{"report_id":"5764ceb1-2a3e-44c6-8401-707a6a836455","version":6,"status":"done","tags":[],"date":"2026-02-25T18:25:06Z","url":{"schema":"http","addr":"vdvetrm.ru","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":0,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"final":{"url":{"schema":"https","addr":"vdvetrm.ru/","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"title":"vdvetrm.ru/","dom":{"size":29512,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (15232)","md5":"906645f5e5b2eef4bb6783e2af6deed7","sha1":"05daa136fa0f6ce40263bb7a1e82f60abb247824","sha256":"646d8d3f842657169838d8e1ff04fda5794bffc99b56bc5c1686ce6590d64f78","sha512":"98f2837d0092551d15eb78d5a2b4e6065efb3aaec7f04275a1450b245bd5bbb9ea53bfab28b073c6e598df5b9f99a7e8d7daee46090ed03e7020a7460fe499a1","ssdeep":"768:nGXZl72OgP4b+3qE9ZtSnQO4QhVH7puFVlWKGKB1a:nGXZl72OgY+aGOnN4Qht7purlWKGga","tlshash":"82d26c2bd9c7107b36026094ee457649aec5897fbc475c2137ddaaee2fd6a90c923308","dom_hash":"domhasha045fe0eb13183e389653ab75bb63e17","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"vdvetrm.ru","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":0,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-01T18:25:06Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"secur-kfeu9whfg8w2g3rfunifuihg87y.avocadodevelopers.cc","ip":{"addr":"104.21.17.223","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-12-27","domain_rank":0,"first_seen":"2026-02-25T00:54:55.480171Z","last_seen":"2026-02-25T00:54:55.480171Z","alert_count":0,"request_count":1,"received_data":1629,"sent_data":485,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]},{"fqdn":"vdvetrm.ru","ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"domain_registered":"2026-02-23","domain_rank":0,"first_seen":"2026-02-25T00:54:55.478787Z","last_seen":"2026-02-25T00:54:55.478787Z","alert_count":20,"request_count":20,"received_data":1074505,"sent_data":11654,"comment":"","tags":null,"fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"vdvetrm.ru/","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":true,"md5":"d81db283326811618b7353fb2e2e0a07","sha1":"6463e4dbb765bb51d389cfe1826bdc713cdf16e7","sha256":"e9e225a9409f1106ed106372d2fec56f261b4d782da2eac7f342bf3fb6924deb","sha512":"5639b3d38a23b264f333a0295d72a84d88181510329244bea3b0dafebc8adf783e91e71fa9a82d2f78ec96c4e04c687ad04b2f7d2dc3ccd2a3c46041abd4a3fd","ssdeep":"","tlshash":"88f005953ced44288377016527fb9148743969292c0afd15f54cc4412f59eed14fb54c","size":538,"data":"","first_seen":"2026-02-25T18:25:08.875527Z","last_seen":"2026-02-25T18:25:08.875527Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":true,"md5":"ebdb6da2c5b8bbe3f6ba066ba975895b","sha1":"a9b8dfc03f2451b67a35e46705ef80d07d7a120c","sha256":"1c40d9038ba32e18774f2dcb68a01bfb378e89f069d53b8d43fbb579e8f45ed6","sha512":"91d744f19ac9692aedc821a19042a43fdf9a9891afb9c86b2d91a979145e41b7b1446808a7f2cb0d1e384a4ece85120c69ff812282377a1d4b4377c622ee19bb","ssdeep":"","tlshash":"58600033300c0003cc0c0c0300c00c0000c0003c000ccc303000f00c0f0000fc30c3c0","size":15,"data":"","first_seen":"2025-11-07T18:36:06.466308Z","last_seen":"2026-03-19T12:19:34.895414Z","times_seen":235,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":true,"md5":"3d76434440217651dbfe53beeb2be350","sha1":"fddcc91b4ad719494a039ae028a7760024d9fdbd","sha256":"b02eac6ed7442daddbe9d8358341d39a4a5042c30cc9af42b253ce4db78fedbf","sha512":"0fcfc094c4a9d99329dad04bd28d5d05806fbc95f91aefd960d02a57767bab11eddc7c8eb9a0041983beae313bf4137cf396cb1dc4701a0864b5108ff1e41e51","ssdeep":"","tlshash":"e111d4b9724474616e96a069576bd08ddabf23120cde4d1049036a948b34b2acfd5e68","size":939,"data":"","first_seen":"2026-02-25T00:54:58.632673Z","last_seen":"2026-03-19T12:19:34.896201Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"secur-kfeu9whfg8w2g3rfunifuihg87y.avocadodevelopers.cc/get.php?site=vdvetrm.ru","fqdn":"secur-kfeu9whfg8w2g3rfunifuihg87y.avocadodevelopers.cc","domain":"avocadodevelopers.cc","tld":"cc"},"ip":{"addr":"104.21.17.223","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vdvetrm.ru/","date":"2026-02-25T18:24:48.198Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avocadodevelopers.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Feb 2026 14:34:35 GMT","end":"Mon, 25 May 2026 15:32:17 GMT"},"fingerprint":{"sha1":"EC:58:74:51:6D:59:3D:84:2A:2B:E1:D5:5E:61:C8:44:0E:FA:BB:37","sha256":"0B:3A:9B:A8:58:A7:12:4B:98:3F:8D:8D:2C:64:03:59:82:12:E2:B0:F1:F9:41:B8:62:AE:52:CA:1A:D7:10:70"}}},"request":{"raw":"GET /get.php?site=vdvetrm.ru HTTP/1.1\r\nHost: secur-kfeu9whfg8w2g3rfunifuihg87y.avocadodevelopers.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vdvetrm.ru/\r\nOrigin: https://vdvetrm.ru\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 25 Feb 2026 18:24:48 GMT\r\ncontent-type: text/html; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: PHPSESSID=761s1l4tpm2ocmb2bpnsvg0gl6; path=/\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\nvary: Accept-Encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5nc3fLtdoIflC6LvBj11MlRJpzQZ25XZ%2BrL6r9i9w3lC4puXH3B2huc6EaaxirMeY3QMSEX6UjFrbHuTVQBmzLXr%2FUo9fygqGzSYw8FTEftygVDfmb6wR6EwZe4Q%2F4TV9yjYA474sKYgaLZyDGgF389w9ePexQ%3D%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9d393dddc824de5f-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":717,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"815d97f6b38de075e255236163e2f473","sha1":"4fc976df28259ed05abf8c8a75537d2288c5f99e","sha256":"4d9add903cefcefc4838da72f62ef088726e44b9f44c639327d3ad505cf3a271","sha512":"b48f0e65ecd0bcb8993d82f735fd3c9397cb05a469f5665a22e5ba70d544f71701c862be94d955a2e559b3d321fd2c2f37e7eae1e4d5314bad2e091600799eb4","ssdeep":"","tlshash":"e801fcb6d387a96d8603b194cc04765ea893127f6cf768d110d0384bb4bd7a0ca4a34e","first_seen":"2026-02-25T00:54:58.627753Z","last_seen":"2026-02-25T18:25:08.855364Z","times_seen":2,"resource_available":false,"data":null}},"time_used":290,"timings":{"blocked":81,"dns":43,"connect":10,"send":0,"wait":127,"receive":0,"ssl":26},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/pbnlink.html?_=1772043888440","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vdvetrm.ru/","date":"2026-02-25T18:24:48.447Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdvetrm.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 16:26:38 GMT","end":"Sun, 24 May 2026 16:26:37 GMT"},"fingerprint":{"sha1":"D4:3B:76:EB:EF:8C:8D:40:08:04:9D:C9:4B:5E:DD:F5:85:CC:60:D9","sha256":"14:42:8E:55:FB:C5:62:9E:4C:76:1E:02:D7:7A:91:CE:BC:9C:6D:0E:E3:C1:44:90:E1:B6:B9:41:FB:79:DC:49"}}},"request":{"raw":"GET /pbnlink.html?_=1772043888440 HTTP/1.1\r\nHost: vdvetrm.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vdvetrm.ru/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __ddg8_=8ZsnEoroZweL023B; __ddg10_=1772043885; __ddg9_=91.90.42.154; __ddg1_=96UxhaF2l6HheMeoxOXK\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=sxYj6dAz2nuU6yKt; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:48 GMT\n__ddg10_=1772043888; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:48 GMT\n__ddg9_=91.90.42.154; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:48 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Wed, 25 Feb 2026 18:24:49 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nreferer: https://vdvetrm.ru/\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":5439,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with CRLF line terminators","md5":"1c9c7156ca6ffdad467b9e7185a86e76","sha1":"d233b934f0a0863efd761c04daa55a1c75be597d","sha256":"4cb57e50649c59fe71960b56ceb7a741778f9b3f20686edfe7c3edda0883f38f","sha512":"bcb35c4e083a0f6d4f6608f8738af64a74a2ffafc2c8bb80972f8c749746cbf7df59cfa3214543b3471da494d29bd73a19c1073b9d49faa00aea13ff2c711ade","ssdeep":"48:tTX49YoQGEbqiUZ5KX8zotiXttPIv4WBf31lBKCmpKJk:ZVnGiUzPoMC4WBP1jbJk","tlshash":"55b12015d64a14423232d2a86f925f1aff8a8173d70645257bdc23ab0ff796486a3bcc","first_seen":"2026-02-25T18:25:08.856211Z","last_seen":"2026-02-25T18:25:08.856211Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1601,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1601,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/pbn_save.php","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vdvetrm.ru/","date":"2026-02-25T18:24:50.052Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdvetrm.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 16:26:38 GMT","end":"Sun, 24 May 2026 16:26:37 GMT"},"fingerprint":{"sha1":"D4:3B:76:EB:EF:8C:8D:40:08:04:9D:C9:4B:5E:DD:F5:85:CC:60:D9","sha256":"14:42:8E:55:FB:C5:62:9E:4C:76:1E:02:D7:7A:91:CE:BC:9C:6D:0E:E3:C1:44:90:E1:B6:B9:41:FB:79:DC:49"}}},"request":{"raw":"POST /pbn_save.php HTTP/1.1\r\nHost: vdvetrm.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vdvetrm.ru/\r\nContent-Type: application/x-www-form-urlencoded\r\nContent-Length: 1520\r\nOrigin: https://vdvetrm.ru\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __ddg8_=sxYj6dAz2nuU6yKt; __ddg10_=1772043888; __ddg9_=91.90.42.154; __ddg1_=96UxhaF2l6HheMeoxOXK\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":1520,"data":"key=hu8qr0gh8nicevewr\u0026html=%3Ca%20href%3D%22https%3A%2F%2F03magadan.ru%22%3E%D0%BA%D1%80%D0%B0%D0%BA%D0%B5%D0%BD%20%D0%B2%D1%85%D0%BE%D0%B4%20%D1%81%D1%81%D1%8B%D0%BB%D0%BA%D0%B0%3C%2Fa%3E%0A%3Ca%20href%3D%22https%3A%2F%2Fforum.zane-rp.ru%22%3E%D0%BA%D1%80%D0%B0%D0%BA%D0%B5%D0%BD%20%D0%BC%D0%B0%D1%80%D0%BA%D0%B5%D1%82%D0%BF%D0%BB%D0%B5%D0%B9%D1%81%20%D1%87%D1%82%D0%BE%3C%2Fa%3E%0A%3Ca%20href%3D%22https%3A%2F%2Fkraken-sale.ru%2Fkraken-zerkalo-internet-magazin-kraba.html%22%20class%3D%22btn-manual%22%3E%D0%9A%D1%80%D0%B0%D0%BA%D0%B5%D0%BD%20%D0%B7%D0%B5%D1%80%D0%BA%D0%B0%D0%BB%D0%BE%20%D0%B8%D0%BD%D1%82%D0%B5%D1%80%D0%BD%D0%B5%D1%82%20%D0%BC%D0%B0%D0%B3%D0%B0%D0%B7%D0%B8%D0%BD%20%D0%BA%D1%80%D0%B0%D0%B1%D0%B0%3C%2Fa%3E%0A%3Ca%20href%3D%22https%3A%2F%2Fpolice-club.ru%22%3E%D0%BA%D1%83%D0%BF%D0%B8%D1%82%D1%8C%20%D0%BD%D0%B0%D1%80%D0%BA%D0%BE%D1%82%D0%B8%D0%BA%D0%B8%20%D0%B2%20%D0%BC%D0%BE%D1%81%D0%BA%D0%B2%D0%B5%3C%2Fa%3E%0A%3Ca%20href%3D%22https%3A%2F%2Fuaz-design.ru%22%3E%D0%BA%D0%B0%D0%BA%20%D0%B7%D0%B0%D0%B9%D1%82%D0%B8%20%D0%BD%D0%B0%20%D0%BA%D1%80%D0%B0%D0%BA%D0%B5%D0%BD%3C%2Fa%3E%0A%3Ca%20href%3D%22https%3A%2F%2Fyour-perfection.ru%2Findex.php%3F%2Ftopic%2F64-kraken-%25D0%25BE%25D1%2584%25D0%25B8%25D1%2586%25D0%25B8%25D0%25B0%25D0%25BB%25D1%258C%25D0%25BD%25D1%258B%25D0%25B5-%25D1%2581%25D1%2581%25D1%258B%25D0%25BB%25D0%25BA%25D0%25B8-%25D0%25BD%25D0%25B0-%25D1%2581%25D0%25B0%25D0%25B9%25D1%2582%2F%22%3E%D0%BA%D1%80%D0%B0%D0%BA%D0%B5%D0%BD%20%D0%BC%D0%B0%D0%B3%D0%B0%D0%B7%D0%B8%D0%BD%3C%2Fa%3E"}},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=YZ1Wa4Xx7Ni6qTSw; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:50 GMT\n__ddg10_=1772043890; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:50 GMT\n__ddg9_=91.90.42.154; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:50 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Wed, 25 Feb 2026 18:24:50 GMT\r\ncontent-type: text/html\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-08T12:35:54.183972Z","times_seen":524048,"resource_available":true,"data":null}},"time_used":261,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/templates/KRAKEN_CAP/styles/style.css","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vdvetrm.ru/","date":"2026-02-25T18:24:45.557Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdvetrm.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 16:26:38 GMT","end":"Sun, 24 May 2026 16:26:37 GMT"},"fingerprint":{"sha1":"D4:3B:76:EB:EF:8C:8D:40:08:04:9D:C9:4B:5E:DD:F5:85:CC:60:D9","sha256":"14:42:8E:55:FB:C5:62:9E:4C:76:1E:02:D7:7A:91:CE:BC:9C:6D:0E:E3:C1:44:90:E1:B6:B9:41:FB:79:DC:49"}}},"request":{"raw":"GET /templates/KRAKEN_CAP/styles/style.css HTTP/1.1\r\nHost: vdvetrm.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdvetrm.ru/\r\nCookie: __ddg8_=9WYR4oI03KbTUo3O; __ddg10_=1772043884; __ddg9_=91.90.42.154; __ddg1_=96UxhaF2l6HheMeoxOXK\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=8ZsnEoroZweL023B; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\n__ddg10_=1772043885; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\n__ddg9_=91.90.42.154; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Wed, 25 Feb 2026 18:24:45 GMT\r\ncontent-type: text/css; charset=utf-8\r\netag: W/922988559\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nage: 6\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":7386,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with CRLF line terminators","md5":"e64a2c9536d74438497f49d7546dd238","sha1":"72f60e5616ce747a758e77056b1e9f35d5caf1fb","sha256":"b5f2f5b8acc41af5d1e493354718795990ecd36bfa05e02471546976c4c71b7e","sha512":"6fbb19853c1eea122f4ed7bffa1fbb138179897b343006a20c328f18cad24803381d10d62103218977a67154fb4f8bd0c133718729230d7ff54e7d41f31d95b4","ssdeep":"192:hVvIgYSG+I1dzTMsD7eLJu5f7wJCs52obc1pfutK:v+fP","tlshash":"2ee1bc49a6052005a2b3a97cbbb20b14eb6544635b8b91f979ec9348cff907942a1fdc","first_seen":"2023-07-05T20:50:20Z","last_seen":"2026-03-19T12:19:34.881959Z","times_seen":746,"resource_available":false,"data":null}},"time_used":2407,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2407,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/PARSE/DATA/IMAGES/15189605031_hydra2web-com-vhod-na-gidra-sajt.jpg","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdvetrm.ru/","date":"2026-02-25T18:24:45.566Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdvetrm.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 16:26:38 GMT","end":"Sun, 24 May 2026 16:26:37 GMT"},"fingerprint":{"sha1":"D4:3B:76:EB:EF:8C:8D:40:08:04:9D:C9:4B:5E:DD:F5:85:CC:60:D9","sha256":"14:42:8E:55:FB:C5:62:9E:4C:76:1E:02:D7:7A:91:CE:BC:9C:6D:0E:E3:C1:44:90:E1:B6:B9:41:FB:79:DC:49"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/15189605031_hydra2web-com-vhod-na-gidra-sajt.jpg HTTP/1.1\r\nHost: vdvetrm.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdvetrm.ru/\r\nCookie: __ddg8_=9WYR4oI03KbTUo3O; __ddg10_=1772043884; __ddg9_=91.90.42.154; __ddg1_=96UxhaF2l6HheMeoxOXK\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=HQPmpn5UjI2estiX; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\n__ddg10_=1772043885; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\n__ddg9_=91.90.42.154; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Wed, 25 Feb 2026 18:24:45 GMT\r\ncontent-type: image/jpeg\r\netag: W/1892413793\r\nage: 3\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":48714,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"f8c2c30300f67dbf72c1a28e93c02a38","sha1":"3b345d99b42f0a24ef24686149c57423a043f453","sha256":"3aa9c94cab8f33d4cd22515b9e5ac904e74e1b1e7f86acec3eb2b2c3f5704aaf","sha512":"22fdf59d0b671696751fc35f293f6caad7a349dcdf9cf1e18a6fdd159f2127365806d644ece808962565e9d9c6b0d809d5bfc409ca18c6e804a2e710c9f978fe","ssdeep":"768:Sx5oZWB+t3jfCEHhgu85Rj08RkNhBbQYeWYq0+5EccTHdsa064Zyj8Ulu9IoKwWY:SksM55HStjrYbQ3qYco9hIRWXoX","tlshash":"4623f14711667486fc1c71a6d86642bca3b18b7ef6e736b11a61afee7b00c1a5f4013c","first_seen":"2026-02-25T18:25:08.858497Z","last_seen":"2026-02-25T18:25:08.858497Z","times_seen":1,"resource_available":false,"data":null}},"time_used":477,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":477,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/PARSE/DATA/IMAGES/66863ad9a7eab3eff43e93d944e0d34d7db4361e.jpg","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdvetrm.ru/","date":"2026-02-25T18:24:45.570Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdvetrm.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 16:26:38 GMT","end":"Sun, 24 May 2026 16:26:37 GMT"},"fingerprint":{"sha1":"D4:3B:76:EB:EF:8C:8D:40:08:04:9D:C9:4B:5E:DD:F5:85:CC:60:D9","sha256":"14:42:8E:55:FB:C5:62:9E:4C:76:1E:02:D7:7A:91:CE:BC:9C:6D:0E:E3:C1:44:90:E1:B6:B9:41:FB:79:DC:49"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/66863ad9a7eab3eff43e93d944e0d34d7db4361e.jpg HTTP/1.1\r\nHost: vdvetrm.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdvetrm.ru/\r\nCookie: __ddg8_=9WYR4oI03KbTUo3O; __ddg10_=1772043884; __ddg9_=91.90.42.154; __ddg1_=96UxhaF2l6HheMeoxOXK\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=H1ZheCxtd67F2Oof; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:46 GMT\n__ddg10_=1772043886; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:46 GMT\n__ddg9_=91.90.42.154; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:46 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Wed, 25 Feb 2026 18:24:46 GMT\r\ncontent-type: image/jpeg\r\netag: W/31823428\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":242632,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1200x1600, components 3","md5":"7f1fd51c826ee1c19c16106b8c094948","sha1":"66863ad9a7eab3eff43e93d944e0d34d7db4361e","sha256":"64aa007d84c9a15b53ce7a1c26f3538bccd785a2e7ff1d27dd1bd93102675017","sha512":"6130b1e567359278bd3df06a27893b9b9dec678466dee9f16857f9402cc0fb1d5ccc6bda25088a410192768d1e945610dac9d607afaf076660404af7d67a3a47","ssdeep":"6144:Aasmd51ACPQEJVcQbhpW4MsfFYnIn8ztedYINBTXCowbfZ8:QE1ACPJVcQtYPyFYXtedfBTdwrS","tlshash":"883422002a994395d9f8ff34a198b32b8832ddf6b120411e99b0e926cfed377db17446","first_seen":"2026-02-25T18:25:08.859487Z","last_seen":"2026-02-25T18:25:08.859487Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1357,"timings":{"blocked":898,"dns":0,"connect":0,"send":0,"wait":459,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/templates/KRAKEN_CAP/img/favicon.ico","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdvetrm.ru/","date":"2026-02-25T18:24:49.374Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdvetrm.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 16:26:38 GMT","end":"Sun, 24 May 2026 16:26:37 GMT"},"fingerprint":{"sha1":"D4:3B:76:EB:EF:8C:8D:40:08:04:9D:C9:4B:5E:DD:F5:85:CC:60:D9","sha256":"14:42:8E:55:FB:C5:62:9E:4C:76:1E:02:D7:7A:91:CE:BC:9C:6D:0E:E3:C1:44:90:E1:B6:B9:41:FB:79:DC:49"}}},"request":{"raw":"GET /templates/KRAKEN_CAP/img/favicon.ico HTTP/1.1\r\nHost: vdvetrm.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdvetrm.ru/\r\nCookie: __ddg8_=6uDkwWk8HaOB8OFQ; __ddg10_=1772043888; __ddg9_=91.90.42.154; __ddg1_=96UxhaF2l6HheMeoxOXK\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=ttFPv0fdWil3lEEr; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:49 GMT\n__ddg10_=1772043889; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:49 GMT\n__ddg9_=91.90.42.154; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:49 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Wed, 25 Feb 2026 18:24:49 GMT\r\ncontent-type: image/x-icon\r\netag: W/3911617534\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\nage: 6\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":1150,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel","md5":"8b49caf1ff0717a2b01e3da803e2ef2a","sha1":"90b0e92c2251150d6b5d1038842208f9ceeb407f","sha256":"2c195444f7cb1c9023cf1ca7c0d52cb6d116d22b4c96453b12ca356daf77cb65","sha512":"0c9066de2f26a1e9b35a117ab625f00a832d075d4b9683706566a9798633fa9de6f1c33763db4df550597d194af1b9dd0e6bfff798514e39faf97862d758743a","ssdeep":"","tlshash":"b32197cdbb20dc1de54ad0728086c2a2123a7859862a100ff0cd793b3b550585fa2e49","first_seen":"2023-07-10T11:55:36Z","last_seen":"2026-03-19T12:19:34.893621Z","times_seen":107,"resource_available":false,"data":null}},"time_used":2519,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2519,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-25T18:24:44.308Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdvetrm.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 16:26:38 GMT","end":"Sun, 24 May 2026 16:26:37 GMT"},"fingerprint":{"sha1":"D4:3B:76:EB:EF:8C:8D:40:08:04:9D:C9:4B:5E:DD:F5:85:CC:60:D9","sha256":"14:42:8E:55:FB:C5:62:9E:4C:76:1E:02:D7:7A:91:CE:BC:9C:6D:0E:E3:C1:44:90:E1:B6:B9:41:FB:79:DC:49"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: vdvetrm.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=9WYR4oI03KbTUo3O; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:44 GMT\n__ddg10_=1772043884; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:44 GMT\n__ddg9_=91.90.42.154; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:44 GMT\n__ddg1_=96UxhaF2l6HheMeoxOXK; Domain=.vdvetrm.ru; HttpOnly; Path=/; Expires=Thu, 25-Feb-2027 18:24:44 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Wed, 25 Feb 2026 18:24:45 GMT\r\ncontent-type: text/html; charset=utf-8\r\nreferer: \r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":30383,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (15232), with CRLF, LF line terminators","md5":"46e5b5931713dd393185eb2fff10c629","sha1":"14142e2381ac78e9309c214ce168ecb19d8d933e","sha256":"9c6b18def142c91e6268dce76699f9e251768ef1a48e5f624b3245db56887c66","sha512":"5185400f07a55f095822e9496e724db2ea4a6604f6aad76968d7864fd75257bb69daab9ac351c9b88583e8e348640f952a55d8e367cb9229a34787da51957033","ssdeep":"768:FGXjluj2dgp4b+3qE9ZtSnQO4QhVH7MYwL6yCReC:FGXjluj2dgu+aGOnN4Qht7MLL6yCEC","tlshash":"2cd25c26e5c7183b273251a5de017788eec9457fae47182137ec6beb2ff69508923348","first_seen":"2026-02-25T18:25:08.861378Z","last_seen":"2026-02-25T18:25:08.861378Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1418,"timings":{"blocked":337,"dns":39,"connect":272,"send":0,"wait":744,"receive":0,"ssl":24},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/PARSE/DATA/IMAGES/28565195121_zerkala-mega-mega9webe.jpg","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdvetrm.ru/","date":"2026-02-25T18:24:45.562Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdvetrm.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 16:26:38 GMT","end":"Sun, 24 May 2026 16:26:37 GMT"},"fingerprint":{"sha1":"D4:3B:76:EB:EF:8C:8D:40:08:04:9D:C9:4B:5E:DD:F5:85:CC:60:D9","sha256":"14:42:8E:55:FB:C5:62:9E:4C:76:1E:02:D7:7A:91:CE:BC:9C:6D:0E:E3:C1:44:90:E1:B6:B9:41:FB:79:DC:49"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/28565195121_zerkala-mega-mega9webe.jpg HTTP/1.1\r\nHost: vdvetrm.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdvetrm.ru/\r\nCookie: __ddg8_=9WYR4oI03KbTUo3O; __ddg10_=1772043884; __ddg9_=91.90.42.154; __ddg1_=96UxhaF2l6HheMeoxOXK\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=PP7NwlOmqDG1cH89; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\n__ddg10_=1772043885; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\n__ddg9_=91.90.42.154; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Wed, 25 Feb 2026 08:49:29 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Wed, 30 Nov 2022 11:10:09 GMT\r\netag: \"63873a11-123ed\"\r\nreferer: https://vdvetrm.ru/\r\nage: 34518\r\nddg-cache-status: HIT,MISS\r\ncontent-length: 74733\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":74733,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"853c609e6cd01b20cc1537ca1d8818e5","sha1":"7ca6b26eb9955a6c3b00002b85cf1433516b7032","sha256":"49947cbbdaa64a13104b46b602c000bb97a7d0fbae645b75d693f6776847d225","sha512":"e50145ff2b6496d314614b066e422fb9ffe3e8da3e3915c01a65a879fad55f4a9f530e69bce8d416d5bdf2a7421c20cda964a8f7027912b9d5c9edabca8585f2","ssdeep":"1536:S/HQ28d+ZaIO7lRiQzzA+9kwX3BDdUUgFwymQvut5Gjc:CHQ28QaIOf5JaAZymym5Gjc","tlshash":"d57302f3eb21c1e1fec9f5b64c5a76d56cc32510ba693a0862098fd9a050c642d9ddec","first_seen":"2026-02-25T18:25:08.862365Z","last_seen":"2026-02-25T18:25:08.862365Z","times_seen":1,"resource_available":false,"data":null}},"time_used":73,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":43,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/PARSE/DATA/IMAGES/18295037291_originalnaja-ssylka-soljaris.jpg","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdvetrm.ru/","date":"2026-02-25T18:24:45.563Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdvetrm.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 16:26:38 GMT","end":"Sun, 24 May 2026 16:26:37 GMT"},"fingerprint":{"sha1":"D4:3B:76:EB:EF:8C:8D:40:08:04:9D:C9:4B:5E:DD:F5:85:CC:60:D9","sha256":"14:42:8E:55:FB:C5:62:9E:4C:76:1E:02:D7:7A:91:CE:BC:9C:6D:0E:E3:C1:44:90:E1:B6:B9:41:FB:79:DC:49"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/18295037291_originalnaja-ssylka-soljaris.jpg HTTP/1.1\r\nHost: vdvetrm.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdvetrm.ru/\r\nCookie: __ddg8_=9WYR4oI03KbTUo3O; __ddg10_=1772043884; __ddg9_=91.90.42.154; __ddg1_=96UxhaF2l6HheMeoxOXK\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=KruE3gpEHTHNKiUH; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\n__ddg10_=1772043885; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\n__ddg9_=91.90.42.154; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Wed, 25 Feb 2026 18:24:45 GMT\r\ncontent-type: image/jpeg\r\netag: W/1833076783\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":43255,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"bf97f0fc6e627cc82ed83dbeee006619","sha1":"5461a4d66dbaf701599b3695e0a083e6bec8ee28","sha256":"7b902fad26316ec1740b0b2088e63e70093fd5c6df7f7f632c8ec1e913416984","sha512":"89abe2ed01d734a8f70f0be36207d13d42f23fc0648582da9c5abe4d1c600a7fda0862d65447e36d1f9a59881627833f21253c1b60c19d9878b82e9fe6d63ed9","ssdeep":"768:ShvV3h4hg7dNs4NRTiKCSY/oDI1z4+yx70bS7rMTn0DMTlGUWCjr8q9rL5:Sn3h4mpNQ7NocJ4+bu7Q0cGta4mL5","tlshash":"1f13f180a3fb7520ccdd78f65e024e525585a6bf809946001b1aaefe4f4d7f1c22a3db","first_seen":"2024-12-27T08:35:56.218096Z","last_seen":"2026-02-25T18:25:08.863304Z","times_seen":2,"resource_available":false,"data":null}},"time_used":454,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":454,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/PARSE/DATA/IMAGES/42083769911_kraken-prjamaja-ssylka-kramp-cc.jpg","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdvetrm.ru/","date":"2026-02-25T18:24:45.564Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdvetrm.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 16:26:38 GMT","end":"Sun, 24 May 2026 16:26:37 GMT"},"fingerprint":{"sha1":"D4:3B:76:EB:EF:8C:8D:40:08:04:9D:C9:4B:5E:DD:F5:85:CC:60:D9","sha256":"14:42:8E:55:FB:C5:62:9E:4C:76:1E:02:D7:7A:91:CE:BC:9C:6D:0E:E3:C1:44:90:E1:B6:B9:41:FB:79:DC:49"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/42083769911_kraken-prjamaja-ssylka-kramp-cc.jpg HTTP/1.1\r\nHost: vdvetrm.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdvetrm.ru/\r\nCookie: __ddg8_=9WYR4oI03KbTUo3O; __ddg10_=1772043884; __ddg9_=91.90.42.154; __ddg1_=96UxhaF2l6HheMeoxOXK\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=DgyPj83BZZJEHL6n; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\n__ddg10_=1772043885; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\n__ddg9_=91.90.42.154; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Wed, 25 Feb 2026 18:24:45 GMT\r\ncontent-type: image/jpeg\r\netag: W/1958536112\r\nage: 3\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":24069,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"a4bddc445056cd6c00a80a2b72866180","sha1":"195e0f69a75267434fce92978a113ce2d40fb154","sha256":"8cff86786d0530de4cd42b8742a95e5d16b95e1856566f18ccc5e8adfa2bb06d","sha512":"47e54040e17ac14a83993e8ef257582bf23430ccbdce841710d121faae47d3e932eecebf2fc4b1423cae773c16736eba6a413570fedce5b0cc7b08e2dc2df63f","ssdeep":"384:SLNj0RCY9jpLoDTieQVa8fzPN1x1dYte3X/VFyW7wOFEevm:S8HuSeQY8fzPN1x1qte3te","tlshash":"26b2ae0358162219a22e47b2bf675bec3026374c73d327d706199dce37ba3a5ac1c669","first_seen":"2026-02-25T18:25:08.864519Z","last_seen":"2026-02-25T18:25:08.864519Z","times_seen":1,"resource_available":false,"data":null}},"time_used":493,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":493,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/PARSE/DATA/IMAGES/23098841281_telegram-kanal-kraken.jpg","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdvetrm.ru/","date":"2026-02-25T18:24:45.567Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdvetrm.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 16:26:38 GMT","end":"Sun, 24 May 2026 16:26:37 GMT"},"fingerprint":{"sha1":"D4:3B:76:EB:EF:8C:8D:40:08:04:9D:C9:4B:5E:DD:F5:85:CC:60:D9","sha256":"14:42:8E:55:FB:C5:62:9E:4C:76:1E:02:D7:7A:91:CE:BC:9C:6D:0E:E3:C1:44:90:E1:B6:B9:41:FB:79:DC:49"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/23098841281_telegram-kanal-kraken.jpg HTTP/1.1\r\nHost: vdvetrm.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdvetrm.ru/\r\nCookie: __ddg8_=9WYR4oI03KbTUo3O; __ddg10_=1772043884; __ddg9_=91.90.42.154; __ddg1_=96UxhaF2l6HheMeoxOXK\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=jP0XeCXKgjWqqs42; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\n__ddg10_=1772043885; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\n__ddg9_=91.90.42.154; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Wed, 25 Feb 2026 18:24:46 GMT\r\ncontent-type: image/jpeg\r\netag: W/552587673\r\nage: 2\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":35718,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"c91a8a7d207cb90b2e0dfb8dbbde874f","sha1":"fce8ffd89a369e726b58a85df0fb42a6f0d277f3","sha256":"46e05a851b9ef3fad95cef0a122372c33e44d4d14b0ff4198673911147c161a9","sha512":"5726d5541c458ae0201d1228cbee06f382a370ee595625fb96158925837dd1849eefd4e253e78b25688cc028fcf5b321eee1920de081bf88530e21d21f085aad","ssdeep":"768:S1wrpuYD3Enlwtw35PlVK48JvZ1HEW3NsWftc3X/j8T:SzxlwtwllVK48JZ1jLFcgT","tlshash":"48f2f1430f455f41e83aeaa83ba87cce7094da99bd44387658ac1cee57307186fd98b4","first_seen":"2026-02-25T18:25:08.865377Z","last_seen":"2026-02-25T18:25:08.865377Z","times_seen":1,"resource_available":false,"data":null}},"time_used":738,"timings":{"blocked":58,"dns":0,"connect":0,"send":0,"wait":680,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/templates/KRAKEN_CAP/fonts/Montserrat-Regular.ttf","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://vdvetrm.ru/","date":"2026-02-25T18:24:48.222Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdvetrm.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 16:26:38 GMT","end":"Sun, 24 May 2026 16:26:37 GMT"},"fingerprint":{"sha1":"D4:3B:76:EB:EF:8C:8D:40:08:04:9D:C9:4B:5E:DD:F5:85:CC:60:D9","sha256":"14:42:8E:55:FB:C5:62:9E:4C:76:1E:02:D7:7A:91:CE:BC:9C:6D:0E:E3:C1:44:90:E1:B6:B9:41:FB:79:DC:49"}}},"request":{"raw":"GET /templates/KRAKEN_CAP/fonts/Montserrat-Regular.ttf HTTP/1.1\r\nHost: vdvetrm.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdvetrm.ru/templates/KRAKEN_CAP/styles/style.css\r\nCookie: __ddg8_=8ZsnEoroZweL023B; __ddg10_=1772043885; __ddg9_=91.90.42.154; __ddg1_=96UxhaF2l6HheMeoxOXK\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=6pBFz8qOPfGtGFEb; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:48 GMT\n__ddg10_=1772043888; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:48 GMT\n__ddg9_=91.90.42.154; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:48 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Wed, 25 Feb 2026 18:24:48 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nage: 3\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":197976,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"TrueType Font data, 16 tables, 1st \"GDEF\", name offset 0x5200016d","md5":"5f72a800c0699be01bf0359713a8b2da","sha1":"fbbda4cd9c07481c558ae9683c927b455892afc9","sha256":"630f8ae712b7b6328e6ddeeddfc6e024a813091840f2021c40b4792fe0595fd4","sha512":"3b8e9fc37a60d784824bf142dd5b8d861a971e2e44292a600ffe52311fbf46d5f1ab6eeea084d3e5cd11a487c03439eff5e27ccde53b929ad0c0a433348cb6e0","ssdeep":"3072:X1lVLYf3EdzoWpiJ0ffmqPHmcmKjtsHhC+of6MuFLBLY7S5dvQFMxzpSKEELaAf:X1lVLYUrc0ffmqdSzvdVpSK1","tlshash":"5f242917fa17075ed5c68ff89ef80790a35cbe9c79148bc9c42e5160d78b9aa314ca8c","first_seen":"2023-07-19T05:17:54Z","last_seen":"2026-05-14T11:41:34.848759Z","times_seen":140,"resource_available":false,"data":null}},"time_used":1047,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1047,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/PARSE/DATA/IMAGES/15507092591_onion-ssylki-2022.jpg","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdvetrm.ru/","date":"2026-02-25T18:24:45.559Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdvetrm.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 16:26:38 GMT","end":"Sun, 24 May 2026 16:26:37 GMT"},"fingerprint":{"sha1":"D4:3B:76:EB:EF:8C:8D:40:08:04:9D:C9:4B:5E:DD:F5:85:CC:60:D9","sha256":"14:42:8E:55:FB:C5:62:9E:4C:76:1E:02:D7:7A:91:CE:BC:9C:6D:0E:E3:C1:44:90:E1:B6:B9:41:FB:79:DC:49"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/15507092591_onion-ssylki-2022.jpg HTTP/1.1\r\nHost: vdvetrm.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdvetrm.ru/\r\nCookie: __ddg8_=9WYR4oI03KbTUo3O; __ddg10_=1772043884; __ddg9_=91.90.42.154; __ddg1_=96UxhaF2l6HheMeoxOXK\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=CQiWvPHbXUd5Dxin; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\n__ddg10_=1772043885; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\n__ddg9_=91.90.42.154; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Wed, 25 Feb 2026 18:24:45 GMT\r\ncontent-type: image/jpeg\r\netag: W/4248052839\r\nage: 3\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":39412,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"6f186c518250e6404682b031c5b430a1","sha1":"cc552f613db1e6a7986afadaa189d4a3681aa8b8","sha256":"b4e853f5a29f24f9f7d6467fffeea6e4613f4e9cc2fb7c23cb6d9deceb11c2a3","sha512":"55d03747bcb669e7c84875b3db99a1bfa357f4a1c55d38435a2b2819234ad3a8e74b86fce5aac04feb919ddcaecad227f2e588cb8118f5d4765be79ec554f04c","ssdeep":"768:ShxhcKO20YuDcVg2j6rRYJ7xrAuOJw6MTE7d2ioIMswEpdBaivqGgKWLHhk:ShxG9ncVg2jFJAu1NTAOstBDvHgKWLBk","tlshash":"e203f12c68123b14eb1f8a3eaa579cebf165b2030486a1e677e625ad17b47143378dc0","first_seen":"2026-02-25T18:25:08.866891Z","last_seen":"2026-02-25T18:25:08.866891Z","times_seen":1,"resource_available":false,"data":null}},"time_used":529,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":529,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/templates/KRAKEN_CAP/img/logo.webp","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdvetrm.ru/","date":"2026-02-25T18:24:45.571Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdvetrm.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 16:26:38 GMT","end":"Sun, 24 May 2026 16:26:37 GMT"},"fingerprint":{"sha1":"D4:3B:76:EB:EF:8C:8D:40:08:04:9D:C9:4B:5E:DD:F5:85:CC:60:D9","sha256":"14:42:8E:55:FB:C5:62:9E:4C:76:1E:02:D7:7A:91:CE:BC:9C:6D:0E:E3:C1:44:90:E1:B6:B9:41:FB:79:DC:49"}}},"request":{"raw":"GET /templates/KRAKEN_CAP/img/logo.webp HTTP/1.1\r\nHost: vdvetrm.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdvetrm.ru/\r\nCookie: __ddg8_=9WYR4oI03KbTUo3O; __ddg10_=1772043884; __ddg9_=91.90.42.154; __ddg1_=96UxhaF2l6HheMeoxOXK\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=BHdiOweZa0g7X0gf; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:46 GMT\n__ddg10_=1772043886; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:46 GMT\n__ddg9_=91.90.42.154; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:46 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Wed, 25 Feb 2026 18:24:46 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nage: 3\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":13996,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"RIFF (little-endian) data","md5":"5300a98bf7f37b997fe648378208b746","sha1":"9c37be9ed0f900df6d1ec76c31c55f0f5e1d0619","sha256":"afec6c7de8ee787409e548d14e06a7c4e0fb825fdc66214dd6558d6fa21e2c4e","sha512":"84e69b67f7af6fd7103669b00b52c755fb24407a2b3d62ef28ef6c191d0efcd652c2cdf5367a89250bda0f4cbf2730a898bb7e7c5eb1292c24f5d77e4cee2b4a","ssdeep":"384:9Bgw9Pw8a4XeO6Y1YX43hCej6YbErEXHxt0MeAx3K8C+xq1Q:vgwtI4XeOwX4xCelxXxG0g8nz","tlshash":"0392bf07224e9361c2fba0f9c55b1bd8d4139680b7d6ead4c508f2e15cae724f69d8e8","first_seen":"2023-07-13T18:41:18Z","last_seen":"2026-03-19T12:19:34.886135Z","times_seen":104,"resource_available":false,"data":null}},"time_used":1501,"timings":{"blocked":1046,"dns":0,"connect":0,"send":0,"wait":455,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/templates/KRAKEN_CAP/fonts/Goldman-Regular.ttf","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://vdvetrm.ru/","date":"2026-02-25T18:24:48.221Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdvetrm.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 16:26:38 GMT","end":"Sun, 24 May 2026 16:26:37 GMT"},"fingerprint":{"sha1":"D4:3B:76:EB:EF:8C:8D:40:08:04:9D:C9:4B:5E:DD:F5:85:CC:60:D9","sha256":"14:42:8E:55:FB:C5:62:9E:4C:76:1E:02:D7:7A:91:CE:BC:9C:6D:0E:E3:C1:44:90:E1:B6:B9:41:FB:79:DC:49"}}},"request":{"raw":"GET /templates/KRAKEN_CAP/fonts/Goldman-Regular.ttf HTTP/1.1\r\nHost: vdvetrm.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdvetrm.ru/templates/KRAKEN_CAP/styles/style.css\r\nCookie: __ddg8_=8ZsnEoroZweL023B; __ddg10_=1772043885; __ddg9_=91.90.42.154; __ddg1_=96UxhaF2l6HheMeoxOXK\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=6uDkwWk8HaOB8OFQ; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:48 GMT\n__ddg10_=1772043888; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:48 GMT\n__ddg9_=91.90.42.154; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:48 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Wed, 25 Feb 2026 18:24:48 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nage: 3\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":77276,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"TrueType Font data, 17 tables, 1st \"GDEF\", name offset 0xa9000005","md5":"a46de11151df704939107617999a4d7f","sha1":"a54569b16f2f9ba2fcf23c42810860483c22c5c9","sha256":"69307446f5aaa5e84bb5c07156e4244d65dc64bffde8877a470e8ae446f3c9f0","sha512":"ff891c44e5b273fe1202380c0beae757bc56708a033546c9202e65eb8ae4702a1abed85dc08b1080ab420d3cc07f3a2d69fa1c0bc9053ee309ae1a48f605aa76","ssdeep":"1536:Q9hLvIjebpyYKZTVkX+Wlp3S4sacFlwF2RcPr3DN:2lv+ebpyYKN+X+WDS1aO6F2WPr3R","tlshash":"52832a17a710a759e5714ff47e9da38037acf4ac3805538ad01c5aa36f4f8983e4ba9c","first_seen":"2023-07-19T05:17:54Z","last_seen":"2026-03-19T12:19:34.878988Z","times_seen":102,"resource_available":false,"data":null}},"time_used":1081,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1081,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/PARSE/DATA/IMAGES/40580626141_rabochee-zerkalo-dlja-kramp.jpg","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdvetrm.ru/","date":"2026-02-25T18:24:45.569Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdvetrm.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 16:26:38 GMT","end":"Sun, 24 May 2026 16:26:37 GMT"},"fingerprint":{"sha1":"D4:3B:76:EB:EF:8C:8D:40:08:04:9D:C9:4B:5E:DD:F5:85:CC:60:D9","sha256":"14:42:8E:55:FB:C5:62:9E:4C:76:1E:02:D7:7A:91:CE:BC:9C:6D:0E:E3:C1:44:90:E1:B6:B9:41:FB:79:DC:49"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/40580626141_rabochee-zerkalo-dlja-kramp.jpg HTTP/1.1\r\nHost: vdvetrm.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdvetrm.ru/\r\nCookie: __ddg8_=9WYR4oI03KbTUo3O; __ddg10_=1772043884; __ddg9_=91.90.42.154; __ddg1_=96UxhaF2l6HheMeoxOXK\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=kDWjY9qzfnvv0jmP; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:46 GMT\n__ddg10_=1772043886; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:46 GMT\n__ddg9_=91.90.42.154; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:46 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Wed, 25 Feb 2026 18:24:46 GMT\r\ncontent-type: image/jpeg\r\netag: W/1998244643\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":60268,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"cabca005a1c581693b137ca8df77d47b","sha1":"7c32967bd6b4d56cce9e3b062a0e043729bc90ba","sha256":"9a7f5ef7cf477e11da7fa5958aac5539ab13d9deaf4f841cbac9faca44560ed9","sha512":"9e89b4931c1c845016efb46373164c171d849ed701457531fb2054082e7ea99ed3c6bcc3b61d54e748606d43a76125839491ebc1b5c93e7e476e418fe033e55c","ssdeep":"1536:SYnbpegPzcreXz6GzFBSA5qnztXHSiwU5pcAXrFZWC:n8lQ+omA5Yz7wU5pFXXN","tlshash":"bc43010aeedd49d4f63fc381999628c3175de66426818d20deecbf00b38279e41bde65","first_seen":"2026-02-25T18:25:08.86896Z","last_seen":"2026-02-25T18:25:08.86896Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1172,"timings":{"blocked":700,"dns":0,"connect":0,"send":0,"wait":472,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/PARSE/DATA/IMAGES/80487219331_ssylka-kraken-android-kraken-ssylka-onion.jpg","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdvetrm.ru/","date":"2026-02-25T18:24:45.561Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdvetrm.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 16:26:38 GMT","end":"Sun, 24 May 2026 16:26:37 GMT"},"fingerprint":{"sha1":"D4:3B:76:EB:EF:8C:8D:40:08:04:9D:C9:4B:5E:DD:F5:85:CC:60:D9","sha256":"14:42:8E:55:FB:C5:62:9E:4C:76:1E:02:D7:7A:91:CE:BC:9C:6D:0E:E3:C1:44:90:E1:B6:B9:41:FB:79:DC:49"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/80487219331_ssylka-kraken-android-kraken-ssylka-onion.jpg HTTP/1.1\r\nHost: vdvetrm.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdvetrm.ru/\r\nCookie: __ddg8_=9WYR4oI03KbTUo3O; __ddg10_=1772043884; __ddg9_=91.90.42.154; __ddg1_=96UxhaF2l6HheMeoxOXK\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=Pyn1UvoAZxDcCkwx; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\n__ddg10_=1772043885; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\n__ddg9_=91.90.42.154; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Wed, 25 Feb 2026 18:24:45 GMT\r\ncontent-type: image/jpeg\r\netag: W/2532703521\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":48657,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"1c831b923083162fd30266e1a00283a0","sha1":"a117978f4ac589d11877c60bd537bb9a2c0a040a","sha256":"0bf3b75c1b4606ad87f541e31a9b43bdad49b310dd62533484a15092fe307980","sha512":"4c346a5271ebd8acaab6eb5923455f3747ebbc2891a296071a4303a6fbe6dfcfb9b0d82afc637eb3b1207f5bc7f264eaeeb957ecd016e572647688fe795bebb1","ssdeep":"768:S1PkemOKmxjx1ffrF1ZU0AtrkfrW3BA1l61ZAoj5lw0sIPD0GSnrk9wjGyiC3rbf:S1PFPxjfJ1Jyr0ruBR3AIPQGckKjNrr","tlshash":"3323f1fca1e3d801811fc9b5fe2d69c6ddb0a43aed4c46f923365e84aadc54fc606285","first_seen":"2026-02-25T18:25:08.869948Z","last_seen":"2026-02-25T18:25:08.869948Z","times_seen":1,"resource_available":false,"data":null}},"time_used":450,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":450,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/PARSE/DATA/IMAGES/23045363531_kak-popolnjat-blacksprut-blacksprutl1-com.jpg","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdvetrm.ru/","date":"2026-02-25T18:24:45.565Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdvetrm.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 16:26:38 GMT","end":"Sun, 24 May 2026 16:26:37 GMT"},"fingerprint":{"sha1":"D4:3B:76:EB:EF:8C:8D:40:08:04:9D:C9:4B:5E:DD:F5:85:CC:60:D9","sha256":"14:42:8E:55:FB:C5:62:9E:4C:76:1E:02:D7:7A:91:CE:BC:9C:6D:0E:E3:C1:44:90:E1:B6:B9:41:FB:79:DC:49"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/23045363531_kak-popolnjat-blacksprut-blacksprutl1-com.jpg HTTP/1.1\r\nHost: vdvetrm.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdvetrm.ru/\r\nCookie: __ddg8_=9WYR4oI03KbTUo3O; __ddg10_=1772043884; __ddg9_=91.90.42.154; __ddg1_=96UxhaF2l6HheMeoxOXK\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=8Ph8m5EpBOkmEjXM; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\n__ddg10_=1772043885; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\n__ddg9_=91.90.42.154; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:45 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Wed, 25 Feb 2026 18:24:46 GMT\r\ncontent-type: image/jpeg\r\netag: W/2588311012\r\nage: 2\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":37258,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"69c54b99ae0f2846db633885a5fec2a8","sha1":"de21271b8e0ca1026d1d8aaf29c3bb25235bb499","sha256":"1ddb05b5de63f59b28379740cae946295b1ae862fa8b4939cfc117455d0e8001","sha512":"4223cbc4bc02c58f22415bc2f4821dd8b4a4d9f8cd118ee7495221835c89f5aeea627d4654e450639a5701b6c5b2018bf10d1085dcad675b5044c58dbba03fc5","ssdeep":"768:Sy692Vrbd447wA+kkkkHjuUzyZBYJ6dEZzjQ8JEb0B:SyI3TgQ6AzRJe4","tlshash":"5bf2c04368159b84395d47dcdd870f976f0c9b6de0c66bae00210eab7ef03a61dac16a","first_seen":"2026-02-25T18:25:08.870719Z","last_seen":"2026-02-25T18:25:08.870719Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1111,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1111,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/PARSE/DATA/IMAGES/30758771951_kraken-zerkalo-rabochee-oficialnyj-sajt-krmp-cc.jpg","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdvetrm.ru/","date":"2026-02-25T18:24:45.568Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdvetrm.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 16:26:38 GMT","end":"Sun, 24 May 2026 16:26:37 GMT"},"fingerprint":{"sha1":"D4:3B:76:EB:EF:8C:8D:40:08:04:9D:C9:4B:5E:DD:F5:85:CC:60:D9","sha256":"14:42:8E:55:FB:C5:62:9E:4C:76:1E:02:D7:7A:91:CE:BC:9C:6D:0E:E3:C1:44:90:E1:B6:B9:41:FB:79:DC:49"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/30758771951_kraken-zerkalo-rabochee-oficialnyj-sajt-krmp-cc.jpg HTTP/1.1\r\nHost: vdvetrm.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdvetrm.ru/\r\nCookie: __ddg8_=9WYR4oI03KbTUo3O; __ddg10_=1772043884; __ddg9_=91.90.42.154; __ddg1_=96UxhaF2l6HheMeoxOXK\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=FkdQ4cHTTmCwA5Dd; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:46 GMT\n__ddg10_=1772043886; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:46 GMT\n__ddg9_=91.90.42.154; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:46 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Wed, 25 Feb 2026 18:24:47 GMT\r\ncontent-type: image/jpeg\r\netag: W/188176406\r\nage: 2\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":48248,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"74e3bcbf4272bbfdb46b9e8758042d4d","sha1":"09e4f6b35bb2288ad88f0de8c04fc7d2d9a5eba6","sha256":"d83cd229888d8d34d4212f51c889f44a2961d2ae2c8cb2f8f82c17f2f8c834b7","sha512":"d94d0a274459083d6cb8d47d6b3b6101c6d21978044bf1d7a560e37a51de72eea17aee5b6822f0f8190dc7eb16c9a83383bb5c33b967380b618cf0099b6c9fc1","ssdeep":"768:SERW3KFfl/1C3nXO5Cnl1xAtXcoQihMV0MjdNyQt/RPleWow+qY8EHw0JARqrxs3:SERWaFfX4NAhcoQDF5zetk/I+3","tlshash":"0f23022a94586bebf01f1927cb308fe7749fd980c12afd1f57c89f248794495e9406b0","first_seen":"2025-11-15T14:28:28.14751Z","last_seen":"2026-02-25T18:25:08.873112Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2273,"timings":{"blocked":658,"dns":0,"connect":0,"send":0,"wait":1615,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdvetrm.ru/PARSE/DATA/IMAGES/17220152071_bsbotnetzdxficaz7uffowuclqr2unjvxufj7g7uqq72xzpl4cbvr6ad-onion.jpg","fqdn":"vdvetrm.ru","domain":"vdvetrm.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdvetrm.ru/","date":"2026-02-25T18:24:45.571Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdvetrm.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 16:26:38 GMT","end":"Sun, 24 May 2026 16:26:37 GMT"},"fingerprint":{"sha1":"D4:3B:76:EB:EF:8C:8D:40:08:04:9D:C9:4B:5E:DD:F5:85:CC:60:D9","sha256":"14:42:8E:55:FB:C5:62:9E:4C:76:1E:02:D7:7A:91:CE:BC:9C:6D:0E:E3:C1:44:90:E1:B6:B9:41:FB:79:DC:49"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/17220152071_bsbotnetzdxficaz7uffowuclqr2unjvxufj7g7uqq72xzpl4cbvr6ad-onion.jpg HTTP/1.1\r\nHost: vdvetrm.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdvetrm.ru/\r\nCookie: __ddg8_=9WYR4oI03KbTUo3O; __ddg10_=1772043884; __ddg9_=91.90.42.154; __ddg1_=96UxhaF2l6HheMeoxOXK\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=5pQocWQiHoYx5RvC; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:46 GMT\n__ddg10_=1772043886; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:46 GMT\n__ddg9_=91.90.42.154; Domain=.vdvetrm.ru; Path=/; Expires=Wed, 25-Feb-2026 18:44:46 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Wed, 25 Feb 2026 18:24:46 GMT\r\ncontent-type: image/jpeg\r\netag: W/4092521219\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":27112,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"3a85c51eab4406f4a3df4ff81faa6618","sha1":"55fa5a9f37e295015e13ab38ca4fe098ab2e1648","sha256":"f54e9d56ddc0775b30d2b409ad30c5e8f8cd4340348ebb247866a2aa9c19c529","sha512":"a977853a11bc9b77d583bd9b242121655d6e848e9df966df0af8b57a65eb9ccc82115d43189528c92d845890a121f2b6e22e49d83f50a7a947e717ae9a4cf58e","ssdeep":"768:Sxkkc2DTTJj0B27PbK6BKsJV+M0Hcd/lgZyLOJMBdgBGwE/N:SxY2DRj0B+PfKWScd/lgQ/U6","tlshash":"01c2b09789010ad3f42c47fdbd0919d2afae5b05f8822ef757625ed37b102230c56a79","first_seen":"2026-02-25T18:25:08.874572Z","last_seen":"2026-02-25T18:25:08.874572Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1438,"timings":{"blocked":968,"dns":0,"connect":0,"send":0,"wait":470,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"vdvetrm.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}