| cdn.jsdelivr.net/npm/@fancyapps/ui@5.0/dist/fancybox/fancybox.umd.js | 151.101.193.229 | 200 OK | 45 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/@fancyapps/ui@5.0/dist/fancybox/fancybox.umd.js IP151.101.193.229:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash0cb6b36bc12b1753e10d64eacb992fab 2dbee8e916c97fdceab2894629fa2240cff0573b 862504070144a4b17a0e507cb065e52a8e243d9e3a522e2a1a9774beb5643a6e
GET /npm/@fancyapps/ui@5.0/dist/fancybox/fancybox.umd.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.0.36
x-jsd-version-type: version
etag: W/"22c19-Lb7o6RbJf9zqsolGKfoiQM/wVzs"
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 17:47:03 GMT
age: 19958
x-served-by: cache-fra-etou8220130-FRA, cache-hel1410030-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 44571
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/@fancyapps/ui@5.0/dist/fancybox/fancybox.css | 151.101.193.229 | 200 OK | 5.6 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/@fancyapps/ui@5.0/dist/fancybox/fancybox.css IP151.101.193.229:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeASCII text, with very long lines (25343), with no line terminators Hash6273cfb7c536e571916509ef02d26aa5 82269e38f05f2221dac05e27069718c211f16041 cccf165ed1b87949fb74a28d313ba8599b9bfbe56749f68ea40ffc3c97ef4c1a
GET /npm/@fancyapps/ui@5.0/dist/fancybox/fancybox.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.0.36
x-jsd-version-type: version
etag: W/"62ff-giaeOPBfIiHawF4nBpcYwhHxYEE"
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 17:47:03 GMT
age: 8474
x-served-by: cache-fra-eddf8230077-FRA, cache-hel1410030-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5627
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/plugins/print-o-matic/js/print_elements.js?ver=1.1 | 45.130.41.185 | 200 OK | 882 B |
URL GET HTTP/2dadanews.ru/wp-content/plugins/print-o-matic/js/print_elements.js?ver=1.1 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typegzip compressed data, from Unix Hash0eae7fa8c3ea12d7b84c2f11c6aa0695 57c54e5fb5d1778a5fc2c670444855d1fcf27d23 81c7f1c324388cdc5b123fd4ba6897ff9dea7247297b04af8b0c91dfba6971ce
GET /wp-content/plugins/print-o-matic/js/print_elements.js?ver=1.1 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: application/x-javascript
last-modified: Tue, 25 Jul 2023 13:59:26 GMT
vary: Accept-Encoding
etag: W/"64bfd53e-a42"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| news.mediametrics.ru/cgi-bin/b.fcgi?ac=b&m=js&v=3&n=10&id=DivID | 88.212.202.23 | 200 OK | 9.1 kB |
URL GET HTTP/1.1news.mediametrics.ru/cgi-bin/b.fcgi?ac=b&m=js&v=3&n=10&id=DivID IP88.212.202.23:443 ASN#39134 Edinaya Set Limited Liability Company
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subject*.mediametrics.ru Fingerprint9F:8D:CF:3E:88:F6:A9:B6:EB:85:53:4A:C1:42:DA:B6:CA:41:2A:8C ValidityFri, 08 Mar 2024 01:08:24 GMT - Thu, 06 Jun 2024 01:08:23 GMT
Hash0f5b614786abefde379ccf73194ab5e3 9f6038136ef1bbd0d9e7ae4a95c66c506115e807 cea7ffc818995cc83c85d6393444b26a1de2e145d3365172d82092d1a2dd8ba4
GET /cgi-bin/b.fcgi?ac=b&m=js&v=3&n=10&id=DivID HTTP/1.1
Host: news.mediametrics.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 17:47:04 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 9091
Connection: keep-alive
Content-Language: ru
Cache-Control: no-store
Pragma: no-cache
Vary: Accept-Language
Access-Control-Allow-Origin: *
|
|
| jgctqt.com/wgzl17291/ivl/0mp30yh8q687/vuq678pykg3ml.php | 62.76.25.27 | 200 OK | 27 kB |
URL GET HTTP/2jgctqt.com/wgzl17291/ivl/0mp30yh8q687/vuq678pykg3ml.php IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (50460) Hashfcdd3f54ce81cd81f3d92dab579d5500 33bd0f5b28a16c3b3d532aac76452cfc701cfb6a 90399b4b949edd8de012ce58c3315f996025daa41c46e72be97a684f4d1cc112
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wgzl17291/ivl/0mp30yh8q687/vuq678pykg3ml.php HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: application/javascript; charset=utf-8
content-length: 27351
last-modified: Thu, 28 Mar 2024 11:50:40 GMT
etag: "66055990-6ad7"
content-encoding: gzip
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| jgctqt.com/boll71912liv0pmy03h8q876vuq768kpy2n.php | 62.76.25.27 | 200 OK | 27 kB |
URL GET HTTP/2jgctqt.com/boll71912liv0pmy03h8q876vuq768kpy2n.php IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (50460) Hashfcdd3f54ce81cd81f3d92dab579d5500 33bd0f5b28a16c3b3d532aac76452cfc701cfb6a 90399b4b949edd8de012ce58c3315f996025daa41c46e72be97a684f4d1cc112
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /boll71912liv0pmy03h8q876vuq768kpy2n.php HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: application/javascript; charset=utf-8
content-length: 27351
last-modified: Thu, 28 Mar 2024 11:50:40 GMT
etag: "66055990-6ad7"
content-encoding: gzip
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| jgctqt.com/7bq17l/912/ilv/p0m3y0q8h/687quv867pkypawlsf.php | 62.76.25.27 | 200 OK | 27 kB |
URL GET HTTP/2jgctqt.com/7bq17l/912/ilv/p0m3y0q8h/687quv867pkypawlsf.php IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (50460) Hashfcdd3f54ce81cd81f3d92dab579d5500 33bd0f5b28a16c3b3d532aac76452cfc701cfb6a 90399b4b949edd8de012ce58c3315f996025daa41c46e72be97a684f4d1cc112
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /7bq17l/912/ilv/p0m3y0q8h/687quv867pkypawlsf.php HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: application/javascript; charset=utf-8
content-length: 27351
last-modified: Thu, 28 Mar 2024 11:50:40 GMT
etag: "66055990-6ad7"
content-encoding: gzip
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| kit.fontawesome.com/5220e89fd7.js | 172.64.147.188 | 200 OK | 4.9 kB |
URL GET HTTP/2kit.fontawesome.com/5220e89fd7.js IP172.64.147.188:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerDigiCert Inc Subject*.fontawesome.com Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT
File typegzip compressed data, from Unix Hash2f8ec4d029c853469ccf17f1d3db0f6d 4b26ae5c9f53114f3d73230048b8194665272e9f b89247613af227832e81625920e8ca4e3d26a5af5a4bcbc97ca0382e96fb1370
GET /5220e89fd7.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, stale-while-revalidate=30
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F8hoQb7es-YCJ6py3kKi
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8797ea951d3b0b69-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/plugins/print-o-matic/css/print-icon-small-black.png | 45.130.41.185 | 200 OK | 181 B |
URL GET HTTP/2dadanews.ru/wp-content/plugins/print-o-matic/css/print-icon-small-black.png IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typePNG image data, 17 x 16, 8-bit colormap, non-interlaced Hash966809d69df7430404f5bce44f42c4a1 9e4cc60660424ed3a30609d862307ba8e3d664c8 bd8e304db78dd13475dc888d2faa308732973889b74d581c601aec0978ef767c
GET /wp-content/plugins/print-o-matic/css/print-icon-small-black.png HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/wp-content/plugins/print-o-matic/css/style.css?ver=2.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: image/png
content-length: 181
last-modified: Tue, 25 Jul 2023 13:59:26 GMT
etag: "64bfd53e-b5"
expires: Fri, 24 May 2024 17:47:04 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/plugins/wp-postratings/js/postratings-js.js?ver=1.91.1 | 45.130.41.185 | 200 OK | 1.3 kB |
URL GET HTTP/2dadanews.ru/wp-content/plugins/wp-postratings/js/postratings-js.js?ver=1.91.1 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typegzip compressed data, from Unix Hashfc2a8276b1f744ff0d8bf4d3a92b78e4 ef911bc90b2cfa5619096e2a7dee945073479d19 c402d160ad44c05d748d9fcfe1e827b40ff9d1fdda9859ed2d1a2709ffe29906
GET /wp-content/plugins/wp-postratings/js/postratings-js.js?ver=1.91.1 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: application/x-javascript
last-modified: Tue, 12 Mar 2024 09:17:16 GMT
vary: Accept-Encoding
etag: W/"65f01d9c-d01"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/themes/fonts/roboto-regular-webfont.woff2 | 45.130.41.185 | 200 OK | 19 kB |
URL GET HTTP/2dadanews.ru/wp-content/themes/fonts/roboto-regular-webfont.woff2 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 19280, version 1.0 Hash08846a92943d03aa80e56829728ed9d5 c3666530eaab70d6709ee8709f9de42828ecd621 c78e79ead03b0700cc8c0695a911f51863236fa4fac85eef2f71779381fa846e
GET /wp-content/themes/fonts/roboto-regular-webfont.woff2 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/wp-content/themes/dada-news-new/style.css?ver=1710176447
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: application/font-woff2
content-length: 19280
last-modified: Tue, 06 Oct 2020 08:32:44 GMT
etag: "5f7c2bac-4b50"
expires: Fri, 24 May 2024 17:47:04 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/themes/fonts/roboto-regular-webfont.woff2 | 45.130.41.185 | 200 OK | 19 kB |
URL GET HTTP/2dadanews.ru/wp-content/themes/fonts/roboto-regular-webfont.woff2 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 19280, version 1.0 Hash08846a92943d03aa80e56829728ed9d5 c3666530eaab70d6709ee8709f9de42828ecd621 c78e79ead03b0700cc8c0695a911f51863236fa4fac85eef2f71779381fa846e
GET /wp-content/themes/fonts/roboto-regular-webfont.woff2 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/wp-content/themes/dada-news-new/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: application/font-woff2
content-length: 19280
last-modified: Tue, 06 Oct 2020 08:32:44 GMT
etag: "5f7c2bac-4b50"
expires: Fri, 24 May 2024 17:47:04 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/themes/fonts/roboto-italic-webfont.woff2 | 45.130.41.185 | 200 OK | 24 kB |
URL GET HTTP/2dadanews.ru/wp-content/themes/fonts/roboto-italic-webfont.woff2 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23552, version 1.0 Hash7bb83cc0cef9f564ed5e032c007005ca 30a8c69b8ea0e2ca7820daa2e2c53de62037658f 5dc534eefe9a0b47a341e8305102460726ceb474e378ddd6809f794313546160
GET /wp-content/themes/fonts/roboto-italic-webfont.woff2 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/wp-content/themes/dada-news-new/style.css?ver=1710176447
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: application/font-woff2
content-length: 23552
last-modified: Tue, 06 Oct 2020 08:32:44 GMT
etag: "5f7c2bac-5c00"
expires: Fri, 24 May 2024 17:47:04 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/plugins/user-submitted-posts/resources/usp.css?ver=20230311 | 45.130.41.185 | 200 OK | 23 kB |
URL GET HTTP/2dadanews.ru/wp-content/plugins/user-submitted-posts/resources/usp.css?ver=20230311 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typegzip compressed data, from Unix Hash847bf48f8213083ae8e2fefcef58c3ca 2958931ca1671da75d6c8f39c01f80c182114b90 869e58009a7d63cfc0f61b175b4ebd8e3a4108609bbcdfaf631d118ffc4734cb
GET /wp-content/plugins/user-submitted-posts/resources/usp.css?ver=20230311 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: text/css
last-modified: Wed, 26 Jul 2023 14:07:00 GMT
vary: Accept-Encoding
etag: W/"64c12884-345c"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/plugins/rocket-lazy-load/assets/js/16.1/lazyload.min.js | 45.130.41.185 | 200 OK | 3.2 kB |
URL GET HTTP/2dadanews.ru/wp-content/plugins/rocket-lazy-load/assets/js/16.1/lazyload.min.js IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typegzip compressed data, from Unix Hash885f0c4a53b7a89499db02f8255a69ef 097c1fdee04f5081a7a4582444fd9828b6d1cbac 17074996f3fbe1aa6fb058048d9c6c4a7a58f1c9106a4e06120c42def1dc8628
GET /wp-content/plugins/rocket-lazy-load/assets/js/16.1/lazyload.min.js HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: application/x-javascript
last-modified: Tue, 25 Jul 2023 14:01:51 GMT
vary: Accept-Encoding
etag: W/"64bfd5cf-1ed2"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| news.mediametrics.ru/css/w3.css | 88.212.202.23 | 200 OK | 360 B |
URL GET HTTP/1.1news.mediametrics.ru/css/w3.css IP88.212.202.23:443 ASN#39134 Edinaya Set Limited Liability Company
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subject*.mediametrics.ru Fingerprint9F:8D:CF:3E:88:F6:A9:B6:EB:85:53:4A:C1:42:DA:B6:CA:41:2A:8C ValidityFri, 08 Mar 2024 01:08:24 GMT - Thu, 06 Jun 2024 01:08:23 GMT
Hash321157d12330b59dd22194890f16e079 c6891ef124fe978b27d69af0675e8f6a845909fd c16fd41770a070198e6c58c64ba8f7341cef14e76c84649bd628ce772fdfc481
GET /css/w3.css HTTP/1.1
Host: news.mediametrics.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 17:47:04 GMT
Content-Type: text/css; charset=utf-8
Content-Length: 360
Last-Modified: Mon, 04 Nov 2019 13:20:11 GMT
Connection: keep-alive
ETag: "5dc0258b-168"
Content-Encoding: gzip
Access-Control-Allow-Origin: *
|
|
| dadanews.ru/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 | 45.130.41.185 | 200 OK | 10 kB |
URL GET HTTP/2dadanews.ru/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typegzip compressed data, from Unix Hashedc439944f2055604a55f8a6bd6396cd 2f8704ea4d733c27d55634c0e24f7a3b6c39b8f4 306148f610042d9b3b4e2f38738262648df685e78c9e508db5bda59329607d80
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: application/x-javascript
last-modified: Wed, 09 Aug 2023 08:31:37 GMT
vary: Accept-Encoding
etag: W/"64d34ee9-3509"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| lzbgeg.com/foil71921/vlimp030y8qh876quv867/pykgjo9s.php | 62.76.25.28 | 200 OK | 27 kB |
URL GET HTTP/2lzbgeg.com/foil71921/vlimp030y8qh876quv867/pykgjo9s.php IP62.76.25.28:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectlzbgeg.com Fingerprint00:84:0D:0E:7C:F4:13:70:60:69:00:91:F6:3C:4D:CA:1D:E1:39:DE ValidityMon, 08 Apr 2024 02:27:01 GMT - Sun, 07 Jul 2024 02:27:00 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (50460) Hashfcdd3f54ce81cd81f3d92dab579d5500 33bd0f5b28a16c3b3d532aac76452cfc701cfb6a 90399b4b949edd8de012ce58c3315f996025daa41c46e72be97a684f4d1cc112
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /foil71921/vlimp030y8qh876quv867/pykgjo9s.php HTTP/1.1
Host: lzbgeg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: application/javascript; charset=utf-8
content-length: 27351
last-modified: Thu, 28 Mar 2024 11:50:40 GMT
etag: "66055990-6ad7"
content-encoding: gzip
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| news.mediametrics.ru/uploads/1713870627blob.jpg | 88.212.202.23 | 200 OK | 10 kB |
URL GET HTTP/1.1news.mediametrics.ru/uploads/1713870627blob.jpg IP88.212.202.23:443 ASN#39134 Edinaya Set Limited Liability Company
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subject*.mediametrics.ru Fingerprint9F:8D:CF:3E:88:F6:A9:B6:EB:85:53:4A:C1:42:DA:B6:CA:41:2A:8C ValidityFri, 08 Mar 2024 01:08:24 GMT - Thu, 06 Jun 2024 01:08:23 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x256, components 3 Hash0c98bf37831e1f152cef4e8bbb01110b c66fced0925f67353fd58e3012ac485c534ae251 9f34e34702ef828f10e607a85f0a00bd1d32b2d5a674c068d9c7f2677e1c414c
GET /uploads/1713870627blob.jpg HTTP/1.1
Host: news.mediametrics.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 17:47:04 GMT
Content-Type: image/jpeg
Content-Length: 10401
Connection: keep-alive
Last-Modified: Tue, 23 Apr 2024 11:10:27 GMT
ETag: "66279723-28a1"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| lzbgeg.com/qia17l921liv0mpy30/qh8876qvu687pyk0fbj.php | 62.76.25.28 | 200 OK | 27 kB |
URL GET HTTP/2lzbgeg.com/qia17l921liv0mpy30/qh8876qvu687pyk0fbj.php IP62.76.25.28:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectlzbgeg.com Fingerprint00:84:0D:0E:7C:F4:13:70:60:69:00:91:F6:3C:4D:CA:1D:E1:39:DE ValidityMon, 08 Apr 2024 02:27:01 GMT - Sun, 07 Jul 2024 02:27:00 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (50460) Hashfcdd3f54ce81cd81f3d92dab579d5500 33bd0f5b28a16c3b3d532aac76452cfc701cfb6a 90399b4b949edd8de012ce58c3315f996025daa41c46e72be97a684f4d1cc112
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /qia17l921liv0mpy30/qh8876qvu687pyk0fbj.php HTTP/1.1
Host: lzbgeg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: application/javascript; charset=utf-8
content-length: 27351
last-modified: Thu, 28 Mar 2024 11:50:40 GMT
etag: "66055990-6ad7"
content-encoding: gzip
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| lzbgeg.com/ogw1l7912ivl/pm00y3/8hq876qvu/687pkyho3z.php | 62.76.25.28 | 200 OK | 27 kB |
URL GET HTTP/2lzbgeg.com/ogw1l7912ivl/pm00y3/8hq876qvu/687pkyho3z.php IP62.76.25.28:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectlzbgeg.com Fingerprint00:84:0D:0E:7C:F4:13:70:60:69:00:91:F6:3C:4D:CA:1D:E1:39:DE ValidityMon, 08 Apr 2024 02:27:01 GMT - Sun, 07 Jul 2024 02:27:00 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (50460) Hashfcdd3f54ce81cd81f3d92dab579d5500 33bd0f5b28a16c3b3d532aac76452cfc701cfb6a 90399b4b949edd8de012ce58c3315f996025daa41c46e72be97a684f4d1cc112
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ogw1l7912ivl/pm00y3/8hq876qvu/687pkyho3z.php HTTP/1.1
Host: lzbgeg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: application/javascript; charset=utf-8
content-length: 27351
last-modified: Thu, 28 Mar 2024 11:50:40 GMT
etag: "66055990-6ad7"
content-encoding: gzip
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| news.mediametrics.ru/uploads/1713871527blob.jpg | 88.212.202.23 | 200 OK | 8.4 kB |
URL GET HTTP/1.1news.mediametrics.ru/uploads/1713871527blob.jpg IP88.212.202.23:443 ASN#39134 Edinaya Set Limited Liability Company
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subject*.mediametrics.ru Fingerprint9F:8D:CF:3E:88:F6:A9:B6:EB:85:53:4A:C1:42:DA:B6:CA:41:2A:8C ValidityFri, 08 Mar 2024 01:08:24 GMT - Thu, 06 Jun 2024 01:08:23 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x256, components 3 Hashcced65966882e5f6f4652640f93d9a07 9dd6956fabec79328d97d99a990b4e335e5512c7 4f3598757f0c4d0cb645e1686962fa9a3de21af7253a7a49621695844019be44
GET /uploads/1713871527blob.jpg HTTP/1.1
Host: news.mediametrics.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 17:47:04 GMT
Content-Type: image/jpeg
Content-Length: 8429
Connection: keep-alive
Last-Modified: Tue, 23 Apr 2024 11:25:27 GMT
ETag: "66279aa7-20ed"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| lzbgeg.com/jtwl71921lvipm03y0hq8678quv/768/ypkhz.php | 62.76.25.28 | 200 OK | 27 kB |
URL GET HTTP/2lzbgeg.com/jtwl71921lvipm03y0hq8678quv/768/ypkhz.php IP62.76.25.28:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectlzbgeg.com Fingerprint00:84:0D:0E:7C:F4:13:70:60:69:00:91:F6:3C:4D:CA:1D:E1:39:DE ValidityMon, 08 Apr 2024 02:27:01 GMT - Sun, 07 Jul 2024 02:27:00 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (50460) Hashfcdd3f54ce81cd81f3d92dab579d5500 33bd0f5b28a16c3b3d532aac76452cfc701cfb6a 90399b4b949edd8de012ce58c3315f996025daa41c46e72be97a684f4d1cc112
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jtwl71921lvipm03y0hq8678quv/768/ypkhz.php HTTP/1.1
Host: lzbgeg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: application/javascript; charset=utf-8
content-length: 27351
last-modified: Thu, 28 Mar 2024 11:50:40 GMT
etag: "66055990-6ad7"
content-encoding: gzip
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| lzbgeg.com/rw7l71192/lvip0my03q8h687quv768pkywrj89.php | 62.76.25.28 | 200 OK | 27 kB |
URL GET HTTP/2lzbgeg.com/rw7l71192/lvip0my03q8h687quv768pkywrj89.php IP62.76.25.28:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectlzbgeg.com Fingerprint00:84:0D:0E:7C:F4:13:70:60:69:00:91:F6:3C:4D:CA:1D:E1:39:DE ValidityMon, 08 Apr 2024 02:27:01 GMT - Sun, 07 Jul 2024 02:27:00 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (50460) Hashfcdd3f54ce81cd81f3d92dab579d5500 33bd0f5b28a16c3b3d532aac76452cfc701cfb6a 90399b4b949edd8de012ce58c3315f996025daa41c46e72be97a684f4d1cc112
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /rw7l71192/lvip0my03q8h687quv768pkywrj89.php HTTP/1.1
Host: lzbgeg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: application/javascript; charset=utf-8
content-length: 27351
last-modified: Thu, 28 Mar 2024 11:50:40 GMT
etag: "66055990-6ad7"
content-encoding: gzip
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| news.mediametrics.ru/uploads/1713869442blob.jpg | 88.212.202.23 | 200 OK | 9.4 kB |
URL GET HTTP/1.1news.mediametrics.ru/uploads/1713869442blob.jpg IP88.212.202.23:443 ASN#39134 Edinaya Set Limited Liability Company
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subject*.mediametrics.ru Fingerprint9F:8D:CF:3E:88:F6:A9:B6:EB:85:53:4A:C1:42:DA:B6:CA:41:2A:8C ValidityFri, 08 Mar 2024 01:08:24 GMT - Thu, 06 Jun 2024 01:08:23 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x256, components 3 Hash2b8381b6203576283bef987d86a3be3e 8cbb9a20bf5353e4b622a80cef552f9c626a8065 6c6c397cd4bac22b91ae0da3a296380c327c8b19cd194eb56f81757880cb233a
GET /uploads/1713869442blob.jpg HTTP/1.1
Host: news.mediametrics.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 17:47:04 GMT
Content-Type: image/jpeg
Content-Length: 9394
Connection: keep-alive
Last-Modified: Tue, 23 Apr 2024 10:50:42 GMT
ETag: "66279282-24b2"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| dadanews.ru/wp-content/plugins/print-o-matic/css/style.css?ver=2.0 | 45.130.41.185 | 200 OK | 10 kB |
URL GET HTTP/2dadanews.ru/wp-content/plugins/print-o-matic/css/style.css?ver=2.0 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typegzip compressed data, from Unix Hash31ba009dfaa811763848b1dfbaa34b5d c75514b92711ea3502601ca1180f954f4f1a1f44 7fa5ef2aa547215bee30205234ae4bc8969f672af01f3d3be6e34a0d9caf2849
GET /wp-content/plugins/print-o-matic/css/style.css?ver=2.0 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: text/css
last-modified: Tue, 25 Jul 2023 13:59:26 GMT
vary: Accept-Encoding
etag: W/"64bfd53e-46f"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| news.mediametrics.ru/uploads/1713870236blob.jpg | 88.212.202.23 | 200 OK | 7.7 kB |
URL GET HTTP/1.1news.mediametrics.ru/uploads/1713870236blob.jpg IP88.212.202.23:443 ASN#39134 Edinaya Set Limited Liability Company
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subject*.mediametrics.ru Fingerprint9F:8D:CF:3E:88:F6:A9:B6:EB:85:53:4A:C1:42:DA:B6:CA:41:2A:8C ValidityFri, 08 Mar 2024 01:08:24 GMT - Thu, 06 Jun 2024 01:08:23 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x256, components 3 Hash88cca89b0cce66ff12a0205b158da9e4 c641c2a5af90a6a74147a01448652c0e2b6861cf 9876b0ad136d7ad18b6c3df9486941151e7ccc8253de1c75a15ddbac2fdd4b50
GET /uploads/1713870236blob.jpg HTTP/1.1
Host: news.mediametrics.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 17:47:04 GMT
Content-Type: image/jpeg
Content-Length: 7708
Connection: keep-alive
Last-Modified: Tue, 23 Apr 2024 11:03:56 GMT
ETag: "6627959c-1e1c"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| news.mediametrics.ru/uploads/1713871084blob.jpg | 88.212.202.23 | 200 OK | 7.2 kB |
URL GET HTTP/1.1news.mediametrics.ru/uploads/1713871084blob.jpg IP88.212.202.23:443 ASN#39134 Edinaya Set Limited Liability Company
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subject*.mediametrics.ru Fingerprint9F:8D:CF:3E:88:F6:A9:B6:EB:85:53:4A:C1:42:DA:B6:CA:41:2A:8C ValidityFri, 08 Mar 2024 01:08:24 GMT - Thu, 06 Jun 2024 01:08:23 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x256, components 3 Hash08cd97efe60a8bc5aaa35a9a1a1b19b8 b77cd8c2436ba7bf7cd9e7734717f2a314ac550c 9959916ef9d72e510d7963b31c64ac440ee67e278ef2b70f104bdbcd3ef10c67
GET /uploads/1713871084blob.jpg HTTP/1.1
Host: news.mediametrics.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 17:47:04 GMT
Content-Type: image/jpeg
Content-Length: 7210
Connection: keep-alive
Last-Modified: Tue, 23 Apr 2024 11:18:04 GMT
ETag: "662798ec-1c2a"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| news.mediametrics.ru/uploads/1713869241blob.jpg | 88.212.202.23 | 200 OK | 6.9 kB |
URL GET HTTP/1.1news.mediametrics.ru/uploads/1713869241blob.jpg IP88.212.202.23:443 ASN#39134 Edinaya Set Limited Liability Company
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subject*.mediametrics.ru Fingerprint9F:8D:CF:3E:88:F6:A9:B6:EB:85:53:4A:C1:42:DA:B6:CA:41:2A:8C ValidityFri, 08 Mar 2024 01:08:24 GMT - Thu, 06 Jun 2024 01:08:23 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x256, components 3 Hash675bceaa5a796aef03d5d34c5e345eb6 4a1396715ac32d47fe21cd7ec8ba51c009a5f50d a445b1faf9d0441d273ca021c11bcb74b8e7a28e43b33ce6f0a1704e92ef1828
GET /uploads/1713869241blob.jpg HTTP/1.1
Host: news.mediametrics.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 17:47:04 GMT
Content-Type: image/jpeg
Content-Length: 6893
Connection: keep-alive
Last-Modified: Tue, 23 Apr 2024 10:47:21 GMT
ETag: "662791b9-1aed"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| dadanews.ru/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1 | 45.130.41.185 | 200 OK | 6.3 kB |
URL GET HTTP/2dadanews.ru/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typegzip compressed data, from Unix Hash61597ef54068044245ad160cbda2d116 3a0d087dd6867bdf6e36aacd2aa6398e34b452c5 0eb43d0dcc128226a020a2e419f608d168dc00e64c6646b6c1f39dd598dde215
GET /wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: application/x-javascript
last-modified: Tue, 25 Jul 2023 13:58:50 GMT
vary: Accept-Encoding
etag: W/"64bfd51a-81"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| news.mediametrics.ru/uploads/1713871381blob.jpg | 88.212.202.23 | 200 OK | 6.9 kB |
URL GET HTTP/1.1news.mediametrics.ru/uploads/1713871381blob.jpg IP88.212.202.23:443 ASN#39134 Edinaya Set Limited Liability Company
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subject*.mediametrics.ru Fingerprint9F:8D:CF:3E:88:F6:A9:B6:EB:85:53:4A:C1:42:DA:B6:CA:41:2A:8C ValidityFri, 08 Mar 2024 01:08:24 GMT - Thu, 06 Jun 2024 01:08:23 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x256, components 3 Hash581b4d2905553fea0123def452d06ab9 f93442a00956c016187e7f7c6cb18a0963a77407 fc07d04994e68ef5f91cf645ef5d8492260236d00b315dc9eecbdb50db83a086
GET /uploads/1713871381blob.jpg HTTP/1.1
Host: news.mediametrics.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 17:47:04 GMT
Content-Type: image/jpeg
Content-Length: 6926
Connection: keep-alive
Last-Modified: Tue, 23 Apr 2024 11:23:01 GMT
ETag: "66279a15-1b0e"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| dadanews.ru/wp-content/themes/fonts/roboto-bold-webfont.woff2 | 45.130.41.185 | 200 OK | 20 kB |
URL GET HTTP/2dadanews.ru/wp-content/themes/fonts/roboto-bold-webfont.woff2 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 20072, version 2.8978 Hashb0500323084998da7b58d3d06d4d1105 2c2efa23201e3aabdc9a02480e555783b685d17a 80d8e79bc17d7b471887d02bd2fb744a291e4fc658701a2f11ac061bbbb67e6d
GET /wp-content/themes/fonts/roboto-bold-webfont.woff2 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/wp-content/themes/dada-news-new/style.css
Cookie: surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36; la_page_depth=%7B%22last%22%3A%22https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij%22%2C%22depth%22%3A1%7D; page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: application/font-woff2
content-length: 20072
last-modified: Tue, 06 Oct 2020 08:32:44 GMT
etag: "5f7c2bac-4e68"
expires: Fri, 24 May 2024 17:47:04 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/plugins/user-submitted-posts/resources/jquery.parsley.min.js?ver=20230311 | 45.130.41.185 | 200 OK | 61 kB |
URL GET HTTP/2dadanews.ru/wp-content/plugins/user-submitted-posts/resources/jquery.parsley.min.js?ver=20230311 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typegzip compressed data, from Unix Hashecd7be85db19432349aa5911326976a3 67acccc19209edae620c1cbe01338cb7fc9d101f 545cafdb6b42def3fa717968940f5907592edf247418ab545374c20648ff845c
GET /wp-content/plugins/user-submitted-posts/resources/jquery.parsley.min.js?ver=20230311 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: application/x-javascript
last-modified: Wed, 26 Jul 2023 14:07:00 GMT
vary: Accept-Encoding
etag: W/"64c12884-a7a2"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/plugins/wp-postratings/images/stars/rating_over.svg | 45.130.41.185 | 200 OK | 1.9 kB |
URL GET HTTP/2dadanews.ru/wp-content/plugins/wp-postratings/images/stars/rating_over.svg IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typegzip compressed data, from Unix Hash84e2d59bd67b8c700e1dfdc8bff6a68d b42f9d1bdd94ebeb30694433f3dfbab4fa91b7d2 aea478f2336a3616bec4de86aa7cd56145e64f282aa2ebc0047d8c28444a3048
GET /wp-content/plugins/wp-postratings/images/stars/rating_over.svg HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Cookie: surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36; la_page_depth=%7B%22last%22%3A%22https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij%22%2C%22depth%22%3A1%7D; page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Mar 2024 12:00:15 GMT
vary: Accept-Encoding
etag: W/"65f043cf-663"
expires: Wed, 01 May 2024 17:47:04 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/themes/dada-news-new/js/scripts.js | 45.130.41.185 | 200 OK | 950 B |
URL GET HTTP/2dadanews.ru/wp-content/themes/dada-news-new/js/scripts.js IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typegzip compressed data, from Unix Hash21213db29c4ac27c23aedfaa06365c86 ad48e3f0720e52d6925716ea20fe99f375df1fd9 b48b85866ca54c71b56fadc7b973e99d8552fb236499fd21dc522e710e2ad2b6
GET /wp-content/themes/dada-news-new/js/scripts.js HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: application/x-javascript
last-modified: Tue, 25 Jul 2023 14:19:14 GMT
vary: Accept-Encoding
etag: W/"64bfd9e2-436"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/sm.25.html | 172.67.39.148 | | 915 B |
URL static.addtoany.com/menu/sm.25.html IP172.67.39.148:0
File typeHTML document, ASCII text, with very long lines (624) Hash41b7ed0cbe240173eea85148fcba633e 39acd5fe099974486a1c9ba11ba0fe7be6bc97ca 274d4116239b63097bb7c16e56e27cbb5a77be20392fb8e2317c0a0235185cad
GET /menu/sm.25.html HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5XqYdf3zT6f5djRXIIJwMp9CmOr869HlwkvaSLOezMHs8bCNXKhchHrxUkAX8VobSQtGTx9av1ds6j%2BrAMbeIHt6gjCWQ%2F0%2FDDuSz%2BYQMTMfH9cMBRVSXt9wfmQ0xD6qcBrOg5iLUMVJymypfmtsURYC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 27537
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8797ea97dddd56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dadanews.ru/wp-content/uploads/2024/04/2-28.jpg | 45.130.41.185 | 200 OK | 162 kB |
URL GET HTTP/2dadanews.ru/wp-content/uploads/2024/04/2-28.jpg IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 892x554, components 3 Size162 kB (161608 bytes) Hash194f6cae17b8dd4e5d6aea1fbdb5d6b7 d4b612453cf0e680bd691a8431d1aa5772d86504 8b37c984a77ad4def09881d368adf4086a9e578d5748f4b0d9a3cff3492c9039
GET /wp-content/uploads/2024/04/2-28.jpg HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Cookie: surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36; la_page_depth=%7B%22last%22%3A%22https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij%22%2C%22depth%22%3A1%7D; page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: image/jpeg
content-length: 161608
last-modified: Wed, 24 Apr 2024 14:20:54 GMT
etag: "66291546-27748"
expires: Fri, 24 May 2024 17:47:04 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/threads.js | 172.67.39.148 | 200 OK | 121 kB |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/threads.js IP172.67.39.148:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (1308), with no line terminators Size121 kB (120802 bytes) Hash63634116edccf916d853a58a2826f7a1 704a6d4981d45e5dd76a48ec73cf84dc2100181f fb7e26606bdef81d4333de67ad7792c0127e9c04b8c9a869e58a354e59574efe
GET /menu/svg/icons/threads.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"10ce590e56b9fec2b111c4a526cf6c94"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QGH4kowveW7ogDNDbvY4NtLFUcwOn17JrGciTZZAkMZVeE3wAxYWiG9%2B2dZQPQQBfSU5uMfWVyIIASclv%2BcvzUKddQ3WWkUZlEBD31%2FH%2Bkju6uU518XWsOyCzlN2Tf1oqxxc27YH"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 9753
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8797ea9a5a1256ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ka-f.fontawesome.com/releases/v6.5.2/webfonts/free-fa-solid-900.woff2 | 104.21.26.223 | 200 OK | 156 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.5.2/webfonts/free-fa-solid-900.woff2 IP104.21.26.223:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 156388, version 773.1280 Size156 kB (156388 bytes) Hashae015e3286ef56a0daf8e83838a32a88 7c18577fd6c4e7d9036b244215ace3945372eefe 41dca0965bdfd255f85e7fc8e9a3dc1fe3eb810996c553d4ef2b8872737ee825
GET /releases/v6.5.2/webfonts/free-fa-solid-900.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: font/woff2
content-length: 156388
last-modified: Tue, 02 Apr 2024 15:51:14 GMT
etag: "ae015e3286ef56a0daf8e83838a32a88"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: fa-kit-token
access-control-max-age: 3000
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 82QqhjSjP61vVXDVquu22lKbeVr-yWUBkHx3ULRNDzyKjDiVqtIHhg==
age: 751321
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Er2BSB7BjyT4UZVRH90BAoT%2Fd1opUcvobsrSzqpfIYval6%2BnZXSX6AlSd8tEiYh%2B6Tp8MjejCg9T961BUSgWfd0hZ%2BL8PDtLmQPPsS1oaX%2BDTEZi6JLewUNkEBaqXdnGSwHBpnBwPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ea9c7c535687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v6.5.2/webfonts/free-fa-regular-400.woff2 | 104.21.26.223 | 200 OK | 25 kB |
URL GET HTTP/3ka-f.fontawesome.com/releases/v6.5.2/webfonts/free-fa-regular-400.woff2 IP104.21.26.223:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 25408, version 773.1280 Hash01f322780d84882bcac002c65d92099e 6019988248e7c47d5662543139d1a7ff2bc7a8a6 b3808053242504d654e37fe066d1cabddd317715e96565d632cb9e35115d120b
GET /releases/v6.5.2/webfonts/free-fa-regular-400.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: font/woff2
content-length: 25408
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 02 Apr 2024 15:51:13 GMT
etag: "01f322780d84882bcac002c65d92099e"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Xzl32XNh_E0YeyRd4NEslvp2cztUeBR7ht3HEQqa7b8XbTLN-phhcA==
age: 751321
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=62okYbORJLmRA%2FRhAaPxTPxnL8pEsu29ehsWoYj9zzYhPfkIpAeiqdIBJqhNotgu91ZNX8e8KZ3nF556Qc5HbkfWhVY1lBZLhD09IjLnludIItZYrH2xJ2jMK5JIGATlv2JfQWhS3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ea9cbb6e712d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=G-LGH0DXY76S | 142.250.74.168 | 200 OK | 89 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-LGH0DXY76S IP142.250.74.168:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Hasha0e26880f7711a364c0c8319dcccb7bb 313d06ad84aeeeb11a14f333353509a5ae215b76 721881095dc7fb1ba11fee9e0e03e14b8708afb2d7197c69fe1c54943037c262
GET /gtag/js?id=G-LGH0DXY76S HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 17:47:05 GMT
expires: Wed, 24 Apr 2024 17:47:05 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89341
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/751d31/4fcaefa6aad347d48cec783c2b29d2cf/d0b6284c50ba75a6.jpeg | 62.76.25.27 | 200 OK | 25 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/4fcaefa6aad347d48cec783c2b29d2cf/d0b6284c50ba75a6.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hash7f7a66279791f2f58f383850f8d3726c 113fce301d40cfe3c3aaa8266ea75647e9f77431 aaa5320c0998a74620e58c931e749781873f387f0bdb198e7bad2103052bb736
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/4fcaefa6aad347d48cec783c2b29d2cf/d0b6284c50ba75a6.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 25370
last-modified: Wed, 18 May 2022 10:06:03 GMT
etag: "6284c50b-631a"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2 | 216.58.207.227 | 200 OK | 9.6 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2 IP216.58.207.227:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 9644, version 1.0 Hash6f112ec2b932ee12379442c42853244e b2e73c8c70d6261e1d187f41693c43ac4fe0809d 6a84eeee6a25e7c9a8a03191007a6720566b5a2aa2384d36168fb07f49e97e9e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9644
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:43:49 GMT
expires: Fri, 18 Apr 2025 02:43:49 GMT
cache-control: public, max-age=31536000
age: 572596
last-modified: Wed, 11 May 2022 19:24:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/751d31/553bdd4ab8cb43e288cc1b1d3953c913/d0b6284c637b0e36.jpeg | 62.76.25.27 | 200 OK | 25 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/553bdd4ab8cb43e288cc1b1d3953c913/d0b6284c637b0e36.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hashfcf3dee2ccc00dc7492cf0d56c308477 3745d0510df2a8b880ff477b6850d71f738edcfb 669d89132c1c27bfabd5d626714758936aeef377a69436f11fcaf604096ff444
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/553bdd4ab8cb43e288cc1b1d3953c913/d0b6284c637b0e36.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 24931
last-modified: Wed, 18 May 2022 10:11:03 GMT
etag: "6284c637-6163"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/751d31/774ec37e3b8748bd94fc575dd61dc6cc/d0b628b6f1009582.jpeg | 62.76.25.27 | 200 OK | 39 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/774ec37e3b8748bd94fc575dd61dc6cc/d0b628b6f1009582.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hashef2bbaf63c39627f4adbf82570d75b51 8f1b8fd9d4217196092d595b1da1921a59491a8e 06a1fc1534ae8e69727e859987f667ff270c460660e8ab3a87ab8e156ee28731
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/774ec37e3b8748bd94fc575dd61dc6cc/d0b628b6f1009582.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 39058
last-modified: Mon, 23 May 2022 11:25:04 GMT
etag: "628b6f10-9892"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15920, version 1.0 Hash3a44e06eb954b96aa043227f3534189d 23cef6993ddb2b2979e8e7647fc3763694e2ba7d b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 13:20:56 GMT
expires: Fri, 18 Apr 2025 13:20:56 GMT
cache-control: public, max-age=31536000
age: 534369
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| smi.today/templates/Blogss/style/engine.css | 188.114.97.1 | 200 OK | 22 kB |
URL GET HTTP/3smi.today/templates/Blogss/style/engine.css IP188.114.97.1:443
Requested byhttps://www.smi.today/indexru2022.php CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typegzip compressed data, max compression, from Unix Hash61272487dde64bf2481f86f9704bf231 3d0d05a2126365434d4c2f2c7e3527cec3847fd3 739b1b6e7dcfeb97db35a5910fe9ff25fa1a5abd04f9849783f8f108a53269cb
GET /templates/Blogss/style/engine.css HTTP/1.1
Host: smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: text/css
last-modified: Tue, 25 Aug 2020 13:47:22 GMT
vary: Accept-Encoding
etag: W/"5f45166a-6aaa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YAyE1wdBFnIWLH91VYs4kmEwHjh%2BdCXhR7RZQ6a8KgBxeKAKmfJ5ygXrYh9EuuV1YnSmvlXllZouXNWMe5lmOz4RNSirCRX3b6cCN8zXxxRlk%2FapAp8dPxOnKPc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ea9bad147127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 | 216.58.207.227 | 200 OK | 9.6 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 IP216.58.207.227:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 9628, version 1.0 Hashd9ac47c7e500fb7083b8d595eaf6fe12 112a2fc5f4ff9b85ee3a706fa9b8c47f79b05933 495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 07:14:20 GMT
expires: Wed, 23 Apr 2025 07:14:20 GMT
cache-control: public, max-age=31536000
age: 124365
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/751d31/d4036abaaf3d4972af76be848db3c534/d0b628b6fffb8f84.jpeg | 62.76.25.27 | 200 OK | 23 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/d4036abaaf3d4972af76be848db3c534/d0b628b6fffb8f84.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hash80d7bbe2d300913dc39fcde21d005a61 94bf40ce11425bd0fe680d9d4e73917bb625a132 fd6ed0f7cd912745bab8648598f60d59683b2374e8127e65f77491d51763974d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/d4036abaaf3d4972af76be848db3c534/d0b628b6fffb8f84.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 22795
last-modified: Mon, 23 May 2022 11:29:03 GMT
etag: "628b6fff-590b"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/751d31/ff491c0296aa4563966f388beba8cbd2/d0b628b703c0b64c.jpeg | 62.76.25.27 | 200 OK | 29 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/ff491c0296aa4563966f388beba8cbd2/d0b628b703c0b64c.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hash21800ab286af16c9ca622ae015b70728 fdb3ba111d771d49b504a4d4c7991cce967e59b4 6d46bb1a77b88e2bd30394e1ee7c2769639fc9a769228ae8a084f11ebada7508
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/ff491c0296aa4563966f388beba8cbd2/d0b628b703c0b64c.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 28877
last-modified: Mon, 23 May 2022 11:30:04 GMT
etag: "628b703c-70cd"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/751d31/51685695c03542a3880464be13ef9b8b/d0b628b70b3ad83f.jpeg | 62.76.25.27 | 200 OK | 22 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/51685695c03542a3880464be13ef9b8b/d0b628b70b3ad83f.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hash9c4f5121a12415081d7aea584e92412f f575cb0b881cb631c93ecf5bf4b076669da112a6 e6327da57ac199d70934327dd889634de6081198aee0bf7ac253b5c7964a677b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/51685695c03542a3880464be13ef9b8b/d0b628b70b3ad83f.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 21650
last-modified: Mon, 23 May 2022 11:32:03 GMT
etag: "628b70b3-5492"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/751d31/956b44c250574136960a889c0ff50f58/d0b628b7167dbc56.jpeg | 62.76.25.27 | 200 OK | 29 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/956b44c250574136960a889c0ff50f58/d0b628b7167dbc56.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hashd38c57bfc466250dd8a2c1ad1c31fcdd 426863092634fbf989c163778ca8f9a52ccdf447 dbd2490f7df56d73c9a638e5be57e8b5304d9da53b7615642badd5351e17c033
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/956b44c250574136960a889c0ff50f58/d0b628b7167dbc56.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 28750
last-modified: Mon, 23 May 2022 11:35:03 GMT
etag: "628b7167-704e"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| smi.today/indexru2022.php | 188.114.97.1 | 301 Moved Permanently | 31 kB |
URL GET HTTP/2smi.today/indexru2022.php IP188.114.97.1:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
Hash91706e7951faf37dcddf6b4f2883dbc9 5e473b2317f8f6fbbb1033d6ba226a4dee9a01af b7106fef81699e560e6ee1a4cb5de25a959fc77d2e0a7a41fab6a4b1289305cc
GET /indexru2022.php HTTP/1.1
Host: smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: text/html; charset=iso-8859-1
location: https://www.smi.today/indexru2022.php
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rlOxgQOTv4B9gOBc3eNygg2DUILGjKlOYF82Bi%2FHDVV%2Binm7XaROpG9hh0z4DUKnqxMfbqW1V0Z7ZtrriGDwMmjK%2Bk1pH%2FwJn%2FPGqBJMWqBpk4%2FZGHEXnZ19U%2B0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ea981ef51c16-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/telegram.js | 172.67.39.148 | 200 OK | 29 kB |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/telegram.js IP172.67.39.148:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (360), with no line terminators Hash48f25c508c92c3601cf047609318001f 59117e825084c63a0dda48edec82c14a60e16f23 6415561e892cf9d614e7179f71353af4ceadfd641d71c42fe54c9420eb0d0138
GET /menu/svg/icons/telegram.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"fb47b4f6548b6499923a1beed7472419"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oQ32l6lc95NI3GN98HNxMipFQ%2FFQ%2BXP8bHm%2BXtBXtjLtiJB%2BP0zRW8OOKrFtC8zn1lvlKso6ptns%2B7st%2BVgZCBj1G27DtRKdiWd7n1dc%2B32qRyGwKz0JcCpC8pohV0%2FZ6UyPhRziYvB1PvQu8nhoLft9"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 9753
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8797ea9a4a0556ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jgctqt.com/.cdn/3a8241/751d31/0e61b474bbf84fe6874c7b5e8c05a822/d03628b7690b07b1.jpeg | 62.76.25.27 | 200 OK | 16 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/0e61b474bbf84fe6874c7b5e8c05a822/d03628b7690b07b1.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3 Hashb383e9076125942451510ba28fd2a5cb 76b8502fcb477650877cc298d162f64ed84b767d 0039073695836154b6475a67305b87c383b7372d957f60db2e72d1ba182334f3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/0e61b474bbf84fe6874c7b5e8c05a822/d03628b7690b07b1.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 16502
last-modified: Mon, 23 May 2022 11:57:04 GMT
etag: "628b7690-4076"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2 | 216.58.207.227 | 200 OK | 9.8 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2 IP216.58.207.227:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 9840, version 1.0 Hash7b08b9e11fc6b8a8a1398b357e874144 4b5fb5790fae1c96655aaa7a426b697f5ab986d0 3728fbdd191d75bad5b83a838dfe2fc15f84c2aaa36ffa573321275847db31a9
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 00:00:19 GMT
expires: Wed, 23 Apr 2025 00:00:19 GMT
cache-control: public, max-age=31536000
age: 150406
last-modified: Wed, 11 May 2022 19:24:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v6.5.2/css/free-v5-font-face.min.css?token=5220e89fd7 | 104.21.26.223 | 200 OK | 16 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.5.2/css/free-v5-font-face.min.css?token=5220e89fd7 IP104.21.26.223:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (608) Hasha3d53e21a02e37af6cbc00ac63b3cc1e e4f2269bae4b37ccba5282a154724a3b91720aca e1dc27b700a62c005e4521b670cac08fb0b4b3e02a73c1ac44e7f9a9784bd672
GET /releases/v6.5.2/css/free-v5-font-face.min.css?token=5220e89fd7 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dadanews.ru/
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 02 Apr 2024 15:26:25 GMT
etag: W/"a3d53e21a02e37af6cbc00ac63b3cc1e"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2DIIZAmT2_P7CiE86UQC9kojjEoOmSI4rYqAqze-ewjMcEvj-hpDOA==
age: 751176
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Urxn%2B%2Bx0y02q1lSRILd12afwKrpPYO3qAYCS9ew3bNR6JRWIM5r0aTG4yA0%2BkI0U4YTMTRRzxj18VnN2%2FKCE0%2BGnVbQkti8%2F1Ps6fzvtZj2X1qEzoGzpQ7CzK3EPqFNL7CDHGvHXCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ea986eec5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/751d31/fbcc6f0bf69244aeae930f4f2bc1dc18/d03628b774512401.jpeg | 62.76.25.27 | 200 OK | 38 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/fbcc6f0bf69244aeae930f4f2bc1dc18/d03628b774512401.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3 Hash8160204fff9ace632374ead70217b4a4 c7828ab875ebbbc76ed86ef722fb6e911b8f7eea c61a03fe9e220ecf4b5f65a5796d714b0e41b07190dc9eb74e2c22e71ebf5bb8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/fbcc6f0bf69244aeae930f4f2bc1dc18/d03628b774512401.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 38438
last-modified: Mon, 23 May 2022 12:00:05 GMT
etag: "628b7745-9626"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/751d31/adca73e66ec743d58d13d0501d0712d0/d03628b7780b9886.jpeg | 62.76.25.27 | 200 OK | 19 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/adca73e66ec743d58d13d0501d0712d0/d03628b7780b9886.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3 Hash63fa7154d857f8f91300ffdff85e04b0 64fb75aa6d61e0b4cc68013fe2a24d5b319215c8 d19c47f012340a057c2c8e5e3886812c67f4509426d11247feb57c3a05f179c6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/adca73e66ec743d58d13d0501d0712d0/d03628b7780b9886.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 19074
last-modified: Mon, 23 May 2022 12:01:04 GMT
etag: "628b7780-4a82"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/751d31/d27848d019be4266b7def6dcf5532ad2/d03628b7b404fae9.jpeg | 62.76.25.27 | 200 OK | 19 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/d27848d019be4266b7def6dcf5532ad2/d03628b7b404fae9.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3 Hashbd9b6a51f507d73577ffb90865a3be32 b3f06c2be875c25fd8350e2bba3ca76a1f93e116 e620a4567c3dfff8f8972d2eca32aa223cedd9edc1fad457c13078879f907c35
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/d27848d019be4266b7def6dcf5532ad2/d03628b7b404fae9.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 18911
last-modified: Mon, 23 May 2022 12:17:04 GMT
etag: "628b7b40-49df"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/751d31/53e190b09c184c88bd41cf54be34c35d/d03628b7b7c7c52b.jpeg | 62.76.25.27 | 200 OK | 27 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/53e190b09c184c88bd41cf54be34c35d/d03628b7b7c7c52b.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3 Hash31fbd581e410707359385940ef352475 24b462ca020af9e421ea30326835621ef6e2a6f8 5421b87d1d0c2b1d873747c38818e26221d1d32769f9702992031ae5112b453a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/53e190b09c184c88bd41cf54be34c35d/d03628b7b7c7c52b.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 27120
last-modified: Mon, 23 May 2022 12:18:04 GMT
etag: "628b7b7c-69f0"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/751d31/fa799a27af374caa84dcb7b8f67e148b/d03628b7bb8c8702.jpeg | 62.76.25.27 | 200 OK | 17 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/fa799a27af374caa84dcb7b8f67e148b/d03628b7bb8c8702.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3 Hash36778ee5fe0e9cb7f2add1fbfb124fe3 494412759de1b60ba2142a396882defa228faa73 28c524800cbe9b23493a6e7f6759b5160c6a9b060ba1eb30bc82d05168c19627
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/fa799a27af374caa84dcb7b8f67e148b/d03628b7bb8c8702.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 16558
last-modified: Mon, 23 May 2022 12:19:04 GMT
etag: "628b7bb8-40ae"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/751d31/4c6d79eb1c7e42afb2a43d7f801ad9fb/d03628b7c6cea9d5.jpeg | 62.76.25.27 | 200 OK | 19 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/4c6d79eb1c7e42afb2a43d7f801ad9fb/d03628b7c6cea9d5.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3 Hashf01eca20369be8a886a69b3662099c6f 2bc5eb6e7860166cddaaec196f8c84986f320e82 e87eac3f1bda884be54ec653c20679ee72451c4ddad085b40f41b09aa4a5f5ac
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/4c6d79eb1c7e42afb2a43d7f801ad9fb/d03628b7c6cea9d5.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 18639
last-modified: Mon, 23 May 2022 12:22:04 GMT
etag: "628b7c6c-48cf"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/751d31/ae091aeb98e041e3a942722a3288f5f9/d036290dfb8dca5b.jpeg | 62.76.25.27 | 200 OK | 28 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/ae091aeb98e041e3a942722a3288f5f9/d036290dfb8dca5b.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3 Hashabc057db55abaaa9d03d44c9e7e76f01 7fb7282ee23f2bac759699b78940384f987a1731 099b0bc376e6a0f840cad94202b6879d880bfd8c3a0f2eab035a66b0ef9d6883
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/ae091aeb98e041e3a942722a3288f5f9/d036290dfb8dca5b.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 27883
last-modified: Fri, 27 May 2022 14:27:04 GMT
etag: "6290dfb8-6ceb"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v6.5.2/css/free.min.css?token=5220e89fd7 | 104.21.26.223 | 200 OK | 23 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.5.2/css/free.min.css?token=5220e89fd7 IP104.21.26.223:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (65321) Hash7f29cd8c97789aa298af8c61623ca28b af8109e0e5c8bb2c1c3ab44ba7b5d25900ca454a 3e9c73fa687cd4110688668977a7caa87f5a1dee0d11f03687bd4871deedf1c1
GET /releases/v6.5.2/css/free.min.css?token=5220e89fd7 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dadanews.ru/
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 02 Apr 2024 15:26:25 GMT
etag: W/"7f29cd8c97789aa298af8c61623ca28b"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -jQUlxbIYluPNzBastQvQc7yLHjfdjTrCd2LVkRiPAwqXj-lVeKjFA==
age: 751176
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MvronhD5YmaK6S7mabTXyqD1KakCkhbWgE3K8MbY2Cm783V4ohFdadSmZ9Rsezg095Y3%2BeB1H%2BkFMaw60YXaUO15YpwbT2KpiJEV9WXD37X8lSmUF8bixK%2FyYaUMoHXawp6FYO0Ixw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ea987ef75687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| all.smi.today/show_rss/smiru16/ | 188.114.97.1 | 200 OK | 221 B |
URL GET HTTP/3all.smi.today/show_rss/smiru16/ IP188.114.97.1:443
Requested byhttps://www.smi.today/indexru2022.php CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
Hash91f2bb607535528acbb265fae7f0090a 7283ddda6b426fc54be9a25b07f33ff722571990 6f5e4c4643afc32df04d73c901c77c9f8970af129ba7b7499e5320953c5a2eb6
GET /show_rss/smiru16/ HTTP/1.1
Host: all.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/javascript
content-length: 221
accept-charset: utf-8
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lDoWifk2pko%2BJdgwj%2FfAar3f%2F9li%2F1mb4IN7TqmUeAY%2FbMPbrP50Urgp%2FddlVtyfQrHi8H0eHiNKskNPnoeCggMqsWVHT5uwEChb2ZTzr8Wn9YBBp8BB5yIrB9%2FfMn70"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ea9c1d9e7127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jgctqt.com/v4/confirm/block?uuid=4aceac30-7f9b-61ba-73fb-e7dd32c70656 | 62.76.25.27 | 200 OK | 26 B |
URL POST HTTP/2jgctqt.com/v4/confirm/block?uuid=4aceac30-7f9b-61ba-73fb-e7dd32c70656 IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
Hash1504bb1fa7f0d3488a7858108875057a 9cfc808fef5f280cc9dfe5ca503c57718ff7d9dc 79d733937528a966339f37ccfc9f76b0c22cc03cdb5011925e6fa7db07f93e9a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /v4/confirm/block?uuid=4aceac30-7f9b-61ba-73fb-e7dd32c70656 HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 15
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/json
content-length: 26
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
|
|
| jgctqt.com/v4/confirm/ad?uuid[]=e24d6fc3-d26f-236d-c4b6-9798df0d94b7&ad_ids[]=506919&surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36 | 62.76.25.27 | 200 OK | 23 B |
URL POST HTTP/2jgctqt.com/v4/confirm/ad?uuid[]=e24d6fc3-d26f-236d-c4b6-9798df0d94b7&ad_ids[]=506919&surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36 IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
Hash93ef37687a0f06406588c5399c688161 bcf412994198be7ca07a82b598b3be72c1b48b29 c31a4e889db15a6c9c2a34e9757349c67e460639920c028018a508b056ee3e01
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /v4/confirm/ad?uuid[]=e24d6fc3-d26f-236d-c4b6-9798df0d94b7&ad_ids[]=506919&surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36 HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 15
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/json
content-length: 23
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/themes/dada-news-new/img/favicon.ico | 45.130.41.185 | 200 OK | 1.2 kB |
URL GET HTTP/2dadanews.ru/wp-content/themes/dada-news-new/img/favicon.ico IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash4d24e633061122f9d6d996e83e33664b f045a82c51baa48cc40e01ba321d037aa7286691 659137aa470eb667f130ec590da53287f220a44446c616c274967de07864a9ce
GET /wp-content/themes/dada-news-new/img/favicon.ico HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Cookie: surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36; la_page_depth=%7B%22last%22%3A%22https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij%22%2C%22depth%22%3A1%7D; page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/x-icon
content-length: 1150
last-modified: Fri, 28 Jul 2023 23:50:11 GMT
etag: "64c45433-47e"
expires: Fri, 24 May 2024 17:47:05 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/751d31/39445e81f95c474c88f62d971db219e3/d036290e0305380a.jpeg | 62.76.25.27 | 200 OK | 29 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/39445e81f95c474c88f62d971db219e3/d036290e0305380a.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3 Hash5d90f340e014bc65bfbb6214e1b3db1a 1ca30cdc61cac624f4c3367b1b0b576ac7d0bcbd 9d9e378cf3d11a7e9d81b5297656bbbe70afd0f3f04474f3875e93f4e09115c0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/39445e81f95c474c88f62d971db219e3/d036290e0305380a.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 28744
last-modified: Fri, 27 May 2022 14:29:04 GMT
etag: "6290e030-7048"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| smi.today/templates/Blogss/style/normalize.css | 188.114.97.1 | 200 OK | 35 kB |
URL GET HTTP/3smi.today/templates/Blogss/style/normalize.css IP188.114.97.1:443
Requested byhttps://www.smi.today/indexru2022.php CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typegzip compressed data, max compression, from Unix Hashe19da508f035f10743a06ca4db51d408 8af9bea70cbfd60906be5fd58f89cb9c416cf6e9 d8c88f46c93a5d517564654fd140813168ac02d1da5d6aee4d47d44bf8258630
GET /templates/Blogss/style/normalize.css HTTP/1.1
Host: smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: text/css
last-modified: Tue, 25 Aug 2020 13:47:22 GMT
vary: Accept-Encoding
etag: W/"5f45166a-1d78"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8WFmOCifaembcKVEZIRDmGknI%2BE12EUFXgKNU21P2nG8475EflQKCGXVW4PSoQyzni0X1Rl%2BvzsjEg3EBg38kOv68PC9Q0Jr%2F6MxdWjNF3sNKkC5cHDQenudBfA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ea9bbd247127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jgctqt.com/.cdn/3a8241/751d31/cfa075e29eb8497f8e76f32b10921971/d036290e120cf777.jpeg | 62.76.25.27 | 200 OK | 40 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/cfa075e29eb8497f8e76f32b10921971/d036290e120cf777.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3 Hash4a17b2dea1cf9b4c205cb75c9dee9f35 08837d5fd07e7b67ae15303f3b05c44c31e3117c b7b45f40dfe200a582b1a44b3df150007e1639aa434e916a5ea97a47716d21c9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/cfa075e29eb8497f8e76f32b10921971/d036290e120cf777.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 40334
last-modified: Fri, 27 May 2022 14:33:04 GMT
etag: "6290e120-9d8e"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/751d31/b05f382e1b5e4095996a998261004257/d036290e1990e49f.jpeg | 62.76.25.27 | 200 OK | 14 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/b05f382e1b5e4095996a998261004257/d036290e1990e49f.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3 Hashd265d8ff25c915169145b128fba7ec62 57753bf81d401a286a14df0c03d257d59d4657d6 f17797184ae09ed65f0ecf192963eb6011124a7b88f877325320561d1e437bc3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/b05f382e1b5e4095996a998261004257/d036290e1990e49f.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 13518
last-modified: Fri, 27 May 2022 14:35:05 GMT
etag: "6290e199-34ce"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/751d31/e17a5c7860b0406fa1ce42af9aff598d/d0b6290e287cb9e8.jpeg | 62.76.25.27 | 200 OK | 38 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/e17a5c7860b0406fa1ce42af9aff598d/d0b6290e287cb9e8.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hash78a66172dd3224e55391ecb81223310e 9a6f9e0d864710b135a4a2fdb088beb7f9ce8dd8 7c11e970a74594760b51e4926099f983ecaa9606e3bd64ef1c32fef852e6c45a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/e17a5c7860b0406fa1ce42af9aff598d/d0b6290e287cb9e8.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 37608
last-modified: Fri, 27 May 2022 14:39:03 GMT
etag: "6290e287-92e8"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/d72d18/035fec8dd51e42afacc92fe85f30a17f/d0b62e3aeb312e5d.jpeg | 62.76.25.27 | 200 OK | 22 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/d72d18/035fec8dd51e42afacc92fe85f30a17f/d0b62e3aeb312e5d.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hashd8fa829a6ab67fb71bbdd55b5577ee2c e350b0ea8fa38413bdcc71b4ec48b458d9f12d75 bb331c52f0ace1ddb9ae6af9da5a2f7ecb381c9683182a20dfcabe30d4c40605
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/d72d18/035fec8dd51e42afacc92fe85f30a17f/d0b62e3aeb312e5d.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 21500
last-modified: Fri, 29 Jul 2022 09:56:03 GMT
etag: "62e3aeb3-53fc"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/d72d18/1d0d4a59eeb34fb1a4967fcb068183b6/d0b62e3b5f7be13c.jpeg | 62.76.25.27 | 200 OK | 30 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/d72d18/1d0d4a59eeb34fb1a4967fcb068183b6/d0b62e3b5f7be13c.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hash3cf86d43c1a9e0265f816582d2983def 9f5870d597d1787ec8d6462ef583bca65babb0fd bbb3b4a5f35bcbcfa9222be8118afe5046aafd2b49526c4199aabb1c3ea763cd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/d72d18/1d0d4a59eeb34fb1a4967fcb068183b6/d0b62e3b5f7be13c.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 29928
last-modified: Fri, 29 Jul 2022 10:27:03 GMT
etag: "62e3b5f7-74e8"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/d72d18/6a12c8013c4c4cc78ddaef39b8a73ff3/d0b62e3b66ed9703.jpeg | 62.76.25.27 | 200 OK | 29 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/d72d18/6a12c8013c4c4cc78ddaef39b8a73ff3/d0b62e3b66ed9703.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hash574a47060b57a57fe03433bc138a88f3 cf84a4ef1aad2e5a411c5973e9ae08c49a7a9de3 c83a92a4ec98c05ae4f265e1ddb35223a570714bf6770019c2038361de85f949
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/d72d18/6a12c8013c4c4cc78ddaef39b8a73ff3/d0b62e3b66ed9703.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 29003
last-modified: Fri, 29 Jul 2022 10:29:02 GMT
etag: "62e3b66e-714b"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html | 188.114.97.1 | 200 OK | 50 kB |
URL GET HTTP/3www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html IP188.114.97.1:443
Requested byhttps://www.smi.today/indexru2022.php CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typegzip compressed data, from Unix Hasha1a62477329314790c2ed11813bbe4ad 77f0bac08dc5045a0cf1381205dedee4f8bb2e00 592d9ba61db855652e34c698784423e54fccbd96b8f684bbca9300acd401136a
GET /ru_smi/2863324-livija-i-ssha-obsudili.html HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/indexru2022.php
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: text/html; charset=utf-8
set-cookie: PHPSESSID=b5vodau307qg8a1l13vtebu1hd; path=/; domain=.smi.today; HttpOnly
dle_user_id=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.smi.today; HttpOnly
dle_password=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.smi.today; HttpOnly
dle_hash=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.smi.today; HttpOnly
last-modified: Wed, 24 Apr 2024 20:40:18 +0300 GMT
access-control-allow-origin: *
vary: User-Agent
content-language: ru
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Nb5SzDEQyqxWD0B5YSxUaRA7RIDD%2Ba2TFdxkjlZzuecdOEJ8GmdQaM4rWFRE%2FwPb%2FtBgyyfNkjaks9U1a7AmYONS9FmyFw9CYCAQNlfcgFJ1NwiktRb%2BkJNU4RkPx607"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ea9ffa987127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| jgctqt.com/.cdn/3a8241/d72d18/e8cf188fcb9d48f884058ebe2f871fd8/d0b62e3b6e7e5522.jpeg | 62.76.25.27 | 200 OK | 29 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/d72d18/e8cf188fcb9d48f884058ebe2f871fd8/d0b62e3b6e7e5522.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hash44cbf44a549d5a8035d4b4cab1d22293 ddff2e7ae7553ecf85f932a659d10fdb9c3bdc03 e952c77bad3e54df273c269b8c780e80696aebfef4872da5957cef0948d7cc36
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/d72d18/e8cf188fcb9d48f884058ebe2f871fd8/d0b62e3b6e7e5522.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 29271
last-modified: Fri, 29 Jul 2022 10:31:03 GMT
etag: "62e3b6e7-7257"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/d72d18/b75dec3e000a4738a99e0637d6a4c3a4/d0b62e3b7e00742d.jpeg | 62.76.25.27 | 200 OK | 34 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/d72d18/b75dec3e000a4738a99e0637d6a4c3a4/d0b62e3b7e00742d.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hash8002f70a767dd64357b5e56567c2f376 dcdc100ce6caf5919d83c803c9232e6896844ddf d4de397cdb0f2ec82ae68959abba4cdf5b8985ed9cb8f33187b1e313c935cb05
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/d72d18/b75dec3e000a4738a99e0637d6a4c3a4/d0b62e3b7e00742d.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 33858
last-modified: Fri, 29 Jul 2022 10:35:12 GMT
etag: "62e3b7e0-8442"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/d72d18/cd1e8e65bcf14b6391f62ea0031468c5/d0b62e3b813d2d4a.jpeg | 62.76.25.27 | 200 OK | 36 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/d72d18/cd1e8e65bcf14b6391f62ea0031468c5/d0b62e3b813d2d4a.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hashd0729d4204e44cc7be8b83f74566ceb1 c73f485197735bf2d9043ec1758ad239d4a13f96 d235cad41fe3592cd02310d5fd4f3669ac87c3f16b5acdd0476cde740b9ae2d1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/d72d18/cd1e8e65bcf14b6391f62ea0031468c5/d0b62e3b813d2d4a.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 36533
last-modified: Fri, 29 Jul 2022 10:36:03 GMT
etag: "62e3b813-8eb5"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/d72d18/31ec2e3cd9f84f89b113c198c3bd6663/d0b62e3b8c9403f6.jpeg | 62.76.25.27 | 200 OK | 25 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/d72d18/31ec2e3cd9f84f89b113c198c3bd6663/d0b62e3b8c9403f6.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hash345afb4c0851f6d96d737f009dc30875 0b9eb0246e6a6ea6093b2d16cc80533295f343c0 33ee9bee16b0a955bfa001fc8ef8f5fa35d014676ecbb38fa807c608576c1292
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/d72d18/31ec2e3cd9f84f89b113c198c3bd6663/d0b62e3b8c9403f6.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 25381
last-modified: Fri, 29 Jul 2022 10:39:05 GMT
etag: "62e3b8c9-6325"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/d72d18/ef22e598c77749cdac648c99f4581c7b/d0b62e3b94690624.jpeg | 62.76.25.27 | 200 OK | 20 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/d72d18/ef22e598c77749cdac648c99f4581c7b/d0b62e3b94690624.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hashcb4599a8de71714f3e3668eae32651ae a54f73f08c8215f6993cfd4802ebdcab4d137bc3 02b85ccd951891db15962554a3573cd8e3de633c877a8c5fdd1b86eb63eb01aa
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/d72d18/ef22e598c77749cdac648c99f4581c7b/d0b62e3b94690624.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 19937
last-modified: Fri, 29 Jul 2022 10:41:10 GMT
etag: "62e3b946-4de1"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2 | 178.154.131.215 | 200 OK | 26 kB |
URL GET HTTP/2yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2 IP178.154.131.215:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGlobalSign nv-sa Subject*.yastatic-net.ru Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07 ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 26004, version 1.0 Hash7f0cdaf91230f9789ca4162aedff612e 965de571aa794dab64076c3cc64dc8894b843f23 033696b7f1ac04d1dcc102be84550e146236ceffc25a6cabc12aa51a6ee410b9
GET /s3/home/fonts/ys/3/text-variable-full.woff2 HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dadanews.ru/
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: font/woff2
content-length: 26004
access-control-allow-origin: *
cache-control: public, max-age=31556952
etag: "7f0cdaf91230f9789ca4162aedff612e"
expires: Thu, 24 Apr 2025 23:35:51 GMT
last-modified: Mon, 25 Apr 2022 14:02:39 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-amz-meta-owner: {"role":"admin","login":"4eb0da"}
x-nginx-request-id: 650419e8c9a854d4
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/751d31/24c2462519da414c8b9907a0ad328d36/d0b6284c58309385.jpeg | 62.76.25.27 | 200 OK | 13 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/24c2462519da414c8b9907a0ad328d36/d0b6284c58309385.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
Hash00c5cb86014d409cb2817308a817a172 5c5232e975cd6697cb2a93c12fa21534894578dc 25becf0835c044182c23264d7faa61dfb340fcb8c19a8553ab860f6bd625dcd0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/24c2462519da414c8b9907a0ad328d36/d0b6284c58309385.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 16615
last-modified: Wed, 18 May 2022 10:08:03 GMT
etag: "6284c583-40e7"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=fb8ad9aa-e2c6-4211-98b5-878f825fb0c6&block_uuid=fb8ad9aa-e2c6-4211-98b5-878f825fb0c6&refresh_depth=1&safari_multiple_request=60 | 62.76.25.27 | 200 OK | 104 kB |
URL GET HTTP/2jgctqt.com/v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=fb8ad9aa-e2c6-4211-98b5-878f825fb0c6&block_uuid=fb8ad9aa-e2c6-4211-98b5-878f825fb0c6&refresh_depth=1&safari_multiple_request=60 IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typegzip compressed data, from Unix Size104 kB (103963 bytes) Hashced1275d39dc612fc4ff43716b94f63c 83ed717c43ac265cba752819ba6a0841da9c5a56 a951285651a06c9bfb9d74aebd2e5f656314f9bd746386504e0b840cb438f5da
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=fb8ad9aa-e2c6-4211-98b5-878f825fb0c6&block_uuid=fb8ad9aa-e2c6-4211-98b5-878f825fb0c6&refresh_depth=1&safari_multiple_request=60 HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
access-control-allow-origin: *
access-control-allow-headers: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/webfont/1/webfont.js | 142.250.74.74 | 200 OK | 5.4 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/webfont/1/webfont.js IP142.250.74.74:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeJavaScript source, ASCII text, with very long lines (2134) Hash7c96a5f11d9741541d5e3c42ff6380d7 d3fa2564c021cf730e58ffddb138cf6b57ed126e 81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee
GET /ajax/libs/webfont/1/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:37:18 GMT
expires: Fri, 18 Apr 2025 02:37:18 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 572988
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.smi.today/engine/classes/min/index.php?charset=utf-8&g=general&12 | 188.114.97.1 | 200 OK | 64 kB |
URL GET HTTP/3www.smi.today/engine/classes/min/index.php?charset=utf-8&g=general&12 IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeJavaScript source, ASCII text, with very long lines (65483) Hash4240e127b4e16df30aafaf4a759be953 2d6f192c656e3fdb49b5238c058bb98006592a24 8279387b96429dbecaff83e73ff28463dcfe3e1d88823fa959a270dd6cd076db
GET /engine/classes/min/index.php?charset=utf-8&g=general&12 HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/x-javascript; charset=utf-8
content-length: 63926
expires: Thu, 24 Apr 2025 17:47:05 GMT
vary: Accept-Encoding,User-Agent
last-modified: Tue, 25 Aug 2020 13:45:24 GMT
etag: "pub1598363124;gz"
cache-control: max-age=31536000
content-encoding: gzip
access-control-allow-origin: *
content-language: ru
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J%2Fg5EZ3LLDbw1v8HvT%2BX7asWlAnTenejcjcOax7m72RoSNkhFm18B4hQDeQ10SwatXIlpeTbQI3lZDYhFsOK0%2Bit35lenlGSBlu43jknbWhR3V4%2BHl7PDOIxDowXB5rj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1bc587127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| yastatic.net/partner-code-bundles/1014686/8c56d3385424ec5e150d.js | 178.154.131.215 | 200 OK | 112 kB |
URL GET HTTP/2yastatic.net/partner-code-bundles/1014686/8c56d3385424ec5e150d.js IP178.154.131.215:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGlobalSign nv-sa Subject*.yastatic-net.ru Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07 ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65496) Size112 kB (112230 bytes) Hashfe2918bd3e8d1989d99e41a36681e489 d33a5e098d3c23f50a8990fad5b8f42d5a10b3b4 543aa3c0e7e0ac4480c17f7ba32e9cb468ef7e6f3e1a78f00f483ffc0392e204
GET /partner-code-bundles/1014686/8c56d3385424ec5e150d.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: text/javascript; charset=utf-8
content-length: 112230
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "0ff184190f03550eca892d5fec6bfb37"
expires: Sat, 25 Apr 2054 00:21:31 GMT
last-modified: Tue, 23 Apr 2024 15:54:30 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| yastatic.net/safeframe-bundles/0.83/host.js | 178.154.131.215 | 200 OK | 8.9 kB |
URL GET HTTP/2yastatic.net/safeframe-bundles/0.83/host.js IP178.154.131.215:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGlobalSign nv-sa Subject*.yastatic-net.ru Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07 ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (33703), with no line terminators Hash2435549eac66915d7464ee7b9efce038 e390598fb192583622a8ea079d5c96dffdb34fb5 34806ef573086241dd1a596a860b0295b51c24f1c37eab36eb9d0665683abb55
GET /safeframe-bundles/0.83/host.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: text/javascript; charset=utf-8
content-length: 8878
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "f80882bf67cf261aa08d636da095149a"
expires: Sat, 25 Apr 2054 00:21:31 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/v4/confirm/block?uuid=e33bf494-c4aa-f046-537d-9b4990418572 | 62.76.25.27 | 200 OK | 26 B |
URL POST HTTP/2jgctqt.com/v4/confirm/block?uuid=e33bf494-c4aa-f046-537d-9b4990418572 IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
Hash1504bb1fa7f0d3488a7858108875057a 9cfc808fef5f280cc9dfe5ca503c57718ff7d9dc 79d733937528a966339f37ccfc9f76b0c22cc03cdb5011925e6fa7db07f93e9a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /v4/confirm/block?uuid=e33bf494-c4aa-f046-537d-9b4990418572 HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 15
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: application/json
content-length: 26
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
|
|
| jgctqt.com/v4/confirm/ad?uuid[]=c8f1974c-e95d-c023-f5fc-504a5910a528&uuid[]=3f5b0700-e520-7d63-bdb7-4259027e303e&ad_ids[]=462021&ad_ids[]=462023&surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36 | 62.76.25.27 | 200 OK | 23 B |
URL POST HTTP/2jgctqt.com/v4/confirm/ad?uuid[]=c8f1974c-e95d-c023-f5fc-504a5910a528&uuid[]=3f5b0700-e520-7d63-bdb7-4259027e303e&ad_ids[]=462021&ad_ids[]=462023&surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36 IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
Hash93ef37687a0f06406588c5399c688161 bcf412994198be7ca07a82b598b3be72c1b48b29 c31a4e889db15a6c9c2a34e9757349c67e460639920c028018a508b056ee3e01
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /v4/confirm/ad?uuid[]=c8f1974c-e95d-c023-f5fc-504a5910a528&uuid[]=3f5b0700-e520-7d63-bdb7-4259027e303e&ad_ids[]=462021&ad_ids[]=462023&surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36 HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 15
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: application/json
content-length: 23
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/d72d18/016dbba695844965864d6827b56b9208/d0362e3bae4954d5.jpeg | 62.76.25.27 | 200 OK | 22 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/d72d18/016dbba695844965864d6827b56b9208/d0362e3bae4954d5.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3 Hash11f55d1bc4b1f9170d4136c3be10aa36 57364bac67569052ed2fbe6907cbb16923296514 dba12789840c58b705595cb74368ac534df96d9193b7f7f0cc850d1044074165
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/d72d18/016dbba695844965864d6827b56b9208/d0362e3bae4954d5.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: image/jpeg
content-length: 21623
last-modified: Fri, 29 Jul 2022 10:48:04 GMT
etag: "62e3bae4-5477"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/d72d18/01147e9c459f43c8bbad9ca8d73cf90a/d0362e3bb22e7581.jpeg | 62.76.25.27 | 200 OK | 16 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/d72d18/01147e9c459f43c8bbad9ca8d73cf90a/d0362e3bb22e7581.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3 Hasha10e16e65b76037c9969a576b5a50d98 b6721a75e5eb0cf53f8a7c1966e62d168de2e7ba 4c9b68d871067aaa9425f81c15190f6f53a431a234a9cbcee58df1b6842d18b6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/d72d18/01147e9c459f43c8bbad9ca8d73cf90a/d0362e3bb22e7581.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: image/jpeg
content-length: 16117
last-modified: Fri, 29 Jul 2022 10:49:06 GMT
etag: "62e3bb22-3ef5"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/d72d18/eae43d2000784dd2ae9bc2502e87cc02/d0362e3bbd4dfcc7.jpeg | 62.76.25.27 | 200 OK | 30 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/d72d18/eae43d2000784dd2ae9bc2502e87cc02/d0362e3bbd4dfcc7.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3 Hashbcd7b0fba926035651c398e1071129dc a752bbad42010dea5de352d2e88eb0a5c352e29c 3aace8e053da37584dd010dd60f8f138b024bd65e9657d43e5b6bff1dead74d3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/d72d18/eae43d2000784dd2ae9bc2502e87cc02/d0362e3bbd4dfcc7.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: image/jpeg
content-length: 29886
last-modified: Fri, 29 Jul 2022 10:52:04 GMT
etag: "62e3bbd4-74be"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.smi.today/templates/new/fonts/IBMPlexSans-Light.woff | 188.114.97.1 | 200 OK | 69 kB |
URL GET HTTP/3www.smi.today/templates/new/fonts/IBMPlexSans-Light.woff IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeWeb Open Font Format, TrueType, length 68988, version 0.0 Hashaea011a40106c2b778159a232ac49e3b 394328597f4ddaa531758d0a017ee50fb1f58b52 f71eb738e59d3f1d6e08f6ad08a271caee10f469c5e2c5cfa90005c1d3257bf8
GET /templates/new/fonts/IBMPlexSans-Light.woff HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/templates/new/css/all.min-new6.css?1.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: application/font-woff
content-length: 68988
last-modified: Tue, 01 Feb 2022 10:50:14 GMT
etag: "10d7c-5d6f2aa78ac98"
accept-ranges: bytes
access-control-allow-origin: *
vary: User-Agent
content-language: ru
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i5O3pW3iwAD2xA86BoQWC1Jo9KtWM08oe1nydEH5K6ARe%2B0tra3AKMBPWh%2FjRmL6QjAxJkCr2apIbNDd7YQjpb8VS6A4AuBCzUfsh4sHBemLCNvWao9ue3UJKbr7oLGR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa4c8bd7127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| rossaprimavera.ru/static/files/079138159269.jpg | 92.50.249.11 | 200 OK | 267 kB |
URL GET HTTP/1.1rossaprimavera.ru/static/files/079138159269.jpg IP92.50.249.11:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerLet's Encrypt Subjectrossaprimavera.ru FingerprintAA:29:40:EA:4C:5D:48:33:B0:DC:E8:C8:B5:D6:AE:D9:15:95:9B:B1 ValiditySun, 03 Mar 2024 23:49:41 GMT - Sat, 01 Jun 2024 23:49:40 GMT
File typeJPEG image data, baseline, precision 8, 1200x675, components 3 Size267 kB (267287 bytes) Hashbce8df3392e89046cea29cc3d9c1f4b8 5e506aa6d9269528d875d745dd9b05c3ddb0eedf 010aef710bf83e4cf2f6f5596dd815a8880b39c2944735b4bfbd6349b8ff47b7
GET /static/files/079138159269.jpg HTTP/1.1
Host: rossaprimavera.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:47:06 GMT
Content-Type: image/jpeg
Content-Length: 267287
Connection: keep-alive
Server: nginx
Last-Modified: Sun, 15 Oct 2023 23:28:39 GMT
ETag: "652c75a7-41417"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Cache-Status: HIT, HIT
Accept-Ranges: bytes
|
|
| yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2 | 178.154.131.215 | 200 OK | 26 kB |
URL GET HTTP/2yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2 IP178.154.131.215:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGlobalSign nv-sa Subject*.yastatic-net.ru Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07 ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 26004, version 1.0 Hash7f0cdaf91230f9789ca4162aedff612e 965de571aa794dab64076c3cc64dc8894b843f23 033696b7f1ac04d1dcc102be84550e146236ceffc25a6cabc12aa51a6ee410b9
GET /s3/home/fonts/ys/3/text-variable-full.woff2 HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.smi.today/
Origin: https://www.smi.today
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: font/woff2
content-length: 26004
access-control-allow-origin: *
cache-control: public, max-age=31556952
etag: "7f0cdaf91230f9789ca4162aedff612e"
expires: Thu, 24 Apr 2025 23:35:51 GMT
last-modified: Mon, 25 Apr 2022 14:02:39 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-amz-meta-owner: {"role":"admin","login":"4eb0da"}
x-nginx-request-id: 650419e8c9a854d4
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| yastatic.net/partner-code-bundles/1014686/7c3ac665d549edb66aa8.js | 178.154.131.215 | 200 OK | 13 kB |
URL GET HTTP/2yastatic.net/partner-code-bundles/1014686/7c3ac665d549edb66aa8.js IP178.154.131.215:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGlobalSign nv-sa Subject*.yastatic-net.ru Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07 ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (46733) Hash2f2e7c445c7cd996c60930c81fecda81 251dc91790ac5ff72321ed3656700b24c0b6457c aba79091fff7111c644df3739b4fbadc5d3f6435834c764c42f30522e9fd6567
GET /partner-code-bundles/1014686/7c3ac665d549edb66aa8.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.smi.today
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: text/javascript; charset=utf-8
content-length: 13015
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "00c5cb86014d409cb2817308a817a172"
expires: Sat, 25 Apr 2054 00:21:31 GMT
last-modified: Tue, 23 Apr 2024 15:54:30 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| yastatic.net/partner-code-bundles/1014686/fa4d98e6c9268ce91740.js | 178.154.131.215 | 200 OK | 7.9 kB |
URL GET HTTP/2yastatic.net/partner-code-bundles/1014686/fa4d98e6c9268ce91740.js IP178.154.131.215:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGlobalSign nv-sa Subject*.yastatic-net.ru Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07 ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (24511) Hashf4b62481a2d625f3e069dd917b16d845 26727d009ff2d38409876e89a22f09250c89305b 812d87e1fd3b93d7ece770bed64d68852f3c0ddb01cb44de873259d8a77818ff
GET /partner-code-bundles/1014686/fa4d98e6c9268ce91740.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.smi.today
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: text/javascript; charset=utf-8
content-length: 7948
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "313a5d961d1f68133d335fd2ec061058"
expires: Sat, 25 Apr 2054 00:21:54 GMT
last-modified: Tue, 23 Apr 2024 15:54:32 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| yastatic.net/partner-code-bundles/1014686/8c56d3385424ec5e150d.js | 178.154.131.215 | 200 OK | 112 kB |
URL GET HTTP/2yastatic.net/partner-code-bundles/1014686/8c56d3385424ec5e150d.js IP178.154.131.215:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGlobalSign nv-sa Subject*.yastatic-net.ru Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07 ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65496) Size112 kB (112230 bytes) Hashfe2918bd3e8d1989d99e41a36681e489 d33a5e098d3c23f50a8990fad5b8f42d5a10b3b4 543aa3c0e7e0ac4480c17f7ba32e9cb468ef7e6f3e1a78f00f483ffc0392e204
GET /partner-code-bundles/1014686/8c56d3385424ec5e150d.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.smi.today
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: text/javascript; charset=utf-8
content-length: 112230
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "0ff184190f03550eca892d5fec6bfb37"
expires: Sat, 25 Apr 2054 00:21:31 GMT
last-modified: Tue, 23 Apr 2024 15:54:30 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| st.top100.ru/top100/top100.js | 81.19.89.16 | 200 OK | 152 kB |
URL GET HTTP/2st.top100.ru/top100/top100.js IP81.19.89.16:443 ASN#24638 Rambler Internet Holding LLC
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGlobalSign nv-sa Subject*.top100.ru Fingerprint67:1D:AC:E1:B4:A0:6A:53:F1:28:8C:9E:68:9F:77:67:A2:55:01:F3 ValidityWed, 14 Feb 2024 08:25:42 GMT - Mon, 17 Mar 2025 08:25:41 GMT
File typegzip compressed data, from Unix Size152 kB (151777 bytes) Hashc6f266405601482eac3f35e8d2990f38 2eb4eefc910bf9bc07c49003baf48266ed0aa569 bbfc327d8792500c49bf780dc2a50c5f943cea0d4b529ec07ca088f2f4b874ef
GET /top100/top100.js HTTP/1.1
Host: st.top100.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: application/javascript
vary: Accept-Encoding
x-obs-request-id: 0000018F11349617A804DF215F673668
etag: W/"d82980cb05a14aacc83dbcfeea88993b"
last-modified: Wed, 24 Apr 2024 14:03:47 GMT
x-obs-meta-s3cmd-attrs: atime:1713964984/ctime:1713967425/gid:0/gname:root/md5:d82980cb05a14aacc83dbcfeea88993b/mode:33188/mtime:1713964984/uid:0/uname:root
x-obs-tagging-count: 0
x-obs-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCS2BhLHFYpeHCABtGF15Ll0qupPDx7a1
expires: Wed, 24 Apr 2024 18:47:06 GMT
cache-control: max-age=3600
set-cookie: proto_uid=1CIAAJpFKWa8eYAzAVkcDgB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| yastatic.net/partner-code-bundles/1014686/7e7edc4db8a7e46a8215.js | 178.154.131.215 | 200 OK | 25 kB |
URL GET HTTP/2yastatic.net/partner-code-bundles/1014686/7e7edc4db8a7e46a8215.js IP178.154.131.215:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGlobalSign nv-sa Subject*.yastatic-net.ru Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07 ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65493) Hasha052c7d9997bb166ae48a45585e3b54d 2314efd0f9bd2de5ead244d1bbc32abad0cc3c4a 95532ce4288104452a28b9f2c01953079c547efc63994d3fc0e845c01ad4fac5
GET /partner-code-bundles/1014686/7e7edc4db8a7e46a8215.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.smi.today
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: text/javascript; charset=utf-8
content-length: 24563
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "2d9efda6ec497d1d3e12ba2eb1ec14ac"
expires: Sat, 25 Apr 2054 00:21:54 GMT
last-modified: Tue, 23 Apr 2024 15:54:30 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| yastatic.net/partner-code-bundles/1014686/470bdaf71c89600a9f6f.js | 178.154.131.215 | 200 OK | 2.9 kB |
URL GET HTTP/2yastatic.net/partner-code-bundles/1014686/470bdaf71c89600a9f6f.js IP178.154.131.215:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGlobalSign nv-sa Subject*.yastatic-net.ru Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07 ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (8684) Hashdaadc314b26875dc850fe9b1289a0d4c 26c3f8a7456ab52763f0047e6fcc3bf5c4a2219b a71a5a7a012d7bbddfadd2ec326a8efcb11447088d8648f616b787d6c29f4de9
GET /partner-code-bundles/1014686/470bdaf71c89600a9f6f.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.smi.today
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 24 Apr 2024 17:47:07 GMT
content-type: text/javascript; charset=utf-8
content-length: 2850
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "deb3d5e116676b4dd2b9d830ed691856"
expires: Sat, 25 Apr 2054 00:21:33 GMT
last-modified: Tue, 23 Apr 2024 15:54:30 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| yastatic.net/partner-code-bundles/1014686/ce102806325bd72b5a8a.js | 178.154.131.215 | 200 OK | 7.5 kB |
URL GET HTTP/2yastatic.net/partner-code-bundles/1014686/ce102806325bd72b5a8a.js IP178.154.131.215:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGlobalSign nv-sa Subject*.yastatic-net.ru Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07 ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (24947) Hash86172df2cb3fc07e5bbbe776e7d2c4c4 e4a974e55f403197474b46b73ce8999d1ab619d2 0c06d908e500b13389f2ab2e4202c747b4f995dfd05bb0ca6914195a0bb7da33
GET /partner-code-bundles/1014686/ce102806325bd72b5a8a.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.smi.today
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 24 Apr 2024 17:47:07 GMT
content-type: text/javascript; charset=utf-8
content-length: 7541
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "403abe6364f40699bcbe786ce02b8d32"
expires: Sat, 25 Apr 2054 00:21:33 GMT
last-modified: Tue, 23 Apr 2024 15:54:32 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| yastatic.net/safeframe-bundles/0.83/1-1-0/render.html | 178.154.131.215 | 200 OK | 6.3 kB |
URL GET HTTP/2yastatic.net/safeframe-bundles/0.83/1-1-0/render.html IP178.154.131.215:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGlobalSign nv-sa Subject*.yastatic-net.ru Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07 ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File typeHTML document, ASCII text, with very long lines (23297) Hash68ddd6a1df957888c4f3709393c1a7d5 8400def22d72366cf8749423d4c9d846176db821 9c911ab93cf6099aeeddb19cb1903d0ef838329443c3a0549c754da47f90a70a
GET /safeframe-bundles/0.83/1-1-0/render.html HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 24 Apr 2024 17:47:07 GMT
content-type: text/html
content-length: 6262
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "eb77de48712912aadc9aa8171ac75ede"
expires: Sat, 25 Apr 2054 00:20:43 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| yastatic.net/vas-bundles/1013946/bundles-es2017/loader.bundle.js | 178.154.131.215 | 200 OK | 220 kB |
URL GET HTTP/2yastatic.net/vas-bundles/1013946/bundles-es2017/loader.bundle.js IP178.154.131.215:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGlobalSign nv-sa Subject*.yastatic-net.ru Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07 ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size220 kB (220547 bytes) Hash22544f224fe50d81c5385ae96ad4add9 0ebcc0a9bf1429ac957712b9fa03b42f98bb9337 33bd8eba98e0ab68bdd26bc5e8ab1c8ab9bdfeb07a02c665b63bd40238a6110a
GET /vas-bundles/1013946/bundles-es2017/loader.bundle.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.smi.today
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 24 Apr 2024 17:47:07 GMT
content-type: text/javascript; charset=utf-8
content-length: 220547
access-control-allow-origin: *
cache-control: max-age=946708560
content-encoding: br
etag: "58e44375c8b92ec26c26bd32959e2a9d"
expires: Sat, 25 Apr 2054 00:21:37 GMT
last-modified: Mon, 22 Apr 2024 17:35:47 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=946708560; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| st.top100.ru/top100/3.16.4/media.js | 81.19.89.16 | 200 OK | 7.0 kB |
URL GET HTTP/2st.top100.ru/top100/3.16.4/media.js IP81.19.89.16:443 ASN#24638 Rambler Internet Holding LLC
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGlobalSign nv-sa Subject*.top100.ru Fingerprint67:1D:AC:E1:B4:A0:6A:53:F1:28:8C:9E:68:9F:77:67:A2:55:01:F3 ValidityWed, 14 Feb 2024 08:25:42 GMT - Mon, 17 Mar 2025 08:25:41 GMT
File typegzip compressed data, from Unix Hash4f9def6a5704321df5d579c361317271 dd655ab8aa093c05cdef760dca2c693c79432af0 0a52b269dabc499a2097c28fe509612a3e7af612c2674d24566f92c4fd6605f2
GET /top100/3.16.4/media.js HTTP/1.1
Host: st.top100.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: application/javascript
vary: Accept-Encoding
x-obs-request-id: 0000018F1136110CB0066275A6691599
etag: W/"59486406899f8efddf7671a20f4a5b32"
last-modified: Wed, 24 Apr 2024 14:03:47 GMT
x-obs-meta-s3cmd-attrs: atime:1713964986/ctime:1713967425/gid:0/gname:root/md5:59486406899f8efddf7671a20f4a5b32/mode:33188/mtime:1713964986/uid:0/uname:root
x-obs-tagging-count: 0
x-obs-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSFbRPo/A5GDg93wtc2z1MWWKA31L/aE
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
set-cookie: proto_uid=1CIAAJpFKWa8eYAzAW0cDgB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.smi.today/templates/new/js/device.js | 188.114.97.1 | 200 OK | 126 kB |
URL GET HTTP/3www.smi.today/templates/new/js/device.js IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typegzip compressed data, max compression, from Unix Size126 kB (126336 bytes) Hash1521c2d42e5ee20caceb7e0bda110594 9225fdc1cd3bc457959f2efb9118ef06393efba2 6bdf569b70f734d2ec774e88afcdc244d69ef845d63cc26cc9a8fdfc55395480
GET /templates/new/js/device.js HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/javascript
last-modified: Wed, 02 Feb 2022 15:54:21 GMT
vary: Accept-Encoding
etag: W/"61faa92d-1cc4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nSaiWzwQR17bn%2BePQc7pzzVjX%2FkcBopQ2hC%2FUEtguHYXLoQ9gysFWLfMGAkQN8OBV3AHbpEah7%2FIndFEHo6vTTYfsBQnvrsElxl4wILBb%2BoH7AdKYplWowyFwQIN8QrC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1fcac7127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| avatars.mds.yandex.net/get-direct/5220018/-uSNpPClcelcNwSedTxg3w/y300 | 87.250.247.182 | 200 OK | 28 kB |
URL GET HTTP/2avatars.mds.yandex.net/get-direct/5220018/-uSNpPClcelcNwSedTxg3w/y300 IP87.250.247.182:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGlobalSign nv-sa Subject*.avatars.mds.yandex.net FingerprintBA:3A:F2:3D:C9:8F:4B:5C:E1:4D:48:8E:47:FD:3B:F8:C3:BE:0A:A2 ValidityWed, 20 Mar 2024 15:21:04 GMT - Sun, 20 Oct 2024 15:21:04 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 400x300, Scaling: [none]x[none], YUV color, decoders should clamp Hasha72699323a5f10cf36d6c7acb613efc9 44d85ce51393906a7f91aab39ee725b6f373d94a 9b503cd36d0edb7f3f8670789792c82a613d56341dbcf79f0114113dd5185056
GET /get-direct/5220018/-uSNpPClcelcNwSedTxg3w/y300 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 17:47:07 GMT
content-type: image/webp
content-length: 27804
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Sat, 18 Mar 2023 09:59:40 GMT
cache-control: max-age=31536000,immutable
x-request-id: 704ec0dc8fa2e399
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=VLA"}]}
X-Firefox-Spdy: h2
|
|
| strm.yandex.ru/vh-canvas-converted/vod-content/6185996931231367131/7ed3e842-649c-46a2-aa62-eb4d9dd06baa/webm/VP8_426_240_500.webm?vsid=594762acc8528ed9f7badd8b717cbdd5ce0ca0f50debxVASx4686x1713980826 | 87.250.254.45 | 302 Found | 0 B |
URL GET HTTP/2strm.yandex.ru/vh-canvas-converted/vod-content/6185996931231367131/7ed3e842-649c-46a2-aa62-eb4d9dd06baa/webm/VP8_426_240_500.webm?vsid=594762acc8528ed9f7badd8b717cbdd5ce0ca0f50debxVASx4686x1713980826 IP87.250.254.45:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGlobalSign nv-sa Subject*.strm.yandex.net Fingerprint30:87:96:53:66:1D:C4:71:40:8D:DC:03:60:57:C4:84:BB:E1:C6:9D ValidityMon, 22 Jan 2024 08:29:23 GMT - Fri, 23 Aug 2024 08:29:23 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /vh-canvas-converted/vod-content/6185996931231367131/7ed3e842-649c-46a2-aa62-eb4d9dd06baa/webm/VP8_426_240_500.webm?vsid=594762acc8528ed9f7badd8b717cbdd5ce0ca0f50debxVASx4686x1713980826 HTTP/1.1
Host: strm.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Wed, 24 Apr 2024 17:47:07 GMT
content-length: 0
location: https://strm-ams07.strm.yandex.net/vh-canvas-converted/vod-content/6185996931231367131/7ed3e842-649c-46a2-aa62-eb4d9dd06baa/webm/VP8_426_240_500.webm?vsid=594762acc8528ed9f7badd8b717cbdd5ce0ca0f50debxVASx4686x1713980826&noredir=1&lid=294
x-plg: host=strm-plgo-production-130.klg.yp-c.yandex.net; version=13833587
x-request-id: 408428031c19efd1
x-strm-request-id: 408428031c19efd1
x-trace-id: 00000000000000000000000000000000
x_h: strm-anycast-ru-net-production-45.vla.yp-c.yandex.net
x-strm-log-split: 8
report-to: {"group": "network-errors", "max_age": 1200, "include_subdomains": true, "endpoints": [ {"url": "https://dr.yandex.net/strm", "priority": 1}, {"url": "https://dr2.yandex.net/strm", "priority": 2} ]}
nel: {"report_to": "network-errors", "max_age": 1200, "success_fraction": 0.005, "failure_fraction": 0.05, "include_subdomains": true}
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Range, X-Client-Timestamp, X-Strm-Session
access-control-expose-headers: Age, Date, Content-Range, X-Strm-Session, X-Estimated-RTT, X-Estimated-Bandwidth, X-Connection-ID, X-Server-Time-Ms, X-Plg-URL
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
X-Firefox-Spdy: h2
|
|
| strm-ams07.strm.yandex.net/vh-canvas-converted/vod-content/6185996931231367131/7ed3e842-649c-46a2-aa62-eb4d9dd06baa/webm/VP8_426_240_500.webm?vsid=594762acc8528ed9f7badd8b717cbdd5ce0ca0f50debxVASx4686x1713980826&noredir=1&lid=294 | 5.45.247.247 | 206 Partial Content | 1.1 MB |
URL GET HTTP/2strm-ams07.strm.yandex.net/vh-canvas-converted/vod-content/6185996931231367131/7ed3e842-649c-46a2-aa62-eb4d9dd06baa/webm/VP8_426_240_500.webm?vsid=594762acc8528ed9f7badd8b717cbdd5ce0ca0f50debxVASx4686x1713980826&noredir=1&lid=294 IP5.45.247.247:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGlobalSign nv-sa Subject*.strm.yandex.net Fingerprint30:87:96:53:66:1D:C4:71:40:8D:DC:03:60:57:C4:84:BB:E1:C6:9D ValidityMon, 22 Jan 2024 08:29:23 GMT - Fri, 23 Aug 2024 08:29:23 GMT
Size1.1 MB (1069234 bytes) Hash13afa85d6c5f80f44d4c5df2e342c201 9139dc3c1b390f3794bb5d789e34a0bf62a83ede bd035f34146beff22f0a3eb4ef1dd6d62ae456c0f173b0a5e85e06cbeea54815
GET /vh-canvas-converted/vod-content/6185996931231367131/7ed3e842-649c-46a2-aa62-eb4d9dd06baa/webm/VP8_426_240_500.webm?vsid=594762acc8528ed9f7badd8b717cbdd5ce0ca0f50debxVASx4686x1713980826&noredir=1&lid=294 HTTP/1.1
Host: strm-ams07.strm.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br, identity
Range: bytes=0-
Referer: https://www.smi.today/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
server: nginx
date: Wed, 24 Apr 2024 17:47:08 GMT
content-type: video/webm
content-length: 1069234
etag: "13afa85d6c5f80f44d4c5df2e342c201"
last-modified: Sat, 18 Mar 2023 10:11:46 GMT
x-robots-tag: noindex, noarchive, nofollow
x-strm-log-split: 8
x_h: strm-ams07.strm.yandex.net
x-strm-request-id: db4e24f44755a391
x-request-id: db4e24f44755a391
expires: Wed, 24 Apr 2024 17:52:08 GMT
cache-control: max-age=300
report-to: {"group": "network-errors", "max_age": 1200, "include_subdomains": true, "endpoints": [ {"url": "https://dr.yandex.net/strm", "priority": 1}, {"url": "https://dr2.yandex.net/strm", "priority": 2} ]}
nel: {"report_to": "network-errors", "max_age": 1200, "success_fraction": 0.005, "failure_fraction": 0.05, "include_subdomains": true}
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Range, X-Client-Timestamp, X-Strm-Session
access-control-expose-headers: Age, Date, Content-Range, X-Strm-Session, X-Estimated-RTT, X-Estimated-Bandwidth, X-Connection-ID, X-Server-Time-Ms, X-Plg-URL
x-estimated-rtt: 40301
x-estimated-bandwidth: 1078584
x-connection-id: 85342753
x-server-time-ms: 1713980828126
content-range: bytes 0-1069233/1069234
X-Firefox-Spdy: h2
|
|
| log.strm.yandex.ru/log?VAS=1013946&event=PrioritiseMediaFiles | 87.250.251.15 | 200 OK | 0 B |
URL POST HTTP/2log.strm.yandex.ru/log?VAS=1013946&event=PrioritiseMediaFiles IP87.250.251.15:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGlobalSign nv-sa Subjectlog.strm.yandex.ru Fingerprint4F:D2:67:04:4C:8B:E9:55:4A:07:A5:24:3B:9E:9F:75:EE:34:A0:B2 ValidityWed, 31 Jan 2024 21:01:54 GMT - Sat, 29 Jun 2024 20:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /log?VAS=1013946&event=PrioritiseMediaFiles HTTP/1.1
Host: log.strm.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 7284
Origin: https://www.smi.today
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
timing-allow-origin: https://www.smi.today
date: Wed, 24 Apr 2024 17:47:08 GMT
access-control-expose-headers: Date
access-control-allow-origin: https://www.smi.today
x-request-id: 1713980828576954-6899413383050845623
access-control-allow-credentials: true
x-trace-id: 00000000000000000000000000000000
X-Firefox-Spdy: h2
|
|
| www.smi.today/templates/new/js/hammer.js | 188.114.97.1 | 200 OK | 17 kB |
URL GET HTTP/3www.smi.today/templates/new/js/hammer.js IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typegzip compressed data, max compression, from Unix Hashaae20634fedabbc977cc815b0842c09e 14eb691448b0848a4b44d78e305ce2a64ae50f64 239ac942d4b88a2fc3e443c6be02f8faa5fda89359e59a5ff3c5039aa759e52d
GET /templates/new/js/hammer.js HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/javascript
last-modified: Wed, 02 Feb 2022 15:51:39 GMT
vary: Accept-Encoding
etag: W/"61faa88b-511d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z19XMIUcjLeccxmoRLbc2vEzSNBw2qXbCsdR4toCmMZKhtJAt99RFM2DtT9K7b974c3jsVLSk5U9IaAhyD6xVT9NhjSyK0kI8o20Ta7xfnWcNwCAa1Q6iPTKJYEssV%2Fh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1fcad7127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| yastatic.net/share2/share.js | 178.154.131.215 | 200 OK | 56 kB |
URL GET HTTP/2yastatic.net/share2/share.js IP178.154.131.215:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGlobalSign nv-sa Subject*.yastatic-net.ru Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07 ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (64803), with no line terminators Hash72e199079b77250d47f2f9c379273c4c 50cb6f4955fcaf797fa592a1febb2c3e8cfb85d6 838439f7800886796f6c8dd2b1bb6eeebfccdc9b05f89c489140c10edff3ab28
GET /share2/share.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=216009
content-encoding: br
etag: W/"72e199079b77250d47f2f9c379273c4c"
expires: Sat, 27 Apr 2024 05:45:37 GMT
last-modified: Wed, 29 Nov 2023 15:06:40 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-content-type-options: nosniff
x-robots-tag: noindex, noarchive, nofollow
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v6.5.2/webfonts/free-fa-brands-400.woff2 | 104.21.26.223 | 200 OK | 118 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.5.2/webfonts/free-fa-brands-400.woff2 IP104.21.26.223:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 117856, version 773.1280 Size118 kB (117856 bytes) Hash5674af1ac41fe62c1b4568cbb6a031ff 83ac1707f24f448c43d0656f224a827014154c4f 0de3edeabe89b14f48e7856d2cb631722c600ff66839fae178d0567902d62a91
GET /releases/v6.5.2/webfonts/free-fa-brands-400.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: font/woff2
content-length: 117856
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 02 Apr 2024 15:51:14 GMT
etag: "5674af1ac41fe62c1b4568cbb6a031ff"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZQ92HbMDJ22MuGbBJx3eHtvD-P1F9Lwkc6lPOwgbYVgXKgqLmMLzMg==
age: 751321
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M140XeBLDb5m5yxx0RWMXN3Kn%2BFAUNw8BJyzXFKAPC9ycWlAe6nbbgL2b41L4eTaRfXpA2i05UuNjlhvtjOjXQQYcUCjrbqfND7VRgAEH8ZmLuybLBlg3%2BAwnjU8PGWwixUJ07to0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ea9c7c4c5687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.smi.today/templates/new/fonts/IBMPlexSerif-Regular.woff | 188.114.97.1 | 200 OK | 69 kB |
URL GET HTTP/3www.smi.today/templates/new/fonts/IBMPlexSerif-Regular.woff IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeWeb Open Font Format, TrueType, length 68808, version 0.0 Hash9bb1489b8d2cb0176283fbd55c465b1b 2df22dfa994d085e98cbace4657e22c4287a5fd4 b042a03e24bb06685ad917cf0b53556dd0c0bac329b5ae1e5458a17675a3f159
GET /templates/new/fonts/IBMPlexSerif-Regular.woff HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/font-woff
last-modified: Tue, 01 Feb 2022 10:50:14 GMT
etag: W/"10cc8-5d6f2aa7f6356"
access-control-allow-origin: *
vary: User-Agent
content-language: ru
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EWyrU5GNuq%2FLPxYmCKV7k5fbNh43cMSQF1XUWaZmUL8s0tfVhIQUCXA7xFZZGGh3DdOAf9uQqfIh3%2BiVjOOe1aEV2fiwPcOUhdQtJ%2FKeBUk2GkuHd6A%2BbzSX4PZiSRPd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1cc737127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| www.smi.today/templates/new/fonts/Inconsolata-Regular.woff | 188.114.97.1 | 200 OK | 50 kB |
URL GET HTTP/3www.smi.today/templates/new/fonts/Inconsolata-Regular.woff IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeWeb Open Font Format, TrueType, length 50280, version 1.13 Hash8d6f03bd15e70fadac51bed04f16b851 36d096a851852eacfa20b5eb06d25535381c0cb4 4cd13630e7af29f463ebe5184328e1c34adb99a8bce3577f5fa7c0c21932474f
GET /templates/new/fonts/Inconsolata-Regular.woff HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/font-woff
last-modified: Tue, 01 Feb 2022 10:50:14 GMT
etag: W/"c468-5d6f2aa82af16"
access-control-allow-origin: *
vary: User-Agent
content-language: ru
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4p%2F%2BehRvX5jo4%2BYrL8r3RPFoC3htqT8XFlAhS8T%2BQRh%2F5DyAUg073U4WvH4KTY6Gw2dI7qfFM1G2R3%2FgNX1F00kK3%2BiGGW1LtYk8a6iqBnITAhXuFEK7gm1l6NOgKYVh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1dc8f7127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| www.smi.today/engine/modules/infinitepost/lib/jquery.growl/jquery.growl.css | 188.114.97.1 | 200 OK | 2.0 kB |
URL GET HTTP/3www.smi.today/engine/modules/infinitepost/lib/jquery.growl/jquery.growl.css IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeASCII text, with very long lines (2111), with no line terminators Hashd45dd1222f9454c33abbc7b00c54e5c8 9b832ba4992e5c51fb83e3df36b4e42b2b5c2769 846ed394b21fee449a629174307f89137dcb84923e5ac2b1a1de234624063e7d
GET /engine/modules/infinitepost/lib/jquery.growl/jquery.growl.css HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: text/css
last-modified: Fri, 29 Dec 2017 08:20:34 GMT
vary: Accept-Encoding
etag: W/"5a45fad2-7df"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WS%2Fiy4ohK4mfjHsdrfESBY4YR%2F4FPFyu1QZQzUw7iT2cW4K%2BEg2%2FRZa3eGe%2BM944vRGZeJUyVrfDVBFEQTYHGfHM08kfXTJCFaIaiF28%2BF3MgAwwnJB%2BmgGruGS%2B%2Bhbn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1fcbb7127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| smi.today/templates/Blogss/style/styles5.css | 188.114.97.1 | 200 OK | 14 kB |
URL GET HTTP/3smi.today/templates/Blogss/style/styles5.css IP188.114.97.1:443
Requested byhttps://www.smi.today/indexru2022.php CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeASCII text, with very long lines (347) Hash3d50cb1966ac9b6c1f22800717ccb252 dcba422aded86b89a7edc2cb5cd93b1c7c273df6 6316293d1362f0ad34ed8769859c71d7121947aef55c1f96c16dc982ae14e043
GET /templates/Blogss/style/styles5.css HTTP/1.1
Host: smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: text/css
last-modified: Fri, 26 Mar 2021 07:01:06 GMT
vary: Accept-Encoding
etag: W/"605d86b2-3564"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FTMdb3pKic5FZLSR9Xw0p8cZ940SD3ldBz1y6BRV8G7fR9I10Ue6rWge9S1Ks6AIcvi2rZatwlr69noEELCJdKxTHi8%2FkGn1wwJexMkxwg5EPVyQhcunMvy1Dmc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ea9bad077127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| yandex.ru/ads/system/context.js | 5.255.255.70 | 200 OK | 366 kB |
URL GET HTTP/2yandex.ru/ads/system/context.js IP5.255.255.70:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGlobalSign nv-sa Subject*.xn--d1acpjx3f.xn--p1ai Fingerprint17:FB:0C:B6:3F:7F:A5:4C:41:AD:D0:5C:6B:9A:96:47:FE:AF:C8:5C ValidityMon, 04 Mar 2024 10:29:07 GMT - Sun, 01 Sep 2024 20:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65491) Size366 kB (365508 bytes) Hash5bd0eb9a3b4d3fd552d8d72d453b297a e2085e57940b924424686952d07a6122f407dbbb b7c67c059bc108c773ced0fa9ba9d518a7fffdce762e0b15073c003fae311398
GET /ads/system/context.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
timing-allow-origin: *
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: *
set-cookie: i=VKCEhCIaGY9yla41pqrXMZ96y9OiOspiwiie+AKbxJPEu/TjVIE+E9u3NyoOERoL/QrDLA+1TB8NF8uSZuhBXpvTl7A=; Expires=Fri, 24-Apr-2026 17:47:05 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=7188512191713980825; Expires=Fri, 24-Apr-2026 17:47:05 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yashr=6661099901713980825; Path=/; Domain=.yandex.ru; Expires=Thu, 24 Apr 2025 17:47:05 GMT; SameSite=None; Secure; HttpOnly
receive-cookie-deprecation=1; Path=/; Domain=.yandex.ru; Expires=Thu, 24 Apr 2025 17:47:05 GMT; SameSite=None; Secure; HttpOnly; Partitioned
etag: "a7c3bb7728db0a533e2812f5bb018fa3-1014686"
expires: Wed, 24 Apr 2024 18:47:05 GMT
x-yandex-req-id: 1713980825377180-6496537052418851219-balancer-l7leveler-kubr-yp-vla-11-BAL
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/themes/dada-news-new/custom.css?ver=1691480688 | 45.130.41.185 | 200 OK | 24 kB |
URL GET HTTP/2dadanews.ru/wp-content/themes/dada-news-new/custom.css?ver=1691480688 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
Hashe2e1a7d1892327ed23d26e22d8a79ccb 7a68fa57a0d96666d0b48dee478fca5f64d81f44 7d00406c14b1afb725605ec3838e95ecd4aee63bee1b3d8cd4a8a13a663fb28b
GET /wp-content/themes/dada-news-new/custom.css?ver=1691480688 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: text/css
last-modified: Tue, 08 Aug 2023 07:44:48 GMT
vary: Accept-Encoding
etag: W/"64d1f270-5be8"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/sm.25.html | 172.67.39.148 | 200 OK | 716 B |
URL GET HTTP/3static.addtoany.com/menu/sm.25.html IP172.67.39.148:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeHTML document, ASCII text, with very long lines (744), with no line terminators Hashc3c97893ca5c74e7504aa4ec474ea41b cdccb12d7e73682e0e807107243ede7d5e14c962 b79f65e9ffe3bad9bd9cdcffed0758430f7eb1a630c368dc173eecdeb2821f00
GET /menu/sm.25.html HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5XqYdf3zT6f5djRXIIJwMp9CmOr869HlwkvaSLOezMHs8bCNXKhchHrxUkAX8VobSQtGTx9av1ds6j%2BrAMbeIHt6gjCWQ%2F0%2FDDuSz%2BYQMTMfH9cMBRVSXt9wfmQ0xD6qcBrOg5iLUMVJymypfmtsURYC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 27537
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8797ea97dddd56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.smi.today/engine/modules/infinitepost/kernel.js | 188.114.97.1 | 200 OK | 4.5 kB |
URL GET HTTP/3www.smi.today/engine/modules/infinitepost/kernel.js IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (5179), with no line terminators Hash565ae0d2eac13701473a4352dc80ae0e b46e2d0faeaa60c126a63791104a96ca0b38f7f7 5dc973bc78ca9665a0058d6e951c29ae645b7ed1d582b60eacd4b785de6cd62b
GET /engine/modules/infinitepost/kernel.js HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/javascript
last-modified: Fri, 26 Mar 2021 10:04:52 GMT
vary: Accept-Encoding
etag: W/"605db1c4-1188"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d98TyCmlpN0AGVcAQ4bmvOkO%2BUpEYpX6izWwMFVuQpuTANcKhO9qgTdE7CJDSK0mbkJK6QPB4w3Ce4MwjMh2Nne2FIe%2FkNkS56PWb4AmriCJKSmlt730DM2Dvbs3%2F7jb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa21ce67127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| static.addtoany.com/menu/svg/icons/a2a.js | 172.67.39.148 | 200 OK | 182 B |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/a2a.js IP172.67.39.148:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with no line terminators Hash4db08a52ad8927bb87884526a96beb94 da541aec9c65b613f83ecfc56cd3c80a3221932a 4172078aeb1306c9c9f454cb78cee31e0d09c25742197e59fa6718c3bb2b4abc
GET /menu/svg/icons/a2a.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"0aca4ea1e5f8f250126a8e0c597dd969"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IPggQeOPcRD7koviVDjp4muC42IUrDAdej3S4SOCym3iGhtIhiW4WTG4ru3jR4aWKsWMXJuUI8CLOh6zYfVCOBQsROU3q1PYlZJp%2B4Qvn2%2B0k%2BRk6TVAcrhdfoqFN4KIz07WIziB"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: REVALIDATED
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8797ea9a6a4c56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dadanews.ru/wp-content/themes/dada-news-new/images/src/dada.png | 45.130.41.185 | 200 OK | 49 kB |
URL GET HTTP/2dadanews.ru/wp-content/themes/dada-news-new/images/src/dada.png IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typePNG image data, 2386 x 464, 8-bit/color RGBA, non-interlaced Hash6b2189b0171dcc26885c1f7aecdd175f de1a601820c5f71e95cf5932a3c8405e92142804 f832b453804b62a01a520f5918fb9cba0a17cc8187d0058c693f8de96ed822f2
GET /wp-content/themes/dada-news-new/images/src/dada.png HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Cookie: surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36; la_page_depth=%7B%22last%22%3A%22https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij%22%2C%22depth%22%3A1%7D; page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: image/png
content-length: 48714
last-modified: Tue, 25 Jul 2023 14:19:14 GMT
etag: "64bfd9e2-be4a"
expires: Fri, 24 May 2024 17:47:04 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.smi.today/indexru2022.php | 188.114.97.1 | 200 OK | 6.2 kB |
URL GET HTTP/3www.smi.today/indexru2022.php IP188.114.97.1:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (5932), with no line terminators Hash5abfb5f4c05788db9c5344e5467bc1ee eaa12edf8c0c4afba0a0a0262ba2705599f32cab 45a7efdfdeebf52e22aff937caeef3e0e322fc5a5b8de632823c9864f16f7607
GET /indexru2022.php HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dadanews.ru/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: text/html; charset=utf-8
set-cookie: PHPSESSID=7191h3gg3ebsg8h9u1bjl2fa44; path=/; domain=.smi.today; HttpOnly
dle_user_id=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.smi.today; HttpOnly
dle_password=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.smi.today; HttpOnly
dle_hash=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.smi.today; HttpOnly
access-control-allow-origin: *
vary: User-Agent
content-language: ru
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9I%2FE7Iz2WX3J2OpEhmk%2BG43OhBCd2TiXIlD1qURxTF7aHE3cJXjNG9nhzgHsECjXDMvetPuQS2ZEeEPlkaC5nKy3MTfDWN4czAkWipvRsjQzuB3XVstIlpi4g4xmZFvU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ea9acc167127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| st.top100.ru/top100/3.16.4/usability.js | 81.19.89.16 | 200 OK | 15 kB |
URL GET HTTP/2st.top100.ru/top100/3.16.4/usability.js IP81.19.89.16:443 ASN#24638 Rambler Internet Holding LLC
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGlobalSign nv-sa Subject*.top100.ru Fingerprint67:1D:AC:E1:B4:A0:6A:53:F1:28:8C:9E:68:9F:77:67:A2:55:01:F3 ValidityWed, 14 Feb 2024 08:25:42 GMT - Mon, 17 Mar 2025 08:25:41 GMT
File typeJavaScript source, ASCII text, with very long lines (14616), with no line terminators Hashbdf82d3b76d75e00dd12dba0611f4e97 741d6723540c3fd71bec32a8a9f746450dd2519e e77c8a247b3abcdc66ec4e3367c048533426ee4e47606d70b1fa9b627d895051
GET /top100/3.16.4/usability.js HTTP/1.1
Host: st.top100.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: application/javascript
vary: Accept-Encoding
x-obs-request-id: 0000018F1136245AA004DE1ADF00F054
etag: W/"bdf82d3b76d75e00dd12dba0611f4e97"
last-modified: Wed, 24 Apr 2024 14:03:47 GMT
x-obs-meta-s3cmd-attrs: atime:1713964986/ctime:1713967425/gid:0/gname:root/md5:bdf82d3b76d75e00dd12dba0611f4e97/mode:33188/mtime:1713964986/uid:0/uname:root
x-obs-tagging-count: 0
x-obs-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSlCaoyLUs0DQLPm6FexDnmixVOjhylY
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
set-cookie: proto_uid=1CIAAJpFKWa8eYAzAWwcDgB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/plugins/user-submitted-posts/resources/jquery.usp.core.js?ver=20230311 | 45.130.41.185 | 200 OK | 7.2 kB |
URL GET HTTP/2dadanews.ru/wp-content/plugins/user-submitted-posts/resources/jquery.usp.core.js?ver=20230311 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typeJavaScript source, ASCII text, with very long lines (8003), with no line terminators Hashb63b8225abb43e4f474ab58ec43bfcde 18e3a1285bcd8a3aa7e1c968c26ead0072fb2875 2bbc769e72157a07d205b424b03d51672106fb3b71a2bd6f46be3a8ecff18dea
GET /wp-content/plugins/user-submitted-posts/resources/jquery.usp.core.js?ver=20230311 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: application/x-javascript
last-modified: Wed, 26 Jul 2023 14:07:00 GMT
vary: Accept-Encoding
etag: W/"64c12884-1bf6"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/751d31/18032515c255453083916f2e499359ca/d0b628b7257f121a.jpeg | 62.76.25.27 | 200 OK | 31 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/18032515c255453083916f2e499359ca/d0b628b7257f121a.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hashfcfbbd0315b08f027632f55297e5d1d2 cd4d6be8bf0b3c95b33acb4051e2d568ab2b70d3 1826f0e60106bae60ae705c28c97001a89d4c345483c5d9ab3dd860cc9cf5c39
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/18032515c255453083916f2e499359ca/d0b628b7257f121a.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 30790
last-modified: Mon, 23 May 2022 11:39:03 GMT
etag: "628b7257-7846"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.smi.today/engine/modules/infinitepost/site/lib/infinite-scroll/full.js | 188.114.97.1 | 200 OK | 55 kB |
URL GET HTTP/3www.smi.today/engine/modules/infinitepost/site/lib/infinite-scroll/full.js IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeJavaScript source, ASCII text Hashf4cbf3bd4ba338963eb5655a60c7c016 0446cf10b01965b3fd6d069745c407da63fd3505 96d470b2f9703a37707f7dc2fc70372041f4c043a4fabc6fde66f5eb5c3d0d5a
GET /engine/modules/infinitepost/site/lib/infinite-scroll/full.js HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: application/javascript
last-modified: Wed, 08 Jul 2020 14:34:46 GMT
vary: Accept-Encoding
etag: W/"5f05d986-d857"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FIxSt4DPUX0L8oeMk6%2FRYFwWBAgyxG0U4CjSLuc9OvpLAZUDal3N5UVtJR2agG2J7BcuLb%2BMPj97smNlQL52fX135PqKqu%2FeMbAZOzn21QTAo%2FYpAsAPIU%2FpnK6VOaa%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1fcbf7127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.smi.today/templates/new/js/all.min-new.js | 188.114.97.1 | 200 OK | 26 kB |
URL GET HTTP/3www.smi.today/templates/new/js/all.min-new.js IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /templates/new/js/all.min-new.js HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/javascript
last-modified: Mon, 31 Oct 2022 02:20:09 GMT
vary: Accept-Encoding
etag: W/"635f30d9-643d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p6RgJ7GopZmzmuW1eyFd9JX2FYyc2coStt7WKSgrKUkSmZK9wFw4t7akxTJyIcHQUc%2B56G4zr4RsjRO%2BtCiPytJrnfA9Mk8at8V2AiNBYwIUWYjIHg%2Bj05AL7VqXvjb1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1dc917127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.smi.today/templates/new/css/all.min-new6.css?1.1 | 188.114.97.1 | 200 OK | 86 kB |
URL GET HTTP/3www.smi.today/templates/new/css/all.min-new6.css?1.1 IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeASCII text, with very long lines (5257) Hashf14dbbf7671b79ba30063c30065874ff bb7f828f764ee32644a6dbf679cc63840a04c6a8 a36b33ec02d851d24c05489dbb2f2ec8e498922117a66b03bcb9df1bc820fdf1
GET /templates/new/css/all.min-new6.css?1.1 HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: text/css
last-modified: Wed, 27 Sep 2023 15:35:30 GMT
vary: Accept-Encoding
etag: W/"65144bc2-14ece"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3pph0RKAExFIsBGpb%2B1VjBsMBa3L%2Fxa7O7sv48ChStfW0JthAle1bj%2BZf3Sx%2FUccy9AsJ071c%2BVm9%2BswHfQ5d1sb%2BGJZ5HzNh9jCbYZy3xe9hmAKpnaeZ8hZRK%2BnYqyy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1dc927127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| dadanews.ru/wp-content/plugins/expert-review/assets/public/css/styles.min.css?ver=1.8.0 | 45.130.41.185 | 200 OK | 101 kB |
URL GET HTTP/2dadanews.ru/wp-content/plugins/expert-review/assets/public/css/styles.min.css?ver=1.8.0 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size101 kB (100574 bytes) Hash8a38cebcb1a33c2190c61bf3237093b8 25bf378a80b5fd5cce4e8ed04889535db67afc90 64863fec711f6b63e85036359bc58054069be12c3ff37212ec63cd17a52524a0
GET /wp-content/plugins/expert-review/assets/public/css/styles.min.css?ver=1.8.0 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: text/css
last-modified: Wed, 26 Jul 2023 16:18:43 GMT
vary: Accept-Encoding
etag: W/"64c14763-188de"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/plugins/wp-postratings/css/postratings-css.css?ver=1.91.1 | 45.130.41.185 | 200 OK | 1.4 kB |
URL GET HTTP/2dadanews.ru/wp-content/plugins/wp-postratings/css/postratings-css.css?ver=1.91.1 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typeASCII text, with very long lines (1419), with no line terminators Hashfece104f5b8787c2dc70185d41abcab7 3be2533f44c2445f6e4c494e24dab1ecede7064f e3481db971b0a86bd9b18390c87477486aec1e247ba477a0f5a5895fb8457b5d
GET /wp-content/plugins/wp-postratings/css/postratings-css.css?ver=1.91.1 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: text/css
last-modified: Tue, 12 Mar 2024 09:17:16 GMT
vary: Accept-Encoding
etag: W/"65f01d9c-549"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/viber.js | 172.67.39.148 | 200 OK | 1.0 kB |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/viber.js IP172.67.39.148:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (1027), with no line terminators Hashb216786a6e2822572e4c78284416fd02 b3a072140d798b6734431ff6a890da7cb8c701ce 265af7156e77fce7638988053d5b3f4894c92ae2bdacac504131a96cf6a0d370
GET /menu/svg/icons/viber.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"ab1da422605fdb35fd02440984d36475"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u7U8MlzH3aktLfsUZULq1MbcqAtLyNAHljBThTkayKuX%2BUJsNVeRESbGfBLgUi0GMtN87%2BHz7XEr4RRPrq6Y7Ri48%2BuN6i0qhFWOjGT6mZ3iWHYhvPjvDig6%2FvHJ7lKUHqEQ3HD3"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 9753
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8797ea9a5a2a56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| static.addtoany.com/menu/modules/core.BRQnzO8v.js | 172.67.39.148 | 200 OK | 72 kB |
URL GET HTTP/3static.addtoany.com/menu/modules/core.BRQnzO8v.js IP172.67.39.148:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash629401c31553d2f42a6ca46e58c2a97b 0ab6084caa72f90913c7e4119f491838726ec5c2 91b9b24f0aa59668e4d0a770ee7a294b9baa361a76a20ade8128cd0482a5d805
GET /menu/modules/core.BRQnzO8v.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
cf-bgj: minify
etag: W/"25da5432b1057724b8210f17e9b9db05"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tL%2BYyheEI3VqrVvMtpKtjeru%2FQonMtkDh8gCKn4%2B2rslm0sn%2BSrt9kkYYiWCWWHL3P%2BX8XOY4HAodfSdGrG0YTKaM1zYJNdCv1JPgz6jxt9%2F%2BtmAjuqw2YLgcKvrwYFIr41I99fx"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 9753
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8797ea97fe2356ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Roboto:100,200,300,400,500,600,700,800,900 | 142.250.74.106 | 200 OK | 13 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:100,200,300,400,500,600,700,800,900 IP142.250.74.106:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
Hasha2ba974c1b5419d50b52ea2dae73ed8b a6987c3dc65315875c6a5a4fc4913619d32fef67 4680f0242ae53304a6bf932234579ecf1100b3473bd822857943a3e5a2e01f8d
GET /css?family=Roboto:100,200,300,400,500,600,700,800,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 17:47:05 GMT
date: Wed, 24 Apr 2024 17:47:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| news.mediametrics.ru/uploads/1713870442blob.jpg | 88.212.202.23 | 200 OK | 9.8 kB |
URL GET HTTP/1.1news.mediametrics.ru/uploads/1713870442blob.jpg IP88.212.202.23:443 ASN#39134 Edinaya Set Limited Liability Company
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subject*.mediametrics.ru Fingerprint9F:8D:CF:3E:88:F6:A9:B6:EB:85:53:4A:C1:42:DA:B6:CA:41:2A:8C ValidityFri, 08 Mar 2024 01:08:24 GMT - Thu, 06 Jun 2024 01:08:23 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x256, components 3 Hash33b0deab16af422a3438d03c490af439 568693288bdcc347eeb0ecfaa82369a1d9baea85 ddc8d6b889d1ee677d4a7c2e6ef657a5590c37bf284ed2272f5f0c38dedb79d4
GET /uploads/1713870442blob.jpg HTTP/1.1
Host: news.mediametrics.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 17:47:04 GMT
Content-Type: image/jpeg
Content-Length: 9775
Connection: keep-alive
Last-Modified: Tue, 23 Apr 2024 11:07:22 GMT
ETag: "6627966a-262f"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| jgctqt.com/v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=38890ed6-38df-4860-96fd-425096fe5143&block_uuid=38890ed6-38df-4860-96fd-425096fe5143&refresh_depth=1&safari_multiple_request=278 | 62.76.25.27 | 200 OK | 74 kB |
URL GET HTTP/2jgctqt.com/v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=38890ed6-38df-4860-96fd-425096fe5143&block_uuid=38890ed6-38df-4860-96fd-425096fe5143&refresh_depth=1&safari_multiple_request=278 IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=38890ed6-38df-4860-96fd-425096fe5143&block_uuid=38890ed6-38df-4860-96fd-425096fe5143&refresh_depth=1&safari_multiple_request=278 HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
access-control-allow-origin: *
access-control-allow-headers: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/751d31/034398dca1d04008984b8102dda86605/d0b628b76532dc99.jpeg | 62.76.25.27 | 200 OK | 28 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/751d31/034398dca1d04008984b8102dda86605/d0b628b76532dc99.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hash4adfced5b4dcf441b46550e166848c54 2cc89f4b7da42ecf6634807abc751ccbcaa0246d c59b2f3ab4dafa3647d7dbd325d4eb084ec3610f719a245b8ce4b5e5086627cf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/034398dca1d04008984b8102dda86605/d0b628b76532dc99.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 28257
last-modified: Mon, 23 May 2022 11:56:03 GMT
etag: "628b7653-6e61"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| yastatic.net/es5-shims/0.0.2/es5-shims.min.js | 178.154.131.215 | 200 OK | 2.7 kB |
URL GET HTTP/2yastatic.net/es5-shims/0.0.2/es5-shims.min.js IP178.154.131.215:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGlobalSign nv-sa Subject*.yastatic-net.ru Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07 ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (2836), with no line terminators Hash58e950dc38c833c61f45f61f45807f49 22c36825e711016a0c4b811eb3a009cfc969146c 51c03f500b0cad842627db1732c4d523ba2449f59526b30a7b074d58df374e2c
GET /es5-shims/0.0.2/es5-shims.min.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=216013
content-encoding: br
etag: W/"32e3b4f3a8f6048da9934fec1ca08cea"
expires: Sat, 27 Apr 2024 05:45:32 GMT
last-modified: Thu, 25 Oct 2018 11:27:00 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-nginx-request-id: 6a785ac61c8a2bed
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/plugins/user-submitted-posts/resources/jquery.cookie.js?ver=20230311 | 45.130.41.185 | 200 OK | 1.5 kB |
URL GET HTTP/2dadanews.ru/wp-content/plugins/user-submitted-posts/resources/jquery.cookie.js?ver=20230311 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typeJavaScript source, ASCII text, with very long lines (1542), with no line terminators Hash75928808d1abdd7a938744e00bfa3c62 8a598eca5d6dbf3f3d0a25d053592394e7218fda 440d579d99f4236be00f8f1bef8fe5e45100d95cb2870116aa280479b97f658c
GET /wp-content/plugins/user-submitted-posts/resources/jquery.cookie.js?ver=20230311 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: application/x-javascript
last-modified: Wed, 26 Jul 2023 14:07:00 GMT
vary: Accept-Encoding
etag: W/"64c12884-5db"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| jgctqt.com/v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=9dd7a9e1-de79-437a-834c-b89cb9a4e5bc&block_uuid=9dd7a9e1-de79-437a-834c-b89cb9a4e5bc&refresh_depth=1&safari_multiple_request=608 | 62.76.25.27 | 200 OK | 37 kB |
URL GET HTTP/2jgctqt.com/v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=9dd7a9e1-de79-437a-834c-b89cb9a4e5bc&block_uuid=9dd7a9e1-de79-437a-834c-b89cb9a4e5bc&refresh_depth=1&safari_multiple_request=608 IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=9dd7a9e1-de79-437a-834c-b89cb9a4e5bc&block_uuid=9dd7a9e1-de79-437a-834c-b89cb9a4e5bc&refresh_depth=1&safari_multiple_request=608 HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
access-control-allow-origin: *
access-control-allow-headers: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.smi.today/templates/new/fonts/IBMPlexSans-Italic.woff | 188.114.97.1 | 200 OK | 71 kB |
URL GET HTTP/3www.smi.today/templates/new/fonts/IBMPlexSans-Italic.woff IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeWeb Open Font Format, TrueType, length 71240, version 0.0 Hash7904296b4444823882718fa8a07e4a5e e7bb22efc5706da5811244626c0bf2571d5b1247 2643765ff5d1e6abc9338534dce7d1a10941ae956650a977e7c12e6f79cb48af
GET /templates/new/fonts/IBMPlexSans-Italic.woff HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/font-woff
last-modified: Tue, 01 Feb 2022 10:50:13 GMT
etag: W/"11648-5d6f2aa75ce38"
access-control-allow-origin: *
vary: User-Agent
content-language: ru
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BwkOTfBZe7ZGupVpyKaKvbGIRMh2GmuOaUhFA8%2FonPVEMxW%2FX4EJMhpVyERaRxkfzUvp9XZxJKIH0y30A8fKDAXookQLtU%2BnxPfR8%2BrXLf3AAqUZ1KroVgdOjFS2BphS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1cc6e7127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| www.smi.today/templates/new/emoji/assets/styles.css | 188.114.97.1 | 200 OK | 5.6 kB |
URL GET HTTP/3www.smi.today/templates/new/emoji/assets/styles.css IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeUnicode text, UTF-8 text, with very long lines (6384), with no line terminators Hash43230477ddc91eccca736fd4813ba20c bf3a1c76319ad2a71b830a18393a176fbd0ef61b c0386ece619e8820a59b910c7cfb0fa3c24729acc3d5a43768be32bd6545835c
GET /templates/new/emoji/assets/styles.css HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: text/css
last-modified: Tue, 08 Feb 2022 16:03:08 GMT
vary: Accept-Encoding
etag: W/"6202943c-15cf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dkpsYItKYjA1Ld7Lua9rYUt2Z9jsNzeDL8omgTerHM5%2F7tuj1KOILMvlWcptKsZYtsdEGCFnM69G27B6vDHaHVEuodoCJsGkCGvyEC8N5CplRzS3fV0ZUaXwYzbXgsNZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1fcb77127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.onesignal.com/sdks/OneSignalSDK.js | 104.17.111.223 | 200 OK | 9.2 kB |
URL GET HTTP/2cdn.onesignal.com/sdks/OneSignalSDK.js IP104.17.111.223:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGoogle Trust Services LLC Subjectonesignal.com Fingerprint28:4D:B2:BB:68:03:29:A7:D8:CB:4B:48:D4:14:BD:A4:4C:0F:D8:70 ValidityMon, 01 Apr 2024 23:12:28 GMT - Sun, 30 Jun 2024 23:12:27 GMT
File typeJavaScript source, ASCII text, with very long lines (9410), with no line terminators Hash5eb2adfca36be15c8d4a206576132abd f507beb2560693723f4b360af70bfe9bd8bed534 6ad1aa44625325d8e975bccee776e9a60ae134d2de1cb8d98852de9f3109aa4a
GET /sdks/OneSignalSDK.js HTTP/1.1
Host: cdn.onesignal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: application/javascript
etag: W/"a87c48d211877c49b878679b2e3cdab8"
access-control-allow-headers: OneSignal-Subscription-Id
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 734
expires: Sat, 27 Apr 2024 17:47:03 GMT
cache-control: public, max-age=259200
set-cookie: __cf_bm=3QOipxOj0z_JhgYJI3QjVY4CjA9VAocoEOCuzNoE7nk-1713980823-1.0.1.1-pwyZJEBn8MP1VDc49Ct0txEIrwVUUP475pTMwX_eVGAbvOcc9MXhHBisEwAhXWuIn4YkF19yuZcfJx5XlV5iXQ; path=/; expires=Wed, 24-Apr-24 18:17:03 GMT; domain=.onesignal.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 8797ea94ec62b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.smi.today/templates/new/fonts/IBMPlexSans-Regular.woff | 188.114.97.1 | 200 OK | 66 kB |
URL GET HTTP/3www.smi.today/templates/new/fonts/IBMPlexSans-Regular.woff IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeWeb Open Font Format, TrueType, length 66100, version 0.0 Hash7a37320158494837cdf0d4796a0a7c7a e6365657d30eaed50d81aa7827ca052d600072fd 304e5b1fcb70f7a03e9b6891548681bbe40e7af92236434611750778ec314c8e
GET /templates/new/fonts/IBMPlexSans-Regular.woff HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/font-woff
last-modified: Tue, 01 Feb 2022 10:50:14 GMT
etag: W/"10234-5d6f2aa7c1797"
access-control-allow-origin: *
vary: User-Agent
content-language: ru
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E05PAsEYe6%2BEmcIbtrbI8jGaLQnDRsJ80ZbiPgcyT%2BxWjhlg2Xtyvw8fG1xHLuFaREFZ606PkTegqJFG%2BNSsMrb2Vv3h%2FnwkU%2BDTpItSsdK80kSivZ18NFRieXOT8Inj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1cc6c7127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| static.addtoany.com/menu/svg/icons/whatsapp.js | 172.67.39.148 | 200 OK | 1.1 kB |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/whatsapp.js IP172.67.39.148:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (1122), with no line terminators Hashd822c46f36a55fdbfcc5029e62e19937 c575da68fa99eeb33863f281395755cbf20004d4 062ec1f7c3acea435122961b771eb2e4d136a3e870b17d3e811413f5aa78ed3e
GET /menu/svg/icons/whatsapp.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"83af4df8173e43227812296bb8542dcf"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n5%2BKpDwZM37P5yETzxUefOyCVhnxfd9EcsKULCQg9BAroO65cpZBs63m4EeEin5jlv%2B3Jdf%2BPyupwW64Z%2BAeAo8H%2Bmsd%2FVHNztL1pZcieCB3GXgV00vck1dbOIJHf3vy6htn1gCX"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 9753
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8797ea9a4a0756ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.smi.today/engine/editor/css/default.css | 188.114.97.1 | 200 OK | 7.7 kB |
URL GET HTTP/3www.smi.today/engine/editor/css/default.css IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeASCII text, with very long lines (7827), with no line terminators Hashc2344e1969bb033bfd1f4df6e6ca078a f43a85c5619631ff7acad4f7fa595bd8f33babd3 af24d12384cd8abac0b273529556da63b50a70d05bee561c8127127b41c473c1
GET /engine/editor/css/default.css HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: text/css
last-modified: Tue, 25 Aug 2020 13:45:27 GMT
vary: Accept-Encoding
etag: W/"5f4515f7-1e2e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CmpK542rBuYXgodv1rJ6nx5L490i9UcL7Mqq2IzXIBC1tbNRDoAjh%2BiKbCHM99oNyw9%2B6Pr3Y0cTU3A5naUTHbGFkG5A0lpNGF9WCXEIjuCt0mHsajtVdV22UXBiYWKi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1cc687127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| dadanews.ru/wp-content/plugins/perfecty-push-notifications/public/js/perfecty-push-sdk/dist/perfecty-push-sdk.min.js?ver=1.6.2 | 45.130.41.185 | 200 OK | 29 kB |
URL GET HTTP/2dadanews.ru/wp-content/plugins/perfecty-push-notifications/public/js/perfecty-push-sdk/dist/perfecty-push-sdk.min.js?ver=1.6.2 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typeJavaScript source, ASCII text, with very long lines (29207), with no line terminators Hash98d143aaf0470e189e87c795c3f34b15 aaeb45a3787823101d94dac5a529803d806774e7 0f0a8398add141b1695739d8c2a09f74e6a30416e214a5815c5ef9022580e61b
GET /wp-content/plugins/perfecty-push-notifications/public/js/perfecty-push-sdk/dist/perfecty-push-sdk.min.js?ver=1.6.2 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: application/x-javascript
last-modified: Tue, 08 Aug 2023 07:19:12 GMT
vary: Accept-Encoding
etag: W/"64d1ec70-7217"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v6.5.2/css/free-v4-font-face.min.css?token=5220e89fd7 | 104.21.26.223 | 200 OK | 1.8 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.5.2/css/free-v4-font-face.min.css?token=5220e89fd7 IP104.21.26.223:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (1803), with no line terminators Hash36f549800bc029aaadd0d7ac3d1d0f54 45bfcbb57c0155a2f22a47117deae6dc87706d4a 4048a832df1b9ac88058b1964ab9c45300daf6c10b0a02d697a29d729a81ea30
GET /releases/v6.5.2/css/free-v4-font-face.min.css?token=5220e89fd7 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dadanews.ru/
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 02 Apr 2024 15:26:25 GMT
etag: W/"9c9f596493867f0e7ef5f9fe99103fce"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MN7IjWD6Uez8gri0xPP5EiG6NfIISvttr7oQ_j6Auy3eWKBNdRDMfQ==
age: 751176
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UHwhWJaK%2FVwahKVb3j4U5VzzNdKzz1DoJ8%2B0NTY0LpJ%2BSDI3bKVSz5%2BcQ7VAVDNk3qim1epoPsAct6AFLUIpbLlNPbwymXXvrzIpw%2BwNJclbQ1VrerNSsqoyaQnPbEGW%2BiXTwcEG3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ea987f025687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.smi.today/engine/editor/scripts/webfont.js | 188.114.97.1 | 200 OK | 3.0 kB |
URL GET HTTP/3www.smi.today/engine/editor/scripts/webfont.js IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeJavaScript source, ASCII text, with very long lines (3217), with no line terminators Hashe0ac89d726e5a3e595730d3df07a67c2 7d3e81a3dc0e47fd6d0045cfd6765aa0c8658d9b 0031e1d2cf5885fdc6f5d1392dc406df2a61e1dba428f33ad4aa7e7f34b0500d
GET /engine/editor/scripts/webfont.js HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/javascript
last-modified: Tue, 25 Aug 2020 13:45:28 GMT
vary: Accept-Encoding
etag: W/"5f4515f8-bcb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ey80hKrJhtzv43Hdwr69pUNUrxy2dw6NSQ0KJiZj1YdCHlHHPTP7dRmt16le5ELdqG2dwjlKr%2B3gr53OJZIbP6L69ccDVSx%2BBoM89DEMmHwOrFGqsY6Z6iMApRkAes26"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1bc5a7127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| dadanews.ru/wp-includes/js/jquery/jquery.min.js?ver=3.7.0 | 45.130.41.185 | 200 OK | 88 kB |
URL GET HTTP/2dadanews.ru/wp-includes/js/jquery/jquery.min.js?ver=3.7.0 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hashff04dd1ef5c67998d8652330c0441689 5e6ff5bd5240181a8bdea983837f39ac231dac4d 5c93f77799d122fb5255ee24da285f9f228cc118cba11e6ceb2b6bda8cdf4164
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.0 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: application/x-javascript
last-modified: Wed, 09 Aug 2023 08:31:37 GMT
vary: Accept-Encoding
etag: W/"64d34ee9-155ba"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 16:27:38 GMT
expires: Wed, 23 Apr 2025 16:27:38 GMT
cache-control: public, max-age=31536000
age: 91167
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=PT+Sans&subset=latin,cyrillic | 142.250.74.106 | 200 OK | 1.3 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=PT+Sans&subset=latin,cyrillic IP142.250.74.106:443
Requested byhttps://www.smi.today/indexru2022.php CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (1327), with no line terminators Hash0f4a06a2e80a000f3b8b6ac0f2c6276d 4e9ac717b3bada9ccfa182fbb5a0166046c6d851 b964e6834a1b6f5b3d0b1b608f1d04e681e4e952ae8390354f0d02c6dbe091d3
GET /css?family=PT+Sans&subset=latin,cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 17:47:05 GMT
date: Wed, 24 Apr 2024 17:47:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16 | 45.130.41.185 | 200 OK | 1.6 kB |
URL GET HTTP/2dadanews.ru/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typeASCII text, with very long lines (1606), with no line terminators Hash882914044de1c4ae5ea33132d58753b3 09af0e5de5e347cb58b63cd48ddbcf497e893c10 e100ead8fb6bd34ef773e4906d8d6e4b03ae101bdf1045f5e565593b12e3d146
GET /wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: text/css
last-modified: Tue, 25 Jul 2023 13:58:50 GMT
vary: Accept-Encoding
etag: W/"64bfd51a-644"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/d72d18/918f90e69bba42d185dce41bb1cc8502/d0b62e3b6abd00a4.jpeg | 62.76.25.27 | 200 OK | 31 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/d72d18/918f90e69bba42d185dce41bb1cc8502/d0b62e3b6abd00a4.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hash1f362586b35318eec826dba06f8aaa8c 694b6de18a0606645adcff5bb22e33399fe3a98c 31f10e3c559c4de2a6c51514474e282a6166f155a7035c5725976888a59570f2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/d72d18/918f90e69bba42d185dce41bb1cc8502/d0b62e3b6abd00a4.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 30930
last-modified: Fri, 29 Jul 2022 10:30:03 GMT
etag: "62e3b6ab-78d2"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| all.smi.today/show_link/smi16news/ | 188.114.97.1 | 200 OK | 1 B |
URL GET HTTP/3all.smi.today/show_link/smi16news/ IP188.114.97.1:443
Requested byhttps://www.smi.today/indexru2022.php CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typevery short file (no magic) Hash7215ee9c7d9dc229d2921a40e899ec5f b858cb282617fb0956d960215c8e84d1ccf909c6 36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
GET /show_link/smi16news/ HTTP/1.1
Host: all.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/javascript
content-length: 1
accept-charset: utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l%2Frh3HLskuUf3sXzQ88mqRrYoSTkUKsy%2BCQoUqAy7j9%2BpzxUKTrib%2FA%2BKaDEYAsMkzd5m%2F4MG3o%2FPPZAaOkujFTCvErMxwzZl8g7FMIJGPR5qaUFs0yxGUuIlhE0zqMH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ea9c1da37127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jgctqt.com/v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=d0cdcde8-b72e-4f4c-b18d-89666eb0b72d&block_uuid=d0cdcde8-b72e-4f4c-b18d-89666eb0b72d&refresh_depth=1&safari_multiple_request=869 | 62.76.25.27 | 200 OK | 16 kB |
URL GET HTTP/2jgctqt.com/v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=d0cdcde8-b72e-4f4c-b18d-89666eb0b72d&block_uuid=d0cdcde8-b72e-4f4c-b18d-89666eb0b72d&refresh_depth=1&safari_multiple_request=869 IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=d0cdcde8-b72e-4f4c-b18d-89666eb0b72d&block_uuid=d0cdcde8-b72e-4f4c-b18d-89666eb0b72d&refresh_depth=1&safari_multiple_request=869 HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
access-control-allow-origin: *
access-control-allow-headers: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| avatars.mds.yandex.net/get-vh/6495623/2a00000186f434122841d2fca361e7a3d335/orig | 87.250.247.182 | 200 OK | 99 kB |
URL GET HTTP/2avatars.mds.yandex.net/get-vh/6495623/2a00000186f434122841d2fca361e7a3d335/orig IP87.250.247.182:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGlobalSign nv-sa Subject*.avatars.mds.yandex.net FingerprintBA:3A:F2:3D:C9:8F:4B:5C:E1:4D:48:8E:47:FD:3B:F8:C3:BE:0A:A2 ValidityWed, 20 Mar 2024 15:21:04 GMT - Sun, 20 Oct 2024 15:21:04 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc59.18.100", baseline, precision 8, 1914x1080, components 3 Hashcf9083109c245638814077f9f10df16e 62e7473f52f2f005b3419b9d96dd765824bc2dc4 222c1421d40ed7cca3b1c41531f8dc5347bcfbde423eda955c22ba119f59dd5b
GET /get-vh/6495623/2a00000186f434122841d2fca361e7a3d335/orig HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 17:47:07 GMT
content-type: image/jpeg
content-length: 99401
last-modified: Sat, 18 Mar 2023 10:11:38 GMT
cache-control: max-age=86400,immutable
x-request-id: 79bd1233fdcdd81c
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=VLA"}]}
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| news.mediametrics.ru/uploads/1713870908blob.jpg | 88.212.202.23 | 200 OK | 6.1 kB |
URL GET HTTP/1.1news.mediametrics.ru/uploads/1713870908blob.jpg IP88.212.202.23:443 ASN#39134 Edinaya Set Limited Liability Company
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subject*.mediametrics.ru Fingerprint9F:8D:CF:3E:88:F6:A9:B6:EB:85:53:4A:C1:42:DA:B6:CA:41:2A:8C ValidityFri, 08 Mar 2024 01:08:24 GMT - Thu, 06 Jun 2024 01:08:23 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x256, components 3 Hashda7b93225d3f5328ff5e54f43a2d08c7 a38a10218c7b4c4112762835cdaedc6c119b96f9 f538520eb8005e380f16a03b99905f4a57ddc77e9934dd81c350a432d549b2e1
GET /uploads/1713870908blob.jpg HTTP/1.1
Host: news.mediametrics.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 17:47:04 GMT
Content-Type: image/jpeg
Content-Length: 6132
Connection: keep-alive
Last-Modified: Tue, 23 Apr 2024 11:15:08 GMT
ETag: "6627983c-17f4"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| www.smi.today/templates/new/fonts/IBMPlexSerif-SemiBold.woff | 188.114.97.1 | 200 OK | 71 kB |
URL GET HTTP/3www.smi.today/templates/new/fonts/IBMPlexSerif-SemiBold.woff IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeWeb Open Font Format, TrueType, length 71212, version 0.0 Hash21833af4a72ed716162e6a91bf565128 26350653cf1abffdc1de5ba7f8602357206538f1 1f5d47ec494d1f619de56fa2bf11593aa1ccbb23512341c8bf342f2f403cf493
GET /templates/new/fonts/IBMPlexSerif-SemiBold.woff HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/font-woff
last-modified: Tue, 01 Feb 2022 10:50:14 GMT
etag: W/"1162c-5d6f2aa7feff6"
access-control-allow-origin: *
vary: User-Agent
content-language: ru
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wnW%2BA0CuAjsN3C9S8VVEDQhvzKGFJpQZ03dcI7T%2Be2aAAkAOrvlytb%2F7M5dda%2FST1CH1w8jR0kWju60z61zfb3LCCj4vfFGsGeEt%2FZGoDKXSgNf5LFKuUo%2FPTIc1jzDe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1dc8d7127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| dadanews.ru/wp-content/plugins/expert-review/assets/public/js/scripts.min.js?ver=1.8.0 | 45.130.41.185 | 200 OK | 12 kB |
URL GET HTTP/2dadanews.ru/wp-content/plugins/expert-review/assets/public/js/scripts.min.js?ver=1.8.0 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typeJavaScript source, ASCII text, with very long lines (12463), with no line terminators Hashb7b46f80548aafe1531f753fb8404b35 d321c86fbd02f7f43dccfabab8640d411b51cd7d 35bb84867821accef04687a4ebf2309214f822456767925836a1c8442118d4b5
GET /wp-content/plugins/expert-review/assets/public/js/scripts.min.js?ver=1.8.0 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: application/x-javascript
last-modified: Wed, 26 Jul 2023 16:18:43 GMT
vary: Accept-Encoding
etag: W/"64c14763-30af"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.smi.today/vidjetru2022.js | 188.114.97.1 | 200 OK | 326 B |
URL GET HTTP/2www.smi.today/vidjetru2022.js IP188.114.97.1:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeASCII text, with very long lines (345), with no line terminators Hash4a3446cd77221f0b367ffa0d954ec292 f7243c224c7c9301768ab8ea9f627493235f8e58 4cb5a025474007b35ddd6bd8dc6baa048a0f619fcb3bda9c26d080634b91a841
GET /vidjetru2022.js HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: application/javascript
last-modified: Fri, 22 Dec 2023 12:01:32 GMT
etag: W/"65857a9c-146"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZK55xOds1pJpjqE6dkejGTGuNoSawlF%2FF18RsUwzq%2Fu8Oa7SMQjw%2BL8Z6dVNOWexCGoHqHWpjyS6r6qdQ0cn2%2Fb9FJtBBPOAESfkeEk%2FqOxRQIluCSGK63HvPvOs3b21"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ea953c961c16-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/themes/dada-news-new/style.css?ver=1710176447 | 45.130.41.185 | 200 OK | 55 kB |
URL GET HTTP/2dadanews.ru/wp-content/themes/dada-news-new/style.css?ver=1710176447 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
Hash09aa88d9344c9875776002cb6eacdeaf b675a40e9df75182f47758e870769aadf80a762b c3417ad1fdddc396b6dae238b7642192aed0bf7b34b6ce85ee578910a321f479
GET /wp-content/themes/dada-news-new/style.css?ver=1710176447 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: text/css
last-modified: Mon, 11 Mar 2024 17:00:47 GMT
vary: Accept-Encoding
etag: W/"65ef38bf-d6f0"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| jgctqt.com/.cdn/3a8241/d72d18/2f9345b2ef3a45b4b808ec3aeb2e0e88/d0362e3b9f432fe2.jpeg | 62.76.25.27 | 200 OK | 16 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/d72d18/2f9345b2ef3a45b4b808ec3aeb2e0e88/d0362e3b9f432fe2.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3 Hashbe76d63c08819e2cba2add647588b156 8d40953153297eb436ee3da3d61a40d06671a066 e70ad96bcae21f79ad304016b3ee38bcc74fbca14b0800dbb819061a135a9a5f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/d72d18/2f9345b2ef3a45b4b808ec3aeb2e0e88/d0362e3b9f432fe2.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:16 GMT
content-type: image/jpeg
content-length: 16418
last-modified: Fri, 29 Jul 2022 10:44:04 GMT
etag: "62e3b9f4-4022"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.smi.today/templates/new/css/all.min-new6.css | 188.114.97.1 | 200 OK | 86 kB |
URL GET HTTP/3www.smi.today/templates/new/css/all.min-new6.css IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeASCII text, with very long lines (5257) Hashf14dbbf7671b79ba30063c30065874ff bb7f828f764ee32644a6dbf679cc63840a04c6a8 a36b33ec02d851d24c05489dbb2f2ec8e498922117a66b03bcb9df1bc820fdf1
GET /templates/new/css/all.min-new6.css HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: text/css
last-modified: Wed, 27 Sep 2023 15:35:30 GMT
vary: Accept-Encoding
etag: W/"65144bc2-14ece"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x0cKsDindnWpGNpo5p6Ci9zNevqAVNjnDu4zCZU2ZJolOlwQ5dfbI6TK%2BFSdXcXAPV1vMhBHfSDME9XZ1iBecksgwGnrtksgPZKuCLQW7mrf4SY5p9mpy2p1D7nKSF3R"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1cc697127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| dadanews.ru/wp-includes/css/dashicons.min.css?ver=6.3.4 | 45.130.41.185 | 200 OK | 59 kB |
URL GET HTTP/2dadanews.ru/wp-includes/css/dashicons.min.css?ver=6.3.4 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typeASCII text, with very long lines (58981) Hashd68d6bf519169d86e155bad0bed833f8 27ba9c67d0e775fc4e6dd62011daf4c3902698fc c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e
GET /wp-includes/css/dashicons.min.css?ver=6.3.4 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: text/css
last-modified: Tue, 25 Jul 2023 13:57:28 GMT
vary: Accept-Encoding
etag: W/"64bfd4c8-e688"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| yastatic.net/q/set/s/rsya-tag-users/bundle.js | 178.154.131.215 | 200 OK | 104 kB |
URL GET HTTP/2yastatic.net/q/set/s/rsya-tag-users/bundle.js IP178.154.131.215:443
Requested byhttps://yastatic.net/safeframe-bundles/0.83/1-1-0/render.html CertificateIssuerGlobalSign nv-sa Subject*.yastatic-net.ru Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07 ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size104 kB (104498 bytes) Hashfad15dadf56fc1d71be6b240cc30b915 ba1e0470b10f258c83b81650520198579a7e5dfe 6faf9b3930c127b8bf7d97f22a50832b6cf0ac678e16ba6fa412e0a5ec06dc2b
GET /q/set/s/rsya-tag-users/bundle.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yastatic.net/safeframe-bundles/0.83/1-1-0/render.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 24 Apr 2024 17:47:09 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=31556952
content-encoding: br
etag: W/"fad15dadf56fc1d71be6b240cc30b915"
expires: Sat, 27 Apr 2024 05:45:09 GMT
last-modified: Tue, 18 Jul 2023 19:47:42 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-nginx-request-id: f34c80009fe30111
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/themes/dada-news-new/style.css | 45.130.41.185 | 200 OK | 55 kB |
URL GET HTTP/2dadanews.ru/wp-content/themes/dada-news-new/style.css IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
Hash09aa88d9344c9875776002cb6eacdeaf b675a40e9df75182f47758e870769aadf80a762b c3417ad1fdddc396b6dae238b7642192aed0bf7b34b6ce85ee578910a321f479
GET /wp-content/themes/dada-news-new/style.css HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: text/css
last-modified: Mon, 11 Mar 2024 17:00:47 GMT
vary: Accept-Encoding
etag: W/"65ef38bf-d6f0"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| favicon.yandex.net/favicon/waterfront-property.abu-dhabi.realestate?size=32&stub=2 | 77.88.21.36 | 200 Ok | 892 B |
URL GET HTTP/1.1favicon.yandex.net/favicon/waterfront-property.abu-dhabi.realestate?size=32&stub=2 IP77.88.21.36:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGlobalSign nv-sa Subjectfavicon.yandex.net Fingerprint69:4F:28:6E:6D:D5:C4:0F:E7:EE:1A:32:9B:08:6D:59:90:38:64:E0 ValidityWed, 06 Mar 2024 21:01:39 GMT - Mon, 05 Aug 2024 20:59:59 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hashacb19740bfc8d59501df005c48f817c6 74f8b3c1d96f127224d81e71468499a6d47f3f49 97bf903d9dbf559ef5b9a4f9665b1c236db12754fb8b0c3cd8dffc31bf9c95fe
GET /favicon/waterfront-property.abu-dhabi.realestate?size=32&stub=2 HTTP/1.1
Host: favicon.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 Ok
Cache-Control: max-age=691200
Content-Type: image/png
Transfer-Encoding: chunked
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
access-control-allow-origin: *
|
|
| www.smi.today/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js | 188.114.97.1 | 200 OK | 1.2 kB |
URL GET HTTP/3www.smi.today/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeHTML document, ASCII text, with very long lines (1271), with no line terminators Hash40d981045a7516cdadd00e8dccc9c58d 8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3 71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/javascript
last-modified: Fri, 19 Apr 2024 20:54:07 GMT
etag: W/"6622d9ef-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9i0URFt8PaYQE7x7nLP%2FkpnLDp51nvwwDqvoiDMK69M0tys4wUlwlyut6UoT9W3GQjjV3nEIq2%2F7msyv%2F%2FMihI%2ByZsFv67wcxTR8bh5y1ZHcrX8VHDjuBgq%2BBu%2BTDGcV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797eaa1fcab7127-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Fri, 26 Apr 2024 17:47:05 GMT
cache-control: max-age=172800, public
content-encoding: gzip
|
|
| jgctqt.com/v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=81785078-ec8a-456b-a299-b6116139d95b&block_uuid=81785078-ec8a-456b-a299-b6116139d95b&refresh_depth=1&safari_multiple_request=595 | 62.76.25.27 | 200 OK | 24 kB |
URL GET HTTP/2jgctqt.com/v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=81785078-ec8a-456b-a299-b6116139d95b&block_uuid=81785078-ec8a-456b-a299-b6116139d95b&refresh_depth=1&safari_multiple_request=595 IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=81785078-ec8a-456b-a299-b6116139d95b&block_uuid=81785078-ec8a-456b-a299-b6116139d95b&refresh_depth=1&safari_multiple_request=595 HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
access-control-allow-origin: *
access-control-allow-headers: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| smi.today/templates/Blogss/style/bootstrap2.css | 188.114.97.1 | 200 OK | 124 kB |
URL GET HTTP/3smi.today/templates/Blogss/style/bootstrap2.css IP188.114.97.1:443
Requested byhttps://www.smi.today/indexru2022.php CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeassembler source, ASCII text, with very long lines (342) Size124 kB (124092 bytes) Hasha9937c3ab18bbef18a237a62bc311630 5d898175840d8aa6015f3971e48a63b842e48f15 8e59446866c7b0294565dfc3a09c6b270232354ed4a5ca6c70c4fc9e5dae3bb9
GET /templates/Blogss/style/bootstrap2.css HTTP/1.1
Host: smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: text/css
last-modified: Tue, 25 Aug 2020 13:47:22 GMT
vary: Accept-Encoding
etag: W/"5f45166a-1e4bc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=31Ea0%2BZThg4QXYNvYmqC1QcopYnDJAPRt4h9fHOxBnYfIyJIcq3iCYq2lJNkMLsIggdEQxQacdaYyDg38GU0KsYOAkK9Cf77qLw753ke9z6%2FbcGrhdVV5HXi%2Bk0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ea9bbd1e7127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| dadanews.ru/wp-content/themes/dada-news-newimg/favicon/apple-touch-icon-180x180.png | 45.130.41.185 | 404 Not Found | 150 kB |
URL GET HTTP/2dadanews.ru/wp-content/themes/dada-news-newimg/favicon/apple-touch-icon-180x180.png IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
Size150 kB (149460 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/themes/dada-news-newimg/favicon/apple-touch-icon-180x180.png HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Cookie: surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36; la_page_depth=%7B%22last%22%3A%22https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij%22%2C%22depth%22%3A1%7D; page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://dadanews.ru/wp-json/>; rel="https://api.w.org/"
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/vk.js | 172.67.39.148 | 200 OK | 1.0 kB |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/vk.js IP172.67.39.148:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (1026), with no line terminators Hashfe2b267b60c98f941ae5ba62046d4cef 0890d582bf05476baf5c88fca95f81c35ee2f04c d24e0e1a8482898b9f8b6a2f1fb46d8a2b9f476b5b8820203d796c78e6dd6eaf
GET /menu/svg/icons/vk.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"f0929767d4055d34e4c94493038aeee6"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0iF10ARhJrQPjv7ORyicKNtUGeuEr%2FrN7NsnyYAs704NruUgTKte004hQ2YMJxzU3hz5tVJU0SyXd3nxwE79BfP7OoRsO7LFpSdf5hkGIQpuQnBp3OdRmaASUXBgs7fvIoMjGOSDRcN0jquqa3yTFj3k"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 9753
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8797ea9a49ff56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.smi.today/engine/modules/infinitepost/lib/jquery.growl/jquery.growl.js | 188.114.97.1 | 200 OK | 10 kB |
URL GET HTTP/3www.smi.today/engine/modules/infinitepost/lib/jquery.growl/jquery.growl.js IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeJavaScript source, ASCII text, with very long lines (564) Hasha962591f26738ce0521ede1a2527cac3 77ae39399fd1e4136f0c6262c66522b35bb8c05a 75c2da5703637f8bcead88bd7a0c2131980d8e004b21263ad3f775f14056848a
GET /engine/modules/infinitepost/lib/jquery.growl/jquery.growl.js HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: application/javascript
last-modified: Fri, 29 Dec 2017 08:20:34 GMT
vary: Accept-Encoding
etag: W/"5a45fad2-2752"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kzpjBgfWWWxrvndWH59PNir89Ii9BI8XzU1z18gcATp82gVPYQoP5DvwufjV7gUd5Ve8xrnr5GtndoDJKM6q5Kd9gALk%2Fo2OAsg%2F9Gf%2FsFuLzIHkS6EljtpfvsjyO2qF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa20cc77127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.smi.today/engine/modules/infinitepost/site/site.js | 188.114.97.1 | 200 OK | 4.1 kB |
URL GET HTTP/3www.smi.today/engine/modules/infinitepost/site/site.js IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeJavaScript source, ASCII text, with very long lines (4759), with no line terminators Hashc02587658cb02a4c792a45eb81bb9ab9 a4227a091c846d9cf0b1b7e9f2e2bcde514d49b7 a0382c8644d9faf70465e0616844f46a5d579bdb47357afcff5d933131ebcbf4
GET /engine/modules/infinitepost/site/site.js HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: application/javascript
last-modified: Fri, 28 Oct 2022 04:55:25 GMT
vary: Accept-Encoding
etag: W/"635b60bd-1031"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uFkL0KeIAupXivMJNCY%2FWYUBbzRdwpDtGusm9TGN5FRRjMGNLBZhsKobhjHM%2Fn%2BtdZgH9w%2FOS61Yi2NfcjopHhKDooCmOtagS%2B2dV8v%2F7mIQRomaJDlJZJtb93QKNWQU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa21ce77127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.smi.today/templates/new/emoji/assets/libs.js?v=1.0.1 | 188.114.97.1 | 200 OK | 1.4 kB |
URL GET HTTP/3www.smi.today/templates/new/emoji/assets/libs.js?v=1.0.1 IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (1451), with no line terminators Hash8cf4e1fbe332ca534ccce2e053d24e4e 0207a9dd6adf058b94fa7b03294d3f19cd63263c a488c9fbf775f1ebc0d496b0b1ea7f9cbf7c44eb6eb706a43d02e81124e1d31e
GET /templates/new/emoji/assets/libs.js?v=1.0.1 HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/javascript
last-modified: Tue, 08 Feb 2022 15:34:39 GMT
vary: Accept-Encoding
etag: W/"62028d8f-57e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MpVpuSu5Wep8hpBiduCXdYbP%2BCpx0Rgodw9UFcEH%2BW9pYywfKEuhGsUQXuoIRuQSbtkEg7orZ2NPAAnK66WtlkZ5BljXxqY0gCTx8x79rXBo9YfrYISR5tyl1AP7gduC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1fcb97127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| static.addtoany.com/menu/page.js | 172.67.39.148 | 200 OK | 3.0 kB |
URL GET HTTP/2static.addtoany.com/menu/page.js IP172.67.39.148:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeJavaScript source, ASCII text, with very long lines (3132), with no line terminators Hash40486591ae8ea6d1423aeb13f1fd509b f847af56588642de93c6fe0d2ce182303f312455 16a6753a1de5c5602b0ca4afe3d17b95e2cb18d6b79bf7cdccedba3a733c1138
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=86400, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"e346c2841e4abbb66ee259e9540abb61"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i2AC7bE2UDFKM7qC5jDQxDxGBrcVDlnPDaJpMnzeeMpH%2BWmJ3duBGtVLq6wxk1QIfxp7e6MatgiRO5LypYWukV0nng7cUXW9aran8y9cwM8v0JAzIBzS1YQZ9pyCABT%2BXorAHEebwrAhbk61YRrQnUdl"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 27534
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8797ea950b490b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| jgctqt.com/v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=b47e64ca-bbf9-478a-ae04-dd6c451ac6b1&block_uuid=b47e64ca-bbf9-478a-ae04-dd6c451ac6b1&refresh_depth=1&safari_multiple_request=30 | 62.76.25.27 | 200 OK | 99 kB |
URL GET HTTP/2jgctqt.com/v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=b47e64ca-bbf9-478a-ae04-dd6c451ac6b1&block_uuid=b47e64ca-bbf9-478a-ae04-dd6c451ac6b1&refresh_depth=1&safari_multiple_request=30 IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=b47e64ca-bbf9-478a-ae04-dd6c451ac6b1&block_uuid=b47e64ca-bbf9-478a-ae04-dd6c451ac6b1&refresh_depth=1&safari_multiple_request=30 HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
access-control-allow-origin: *
access-control-allow-headers: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.smi.today/templates/new/fonts/Georgia-Regular.woff | 188.114.97.1 | 200 OK | 81 kB |
URL GET HTTP/3www.smi.today/templates/new/fonts/Georgia-Regular.woff IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeWeb Open Font Format, TrueType, length 80888, version 5.0 Hash457a113b1fcd5789bba7930ddc946f0a 85a22e6c3b0937a061e473ea2d6c35d578f1c078 2657c7bdeb82834001ab5a41d3f49fd00a42ec194d5dc444bd3eacd0f8d502ca
GET /templates/new/fonts/Georgia-Regular.woff HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/font-woff
last-modified: Tue, 01 Feb 2022 10:50:13 GMT
etag: W/"13bf8-5d6f2aa755138"
access-control-allow-origin: *
vary: User-Agent
content-language: ru
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fcZf3Grr916%2B53sGKtJHBr%2B4uSDIHmquEzjtYk7o75G5Et85jqHoPwo5%2BVoOEnD7BfvTsq6gYmFH%2Fwy4daf8J0sPwTI8QhmJ1%2BsfYXr4Fj%2B8GurniT%2BAgKEwyhVneFxa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1cc6a7127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| dadanews.ru/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.3.4 | 45.130.41.185 | 200 OK | 5.3 kB |
URL GET HTTP/2dadanews.ru/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.3.4 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typeASCII text, with very long lines (5338), with no line terminators Hash53b4f25b1cd48b11b011bae0ab1ac6d5 236f4c06deba046efb42a6596231598d47e5fe45 550a476aa3c336373b4348bbfa6e332e9899d82aa46b22874ef0b1154da4ed55
GET /wp-content/plugins/cookie-notice/css/front.min.css?ver=6.3.4 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: text/css
last-modified: Wed, 26 Jul 2023 12:13:55 GMT
vary: Accept-Encoding
etag: W/"64c10e03-14d6"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| jgctqt.com/v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=c50da4cb-24de-4e35-93d6-fc66f64e3e6c&block_uuid=c50da4cb-24de-4e35-93d6-fc66f64e3e6c&refresh_depth=1&safari_multiple_request=94 | 62.76.25.27 | 200 OK | 79 kB |
URL GET HTTP/2jgctqt.com/v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=c50da4cb-24de-4e35-93d6-fc66f64e3e6c&block_uuid=c50da4cb-24de-4e35-93d6-fc66f64e3e6c&refresh_depth=1&safari_multiple_request=94 IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /v4/sunshine?surfer_uuid=9ec732fa-10e0-4e43-bd44-dc617e4bcb36&referrer=https%3A%2F%2Fdadanews.ru%2Fsociety%2Fpensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij&page_load_uuid=a63133f9-3d67-4f38-9d1d-abac19a91614&page_depth=1&phj606whuaq=c50da4cb-24de-4e35-93d6-fc66f64e3e6c&block_uuid=c50da4cb-24de-4e35-93d6-fc66f64e3e6c&refresh_depth=1&safari_multiple_request=94 HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
access-control-allow-origin: *
access-control-allow-headers: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.smi.today/engine/modules/infinitepost/site/site.css | 188.114.97.1 | 200 OK | 1.1 kB |
URL GET HTTP/3www.smi.today/engine/modules/infinitepost/site/site.css IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeASCII text, with very long lines (1209), with no line terminators Hash7d86cfe181a7163f25780a2d7d9e2649 61eea91a035e1c2a9b1247304f8e1ddac1b3b42b a89429ed953599bc8dfbcf5b42fbd18d6c22885fdd94a6efe7af52f8749a79e5
GET /engine/modules/infinitepost/site/site.css HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: text/css
last-modified: Mon, 31 Oct 2022 12:55:05 GMT
vary: Accept-Encoding
etag: W/"635fc5a9-451"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yttAchWVh6VBNzfHGF3T3IlYtcylJ8xU1%2FdJcEJzweCkqtNLdRLNE2hpYsStND4ib3PiJivXSz%2Bq2tDJ806u3i3nPyDc7xXKZ8FK%2FihTNoO8LAHlyO0C3AbXA5jDPO%2BG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1fcbe7127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.smi.today/templates/new/fonts/IBMPlexSans-Medium.woff | 188.114.97.1 | 200 OK | 69 kB |
URL GET HTTP/3www.smi.today/templates/new/fonts/IBMPlexSans-Medium.woff IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeWeb Open Font Format, TrueType, length 69224, version 0.0 Hash4af9af1e344af587d757e54d5d2ea41f ae8a842515370382bbd8098503b7cc3a127836bf 5bbdd528eb4c44d032e874276c566c08975773fd50b0d14d79fc77ff85e21dbe
GET /templates/new/fonts/IBMPlexSans-Medium.woff HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/font-woff
last-modified: Tue, 01 Feb 2022 10:50:14 GMT
etag: W/"10e68-5d6f2aa7948d7"
access-control-allow-origin: *
vary: User-Agent
content-language: ru
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Lp37035dICXjC6GDlxOUIrUBB8ZKXgz3lqLBXJDoENB6SzFLUYNYEYcMjEDUTniS2378NvtEQJfqvgEKGDyWTJKrfBoN4WwNNn2qbE6jbSObiMwDNcjA76y9kMpmrK3Q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1cc6f7127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| ysa-static.passport.yandex.ru/static/1/d959d7e39d5067fad30d9c06204866e9/d.png?ex=yes | 0.0.0.0 | | 0 B |
URL GET ysa-static.passport.yandex.ru/static/1/d959d7e39d5067fad30d9c06204866e9/d.png?ex=yes IP0.0.0.0:0
Requested byhttps://yastatic.net/safeframe-bundles/0.83/1-1-0/render.html
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/1/d959d7e39d5067fad30d9c06204866e9/d.png?ex=yes HTTP/1.1
Host: ysa-static.passport.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij | 45.130.41.185 | 200 OK | 177 kB |
URL User Request GET HTTP/2dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij IP45.130.41.185:443
CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
Size177 kB (176647 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
x-pingback: https://dadanews.ru/xmlrpc.php
link: <https://dadanews.ru/wp-json/>; rel="https://api.w.org/", <https://dadanews.ru/wp-json/wp/v2/posts/14425>; rel="alternate"; type="application/json", <https://dadanews.ru/?p=14425>; rel=shortlink
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v6.5.2/css/free-v4-shims.min.css?token=5220e89fd7 | 104.21.26.223 | 200 OK | 28 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.5.2/css/free-v4-shims.min.css?token=5220e89fd7 IP104.21.26.223:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (27377) Hash940b066040a876fa1dc7b2ee2d222a58 64b2aea0b4d60d879d4ff7540192a906ffc0fd92 f4e953827930889e844103c3a6771bd2e9de17d091b36378c40362271858e075
GET /releases/v6.5.2/css/free-v4-shims.min.css?token=5220e89fd7 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dadanews.ru/
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 02 Apr 2024 15:26:25 GMT
etag: W/"940b066040a876fa1dc7b2ee2d222a58"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: piThySf0ucPy5HD3zkcxqGNvbyuvzQfr8hY5RhFlQOBYQNuUvgf8NA==
age: 751176
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7vRsP2gRHf57wPhcM5gEJxDRjZoWPxziKujcP8i8%2B9Hw155cQWXiItvDWkzMGpc6aZimJ4m%2BYUkrcX2jhcz1CpNZaW6wv4jruw3U220fEkb4IIqhkB3BQbYjiXF027xBd7hwtQsp3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ea987ef55687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/plugins/perfecty-push-notifications/public/css/perfecty-push-public.css?ver=1.6.2 | 45.130.41.185 | 200 OK | 2.8 kB |
URL GET HTTP/2dadanews.ru/wp-content/plugins/perfecty-push-notifications/public/css/perfecty-push-public.css?ver=1.6.2 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typeASCII text, with very long lines (2950), with no line terminators Hash87db54270c890023ddd743acfa34c052 a12f13383dad0877a3e10fc2849b2519db86d0d6 f17161cfdbb1c75658fdb059ee0be9737261dba6f107c2efe9df64ee53e5cc6f
GET /wp-content/plugins/perfecty-push-notifications/public/css/perfecty-push-public.css?ver=1.6.2 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: text/css
last-modified: Tue, 08 Aug 2023 07:19:12 GMT
vary: Accept-Encoding
etag: W/"64d1ec70-afc"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 01:54:31 GMT
expires: Wed, 23 Apr 2025 01:54:31 GMT
cache-control: public, max-age=31536000
age: 143554
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.smi.today/engine/modules/infinitepost/lib/jquery.growl/jquery.growl.init.js | 188.114.97.1 | 200 OK | 354 B |
URL GET HTTP/3www.smi.today/engine/modules/infinitepost/lib/jquery.growl/jquery.growl.init.js IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeJavaScript source, ASCII text, with very long lines (421), with no line terminators Hash19f1db8702c88edbeca92912bcf8b7de 6ca9083e4518e2a2299dadcc8cf7ca66a2474d23 2e895b1dea8537940fc81b21c480d197f74c732c3d1a6b3802e035240e249197
GET /engine/modules/infinitepost/lib/jquery.growl/jquery.growl.init.js HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:06 GMT
content-type: application/javascript
last-modified: Tue, 20 Nov 2018 09:07:10 GMT
etag: W/"5bf3cebe-162"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4dA3B%2B%2FHaKZqbBFUGQQBDJ8augIp5jr8uxCjDh17j18XYOLnjAUiVTMqaOXMN%2BMU3z8Sj8MSzsv%2F16TJ5RdD1yisuH3tsOe1ANoDXelW9Nc8zUeolOZMWI3P4mRKtAkT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa21ce47127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| yandex.ru/ads/meta/1763084?target-ref=https%3A%2F%2Fwww.smi.today%2Findexru2022.php&pcode-test-ids=1010398%2C0%2C77%3B968601%2C0%2C77%3B1010513%2C0%2C40%3B1012360%2C0%2C33%3B1013946%2C0%2C80%3B1002305%2C0%2C55%3B1011143%2C0%2C3%3B993367%2C0%2C53%3B1014348%2C0%2C52%3B1010886%2C0%2C89%3B1003193%2C0%2C39%3B1003205%2C0%2C25%3B997800%2C0%2C65%3B1015042%2C0%2C55%3B1003208%2C0%2C27%3B1003210%2C0%2C9%3B1003213%2C0%2C77%3B1009700%2C0%2C76%3B1010989%2C0%2C73%3B1013358%2C0%2C2%3B1014686%2C0%2C41%3B912284%2C0%2C34&pcode-flags-map=eJy1Wdty2zgS%2FRc9R1neL%2FMGkaCEEm9LgrI1UykULdETb9nxlK1kZpPKv%2B8BSFEinVCJZzbllEWIOGg0uk%2Bfhr%2FMNqQU5Sq7EiQUMVnQWERZIVgqFiRNaTH75bcvs0%2F1%2Fcdm9suMFxWdvZkdmucD2%2BPZcUzTcmdf372Zhawki5iKIKtSLgoasoIGHDgkzycxXEOzLENhSFOqkoqkijkrsjgGWsrlB1qIK8KDFQ0FZwkVWRSVlE%2Fjmobmuj1uQXmxFVkqUsqvsmItaFFk07tzbcdyfYUgF80qLvKCKrtOFm5YSDPRfT%2BA0zX8G%2BD5pu9qF%2FAWVRRhtzTJ%2BVbELGFj0J9G3OSEhf%2B8hVGFz69FTXEQ%2F7Sl38H8W%2Bfzbcz%2Fnwdee%2FoywpcFWYiYpku%2BGkxCfnnn0zzN01yrn0ZTlbe8IMEa3iorErd8IGmAXnNapBgJy%2Bks9nTD0V4BqgZKElERFSShl9doM7ooJDWUeAMcgwW5ZK%2BcSAhglwqVVCHLRFBQwtmGltPQlmbodm8%2BkEBDQcwouCymS9jK0igTVyumKC7d0IJ3oSVXv4Bta553RkRpiCMmCxkFJJRIrMRAVcSSnq7oIrtkq6tZ%2FunYKRdBVfIsEZuE5MeAhF1xNfSnM4pKz7FN58S8NABEwEl7JAmJ42kzXM%2ByrJez1UxxxfhKcJz0z2BEDDPzahGzQJASBF%2F%2BXBD6puUZTg9XwtNw978riviQQC2%2FIOviDOFSlSxd4qWgKr4VfYsMO1CRSQCD6QFtH5MsRDSdL%2Bub5lnsHythmCUEZRQ%2F0i2LinMc72J7rGmlzAu2YDHj2%2Bld%2Ba5rtvGjiCIgRVh2wccSskQ1zIdufvzjML99fHqoD%2Bc4YCXDNE6BWHJlJgKwZFk64hld9w1vOFs3ba1zbrt2KviSdIbkcVV21sA7bJn2bpCOx9CaZ8PDa%2F76Y4Rv%2Bbb9Er9I8r8Feea5VtGIKmURg5JgKeIqIgGdArF9z%2BhkhJQmi7Uo2a%2B0DczeTsT%2BIptCcVzf0k4oMSUqpJLJOY5nObqaIytNCSajKVgeIfwDm3c8x9LNI1mm9EoqoKpIBYmwa8ltYGa%2BKrJquZpWQbp%2BpBukNmgP%2BVRRJGUuFrGk95gNCfC32UN9d%2F%2F26SNQ%2Flt%2F2Dd%2F4fO%2F7h7q35vnwdDv9YMa2X9uPrSv15%2FuDo%2Ftx4e3Zw%2F7D3fdqETuETDwVH%2B%2Bf%2Fz8vvv681P7%2B%2BNT%2FfZD8%2Bfzixf%2BUz8%2B3Kmp7wZbtHHI%2FelElEreIAFHXpRTTnZN29RaBgVb4VgigjhD%2BUAapFWyGMnn8WxbN7v6nRO5sBTLMp1BEzQAH2FAcUQ8GaGAcbU2cUoUVBImIs6WS5UpLIzINw5obzW662g387pu7LnV3Ojz%2BkZ3583eb2x7b%2B50%2BwZL3O5rv2mam3mzM3Zzq%2Fa1uef5t%2FO9adc3O2%2Fn6k6N1%2FTbxvT029u5f6uZc2vv7eb%2BznXmvq3Xt4a%2B9629NvS3Z9t%2Bu%2FEtqifqc9A6fRFnCCgEOAotp98wvJizuWH5OjTNXMfS58%2FG6NkcPVvqmcwNG0zoGt18Mrc9mWdzXe8HHASEKxd4N5BNvqO3%2FBeV8HAG7cKupw7Gs02zS8FUaRCBkJJKSGY%2B4fKcZS1AeRMJTatpKMs3Wo%2FJVF7mXIAP2Ij3x5PQAvnW0eKOM3oShYeFKlAyWidhfF3z%2FCNMQa9Qf2Qfts0np%2FmGoWmnatM3lKIsZUmfJC%2FfMK2OuPu%2BUhEW%2FBUx6bxxxXoBYJue2Wf0EeSojVQByYIqkfoOKpJwukRzuIAO20znrG9INTdVDiKEBuRdeME8FNhhrVM1RJwxvcRHchQqUE5a4WjmJL6p2V4bq%2BGvR6g1jSm%2F5DbdM1q7jlwGd8FBlCQKhMRKiqlgPjOpdyG9DuIqhEYqoLSmLUR5Ogluib2Czopl0qfr7rSVig95lV7YrGt0waLEs%2BQPeGzFJpMDsxBjbVQjBkCcrXqBQCtkeJWCFAXZTkJYumubY%2BI9ivGynA5x27G7CC0l1W%2Bxe3rdicbJia7mOn6%2FasEXIiDBCudhdB3L5GzfPrcZDCauGckSdhTKk%2FVOznbMQV5mOU2lDVDVOWhMKd14fQHE6hQVXl%2BKFcTQdNKBrz27k0IELBJmqSwWBCHN8StcUiUW2XSdhBwE7fsTKJdne4OIDUm5Eom8j3pBhhGJy6GKhyDT2i3k2RU0N9nI9gMHh0BXfUXLBFUqm5MB1r65rT%2FeH8bW2F1tkdbEGbCkJItieBSddhWHykRZLfiKwkR1pzCp9ABqmM7pQuFsHtiD5cceZkMKRkZh9mK%2FU2CtskLhSWmM7gqJx3ESbePYrvHDdpKwDNdjzpa9im854%2FZFDh0DX%2FUDfXOInIsvHL6uW2a3omwhsyQL0Ae2bepg6qfm6XC3q%2B%2FHHaLThnx%2FbZHJK4wyj8kWuQ8LChmGBZX3AQO83eF%2BZIqFNrffiLr8kKeMZld2hhfmal5XFwqaZCDxYCWvOnh7d4IuGMTVOeVCQpq6b54DIfA4OHe5ivH%2FNXhGp2E3VboEr%2BRomqdZxPU0beiGhIaMqKsHWeT7O%2Bgsjbcvr2leHrGtdffQpy0hv3Egr9qNdw6lCrASF9ALCJv2EkgSwCugde3HHC%2BJBAv%2BMOwpvhGWUIc8Q00juSz201GloSZp5zq3FzVK1UckDbZdD3%2BJYv1OaZJymwZtq3k%2B5cvsuTnIRuDse1UCQ4LKo5jzzfC77rZtPN59MRqVV6jfA%2FjuEiyFr9oBEkbZ9ehr1MSCrUn7h5EXKwZZtmZ4Sf5xQ9WD7i244P3j8%2BFZ7rXtd8umftq97xtoNuynN3f75nH27uuI8sxOGOWSrL5Bkxaq0phdHMUQX%2F8Hkpmbxw%3D%3D&pcode-icookie=vtxiJzkibUWKXYCQzYwO2buF7tWGcJzATipAODJx0xURnQRiYV6MhP%2F%2F1gomvHAmCpntCRbQ6Y19iBp40hbMUGfLZi4%3D&imp-id=8&comboblock-unencoded-vast=1&test-tag=509073883661314&ad-session-id=8296411713980826834&target-id=19073066&tga-with-creatives=1&top-ancestor=https%3A%2F%2Fdadanews.ru&top-ancestor-undetermined=1&pcode-version=1014686&pcodever=1014686&layout-config=%7B%22win_width%22%3A346%2C%22win_height%22%3A536%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Atrue%2C%22w%22%3A306%2C%22h%22%3A536%2C%22width%22%3A306%2C%22height%22%3A536%2C%22visible%22%3A0%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A20%2C%22top%22%3A1874%2C%22ad_no%22%3A0%2C%22safeArea%22%3A%7B%22top%22%3A0%2C%22bottom%22%3A0%2C%22left%22%3A0%2C%22right%22%3A0%7D%2C%22req_no%22%3A0%7D&grab-orig-len=3928&grab=eyJncmFiX3ZlcnNpb24iOjJ9ChKlJJEkN-aBan5R0iZuQjZRHufXL2T90umXjSy0tZ2T3m3Xd4tDRkyDd8iPlViW6eRLlh0TXiJk6U3dJXOKzy_Y36BesC0AAJl55bVrF5EsyaT7vpNmDDAzgMGDKyVZqFBSUJIlqZqCMlSFyoTCA5zneyLPd7G753cPsge8B6t7XA_TlbiEnnDpBAMD1eO6RF7g8Vy4C1fsCVzYHm83g-5KhtYl_gpv8cXzgiVEtHhxuyfqCzNwCU4G0pJDX7JL7UFcci7B0hJ7ASVdG5pSkYRpl6eKBIlRnUQaqUoWqmK5sWtieZjIQyRGDwpwG7y2Nl1zWkPpjNY1F1Q8IS5iaAOke_wFOmhJZnoOTg3Fhou4eyDMOLtK0D1YHqYnXLwEhh1ZvJgEHtp3dm-xbFP4H3ObG8y5dXbxNtca3cq_h6WcDhb7mWdpZxvb6Qx1aID0YYl3KTg-L_FH4AOcGDBGOnsNECTwSGKpOsrK4HRLn5eMnr0NT0xvXeGFySyR9FNT8WFxB6xDvb0upXDB7gCLGe8d-SeeIza91ooPImgu4Y7uL4BJm3iHhU2f14RTFJeQvoXKxvPWfNO0gMDYxcCDuMAGUxCedt8TFuxb0hfQ4EHPyxGCtJiIKxjUKfydtaYwX4Q56Z0EcbJI38IT-2k4rBcN2-PXIs94oLUWXGwXX4cUEFiL_cDYtEwa6Zq_aGM1vK5RplGExJhKQ5VGmRhkKXlibO6QSCko1Sr4ZX3SlKrkidRohxPGMoNWGWsQdITKBPSuTUKSJJF3hUqtVg62qX1FGZPHNgITv0YKxEAFuh4RGMAAJpAp6ZbSvh-Rag1t1wNs88hXmHdP3PJDenkhTRInxRX_CsyGxMdzxszpVdtjZCCRpjJZIu22zTTbNURJKtWQlS2DItYaWVEmjYY6kZOWTSMFS6exLJEbZLGMVGZQquQInG1mwJhne32yFcDWbpRoxupFNclqaUq-Bi5WKplv2psYwPvmiTWDYQJ6uImH7EHzoHcPpBtw8cMENy8HQ8JYz6BkjL4pcVBa1Nw7MQb1MVLH2ZRYC-x7Q7-DiO-EsNdEc10cUyKAn8itNnp8bTxWYkoWykmPeQbN0dzrgmYkb1XHD_ydUWy6Aahp_1HARyF5qGvX4XAUpekGjGOxJnOSa7oD8mKE_5kFt7Mozxb0cSkXdwzRbmA2o1NNFZFZoseurE0jalZl7RrO2EtTksAvFoR90fTXno2ulZhEFcrGBWU0ctPiG6OB6QYgN5XcUQl-Mwb-UyYwcWJYiwHRiNq83P6Z1QRy00_jxtvBerDoqn50wHY3ALFMAl4wgj7G9Q6ccVdT4kDkVOaNCU8K9kR4TiqzkybaWRqT2HT0GFjbtjJBGBo0sRJAZ_sAfU8Sryi9qqRHCpU-jNUpvBHtECXKhFyaKiCAsQPOZgic4QJnuMAZLgAEw2VlskbEY7V08oQkshTmDoMjTRUMrXHJJB1tqkFQpCeWxmGed-OtFxCdUcY-d30uWmghW5xLsBQ6igUwsmwYwe-nna2whVVVp2HSmbHgraqUkSyVc1odflhHS0VNS0k39DaawXBpqPW01HodrY66LDMK-DJzDXT2JMQqxbnADu7NBvC_2f1EJaO7Fu4iMSc-xtsnGPPZ1x9Wah9yLhF919EsNyG-jQxuxacMry2chbO7VvVF--G_HXREZEkHmkoLL-1gaJfngp9I9WM5i74Zuymq__OnejklU3zeFE_0OVoXwQyFPmrz17n4Z_UOBO0i-1Tob_ziJHTqmmtqp4gE13bCwWEy-thF3fZw5xyX_Byf69nBHfOobrd94uM5PpE1eBto7dnGeR12drwXAq0Y5jY_hvNywy6KXbR9BbPSTu5eA79p78vIUzQX3wlRF3tKOvDRLtOj1vpPSfoDTuQELtzBbUoqcpzexdFvXS1P2Jfbf0Z5z5GoX2RDm1AfmXRyindEBfMGu3hFjYqzJOJlPozxBAsuir_43M3jajVb2f0m1t9T0Kv030r--Wxi97oWYb1VWzyWJY4_rpSH3xScU6klPAdp8JpJKp7cnLConzh_SjE1GnCYrXqfpRYD9YE6znihOiuT5-tXwhK_bf4ry19PRpbdouxxPGSqBDOqH_tYOzUdsYXgDs5vF900t3XqN4eSIv3Xs85nfc6YGVxoiz_---M3_11D23z5uLS6Yx5p3NdZshmak9CfqJjpq_RRazTofBHnkSTMDHOLI9b_T2-7__IPzuqgY_y3MT6hWL8xu77PH6_82LL_V-wXlYUFGfHL-k1qAq5g8Gb-Cj0D1h_PHafKjOvdVcwb3pbP7Jmy0N_YKAp2_YoDxS9eOnvwFL_IBOYn-KYA_RsTTLh2LESdGqyGgOB-NeZG2JwZ84m43p6qOMhfZ0hui0UzwdGnAbNXzfyYdVBsuNrR28ghqGYseIfcFisT3vh3Rv9ujF1tKaTqvuMawYME1A0L4pptzqA3hJeJxi7iVgfifZxe7GwtQwmDS-zNnKFdP7yhR4C-V2ZNeG3PzK9u72vl2yjFtWvMN8SKrbnGf7jWnrg2G0spcy76mFSqSS7eZIePjLF4qZIjjId8YnvCtXEYxgrrHzw_IKwukjBRzL-uTNglBGe6RjkoGZlJcMdaG8cIFKnUaZsDP1WrjUyJRmSpNDFoQ3lneoVkM1sVNLWkWcR6w_nsCGaxpVUzZhl9OAkeqEQuIcPvVaoiJzOrVklrfXG_Z9CsqMJWJU3aoLZRNNGYnQujqig4LbaWpXEUpTLpihsrRqZ6KWk-kPXs8FUJSaJmMrycdGMZbB1SpMjMIc5b1DtKEkOqjGILRhTmRaZciK7i-C3qsjQ15VOIJhM028SCMgsLZqeeuC28Vmqndj7VXJy8nbCLk-sVIFbOAS4bb43aOOUNccxydv8OXU8R_XKt4YpfBLe5_q81M2ewyG3zpTupCc8UbWusW5a-PfwfcwiqbHVsXBtyZFS0YDOvRWPZaHOWjUmAA5TJhtJE9PmKXWIDG_uYC_jt7B8tXnWAv4aEq0eJZMoRL-f6BX8Sr6M5t8A48TqkeloaCJN46OdCL7MP1-gIQf0i4RXjNclFrp9Q_qXTCQRGvMBoGywPxCZHcTgGq9yCJw4OFhU1mAwcHCw9rQ7CJDqXDQt_1STwLdEWJGgMflBkhqkSNA8kD3L94yWFyZ0Udw8IwP7C1LeUYQBsYZBDmMJgFea0CpH19pM0zofD3Jcv1erknqBAbycyq6mdjBfmu-035kX4a9sHVqt2nY6KhoFq19GYpRggBoYwjkMUghC7rZXP7C2yi0JNZAIgggab9R7qVsLfoR1zq-tcji4P-7Lcc142lltkjeJBJIt69lX8Kw1nZNGf95X_WSVEOOQOIfzvv_1nu4UZ9gO9VzaktslvQXSNf4lWPwyHkC0Oyq_NK7ZA0gRBbjuxitUsF33rp1d14qCOUaVL9jIHMzdHlPCCHR7UP7YjZPYRw8bbgvKTYlyQ5LbTvj43MIexwaiOFhyy0pnKjKufO3ogmOUM_hHKL9gKatRpB06BGpQfWpNPvCFI1VnDSBMaFKlKaaRI1QqV3IGyk4kjKYpi9NB0PaiNOZE40I5SVtx924kpLstQrpsFTb5oDE6hhfnP9oJElV4XHsh2WafegGgdKIgRZ-viv2ZoUyZBOzvySaE2AZ1tdO6FFL8MnkNtacswCp-SwWCk9oeLjZppbLxvjxIlQkODfJAvWnHnJ2PJkTUtPRBNHnziKVgpsPWyw5CXOrEvF4hCGTT-R9uh1k8wWZHEupqYOxZOKSjzxTmjrnxLRdjXoZSXcFYtlG4Ua1Sp0q7IOZxa6kBMYwaUUWrn1E_CKMOqa2IlqULeyaUxCZMHXiOtdz4JCYmeA5J0HS1yZIbVuDQ2lIriphsQxw1oGAeEMwD7&uniformat=true&callback=Ya%5B2447067635975%5D | 5.255.255.70 | 200 OK | 121 kB |
URL GET HTTP/2yandex.ru/ads/meta/1763084?target-ref=https%3A%2F%2Fwww.smi.today%2Findexru2022.php&pcode-test-ids=1010398%2C0%2C77%3B968601%2C0%2C77%3B1010513%2C0%2C40%3B1012360%2C0%2C33%3B1013946%2C0%2C80%3B1002305%2C0%2C55%3B1011143%2C0%2C3%3B993367%2C0%2C53%3B1014348%2C0%2C52%3B1010886%2C0%2C89%3B1003193%2C0%2C39%3B1003205%2C0%2C25%3B997800%2C0%2C65%3B1015042%2C0%2C55%3B1003208%2C0%2C27%3B1003210%2C0%2C9%3B1003213%2C0%2C77%3B1009700%2C0%2C76%3B1010989%2C0%2C73%3B1013358%2C0%2C2%3B1014686%2C0%2C41%3B912284%2C0%2C34&pcode-flags-map=eJy1Wdty2zgS%2FRc9R1neL%2FMGkaCEEm9LgrI1UykULdETb9nxlK1kZpPKv%2B8BSFEinVCJZzbllEWIOGg0uk%2Bfhr%2FMNqQU5Sq7EiQUMVnQWERZIVgqFiRNaTH75bcvs0%2F1%2Fcdm9suMFxWdvZkdmucD2%2BPZcUzTcmdf372Zhawki5iKIKtSLgoasoIGHDgkzycxXEOzLENhSFOqkoqkijkrsjgGWsrlB1qIK8KDFQ0FZwkVWRSVlE%2Fjmobmuj1uQXmxFVkqUsqvsmItaFFk07tzbcdyfYUgF80qLvKCKrtOFm5YSDPRfT%2BA0zX8G%2BD5pu9qF%2FAWVRRhtzTJ%2BVbELGFj0J9G3OSEhf%2B8hVGFz69FTXEQ%2F7Sl38H8W%2Bfzbcz%2Fnwdee%2FoywpcFWYiYpku%2BGkxCfnnn0zzN01yrn0ZTlbe8IMEa3iorErd8IGmAXnNapBgJy%2Bks9nTD0V4BqgZKElERFSShl9doM7ooJDWUeAMcgwW5ZK%2BcSAhglwqVVCHLRFBQwtmGltPQlmbodm8%2BkEBDQcwouCymS9jK0igTVyumKC7d0IJ3oSVXv4Bta553RkRpiCMmCxkFJJRIrMRAVcSSnq7oIrtkq6tZ%2FunYKRdBVfIsEZuE5MeAhF1xNfSnM4pKz7FN58S8NABEwEl7JAmJ42kzXM%2ByrJez1UxxxfhKcJz0z2BEDDPzahGzQJASBF%2F%2BXBD6puUZTg9XwtNw978riviQQC2%2FIOviDOFSlSxd4qWgKr4VfYsMO1CRSQCD6QFtH5MsRDSdL%2Bub5lnsHythmCUEZRQ%2F0i2LinMc72J7rGmlzAu2YDHj2%2Bld%2Ba5rtvGjiCIgRVh2wccSskQ1zIdufvzjML99fHqoD%2Bc4YCXDNE6BWHJlJgKwZFk64hld9w1vOFs3ba1zbrt2KviSdIbkcVV21sA7bJn2bpCOx9CaZ8PDa%2F76Y4Rv%2Bbb9Er9I8r8Feea5VtGIKmURg5JgKeIqIgGdArF9z%2BhkhJQmi7Uo2a%2B0DczeTsT%2BIptCcVzf0k4oMSUqpJLJOY5nObqaIytNCSajKVgeIfwDm3c8x9LNI1mm9EoqoKpIBYmwa8ltYGa%2BKrJquZpWQbp%2BpBukNmgP%2BVRRJGUuFrGk95gNCfC32UN9d%2F%2F26SNQ%2Flt%2F2Dd%2F4fO%2F7h7q35vnwdDv9YMa2X9uPrSv15%2FuDo%2Ftx4e3Zw%2F7D3fdqETuETDwVH%2B%2Bf%2Fz8vvv681P7%2B%2BNT%2FfZD8%2Bfzixf%2BUz8%2B3Kmp7wZbtHHI%2FelElEreIAFHXpRTTnZN29RaBgVb4VgigjhD%2BUAapFWyGMnn8WxbN7v6nRO5sBTLMp1BEzQAH2FAcUQ8GaGAcbU2cUoUVBImIs6WS5UpLIzINw5obzW662g387pu7LnV3Ojz%2BkZ3583eb2x7b%2B50%2BwZL3O5rv2mam3mzM3Zzq%2Fa1uef5t%2FO9adc3O2%2Fn6k6N1%2FTbxvT029u5f6uZc2vv7eb%2BznXmvq3Xt4a%2B9629NvS3Z9t%2Bu%2FEtqifqc9A6fRFnCCgEOAotp98wvJizuWH5OjTNXMfS58%2FG6NkcPVvqmcwNG0zoGt18Mrc9mWdzXe8HHASEKxd4N5BNvqO3%2FBeV8HAG7cKupw7Gs02zS8FUaRCBkJJKSGY%2B4fKcZS1AeRMJTatpKMs3Wo%2FJVF7mXIAP2Ij3x5PQAvnW0eKOM3oShYeFKlAyWidhfF3z%2FCNMQa9Qf2Qfts0np%2FmGoWmnatM3lKIsZUmfJC%2FfMK2OuPu%2BUhEW%2FBUx6bxxxXoBYJue2Wf0EeSojVQByYIqkfoOKpJwukRzuIAO20znrG9INTdVDiKEBuRdeME8FNhhrVM1RJwxvcRHchQqUE5a4WjmJL6p2V4bq%2BGvR6g1jSm%2F5DbdM1q7jlwGd8FBlCQKhMRKiqlgPjOpdyG9DuIqhEYqoLSmLUR5Ogluib2Czopl0qfr7rSVig95lV7YrGt0waLEs%2BQPeGzFJpMDsxBjbVQjBkCcrXqBQCtkeJWCFAXZTkJYumubY%2BI9ivGynA5x27G7CC0l1W%2Bxe3rdicbJia7mOn6%2FasEXIiDBCudhdB3L5GzfPrcZDCauGckSdhTKk%2FVOznbMQV5mOU2lDVDVOWhMKd14fQHE6hQVXl%2BKFcTQdNKBrz27k0IELBJmqSwWBCHN8StcUiUW2XSdhBwE7fsTKJdne4OIDUm5Eom8j3pBhhGJy6GKhyDT2i3k2RU0N9nI9gMHh0BXfUXLBFUqm5MB1r65rT%2FeH8bW2F1tkdbEGbCkJItieBSddhWHykRZLfiKwkR1pzCp9ABqmM7pQuFsHtiD5cceZkMKRkZh9mK%2FU2CtskLhSWmM7gqJx3ESbePYrvHDdpKwDNdjzpa9im854%2FZFDh0DX%2FUDfXOInIsvHL6uW2a3omwhsyQL0Ae2bepg6qfm6XC3q%2B%2FHHaLThnx%2FbZHJK4wyj8kWuQ8LChmGBZX3AQO83eF%2BZIqFNrffiLr8kKeMZld2hhfmal5XFwqaZCDxYCWvOnh7d4IuGMTVOeVCQpq6b54DIfA4OHe5ivH%2FNXhGp2E3VboEr%2BRomqdZxPU0beiGhIaMqKsHWeT7O%2Bgsjbcvr2leHrGtdffQpy0hv3Egr9qNdw6lCrASF9ALCJv2EkgSwCugde3HHC%2BJBAv%2BMOwpvhGWUIc8Q00juSz201GloSZp5zq3FzVK1UckDbZdD3%2BJYv1OaZJymwZtq3k%2B5cvsuTnIRuDse1UCQ4LKo5jzzfC77rZtPN59MRqVV6jfA%2FjuEiyFr9oBEkbZ9ehr1MSCrUn7h5EXKwZZtmZ4Sf5xQ9WD7i244P3j8%2BFZ7rXtd8umftq97xtoNuynN3f75nH27uuI8sxOGOWSrL5Bkxaq0phdHMUQX%2F8Hkpmbxw%3D%3D&pcode-icookie=vtxiJzkibUWKXYCQzYwO2buF7tWGcJzATipAODJx0xURnQRiYV6MhP%2F%2F1gomvHAmCpntCRbQ6Y19iBp40hbMUGfLZi4%3D&imp-id=8&comboblock-unencoded-vast=1&test-tag=509073883661314&ad-session-id=8296411713980826834&target-id=19073066&tga-with-creatives=1&top-ancestor=https%3A%2F%2Fdadanews.ru&top-ancestor-undetermined=1&pcode-version=1014686&pcodever=1014686&layout-config=%7B%22win_width%22%3A346%2C%22win_height%22%3A536%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Atrue%2C%22w%22%3A306%2C%22h%22%3A536%2C%22width%22%3A306%2C%22height%22%3A536%2C%22visible%22%3A0%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A20%2C%22top%22%3A1874%2C%22ad_no%22%3A0%2C%22safeArea%22%3A%7B%22top%22%3A0%2C%22bottom%22%3A0%2C%22left%22%3A0%2C%22right%22%3A0%7D%2C%22req_no%22%3A0%7D&grab-orig-len=3928&grab=eyJncmFiX3ZlcnNpb24iOjJ9ChKlJJEkN-aBan5R0iZuQjZRHufXL2T90umXjSy0tZ2T3m3Xd4tDRkyDd8iPlViW6eRLlh0TXiJk6U3dJXOKzy_Y36BesC0AAJl55bVrF5EsyaT7vpNmDDAzgMGDKyVZqFBSUJIlqZqCMlSFyoTCA5zneyLPd7G753cPsge8B6t7XA_TlbiEnnDpBAMD1eO6RF7g8Vy4C1fsCVzYHm83g-5KhtYl_gpv8cXzgiVEtHhxuyfqCzNwCU4G0pJDX7JL7UFcci7B0hJ7ASVdG5pSkYRpl6eKBIlRnUQaqUoWqmK5sWtieZjIQyRGDwpwG7y2Nl1zWkPpjNY1F1Q8IS5iaAOke_wFOmhJZnoOTg3Fhou4eyDMOLtK0D1YHqYnXLwEhh1ZvJgEHtp3dm-xbFP4H3ObG8y5dXbxNtca3cq_h6WcDhb7mWdpZxvb6Qx1aID0YYl3KTg-L_FH4AOcGDBGOnsNECTwSGKpOsrK4HRLn5eMnr0NT0xvXeGFySyR9FNT8WFxB6xDvb0upXDB7gCLGe8d-SeeIza91ooPImgu4Y7uL4BJm3iHhU2f14RTFJeQvoXKxvPWfNO0gMDYxcCDuMAGUxCedt8TFuxb0hfQ4EHPyxGCtJiIKxjUKfydtaYwX4Q56Z0EcbJI38IT-2k4rBcN2-PXIs94oLUWXGwXX4cUEFiL_cDYtEwa6Zq_aGM1vK5RplGExJhKQ5VGmRhkKXlibO6QSCko1Sr4ZX3SlKrkidRohxPGMoNWGWsQdITKBPSuTUKSJJF3hUqtVg62qX1FGZPHNgITv0YKxEAFuh4RGMAAJpAp6ZbSvh-Rag1t1wNs88hXmHdP3PJDenkhTRInxRX_CsyGxMdzxszpVdtjZCCRpjJZIu22zTTbNURJKtWQlS2DItYaWVEmjYY6kZOWTSMFS6exLJEbZLGMVGZQquQInG1mwJhne32yFcDWbpRoxupFNclqaUq-Bi5WKplv2psYwPvmiTWDYQJ6uImH7EHzoHcPpBtw8cMENy8HQ8JYz6BkjL4pcVBa1Nw7MQb1MVLH2ZRYC-x7Q7-DiO-EsNdEc10cUyKAn8itNnp8bTxWYkoWykmPeQbN0dzrgmYkb1XHD_ydUWy6Aahp_1HARyF5qGvX4XAUpekGjGOxJnOSa7oD8mKE_5kFt7Mozxb0cSkXdwzRbmA2o1NNFZFZoseurE0jalZl7RrO2EtTksAvFoR90fTXno2ulZhEFcrGBWU0ctPiG6OB6QYgN5XcUQl-Mwb-UyYwcWJYiwHRiNq83P6Z1QRy00_jxtvBerDoqn50wHY3ALFMAl4wgj7G9Q6ccVdT4kDkVOaNCU8K9kR4TiqzkybaWRqT2HT0GFjbtjJBGBo0sRJAZ_sAfU8Sryi9qqRHCpU-jNUpvBHtECXKhFyaKiCAsQPOZgic4QJnuMAZLgAEw2VlskbEY7V08oQkshTmDoMjTRUMrXHJJB1tqkFQpCeWxmGed-OtFxCdUcY-d30uWmghW5xLsBQ6igUwsmwYwe-nna2whVVVp2HSmbHgraqUkSyVc1odflhHS0VNS0k39DaawXBpqPW01HodrY66LDMK-DJzDXT2JMQqxbnADu7NBvC_2f1EJaO7Fu4iMSc-xtsnGPPZ1x9Wah9yLhF919EsNyG-jQxuxacMry2chbO7VvVF--G_HXREZEkHmkoLL-1gaJfngp9I9WM5i74Zuymq__OnejklU3zeFE_0OVoXwQyFPmrz17n4Z_UOBO0i-1Tob_ziJHTqmmtqp4gE13bCwWEy-thF3fZw5xyX_Byf69nBHfOobrd94uM5PpE1eBto7dnGeR12drwXAq0Y5jY_hvNywy6KXbR9BbPSTu5eA79p78vIUzQX3wlRF3tKOvDRLtOj1vpPSfoDTuQELtzBbUoqcpzexdFvXS1P2Jfbf0Z5z5GoX2RDm1AfmXRyindEBfMGu3hFjYqzJOJlPozxBAsuir_43M3jajVb2f0m1t9T0Kv030r--Wxi97oWYb1VWzyWJY4_rpSH3xScU6klPAdp8JpJKp7cnLConzh_SjE1GnCYrXqfpRYD9YE6znihOiuT5-tXwhK_bf4ry19PRpbdouxxPGSqBDOqH_tYOzUdsYXgDs5vF900t3XqN4eSIv3Xs85nfc6YGVxoiz_---M3_11D23z5uLS6Yx5p3NdZshmak9CfqJjpq_RRazTofBHnkSTMDHOLI9b_T2-7__IPzuqgY_y3MT6hWL8xu77PH6_82LL_V-wXlYUFGfHL-k1qAq5g8Gb-Cj0D1h_PHafKjOvdVcwb3pbP7Jmy0N_YKAp2_YoDxS9eOnvwFL_IBOYn-KYA_RsTTLh2LESdGqyGgOB-NeZG2JwZ84m43p6qOMhfZ0hui0UzwdGnAbNXzfyYdVBsuNrR28ghqGYseIfcFisT3vh3Rv9ujF1tKaTqvuMawYME1A0L4pptzqA3hJeJxi7iVgfifZxe7GwtQwmDS-zNnKFdP7yhR4C-V2ZNeG3PzK9u72vl2yjFtWvMN8SKrbnGf7jWnrg2G0spcy76mFSqSS7eZIePjLF4qZIjjId8YnvCtXEYxgrrHzw_IKwukjBRzL-uTNglBGe6RjkoGZlJcMdaG8cIFKnUaZsDP1WrjUyJRmSpNDFoQ3lneoVkM1sVNLWkWcR6w_nsCGaxpVUzZhl9OAkeqEQuIcPvVaoiJzOrVklrfXG_Z9CsqMJWJU3aoLZRNNGYnQujqig4LbaWpXEUpTLpihsrRqZ6KWk-kPXs8FUJSaJmMrycdGMZbB1SpMjMIc5b1DtKEkOqjGILRhTmRaZciK7i-C3qsjQ15VOIJhM028SCMgsLZqeeuC28Vmqndj7VXJy8nbCLk-sVIFbOAS4bb43aOOUNccxydv8OXU8R_XKt4YpfBLe5_q81M2ewyG3zpTupCc8UbWusW5a-PfwfcwiqbHVsXBtyZFS0YDOvRWPZaHOWjUmAA5TJhtJE9PmKXWIDG_uYC_jt7B8tXnWAv4aEq0eJZMoRL-f6BX8Sr6M5t8A48TqkeloaCJN46OdCL7MP1-gIQf0i4RXjNclFrp9Q_qXTCQRGvMBoGywPxCZHcTgGq9yCJw4OFhU1mAwcHCw9rQ7CJDqXDQt_1STwLdEWJGgMflBkhqkSNA8kD3L94yWFyZ0Udw8IwP7C1LeUYQBsYZBDmMJgFea0CpH19pM0zofD3Jcv1erknqBAbycyq6mdjBfmu-035kX4a9sHVqt2nY6KhoFq19GYpRggBoYwjkMUghC7rZXP7C2yi0JNZAIgggab9R7qVsLfoR1zq-tcji4P-7Lcc142lltkjeJBJIt69lX8Kw1nZNGf95X_WSVEOOQOIfzvv_1nu4UZ9gO9VzaktslvQXSNf4lWPwyHkC0Oyq_NK7ZA0gRBbjuxitUsF33rp1d14qCOUaVL9jIHMzdHlPCCHR7UP7YjZPYRw8bbgvKTYlyQ5LbTvj43MIexwaiOFhyy0pnKjKufO3ogmOUM_hHKL9gKatRpB06BGpQfWpNPvCFI1VnDSBMaFKlKaaRI1QqV3IGyk4kjKYpi9NB0PaiNOZE40I5SVtx924kpLstQrpsFTb5oDE6hhfnP9oJElV4XHsh2WafegGgdKIgRZ-viv2ZoUyZBOzvySaE2AZ1tdO6FFL8MnkNtacswCp-SwWCk9oeLjZppbLxvjxIlQkODfJAvWnHnJ2PJkTUtPRBNHnziKVgpsPWyw5CXOrEvF4hCGTT-R9uh1k8wWZHEupqYOxZOKSjzxTmjrnxLRdjXoZSXcFYtlG4Ua1Sp0q7IOZxa6kBMYwaUUWrn1E_CKMOqa2IlqULeyaUxCZMHXiOtdz4JCYmeA5J0HS1yZIbVuDQ2lIriphsQxw1oGAeEMwD7&uniformat=true&callback=Ya%5B2447067635975%5D IP5.255.255.70:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGlobalSign nv-sa Subject*.xn--d1acpjx3f.xn--p1ai Fingerprint17:FB:0C:B6:3F:7F:A5:4C:41:AD:D0:5C:6B:9A:96:47:FE:AF:C8:5C ValidityMon, 04 Mar 2024 10:29:07 GMT - Sun, 01 Sep 2024 20:59:59 GMT
Size121 kB (120982 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/meta/1763084?target-ref=https%3A%2F%2Fwww.smi.today%2Findexru2022.php&pcode-test-ids=1010398%2C0%2C77%3B968601%2C0%2C77%3B1010513%2C0%2C40%3B1012360%2C0%2C33%3B1013946%2C0%2C80%3B1002305%2C0%2C55%3B1011143%2C0%2C3%3B993367%2C0%2C53%3B1014348%2C0%2C52%3B1010886%2C0%2C89%3B1003193%2C0%2C39%3B1003205%2C0%2C25%3B997800%2C0%2C65%3B1015042%2C0%2C55%3B1003208%2C0%2C27%3B1003210%2C0%2C9%3B1003213%2C0%2C77%3B1009700%2C0%2C76%3B1010989%2C0%2C73%3B1013358%2C0%2C2%3B1014686%2C0%2C41%3B912284%2C0%2C34&pcode-flags-map=eJy1Wdty2zgS%2FRc9R1neL%2FMGkaCEEm9LgrI1UykULdETb9nxlK1kZpPKv%2B8BSFEinVCJZzbllEWIOGg0uk%2Bfhr%2FMNqQU5Sq7EiQUMVnQWERZIVgqFiRNaTH75bcvs0%2F1%2Fcdm9suMFxWdvZkdmucD2%2BPZcUzTcmdf372Zhawki5iKIKtSLgoasoIGHDgkzycxXEOzLENhSFOqkoqkijkrsjgGWsrlB1qIK8KDFQ0FZwkVWRSVlE%2Fjmobmuj1uQXmxFVkqUsqvsmItaFFk07tzbcdyfYUgF80qLvKCKrtOFm5YSDPRfT%2BA0zX8G%2BD5pu9qF%2FAWVRRhtzTJ%2BVbELGFj0J9G3OSEhf%2B8hVGFz69FTXEQ%2F7Sl38H8W%2Bfzbcz%2Fnwdee%2FoywpcFWYiYpku%2BGkxCfnnn0zzN01yrn0ZTlbe8IMEa3iorErd8IGmAXnNapBgJy%2Bks9nTD0V4BqgZKElERFSShl9doM7ooJDWUeAMcgwW5ZK%2BcSAhglwqVVCHLRFBQwtmGltPQlmbodm8%2BkEBDQcwouCymS9jK0igTVyumKC7d0IJ3oSVXv4Bta553RkRpiCMmCxkFJJRIrMRAVcSSnq7oIrtkq6tZ%2FunYKRdBVfIsEZuE5MeAhF1xNfSnM4pKz7FN58S8NABEwEl7JAmJ42kzXM%2ByrJez1UxxxfhKcJz0z2BEDDPzahGzQJASBF%2F%2BXBD6puUZTg9XwtNw978riviQQC2%2FIOviDOFSlSxd4qWgKr4VfYsMO1CRSQCD6QFtH5MsRDSdL%2Bub5lnsHythmCUEZRQ%2F0i2LinMc72J7rGmlzAu2YDHj2%2Bld%2Ba5rtvGjiCIgRVh2wccSskQ1zIdufvzjML99fHqoD%2Bc4YCXDNE6BWHJlJgKwZFk64hld9w1vOFs3ba1zbrt2KviSdIbkcVV21sA7bJn2bpCOx9CaZ8PDa%2F76Y4Rv%2Bbb9Er9I8r8Feea5VtGIKmURg5JgKeIqIgGdArF9z%2BhkhJQmi7Uo2a%2B0DczeTsT%2BIptCcVzf0k4oMSUqpJLJOY5nObqaIytNCSajKVgeIfwDm3c8x9LNI1mm9EoqoKpIBYmwa8ltYGa%2BKrJquZpWQbp%2BpBukNmgP%2BVRRJGUuFrGk95gNCfC32UN9d%2F%2F26SNQ%2Flt%2F2Dd%2F4fO%2F7h7q35vnwdDv9YMa2X9uPrSv15%2FuDo%2Ftx4e3Zw%2F7D3fdqETuETDwVH%2B%2Bf%2Fz8vvv681P7%2B%2BNT%2FfZD8%2Bfzixf%2BUz8%2B3Kmp7wZbtHHI%2FelElEreIAFHXpRTTnZN29RaBgVb4VgigjhD%2BUAapFWyGMnn8WxbN7v6nRO5sBTLMp1BEzQAH2FAcUQ8GaGAcbU2cUoUVBImIs6WS5UpLIzINw5obzW662g387pu7LnV3Ojz%2BkZ3583eb2x7b%2B50%2BwZL3O5rv2mam3mzM3Zzq%2Fa1uef5t%2FO9adc3O2%2Fn6k6N1%2FTbxvT029u5f6uZc2vv7eb%2BznXmvq3Xt4a%2B9629NvS3Z9t%2Bu%2FEtqifqc9A6fRFnCCgEOAotp98wvJizuWH5OjTNXMfS58%2FG6NkcPVvqmcwNG0zoGt18Mrc9mWdzXe8HHASEKxd4N5BNvqO3%2FBeV8HAG7cKupw7Gs02zS8FUaRCBkJJKSGY%2B4fKcZS1AeRMJTatpKMs3Wo%2FJVF7mXIAP2Ij3x5PQAvnW0eKOM3oShYeFKlAyWidhfF3z%2FCNMQa9Qf2Qfts0np%2FmGoWmnatM3lKIsZUmfJC%2FfMK2OuPu%2BUhEW%2FBUx6bxxxXoBYJue2Wf0EeSojVQByYIqkfoOKpJwukRzuIAO20znrG9INTdVDiKEBuRdeME8FNhhrVM1RJwxvcRHchQqUE5a4WjmJL6p2V4bq%2BGvR6g1jSm%2F5DbdM1q7jlwGd8FBlCQKhMRKiqlgPjOpdyG9DuIqhEYqoLSmLUR5Ogluib2Czopl0qfr7rSVig95lV7YrGt0waLEs%2BQPeGzFJpMDsxBjbVQjBkCcrXqBQCtkeJWCFAXZTkJYumubY%2BI9ivGynA5x27G7CC0l1W%2Bxe3rdicbJia7mOn6%2FasEXIiDBCudhdB3L5GzfPrcZDCauGckSdhTKk%2FVOznbMQV5mOU2lDVDVOWhMKd14fQHE6hQVXl%2BKFcTQdNKBrz27k0IELBJmqSwWBCHN8StcUiUW2XSdhBwE7fsTKJdne4OIDUm5Eom8j3pBhhGJy6GKhyDT2i3k2RU0N9nI9gMHh0BXfUXLBFUqm5MB1r65rT%2FeH8bW2F1tkdbEGbCkJItieBSddhWHykRZLfiKwkR1pzCp9ABqmM7pQuFsHtiD5cceZkMKRkZh9mK%2FU2CtskLhSWmM7gqJx3ESbePYrvHDdpKwDNdjzpa9im854%2FZFDh0DX%2FUDfXOInIsvHL6uW2a3omwhsyQL0Ae2bepg6qfm6XC3q%2B%2FHHaLThnx%2FbZHJK4wyj8kWuQ8LChmGBZX3AQO83eF%2BZIqFNrffiLr8kKeMZld2hhfmal5XFwqaZCDxYCWvOnh7d4IuGMTVOeVCQpq6b54DIfA4OHe5ivH%2FNXhGp2E3VboEr%2BRomqdZxPU0beiGhIaMqKsHWeT7O%2Bgsjbcvr2leHrGtdffQpy0hv3Egr9qNdw6lCrASF9ALCJv2EkgSwCugde3HHC%2BJBAv%2BMOwpvhGWUIc8Q00juSz201GloSZp5zq3FzVK1UckDbZdD3%2BJYv1OaZJymwZtq3k%2B5cvsuTnIRuDse1UCQ4LKo5jzzfC77rZtPN59MRqVV6jfA%2FjuEiyFr9oBEkbZ9ehr1MSCrUn7h5EXKwZZtmZ4Sf5xQ9WD7i244P3j8%2BFZ7rXtd8umftq97xtoNuynN3f75nH27uuI8sxOGOWSrL5Bkxaq0phdHMUQX%2F8Hkpmbxw%3D%3D&pcode-icookie=vtxiJzkibUWKXYCQzYwO2buF7tWGcJzATipAODJx0xURnQRiYV6MhP%2F%2F1gomvHAmCpntCRbQ6Y19iBp40hbMUGfLZi4%3D&imp-id=8&comboblock-unencoded-vast=1&test-tag=509073883661314&ad-session-id=8296411713980826834&target-id=19073066&tga-with-creatives=1&top-ancestor=https%3A%2F%2Fdadanews.ru&top-ancestor-undetermined=1&pcode-version=1014686&pcodever=1014686&layout-config=%7B%22win_width%22%3A346%2C%22win_height%22%3A536%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Atrue%2C%22w%22%3A306%2C%22h%22%3A536%2C%22width%22%3A306%2C%22height%22%3A536%2C%22visible%22%3A0%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A20%2C%22top%22%3A1874%2C%22ad_no%22%3A0%2C%22safeArea%22%3A%7B%22top%22%3A0%2C%22bottom%22%3A0%2C%22left%22%3A0%2C%22right%22%3A0%7D%2C%22req_no%22%3A0%7D&grab-orig-len=3928&grab=eyJncmFiX3ZlcnNpb24iOjJ9ChKlJJEkN-aBan5R0iZuQjZRHufXL2T90umXjSy0tZ2T3m3Xd4tDRkyDd8iPlViW6eRLlh0TXiJk6U3dJXOKzy_Y36BesC0AAJl55bVrF5EsyaT7vpNmDDAzgMGDKyVZqFBSUJIlqZqCMlSFyoTCA5zneyLPd7G753cPsge8B6t7XA_TlbiEnnDpBAMD1eO6RF7g8Vy4C1fsCVzYHm83g-5KhtYl_gpv8cXzgiVEtHhxuyfqCzNwCU4G0pJDX7JL7UFcci7B0hJ7ASVdG5pSkYRpl6eKBIlRnUQaqUoWqmK5sWtieZjIQyRGDwpwG7y2Nl1zWkPpjNY1F1Q8IS5iaAOke_wFOmhJZnoOTg3Fhou4eyDMOLtK0D1YHqYnXLwEhh1ZvJgEHtp3dm-xbFP4H3ObG8y5dXbxNtca3cq_h6WcDhb7mWdpZxvb6Qx1aID0YYl3KTg-L_FH4AOcGDBGOnsNECTwSGKpOsrK4HRLn5eMnr0NT0xvXeGFySyR9FNT8WFxB6xDvb0upXDB7gCLGe8d-SeeIza91ooPImgu4Y7uL4BJm3iHhU2f14RTFJeQvoXKxvPWfNO0gMDYxcCDuMAGUxCedt8TFuxb0hfQ4EHPyxGCtJiIKxjUKfydtaYwX4Q56Z0EcbJI38IT-2k4rBcN2-PXIs94oLUWXGwXX4cUEFiL_cDYtEwa6Zq_aGM1vK5RplGExJhKQ5VGmRhkKXlibO6QSCko1Sr4ZX3SlKrkidRohxPGMoNWGWsQdITKBPSuTUKSJJF3hUqtVg62qX1FGZPHNgITv0YKxEAFuh4RGMAAJpAp6ZbSvh-Rag1t1wNs88hXmHdP3PJDenkhTRInxRX_CsyGxMdzxszpVdtjZCCRpjJZIu22zTTbNURJKtWQlS2DItYaWVEmjYY6kZOWTSMFS6exLJEbZLGMVGZQquQInG1mwJhne32yFcDWbpRoxupFNclqaUq-Bi5WKplv2psYwPvmiTWDYQJ6uImH7EHzoHcPpBtw8cMENy8HQ8JYz6BkjL4pcVBa1Nw7MQb1MVLH2ZRYC-x7Q7-DiO-EsNdEc10cUyKAn8itNnp8bTxWYkoWykmPeQbN0dzrgmYkb1XHD_ydUWy6Aahp_1HARyF5qGvX4XAUpekGjGOxJnOSa7oD8mKE_5kFt7Mozxb0cSkXdwzRbmA2o1NNFZFZoseurE0jalZl7RrO2EtTksAvFoR90fTXno2ulZhEFcrGBWU0ctPiG6OB6QYgN5XcUQl-Mwb-UyYwcWJYiwHRiNq83P6Z1QRy00_jxtvBerDoqn50wHY3ALFMAl4wgj7G9Q6ccVdT4kDkVOaNCU8K9kR4TiqzkybaWRqT2HT0GFjbtjJBGBo0sRJAZ_sAfU8Sryi9qqRHCpU-jNUpvBHtECXKhFyaKiCAsQPOZgic4QJnuMAZLgAEw2VlskbEY7V08oQkshTmDoMjTRUMrXHJJB1tqkFQpCeWxmGed-OtFxCdUcY-d30uWmghW5xLsBQ6igUwsmwYwe-nna2whVVVp2HSmbHgraqUkSyVc1odflhHS0VNS0k39DaawXBpqPW01HodrY66LDMK-DJzDXT2JMQqxbnADu7NBvC_2f1EJaO7Fu4iMSc-xtsnGPPZ1x9Wah9yLhF919EsNyG-jQxuxacMry2chbO7VvVF--G_HXREZEkHmkoLL-1gaJfngp9I9WM5i74Zuymq__OnejklU3zeFE_0OVoXwQyFPmrz17n4Z_UOBO0i-1Tob_ziJHTqmmtqp4gE13bCwWEy-thF3fZw5xyX_Byf69nBHfOobrd94uM5PpE1eBto7dnGeR12drwXAq0Y5jY_hvNywy6KXbR9BbPSTu5eA79p78vIUzQX3wlRF3tKOvDRLtOj1vpPSfoDTuQELtzBbUoqcpzexdFvXS1P2Jfbf0Z5z5GoX2RDm1AfmXRyindEBfMGu3hFjYqzJOJlPozxBAsuir_43M3jajVb2f0m1t9T0Kv030r--Wxi97oWYb1VWzyWJY4_rpSH3xScU6klPAdp8JpJKp7cnLConzh_SjE1GnCYrXqfpRYD9YE6znihOiuT5-tXwhK_bf4ry19PRpbdouxxPGSqBDOqH_tYOzUdsYXgDs5vF900t3XqN4eSIv3Xs85nfc6YGVxoiz_---M3_11D23z5uLS6Yx5p3NdZshmak9CfqJjpq_RRazTofBHnkSTMDHOLI9b_T2-7__IPzuqgY_y3MT6hWL8xu77PH6_82LL_V-wXlYUFGfHL-k1qAq5g8Gb-Cj0D1h_PHafKjOvdVcwb3pbP7Jmy0N_YKAp2_YoDxS9eOnvwFL_IBOYn-KYA_RsTTLh2LESdGqyGgOB-NeZG2JwZ84m43p6qOMhfZ0hui0UzwdGnAbNXzfyYdVBsuNrR28ghqGYseIfcFisT3vh3Rv9ujF1tKaTqvuMawYME1A0L4pptzqA3hJeJxi7iVgfifZxe7GwtQwmDS-zNnKFdP7yhR4C-V2ZNeG3PzK9u72vl2yjFtWvMN8SKrbnGf7jWnrg2G0spcy76mFSqSS7eZIePjLF4qZIjjId8YnvCtXEYxgrrHzw_IKwukjBRzL-uTNglBGe6RjkoGZlJcMdaG8cIFKnUaZsDP1WrjUyJRmSpNDFoQ3lneoVkM1sVNLWkWcR6w_nsCGaxpVUzZhl9OAkeqEQuIcPvVaoiJzOrVklrfXG_Z9CsqMJWJU3aoLZRNNGYnQujqig4LbaWpXEUpTLpihsrRqZ6KWk-kPXs8FUJSaJmMrycdGMZbB1SpMjMIc5b1DtKEkOqjGILRhTmRaZciK7i-C3qsjQ15VOIJhM028SCMgsLZqeeuC28Vmqndj7VXJy8nbCLk-sVIFbOAS4bb43aOOUNccxydv8OXU8R_XKt4YpfBLe5_q81M2ewyG3zpTupCc8UbWusW5a-PfwfcwiqbHVsXBtyZFS0YDOvRWPZaHOWjUmAA5TJhtJE9PmKXWIDG_uYC_jt7B8tXnWAv4aEq0eJZMoRL-f6BX8Sr6M5t8A48TqkeloaCJN46OdCL7MP1-gIQf0i4RXjNclFrp9Q_qXTCQRGvMBoGywPxCZHcTgGq9yCJw4OFhU1mAwcHCw9rQ7CJDqXDQt_1STwLdEWJGgMflBkhqkSNA8kD3L94yWFyZ0Udw8IwP7C1LeUYQBsYZBDmMJgFea0CpH19pM0zofD3Jcv1erknqBAbycyq6mdjBfmu-035kX4a9sHVqt2nY6KhoFq19GYpRggBoYwjkMUghC7rZXP7C2yi0JNZAIgggab9R7qVsLfoR1zq-tcji4P-7Lcc142lltkjeJBJIt69lX8Kw1nZNGf95X_WSVEOOQOIfzvv_1nu4UZ9gO9VzaktslvQXSNf4lWPwyHkC0Oyq_NK7ZA0gRBbjuxitUsF33rp1d14qCOUaVL9jIHMzdHlPCCHR7UP7YjZPYRw8bbgvKTYlyQ5LbTvj43MIexwaiOFhyy0pnKjKufO3ogmOUM_hHKL9gKatRpB06BGpQfWpNPvCFI1VnDSBMaFKlKaaRI1QqV3IGyk4kjKYpi9NB0PaiNOZE40I5SVtx924kpLstQrpsFTb5oDE6hhfnP9oJElV4XHsh2WafegGgdKIgRZ-viv2ZoUyZBOzvySaE2AZ1tdO6FFL8MnkNtacswCp-SwWCk9oeLjZppbLxvjxIlQkODfJAvWnHnJ2PJkTUtPRBNHnziKVgpsPWyw5CXOrEvF4hCGTT-R9uh1k8wWZHEupqYOxZOKSjzxTmjrnxLRdjXoZSXcFYtlG4Ua1Sp0q7IOZxa6kBMYwaUUWrn1E_CKMOqa2IlqULeyaUxCZMHXiOtdz4JCYmeA5J0HS1yZIbVuDQ2lIriphsQxw1oGAeEMwD7&uniformat=true&callback=Ya%5B2447067635975%5D HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.smi.today
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
uniformat: true
uniformat-product-type: Direct
content-encoding: gzip
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
access-control-allow-origin: https://www.smi.today
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
x-xss-protection: 1; mode=block
x-yandex-req-id: 1713980827110650-1633991033265519218-balancer-l7leveler-kubr-yp-vla-11-BAL
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
last-modified: Wed, 24 Apr 2024 17:47:07 GMT
date: Wed, 24 Apr 2024 17:47:07 GMT
set-cookie: yabs-vdrf=A0; domain=yandex.ru; path=/; expires=Wed, 01-May-2024 17:47:07 GMT; SameSite=None; Secure
i=hpocPdmDx4fBvC+SA0kbomXukfUKe3jDzQo5ylDgZlOkx/Yxr7phyGp3LnKpAR0shRWmL8zBJ2keASAqHNCS37VxUgE=; Expires=Fri, 24-Apr-2026 17:47:07 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=5655192181713980827; Expires=Fri, 24-Apr-2026 17:47:07 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yashr=2935855191713980827; Path=/; Domain=.yandex.ru; Expires=Thu, 24 Apr 2025 17:47:07 GMT; SameSite=None; Secure; HttpOnly
receive-cookie-deprecation=1; Path=/; Domain=.yandex.ru; Expires=Thu, 24 Apr 2025 17:47:07 GMT; SameSite=None; Secure; HttpOnly; Partitioned
content-security-policy: upgrade-insecure-requests; default-src 'none'; base-uri 'none'; script-src 'report-sample' 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs&project=yabs&yandex_login=&platform=
content-type: application/json
pragma: no-cache
access-control-allow-credentials: true
timing-allow-origin: *
x-content-type-options: nosniff
ssr: true
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
expires: Wed, 24 Apr 2024 17:47:07 GMT
X-Firefox-Spdy: h2
|
|
| dadanews.ru/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.9 | 45.130.41.185 | 200 OK | 8.7 kB |
URL GET HTTP/2dadanews.ru/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.9 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typeJavaScript source, ASCII text, with very long lines (8954), with no line terminators Hash74874d1afc5c0e12ea3235df96463f8f 6b7c29726006e2a417184d4cb174248e2854975d 00a15105f9b7b5e2c0a5fbb8d5af42c3af09459a6855946bfd6b89145054d03c
GET /wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.9 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: application/x-javascript
last-modified: Wed, 26 Jul 2023 12:13:55 GMT
vary: Accept-Encoding
etag: W/"64c10e03-21fc"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| yandex.ru/ads/system/context.js | 5.255.255.70 | 200 OK | 365 kB |
URL GET HTTP/2yandex.ru/ads/system/context.js IP5.255.255.70:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGlobalSign nv-sa Subject*.xn--d1acpjx3f.xn--p1ai Fingerprint17:FB:0C:B6:3F:7F:A5:4C:41:AD:D0:5C:6B:9A:96:47:FE:AF:C8:5C ValidityMon, 04 Mar 2024 10:29:07 GMT - Sun, 01 Sep 2024 20:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65491) Size365 kB (364674 bytes) Hash96d6b74c96dcdd4aaf6ab21f6570606d f30d85be2f39d1f370b634a910bea25bcfbd75e1 c615e0c184ecb217116b52e4c5241a499a2b8be8c584d6516a329b076a570de9
GET /ads/system/context.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.smi.today/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
timing-allow-origin: *
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: *
set-cookie: i=iBtotcyxx8cmJKiitdwDevfqaGLJ5CPi6UxGq+11QdatErSR4I/cahygkstAnfkBim/Mv/DEN8cxLRRLktAGd0id6pg=; Expires=Fri, 24-Apr-2026 17:47:06 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=8827183321713980826; Expires=Fri, 24-Apr-2026 17:47:06 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yashr=1334374311713980826; Path=/; Domain=.yandex.ru; Expires=Thu, 24 Apr 2025 17:47:06 GMT; SameSite=None; Secure; HttpOnly
receive-cookie-deprecation=1; Path=/; Domain=.yandex.ru; Expires=Thu, 24 Apr 2025 17:47:06 GMT; SameSite=None; Secure; HttpOnly; Partitioned
etag: "a4856718fde6e71e586776f37aab2df4-1014686"
expires: Wed, 24 Apr 2024 18:47:06 GMT
x-yandex-req-id: 1713980826645387-15019738918982718332-balancer-l7leveler-kubr-yp-vla-11-BAL
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
X-Firefox-Spdy: h2
|
|
| news.mediametrics.ru/uploads/1713871791blob.jpg | 88.212.202.23 | 200 OK | 5.5 kB |
URL GET HTTP/1.1news.mediametrics.ru/uploads/1713871791blob.jpg IP88.212.202.23:443 ASN#39134 Edinaya Set Limited Liability Company
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subject*.mediametrics.ru Fingerprint9F:8D:CF:3E:88:F6:A9:B6:EB:85:53:4A:C1:42:DA:B6:CA:41:2A:8C ValidityFri, 08 Mar 2024 01:08:24 GMT - Thu, 06 Jun 2024 01:08:23 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x256, components 3 Hashecc8aefa57c42a0665b7a1cdcb35c601 51d97d7f78c47f0d4aabc1bddf9d5ecb20b8031b b795bf8ced524b65726ac9f1526f57fbcff3afbfe250a1a9c5bbb75a7e0d1d91
GET /uploads/1713871791blob.jpg HTTP/1.1
Host: news.mediametrics.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 17:47:04 GMT
Content-Type: image/jpeg
Content-Length: 5487
Connection: keep-alive
Last-Modified: Tue, 23 Apr 2024 11:29:51 GMT
ETag: "66279baf-156f"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| jgctqt.com/.cdn/3a8241/d72d18/60f8b7cb886b4590a11a348760ed9356/d0362e3dac51fab8.jpeg | 62.76.25.27 | 200 OK | 33 kB |
URL GET HTTP/2jgctqt.com/.cdn/3a8241/d72d18/60f8b7cb886b4590a11a348760ed9356/d0362e3dac51fab8.jpeg IP62.76.25.27:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectjgctqt.com FingerprintCD:FB:BA:E2:42:2A:B1:93:55:67:80:C8:97:3D:04:F1:63:5D:48:6C ValidityFri, 22 Mar 2024 02:25:34 GMT - Thu, 20 Jun 2024 02:25:33 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3 Hash8478124cc25a75c556a0ecba7c695a86 805beab2db57ff5fea804ecae4839558bce9f115 b8477bd78c2c94d73c99dbb28e2c99f22c8bedccc4f5c8fb5801f3e3f101d4d5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/d72d18/60f8b7cb886b4590a11a348760ed9356/d0362e3dac51fab8.jpeg HTTP/1.1
Host: jgctqt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: image/jpeg
content-length: 32878
last-modified: Fri, 29 Jul 2022 13:04:05 GMT
etag: "62e3dac5-806e"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/odnoklassniki.js | 172.67.39.148 | 200 OK | 760 B |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/odnoklassniki.js IP172.67.39.148:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (770), with no line terminators Hashcb82050f7f14a3db09ffdfb4264d9283 14e74584b06b6fba067ee46beb8716aeed0f3f1b b276a6e538094b569fd01cafe54873f648845eb57cd1f9bab6e4846c58feceb0
GET /menu/svg/icons/odnoklassniki.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dadanews.ru
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:04 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"fbfbfcc7ab941f776d72d7a871d05bb9"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dtMzobtYHoOPMoF0i2PjvrFB3Pxkj6EqaqUzl1QLlerYNQu39srIWG3OIGqwLbvRdtcIIoPfYHVrTlJZMu1UVa0fHrB1WVfkw3rRiO9GOyl7gTmoTJczxbpXbuwoSBpbMCxMPosC"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 9753
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8797ea9a5a1856ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dadanews.ru/wp-includes/css/dist/block-library/style.min.css?ver=6.3.4 | 45.130.41.185 | 200 OK | 104 kB |
URL GET HTTP/2dadanews.ru/wp-includes/css/dist/block-library/style.min.css?ver=6.3.4 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
Size104 kB (104484 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.3.4 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: text/css
last-modified: Wed, 09 Aug 2023 08:31:37 GMT
vary: Accept-Encoding
etag: W/"64d34ee9-19824"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.smi.today/templates/new/fonts/IBMPlexSerif-Medium.woff | 188.114.97.1 | 200 OK | 71 kB |
URL GET HTTP/3www.smi.today/templates/new/fonts/IBMPlexSerif-Medium.woff IP188.114.97.1:443
Requested byhttps://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html CertificateIssuerGoogle Trust Services LLC Subjectsmi.today Fingerprint2D:95:A2:A1:B6:82:10:51:58:9F:C1:64:F7:D7:B0:36:87:18:12:5F ValiditySun, 31 Mar 2024 12:52:49 GMT - Sat, 29 Jun 2024 12:52:48 GMT
File typeWeb Open Font Format, TrueType, length 71008, version 0.0 Hashbe1ca95e020da242e35bb97395473371 0ee59036346ce704834035bfe4b6803e89b20d5e 997f4397b893b53652fe93f1b346440ad9038817b3c2b73ac09c1a5b0464d210
GET /templates/new/fonts/IBMPlexSerif-Medium.woff HTTP/1.1
Host: www.smi.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.smi.today/ru_smi/2863324-livija-i-ssha-obsudili.html
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:47:05 GMT
content-type: application/font-woff
last-modified: Tue, 01 Feb 2022 10:50:14 GMT
etag: W/"11560-5d6f2aa7c84f7"
access-control-allow-origin: *
vary: User-Agent
content-language: ru
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TN03mc8yXejbJwZv%2FfHWJHmy7vQwHy52LUhAbC31MtJqLnUF073pOmtlUik2Yr2JfpJ5Cbs%2BLL%2BptVf5XjmKLw83tmxq4vh1nZig9GNvfD2XYLhhy5pkyfDnEFAj1Xav"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797eaa1dc7b7127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| dadanews.ru/wp-content/plugins/print-o-matic/js/printomat.js?ver=2.0.11 | 45.130.41.185 | 200 OK | 3.1 kB |
URL GET HTTP/2dadanews.ru/wp-content/plugins/print-o-matic/js/printomat.js?ver=2.0.11 IP45.130.41.185:443
Requested byhttps://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij CertificateIssuerLet's Encrypt Subjectdadanews.ru FingerprintF8:B6:28:CB:3A:97:69:59:39:45:E7:E0:AF:C8:90:61:E5:AE:DF:14 ValidityMon, 15 Apr 2024 03:19:34 GMT - Sun, 14 Jul 2024 03:19:33 GMT
File typeJavaScript source, ASCII text, with very long lines (3498), with no line terminators Hash56966e161299355d9be239f94d1652c8 aea7e27f3c72fc9282cee02a71ead7ec1b5e0e90 c44d7374bd36ca27c4f92f93bb2bb9a12207855e37ba260cbf41c0e40763cf44
GET /wp-content/plugins/print-o-matic/js/printomat.js?ver=2.0.11 HTTP/1.1
Host: dadanews.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dadanews.ru/society/pensioneram-rossii-v-2024-godu-sushhestvennyj-rost-prozhitochnogo-minimuma-i-nyuansy-rascheta-pensij
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Wed, 24 Apr 2024 17:47:03 GMT
content-type: application/x-javascript
last-modified: Tue, 25 Jul 2023 13:59:26 GMT
vary: Accept-Encoding
etag: W/"64bfd53e-c40"
expires: Wed, 01 May 2024 17:47:03 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|