groupalkor.ru/
301 Moved Permanently 185 B IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4c555068310076e85908835c721911f5
9ec990aabb4391e139034f68e5e657e0f1d0b74d
568b4de0ad30e85670e724dc30ccb675924353b77807356c5ad7f29c8c38f510
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:46 GMT
Content-Type: text/html
Content-Length: 185
Connection: keep-alive
Location: https://groupalkor.ru/
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15781
Expires: Fri, 03 Feb 2023 11:48:47 GMT
Date: Fri, 03 Feb 2023 07:25:46 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4861
Expires: Fri, 03 Feb 2023 08:46:47 GMT
Date: Fri, 03 Feb 2023 07:25:46 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 06:43:34 GMT
content-type: application/json
age: 2532
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18067
Expires: Fri, 03 Feb 2023 12:26:53 GMT
Date: Fri, 03 Feb 2023 07:25:46 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: pLGXeOEv8LH5Go9gNjvY/mEQuacefKWdMgygT+5KcuPQ5iuq6ZyVfMOj79UiGjhs9Zc9icS0lpw=
x-amz-request-id: 3SV5HZEWQD354459
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 07:23:27 GMT
age: 139
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 07:25:46 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
groupalkor.ru/
200 OK 49 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (20503)
Hash fc0025a6ec0d669f17bb7f600ce4fc99
e98472c7ec41ed58f9f07b799231b18e6d75a274
0beece30a9cdba88f828d3379b8b8cd4c50c4af0630495650088a73309f45fe1
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:46 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 07:25:46 GMT
ETag: "fc0025a6ec0d669f17bb7f600ce4fc99"
Content-Encoding: gzip
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
cdnjs.cloudflare.com/ajax/libs/moment.js/2.24.0/moment.min.js
200 OK 16 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/moment.js/2.24.0/moment.min.js
IP
File type ASCII text, with very long lines (53324), with no line terminators
Hash fa41c3e185077fbc8b9ad0cb1739196e
4e426a2fccff6f1637d4ec0e71356e42edf32d24
63a7116476543b4e5d48d3fa6411905c1ebaee241a7336faee216e76e748b610
GET /ajax/libs/moment.js/2.24.0/moment.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://groupalkor.ru
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 07:25:47 GMT
content-type: application/javascript; charset=utf-8
content-length: 15508
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f26-d04c"
last-modified: Mon, 04 May 2020 16:13:26 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2473112
expires: Wed, 24 Jan 2024 07:25:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GS7Nrqhd4E4xlZUXOeX4je5TLD7UsehQlJrCKOT1IFs%2BxGkoUZKjS6St2BDOban%2B1l8LDjmnv1krtVQ1Gr0k4F4tbcd9WL5yLm1tx%2FZcmnBZHkOj3bnkN40E%2BzO12nc7oFUEDCxH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79396f4118991c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery.countdown/2.2.0/jquery.countdown.min.js
200 OK 2.0 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.countdown/2.2.0/jquery.countdown.min.js
IP
File type ASCII text, with very long lines (4136)
Hash eb8c6a2707cb8a5fe38dcc8b8b24ecac
64f6996cfef017d809d377abebe070c8770af8e6
0ad9d302a4ea6adf138ce0db091e2b4663e0826e06dee325cbd048726e3d4cf3
GET /ajax/libs/jquery.countdown/2.2.0/jquery.countdown.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://groupalkor.ru
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 07:25:47 GMT
content-type: application/javascript; charset=utf-8
content-length: 1985
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-14db"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 17478136
expires: Wed, 24 Jan 2024 07:25:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cBOd8KdP2Vqytw2CILrvZpL41g1hFN%2FQ8jFd%2BiP%2B9d2jmRYFEhT4pcUevqR%2BwTP0l02APUhmz4MqXF4i%2BpGe2bObQDndv8FEkMa1S5x7ndAfY1W3La3fou78XOsWO%2B9sjsfMlQIi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79396f41189e1c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js
200 OK 591 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js
IP
File type ASCII text, with very long lines (1266)
Hash 414869f16aa77a65b4928a018f7f1abb
cea521f7a2958a50239526ed6b068f0937527653
afee364ce513c6517247b81cce5eb5eadb1dbbb35e439eb3fa97bbc15fac2cd3
GET /ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 07:25:47 GMT
content-type: application/javascript; charset=utf-8
content-length: 591
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-514"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 8003040
expires: Wed, 24 Jan 2024 07:25:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A9gaeU5dAmMvSOUfWdKRbLfWnm6Ll2n%2BW91GdFaEMe%2BbzdeBfmLcrNrBpOlsh38SFlMWsqOvYFlREirjXPmZbG00MQv2U5JUn0lYBWJzr2s41LMSmANy2uOqyIin2AHpLfyof1%2FF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79396f4118a81c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
groupalkor.ru/wp-content/cache/autoptimize/css/autoptimize_b5b0c784e5b221975bcfec566d50ebdd.css
200 OK 192 kB URL HTTP/1.1 groupalkor.ru/wp-content/cache/autoptimize/css/autoptimize_b5b0c784e5b221975bcfec566d50ebdd.css
IP
File type ASCII text, with very long lines (31716)
Size 192 kB (191848 bytes)
Hash 5bc59ece5537a096feb8ede5831dc424
3bceacf97a7928b21eeac1a39ee3f0bbbcf96803
f7b1ab4d5f69691715b56e02ba1d90fa73867578a330b8e182fab51b69ff9540
GET /wp-content/cache/autoptimize/css/autoptimize_b5b0c784e5b221975bcfec566d50ebdd.css HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: text/css
Last-Modified: Fri, 23 Dec 2022 00:57:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63a4fd0c-114b67"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-includes/js/jquery/jquery-migrate.min.js
200 OK 4.3 kB URL HTTP/1.1 groupalkor.ru/wp-includes/js/jquery/jquery-migrate.min.js
IP
File type ASCII text, with very long lines (9959)
Hash 263da3c76e040de59141e13a36a27c8e
10bf87dfc02978dd1263fe427486376257f0d83c
fa39bcd1ae1adf5df39a3e13c630e184f15ad85330112cb61e1ffcea4c55a376
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Sat, 03 Oct 2020 13:46:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5f7880bc-2748"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js
200 OK 3.8 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js
IP
File type ASCII text, with very long lines (9172)
Hash 7bbb02acbf1101b5df033e23a78f923d
a2e7e2e7cbc086df5e2494da6bc00190989fff5c
8bb5df16ca3fa83de876760884d606a1817c91adc1f2168bd04a5227c9943c4a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Fri, 11 Mar 2022 00:53:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"622a9d84-255e"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 07:07:19 GMT
age: 1108
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
groupalkor.ru/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js
200 OK 1.0 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js
IP
File type HTML document, ASCII text, with very long lines (2652), with no line terminators
Hash db84d8cfc85c9e071d094877835ead8d
685cc878243b1d70e46f847076e3aa74b2b38c92
67812925334dfca4ec9181e1d738d2e226e6ef2a484c9761bd46320be3fe0b9b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Fri, 11 Mar 2022 00:53:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"622a9d84-a5c"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-includes/js/jquery/jquery.js
200 OK 39 kB URL HTTP/1.1 groupalkor.ru/wp-includes/js/jquery/jquery.js
IP
File type ASCII text, with very long lines (31997)
Hash 5418bfa1df264d34ca4e04349997c18c
e1708cedc3d1b0d1fa8ed95b10dee6b1c8aeac88
2fe14fbd2d901031d1e61a865632b7527905ab1989191d0f631ac0777ba1104a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Sat, 03 Oct 2020 13:46:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5f7880bc-17a69"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js
200 OK 365 B URL HTTP/1.1 groupalkor.ru/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js
IP
Hash 7fb8cc95c97418155a29b5397e36baca
0c3cb3b840c906623cf9254c12f16baf30eaaf9d
cf57277fbf80c59b3b96b990812822973f7ca8c540586e19037bf02242e92868
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Thu, 01 Nov 2018 10:15:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5bdad246-37f"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js
200 OK 21 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js
IP
File type ASCII text, with very long lines (64614), with CRLF line terminators
Hash 02a417d55043c7a156a06e9473d307ad
59b3030c81ebdf3d4a45315a4abdb34b5c288ec4
5c9380695b19e3b12421e90444629d37653086dffdaec51056066be162526d9c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Thu, 01 Nov 2018 10:15:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5bdad237-fdb5"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?rev=5.4.8
200 OK 21 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?rev=5.4.8
IP
File type ASCII text, with very long lines (64614), with CRLF line terminators
Hash 02a417d55043c7a156a06e9473d307ad
59b3030c81ebdf3d4a45315a4abdb34b5c288ec4
5c9380695b19e3b12421e90444629d37653086dffdaec51056066be162526d9c
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?rev=5.4.8 HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Thu, 01 Nov 2018 10:15:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5bdad237-fdb5"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js
200 OK 1.0 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js
IP
File type ASCII text, with very long lines (1680)
Hash 8d87e40056b0ed622fe2568584ad9257
441eaf41a5706fce0ece4a1fa17ddf3ab544dbe0
97cc0c575a556767a73c18ea4dbbefbc501b651145443939bc190b2c280063ad
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Fri, 11 Mar 2022 00:53:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"622a9d84-736"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js
200 OK 616 B URL HTTP/1.1 groupalkor.ru/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js
IP
File type ASCII text, with very long lines (1402), with no line terminators
Hash 8daa49c235aed77e78544ce72f67efff
45dbacf419f7b4d519259c1b90de391514a6f85d
27161dc13f3a2ab52cd0156df22cfa577c1f7fdf4b54d51f1d3fc696bdadff96
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Fri, 11 Mar 2022 00:53:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"622a9d84-57a"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js
200 OK 971 B URL HTTP/1.1 groupalkor.ru/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js
IP
File type ASCII text, with very long lines (2568), with no line terminators
Hash 7e90d880e11102a77d8ba9bfabfc31f4
a6f93116a5e86b73139d3e56c9df4835fe0ac5ab
600b887de94c18de3570888d0b1ca7c96d5e94f42452b37749a3688fa4020145
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Fri, 11 Mar 2022 00:53:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"622a9d84-a08"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2613
Expires: Fri, 03 Feb 2023 08:09:20 GMT
Date: Fri, 03 Feb 2023 07:25:47 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
groupalkor.ru/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js
200 OK 1.4 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js
IP
File type ASCII text, with very long lines (4528), with no line terminators
Hash 730ed6d49516e17a27e8563201f6ff16
7a753cb9eeb7e7c8767cc1d47f286f8be8d77ff7
e7e925febf1cc11de86cc59cdf7a92fda299f7c50d2f63d7f24e04bd5db956ce
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Thu, 01 Nov 2018 10:15:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5bdad25e-11b0"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js
200 OK 5.1 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js
IP
File type ASCII text, with very long lines (11827)
Hash c0a924bc4cf780e0a92c3de114353eea
122bb5967e93db14510bfbfcc8c5ffb425478128
3eee014fda4111f4b705f8595bf8ea83f80143350ab296510cb6d52ab02eadda
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Thu, 01 Nov 2018 10:15:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5bdad25e-2e7c"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?rev=5.4.8
200 OK 44 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?rev=5.4.8
IP
File type ASCII text, with very long lines (27287), with CRLF line terminators
Hash 7516fee0e823327783f00edcec84d331
fb21d914ec5b7ccb69aba61f1b8a28839c909c9b
a4fed09cec03f63c20d06c22f4c0ee61dba8bc333dcb9e4238760017c8bfed1c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?rev=5.4.8 HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Thu, 01 Nov 2018 10:15:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5bdad237-1afe4"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js
200 OK 6.7 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js
IP
File type ASCII text, with very long lines (21592), with no line terminators
Hash 466e7b606693959488cd49cb2faf7806
7e05d6979211147361780e7bf4ebb15051ddebbd
46ece27ef74e54aee07e991ce56019dc3e4b872c338ee208bf1cb46787b4182f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Fri, 11 Mar 2022 00:53:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"622a9d84-5458"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js
200 OK 4.7 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js
IP
File type ASCII text, with very long lines (15658)
Hash 174c1e4bf94a46589d5a7460c71c30aa
acceba625ca439d0730d1370e6c51be093005670
d24b83977ff73bcbbcd216d58c9f96aadeb304bf4f495b4bef4e64c758a88ebe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Thu, 01 Nov 2018 10:15:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5bdad256-3d78"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
www.googletagmanager.com/gtag/js?id=UA-144718877-6
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-144718877-6
IP
File type ASCII text, with very long lines (1759)
Hash 4f56c25c160f59ffd1d2b1cd0eed02f5
ae9c3d02c5cb9b3e7d50349d1b6c55edd3dc8b32
73e445f17634df694b57c2b51e49a25f766e3e228a0583d4fa9ef646b7dc7258
GET /gtag/js?id=UA-144718877-6 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 Feb 2023 07:25:47 GMT
expires: Fri, 03 Feb 2023 07:25:47 GMT
cache-control: private, max-age=900
last-modified: Fri, 03 Feb 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43921
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
groupalkor.ru/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.js
200 OK 3.1 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.js
IP
File type ASCII text, with very long lines (577)
Hash 205e8816345fa207798d16c6f4a39adf
1d7aede012712c4fcdd9da3f04a4513b22ecad87
9cbe5c4c00747e5321e7496919522c451431fe3a1f42db92d70365fe32a03a71
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Thu, 01 Nov 2018 10:15:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5bdad256-2795"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
groupalkor.ru/wp-content/themes/electro/assets/js/tether.min.js
200 OK 7.8 kB URL HTTP/1.1 groupalkor.ru/wp-content/themes/electro/assets/js/tether.min.js
IP
File type ASCII text, with very long lines (23217), with no line terminators
Hash 258bf91615a6f8018df8786d233167fa
1b647cd0890f120e334a8eab2b0f4a79def7a16a
3d9f4f259b1b4a580da41e1fbe7be7c7787448a3b880d17da9923e4137839af7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/electro/assets/js/tether.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Thu, 01 Dec 2016 02:04:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"583f851c-5ab1"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/themes/electro/assets/js/bootstrap.min.js
200 OK 14 kB URL HTTP/1.1 groupalkor.ru/wp-content/themes/electro/assets/js/bootstrap.min.js
IP
File type ASCII text, with very long lines (32001)
Hash fa97ff5c412c4b0ae77f2003ae234c56
21ef15fc711591d6f0f48e9515e1b5d44296c00b
487689ecb06392967ff1fe96717ae0cc93d342c20110a0bb2aae9e3576363ab2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/electro/assets/js/bootstrap.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Wed, 26 Jun 2019 00:01:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5d12b5e9-af1a"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/themes/electro/assets/js/jquery.waypoints.min.js
200 OK 3.1 kB URL HTTP/1.1 groupalkor.ru/wp-content/themes/electro/assets/js/jquery.waypoints.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (8863)
Hash 562646d1bfe3af645af8993b72119f0c
094e7ab8af37b4abfe507426b0a1eeb592376041
421d5d60a6689f5aa74e9471948815ce8297448876ecdebde39aa285d6c9c0d7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/electro/assets/js/jquery.waypoints.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Mon, 03 Sep 2018 11:28:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5b8d1ad4-2344"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/themes/electro/assets/js/scrollup.min.js
200 OK 939 B URL HTTP/1.1 groupalkor.ru/wp-content/themes/electro/assets/js/scrollup.min.js
IP
File type ASCII text, with very long lines (2250), with no line terminators
Hash c1413af688f6abe5ad29da1364726d97
4e91dbd87e6b4c03128ae59f8ce01eb2bfa98328
9d479ddb9bba522b4fe5318fff8c3e9d59533f4e5a2c2dd68bf993e236b5b77b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/electro/assets/js/scrollup.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Thu, 01 Dec 2016 02:04:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"583f851c-8ca"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/themes/electro/assets/js/jquery.easing.min.js
200 OK 1.1 kB URL HTTP/1.1 groupalkor.ru/wp-content/themes/electro/assets/js/jquery.easing.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (510)
Hash 5e1df604f8d471538c1314e8a2388333
65e96299e0d49a0d911d9a7fd3529cdc778d3245
bf6a3e011d4d3bf042623b35358d4e0707f2e884fa3f67f6a4c6bf23f89907a8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/electro/assets/js/jquery.easing.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Thu, 01 Dec 2016 02:04:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"583f851c-dab"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/themes/electro/assets/js/jquery.mCustomScrollbar.js
200 OK 27 kB URL HTTP/1.1 groupalkor.ru/wp-content/themes/electro/assets/js/jquery.mCustomScrollbar.js
IP
File type ASCII text, with very long lines (732)
Hash ad6255105a35564a6e663a1dfe203a07
88ee17dd34882d557a0738cd5380bef6867b4008
297ec79dea1095fb67ce80be41e77b807a3bb80a3e282fa688be9e6125447d3e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/electro/assets/js/jquery.mCustomScrollbar.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Mon, 23 Apr 2018 07:27:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5add8ae2-16b15"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/themes/electro/assets/js/electro.min.js
200 OK 6.3 kB URL HTTP/1.1 groupalkor.ru/wp-content/themes/electro/assets/js/electro.min.js
IP
File type ASCII text, with very long lines (19615), with no line terminators
Hash 69b8c72bc20df9816a11908c9325c3d6
643421ac79a9e6fd8544c003281ed1814df65d61
a12324ef1f8732eac5f38992fd469a6d31cf2fe4f780bdb9ac53011200166450
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/electro/assets/js/electro.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Wed, 24 Oct 2018 09:07:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5bd0365e-4c9f"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-includes/js/wp-embed.min.js
200 OK 753 B URL HTTP/1.1 groupalkor.ru/wp-includes/js/wp-embed.min.js
IP
File type ASCII text, with very long lines (1391), with no line terminators
Hash 6ce132b926b29efe840e3ef1b627c74d
ddf5b4092f17d6bb5b9541d8295b4e04b5e63e33
fc4945b9c3c97889d79736549519722bc85629a3cc63d3fb2c4148e0d222747a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Thu, 15 Apr 2021 12:53:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"60783755-56f"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/themes/electro/assets/js/pace.min.js
200 OK 4.8 kB URL HTTP/1.1 groupalkor.ru/wp-content/themes/electro/assets/js/pace.min.js
IP
File type ASCII text, with very long lines (12347), with no line terminators
Hash 22cc6be433637c93d6ec70f942f2d248
87ffade58e81b7b2f565ec39287cfc4d0ce9378a
e2701a223a15819899a545a42c8484b912f881c88e4f1f7e9d96e6a8252b728d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/electro/assets/js/pace.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Thu, 01 Dec 2016 02:04:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"583f851c-303b"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/themes/electro/assets/js/owl.carousel.min.js
200 OK 13 kB URL HTTP/1.1 groupalkor.ru/wp-content/themes/electro/assets/js/owl.carousel.min.js
IP
File type ASCII text, with very long lines (32045)
Hash e543cc3492e27aa2b653f106aa6abfda
fef0b79478db6868def291694dd8785b84fa050d
23ab5311b160fb84396954d996508d2748283c8ca2187e1f104f4262e27cd5ea
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/electro/assets/js/owl.carousel.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Thu, 01 Dec 2016 02:04:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"583f851c-a1cb"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Open+Sans%3A400%2C300%2C600%2C700%2C800%2C800italic%2C700italic%2C600italic%2C400italic%2C300italic&subset=latin%2Clatin-ext
200 OK 1.5 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A400%2C300%2C600%2C700%2C800%2C800italic%2C700italic%2C600italic%2C400italic%2C300italic&subset=latin%2Clatin-ext
IP
Hash 894f7c121f44b143c2784460b9ee888f
a55370c452c6bb31307d9fa42156ffdd14972dc2
339118b58f86eb57dd4171a726285834006c680ebc1372cc2d591a0e22c9c9fd
GET /css?family=Open+Sans%3A400%2C300%2C600%2C700%2C800%2C800italic%2C700italic%2C600italic%2C400italic%2C300italic&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 Feb 2023 07:25:47 GMT
date: Fri, 03 Feb 2023 07:25:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://groupalkor.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:52:41 GMT
expires: Tue, 30 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 304386
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 31320, version 1.0\012- data
Hash 3fe71527811fbfedd2c07962e1bc49e7
f63e158a0480c5d711b5e268db0e75e57d87a8a5
24c0e724005344165ee0a0ff4c96a914e174bb4caa20c8a533fb194d92853e95
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://groupalkor.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31320
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 10:24:40 GMT
expires: Mon, 29 Jan 2024 10:24:40 GMT
cache-control: public, max-age=31536000
age: 421267
last-modified: Mon, 15 Aug 2022 18:11:37 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2
200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 26240, version 1.0\012- data
Hash 4a90976686fcbd8296c7d7fccc04c273
bcb82e93ac7ad1fa2af6a37009a200f79f4cb4e5
59bd288e64c57e034672999e33ebda6eb5ad1575945eb563dbfb5b44f226e1e1
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://groupalkor.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26240
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 07:52:01 GMT
expires: Thu, 01 Feb 2024 07:52:01 GMT
cache-control: public, max-age=31536000
age: 171226
last-modified: Mon, 15 Aug 2022 18:14:37 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
groupalkor.ru/wp-content/plugins/vdz-call-back/assets/js/jquery.maskedinput.min.js
200 OK 2.1 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/vdz-call-back/assets/js/jquery.maskedinput.min.js
IP
File type ASCII text, with very long lines (4112)
Hash 8fa6a38778a3c8a6d31416b830f7355b
29cacb933714179b33746fb4983732200acda184
e7368ebe9726f186aa8bd7f4eff4f2404f53b8c6bcee3cdadf605adfe19124cb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/vdz-call-back/assets/js/jquery.maskedinput.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Sun, 14 Jul 2019 21:49:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5d2ba354-10e4"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/plugins/vdz-call-back/assets/js/vdz_call_back.js
200 OK 1.1 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/vdz-call-back/assets/js/vdz_call_back.js
IP
File type ASCII text, with CRLF line terminators
Hash fc5f0daeec4f0c4bbf5039509f7aacec
644fea056c7a81c33e480e8c88e2c5ceee12c505
9382d8518545aa3a9756077035b1bbd895503e72307326108c5a5605832d9444
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/vdz-call-back/assets/js/vdz_call_back.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Sun, 14 Jul 2019 21:49:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5d2ba354-bf5"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/plugins/vdz-call-back/assets/magnific-popup/jquery.magnific-popup.min.js
200 OK 8.3 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/vdz-call-back/assets/magnific-popup/jquery.magnific-popup.min.js
IP
File type ASCII text, with very long lines (20087)
Hash d171f16057a47432cdd7422ad87cfda6
deba476217117ea847d9fc6db49c6d0eb3090bbd
e19dd5fad9e243f89e59bcb51162b96813d3e0ee8edf1135d8efd67eeea1d07f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/vdz-call-back/assets/magnific-popup/jquery.magnific-popup.min.js HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Sun, 14 Jul 2019 21:49:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5d2ba354-4ef8"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ar7TBtAjLCzaNrK3RPJdBA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jPFqvWeIpyMLcT21TBwRJNv/Bx4=
groupalkor.ru/wp-content/themes/electro/assets/fonts/font-electro.woff
200 OK 17 kB URL HTTP/1.1 groupalkor.ru/wp-content/themes/electro/assets/fonts/font-electro.woff
IP
File type Web Open Font Format, TrueType, length 17136, version 1.0\012- data
Hash f9bb08220cd17d9b60701db3c0569042
018dc56a68f4442575810995c1440f256ae1bc0a
f6a7ac74ab1da774e4e25cccf39e464971a43ea214c69879edf9693844954b4e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/electro/assets/fonts/font-electro.woff HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://groupalkor.ru/wp-content/cache/autoptimize/css/autoptimize_b5b0c784e5b221975bcfec566d50ebdd.css
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/font-woff
Content-Length: 17136
Last-Modified: Tue, 16 Oct 2018 02:49:18 GMT
Connection: keep-alive
ETag: "5bc551ae-42f0"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2018/11/alkor-1.png
200 OK 12 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2018/11/alkor-1.png
IP
File type PNG image data, 108 x 133, 8-bit/color RGBA, non-interlaced\012- data
Hash a1de08592e466ee644821d2eb0f1406e
85d947f83d8059cd99c2bcb023bfb13909301437
038208e0670565472a1f62c076991928f215fcce0ba38f1de44027e1a746017d
GET /wp-content/uploads/2018/11/alkor-1.png HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/png
Content-Length: 12351
Last-Modified: Sun, 04 Nov 2018 02:42:14 GMT
Connection: keep-alive
ETag: "5bde5c86-303f"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
groupalkor.ru/wp-content/plugins/revslider/admin/assets/images/dummy.png
200 OK 73 B URL HTTP/1.1 groupalkor.ru/wp-content/plugins/revslider/admin/assets/images/dummy.png
IP
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9d08eac154f5b02ef14e612fc25b9bf2
5a1e9121811015fbc274dae72072f874aee3d805
17af9e65317bbbfbbd0bcdc729f14faadf37cd08cf30cc0fe0b72443e78cbffb
GET /wp-content/plugins/revslider/admin/assets/images/dummy.png HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/png
Content-Length: 73
Last-Modified: Thu, 01 Nov 2018 10:15:00 GMT
Connection: keep-alive
ETag: "5bdad224-49"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/04/f1b154dc-e3e9-11e8-ab68-441ea159a462_57963ac1-0398-11e9-ab68-441ea159a462.jpeg
200 OK 28 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/04/f1b154dc-e3e9-11e8-ab68-441ea159a462_57963ac1-0398-11e9-ab68-441ea159a462.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=0], baseline, precision 8, 400x400, components 3\012- data
Hash eca6f6d7ed8fb9a4ca29aefa795167be
09061f8b4500119465cdceba29a44c3b0b4e9b87
918bd0fff98f14643a31a8a841b505ad0d0c6b4b9f90e0271d5d4be781730dbe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/04/f1b154dc-e3e9-11e8-ab68-441ea159a462_57963ac1-0398-11e9-ab68-441ea159a462.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 28368
Last-Modified: Mon, 08 Apr 2019 02:11:12 GMT
Connection: keep-alive
ETag: "5caaadc0-6ed0"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/06/e4da50db-2253-11e1-884e-984be1665fea_ccd427a5-48cc-11e1-ac02-984be1665fea.jpeg
200 OK 14 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/06/e4da50db-2253-11e1-884e-984be1665fea_ccd427a5-48cc-11e1-ac02-984be1665fea.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 330x330, components 3\012- data
Hash 00fe3d77fc8e43a6714d780b2f94e795
a028593d8445556d3dc700142984d1965df04a07
edac4a2369e085457c5d80e0052dd46750f49c1b1636724486e29ba4e2b23daa
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/06/e4da50db-2253-11e1-884e-984be1665fea_ccd427a5-48cc-11e1-ac02-984be1665fea.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 13939
Last-Modified: Tue, 03 Mar 2020 15:20:50 GMT
Connection: keep-alive
ETag: "5e5e75d2-3673"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/03/0be6de57-4395-11de-8fbe-0019d1100269_3e072c52-44e7-11e0-a20b-0050568e7fd3.jpeg
200 OK 22 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/03/0be6de57-4395-11de-8fbe-0019d1100269_3e072c52-44e7-11e0-a20b-0050568e7fd3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 400x400, components 3\012- data
Hash b62d7be658cf11202a7a2420e50c2377
f30e3269dc7d672db81eb8eb7bdb28c3b89733b0
bf1a87b8f4667f5edd0d19fa7d1ea923361790b5d5508995a18b73733fdd9e8b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/03/0be6de57-4395-11de-8fbe-0019d1100269_3e072c52-44e7-11e0-a20b-0050568e7fd3.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 22021
Last-Modified: Thu, 28 Mar 2019 18:36:53 GMT
Connection: keep-alive
ETag: "5c9d1445-5605"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/plugins/yith-woocommerce-wishlist/assets/images/wpspin_light.gif
200 OK 2.2 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/yith-woocommerce-wishlist/assets/images/wpspin_light.gif
IP
File type GIF image data, version 89a, 16 x 16\012- data
Hash dd4e6dd268a70ce4c1c5143b1a4092dd
e687c07184e17ba103c5c3947988b817ef6af513
6764d1ceca55223d425248b80a02eca133fddb83163a2841c9d84965f44206d3
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/images/wpspin_light.gif HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/gif
Content-Length: 2209
Last-Modified: Thu, 01 Nov 2018 10:15:50 GMT
Connection: keep-alive
ETag: "5bdad256-8a1"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/themes/electro/assets/fonts/fa/fa-solid-900.woff2
200 OK 45 kB URL HTTP/1.1 groupalkor.ru/wp-content/themes/electro/assets/fonts/fa/fa-solid-900.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 45128, version 1.0\012- data
Hash 89858e290154633a394e5c4460962c6c
362f172036653a8c1379342e1e0e3981d0e09d4e
79279c8900d692d54bd3468993728088da3a33f5eabe667637554d3811000837
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/electro/assets/fonts/fa/fa-solid-900.woff2 HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://groupalkor.ru/wp-content/cache/autoptimize/css/autoptimize_b5b0c784e5b221975bcfec566d50ebdd.css
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/octet-stream
Content-Length: 45128
Last-Modified: Tue, 16 Oct 2018 02:49:18 GMT
Connection: keep-alive
ETag: "5bc551ae-b048"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/04/e3b907ab-a6ff-42a0-be92-bf88a40cffeb_6f30243d-3e2a-11df-9906-0019bb24a7a8.jpeg
200 OK 33 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/04/e3b907ab-a6ff-42a0-be92-bf88a40cffeb_6f30243d-3e2a-11df-9906-0019bb24a7a8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 400x400, components 3\012- data
Hash 9ccc83d5f663b1afa5d6327cb6e91f57
d9f7f1fb27fa659d100b9a1e040f8b7a15d67477
0a9bf4555e94d81e81a2ffe728f6b61e7f856a08e78b36f6c74439a65f543e5e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/04/e3b907ab-a6ff-42a0-be92-bf88a40cffeb_6f30243d-3e2a-11df-9906-0019bb24a7a8.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 32877
Last-Modified: Wed, 03 Apr 2019 12:28:58 GMT
Connection: keep-alive
ETag: "5ca4a70a-806d"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/04/f8312b00-4147-11de-8fbe-0019d1100269_e4e35232-f3c3-11df-8faa-0050568e7fd3.jpeg
200 OK 30 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/04/f8312b00-4147-11de-8fbe-0019d1100269_e4e35232-f3c3-11df-8faa-0050568e7fd3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 400x400, components 3\012- data
Hash 26939081ce8262b3dca85837521502cd
4a41542350eeb5b161f03d3cc1a68716f14751fb
d4f732c381f16561a4a24ec9cced9e8727c86425fda86e2a61b70f83914f5a4c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/04/f8312b00-4147-11de-8fbe-0019d1100269_e4e35232-f3c3-11df-8faa-0050568e7fd3.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 29607
Last-Modified: Wed, 03 Apr 2019 12:28:34 GMT
Connection: keep-alive
ETag: "5ca4a6f2-73a7"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/04/31a1570c-0f4c-4dfa-a9a9-f01c8a2f93b5_8a616397-590e-11df-ac41-0019bb24a7a8.jpeg
200 OK 33 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/04/31a1570c-0f4c-4dfa-a9a9-f01c8a2f93b5_8a616397-590e-11df-ac41-0019bb24a7a8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 403x403, components 3\012- data
Hash e8a817954d75ab1ef1a11deea132df64
047dad8f6c75a9f39528925cd44824a56716f32b
8cd54a744950886d3d79e978069859e573f5172da809123a385024f4b1c8a7fd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/04/31a1570c-0f4c-4dfa-a9a9-f01c8a2f93b5_8a616397-590e-11df-ac41-0019bb24a7a8.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 33022
Last-Modified: Wed, 03 Apr 2019 12:28:58 GMT
Connection: keep-alive
ETag: "5ca4a70a-80fe"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/03/e6e258f1-3e1b-11e5-abed-441ea159a462_1bf37330-0ba4-11e6-abf1-441ea159a462.jpeg
200 OK 40 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/03/e6e258f1-3e1b-11e5-abed-441ea159a462_1bf37330-0ba4-11e6-abf1-441ea159a462.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 400x400, components 3\012- data
Hash 77bb2d4d880cd54e5eacd9df9ddebfbc
97df686ee112fa628c945345315b8f303818abe7
e98e8fe851fc1864ce92f42ad3a1825a0213f087126364882cf073e8d655f06e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/03/e6e258f1-3e1b-11e5-abed-441ea159a462_1bf37330-0ba4-11e6-abf1-441ea159a462.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 39839
Last-Modified: Thu, 28 Mar 2019 18:18:58 GMT
Connection: keep-alive
ETag: "5c9d1012-9b9f"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/03/89f68b52-b15d-11e6-abf1-441ea159a462_c4629b88-b15d-11e6-abf1-441ea159a462.jpeg
200 OK 40 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/03/89f68b52-b15d-11e6-abf1-441ea159a462_c4629b88-b15d-11e6-abf1-441ea159a462.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 400x400, components 3\012- data
Hash 050993ae789eee8d9c05e3ccf2858a5f
922f080c43fe77429f8e5ecc6b9ce4d99c4af920
4f8e37fd19f923b44a7bcda325c42be3370c3f304da2c6a5045e25b5b04d22c2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/03/89f68b52-b15d-11e6-abf1-441ea159a462_c4629b88-b15d-11e6-abf1-441ea159a462.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 40351
Last-Modified: Thu, 28 Mar 2019 18:18:58 GMT
Connection: keep-alive
ETag: "5c9d1012-9d9f"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/03/f23b7285-21ba-4da7-bc16-ea6f26d78907_6f30244c-3e2a-11df-9906-0019bb24a7a8.jpeg
200 OK 24 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/03/f23b7285-21ba-4da7-bc16-ea6f26d78907_6f30244c-3e2a-11df-9906-0019bb24a7a8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 400x400, components 3\012- data
Hash b739fa778e6429f676c904027ee7cf27
c80c6d3505a20ccf5d2a260b5db034e0b571aa12
446b7c9a0d3dedd779f0fbc895eb3e585acc4b31cc9344509201e6cf5a6c3d68
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/03/f23b7285-21ba-4da7-bc16-ea6f26d78907_6f30244c-3e2a-11df-9906-0019bb24a7a8.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 24238
Last-Modified: Thu, 28 Mar 2019 18:18:58 GMT
Connection: keep-alive
ETag: "5c9d1012-5eae"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/03/39862b83-d8dd-4b1c-8a4a-c6f82883a176_6f302449-3e2a-11df-9906-0019bb24a7a8.jpeg
200 OK 30 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/03/39862b83-d8dd-4b1c-8a4a-c6f82883a176_6f302449-3e2a-11df-9906-0019bb24a7a8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 400x400, components 3\012- data
Hash b141d1522262449ec6c78666536e5c74
198dec7c44117b609e28969501b1d9b67021ae8d
5a8a9305d6ddaf0ce5b6f5664d5906468c0e1c8d6cfc52497ff8f1b328163f21
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/03/39862b83-d8dd-4b1c-8a4a-c6f82883a176_6f302449-3e2a-11df-9906-0019bb24a7a8.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 30449
Last-Modified: Thu, 28 Mar 2019 18:18:58 GMT
Connection: keep-alive
ETag: "5c9d1012-76f1"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/03/63f0d7f3-0dea-4250-8f52-b9c70bafa401_6f30244f-3e2a-11df-9906-0019bb24a7a8.jpeg
200 OK 56 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/03/63f0d7f3-0dea-4250-8f52-b9c70bafa401_6f30244f-3e2a-11df-9906-0019bb24a7a8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 501x500, components 3\012- data
Hash 0ad284aea756e029b145d86b58174d26
dcdbf716935bd1dded70a8751ad4219848df5fe5
795c4350c6249b85fa8051d52cb57a5d25f51b1a9ae07dfe17c3c334e5a34f40
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/03/63f0d7f3-0dea-4250-8f52-b9c70bafa401_6f30244f-3e2a-11df-9906-0019bb24a7a8.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 55755
Last-Modified: Thu, 28 Mar 2019 18:18:59 GMT
Connection: keep-alive
ETag: "5c9d1013-d9cb"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/themes/electro/assets/fonts/fa/fa-brands-400.woff2
200 OK 58 kB URL HTTP/1.1 groupalkor.ru/wp-content/themes/electro/assets/fonts/fa/fa-brands-400.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 57720, version 1.0\012- data
Hash f910c1d54b9426084ccc64525c508e98
47f77e65f882ba00ebbb03d2ef4fa4520dd6db32
479f0b3cdcc87e900645a6f128cf6074e1f503608fb8c37123d0d7ccdac02333
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/electro/assets/fonts/fa/fa-brands-400.woff2 HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://groupalkor.ru/wp-content/cache/autoptimize/css/autoptimize_b5b0c784e5b221975bcfec566d50ebdd.css
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: application/octet-stream
Content-Length: 57720
Last-Modified: Tue, 16 Oct 2018 02:49:18 GMT
Connection: keep-alive
ETag: "5bc551ae-e178"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2017/02/patment-icon.png
200 OK 10 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2017/02/patment-icon.png
IP
File type PNG image data, 324 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash 7189be5ce8576811b95828aa9987d6a4
4f2076ab3b0fe15fe97856fa0e4f30fbc9fcf15f
b04b5fd43f5afe8d48cddc64d14bb3486535c02882c6cd7a823dc8eabedf9e77
GET /wp-content/uploads/2017/02/patment-icon.png HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/png
Content-Length: 10481
Last-Modified: Thu, 01 Nov 2018 20:52:00 GMT
Connection: keep-alive
ETag: "5bdb6770-28f1"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/plugins/woocommerce/assets/images/placeholder.png
200 OK 24 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/woocommerce/assets/images/placeholder.png
IP
File type PNG image data, 398 x 391, 8-bit/color RGBA, non-interlaced\012- data
Hash e12a9ed7c61da354c6cfdaf811cf6c3c
7b4f72c55f35cb4bcacd1464a5a47d2447b0071b
de65e9cba4a828752b859748f89d530b1bba8e2f1ddfeb2c6b71d3e91e71ad1c
GET /wp-content/plugins/woocommerce/assets/images/placeholder.png HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/png
Content-Length: 23675
Last-Modified: Fri, 11 Mar 2022 00:53:24 GMT
Connection: keep-alive
ETag: "622a9d84-5c7b"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/03/88010a75-7121-43f0-9533-d4c76061d9c7_6f302455-3e2a-11df-9906-0019bb24a7a8.jpeg
200 OK 31 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/03/88010a75-7121-43f0-9533-d4c76061d9c7_6f302455-3e2a-11df-9906-0019bb24a7a8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 400x400, components 3\012- data
Hash 2fc1909f37303aee6c8cc7419a561e63
b7be43edfb8236b3845f853bfa8dde4fb70e771f
bd6052646ad70e6e63174d0ec6a136c6bfe5ecc35694abd29d9c376e06b58c68
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/03/88010a75-7121-43f0-9533-d4c76061d9c7_6f302455-3e2a-11df-9906-0019bb24a7a8.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 30745
Last-Modified: Thu, 28 Mar 2019 18:18:59 GMT
Connection: keep-alive
ETag: "5c9d1013-7819"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/03/a6a0fdef-a3e6-4a66-9b22-3491ef371116_026c21ae-5749-11df-ac41-0019bb24a7a8.jpeg
200 OK 29 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/03/a6a0fdef-a3e6-4a66-9b22-3491ef371116_026c21ae-5749-11df-ac41-0019bb24a7a8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 400x400, components 3\012- data
Hash c82d0cf4dcb1f65354ff32a905e22da0
4cf66e1cdf8da0029f617f38a3fd27bb678957ed
3d0961dc14ceb79d9466da72af595d15eb0e1cc7be0fa6dd5e9254e8acde1892
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/03/a6a0fdef-a3e6-4a66-9b22-3491ef371116_026c21ae-5749-11df-ac41-0019bb24a7a8.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 29048
Last-Modified: Thu, 28 Mar 2019 18:18:58 GMT
Connection: keep-alive
ETag: "5c9d1012-7178"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/03/7bda41e4-0d5a-400b-9612-035d532376c0_04683288-0927-11e1-ae0c-984be1665fea.jpeg
200 OK 28 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/03/7bda41e4-0d5a-400b-9612-035d532376c0_04683288-0927-11e1-ae0c-984be1665fea.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 400x400, components 3\012- data
Hash 41259e65191d66027573bf1a787fefbb
c9d197d07e42148df3dfd6ff5d8c064a59cc62ce
f985398433d5fda74cadd5034955ba8110b8fbc571daebd7338f0c83ec877eae
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/03/7bda41e4-0d5a-400b-9612-035d532376c0_04683288-0927-11e1-ae0c-984be1665fea.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 28337
Last-Modified: Thu, 28 Mar 2019 18:18:58 GMT
Connection: keep-alive
ETag: "5c9d1012-6eb1"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/03/Nasos_ALR-Banner-AQUAPRIME24-15-03-2019.jpg
200 OK 178 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/03/Nasos_ALR-Banner-AQUAPRIME24-15-03-2019.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1040x247, components 3\012- data
Size 178 kB (177969 bytes)
Hash afe15b63a01bdfda2726e81f737e1636
2fc874d494adb9f50d673cc3e79f2b43cc9386d8
8ec4ab4011e20be7be74de7b2e50b5ae101bc970274e904e9ec4fadebce9d36e
GET /wp-content/uploads/2019/03/Nasos_ALR-Banner-AQUAPRIME24-15-03-2019.jpg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 177969
Last-Modified: Fri, 29 Mar 2019 12:34:02 GMT
Connection: keep-alive
ETag: "5c9e10ba-2b731"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/03/1ac04d06-ad5b-4008-8b6b-e5c51a961115_6f302443-3e2a-11df-9906-0019bb24a7a8.jpeg
200 OK 31 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/03/1ac04d06-ad5b-4008-8b6b-e5c51a961115_6f302443-3e2a-11df-9906-0019bb24a7a8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 400x400, components 3\012- data
Hash e28d0a90e984cbd1a12b909bb4f1de2f
efdb3ad32315933e2451e57917a85a1f6bc07bdc
137141ae3d2eac8198c922a2a0a62782f5c077df3949ac493fec33822803a793
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/03/1ac04d06-ad5b-4008-8b6b-e5c51a961115_6f302443-3e2a-11df-9906-0019bb24a7a8.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 31403
Last-Modified: Thu, 28 Mar 2019 18:18:58 GMT
Connection: keep-alive
ETag: "5c9d1012-7aab"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/?frontend=1
200 OK 591 B URL HTTP/1.1 groupalkor.ru/?frontend=1
IP
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 77ce0ad12a9a3ad522442cf7b3801f5a
19ad375dd02e55205c96a6548028328bc45da9ed
eee5e2e956961f64902eef959487e20119724cce7ac055e0514076424a8d9309
GET /?frontend=1 HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: firstenter=1675409147; expires=Mon, 29-Jan-2024 07:25:47 GMT; Max-Age=31104000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/uploads/2019/03/d1b570e0-ab8f-4df4-9a9b-5bc589196882_6f302437-3e2a-11df-9906-0019bb24a7a8.jpeg
200 OK 68 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/03/d1b570e0-ab8f-4df4-9a9b-5bc589196882_6f302437-3e2a-11df-9906-0019bb24a7a8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2013:06:11 11:39:48], baseline, precision 8, 450x450, components 3\012- data
Hash 5d41f35a860b954f33c008bab2d43bda
2bc9e23cb6f0112db10cb9b163832068811e00ac
64a07d344e79c0bb3722d0751097e2de93c0f00f8ddd8da5d0fb9e26a84bfddb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/03/d1b570e0-ab8f-4df4-9a9b-5bc589196882_6f302437-3e2a-11df-9906-0019bb24a7a8.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 67789
Last-Modified: Thu, 28 Mar 2019 18:18:57 GMT
Connection: keep-alive
ETag: "5c9d1011-108cd"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/03/ebb477c6-a890-11e1-8ed4-441ea159a462_81bf6f48-e23e-11e1-8763-441ea159a462.jpeg
200 OK 33 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/03/ebb477c6-a890-11e1-8ed4-441ea159a462_81bf6f48-e23e-11e1-8763-441ea159a462.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 400x400, components 3\012- data
Hash d056e09aaa04a5c4b1e0d59d101d9c22
d455796e0424d9ce85f97463795e29af952eda43
5c605775fb4c850af212e27546113ec7ba4e083942901d12861fd339c7c3cd16
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/03/ebb477c6-a890-11e1-8ed4-441ea159a462_81bf6f48-e23e-11e1-8763-441ea159a462.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 33157
Last-Modified: Thu, 28 Mar 2019 18:36:15 GMT
Connection: keep-alive
ETag: "5c9d141f-8185"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/03/88f567fd-2dd4-11e9-ab68-441ea159a462_ecc101ed-4a0d-11e9-ab68-441ea159a462.jpeg
200 OK 24 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/03/88f567fd-2dd4-11e9-ab68-441ea159a462_ecc101ed-4a0d-11e9-ab68-441ea159a462.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=0], baseline, precision 8, 400x400, components 3\012- data
Hash 7fa32762ee72735561ca04e1a33649b2
489b80a89566c8e8580a54dba462d264157f0355
01894435f20e4d28db5dd264bab4815a13103ea71b792ec0d3fea070e09f0dd7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/03/88f567fd-2dd4-11e9-ab68-441ea159a462_ecc101ed-4a0d-11e9-ab68-441ea159a462.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 23806
Last-Modified: Thu, 28 Mar 2019 18:15:41 GMT
Connection: keep-alive
ETag: "5c9d0f4d-5cfe"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/06/5a795e36-04d2-11e8-ae9e-441ea159a462_06c6215b-3735-11e8-ae9e-441ea159a462.jpeg
200 OK 23 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/06/5a795e36-04d2-11e8-ae9e-441ea159a462_06c6215b-3735-11e8-ae9e-441ea159a462.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=13, height=2607, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2225], baseline, precision 8, 398x400, components 3\012- data
Hash 2b7b18a22a2cdc0359ce1b02be8a2b99
84d8eb8b9b84499e0dc2f14ad74e9c45d54e95a3
83e1d214d87591e7476f77f034e99e0221ed2c9f2780a664a1f27bc7957e6fec
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/06/5a795e36-04d2-11e8-ae9e-441ea159a462_06c6215b-3735-11e8-ae9e-441ea159a462.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 23447
Last-Modified: Fri, 12 Jul 2019 18:46:22 GMT
Connection: keep-alive
ETag: "5d28d57e-5b97"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/06/52992af8-04d2-11e8-ae9e-441ea159a462_103af8d2-3735-11e8-ae9e-441ea159a462.jpeg
200 OK 26 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/06/52992af8-04d2-11e8-ae9e-441ea159a462_103af8d2-3735-11e8-ae9e-441ea159a462.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=2607, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2225], baseline, precision 8, 400x400, components 3\012- data
Hash 940ab21914e1af0bb1b7f05eeaaaa5fd
a112e0d12613b9b4392be1fc566e470ae9f5781c
9a4e17b818681ddb161683c45c4383489d0b687a8de62e87d487ff41d4e05374
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/06/52992af8-04d2-11e8-ae9e-441ea159a462_103af8d2-3735-11e8-ae9e-441ea159a462.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: image/jpeg
Content-Length: 25953
Last-Modified: Fri, 12 Jul 2019 18:46:22 GMT
Connection: keep-alive
ETag: "5d28d57e-6561"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/06/39024d78-04d2-11e8-ae9e-441ea159a462_1ab61dbc-371f-11e8-ae9e-441ea159a462.jpeg
200 OK 31 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/06/39024d78-04d2-11e8-ae9e-441ea159a462_1ab61dbc-371f-11e8-ae9e-441ea159a462.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=2607, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2225], baseline, precision 8, 410x411, components 3\012- data
Hash 1992f57cd41272a546edf979f15c7080
a5c4ddd4c1b907d29fe69c5700dd1afd990bb41a
b6957315d983d77f81b2b3ca301d4d8cd1072954a24f433725be362a242f8a1f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/06/39024d78-04d2-11e8-ae9e-441ea159a462_1ab61dbc-371f-11e8-ae9e-441ea159a462.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: image/jpeg
Content-Length: 30654
Last-Modified: Fri, 12 Jul 2019 18:46:22 GMT
Connection: keep-alive
ETag: "5d28d57e-77be"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/03/638d7547-414c-11de-8fbe-0019d1100269_087038c3-f3d6-11df-8faa-0050568e7fd3.jpeg
200 OK 166 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/03/638d7547-414c-11de-8fbe-0019d1100269_087038c3-f3d6-11df-8faa-0050568e7fd3.jpeg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1280x1039, components 3\012- data
Size 166 kB (165583 bytes)
Hash 68b0cfcc376383482f0b0e01ffe1da30
26b26a3bc0a17c3d4a73aadcd82a20bcb578e9ee
158223488644eaf82bb4b523d6a15596f2b55b7d863d7ae74f849c442a55b43a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/03/638d7547-414c-11de-8fbe-0019d1100269_087038c3-f3d6-11df-8faa-0050568e7fd3.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:47 GMT
Content-Type: image/jpeg
Content-Length: 165583
Last-Modified: Thu, 28 Mar 2019 18:15:48 GMT
Connection: keep-alive
ETag: "5c9d0f54-286cf"
Expires: Sat, 03 Feb 2024 07:25:47 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/06/0ed6f111-a75b-11e7-8879-441ea159a462_c13875cf-3719-11e8-ae9e-441ea159a462.jpeg
200 OK 32 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/06/0ed6f111-a75b-11e7-8879-441ea159a462_c13875cf-3719-11e8-ae9e-441ea159a462.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=0], baseline, precision 8, 400x399, components 3\012- data
Hash 99694a1f3fc186ec662500c7e73493e1
098e25d6d48e1308cce3f72dc0fa664e482a1413
6baa6d14a199da8404341cdaa964996af3f758057fac3846abdc369d148875f2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/06/0ed6f111-a75b-11e7-8879-441ea159a462_c13875cf-3719-11e8-ae9e-441ea159a462.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: image/jpeg
Content-Length: 31612
Last-Modified: Fri, 12 Jul 2019 18:46:22 GMT
Connection: keep-alive
ETag: "5d28d57e-7b7c"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/06/dfc74404-a754-11e7-8879-441ea159a462_9be0df83-3719-11e8-ae9e-441ea159a462.jpeg
200 OK 35 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/06/dfc74404-a754-11e7-8879-441ea159a462_9be0df83-3719-11e8-ae9e-441ea159a462.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=2607, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2225], baseline, precision 8, 400x400, components 3\012- data
Hash 49ec6ba33cb99f7e7748eb12cd5e3a33
3dce2fde28878e99badf875c13e3c47f29150f1f
d0792d9e5fe197f0d030e929d5e5bbd1b87cb0a6e9d992b8ca7e63f493c24d20
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/06/dfc74404-a754-11e7-8879-441ea159a462_9be0df83-3719-11e8-ae9e-441ea159a462.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: image/jpeg
Content-Length: 34609
Last-Modified: Fri, 12 Jul 2019 18:46:22 GMT
Connection: keep-alive
ETag: "5d28d57e-8731"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/06/08335887-a75b-11e7-8879-441ea159a462_af4b18bf-3719-11e8-ae9e-441ea159a462.jpeg
200 OK 35 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/06/08335887-a75b-11e7-8879-441ea159a462_af4b18bf-3719-11e8-ae9e-441ea159a462.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [\012- TIFF image data, big-endian, direntries=3, software=Adobe Photoshop CS5 Windows], baseline, precision 8, 400x400, components 3\012- data
Hash 6ecd0b0b112f4a19e2520da81990711b
4330ef0c7a5e014b12f68e3d49557fd1dd650cb7
cc61a40fecb8a6cd355c8a049b2e01f3de18fdf279a81d3304e1d022457c245a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/06/08335887-a75b-11e7-8879-441ea159a462_af4b18bf-3719-11e8-ae9e-441ea159a462.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: image/jpeg
Content-Length: 34702
Last-Modified: Fri, 12 Jul 2019 18:46:22 GMT
Connection: keep-alive
ETag: "5d28d57e-878e"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/06/1d02cd96-a75b-11e7-8879-441ea159a462_4b4845b4-371a-11e8-ae9e-441ea159a462.jpeg
200 OK 29 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/06/1d02cd96-a75b-11e7-8879-441ea159a462_4b4845b4-371a-11e8-ae9e-441ea159a462.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=0], baseline, precision 8, 400x400, components 3\012- data
Hash 335ac5e5a077cd90955f9230cf6b587b
fd774f3357c2dfa0913fc6a2e444adc1dfcdfcfc
feb0df52ed010c26f67131c9097d01dc5881574351c2de912c9a55f4af804535
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/06/1d02cd96-a75b-11e7-8879-441ea159a462_4b4845b4-371a-11e8-ae9e-441ea159a462.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: image/jpeg
Content-Length: 29145
Last-Modified: Fri, 12 Jul 2019 18:46:22 GMT
Connection: keep-alive
ETag: "5d28d57e-71d9"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/03/dc9f3b30-b6b9-11e1-8cff-441ea159a462_3a424cd9-e2f8-11e1-8763-441ea159a462.jpeg
200 OK 3.3 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/03/dc9f3b30-b6b9-11e1-8cff-441ea159a462_3a424cd9-e2f8-11e1-8763-441ea159a462.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 95x150, components 3\012- data
Hash bd0a0e1dc372cf9c2ea144ba2d413855
991ddc7dbc92e90115d5e28ea26b690deca515d4
b75e5a0678348cf39f3f900d3d7e799e66fb4b604da626e0a00a22963b7494da
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/03/dc9f3b30-b6b9-11e1-8cff-441ea159a462_3a424cd9-e2f8-11e1-8763-441ea159a462.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: image/jpeg
Content-Length: 3293
Last-Modified: Thu, 28 Mar 2019 18:16:06 GMT
Connection: keep-alive
ETag: "5c9d0f66-cdd"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2018/12/3.-ARCO.png
200 OK 2.4 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2018/12/3.-ARCO.png
IP
File type PNG image data, 152 x 50, 8-bit/color RGB, non-interlaced\012- data
Hash fa495779af2cb70b7ccc516ab477203f
d393676c069182cd4a88dc30cc7615ab55bc25b8
d822cb01a002b0efd219f8de9d1685a25f5fd58f65a6db7ad7cfe0981f367df6
GET /wp-content/uploads/2018/12/3.-ARCO.png HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: image/png
Content-Length: 2429
Last-Modified: Thu, 20 Dec 2018 15:10:37 GMT
Connection: keep-alive
ETag: "5c1bb0ed-97d"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2018/11/atusa.png
200 OK 4.7 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2018/11/atusa.png
IP
File type PNG image data, 279 x 181, 8-bit colormap, non-interlaced\012- data
Hash 188694c8560e36b04a5cc2e18b151cdc
ed9d34947da5866771c120929a99c99c1f7218fe
e057e8e80d3883e03e605b05516f23adb24ce08fb99d0cea9d2eb9d95bf00654
GET /wp-content/uploads/2018/11/atusa.png HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: image/png
Content-Length: 4664
Last-Modified: Sat, 10 Nov 2018 00:49:06 GMT
Connection: keep-alive
ETag: "5be62b02-1238"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2018/11/jimten.png
200 OK 33 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2018/11/jimten.png
IP
File type PNG image data, 800 x 799, 8-bit/color RGBA, non-interlaced\012- data
Hash c8483b17a06541466f92eff09dc8d956
0addb958b90a1989e91ddd8a134549354480b691
103fbe868834a3272ba20433050735adb3a89decba744b84109cb8c9da576394
GET /wp-content/uploads/2018/11/jimten.png HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: image/png
Content-Length: 33063
Last-Modified: Sat, 10 Nov 2018 01:19:24 GMT
Connection: keep-alive
ETag: "5be6321c-8127"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/03/299c3a01-a75b-11e7-8879-441ea159a462_c0833ec2-371a-11e8-ae9e-441ea159a462.jpeg
200 OK 271 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/03/299c3a01-a75b-11e7-8879-441ea159a462_c0833ec2-371a-11e8-ae9e-441ea159a462.jpeg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1305x1000, components 3\012- data
Size 271 kB (270693 bytes)
Hash d39961efa431e7cf99c7902b7628ea87
309347f27b34e22944362fffc330e4a1644dfb27
e1657dfa662f7d6f16af5aa3415689df8324b120d871e724922459b7dd1274a3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/03/299c3a01-a75b-11e7-8879-441ea159a462_c0833ec2-371a-11e8-ae9e-441ea159a462.jpeg HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: image/jpeg
Content-Length: 270693
Last-Modified: Fri, 29 Mar 2019 22:57:41 GMT
Connection: keep-alive
ETag: "5c9ea2e5-42165"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2019/02/3.-NTM-%D0%BB%D0%BE%D0%B3%D0%BE-1.png
200 OK 64 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2019/02/3.-NTM-%D0%BB%D0%BE%D0%B3%D0%BE-1.png
IP
File type PNG image data, 222 x 158, 8-bit/color RGBA, non-interlaced\012- data
Hash 7520c2b0bd2a72124163dd75b2b18e75
5083fff08d1a0562e705ec1d2a40833cac44372d
bd337fb12169f3748bbbfeabaf1dac2bd366aab513aceea169a3f21370819c64
GET /wp-content/uploads/2019/02/3.-NTM-%D0%BB%D0%BE%D0%B3%D0%BE-1.png HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: image/png
Content-Length: 63935
Last-Modified: Fri, 22 Feb 2019 15:53:01 GMT
Connection: keep-alive
ETag: "5c701add-f9bf"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2018/11/Sanha.png
200 OK 3.3 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2018/11/Sanha.png
IP
File type PNG image data, 782 x 235, 8-bit colormap, non-interlaced\012- data
Hash 91f7bc55aeeb62d464170cf269894f68
e9b996a086b534e0fc2941d74664c200feef8158
fd072b4e1164fd049733c64223a776da8e06d3997cd9734d4d9743abe861b971
GET /wp-content/uploads/2018/11/Sanha.png HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: image/png
Content-Length: 3345
Last-Modified: Sat, 10 Nov 2018 01:24:50 GMT
Connection: keep-alive
ETag: "5be63362-d11"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2018/11/viega.png
200 OK 4.2 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2018/11/viega.png
IP
File type PNG image data, 151 x 129, 8-bit colormap, non-interlaced\012- data
Hash 194e9fd675869bfb4947e733d8bcb28a
55fa2207c7c29ec0c373ae4d4604565037d4b7ce
b4d2eb85cd540f3b92cc1f6a7541565392a7de635e365d4584cad5a9635333bf
GET /wp-content/uploads/2018/11/viega.png HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: image/png
Content-Length: 4237
Last-Modified: Sat, 10 Nov 2018 00:50:36 GMT
Connection: keep-alive
ETag: "5be62b5c-108d"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2018/11/viessman.gif
200 OK 4.8 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2018/11/viessman.gif
IP
File type GIF image data, version 89a, 538 x 296\012- data
Hash 4064141a754898eab9c6f297dba29540
35d24cd42ce065d6700103a5c25d0b3d3f0afce1
119f2d9d88981c885d4f0341ba6912bdc25bb4bb1836147d18b3a5fba134a66b
GET /wp-content/uploads/2018/11/viessman.gif HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: image/gif
Content-Length: 4750
Last-Modified: Sat, 10 Nov 2018 00:51:36 GMT
Connection: keep-alive
ETag: "5be62b98-128e"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/wp-content/uploads/2018/11/NT.png
200 OK 107 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2018/11/NT.png
IP
File type PNG image data, 536 x 590, 8-bit/color RGBA, non-interlaced\012- data
Size 107 kB (106796 bytes)
Hash f408c4843c9c1b5234c05c4bf8a6ef46
999bbf73b253b3cb7980b126e4cca0519a712933
9aaf3b86c0b0c8e074baefc7d5c7730de452f063ffcc942b22570c3c68f0c9dc
GET /wp-content/uploads/2018/11/NT.png HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: image/png
Content-Length: 106796
Last-Modified: Sat, 10 Nov 2018 00:53:04 GMT
Connection: keep-alive
ETag: "5be62bf0-1a12c"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
groupalkor.ru/?wc-ajax=get_refreshed_fragments
200 OK 293 B URL HTTP/1.1 groupalkor.ru/?wc-ajax=get_refreshed_fragments
IP
File type JSON data\012- , ASCII text, with very long lines (572), with no line terminators
Hash c4e212c2848ae62b0f38a29330650d31
8d3f10943cddded7d88a44b9f80a9ff40b97e7e4
f52aad014b571a53568a8c3e644f043a8408b4a8f8f616a1913b08360e468ce3
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
X-Requested-With: XMLHttpRequest
Origin: https://groupalkor.ru
Connection: keep-alive
Cookie: firstenter=1675409147
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: application/json; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://groupalkor.ru
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/uploads/2018/11/favicon-2.png
200 OK 11 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2018/11/favicon-2.png
IP
File type PNG image data, 95 x 89, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f4d9c82228f24a1766ec718e293782d
64309a8d0c897bcc915600492bb5f35212505e9d
1c371d320c5aba5f34193716777f11a872e2724fd085dc5b2a5e2766c22631b0
GET /wp-content/uploads/2018/11/favicon-2.png HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Cookie: firstenter=1675409147
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: image/png
Content-Length: 10693
Last-Modified: Sun, 11 Nov 2018 17:52:58 GMT
Connection: keep-alive
ETag: "5be86c7a-29c5"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
ocsp.globalsign.com/gseccovsslca2018
200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash ae2c77087748aba5d91ae3c32bf5aaf9
83d9f00ac80440b2db8a428fc7fdc3a81cae7a24
28365344362b91a996c2bbd595cc0e7659241e12d4c167f0154011658eaa9a07
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Tue, 07 Feb 2023 04:34:42 GMT
ETag: "83d9f00ac80440b2db8a428fc7fdc3a81cae7a24"
Last-Modified: Fri, 03 Feb 2023 04:34:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1001
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79396f49d92eb4ee-OSL
groupalkor.ru/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8
200 OK 8.0 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8
IP
File type ASCII text, with very long lines (28818), with CRLF line terminators
Hash f2c666de3e278f62c1a665da9da4a4c9
863e3f1498fbfba0f1f44f3df738b18f6ff79149
1121bf93424f295b9e236144f311b344d03bcbd0ee56cae2df2e769368fcf9f4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8 HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: firstenter=1675409147
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Thu, 01 Nov 2018 10:15:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5bdad237-718e"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.actions.min.js?version=5.4.8
200 OK 2.8 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.actions.min.js?version=5.4.8
IP
File type ASCII text, with very long lines (8089), with CRLF line terminators
Hash ec112f6d0f07b3f1806aef293bbbcab9
5651f90b4837e564c4e5c5d440b307f148bc6243
460be02eb3f821a713efe109ece66a69e3bc94a543f070b40903c5a04c1a6bd1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.actions.min.js?version=5.4.8 HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: firstenter=1675409147
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Thu, 01 Nov 2018 10:15:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5bdad236-2089"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.8
200 OK 17 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.8
IP
File type ASCII text, with very long lines (55556), with CRLF line terminators
Hash 6db513b03faa229b62511bdbd08df43a
66968557be1412531cc8e20bfe29816096e36d65
5f50eb532c607bb7b4896a39fc79f05a065b32ffb2f4fb0b4784711b076f38ba
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.8 HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: firstenter=1675409147
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Thu, 01 Nov 2018 10:15:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5bdad236-da01"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
groupalkor.ru/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.8
200 OK 8.1 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.8
IP
File type ASCII text, with very long lines (25862), with CRLF line terminators
Hash c636738e41e8e6177e47fa0595372f6d
b8f3c5814647979bb343020e14385d1bd47d02e2
a8762c159cf0a704a517eb666c70e8cfe5d6f5532a68c7e25a9a6a18c9831c0f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.8 HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: firstenter=1675409147
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: application/javascript; charset=utf8
Last-Modified: Thu, 01 Nov 2018 10:15:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5bdad236-65f7"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
mc.yandex.ru/metrika/tag.js
200 OK 74 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Hash a236c7014c1f1a1e52d356f59e5d665a
b66c638eb2346287364c37725819bbab1f409d66
ad2d57579e453af0eac49156840bcd1dcfbd802a82135af98f41f714d7e698f2
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73769
date: Fri, 03 Feb 2023 07:25:48 GMT
access-control-allow-origin: *
etag: "63c93a4b-12029"
expires: Fri, 03 Feb 2023 08:25:48 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/54623119/1?wmode=7&page-url=https%3A%2F%2Fgroupalkor.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1185%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A992076436900%3Ahid%3A167876717%3Az%3A0%3Ai%3A20230203072618%3Aet%3A1675409179%3Ac%3A1%3Arn%3A124201061%3Arqn%3A1%3Au%3A1675409179400217969%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A4%2C193%2C63%2C0%2C358%2C0%2C%2C988%2C535%2C%2C%2C%2C1750%3Aco%3A0%3Ans%3A1675409176023%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675409179%3At%3A%D0%93%D0%9A%20%D0%90%D0%BB%D1%8C%D0%BA%D0%BE%D1%80%20%E2%80%94%20%D0%98%D0%BD%D0%B6%D0%B5%D0%BD%D0%B5%D1%80%D0%BD%D0%B0%D1%8F%20%D1%81%D0%B0%D0%BD%D1%82%D0%B5%D1%85%D0%BD%D0%B8%D0%BA%D0%B0&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
200 OK 407 B URL HTTP/2 mc.yandex.ru/watch/54623119/1?wmode=7&page-url=https%3A%2F%2Fgroupalkor.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1185%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A992076436900%3Ahid%3A167876717%3Az%3A0%3Ai%3A20230203072618%3Aet%3A1675409179%3Ac%3A1%3Arn%3A124201061%3Arqn%3A1%3Au%3A1675409179400217969%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A4%2C193%2C63%2C0%2C358%2C0%2C%2C988%2C535%2C%2C%2C%2C1750%3Aco%3A0%3Ans%3A1675409176023%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675409179%3At%3A%D0%93%D0%9A%20%D0%90%D0%BB%D1%8C%D0%BA%D0%BE%D1%80%20%E2%80%94%20%D0%98%D0%BD%D0%B6%D0%B5%D0%BD%D0%B5%D1%80%D0%BD%D0%B0%D1%8F%20%D1%81%D0%B0%D0%BD%D1%82%D0%B5%D1%85%D0%BD%D0%B8%D0%BA%D0%B0&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP
File type JSON data\012- , ASCII text, with very long lines (407), with no line terminators
Hash 24aa566956742047a56ba7b87af9e2b9
b8d9dee8a4886802eb7e2c0953e1a78d59f86a51
e2e7829aeae4c445e42c4b0504c3ffb960f4e503cc03b1821dbe5cfde4a14687
GET /watch/54623119/1?wmode=7&page-url=https%3A%2F%2Fgroupalkor.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1185%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A992076436900%3Ahid%3A167876717%3Az%3A0%3Ai%3A20230203072618%3Aet%3A1675409179%3Ac%3A1%3Arn%3A124201061%3Arqn%3A1%3Au%3A1675409179400217969%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A4%2C193%2C63%2C0%2C358%2C0%2C%2C988%2C535%2C%2C%2C%2C1750%3Aco%3A0%3Ans%3A1675409176023%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675409179%3At%3A%D0%93%D0%9A%20%D0%90%D0%BB%D1%8C%D0%BA%D0%BE%D1%80%20%E2%80%94%20%D0%98%D0%BD%D0%B6%D0%B5%D0%BD%D0%B5%D1%80%D0%BD%D0%B0%D1%8F%20%D1%81%D0%B0%D0%BD%D1%82%D0%B5%D1%85%D0%BD%D0%B8%D0%BA%D0%B0&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://groupalkor.ru
Referer: https://groupalkor.ru/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 407
date: Fri, 03 Feb 2023 07:25:48 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://groupalkor.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 07:25:48 GMT
last-modified: Fri, 03-Feb-2023 07:25:48 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 03 Feb 2023 07:25:48 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Fri, 03 Feb 2023 08:25:48 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 03 Feb 2023 05:44:08 GMT
expires: Fri, 03 Feb 2023 07:44:08 GMT
cache-control: public, max-age=7200
age: 6100
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16108
Expires: Fri, 03 Feb 2023 11:54:16 GMT
Date: Fri, 03 Feb 2023 07:25:48 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16108
Expires: Fri, 03 Feb 2023 11:54:16 GMT
Date: Fri, 03 Feb 2023 07:25:48 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16108
Expires: Fri, 03 Feb 2023 11:54:16 GMT
Date: Fri, 03 Feb 2023 07:25:48 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16108
Expires: Fri, 03 Feb 2023 11:54:16 GMT
Date: Fri, 03 Feb 2023 07:25:48 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16108
Expires: Fri, 03 Feb 2023 11:54:16 GMT
Date: Fri, 03 Feb 2023 07:25:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 114e345e134986d7451148fcea31b29d
541e878afee68c8802bb52b0cbbe5a5a0a185392
5030244d4babd1023166f39c935029d789a91ba90aa3a44c6f4c88ddc947b678
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8211
x-amzn-requestid: 6a1fd567-b34d-4787-aa05-5b7db3fc51c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fflRBHU4IAMFnsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61c06-2d1ec3206d2ebeb4780a84b4;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:11:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lUloQ6xaRWpnvMRh7kFvFIWhFotmILLZHfD_YK01RmrQ2vmYKVh46w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 03:08:32 GMT
age: 15436
etag: "541e878afee68c8802bb52b0cbbe5a5a0a185392"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
groupalkor.ru/wp-content/plugins/revslider/admin/assets/images/transparent.png
200 OK 71 B URL HTTP/1.1 groupalkor.ru/wp-content/plugins/revslider/admin/assets/images/transparent.png
IP
File type PNG image data, 10 x 10, 8-bit/color RGBA, non-interlaced\012- data
Hash 753f6c59bbe7913f21576b58b193bc5a
b3e3885f69e401b3a320010ff7a40dd19768fe3b
8ea078292393a14a8e44be139a7fa6ed09d9c650e210eccca587045239b71cab
GET /wp-content/plugins/revslider/admin/assets/images/transparent.png HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Cookie: firstenter=1675409147; _ym_uid=1675409179400217969; _ym_d=1675409179
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: image/png
Content-Length: 71
Last-Modified: Thu, 01 Nov 2018 10:15:00 GMT
Connection: keep-alive
ETag: "5bdad224-47"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 34667
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
groupalkor.ru/wp-content/plugins/revslider/public/assets/assets/loader.gif
200 OK 2.5 kB URL HTTP/1.1 groupalkor.ru/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/wp-content/cache/autoptimize/css/autoptimize_b5b0c784e5b221975bcfec566d50ebdd.css
Connection: keep-alive
Cookie: firstenter=1675409147; _ym_uid=1675409179400217969; _ym_d=1675409179
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: image/gif
Content-Length: 2545
Last-Modified: Thu, 01 Nov 2018 10:15:11 GMT
Connection: keep-alive
ETag: "5bdad22f-9f1"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02b3a6ce-4c58-4537-b381-4408c9d874e0.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02b3a6ce-4c58-4537-b381-4408c9d874e0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d6ea028ef77181355868bb36e11a7b88
158bbc1deaf9becfab7a022140881c7cdfa569ba
639d95e5e0d47333b64456d10fdf58a6b08fc0534bdbefd0fbf1f95a3114aae2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02b3a6ce-4c58-4537-b381-4408c9d874e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13256
x-amzn-requestid: 80e76cde-e3b4-4561-9dd5-41ed978b5179
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpc79HgtoAMFnxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63da0eb2-79750d82126858473cdaab70;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 07:03:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: M8V4C2TS29wrxVDbhXjneMEOx7lAfv9vVklCosiY5gZLas-MaVuO5g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:29:10 GMT
age: 86198
etag: "158bbc1deaf9becfab7a022140881c7cdfa569ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg
200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe87e986c62630127a7fdd979c802947
28ce91c8643c4bc4dcc4cd26dfc69dc6219ce5bf
770a765c927c0f81d0c41acd45a7a24f5799f9497fcc73489cab4fafbf994bdb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5256
x-amzn-requestid: b0455eb8-b10c-4328-8abe-65c5184f6654
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frx7uFcooAMFpxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dafd17-553139816e1fb7b65e683dc6;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 00:00:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pwRBB72InX8OP4KXpQKTs9T4iMY0E3hPX8Nko9gd7m1BOm8_DqbRaA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 00:37:24 GMT
age: 24504
etag: "28ce91c8643c4bc4dcc4cd26dfc69dc6219ce5bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a6aaf87a867f93dc9268a8b27973b97
f52ccbe6cbced1994acb13a00b05436553b6813e
3fbd7441712035f4d53c17eec93bc278e6c072043f3b5a721cac349fc0dabe77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10166
x-amzn-requestid: 54fe0d12-360f-4d97-bcf3-b24747d956aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY_4zHEcoAMF1iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d379d1-4ba89e44005f616a0ed3ed24;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:14:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hSyEfSDToqgfnFIW68Krz-ANYUNQoUPWhyb-8xDUarI6mnVLXriHDQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:59:54 GMT
age: 33954
etag: "f52ccbe6cbced1994acb13a00b05436553b6813e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e706db8a6107758a148463e916f2532d
4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81
673f18036a53f8ff297ef6a63fd094e7c41d90f3960f0e687a741cc7dd3f6172
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6791
x-amzn-requestid: 665115ea-728e-4a55-aaf8-b09db3fa67a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffl96FIzIAMFYGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61d25-0abbd7262ca10b7a7d2bf9eb;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:15:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nPgaBSGyLJQnN0ofVRFniW2LqzgKVWchSKYSjYCmuPtpL9Ner81ARQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:14:03 GMT
age: 33105
etag: "4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
groupalkor.ru/wp-content/uploads/2018/11/vito.png
200 OK 50 kB URL HTTP/1.1 groupalkor.ru/wp-content/uploads/2018/11/vito.png
IP
File type PNG image data, 700 x 700, 8-bit colormap, non-interlaced\012- data
Hash d8731d7ddc23c96e3f586aac95c3d90c
9b03a993e276f886d7ec300943c228703a09fa88
228526f65c341c0746063732217089092c548ec70892bfc43d7ef85cc4fb8a32
GET /wp-content/uploads/2018/11/vito.png HTTP/1.1
Host: groupalkor.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupalkor.ru/
Connection: keep-alive
Cookie: firstenter=1675409147; _ym_uid=1675409179400217969; _ym_d=1675409179
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 07:25:48 GMT
Content-Type: image/png
Content-Length: 49774
Last-Modified: Mon, 05 Nov 2018 01:06:30 GMT
Connection: keep-alive
ETag: "5bdf9796-c26e"
Expires: Sat, 03 Feb 2024 07:25:48 GMT
Cache-Control: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
Accept-Ranges: bytes
mc.yandex.ru/clmap/54623119?page-url=https%3A%2F%2Fgroupalkor.ru%2F&pointer-click=rn%3A777247848%3Ax%3A-409784%3Ay%3A-4247696%3At%3A3%3Ap%3AQd%7F%C2%842%C2%89AA1AA1AA2%3AX%3A0%3AY%3A0&browser-info=u%3A1675409179400217969%3Av%3A960%3Avf%3Asm0eap24hzlr84c06sesn%3Arqnl%3A1%3Ast%3A1675409179&t=gdpr(14)ti(0)&force-urlencoded=1
200 OK 43 B URL HTTP/2 mc.yandex.ru/clmap/54623119?page-url=https%3A%2F%2Fgroupalkor.ru%2F&pointer-click=rn%3A777247848%3Ax%3A-409784%3Ay%3A-4247696%3At%3A3%3Ap%3AQd%7F%C2%842%C2%89AA1AA1AA2%3AX%3A0%3AY%3A0&browser-info=u%3A1675409179400217969%3Av%3A960%3Avf%3Asm0eap24hzlr84c06sesn%3Arqnl%3A1%3Ast%3A1675409179&t=gdpr(14)ti(0)&force-urlencoded=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /clmap/54623119?page-url=https%3A%2F%2Fgroupalkor.ru%2F&pointer-click=rn%3A777247848%3Ax%3A-409784%3Ay%3A-4247696%3At%3A3%3Ap%3AQd%7F%C2%842%C2%89AA1AA1AA2%3AX%3A0%3AY%3A0&browser-info=u%3A1675409179400217969%3Av%3A960%3Avf%3Asm0eap24hzlr84c06sesn%3Arqnl%3A1%3Ast%3A1675409179&t=gdpr(14)ti(0)&force-urlencoded=1 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://groupalkor.ru
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 03 Feb 2023 07:25:49 GMT
access-control-allow-origin: https://groupalkor.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 07:25:49 GMT
last-modified: Fri, 03-Feb-2023 07:25:49 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/clmap/54623119?page-url=https%3A%2F%2Fgroupalkor.ru%2F&pointer-click=rn%3A280433308%3Ax%3A-252008%3Ay%3A-2117556%3At%3A2%3Ap%3AQd%C2%84%C2%89AA1AA1AA2%3AX%3A0%3AY%3A0&browser-info=u%3A1675409179400217969%3Av%3A960%3Avf%3Asm0eap24hzlr84c06sesn%3Arqnl%3A1%3Ast%3A1675409179&t=gdpr(14)ti(0)&force-urlencoded=1
200 OK 43 B URL HTTP/2 mc.yandex.ru/clmap/54623119?page-url=https%3A%2F%2Fgroupalkor.ru%2F&pointer-click=rn%3A280433308%3Ax%3A-252008%3Ay%3A-2117556%3At%3A2%3Ap%3AQd%C2%84%C2%89AA1AA1AA2%3AX%3A0%3AY%3A0&browser-info=u%3A1675409179400217969%3Av%3A960%3Avf%3Asm0eap24hzlr84c06sesn%3Arqnl%3A1%3Ast%3A1675409179&t=gdpr(14)ti(0)&force-urlencoded=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /clmap/54623119?page-url=https%3A%2F%2Fgroupalkor.ru%2F&pointer-click=rn%3A280433308%3Ax%3A-252008%3Ay%3A-2117556%3At%3A2%3Ap%3AQd%C2%84%C2%89AA1AA1AA2%3AX%3A0%3AY%3A0&browser-info=u%3A1675409179400217969%3Av%3A960%3Avf%3Asm0eap24hzlr84c06sesn%3Arqnl%3A1%3Ast%3A1675409179&t=gdpr(14)ti(0)&force-urlencoded=1 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://groupalkor.ru
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 03 Feb 2023 07:25:49 GMT
access-control-allow-origin: https://groupalkor.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 07:25:49 GMT
last-modified: Fri, 03-Feb-2023 07:25:49 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
code.jivosite.com/script/widget/GAo2L6WlnV
200 OK 6.0 kB URL HTTP/2 code.jivosite.com/script/widget/GAo2L6WlnV
IP
ASN #199524 G-Core Labs S.A.
File type ASCII text, with very long lines (17537), with no line terminators
Hash 69852c52507415a99029b96cfd024ba9
fe591f9ee6f059cb472a7ea117d808540e9c713e
1938915f08c01c8ad4275e86c8abcbbf8e113cd1d7fd53898e67aacfcb6a6017
GET /script/widget/GAo2L6WlnV HTTP/1.1
Host: code.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 07:25:50 GMT
content-type: application/javascript
content-length: 6030
access-control-allow-origin: *
cache-control: max-age=7200
content-encoding: br
etag: "63d3d1ff-178e"
expires: Fri, 03 Feb 2023 09:16:54 GMT
last-modified: Fri, 27 Jan 2023 13:30:39 GMT
vary: Accept-Encoding
via: 1.1 sharxy
x-geo-shard: sber1
cache: HIT
x-cached-since: 2023-02-03T07:16:54+00:00
x-id: fr5-up-gc15
accept-ranges: bytes
X-Firefox-Spdy: h2
code.jivosite.com/script/widget/config/GAo2L6WlnV
200 OK 779 B URL HTTP/2 code.jivosite.com/script/widget/config/GAo2L6WlnV
IP
ASN #199524 G-Core Labs S.A.
File type JSON data\012- , ASCII text, with very long lines (1723), with no line terminators
Hash 6ba4fc08053f3c7b2c18ffb14a73d89e
3d2e149978738e3867d9032da1b9c87c1985a0ed
9d43c2d109cf8d63f6aab7dc8e636972f2a66252dec4d1beb832b41f1c9f1a66
GET /script/widget/config/GAo2L6WlnV HTTP/1.1
Host: code.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://groupalkor.ru
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 07:25:50 GMT
content-type: application/x-javascript
content-length: 779
access-control-allow-origin: *
cache-control: max-age=7200
content-encoding: gzip
expires: Fri, 03 Feb 2023 09:16:56 GMT
vary: Accept-Encoding
via: 1.1 sharxy
x-geo-shard: sber1
cache: HIT
x-cached-since: 2023-02-03T07:16:56+00:00
x-id: fr5-up-gc15
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash 868ecdf336a535cc431c3eb50e837c94
719774aed51c051abdca859fc3569bdc251dc97a
7bd16771885b05eb8574dabe6ee4f2028fa2b43e5a6e737e8c474f1bc6117f44
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 07:25:50 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 07 Feb 2023 03:59:32 GMT
ETag: "719774aed51c051abdca859fc3569bdc251dc97a"
Last-Modified: Fri, 03 Feb 2023 03:59:33 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 134
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79396f5798fe1c06-OSL
node-sber1-az1-3.jivo.ru/widget/status/678472/GAo2L6WlnV?rnd=0.9232617133201763
200 OK 160 B URL HTTP/2 node-sber1-az1-3.jivo.ru/widget/status/678472/GAo2L6WlnV?rnd=0.9232617133201763
IP
ASN #208677 Cloud technology Limited (Ltd.)
File type JSON data\012- , Unicode text, UTF-8 text, with no line terminators
Hash 0ad0946792402aad06ae72bb8cf3c5c9
d0c57f00bfa5850cdbf6748d4581431219b0d70a
1abca006e841b077a77ed1124ae8c61fd7d295b1be8752830cacecc8bb662dbc
GET /widget/status/678472/GAo2L6WlnV?rnd=0.9232617133201763 HTTP/1.1
Host: node-sber1-az1-3.jivo.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://groupalkor.ru
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-max-age: 1728000
access-control-allow-origin: https://groupalkor.ru
access-control-expose-headers: X-Geoip, X-Botmode
cache-control: no-cache, no-store, must-revalidate
content-security-policy: frame-ancestors 'none';
content-type: application/json; charset=utf-8
pragma: no-cache
server: foxy/2.0.1
x-botmode: no
x-frame-options: DENY
x-geoip: NO;03;Oslo (Alna District)
content-length: 160
date: Fri, 03 Feb 2023 07:25:50 GMT
X-Firefox-Spdy: h2
code.jivo.ru/js/bundle_ru_RU.js?rand=1675073338
200 OK 312 kB URL HTTP/2 code.jivo.ru/js/bundle_ru_RU.js?rand=1675073338
IP
ASN #199524 G-Core Labs S.A.
File type Unicode text, UTF-8 text, with very long lines (61072), with no line terminators
Size 312 kB (312243 bytes)
Hash e0051d8ec4339805d765667e70dcef17
1fb505a49abf57e7d6fe0718254b69fd1c0bd5c6
0c273d5c1ba1ceea145e98e8a1a1cd67a15d2c5e0e7acfe59440489f43e9064a
GET /js/bundle_ru_RU.js?rand=1675073338 HTTP/1.1
Host: code.jivo.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 07:25:50 GMT
content-type: application/javascript
content-length: 312243
access-control-allow-origin: *
cache-control: max-age=86400
content-encoding: br
etag: "63d3d258-4c3b3"
last-modified: Fri, 27 Jan 2023 13:32:08 GMT
vary: Accept-Encoding
via: 1.1 sharxy
x-geo-shard: sber1
cache: HIT
x-cached-since: 2023-02-02T11:59:50+00:00
x-id: am3-up-gc94
accept-ranges: bytes
X-Firefox-Spdy: h2
code.jivo.ru/css/b5db4a2/widget.css
200 OK 55 kB URL HTTP/2 code.jivo.ru/css/b5db4a2/widget.css
IP
ASN #199524 G-Core Labs S.A.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 004931a4da9cfd7562213d8bbb13d82e
736d6359b42f730f53e1584632d5ec5e9f843b81
aa7da624e1a373d5d19c1de7b2280c4684125a66bf45cc5a0d6d98cad216061c
GET /css/b5db4a2/widget.css HTTP/1.1
Host: code.jivo.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 07:25:51 GMT
content-type: text/css
content-length: 54830
cache-control: max-age=864000
content-encoding: br
etag: "63d3d23f-d62e"
expires: Fri, 10 Feb 2023 11:59:48 GMT
last-modified: Fri, 27 Jan 2023 13:31:43 GMT
vary: Accept-Encoding
via: 1.1 sharxy
x-geo-shard: sber1
cache: HIT
x-cached-since: 2023-01-31T11:59:48+00:00
x-id: am3-up-gc94
accept-ranges: bytes
X-Firefox-Spdy: h2
code.jivo.ru/sounds/agent_message.mp3
206 Partial Content 3.8 kB URL HTTP/2 code.jivo.ru/sounds/agent_message.mp3
IP
ASN #199524 G-Core Labs S.A.
File type MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo\012- data
Hash 8e9a165c4cb185ffd0b2658fa088e43b
195873e5e8bbb2f5ecc32d95f90d6fb75817a649
ff81aad05612f90cf97c238f219765884e5cbf49351d8dc96a4a063c598c3f43
GET /sounds/agent_message.mp3 HTTP/1.1
Host: code.jivo.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
server: nginx
date: Fri, 03 Feb 2023 07:25:51 GMT
content-type: audio/mpeg
content-length: 3760
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cache-control: max-age=2592000
etag: "63cf9eb6-eb0"
expires: Tue, 28 Feb 2023 09:23:12 GMT
last-modified: Tue, 24 Jan 2023 09:02:46 GMT
vary: Accept-Encoding
via: 1.1 sharxy
x-geo-shard: sber1
cache: HIT
x-cached-since: 2023-01-29T09:23:12+00:00
x-id: am3-up-gc95
content-range: bytes 0-3759/3760
X-Firefox-Spdy: h2
code.jivo.ru/sounds/notification.mp3
206 Partial Content 5.8 kB URL HTTP/2 code.jivo.ru/sounds/notification.mp3
IP
ASN #199524 G-Core Labs S.A.
File type Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Monaural\012- data
Hash 9aa341af370c4e59155717260ba0f282
0c1216ecead8d1409557c843d96202c063f3f252
1112436abea08c851302bba4d4e37a27e25e5ec26b20474667a3369d41154bab
GET /sounds/notification.mp3 HTTP/1.1
Host: code.jivo.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
server: nginx
date: Fri, 03 Feb 2023 07:25:51 GMT
content-type: audio/mpeg
content-length: 5808
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cache-control: max-age=2592000
etag: "63cf9eb6-16b0"
expires: Tue, 28 Feb 2023 09:20:42 GMT
last-modified: Tue, 24 Jan 2023 09:02:46 GMT
vary: Accept-Encoding
via: 1.1 sharxy
x-geo-shard: sber1
cache: HIT
x-cached-since: 2023-01-29T09:20:42+00:00
x-id: am3-up-gc94
content-range: bytes 0-5807/5808
X-Firefox-Spdy: h2
code.jivo.ru/sounds/outgoing_message.mp3
206 Partial Content 5.0 kB URL HTTP/2 code.jivo.ru/sounds/outgoing_message.mp3
IP
ASN #199524 G-Core Labs S.A.
File type MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo\012- data
Hash 7bf3e4962a5ecf1f8cbcc2ff3428f531
f75c694461a643d2e096ae8d0f6c1a9d19602eee
d44244617bf21df7a137694fa762d5cab3b82cb9fae8f33de5917977b02b2a11
GET /sounds/outgoing_message.mp3 HTTP/1.1
Host: code.jivo.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
server: nginx
date: Fri, 03 Feb 2023 07:25:51 GMT
content-type: audio/mpeg
content-length: 5014
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cache-control: max-age=2592000
etag: "63cf9eb6-1396"
expires: Tue, 28 Feb 2023 09:23:12 GMT
last-modified: Tue, 24 Jan 2023 09:02:46 GMT
vary: Accept-Encoding
via: 1.1 sharxy
x-geo-shard: sber1
cache: HIT
x-cached-since: 2023-01-29T09:23:12+00:00
x-id: am3-up-gc95
content-range: bytes 0-5013/5014
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/54623119?wmode=0&wv-part=1&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=454303570&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675409182%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072622%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409182&t=gdpr(14)ti(2)
200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/54623119?wmode=0&wv-part=1&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=454303570&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675409182%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072622%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409182&t=gdpr(14)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/54623119?wmode=0&wv-part=1&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=454303570&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675409182%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072622%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409182&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 490027
Origin: https://groupalkor.ru
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 03 Feb 2023 07:25:52 GMT
access-control-allow-origin: https://groupalkor.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 07:25:52 GMT
last-modified: Fri, 03-Feb-2023 07:25:52 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/54623119?wmode=0&wv-part=2&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=1048217893&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675409183%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072622%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409183&t=gdpr(14)ti(2)
200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/54623119?wmode=0&wv-part=2&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=1048217893&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675409183%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072622%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409183&t=gdpr(14)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/54623119?wmode=0&wv-part=2&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=1048217893&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675409183%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072622%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409183&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 67285
Origin: https://groupalkor.ru
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 03 Feb 2023 07:25:53 GMT
access-control-allow-origin: https://groupalkor.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 07:25:53 GMT
last-modified: Fri, 03-Feb-2023 07:25:53 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/54623119?wmode=0&wv-part=1&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=1034896138&wv-type=3&browser-info=we%3A1%3Aet%3A1675409183%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072622%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409183&t=gdpr(14)ti(2)
200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/54623119?wmode=0&wv-part=1&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=1034896138&wv-type=3&browser-info=we%3A1%3Aet%3A1675409183%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072622%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409183&t=gdpr(14)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/54623119?wmode=0&wv-part=1&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=1034896138&wv-type=3&browser-info=we%3A1%3Aet%3A1675409183%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072622%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409183&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: https://groupalkor.ru
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 03 Feb 2023 07:25:53 GMT
access-control-allow-origin: https://groupalkor.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 07:25:53 GMT
last-modified: Fri, 03-Feb-2023 07:25:53 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/54623119?wmode=0&wv-part=3&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=376158911&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675409184%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072623%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409184&t=gdpr(14)ti(2)
200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/54623119?wmode=0&wv-part=3&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=376158911&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675409184%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072623%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409184&t=gdpr(14)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/54623119?wmode=0&wv-part=3&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=376158911&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675409184%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072623%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409184&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15825
Origin: https://groupalkor.ru
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 03 Feb 2023 07:25:53 GMT
access-control-allow-origin: https://groupalkor.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 07:25:53 GMT
last-modified: Fri, 03-Feb-2023 07:25:53 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/54623119?wv-check=57049&wv-type=0&wmode=0&wv-part=1&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=226189382&browser-info=we%3A1%3Aet%3A1675409185%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072625%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409185&t=gdpr(14)ti(2)
200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/54623119?wv-check=57049&wv-type=0&wmode=0&wv-part=1&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=226189382&browser-info=we%3A1%3Aet%3A1675409185%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072625%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409185&t=gdpr(14)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/54623119?wv-check=57049&wv-type=0&wmode=0&wv-part=1&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=226189382&browser-info=we%3A1%3Aet%3A1675409185%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072625%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409185&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: https://groupalkor.ru
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 03 Feb 2023 07:25:55 GMT
access-control-allow-origin: https://groupalkor.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 07:25:55 GMT
last-modified: Fri, 03-Feb-2023 07:25:55 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/54623119?wmode=0&wv-part=2&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=1043946556&wv-type=3&browser-info=we%3A1%3Aet%3A1675409185%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072625%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409185&t=gdpr(14)ti(2)
200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/54623119?wmode=0&wv-part=2&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=1043946556&wv-type=3&browser-info=we%3A1%3Aet%3A1675409185%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072625%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409185&t=gdpr(14)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/54623119?wmode=0&wv-part=2&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=1043946556&wv-type=3&browser-info=we%3A1%3Aet%3A1675409185%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072625%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409185&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: https://groupalkor.ru
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 03 Feb 2023 07:25:55 GMT
access-control-allow-origin: https://groupalkor.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 07:25:55 GMT
last-modified: Fri, 03-Feb-2023 07:25:55 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/54623119?wmode=0&wv-part=4&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=778782135&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675409185%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072625%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409185&t=gdpr(14)ti(2)
200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/54623119?wmode=0&wv-part=4&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=778782135&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675409185%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072625%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409185&t=gdpr(14)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/54623119?wmode=0&wv-part=4&wv-hit=167876717&page-url=https%3A%2F%2Fgroupalkor.ru%2F&rn=778782135&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675409185%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203072625%3Au%3A1675409179400217969%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675409185&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 12696
Origin: https://groupalkor.ru
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 03 Feb 2023 07:25:55 GMT
access-control-allow-origin: https://groupalkor.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 07:25:55 GMT
last-modified: Fri, 03-Feb-2023 07:25:55 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/54623119?wmode=7&page-url=https%3A%2F%2Fgroupalkor.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1185%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A992076436900%3Ahid%3A167876717%3Az%3A0%3Ai%3A20230203072618%3Aet%3A1675409179%3Ac%3A1%3Arn%3A124201061%3Arqn%3A1%3Au%3A1675409179400217969%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A4%2C193%2C63%2C0%2C358%2C0%2C%2C988%2C535%2C%2C%2C%2C1750%3Aco%3A0%3Ans%3A1675409176023%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675409179%3At%3A%D0%93%D0%9A%20%D0%90%D0%BB%D1%8C%D0%BA%D0%BE%D1%80%20%E2%80%94%20%D0%98%D0%BD%D0%B6%D0%B5%D0%BD%D0%B5%D1%80%D0%BD%D0%B0%D1%8F%20%D1%81%D0%B0%D0%BD%D1%82%D0%B5%D1%85%D0%BD%D0%B8%D0%BA%D0%B0&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/54623119?wmode=7&page-url=https%3A%2F%2Fgroupalkor.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1185%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A992076436900%3Ahid%3A167876717%3Az%3A0%3Ai%3A20230203072618%3Aet%3A1675409179%3Ac%3A1%3Arn%3A124201061%3Arqn%3A1%3Au%3A1675409179400217969%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A4%2C193%2C63%2C0%2C358%2C0%2C%2C988%2C535%2C%2C%2C%2C1750%3Aco%3A0%3Ans%3A1675409176023%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675409179%3At%3A%D0%93%D0%9A%20%D0%90%D0%BB%D1%8C%D0%BA%D0%BE%D1%80%20%E2%80%94%20%D0%98%D0%BD%D0%B6%D0%B5%D0%BD%D0%B5%D1%80%D0%BD%D0%B0%D1%8F%20%D1%81%D0%B0%D0%BD%D1%82%D0%B5%D1%85%D0%BD%D0%B8%D0%BA%D0%B0&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP
GET /watch/54623119?wmode=7&page-url=https%3A%2F%2Fgroupalkor.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1185%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A992076436900%3Ahid%3A167876717%3Az%3A0%3Ai%3A20230203072618%3Aet%3A1675409179%3Ac%3A1%3Arn%3A124201061%3Arqn%3A1%3Au%3A1675409179400217969%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A4%2C193%2C63%2C0%2C358%2C0%2C%2C988%2C535%2C%2C%2C%2C1750%3Aco%3A0%3Ans%3A1675409176023%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675409179%3At%3A%D0%93%D0%9A%20%D0%90%D0%BB%D1%8C%D0%BA%D0%BE%D1%80%20%E2%80%94%20%D0%98%D0%BD%D0%B6%D0%B5%D0%BD%D0%B5%D1%80%D0%BD%D0%B0%D1%8F%20%D1%81%D0%B0%D0%BD%D1%82%D0%B5%D1%85%D0%BD%D0%B8%D0%BA%D0%B0&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://groupalkor.ru
Connection: keep-alive
Referer: https://groupalkor.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/54623119/1?wmode=7&page-url=https%3A%2F%2Fgroupalkor.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1185%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A992076436900%3Ahid%3A167876717%3Az%3A0%3Ai%3A20230203072618%3Aet%3A1675409179%3Ac%3A1%3Arn%3A124201061%3Arqn%3A1%3Au%3A1675409179400217969%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A4%2C193%2C63%2C0%2C358%2C0%2C%2C988%2C535%2C%2C%2C%2C1750%3Aco%3A0%3Ans%3A1675409176023%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675409179%3At%3A%D0%93%D0%9A%20%D0%90%D0%BB%D1%8C%D0%BA%D0%BE%D1%80%20%E2%80%94%20%D0%98%D0%BD%D0%B6%D0%B5%D0%BD%D0%B5%D1%80%D0%BD%D0%B0%D1%8F%20%D1%81%D0%B0%D0%BD%D1%82%D0%B5%D1%85%D0%BD%D0%B8%D0%BA%D0%B0&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Fri, 03 Feb 2023 07:25:48 GMT
access-control-allow-origin: https://groupalkor.ru
set-cookie: yabs-sid=1438990781675409148; Path=/; SameSite=None; Secure
i=fPHISCIqCDhjLl4Yuy7nBBXSIfBn3U/a+YpzuMUzQnyY1nyArz3fWzP9Ymja7Ahq2f6mezRIbkGOiOsPmW3AOC2MaLY=; Expires=Mon, 31-Jan-2033 07:25:47 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=1284603501675409148; Expires=Sat, 03-Feb-2024 07:25:48 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=1284603501675409148; Expires=Sat, 03-Feb-2024 07:25:48 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1706945148.yc.1675409148#1706945148.yrts.1675409148#1706945148.yrtsi.1675409148; Expires=Sat, 03-Feb-2024 07:25:48 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 07:25:48 GMT
last-modified: Fri, 03-Feb-2023 07:25:48 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
213.183.53.68
92.223.126.56
34.120.237.76
104.18.21.226
92.223.124.24
23.36.76.226