb9506f63e0d21980a7121f11d84523db5f9760eff9e","first_seen":"2026-06-18T08:19:56.636173Z","last_seen":"2026-06-19T07:34:29.709829Z","times_seen":36,"resource_available":true,"data":null}},"time_used":84,"timings":{"blocked":-1,"dns":0,"connect":14,"send":0,"wait":46,"receive":1,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2","fqdn":"yastatic.net","domain":"yastatic.net","tld":"net"},"ip":{"addr":"37.9.64.225","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://grandchem.online/","date":"2026-06-18T13:32:45.316Z","timestamp":1781789565316,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.yastatic-net.ru","organization":""},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 30 Apr 2026 11:34:07 GMT","end":"Wed, 28 Oct 2026 20:59:59 GMT"},"fingerprint":{"sha1":"14:F1:2A:10:FA:A0:C8:25:E4:FA:ED:1B:89:69:12:33:27:F7:15:83","sha256":"C4:5F:F3:D1:06:B5:27:D4:9D:32:12:86:B3:BF:A1:45:D4:C3:D0:F7:8C:1D:83:41:1D:52:97:A1:9F:EE:A2:79"}}},"request":{"raw":"GET /s3/home/fonts/ys/3/text-variable-full.woff2 HTTP/1.1\r\nHost: yastatic.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: http://grandchem.online/\r\nOrigin: http://grandchem.online\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 18 Jun 2026 13:32:45 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 26004\r\nexpires: Fri, 18 Jun 2027 19:04:57 GMT\r\naccess-control-allow-origin: *\r\nvary: Accept-Encoding\r\ntiming-allow-origin: *\r\netag: \"7f0cdaf91230f9789ca4162aedff612e\"\r\nreport-to: { \"group\": \"network-errors\", \"max_age\": 7200, \"endpoints\": [ { \"url\": \"https://dr.yandex.net/nel\"}]}\r\nnel: {\"report_to\": \"network-errors\", \"max_age\": 7200, \"success_fraction\": 0.001, \"failure_fraction\": 0.01}\r\ncache-control: public, max-age=31556952\r\nx-amz-meta-owner: {\"role\":\"admin\",\"login\":\"4eb0da\"}\r\nstrict-transport-security: max-age=43200000; includeSubDomains;\r\nlast-modified: Mon, 25 Apr 2022 14:02:39 GMT\r\nx-nginx-request-id: f6aec9e7e1ff9739\r\nx-strm-log-split: 2\r\nx-request-id: e0d743012b7255d2\r\ncache-host: cloudcdn-rad-10.cdn.yandex.net\r\ncache-status: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":26004,"size_decoded":26903,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 26004, version 1.0","md5":"7f0cdaf91230f9789ca4162aedff612e","sha1":"965de571aa794dab64076c3cc64dc8894b843f23","sha256":"033696b7f1ac04d1dcc102be84550e146236ceffc25a6cabc12aa51a6ee410b9","sha512":"444460846fa2bfddd7990c792c6fd8389c564b5c967b5cc10fb3717117c5424fa33f23f8c4cffefad176016a79be5557920908cc82f7942700a0fac71eefde36","ssdeep":"768:cBrkn2SWY48o/bS/qDzWhKnxy03RQD1K4Gzs:cBrKS8o2kKKxyKQD1K4Gzs","tlshash":"37c2d0a5e7112b92c93556a4f6cb4849bc25b0532c56f3825fa9af80344be8357efc3c","first_seen":"2023-04-05T11:29:19Z","last_seen":"2026-06-23T22:24:50.079046Z","times_seen":27538,"resource_available":false,"data":null}},"time_used":84,"timings":{"blocked":-1,"dns":0,"connect":14,"send":0,"wait":44,"receive":2,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yastatic.net/partner-code-bundles/libs/libs_render-033ae686.js","fqdn":"yastatic.net","domain":"yastatic.net","tld":"net"},"ip":{"addr":"37.9.64.225","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://grandchem.online/","date":"2026-06-18T13:32:45.324Z","timestamp":1781789565324,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.yastatic-net.ru","organization":""},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 30 Apr 2026 11:34:07 GMT","end":"Wed, 28 Oct 2026 20:59:59 GMT"},"fingerprint":{"sha1":"14:F1:2A:10:FA:A0:C8:25:E4:FA:ED:1B:89:69:12:33:27:F7:15:83","sha256":"C4:5F:F3:D1:06:B5:27:D4:9D:32:12:86:B3:BF:A1:45:D4:C3:D0:F7:8C:1D:83:41:1D:52:97:A1:9F:EE:A2:79"}}},"request":{"raw":"GET /partner-code-bundles/libs/libs_render-033ae686.js HTTP/1.1\r\nHost: yastatic.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: http://grandchem.online\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://grandchem.online/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 18 Jun 2026 13:32:45 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 45019\r\ncache-control: public, max-age=946708560\r\nreport-to: { \"group\": \"network-errors\", \"max_age\": 7200, \"endpoints\": [ { \"url\": \"https://dr.yandex.net/nel\"}]}\r\nx-robots-tag: noindex, noarchive, nofollow\r\nexpires: Sat, 17 Jun 2056 19:37:26 GMT\r\ntiming-allow-origin: *\r\nnel: {\"report_to\": \"network-errors\", \"max_age\": 7200, \"success_fraction\": 0.001, \"failure_fraction\": 0.01}\r\nstrict-transport-security: max-age=43200000; includeSubDomains;\r\netag: \"f0e84c9dc13c60b7f85fb5ec13d7117c\"\r\naccess-control-allow-origin: *\r\nvary: Accept-Encoding\r\nlast-modified: Tue, 26 May 2026 15:44:21 GMT\r\ncontent-encoding: br\r\nx-strm-log-split: 3\r\nx-request-id: 6b396c5a457c9c9c\r\ncache-host: cloudcdn-rad-10.cdn.yandex.net\r\ncache-status: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":249149,"size_decoded":45914,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65499)","md5":"d754269422d94f98d69252e63d2024cc","sha1":"2258f9d30e0785989a536f5fb220b6be68219328","sha256":"9858dd7119d0f2eccec9bfa316d4aa0f99b6ddef5e1320cd1722f735674bc6da","sha512":"e9956dc4f9326cb89b82cc774831de1656309a9423f2a764fd156944e9c2560d02f4ed9a049ba2770c97636ba1b568b4dcce303c81e305dd0d0254f917002028","ssdeep":"1536:dBD/fF6QaNTGIc7cX8qeLaAryfkEeOR66llyp23j4GOQ6ckUcWRxH4tEluKR1i0i:P5SGX7g8BYlyp2z2BWoy5Xix","tlshash":"9434c5e1863a0d1c1dea3142ea752c3e24662cc7d908cb6dee6f915fe544be4f38135a","first_seen":"2026-05-28T17:31:03.147441Z","last_seen":"2026-06-24T02:00:20.706478Z","times_seen":492,"resource_available":true,"data":null}},"time_used":53,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yastatic.net/partner-code-bundles/1305407/ba3cdb7c403520ff.js","fqdn":"yastatic.net","domain":"yastatic.net","tld":"net"},"ip":{"addr":"37.9.64.225","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://grandchem.online/","date":"2026-06-18T13:32:45.329Z","timestamp":1781789565329,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.yastatic-net.ru","organization":""},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 30 Apr 2026 11:34:07 GMT","end":"Wed, 28 Oct 2026 20:59:59 GMT"},"fingerprint":{"sha1":"14:F1:2A:10:FA:A0:C8:25:E4:FA:ED:1B:89:69:12:33:27:F7:15:83","sha256":"C4:5F:F3:D1:06:B5:27:D4:9D:32:12:86:B3:BF:A1:45:D4:C3:D0:F7:8C:1D:83:41:1D:52:97:A1:9F:EE:A2:79"}}},"request":{"raw":"GET /partner-code-bundles/1305407/ba3cdb7c403520ff.js HTTP/1.1\r\nHost: yastatic.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: http://grandchem.online\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://grandchem.online/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 18 Jun 2026 13:32:45 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 32443\r\nx-robots-tag: noindex, noarchive, nofollow\r\nvary: Accept-Encoding\r\nlast-modified: Wed, 17 Jun 2026 15:51:45 GMT\r\nstrict-transport-security: max-age=43200000; includeSubDomains;\r\naccess-control-allow-origin: *\r\nreport-to: { \"group\": \"network-errors\", \"max_age\": 7200, \"endpoints\": [ { \"url\": \"https://dr.yandex.net/nel\"}]}\r\ncache-control: public, max-age=946708560\r\ntiming-allow-origin: *\r\netag: \"79da98be06c61037b4ec6f61df00ad12\"\r\ncontent-encoding: br\r\nexpires: Sat, 17 Jun 2056 19:58:43 GMT\r\nnel: {\"report_to\": \"network-errors\", \"max_age\": 7200, \"success_fraction\": 0.001, \"failure_fraction\": 0.01}\r\nx-strm-log-split: 4\r\nx-request-id: 0c8b81220b7effa4\r\ncache-host: cloudcdn-rad-10.cdn.yandex.net\r\ncache-status: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":160873,"size_decoded":33338,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65493)","md5":"c566436e02ee307bc1f891caf9fb7aa0","sha1":"a3c9f084d1451cb967458153c075c3c8ca1a8dde","sha256":"0f72f378ae91a5df8d9234e47b7c25eccceeb1fa2e53df9a7d4ad617733ee3f3","sha512":"2d153acc6405acb29badb93a67ea4fda316f54e05ca6fdc4cc8f7423674cf86c49d0d163c35f2ae95c33dcd4c030ca04c579b6f78dca42fb535f6df71aa9c2bb","ssdeep":"3072:GogjYLBYH7lD3XxPQpwbFhTPTWaLUeWBWv8gocioJAGhXau10Kw1Pnu3kRdpNZa2:GogWYblD3XxPQpwbFhTPTWaLUeWBWv8f","tlshash":"cef3c78db2e1b47142d7a0f5503f6a0af23a6459a4098094f72de9e16fb898f4137f3d","first_seen":"2026-06-18T08:19:56.609597Z","last_seen":"2026-06-19T07:34:29.712644Z","times_seen":37,"resource_available":true,"data":null}},"time_used":72,"timings":{"blocked":19,"dns":0,"connect":0,"send":0,"wait":48,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/manifest.js","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://grandchem.online/","date":"2026-06-18T13:32:44.294Z","timestamp":1781789564294,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /manifest.js HTTP/1.1\r\nHost: grandchem.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://grandchem.online/\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 18 Jun 2026 13:32:44 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 4278\r\nLast-Modified: Fri, 11 Oct 2024 12:21:32 GMT\r\nConnection: keep-alive\r\nETag: \"6709184c-10b6\"\r\nExpires: Sat, 12 Oct 2024 12:21:32 GMT\r\nCache-Control: no-cache\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4278,"size_decoded":4589,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (4278), with no line terminators","md5":"d276783c3eff75365ec2af2eb275b4dc","sha1":"13be1a62346242bc92b7b2d61cbfc54556d69505","sha256":"c1e2076faa42b9dabb88ded60783c45dca8163ecc05cb63b375275b67bb82edb","sha512":"21f9b5025cf0f942c04f315a01dfad3148e525328e8162ef6256f234085f43cf7f627efd0aeedc241ff7e45efaad4ecd041d8fbfbe62a36d475789eed85a3d87","ssdeep":"96:9s2RDpVjtVzQuHLn6h7u1ixk8LDk1y7VAU20Jc8De+/:9Dp7Vrrn6h7u187VbMa","tlshash":"8c91b7ba2354e5bb269009d05a2ed197fa157037252b94f0ab1bdc76f87cec08466b70","first_seen":"2024-10-13T12:37:54.659345Z","last_seen":"2026-06-23T08:02:15.254814Z","times_seen":2549,"resource_available":true,"data":null}},"time_used":80,"timings":{"blocked":-1,"dns":0,"connect":40,"send":0,"wait":40,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"grandchem.online","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"grandchem.online/head-scripts.js","fqdn":"grandchem.online","domain":"grandchem.online","tld":"online"},"ip":{"addr":"194.58.112.174","port":80,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://grandchem.online/","date":"2026-06-18T13:32:44.297Z","timestamp":1781789564297,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /head-scripts.js HTTP/1.1\r\nHost: grandchem.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://grandchem.online/\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 18 Jun 2026 13:32:44 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 19126\r\nLast-Modified: Mon, 01 Dec 2025 15:17:11 GMT\r\nConnection: keep-alive\r\nETag: \"692db177-4ab6\"\r\nContent-Encoding: gzip\r\nExpires: Tue, 02 Dec 2025 15:17:11 GMT\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":85185,"size_decoded":19440,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (1406)","md5":"8e2d9b76e9458363d6f965e0f4270960","sha1":"cf4eda3788fc9b76ab694233838018075713e1a6","sha256":"951819b4acc883fa5e8e3bf3ade8bf32e79bc7895de07f2665097b8c15ccb748","sha512":"37a79eeb3bc0b14c36e2ef6e836a37a511141c2265076c8f51f15477e166995c0462c1f1c610ac31980f1d1d89abc460a80fecbb3066a6e221ac4019a0b84870","ssdeep":"768:hZgOQuhhf/wNvdVnR4I/6rorELrKN260RJB9:X3l9/wlRCMUrp","tlshash":"be839344faf0aea51679a111b36bc4c3f967425090e3841466cef9e4ec6f53e71a3b2c","first_seen":"2024-10-13T12:37:54.663849Z","last_seen":"2026-06-23T08:02:15.255845Z","times_seen":2538,"resource_available":true,"data":null}},"time_used":129,"timings":{"blocked":-1,"dns":0,"connect":43,"send":0,"wait":43,"receive":43,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"grandchem.online","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"files.reg.ru/fonts/inter/Inter-Regular.woff2","fqdn":"files.reg.ru","domain":"reg.ru","tld":"ru"},"ip":{"addr":"194.67.72.33","port":443,"asn":197695,"as":"Domain names registrar REG.RU, Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://grandchem.online/","date":"2026-06-18T13:32:44.491Z","timestamp":1781789564491,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.reg.ru","organization":""},"issuer":{"commonName":"GlobalSign GCC R6 AlphaSSL CA 2025","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 24 Mar 2026 10:56:31 GMT","end":"Fri, 09 Oct 2026 10:56:31 GMT"},"fingerprint":{"sha1":"DB:56:E3:C0:A3:22:98:B6:7A:BB:9D:E2:65:D1:38:1D:AF:24:B5:8C","sha256":"F2:E9:10:F2:BF:5E:6B:A8:94:03:EC:C0:5A:56:25:D8:41:55:BF:82:DA:87:DE:A9:24:F0:8C:68:B6:ED:A5:99"}}},"request":{"raw":"GET /fonts/inter/Inter-Regular.woff2 HTTP/1.1\r\nHost: files.reg.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: http://grandchem.online\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://grandchem.online/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 18 Jun 2026 13:32:44 GMT\r\ncontent-length: 98868\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: http://grandchem.online\r\naccess-control-expose-headers: Date, Etag, Server, Connection, Accept-Ranges, Content-Range, Content-Encoding, Content-Length, Content-Type, Content-Disposition, Last-Modified, Content-Language, Cache-Control, Retry-After, X-Amz-Bucket-Region, Expires, X-Amz*, X-Amz*, *\r\ncontent-security-policy: block-all-mixed-content\r\netag: \"dc131113894217b5031000575d9de002\"\r\nlast-modified: Tue, 25 Oct 2022 11:42:32 GMT\r\nvary: Accept-Encoding, Origin\r\nx-xss-protection: 1; mode=block\r\nx-amz-meta-mtime: 1666084006\r\nx-request-id: 49b4b99fab74c122ffa9a80c00b6918f\r\nexpires: Wed, 09 Jun 2027 13:32:44 GMT\r\ncache-control: max-age=30758400\r\nContent-Type: font/woff2,font/woff2\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":98868,"size_decoded":99756,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 98868, version 1.0","md5":"dc131113894217b5031000575d9de002","sha1":"f96348260751ea78b1d23e9557db297290bdaf28","sha256":"d612f1212b452af07f1a5defb2b672e76a91f7139e7499fa48bb9b2b985c22d6","sha512":"0aa4420c7b7dcc70238371f9d21d521d0673caf4c1883eeb2d3254c5a1dad941f4569f418350ffc61e93303466c504179b90ba0acf008250dc9c2c6ddf6f850b","ssdeep":"1536:kWKd1QBjcSqfPdRBUJEW8yB7F2W4Ob2RdFoEw1r4FM9OcU/0UDTTj:m10zEWfB7GObYof1r5icUH","tlshash":"70a312ac58ffdf34aa65a9fcd27856761094223d83edc0ac90a200c6c7b65794fdcd98","first_seen":"2023-04-05T14:51:38Z","last_seen":"2026-06-24T01:01:33.947978Z","times_seen":23886,"resource_available":false,"data":null}},"time_used":399,"timings":{"blocked":-1,"dns":3,"connect":44,"send":0,"wait":47,"receive":130,"ssl":175},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yastatic.net/partner-code-bundles/libs/libs-033ae686.js","fqdn":"yastatic.net","domain":"yastatic.net","tld":"net"},"ip":{"addr":"37.9.64.225","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://grandchem.online/","date":"2026-06-18T13:32:45.310Z","timestamp":1781789565310,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.yastatic-net.ru","organization":""},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 30 Apr 2026 11:34:07 GMT","end":"Wed, 28 Oct 2026 20:59:59 GMT"},"fingerprint":{"sha1":"14:F1:2A:10:FA:A0:C8:25:E4:FA:ED:1B:89:69:12:33:27:F7:15:83","sha256":"C4:5F:F3:D1:06:B5:27:D4:9D:32:12:86:B3:BF:A1:45:D4:C3:D0:F7:8C:1D:83:41:1D:52:97:A1:9F:EE:A2:79"}}},"request":{"raw":"GET /partner-code-bundles/libs/libs-033ae686.js HTTP/1.1\r\nHost: yastatic.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: http://grandchem.online\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://grandchem.online/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 18 Jun 2026 13:32:45 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 3886\r\nreport-to: { \"group\": \"network-errors\", \"max_age\": 7200, \"endpoints\": [ { \"url\": \"https://dr.yandex.net/nel\"}]}\r\nexpires: Sat, 17 Jun 2056 19:16:48 GMT\r\netag: \"556781190b14c63983c333fb72e695d7\"\r\nnel: {\"report_to\": \"network-errors\", \"max_age\": 7200, \"success_fraction\": 0.001, \"failure_fraction\": 0.01}\r\naccess-control-allow-origin: *\r\nx-robots-tag: noindex, noarchive, nofollow\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=43200000; includeSubDomains;\r\ntiming-allow-origin: *\r\ncontent-encoding: br\r\ncache-control: public, max-age=946708560\r\nlast-modified: Tue, 26 May 2026 15:44:21 GMT\r\nx-strm-log-split: 0\r\nx-request-id: 9ef07cec299b9728\r\ncache-host: cloudcdn-rad-10.cdn.yandex.net\r\ncache-status: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9232,"size_decoded":4780,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (9202)","md5":"8e28de8572712134d1bc4a77e52bafe5","sha1":"dea7f17d1a27bb63cb09902e4e21ad59809f2480","sha256":"4cb8e701d93fbf469464d6711bf8aec61ea16595a804ee56d926e999ae12920a","sha512":"0699663a24d534849484ec03b3f2cebf8ea5dd856d9c0760de18332920aa940d097ac8edf246fe153ac91cd1d9c06c9ca04994f654f39a7297032d3847dcef74","ssdeep":"192:iHFHNNSZkrXmgldEq88LX15yvOYq7YLYIP3qt4MV+9XE:iHFn8CX+q8Y1yqcsLWMQ9XE","tlshash":"8a12d9f932a1b8c012f669c1085f557b01ba7e07b90e255b472659927d240ce60f2fef","first_seen":"2026-05-27T08:51:43.706545Z","last_seen":"2026-06-24T02:00:20.710057Z","times_seen":1333,"resource_available":true,"data":null}},"time_used":53,"timings":{"blocked":-1,"dns":0,"connect":15,"send":0,"wait":14,"receive":0,"ssl":24},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yastatic.net/safeframe-bundles/0.86/host.js","fqdn":"yastatic.net","domain":"yastatic.net","tld":"net"},"ip":{"addr":"37.9.64.225","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://grandchem.online/","date":"2026-06-18T13:32:45.328Z","timestamp":1781789565328,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.yastatic-net.ru","organization":""},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 30 Apr 2026 11:34:07 GMT","end":"Wed, 28 Oct 2026 20:59:59 GMT"},"fingerprint":{"sha1":"14:F1:2A:10:FA:A0:C8:25:E4:FA:ED:1B:89:69:12:33:27:F7:15:83","sha256":"C4:5F:F3:D1:06:B5:27:D4:9D:32:12:86:B3:BF:A1:45:D4:C3:D0:F7:8C:1D:83:41:1D:52:97:A1:9F:EE:A2:79"}}},"request":{"raw":"GET /safeframe-bundles/0.86/host.js HTTP/1.1\r\nHost: yastatic.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: http://grandchem.online\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://grandchem.online/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 18 Jun 2026 13:32:45 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 11859\r\nexpires: Sat, 17 Jun 2056 19:49:59 GMT\r\ncache-control: public, max-age=946708560\r\nreport-to: { \"group\": \"network-errors\", \"max_age\": 7200, \"endpoints\": [ { \"url\": \"https://dr.yandex.net/nel\"}]}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=43200000; includeSubDomains;\r\ntiming-allow-origin: *\r\netag: \"1765ad3fd42c70f5a01e089622a4a7bf\"\r\naccess-control-allow-origin: *\r\ncontent-encoding: br\r\nnel: {\"report_to\": \"network-errors\", \"max_age\": 7200, \"success_fraction\": 0.001, \"failure_fraction\": 0.01}\r\nlast-modified: Tue, 16 Jun 2026 14:09:58 GMT\r\nx-robots-tag: noindex, noarchive, nofollow\r\nx-strm-log-split: 8\r\nx-request-id: b557c73e9387e4d9\r\ncache-host: cloudcdn-rad-10.cdn.yandex.net\r\ncache-status: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":49449,"size_decoded":12754,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (49449), with no line terminators","md5":"3ad08f4c1fa9586b9199af6c10d9fadc","sha1":"15131d3c1a1c9f9f2eddacac6c9c1ebdee40605f","sha256":"0f873f453c7e3c49cb1d561a7993dfc4f41238e0dcd78165c6f0bd0530ee3bd8","sha512":"88d3af361ff7c72fffedcc3650c0bd5a5e21e140f4cfd6dd5368d3a84eed38fd79f37cf7236e1854d1fbe3e4ce6d5d2a238f4b6e17fcced06818a762a3bb19e3","ssdeep":"768:r3gRk8LqR60Uta+vPG6lLJTrzCLLV/1vjWcPykZkG:r3skAbA+ve6p4LqclZF","tlshash":"a423c8ef3195b8b502c3a0b4443f220ea33b592564199484b327d8e5bd36acf5167fbe","first_seen":"2026-06-16T15:52:39.218435Z","last_seen":"2026-06-24T02:00:20.710583Z","times_seen":213,"resource_available":true,"data":null}},"time_used":67,"timings":{"blocked":19,"dns":0,"connect":0,"send":0,"wait":48,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}