www.e-legion.com/
185.199.108.153301 Moved Permanently 162 B IP 185.199.108.153:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: keep-alive
Content-Length: 162
Server: GitHub.com
Content-Type: text/html
Location: https://www.e-legion.com/
X-GitHub-Request-Id: B92E:6619:145E3A4:1500AF3:6389DEB0
Accept-Ranges: bytes
Date: Fri, 02 Dec 2022 11:17:04 GMT
Via: 1.1 varnish
Age: 0
X-Served-By: cache-bma1626-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1669979825.723367,VS0,VE127
Vary: Accept-Encoding
X-Fastly-Request-ID: f331dcc8dead4b5c1b401ef3159e07e0bc04f449
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9181
Expires: Fri, 02 Dec 2022 13:50:05 GMT
Date: Fri, 02 Dec 2022 11:17:04 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6301
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:04 GMT
Last-Modified: Fri, 02 Dec 2022 09:32:03 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 10:18:11 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3533
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6754
Expires: Fri, 02 Dec 2022 13:09:38 GMT
Date: Fri, 02 Dec 2022 11:17:04 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bSabTdNO0ZIpKfde22rKcPdzKF991XiN8+UzVAdmb3vNTSmVZJ6yW6LGW7pa5LxH1vGkjai4QMs=
x-amz-request-id: T47TDSERBQ3BBGQ6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 10:46:40 GMT
age: 1825
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 11:17:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.e-legion.com/
185.199.109.153200 OK 26 kB IP 185.199.109.153:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10656)
Hash d09de55bc9bf71b81af08d47a6be7d5a
69aa603684b8217daf0969bdf26d3dbf21661548
c021bfd2f3be619e15a837589f5563e20553072305d7f5f62961001ac5a557cd
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: GitHub.com
content-type: text/html; charset=utf-8
last-modified: Tue, 12 Jul 2022 06:23:11 GMT
access-control-allow-origin: *
etag: W/"62cd134f-16554"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: CE30:0EBC:192A180:19EBB2D:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.024375,VS0,VE124
vary: Accept-Encoding
x-fastly-request-id: 4373f44e38e2b3daf00ac0deebaedd02e41939ac
content-length: 25958
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.3/umd/popper.min.js
104.17.25.14200 OK 6.5 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.3/umd/popper.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (20164)
Hash ae393ccddfcfe335c9b29ee90aaf72cb
6a42536ed79b4ea9e3a71c69db3b5f7205dc7e81
75cbee82410be7ca2b5b5406219b0575725c415510df701ddf1e9e7fdec22aa8
GET /ajax/libs/popper.js/1.14.3/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 11:17:05 GMT
content-type: application/javascript; charset=utf-8
content-length: 6451
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4f71"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4369151
expires: Wed, 22 Nov 2023 11:17:05 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WHDiMgPfKr2gKhb8zcP%2FadUxMMVpkiM7DmO240z5FoTZFljR5gYR9BwPB%2F%2BRl6nLw7%2BZJbvXDxytvYkN5fzC49BaueSHqZhEl1cg6piXSe%2Bmr%2Fm%2B3bBW9T17b7pgIvA8r%2BhOqFB1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7733a7749865b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 90b4caf4c10d4aedbbf15a03650df1f8
f2da7656691c4bc1238df9c60f4439dde08541dc
2c67636d085bb985e6cc0a524aeb26d2a8d1f574d538e394349d2196587e1219
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6242
Cache-Control: max-age=163703
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:05 GMT
Etag: "6389a2c6-116"
Expires: Sun, 04 Dec 2022 08:45:28 GMT
Last-Modified: Fri, 02 Dec 2022 07:01:26 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 90b4caf4c10d4aedbbf15a03650df1f8
f2da7656691c4bc1238df9c60f4439dde08541dc
2c67636d085bb985e6cc0a524aeb26d2a8d1f574d538e394349d2196587e1219
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6242
Cache-Control: max-age=163703
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:05 GMT
Etag: "6389a2c6-116"
Expires: Sun, 04 Dec 2022 08:45:28 GMT
Last-Modified: Fri, 02 Dec 2022 07:01:26 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
code.jquery.com/jquery-3.3.1.slim.min.js
69.16.175.42200 OK 24 kB URL HTTP/2 code.jquery.com/jquery-3.3.1.slim.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (65247)
Hash 0f2e7d37e730fdbb1d8a1e8638529ecb
c21d16978a858baa75be15cb7e799ff000929429
cc938c08b93e67c94c68995709f52133c62cac78991f42058503b9c3d9e4b0b0
GET /jquery-3.3.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 11:17:05 GMT
content-encoding: gzip
content-length: 24038
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-1111d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1669979825.dop010.sk1.t,1669979825.cds238.sk1.hn,1669979825.cds230.sk1.c
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/tele2-3.0/cover.svg
185.199.109.153200 OK 908 B URL HTTP/2 www.e-legion.com/i/projects/tele2-3.0/cover.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1248)
Hash 944fb80a8e52c37bbc91d3babe8dc607
4f8fb3d24a23a28c40a2616a15a3c9997272e661
f9ccc15c06a76055765f77eeff133f6508e597be2ab8d5aa8e84f03294245b9a
Analyzer Verdict Alert fortinet Phishing
GET /i/projects/tele2-3.0/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 06:23:11 GMT
access-control-allow-origin: *
etag: W/"62cd134f-656"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: A41A:B926:12E112F:137158C:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.317142,VS0,VE105
vary: Accept-Encoding
x-fastly-request-id: 0c7670b35c81dc25aa1e5ccfee7103a2d89dd9ea
content-length: 908
X-Firefox-Spdy: h2
www.e-legion.com/i/logos/cert-agency-android-2018.png
185.199.109.153200 OK 4.3 kB URL HTTP/2 www.e-legion.com/i/logos/cert-agency-android-2018.png
IP 185.199.109.153:0
File type PNG image data, 160 x 160, 8-bit colormap, non-interlaced\012- data
Hash 4e4501ca4008b2e6909c22d2e106a8c1
b0edb6a7e7cd7e926ba69eec0f724c32935766fc
2607d77c9de3424a76e31294528b00d84694f36ec23db0ea16486ebffc1da674
GET /i/logos/cert-agency-android-2018.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: "62cd134c-10b6"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 8D96:4378:1498678:153CF88:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.315189,VS0,VE111
vary: Accept-Encoding
x-fastly-request-id: 50f4ca3e92e1ee52cf4dae908af087d89aee581d
content-length: 4278
X-Firefox-Spdy: h2
www.e-legion.com/i/emoji/family-mfkk.svg
185.199.109.153200 OK 12 kB URL HTTP/2 www.e-legion.com/i/emoji/family-mfkk.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1557)
Hash 75b472b6f258eb63c90b5fa8c1084634
2ff0f4ed605d150810ecc05714b3f7f485253834
db3c63eb80ca579cfd9293085debbde89bef27f9f06288a98121823aa1f431b7
Analyzer Verdict Alert fortinet Phishing
GET /i/emoji/family-mfkk.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-df6f"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 582A:3380:1E3C83E:1F279C4:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.313254,VS0,VE116
vary: Accept-Encoding
x-fastly-request-id: 31e577a1fd41991d0844fa794008865667dfc902
content-length: 11984
X-Firefox-Spdy: h2
www.e-legion.com/i/logos/clutch-top-mobile-app.png
185.199.109.153200 OK 14 kB URL HTTP/2 www.e-legion.com/i/logos/clutch-top-mobile-app.png
IP 185.199.109.153:0
File type PNG image data, 160 x 160, 8-bit/color RGBA, non-interlaced\012- data
Hash 84466471ec1b98722e32a070c19420dd
a75485fcac05def93e6d3effc172a2cff49bc6dc
34f46a3de3a058eb81f0ed2c15990ab17c15f7873699caebeeb3b4f3f6c06d6e
GET /i/logos/clutch-top-mobile-app.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: "62cd134c-382d"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 9B94:6619:145E3EA:1500B36:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.313954,VS0,VE117
vary: Accept-Encoding
x-fastly-request-id: ee81dfa979eaa6d443a07660a718b7a5bd3cf68f
content-length: 14381
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/burgerking/cover.svg
185.199.109.153200 OK 3.0 kB URL HTTP/2 www.e-legion.com/i/projects/burgerking/cover.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3848)
Hash bc66b3841e2aea84f387d78ff9c11c1c
2ac6537d42d42d4da8008da1e60b13fdbb83d4d1
27d5998ae1afe22a2a84f216a693881a3a26e48afc3d2dab4d318a666220bc49
Analyzer Verdict Alert fortinet Phishing
GET /i/projects/burgerking/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:09 GMT
access-control-allow-origin: *
etag: W/"62cd134d-171d"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F62C:9054:51504E:54257E:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.316535,VS0,VE114
vary: Accept-Encoding
x-fastly-request-id: 99b9fbd1d9695afd3c27039fbe0866e5d7b7b331
content-length: 2986
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/5ka/cover.svg
185.199.109.153200 OK 807 B URL HTTP/2 www.e-legion.com/i/projects/5ka/cover.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9934a913146e4854393aa678360844d4
bcd659389372c74aa11628e6be456c8bfd14620c
2841aec0cc00ecb0526a861abc7cb749a0e0f9ff6337e7049378d728ce8773a8
Analyzer Verdict Alert fortinet Phishing
GET /i/projects/5ka/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-5ce"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: DC9A:EF76:14B6B20:155F1F8:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.318212,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: 8fd13205b120d4b7d73877185df6f4fdaf8c8ac0
content-length: 807
X-Firefox-Spdy: h2
www.e-legion.com/i/logos/app-futura-certified-developer.svg
185.199.109.153200 OK 4.7 kB URL HTTP/2 www.e-legion.com/i/logos/app-futura-certified-developer.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (11200), with no line terminators
Hash eee40d377f7a3c7bad1cf6deb8e38079
4e306413e89a5940566fcb67432d244b76acc1f2
d3fe5e9b8deb167f2a481224564180fb56cedbd97cb6c94b98be0bfec17c3998
Analyzer Verdict Alert fortinet Phishing
GET /i/logos/app-futura-certified-developer.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-2bc0"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 3132:0EBC:192A19D:19EBB5D:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.315396,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: d51148b4e7274943e6251d4705851fdc2282dbb6
content-length: 4711
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.e-legion.com/i/emoji/heart.svg
185.199.109.153200 OK 2.1 kB URL HTTP/2 www.e-legion.com/i/emoji/heart.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , Unicode text, UTF-8 text, with very long lines (587)
Hash 61629a3b8403579e387dc1fb939836a1
0dae4fe455c544446447a3ea5778415906f566b7
451b48f88fadede3f6f1cc9bdc21ff7fdbbb52e40c60d5b597a9d8b6b02b2981
Analyzer Verdict Alert fortinet Phishing
GET /i/emoji/heart.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-4261"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 955E:3290:B15B75:B674C5:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.327758,VS0,VE112
vary: Accept-Encoding
x-fastly-request-id: fa307d1f03e48a136851ef88e247db6474b51994
content-length: 2066
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/raiffeisen/cover.png
185.199.109.153200 OK 7.5 kB URL HTTP/2 www.e-legion.com/i/projects/raiffeisen/cover.png
IP 185.199.109.153:0
File type PNG image data, 416 x 416, 8-bit colormap, non-interlaced\012- data
Hash 665ae119851adf880ba2c9e363fee144
b17d07ee61a522cf9f28273c5fdb99bce1cdc714
49048514e6e5f091249486a955f3b7e987a1bd2f1195bc953bbde1851e311196
GET /i/projects/raiffeisen/cover.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
last-modified: Tue, 12 Jul 2022 06:23:10 GMT
access-control-allow-origin: *
etag: "62cd134e-1d28"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: EE12:787E:1C4E23D:1D2D997:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.323801,VS0,VE117
vary: Accept-Encoding
x-fastly-request-id: 8020a7aca47e46868bf8558287caab6a48cc2dab
content-length: 7464
X-Firefox-Spdy: h2
www.e-legion.com/i/emoji/trophy.svg
185.199.109.153200 OK 8.3 kB URL HTTP/2 www.e-legion.com/i/emoji/trophy.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , Unicode text, UTF-8 text, with very long lines (9679)
Hash 63fa4328691db4ae8d1f1abfe102f596
90e7153bb28448b2830d18d30bd5022f5833a72d
25e32d0c97a27cd781168b9bbf25f257efbf851e5adc374464de90145305a51b
Analyzer Verdict Alert fortinet Phishing
GET /i/emoji/trophy.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-8726"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 26EE:7631:19A4D0:1A432C:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.326382,VS0,VE114
vary: Accept-Encoding
x-fastly-request-id: 5c12c23ba1a62f61675ac8f9763422fd08632656
content-length: 8315
X-Firefox-Spdy: h2
www.e-legion.com/i/emoji/medal.svg
185.199.109.153200 OK 4.7 kB URL HTTP/2 www.e-legion.com/i/emoji/medal.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , Unicode text, UTF-8 text, with very long lines (532)
Hash 366a838a1954e3ec73a94b62a38c8ac0
a2d33515cf663a0eb9193ec6922085ab692d685c
f67816ab892feb64d9d88bb065d2168e8ec768534e0fb9d6a3782c3abf028733
Analyzer Verdict Alert fortinet Phishing
GET /i/emoji/medal.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-6d57"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 581E:7631:19A4D0:1A432B:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.327205,VS0,VE114
vary: Accept-Encoding
x-fastly-request-id: 95561c8afe818d92641c721defd1219c5aab383e
content-length: 4736
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/yandex/cover.png
185.199.109.153200 OK 3.3 kB URL HTTP/2 www.e-legion.com/i/projects/yandex/cover.png
IP 185.199.109.153:0
File type PNG image data, 416 x 416, 8-bit colormap, non-interlaced\012- data
Hash f328045f6b48860f8a1016c4abaa039d
38239a6f883a3a3a5bea143960a1f558f7dbf64f
bfc764ab3187029c9f2e2c78de173ccbde578d9c6348f0dcf4a104e0de5fc8bf
GET /i/projects/yandex/cover.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:11 GMT
access-control-allow-origin: *
etag: "62cd134f-d14"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: CE30:0EBC:192A19D:19EBB60:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.323459,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: b6e1cc2b5f95db5789f7897b543d0352bc7bc3ca
content-length: 3348
X-Firefox-Spdy: h2
www.e-legion.com/i/logos/bmw.png
185.199.109.153200 OK 9.4 kB URL HTTP/2 www.e-legion.com/i/logos/bmw.png
IP 185.199.109.153:0
File type PNG image data, 240 x 240, 8-bit colormap, non-interlaced\012- data
Hash d45b9b7cd9857a897067956475d8c73b
e2f40a6f2d8ea195a8d39a277fe0bb27bdf0b18b
b44704fc65e4cd04cdf2928ff4363505643a66b877f4b4b2ec613f4929aac8da
GET /i/logos/bmw.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: "62cd134c-24a7"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: A412:3D7E:1E10144:1EFB098:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.328985,VS0,VE113
vary: Accept-Encoding
x-fastly-request-id: e9fa75fa13262b5c1fe907535e198b52e64b5a5b
content-length: 9383
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/globus-2.0/cover.svg
185.199.109.153200 OK 8.3 kB URL HTTP/2 www.e-legion.com/i/projects/globus-2.0/cover.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (9283)
Hash 4e16b824681aded70f538129e449270e
e0cd60065de137bc4158ff3a5a7f846b5917d902
42327e180ed89a069e4026f97982936479525cc99db71ddbe545c8602949363f
Analyzer Verdict Alert fortinet Phishing
GET /i/projects/globus-2.0/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:09 GMT
access-control-allow-origin: *
etag: W/"62cd134d-42cb"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: EC6C:BE7B:7220F4:75BC48:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.323119,VS0,VE120
vary: Accept-Encoding
x-fastly-request-id: 237cec6f1732a75e0d1af996f87961be0211d366
content-length: 8277
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.e-legion.com/i/projects/ms-tech-events/cover.svg
185.199.109.153200 OK 2.7 kB URL HTTP/2 www.e-legion.com/i/projects/ms-tech-events/cover.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4882)
Hash 49fa75a4ad3f73158d84975ed7270acf
a44b0a1da761907c6861498af1b9ebfe5d94f5c9
384a51b7a6ce765b91309abb287b8fb6e49a0f54c1d70513f0a5a016c1571356
Analyzer Verdict Alert fortinet Phishing
GET /i/projects/ms-tech-events/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:10 GMT
access-control-allow-origin: *
etag: W/"62cd134e-16b0"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: CA70:A430:1D8259D:1E6CFA2:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.323906,VS0,VE119
vary: Accept-Encoding
x-fastly-request-id: 6b991d61d5e524efbba63985633260e2ebcfa582
content-length: 2722
X-Firefox-Spdy: h2
www.e-legion.com/i/emoji/hammer-and-wrench.svg
185.199.109.153200 OK 8.2 kB URL HTTP/2 www.e-legion.com/i/emoji/hammer-and-wrench.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2006)
Hash 9b55ee37dc1ee4d760bb59c4fed0541c
3a3793ae3c78b2a76c23760b66df5e3c073ab8d7
0d0bb61630b57e199766c5aa0ee2361e8b82fad1c888dedd3e32dd6d82c59015
Analyzer Verdict Alert fortinet Phishing
GET /i/emoji/hammer-and-wrench.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-8ffe"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: DCAA:4378:149867A:153CF8B:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.325802,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: 4874c1b78dc5e1da10c2bd08f9d636c33349cf21
content-length: 8231
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/alfa-direct-2.0/cover.svg
185.199.109.153200 OK 223 B URL HTTP/2 www.e-legion.com/i/projects/alfa-direct-2.0/cover.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 73cf0518cb0b60369e726acd621eac01
077c9980946f5fa9f8dae1922181f437c6d7d6fc
8ca135c9af56ec3899dd768540079db0c490293ae0f3036150e95f12a6c559d5
Analyzer Verdict Alert fortinet Phishing
GET /i/projects/alfa-direct-2.0/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-125"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 5836:A90D:1DF4FF0:1EE01BD:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.320724,VS0,VE124
vary: Accept-Encoding
x-fastly-request-id: bde568a039fc54ad26a39be8381f2b169ffe081f
content-length: 223
X-Firefox-Spdy: h2
www.e-legion.com/i/logos/burgerking.png
185.199.109.153200 OK 14 kB URL HTTP/2 www.e-legion.com/i/logos/burgerking.png
IP 185.199.109.153:0
File type PNG image data, 252 x 252, 8-bit colormap, non-interlaced\012- data
Hash 75e7ee517e87e5807ea27031e8b91d9c
82fb7f8a9feaabd713087ae5b2a1802600c0c5ad
0ad0fed743e842369339bc450ccf5c980be97803d2f05ffed5678eb6066cb54f
GET /i/logos/burgerking.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: "62cd134c-3827"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 7DB4:B926:12E1133:1371591:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.329768,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: a46751ba356f8850d9915303e96cb77c75a6b4cf
content-length: 14375
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/cafetera/cover.svg
185.199.109.153200 OK 2.5 kB URL HTTP/2 www.e-legion.com/i/projects/cafetera/cover.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1368)
Hash c3cf4710bd65e7ffa0d3a05c637646f6
64db51d38b161e2c5aa401611b5947a3d2e6343f
49dff958ae2ab60d005ebaf828c0329155234794b51c6de79dfa0c4b8f23ae0e
Analyzer Verdict Alert fortinet Phishing
GET /i/projects/cafetera/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 06:23:09 GMT
access-control-allow-origin: *
etag: W/"62cd134d-1568"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 4218:727E:1D856DC:1E70077:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.324617,VS0,VE121
vary: Accept-Encoding
x-fastly-request-id: 3ad61c8b9eef07b698faf1f2f74b123e5edd1a6b
content-length: 2474
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/888/cover.svg
185.199.109.153200 OK 1.1 kB URL HTTP/2 www.e-legion.com/i/projects/888/cover.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Hash 55eed4ffb56e01969f3e3417b16b8b78
7a977dc0b3413cb04186410c37496305247b57e0
d97abd4dc5d7afb1454f1876d6c8506510860ae077291e062b87705a0b1e6d1e
Analyzer Verdict Alert fortinet Phishing
GET /i/projects/888/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-c0d"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 6B02:13121:64FA53:684B52:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.331288,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: f6d24de293bb395c8699f60bba030a29edacfc16
content-length: 1147
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 90b4caf4c10d4aedbbf15a03650df1f8
f2da7656691c4bc1238df9c60f4439dde08541dc
2c67636d085bb985e6cc0a524aeb26d2a8d1f574d538e394349d2196587e1219
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6242
Cache-Control: max-age=163703
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:05 GMT
Etag: "6389a2c6-116"
Expires: Sun, 04 Dec 2022 08:45:28 GMT
Last-Modified: Fri, 02 Dec 2022 07:01:26 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278
www.e-legion.com/i/projects/my-jet-sport/cover.svg
185.199.109.153200 OK 2.2 kB URL HTTP/2 www.e-legion.com/i/projects/my-jet-sport/cover.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3811)
Hash 29b1145444f1abb756364482d77d49d0
c7f3af48870d2244867a8dc6b29a9c25d522ce19
474dad6826f5a92f845f1d73cd81602a7eb5091075c7a47ce86676fd5b3fe18a
Analyzer Verdict Alert fortinet Phishing
GET /i/projects/my-jet-sport/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:10 GMT
access-control-allow-origin: *
etag: W/"62cd134e-1117"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 7DAA:7631:19A4D0:1A432A:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.323559,VS0,VE123
vary: Accept-Encoding
x-fastly-request-id: 659ceeb12cba2d5a9c91e9fa1243017e7c364bba
content-length: 2184
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-P23G9N
142.250.74.168200 OK 95 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-P23G9N
IP 142.250.74.168:0
File type ASCII text, with very long lines (65323)
Hash 4048efe834959fa73ada2fac27f532b4
9105634239e6f7ec6f7e1c844191274ec3e209ea
6345436de013814205b3c3664cd78de85229d945329c928dcb7ea2dbb27a62f5
GET /gtm.js?id=GTM-P23G9N HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 11:17:05 GMT
expires: Fri, 02 Dec 2022 11:17:05 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Dec 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94954
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-53Z3C9T
142.250.74.168200 OK 48 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-53Z3C9T
IP 142.250.74.168:0
File type ASCII text, with very long lines (4815)
Hash 25a53917373005b5eefc0bd8504fee55
d40495b9937778e953037c2694fdb7085a1ffedd
8c316540e0b2fd3c52976b888a77874ca2b32f59924608af0d15d09e2400609a
GET /gtm.js?id=GTM-53Z3C9T HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 11:17:05 GMT
expires: Fri, 02 Dec 2022 11:17:05 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Dec 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 48369
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/spiking/cover.png
185.199.109.153200 OK 107 kB URL HTTP/2 www.e-legion.com/i/projects/spiking/cover.png
IP 185.199.109.153:0
File type PNG image data, 416 x 416, 8-bit/color RGBA, non-interlaced\012- data
Size 107 kB (106827 bytes)
Hash b0f7624ce48fed4ebc9fe1c46341c858
72a62489aca4d52bbc9eddb450679646e3bbb4b6
2d6fd1b9948f8e1e8568e332333bdaede88076924a6a9907ea25da046a5da763
GET /i/projects/spiking/cover.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
last-modified: Tue, 12 Jul 2022 06:23:11 GMT
access-control-allow-origin: *
etag: "62cd134f-1a14b"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 9292:797B:E34C1:E8437:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.317690,VS0,VE129
vary: Accept-Encoding
x-fastly-request-id: 04d9b3d4e8e4843dcbffeeeb7516947dddf9d9d4
content-length: 106827
X-Firefox-Spdy: h2
www.e-legion.com/i/emoji/muscle.svg
185.199.109.153200 OK 5.8 kB URL HTTP/2 www.e-legion.com/i/emoji/muscle.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1494)
Hash 73124357651b15b2662dbea00406aadf
1e944802052b7b9cd5191a171cff8dba98174fa0
ba3ecf17d5491820294ff0073eec1edb51839c1584cd0f3959c7a39351e07cdf
Analyzer Verdict Alert fortinet Phishing
GET /i/emoji/muscle.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-1033e"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 6EF8:3380:1E3C840:1F279C9:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.328475,VS0,VE121
vary: Accept-Encoding
x-fastly-request-id: 96df9011aebde07c99bfc1d85216a0e564fddc93
content-length: 5791
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/venn/cover.svg
185.199.109.153200 OK 434 B URL HTTP/2 www.e-legion.com/i/projects/venn/cover.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (350)
Hash 0f5c168980416fc26a178a6a0ab967c1
4620ec931936179c1a0493150bd8325f81e3d955
08a7e6080238dfa94e0979665a36bd4d623d3c22782af196f38ec4b5c14a1d4c
Analyzer Verdict Alert fortinet Phishing
GET /i/projects/venn/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:11 GMT
access-control-allow-origin: *
etag: W/"62cd134f-2ff"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F63E:1CB9:1D89358:1E6F488:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.332002,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: ae8f65d39bc4a701e6c9067da64fa0770a832332
content-length: 434
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/master-podarkov/cover.png
185.199.109.153200 OK 106 kB URL HTTP/2 www.e-legion.com/i/projects/master-podarkov/cover.png
IP 185.199.109.153:0
File type PNG image data, 416 x 416, 8-bit/color RGBA, non-interlaced\012- data
Size 106 kB (106203 bytes)
Hash c6358480f8f58b6b5ed3df99bfcc79e8
5ad7964bb74be61e19f20ad73ca8daea22eaa3f1
720254540a9d039392b00a141a30d54ee36ef64e393778426f7a2094af817054
GET /i/projects/master-podarkov/cover.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:10 GMT
access-control-allow-origin: *
etag: "62cd134e-19edb"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: BF4E:7631:19A4D2:1A4330:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.335232,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: 7925bd339aad3963514ccb507f381a3163a11da4
content-length: 106203
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/ppf/cover.png
185.199.109.153200 OK 12 kB URL HTTP/2 www.e-legion.com/i/projects/ppf/cover.png
IP 185.199.109.153:0
File type PNG image data, 416 x 416, 8-bit/color RGBA, non-interlaced\012- data
Hash 5713e40c4a4e00c416ea5efa90fd75cc
d370a0b6e92601ac0ec6a20fe9e10a177bfb7c88
18752922c6d2120825eff12c1b7f341eee7a248c5d5b52f77412fe48d4e6ce80
GET /i/projects/ppf/cover.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:10 GMT
access-control-allow-origin: *
etag: "62cd134e-2d8e"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 421A:3290:B15B75:B674C7:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.333170,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: d1bb7ddadb5bfe389ad434ce718ef5031c4d25ae
content-length: 11662
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/bm/cover.svg
185.199.109.153200 OK 2.9 kB URL HTTP/2 www.e-legion.com/i/projects/bm/cover.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (626)
Hash 36a1b3d450728a8b693946b62d353fac
6234c83be34903092b8ddba6fb5305dc1714efbc
eed39734004bcf6463ac4212b58c730c3cf246166645aa842350a3ac953c3608
Analyzer Verdict Alert fortinet Phishing
GET /i/projects/bm/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-2d79"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 9B92:787E:1C4E23E:1D2D99C:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.333930,VS0,VE125
vary: Accept-Encoding
x-fastly-request-id: c507c36b351f4c735a784faf6d6dd9b8e2df9742
content-length: 2867
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/skillaz/cover.svg
185.199.109.153200 OK 1.2 kB URL HTTP/2 www.e-legion.com/i/projects/skillaz/cover.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1538)
Hash 48b8c5e1adb0af88c91c88a38106e291
4a032aec65ad24399ea2f39030e058eb6a3fdeec
2c7da7a4067e006476f1023c981343f037e329a099cafecba2e4c0219aad2531
Analyzer Verdict Alert fortinet Phishing
GET /i/projects/skillaz/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:10 GMT
access-control-allow-origin: *
etag: W/"62cd134e-b27"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F6B2:0EBC:192A1A2:19EBB65:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.334736,VS0,VE125
vary: Accept-Encoding
x-fastly-request-id: e53c18e02eea6f119050c51acdffab4264c2016e
content-length: 1203
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/bm-wallet/cover.svg
185.199.109.153200 OK 3.0 kB URL HTTP/2 www.e-legion.com/i/projects/bm-wallet/cover.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4039)
Hash 3262071b5dab9a93b9d2830bc9e1afa0
48d90f7d73e0701e687810d8795240485693a70a
f939b418f3eb6bc606db479684a36a509a75f12e30290fa61443bb301047ee2f
Analyzer Verdict Alert fortinet Phishing
GET /i/projects/bm-wallet/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-1b55"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 2E6E:EF76:14B6B26:155F1FC:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.342760,VS0,VE117
vary: Accept-Encoding
x-fastly-request-id: e5ed49d7a021095ccb6c07ea8856241bb4e58cc1
content-length: 2955
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/1tv/cover.png
185.199.109.153200 OK 63 kB URL HTTP/2 www.e-legion.com/i/projects/1tv/cover.png
IP 185.199.109.153:0
File type PNG image data, 416 x 416, 8-bit colormap, non-interlaced\012- data
Hash a7c59de2299f12e53bfcf34ac76f478f
b96dff2cbc70b19b57ab8b8a9a98f4675d1c7d1b
a4c456a47e2cb3e2c2632955c925cda2c433e224c56b36fd4e4cfbaf26521a8c
GET /i/projects/1tv/cover.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: "62cd134c-f699"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 582C:9054:515051:542581:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.324049,VS0,VE135
vary: Accept-Encoding
x-fastly-request-id: f2bfdaefb514e8c48417adca31941fbdd36d63b1
content-length: 63129
X-Firefox-Spdy: h2
www.e-legion.com/i/logos/mobile-app-daily.png
185.199.109.153200 OK 36 kB URL HTTP/2 www.e-legion.com/i/logos/mobile-app-daily.png
IP 185.199.109.153:0
File type PNG image data, 160 x 158, 8-bit/color RGBA, non-interlaced\012- data
Hash efbe606a346be541247bd54a9d132507
83d8ff2c6ce574039cc0a398880a851a50a338be
e1dfd2ce424835922ed7074cc3a27d31ee8de718d0335f632b3bea0a51822560
GET /i/logos/mobile-app-daily.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: "62cd134c-8e4c"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 7DD2:A90D:1DF4FEF:1EE01BB:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.316129,VS0,VE145
vary: Accept-Encoding
x-fastly-request-id: 0db8ae4e172bf800681a028a4ea73ec9293305a9
content-length: 36428
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/taxi777/cover.svg
185.199.109.153200 OK 422 B URL HTTP/2 www.e-legion.com/i/projects/taxi777/cover.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 02c6d0332958065dfba06b9aa018066e
ee9c73c92a1ebd331b216bb765aa3ce57aa29d08
f527cc2f198d192d82c3efdd6901d165ad39749c1c94a6ff1fef89640e379a7b
Analyzer Verdict Alert fortinet Phishing
GET /i/projects/taxi777/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:11 GMT
access-control-allow-origin: *
etag: W/"62cd134f-3f5"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: EEFE:B926:12E1135:1371596:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.345743,VS0,VE116
vary: Accept-Encoding
x-fastly-request-id: fda4de77a95fec298ccde66182fe30f2b2059886
content-length: 422
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/wikimart/cover.png
185.199.109.153200 OK 11 kB URL HTTP/2 www.e-legion.com/i/projects/wikimart/cover.png
IP 185.199.109.153:0
File type PNG image data, 416 x 416, 8-bit/color RGBA, non-interlaced\012- data
Hash 167b4451db0ecc9791d6509ae9d677b7
405b2c34edb437e5a6d633644b67499c9a438748
58339efc58971727fc78bbe6521015a832d39605371e4463a67a2516896c1c02
GET /i/projects/wikimart/cover.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:11 GMT
access-control-allow-origin: *
etag: "62cd134f-297b"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 7A62:EF76:14B6B26:155F1FD:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.344233,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: eb2f9b7772824e07c022154045afdd4490fad2ab
content-length: 10619
X-Firefox-Spdy: h2
www.e-legion.com/app.min.css
185.199.109.153200 OK 18 kB URL HTTP/2 www.e-legion.com/app.min.css
IP 185.199.109.153:0
File type Unicode text, UTF-8 text, with very long lines (51824)
Hash 938b6778198b2e43d222e55c7ba645fc
7d789486b94bed13c384dc846c28e766f2c06c19
8d2eb5aace4b3f88409d2bf089fd683f721bff0d3137eb9672e6e9eb824eb0ff
GET /app.min.css HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:07 GMT
access-control-allow-origin: *
etag: W/"62cd134b-181c0"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 6F08:5B1B:10EC90A:116F339:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.312632,VS0,VE150
vary: Accept-Encoding
x-fastly-request-id: d3b22d42612d4aefd4e236ed69382c4acdb1c2d0
content-length: 18190
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/smeshariki/cover.en.png
185.199.109.153200 OK 81 kB URL HTTP/2 www.e-legion.com/i/projects/smeshariki/cover.en.png
IP 185.199.109.153:0
File type PNG image data, 416 x 416, 8-bit/color RGBA, non-interlaced\012- data
Hash b854e00eba002cfd4a5003b6690401bf
be3b27e1a3b17d5f8e80b4a3806e887210311d0c
b8778e647583682f377f2cc45f96433a2d1ee83df5102533021ac3de5de6657b
GET /i/projects/smeshariki/cover.en.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:10 GMT
access-control-allow-origin: *
etag: "62cd134e-13db2"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 655A:797B:E34C7:E843F:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.336144,VS0,VE131
vary: Accept-Encoding
x-fastly-request-id: 5bf96ddfba91e1aad38c6fcea55cb715d58cdaca
content-length: 81330
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/vkarmane/cover.svg
185.199.109.153200 OK 902 B URL HTTP/2 www.e-legion.com/i/projects/vkarmane/cover.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1259)
Hash 17eb942fffc3961627feb8cb01780211
439bcc205aec6eea3b4f81cb8a25d3ab98550c22
bd582bd8be4ed671d73b98d1530184bfb1a6f0d6323bda4e52649af8a4133cc3
Analyzer Verdict Alert fortinet Phishing
GET /i/projects/vkarmane/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:11 GMT
access-control-allow-origin: *
etag: W/"62cd134f-76a"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 9CEE:3290:B15B77:B674C8:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.343766,VS0,VE125
vary: Accept-Encoding
x-fastly-request-id: d18b13e3c9b35e9237f260bc99c1c472bb1e0f81
content-length: 902
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/rtrs/cover.svg
185.199.109.153200 OK 1.1 kB URL HTTP/2 www.e-legion.com/i/projects/rtrs/cover.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (792)
Hash db078a4c76be24ed2524924ec80e8779
6bf9496b80fd76ed31b1ae380eddee5ced815c81
0568c4baba9d124cb984289222ef8f60fc6617964ed848abe7f7c06c96440882
Analyzer Verdict Alert fortinet Phishing
GET /i/projects/rtrs/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:10 GMT
access-control-allow-origin: *
etag: W/"62cd134e-7fa"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: CAC2:0EBC:192A1A5:19EBB67:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.344083,VS0,VE124
vary: Accept-Encoding
x-fastly-request-id: 83745641318859e6269166a467ff1e5dba7b5a09
content-length: 1084
X-Firefox-Spdy: h2
www.e-legion.com/i/emoji/student-male.svg
185.199.109.153200 OK 4.4 kB URL HTTP/2 www.e-legion.com/i/emoji/student-male.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1541)
Hash f75fe4cddd8dfabb2e2bbd6acae11c26
335798abf23ad80c4187220e0d507a5da7e19fdc
b6c8a620fa948c40148ac8fb7efa5767916aae6efbda7dc1cc53b9e74200e126
Analyzer Verdict Alert fortinet Phishing
GET /i/emoji/student-male.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-35e3"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: D0B8:9054:515054:542585:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.350206,VS0,VE119
vary: Accept-Encoding
x-fastly-request-id: 21233cdfb5d483eaddb03c9eea7bee6d9fae7c69
content-length: 4372
X-Firefox-Spdy: h2
www.e-legion.com/i/emoji/graduation-cap.svg
185.199.109.153200 OK 5.3 kB URL HTTP/2 www.e-legion.com/i/emoji/graduation-cap.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (915)
Hash 379edfb0d7ee820606360514b73fef9e
b95a367d502f46ed0e141e0d2456c8fc44437512
d27860782166c019076fcc2cdd5d286152737c17045d37601e1d7ea38bb76191
Analyzer Verdict Alert fortinet Phishing
GET /i/emoji/graduation-cap.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-9baf"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: D6C4:1CB9:1D8935D:1E6F490:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.350245,VS0,VE121
vary: Accept-Encoding
x-fastly-request-id: f3af898952e380e2cddc4d565cfd68104526df24
content-length: 5274
X-Firefox-Spdy: h2
www.e-legion.com/i/emoji/nerd.svg
185.199.109.153200 OK 4.9 kB URL HTTP/2 www.e-legion.com/i/emoji/nerd.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (648)
Hash c664fcbc4de59e2b6ca933926c257774
16e753ce58e2b8902e776ed7ea8a5a17a6c093d5
1afab2f3ad0ec9cabad3922e695532191628c90b2b7fbf056889343c30e04f16
Analyzer Verdict Alert fortinet Phishing
GET /i/emoji/nerd.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-7497"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: E3C4:4378:1498680:153CF8F:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.350297,VS0,VE123
vary: Accept-Encoding
x-fastly-request-id: cc68e3741eb6511b3c2d112eada197ef08b25727
content-length: 4900
X-Firefox-Spdy: h2
www.e-legion.com/app.min.js
185.199.109.153200 OK 38 kB URL HTTP/2 www.e-legion.com/app.min.js
IP 185.199.109.153:0
File type Unicode text, UTF-8 text, with very long lines (65523), with no line terminators
Hash c7f40ab54844895bf7ed7fe7626aebb7
53d51454bd2861a77979fc78e9de14e7a9c43ba9
7490c634d8342ef6597043a9acd370ca3a0da4c6736908438da0af72dbdda17c
Analyzer Verdict Alert fortinet Phishing
GET /app.min.js HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:07 GMT
access-control-allow-origin: *
etag: W/"62cd134b-1f310"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: DCAC:3380:1E3C846:1F279CC:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.358007,VS0,VE121
vary: Accept-Encoding
x-fastly-request-id: c7af4faef03a35183a4d97d52552f2c3c0d2e982
content-length: 37539
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/bmw/cover.png
185.199.109.153200 OK 80 kB URL HTTP/2 www.e-legion.com/i/projects/bmw/cover.png
IP 185.199.109.153:0
File type PNG image data, 416 x 416, 8-bit colormap, non-interlaced\012- data
Hash 96bf5cdd8009b33a84518a8270f6c934
13b920f9f8c282994f8c318918bffb137ee9b164
c186599179ecf5fd8ddec7febad65cccd20602cba83d1eb5e65e14fb7edf44da
GET /i/projects/bmw/cover.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:09 GMT
access-control-allow-origin: *
etag: "62cd134d-137a3"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 6B04:1CB9:1D89355:1E6F484:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.325112,VS0,VE165
vary: Accept-Encoding
x-fastly-request-id: b3cfd427ee1da7f7fb29c4794c63752a2411b2e4
content-length: 79779
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.e-legion.com/i/projects/jet-kid/cover.svg
185.199.109.153200 OK 889 B URL HTTP/2 www.e-legion.com/i/projects/jet-kid/cover.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1513)
Hash 529946e46fe8be8dc9f3f49787e82961
bb9c6956319c9669887a3c372c8f2c130d5b4abe
4ee52f8dc9e76efb9c092f6538fe688be997d5baf55a88a2496264647f91d61d
Analyzer Verdict Alert fortinet Phishing
GET /i/projects/jet-kid/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:09 GMT
access-control-allow-origin: *
etag: W/"62cd134d-662"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: CCE2:B926:12E113A:137159A:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.332546,VS0,VE184
vary: Accept-Encoding
x-fastly-request-id: e1b2fdb347c3c7342e39ef0bd9281ff2ddaa54d1
content-length: 889
X-Firefox-Spdy: h2
www.e-legion.com/i/logos/openprofession.svg
185.199.109.153200 OK 3.0 kB URL HTTP/2 www.e-legion.com/i/logos/openprofession.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (8058)
Hash 785674f362149d6e1baffe7bfd405750
c07217544406ed3da3dde97bee7fa1e7599f620f
e6ae0867d734ab56c5c7914ca043275a40c0aa4e0710cf2e3b65d6402d1b7112
Analyzer Verdict Alert fortinet Phishing
GET /i/logos/openprofession.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-1f7b"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 6B1A:A430:1D825A8:1E6CFB5:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.350405,VS0,VE178
vary: Accept-Encoding
x-fastly-request-id: e49056a42da6b8f5440138c9963aafc2e04a6929
content-length: 2978
X-Firefox-Spdy: h2
www.e-legion.com/i/logos/stepik.svg
185.199.109.153200 OK 1.2 kB URL HTTP/2 www.e-legion.com/i/logos/stepik.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2932)
Hash 42e618a72d36c647d82417664a5a8bd5
bd0761e4151b9e0f7102bfbf23a454c67468671c
1139f611ee4080b79280fc88ef38a99a41cf05cf3ed1594fa46a69fd23a27b49
Analyzer Verdict Alert fortinet Phishing
GET /i/logos/stepik.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-b75"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 6B1C:9054:51505B:542591:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.355742,VS0,VE180
vary: Accept-Encoding
x-fastly-request-id: 9ced7bd0ffd8efd9001cbb2c2dc5cc0e52810f51
content-length: 1225
X-Firefox-Spdy: h2
www.e-legion.com/i/emoji/student-female.svg
185.199.109.153200 OK 5.9 kB URL HTTP/2 www.e-legion.com/i/emoji/student-female.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (811)
Hash e49d32f82d4edcf6e6d256bd7c4c7536
9c2e352822f60e2104528b5470732b6e9c5b2459
65905365c52465181d50a00d03f0b12531dccac831ca25ec3fb48ae6291926dc
Analyzer Verdict Alert fortinet Phishing
GET /i/emoji/student-female.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-a5f1"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: C47C:3D7E:1E10151:1EFB0A6:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.350180,VS0,VE190
vary: Accept-Encoding
x-fastly-request-id: 0785d3646b330334581730f9046d873e3906297e
content-length: 5920
X-Firefox-Spdy: h2
www.e-legion.com/i/logos/coursera.svg
185.199.109.153200 OK 2.2 kB URL HTTP/2 www.e-legion.com/i/logos/coursera.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4314)
Hash 1a2e16e853e083ee71bbbf0801f875ce
6347f1791c029a1c28deff0f51b32d01b39758c7
2e787ee5c26cec315ab10b8be7183b4a97f783feb0e991f1f85f57cfb76afc38
Analyzer Verdict Alert fortinet Phishing
GET /i/logos/coursera.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-10db"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: CCF8:3D7E:1E10151:1EFB0A8:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.355479,VS0,VE188
vary: Accept-Encoding
x-fastly-request-id: 3d2a0bd10fab33946df10b1a7d9729737ae6357b
content-length: 2192
X-Firefox-Spdy: h2
www.e-legion.com/i/logos/dzsystems.svg
185.199.109.153200 OK 1.8 kB URL HTTP/2 www.e-legion.com/i/logos/dzsystems.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (5467), with no line terminators
Hash 4020597f278c7b25b70efd754a197e85
1cfe257a7a58ca5c7548d268fe808eb7c8893f1c
8a7e75aec6b164faec078077b519598be26e3c9c3092e6ecc544360d3a3b907e
Analyzer Verdict Alert fortinet Phishing
GET /i/logos/dzsystems.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-155b"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 7DE6:1CB9:1D89364:1E6F49D:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.356590,VS0,VE190
vary: Accept-Encoding
x-fastly-request-id: d15218dde0be463321662e3b8ea65ab6d948501e
content-length: 1789
X-Firefox-Spdy: h2
www.e-legion.com/fbq-events.min.js
185.199.109.153200 OK 858 B URL HTTP/2 www.e-legion.com/fbq-events.min.js
IP 185.199.109.153:0
File type ASCII text, with very long lines (1692), with no line terminators
Hash 5d2f2d863398df1b96f10ddf18ab356e
72586f207cb892b965929d5c0027648eaa662341
f11ef79690cf968a3f70875efa817b4973acfbe2f16a4d917fbb0becdb8dc9a6
Analyzer Verdict Alert fortinet Phishing
GET /fbq-events.min.js HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:07 GMT
access-control-allow-origin: *
etag: W/"62cd134b-69c"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: C482:5B1B:10EC91B:116F34C:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.359582,VS0,VE189
vary: Accept-Encoding
x-fastly-request-id: d4a852242500d637fca4b357f889e18f5cfb52d6
content-length: 858
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/auchan/cover.en.png
185.199.109.153200 OK 96 kB URL HTTP/2 www.e-legion.com/i/projects/auchan/cover.en.png
IP 185.199.109.153:0
File type PNG image data, 416 x 416, 8-bit/color RGBA, non-interlaced\012- data
Hash 4aa79ef37f77e34493d377017dba53c1
5f037bee194e792d5a73fd836b3ee1791f1d816a
5c51d8db7b4408fa4d8ce9ef420116d0313078d58d4c379f9fda3ab3e0034eda
GET /i/projects/auchan/cover.en.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: "62cd134c-177d0"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 0A22:5B1B:10EC914:116F347:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.330692,VS0,VE227
vary: Accept-Encoding
x-fastly-request-id: 811ba67e5b14063d3717deb3bb2f08ba78a55301
content-length: 96208
X-Firefox-Spdy: h2
www.e-legion.com/i/photos/events/mblt-dev.jpg
185.199.109.153200 OK 249 kB URL HTTP/2 www.e-legion.com/i/photos/events/mblt-dev.jpg
IP 185.199.109.153:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, baseline, precision 8, 832x400, components 3\012- data
Size 249 kB (249211 bytes)
Hash 4b31b666b198a59bbabc403eebeec094
ab34b96adf3d87a641493e872d9e4b94e0cc21f3
5dca781863db2fc5d08f150e2bfa7ee62a1b3de2aca1e4d957cf374d3741ea0c
GET /i/photos/events/mblt-dev.jpg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/jpeg
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: "62cd134c-3cd7b"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 6B18:3380:1E3C84D:1F279D2:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.350251,VS0,VE277
vary: Accept-Encoding
x-fastly-request-id: 4867fe792dd818d9ec4e7c466fe05cad94ab7ecf
content-length: 249211
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 11:11:15 GMT
cache-control: public,max-age=3600
age: 350
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6303
Cache-Control: max-age=171292
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:05 GMT
Etag: "6389c02e-1d7"
Expires: Sun, 04 Dec 2022 10:51:57 GMT
Last-Modified: Fri, 02 Dec 2022 09:06:54 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5fc12e7b1238ac24822e4fb1c1901d25
9b1c8ada64031145f956acfd8216a7d5dfe5528c
35c8c758d1555cf09b172c0d2e07ccc18110a10b8cd5e121005859e2a26daa1a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35C8C758D1555CF09B172C0D2E07CCC18110A10B8CD5E121005859E2A26DAA1A"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8411
Expires: Fri, 02 Dec 2022 13:37:16 GMT
Date: Fri, 02 Dec 2022 11:17:05 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
prostor-lite.ru/gtm/?crmid=87467&callback=p_conf_callback.p_func461267
77.244.216.45200 OK 651 B URL HTTP/1.1 prostor-lite.ru/gtm/?crmid=87467&callback=p_conf_callback.p_func461267
IP 77.244.216.45:0
ASN #49505 OOO Network of data-centers Selectel
File type ASCII text, with very long lines (2007), with no line terminators
Hash eb66cc40f21aadb1974f4e941af8e65e
1a937c105c2a4f5b2cf2b695cfcefd661fac19f7
82823c3836c571566cdc6ed12029a5004df5bbea065b779754e346f8c0339a71
GET /gtm/?crmid=87467&callback=p_conf_callback.p_func461267 HTTP/1.1
Host: prostor-lite.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 11:17:06 GMT
Server: Apache/2.4.38 (Debian)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 651
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 16:40:18 GMT
expires: Fri, 01 Dec 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 67008
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2
142.250.74.163200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 21276, version 1.0\012- data
Hash 59c9b83cc112cf7eeb3bf7a5e96b21fe
771790b776b5e1bc3039c337024e400974184208
a8447cdec51e85d9e93971a0d4a53bcf6085d70bf1d201662837d2fb953422c7
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21276
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 18:57:47 GMT
expires: Thu, 30 Nov 2023 18:57:47 GMT
cache-control: public, max-age=31536000
age: 145159
last-modified: Mon, 11 Jul 2022 19:01:17 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.e-legion.com/i/icons/support.svg
185.199.109.153200 OK 1.3 kB URL HTTP/2 www.e-legion.com/i/icons/support.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2740)
Hash 62600f20b659af7acebda58198b0c1b8
a6f2b9618f2b494e0e57f60575f1341ff79180e1
33fb42d64448ff6d6382fe0003196e03a351de5e028d969352c1ceede17244f7
Analyzer Verdict Alert fortinet Phishing
GET /i/icons/support.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/app.min.css
Cookie: pclick_entry=eyJpZCI6IjE2Njk5Nzk4MjQwNzguODUzMzkiLCJyZWZlcnJlciI6IiIsImZpcnN0X3VybCI6Imh0dHBzOi8vd3d3LmUtbGVnaW9uLmNvbSIsImZpcnN0X3JlZmVyZXIiOiIiLCJ1cmwiOiJodHRwczovL3d3dy5lLWxlZ2lvbi5jb20iLCJzb3VyY2UiOiJkaXJlY3QiLCJ1bmlxdWVfaWQiOiIxNjY5OTc5ODI0MDc4Ljg2MTk5IiwiY3JtaWQiOiI4NzQ2NyIsImVudGVycyI6eyJjbnQiOltdLCJvdGhlciI6W3siaWQiOiIxNjY5OTc5ODI0MDc4Ljg1MzM5IiwidXJsIjoiaHR0cHM6Ly93d3cuZS1sZWdpb24uY29tLyIsInJlZmVycmVyIjoiIn1dfX0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-b10"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 8C72:727E:1D85730:1E700C9:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:06 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979826.941228,VS0,VE107
vary: Accept-Encoding
x-fastly-request-id: 1271b6b00e9e6d04f674fdeb5caeb7680d8632a3
content-length: 1268
X-Firefox-Spdy: h2
www.e-legion.com/i/icons/design.svg
185.199.109.153200 OK 645 B URL HTTP/2 www.e-legion.com/i/icons/design.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1214)
Hash 8a2994cce298d90a47b45068b1f2caf3
19f38c3c85c78bb5d48184f0f9aad17e31cf6925
7ce59f920a35f70976051fb0d3e3a18e9aa876589f1472975732cd60bdd62df8
Analyzer Verdict Alert fortinet Phishing
GET /i/icons/design.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/app.min.css
Cookie: pclick_entry=eyJpZCI6IjE2Njk5Nzk4MjQwNzguODUzMzkiLCJyZWZlcnJlciI6IiIsImZpcnN0X3VybCI6Imh0dHBzOi8vd3d3LmUtbGVnaW9uLmNvbSIsImZpcnN0X3JlZmVyZXIiOiIiLCJ1cmwiOiJodHRwczovL3d3dy5lLWxlZ2lvbi5jb20iLCJzb3VyY2UiOiJkaXJlY3QiLCJ1bmlxdWVfaWQiOiIxNjY5OTc5ODI0MDc4Ljg2MTk5IiwiY3JtaWQiOiI4NzQ2NyIsImVudGVycyI6eyJjbnQiOltdLCJvdGhlciI6W3siaWQiOiIxNjY5OTc5ODI0MDc4Ljg1MzM5IiwidXJsIjoiaHR0cHM6Ly93d3cuZS1sZWdpb24uY29tLyIsInJlZmVycmVyIjoiIn1dfX0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-51a"
expires: Fri, 02 Dec 2022 11:27:06 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 2E6E:EF76:14B6B80:155F255:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:06 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979826.938966,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: 643e8ef543ae25483fb78b698954eee0e62b8337
content-length: 645
X-Firefox-Spdy: h2
www.e-legion.com/i/icons/reload.svg
185.199.109.153200 OK 333 B URL HTTP/2 www.e-legion.com/i/icons/reload.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (412)
Hash 51e9dec496e1261cded613bf3b405576
83756d1af396c3585cdea49c11e5ddc59848bc43
bfdda60b45d0ba6b3332f9c25625a84c48cee068d03103d3bc4f063350fc071c
Analyzer Verdict Alert fortinet Phishing
GET /i/icons/reload.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/app.min.css
Cookie: pclick_entry=eyJpZCI6IjE2Njk5Nzk4MjQwNzguODUzMzkiLCJyZWZlcnJlciI6IiIsImZpcnN0X3VybCI6Imh0dHBzOi8vd3d3LmUtbGVnaW9uLmNvbSIsImZpcnN0X3JlZmVyZXIiOiIiLCJ1cmwiOiJodHRwczovL3d3dy5lLWxlZ2lvbi5jb20iLCJzb3VyY2UiOiJkaXJlY3QiLCJ1bmlxdWVfaWQiOiIxNjY5OTc5ODI0MDc4Ljg2MTk5IiwiY3JtaWQiOiI4NzQ2NyIsImVudGVycyI6eyJjbnQiOltdLCJvdGhlciI6W3siaWQiOiIxNjY5OTc5ODI0MDc4Ljg1MzM5IiwidXJsIjoiaHR0cHM6Ly93d3cuZS1sZWdpb24uY29tLyIsInJlZmVycmVyIjoiIn1dfX0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-1f8"
expires: Fri, 02 Dec 2022 11:27:06 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 1C1E:0EBC:192A205:19EBBBC:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:06 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979826.942307,VS0,VE113
vary: Accept-Encoding
x-fastly-request-id: 888c886af9b38249eececba27e1162c7a1c7c759
content-length: 333
X-Firefox-Spdy: h2
www.e-legion.com/i/bg/achievements.svg
185.199.109.153200 OK 3.3 kB URL HTTP/2 www.e-legion.com/i/bg/achievements.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6548)
Hash e71f821956b6e361b66eb1b347d1fcac
3e5c9fde3ecc614cbbc586262f213dd4633bc1d8
4acd47f1863c5bb62ba8f020ea0a88608b6e3d0e5834d72ab03dc2c7e64d8105
Analyzer Verdict Alert fortinet Phishing
GET /i/bg/achievements.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/app.min.css
Cookie: pclick_entry=eyJpZCI6IjE2Njk5Nzk4MjQwNzguODUzMzkiLCJyZWZlcnJlciI6IiIsImZpcnN0X3VybCI6Imh0dHBzOi8vd3d3LmUtbGVnaW9uLmNvbSIsImZpcnN0X3JlZmVyZXIiOiIiLCJ1cmwiOiJodHRwczovL3d3dy5lLWxlZ2lvbi5jb20iLCJzb3VyY2UiOiJkaXJlY3QiLCJ1bmlxdWVfaWQiOiIxNjY5OTc5ODI0MDc4Ljg2MTk5IiwiY3JtaWQiOiI4NzQ2NyIsImVudGVycyI6eyJjbnQiOltdLCJvdGhlciI6W3siaWQiOiIxNjY5OTc5ODI0MDc4Ljg1MzM5IiwidXJsIjoiaHR0cHM6Ly93d3cuZS1sZWdpb24uY29tLyIsInJlZmVycmVyIjoiIn1dfX0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:07 GMT
access-control-allow-origin: *
etag: W/"62cd134b-19f4"
expires: Fri, 02 Dec 2022 11:27:06 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 3CB0:1CB9:1D893B6:1E6F4E3:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:06 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979826.941668,VS0,VE114
vary: Accept-Encoding
x-fastly-request-id: 93db71a03255564014100ea86f00ff810374b570
content-length: 3294
X-Firefox-Spdy: h2
www.e-legion.com/i/icons/analytics.svg
185.199.109.153200 OK 644 B URL HTTP/2 www.e-legion.com/i/icons/analytics.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1328)
Hash c9a0604f195fb1e784eacbc9f4ae274a
91059cdf4fa7b53dc17a405e84a8d8f70c00bdc0
4e2536a85f6f87aaf5df179d56e578f3e85b06d2809a8162d7a53316645f648f
Analyzer Verdict Alert fortinet Phishing
GET /i/icons/analytics.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/app.min.css
Cookie: pclick_entry=eyJpZCI6IjE2Njk5Nzk4MjQwNzguODUzMzkiLCJyZWZlcnJlciI6IiIsImZpcnN0X3VybCI6Imh0dHBzOi8vd3d3LmUtbGVnaW9uLmNvbSIsImZpcnN0X3JlZmVyZXIiOiIiLCJ1cmwiOiJodHRwczovL3d3dy5lLWxlZ2lvbi5jb20iLCJzb3VyY2UiOiJkaXJlY3QiLCJ1bmlxdWVfaWQiOiIxNjY5OTc5ODI0MDc4Ljg2MTk5IiwiY3JtaWQiOiI4NzQ2NyIsImVudGVycyI6eyJjbnQiOltdLCJvdGhlciI6W3siaWQiOiIxNjY5OTc5ODI0MDc4Ljg1MzM5IiwidXJsIjoiaHR0cHM6Ly93d3cuZS1sZWdpb24uY29tLyIsInJlZmVycmVyIjoiIn1dfX0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-58c"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 2D1A:BE7B:722148:75BC9F:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:06 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979826.937699,VS0,VE119
vary: Accept-Encoding
x-fastly-request-id: c5490f3440e08de4bf522f056289dafc7467ee6d
content-length: 644
X-Firefox-Spdy: h2
www.e-legion.com/i/logos/usabilitylab.svg
185.199.109.153200 OK 464 B URL HTTP/2 www.e-legion.com/i/logos/usabilitylab.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1180)
Hash ea0077359ee46b3518a24221f88fea8a
ba4a58ab9c02d8243637c1c1a0fbdc98cef99f43
0cbefeb3645163997d7a77826643247863ef0824437d0da37c09d3152380e6cd
Analyzer Verdict Alert fortinet Phishing
GET /i/logos/usabilitylab.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-18d6"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 8A32:9518:1DF40EB:1EDEC3D:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.357772,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: d889d1989fd91da2697339f37f2d0126f70c1e62
content-length: 2763
X-Firefox-Spdy: h2
www.e-legion.com/i/icons/testing.svg
185.199.109.153200 OK 861 B URL HTTP/2 www.e-legion.com/i/icons/testing.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1550)
Hash ea062613a71b8ca32023e5d57cb9beb7
5116abdb4abb0d7d4dbb372affe25bfbf7a3142c
c64651b83982da0dff69c84b8fc39bd85af194aaa9ed70b5c4b5042f49cbefac
Analyzer Verdict Alert fortinet Phishing
GET /i/icons/testing.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/app.min.css
Cookie: pclick_entry=eyJpZCI6IjE2Njk5Nzk4MjQwNzguODUzMzkiLCJyZWZlcnJlciI6IiIsImZpcnN0X3VybCI6Imh0dHBzOi8vd3d3LmUtbGVnaW9uLmNvbSIsImZpcnN0X3JlZmVyZXIiOiIiLCJ1cmwiOiJodHRwczovL3d3dy5lLWxlZ2lvbi5jb20iLCJzb3VyY2UiOiJkaXJlY3QiLCJ1bmlxdWVfaWQiOiIxNjY5OTc5ODI0MDc4Ljg2MTk5IiwiY3JtaWQiOiI4NzQ2NyIsImVudGVycyI6eyJjbnQiOltdLCJvdGhlciI6W3siaWQiOiIxNjY5OTc5ODI0MDc4Ljg1MzM5IiwidXJsIjoiaHR0cHM6Ly93d3cuZS1sZWdpb24uY29tLyIsInJlZmVycmVyIjoiIn1dfX0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-66a"
expires: Fri, 02 Dec 2022 11:27:06 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: C38C:0EBC:192A205:19EBBBB:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:06 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979826.940294,VS0,VE119
vary: Accept-Encoding
x-fastly-request-id: ae51e7038a1ed2083c5637394e088c8553bb5619
content-length: 861
X-Firefox-Spdy: h2
www.e-legion.com/i/icons/development.svg
185.199.109.153200 OK 961 B URL HTTP/2 www.e-legion.com/i/icons/development.svg
IP 185.199.109.153:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1912)
Hash 79962775ca98bc9e1966651a186719fb
8083614abfc38a28e63694f77c698ce91060ea37
26ff89a082c4da745f1d90d8468db3b78a513bef94714c5fcc178c93d859c30e
Analyzer Verdict Alert fortinet Phishing
GET /i/icons/development.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/app.min.css
Cookie: pclick_entry=eyJpZCI6IjE2Njk5Nzk4MjQwNzguODUzMzkiLCJyZWZlcnJlciI6IiIsImZpcnN0X3VybCI6Imh0dHBzOi8vd3d3LmUtbGVnaW9uLmNvbSIsImZpcnN0X3JlZmVyZXIiOiIiLCJ1cmwiOiJodHRwczovL3d3dy5lLWxlZ2lvbi5jb20iLCJzb3VyY2UiOiJkaXJlY3QiLCJ1bmlxdWVfaWQiOiIxNjY5OTc5ODI0MDc4Ljg2MTk5IiwiY3JtaWQiOiI4NzQ2NyIsImVudGVycyI6eyJjbnQiOltdLCJvdGhlciI6W3siaWQiOiIxNjY5OTc5ODI0MDc4Ljg1MzM5IiwidXJsIjoiaHR0cHM6Ly93d3cuZS1sZWdpb24uY29tLyIsInJlZmVycmVyIjoiIn1dfX0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-7d4"
expires: Fri, 02 Dec 2022 11:27:06 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: EAFC:3380:1E3C892:1F27A1B:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:06 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979826.939645,VS0,VE133
vary: Accept-Encoding
x-fastly-request-id: 77ee5e341abb0736c2e2777291c5a731a207c27a
content-length: 961
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 02 Dec 2022 10:41:08 GMT
expires: Fri, 02 Dec 2022 12:41:08 GMT
cache-control: public, max-age=7200
age: 2158
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.213.140.56101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.213.140.56:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: p4y/vGJM7M0LUgHWuyGX1A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: LdQjjee6aTE93XBeOxYS/V6P63c=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/null/?random=1669979824347&cv=11&fst=1669979824347&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.e-legion.com%2F&tiba=e-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&rfmt=3&fmt=4
142.250.74.66200 OK 915 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/null/?random=1669979824347&cv=11&fst=1669979824347&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.e-legion.com%2F&tiba=e-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&rfmt=3&fmt=4
IP 142.250.74.66:0
File type ASCII text, with very long lines (2019), with no line terminators
Hash 12ef8530ae37fb37424078dbf787f334
24ef480e21ceda371c85962e28775a1eb68482bf
fc1d5b1b1c818771b0e6365e5a5cd65cf5a5d3a68f487083b399670b718f8ccd
GET /pagead/viewthroughconversion/null/?random=1669979824347&cv=11&fst=1669979824347&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.e-legion.com%2F&tiba=e-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 11:17:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 915
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 02-Dec-2022 11:32:06 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 4f7b75a7521bf1d98f26d3e555f51a00
3efe85a63e714bf753337820b3d48cac22723277
19dbcdf6f4ad3716cde0e20b6777446db44ac823d3fcf9f4d698785b8969bb18
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 11:17:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Tue, 06 Dec 2022 07:38:59 GMT
ETag: "3efe85a63e714bf753337820b3d48cac22723277"
Last-Modified: Fri, 02 Dec 2022 07:39:00 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1401
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7733a779cca80b59-OSL
www.e-legion.com/apple-touch-icon.png
185.199.109.153200 OK 1.3 kB URL HTTP/2 www.e-legion.com/apple-touch-icon.png
IP 185.199.109.153:0
File type PNG image data, 180 x 180, 4-bit colormap, non-interlaced\012- data
Hash ddf12ed4d87dfc13a0d8fe94d2ed3313
5677b0ab54754ee7525f0621fcdefaf93d9d5e84
025728f57cb5076c50e5df4ca2f719fa507093e7bd1dbbf4d3170a78396e11a1
GET /apple-touch-icon.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Cookie: pclick_entry=eyJpZCI6IjE2Njk5Nzk4MjQwNzguODUzMzkiLCJyZWZlcnJlciI6IiIsImZpcnN0X3VybCI6Imh0dHBzOi8vd3d3LmUtbGVnaW9uLmNvbSIsImZpcnN0X3JlZmVyZXIiOiIiLCJ1cmwiOiJodHRwczovL3d3dy5lLWxlZ2lvbi5jb20iLCJzb3VyY2UiOiJkaXJlY3QiLCJ1bmlxdWVfaWQiOiIxNjY5OTc5ODI0MDc4Ljg2MTk5IiwiY3JtaWQiOiI4NzQ2NyIsImVudGVycyI6eyJjbnQiOltdLCJvdGhlciI6W3siaWQiOiIxNjY5OTc5ODI0MDc4Ljg1MzM5IiwidXJsIjoiaHR0cHM6Ly93d3cuZS1sZWdpb24uY29tLyIsInJlZmVycmVyIjoiIn1dfX0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:07 GMT
access-control-allow-origin: *
etag: "62cd134b-503"
expires: Fri, 02 Dec 2022 11:27:06 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 8A3A:A430:1D82615:1E6D022:6389DEB2
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:06 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979826.117266,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: 808dfaf363ea200425dc65e595cadd2b3e2fd31e
content-length: 1283
X-Firefox-Spdy: h2
www.e-legion.com/favicon-16x16.png
185.199.109.153200 OK 406 B URL HTTP/2 www.e-legion.com/favicon-16x16.png
IP 185.199.109.153:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 61f77fb9e0694be22720ec4577ba7c38
4672282b3264546d78f537f461a9e5f22a8afff6
a8dfdeeed37e6365bb79e669319c31184fe423bf9a82e9da4d9623d2f9d900cd
GET /favicon-16x16.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Cookie: pclick_entry=eyJpZCI6IjE2Njk5Nzk4MjQwNzguODUzMzkiLCJyZWZlcnJlciI6IiIsImZpcnN0X3VybCI6Imh0dHBzOi8vd3d3LmUtbGVnaW9uLmNvbSIsImZpcnN0X3JlZmVyZXIiOiIiLCJ1cmwiOiJodHRwczovL3d3dy5lLWxlZ2lvbi5jb20iLCJzb3VyY2UiOiJkaXJlY3QiLCJ1bmlxdWVfaWQiOiIxNjY5OTc5ODI0MDc4Ljg2MTk5IiwiY3JtaWQiOiI4NzQ2NyIsImVudGVycyI6eyJjbnQiOltdLCJvdGhlciI6W3siaWQiOiIxNjY5OTc5ODI0MDc4Ljg1MzM5IiwidXJsIjoiaHR0cHM6Ly93d3cuZS1sZWdpb24uY29tLyIsInJlZmVycmVyIjoiIn1dfX0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:07 GMT
access-control-allow-origin: *
etag: "62cd134b-196"
expires: Fri, 02 Dec 2022 11:27:06 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: D6D4:4378:14986E8:153CFF7:6389DEB2
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:06 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979826.117815,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: 999e6e711b9f056f99dbfff9210bc6c2addafb19
content-length: 406
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 35bb7a420a0144fa68e64b20d2aa8cec
bb03a3032a03b0eb4c399d055984b45b39a29066
3a3b41b66d3de67b69a0bf4a4decbdfff593f6310b120fd30d036c7110e47e6c
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 11:17:06 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Tue, 06 Dec 2022 08:18:55 GMT
ETag: "bb03a3032a03b0eb4c399d055984b45b39a29066"
Last-Modified: Fri, 02 Dec 2022 08:18:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 208
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7733a77a298bb511-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 35bb7a420a0144fa68e64b20d2aa8cec
bb03a3032a03b0eb4c399d055984b45b39a29066
3a3b41b66d3de67b69a0bf4a4decbdfff593f6310b120fd30d036c7110e47e6c
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 11:17:06 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Tue, 06 Dec 2022 08:18:55 GMT
ETag: "bb03a3032a03b0eb4c399d055984b45b39a29066"
Last-Modified: Fri, 02 Dec 2022 08:18:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 208
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7733a77a2b88b524-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vk.com/js/api/openapi.js?159
87.240.132.67200 OK 23 kB URL HTTP/2 vk.com/js/api/openapi.js?159
IP 87.240.132.67:0
File type ASCII text, with very long lines (3849)
Hash 6b56e2aa629cc5f334bba9e200af3bfe
1e99707868f45c499400d95e75348c3d7b7686f5
7cb4aa1277e9f29f5c6d21c642b7c08cfce199332e30395c20995847a0db3fab
GET /js/api/openapi.js?159 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Fri, 02 Dec 2022 11:17:06 GMT
content-type: application/x-javascript
content-length: 23318
last-modified: Fri, 02 Dec 2022 07:14:40 GMT
etag: "6389a5e0-5b16"
content-encoding: br
expires: Tue, 06 Dec 2022 11:17:06 GMT
cache-control: max-age=345600
x-frontend: front220004
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-72713940-1&cid=1466973938.1669979824&jid=731298877&gjid=177297762&_gid=1101758711.1669979824&_u=YGDAgEABAAAAAGAAI~&z=1050694606
64.233.164.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-72713940-1&cid=1466973938.1669979824&jid=731298877&gjid=177297762&_gid=1101758711.1669979824&_u=YGDAgEABAAAAAGAAI~&z=1050694606
IP 64.233.164.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-72713940-1&cid=1466973938.1669979824&jid=731298877&gjid=177297762&_gid=1101758711.1669979824&_u=YGDAgEABAAAAAGAAI~&z=1050694606 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.e-legion.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 02 Dec 2022 11:17:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
vk.com/rtrg?p=VK-RTRG-273773-19LoV&metatag_url=https%3A%2F%2Fwww.e-legion.com%2F&metatag_title=Mobile%20App%20Development%2C%20Design%2C%20Analytics%2C%20QA%20testing%20for%20iOS%20%26%20Android
87.240.132.67200 OK 65 B URL HTTP/2 vk.com/rtrg?p=VK-RTRG-273773-19LoV&metatag_url=https%3A%2F%2Fwww.e-legion.com%2F&metatag_title=Mobile%20App%20Development%2C%20Design%2C%20Analytics%2C%20QA%20testing%20for%20iOS%20%26%20Android
IP 87.240.132.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ec4341fe3a8b2c4880fbfe0ef9cde34f
a0947414eb426b2939ca1a05fc870763f6bfc63f
01229c58f8015c623259e635969b8520945e2e0de1927a1375d48ad0ce915463
GET /rtrg?p=VK-RTRG-273773-19LoV&metatag_url=https%3A%2F%2Fwww.e-legion.com%2F&metatag_title=Mobile%20App%20Development%2C%20Design%2C%20Analytics%2C%20QA%20testing%20for%20iOS%20%26%20Android HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Fri, 02 Dec 2022 11:17:06 GMT
content-type: image/gif
content-length: 65
x-powered-by: KPHP/7.4.112788
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Sat, 09 Dec 2023 03:54:08 GMT; path=/; domain=.vk.com
remixstlid=9061328978894778436_8VmX9HOyuziRGqUrpk93BZVUwrbZHhD12brE5e040B4; expires=Sat, 02 Dec 2023 11:17:06 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
content-encoding: gzip
x-frontend: front220004
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 315873c315af2be891e63f8b421bae65
5277bb0c4fea2b036c6faf28d66395c96166ffd2
3f6657d352a42f8257409f2ed365a3fb928ac3eb74a34a2c74a433290182cc92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-72713940-1&cid=1466973938.1669979824&jid=731298877&_u=YGDAgEABAAAAAGAAI~&z=96948623
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-72713940-1&cid=1466973938.1669979824&jid=731298877&_u=YGDAgEABAAAAAGAAI~&z=96948623
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-72713940-1&cid=1466973938.1669979824&jid=731298877&_u=YGDAgEABAAAAAGAAI~&z=96948623 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 11:17:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/null/?random=1669979824347&cv=11&fst=1669978800000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.e-legion.com%2F&tiba=e-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&fmt=3&is_vtc=1&random=458638667&rmt_tld=1&ipr=y
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/null/?random=1669979824347&cv=11&fst=1669978800000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.e-legion.com%2F&tiba=e-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&fmt=3&is_vtc=1&random=458638667&rmt_tld=1&ipr=y
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/null/?random=1669979824347&cv=11&fst=1669978800000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.e-legion.com%2F&tiba=e-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&fmt=3&is_vtc=1&random=458638667&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 11:17:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-72713940-1&cid=1466973938.1669979824&jid=731298877&_u=YGDAgEABAAAAAGAAI~&z=96948623
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-72713940-1&cid=1466973938.1669979824&jid=731298877&_u=YGDAgEABAAAAAGAAI~&z=96948623
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-72713940-1&cid=1466973938.1669979824&jid=731298877&_u=YGDAgEABAAAAAGAAI~&z=96948623 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 11:17:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/null/?random=1669979824347&cv=11&fst=1669978800000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.e-legion.com%2F&tiba=e-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&fmt=3&is_vtc=1&random=458638667&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/null/?random=1669979824347&cv=11&fst=1669978800000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.e-legion.com%2F&tiba=e-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&fmt=3&is_vtc=1&random=458638667&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/null/?random=1669979824347&cv=11&fst=1669978800000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.e-legion.com%2F&tiba=e-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&fmt=3&is_vtc=1&random=458638667&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 11:17:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.yandex.ru/metrika/tag.js
93.158.134.119200 OK 73 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 93.158.134.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (586)
Hash a4567a1e52f99c2b3870f58375ec8cac
dbfc795e71fc19f7e45e8637abc4ac770f639a48
2b13b5716855040bd9a08972b0e61369e50c6daa402ed937e18f6795f82429c8
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73266
date: Fri, 02 Dec 2022 11:17:06 GMT
access-control-allow-origin: *
etag: "6388ac0c-11e32"
expires: Fri, 02 Dec 2022 12:17:06 GMT
last-modified: Thu, 01 Dec 2022 16:28:44 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/25789676?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A1%3Adp%3A0%3Als%3A1402572172566%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A184824109%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
93.158.134.119302 Found 407 B URL HTTP/2 mc.yandex.ru/watch/25789676?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A1%3Adp%3A0%3Als%3A1402572172566%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A184824109%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP 93.158.134.119:0
File type JSON data\012- , ASCII text, with very long lines (407), with no line terminators
Hash 6e94587a16aa497dc1858cbaf5b7f0d9
4e8abfda65f338b45c9881741326511bdf01253a
be58c1d7d19c8554ce370f352d247b3ca11a4eded052e0497876c64219d8236c
GET /watch/25789676?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A1%3Adp%3A0%3Als%3A1402572172566%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A184824109%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/25789676/1?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A1%3Adp%3A0%3Als%3A1402572172566%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A184824109%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Fri, 02 Dec 2022 11:17:06 GMT
access-control-allow-origin: https://www.e-legion.com
set-cookie: yabs-sid=1419740281669979826; Path=/; SameSite=None; Secure
i=q+8SCDWQDYe8u6jWRM3YjqldfsheIhHj2/mEZ1KdcyK2mzlfySp7XWorw922oD6NZj8X3kuzZ5+zkyw9S04k534JXzY=; Expires=Mon, 29-Nov-2032 11:17:05 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=9086354511669979826; Expires=Sat, 02-Dec-2023 11:17:06 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=9086354511669979826; Expires=Sat, 02-Dec-2023 11:17:06 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1701515826.yc.1669979826#1701515826.yrts.1669979826#1701515826.yrtsi.1669979826; Expires=Sat, 02-Dec-2023 11:17:06 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Dec-2022 11:17:06 GMT
last-modified: Fri, 02-Dec-2022 11:17:06 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/25789676/1?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A1%3Adp%3A0%3Als%3A1402572172566%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A184824109%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
93.158.134.119200 OK 426 B URL HTTP/2 mc.yandex.ru/watch/25789676/1?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A1%3Adp%3A0%3Als%3A1402572172566%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A184824109%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP 93.158.134.119:0
File type JSON data\012- , ASCII text, with very long lines (426), with no line terminators
Hash 1a11170a61b6a87c4a38b64a07f8b597
17fcd35f4cf53749490c4780ebc0158b61ed677e
650969d893e40d1e58b7552d0ab51b1e2e506a65d52a95ba0118e846f0aab05a
GET /watch/25789676/1?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A1%3Adp%3A0%3Als%3A1402572172566%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A184824109%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.e-legion.com
Referer: https://www.e-legion.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 426
date: Fri, 02 Dec 2022 11:17:06 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://www.e-legion.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Dec-2022 11:17:06 GMT
last-modified: Fri, 02-Dec-2022 11:17:06 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
93.158.134.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 93.158.134.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 02 Dec 2022 11:17:06 GMT
access-control-allow-origin: *
etag: "6388ac0c-2b"
expires: Fri, 02 Dec 2022 12:17:06 GMT
accept-ranges: bytes
last-modified: Thu, 01 Dec 2022 16:28:44 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7772
Expires: Fri, 02 Dec 2022 13:26:39 GMT
Date: Fri, 02 Dec 2022 11:17:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7772
Expires: Fri, 02 Dec 2022 13:26:39 GMT
Date: Fri, 02 Dec 2022 11:17:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7772
Expires: Fri, 02 Dec 2022 13:26:39 GMT
Date: Fri, 02 Dec 2022 11:17:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7772
Expires: Fri, 02 Dec 2022 13:26:39 GMT
Date: Fri, 02 Dec 2022 11:17:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7772
Expires: Fri, 02 Dec 2022 13:26:39 GMT
Date: Fri, 02 Dec 2022 11:17:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 00:54:54 GMT
age: 37333
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: ad2d9243-5e32-4faf-8ff3-b9abd3af1e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb1_hEJJIAMF4Vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387d063-596f5833509112ee6cbedf54;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:51:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jM-fTqLsmU3c_gc9Wle-lvCwXelA9Sid9axtzJQDsfOHv23yUbKsBw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 23:43:28 GMT
age: 41619
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1c80b8025242ddfcc816ec612456b99e
aa944d10fe4a44b790b01ef62edc0f85a6d558e3
a9f060bc15738a3fe257e0c81a29e4611a89c273bcbb2765ce856d4e854a5f1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11402
x-amzn-requestid: 20c2c359-1e43-40c0-885d-1c90e76ea12b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGzJHu-IAMFbYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e7a-1d89722e767daa014b174a39;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OJBnbjJB_kvPuJcePGnno3zI0CTWAzV-Osb2L1hPZZhlNYhFHWmLsA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:51:33 GMT
etag: "aa944d10fe4a44b790b01ef62edc0f85a6d558e3"
content-type: image/jpeg
age: 48334
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb8ec880-52b8-4350-bb47-d051878e78f1.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb8ec880-52b8-4350-bb47-d051878e78f1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 25c68d8b1fae82820f93efca500fd848
45cf5e1a54ee491497ffe08a8e39fe97ba3c8a48
f0ec6b6f6ba0a931c9b71f5bc7ad1e5b89c8e4d8b7441f35eeebfba418d0e588
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb8ec880-52b8-4350-bb47-d051878e78f1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6882
x-amzn-requestid: 6b5f15a5-c15b-46bf-9fd5-5d013d37a0eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGfrG3WIAMFc9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891dfd-6038ca700dfb4489230c2683;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2O6x-8-ESFDtlhcjVyGxEXCZcLbbfhsCVQeX02lbNMupPWmM-fKuLA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:47:56 GMT
age: 48551
etag: "45cf5e1a54ee491497ffe08a8e39fe97ba3c8a48"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 156e9ea97b774cbd8361072e4041b6c8
fc71ae3cae92ed6011904bb2367f23bf4e69fab4
58d953c19ebbbdfc3965bbe3f52308d4702deaf4d0c029f4674bcb862da138af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8863
x-amzn-requestid: 798d014b-0f9c-4787-a676-8f5e8fae3d11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdG14HBNIAMFdWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851bf-7549feac6d476a8512676412;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cgj3fw3lpngosMNOK7cZUZO94T__4RTy_p7wa6rI62OOvhI5E9wMSw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 13:30:28 GMT
age: 78399
etag: "fc71ae3cae92ed6011904bb2367f23bf4e69fab4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb2cfbf1-2aef-40a6-97e1-99a756e32924.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb2cfbf1-2aef-40a6-97e1-99a756e32924.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 16a112f00456d38c4c9e051ccf40e105
8fe32fffe672f0e91ce773af0e4be960f55bad08
43517bbcd17ec6d05d09a4c0d183610acdc7e2fa4767cb786cb8b936d5f44402
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb2cfbf1-2aef-40a6-97e1-99a756e32924.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13461
x-amzn-requestid: 8c0121a6-cf29-4cd0-bd42-d9f67af62b84
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQsyGhGoAMF1-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c7eb-593f28367320530e2dcafbfb;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:03:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fY7pkaeRu9vdWa68sWrtGxp2BkC9lZhbJ1cgGWap2H8y1zXUxKT6zA==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 05:08:22 GMT
age: 22125
etag: "8fe32fffe672f0e91ce773af0e4be960f55bad08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/25789676?wmode=0&wv-part=1&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=50520773&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1669979828%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111708%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979828&t=gdpr(14)ti(2)
93.158.134.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/25789676?wmode=0&wv-part=1&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=50520773&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1669979828%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111708%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979828&t=gdpr(14)ti(2)
IP 93.158.134.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/25789676?wmode=0&wv-part=1&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=50520773&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1669979828%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111708%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979828&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 156791
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 02 Dec 2022 11:17:10 GMT
access-control-allow-origin: https://www.e-legion.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Dec-2022 11:17:10 GMT
last-modified: Fri, 02-Dec-2022 11:17:10 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/25789676?wmode=0&wv-part=1&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=846255998&wv-type=3&browser-info=we%3A1%3Aet%3A1669979828%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111708%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979828&t=gdpr(14)ti(2)
93.158.134.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/25789676?wmode=0&wv-part=1&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=846255998&wv-type=3&browser-info=we%3A1%3Aet%3A1669979828%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111708%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979828&t=gdpr(14)ti(2)
IP 93.158.134.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/25789676?wmode=0&wv-part=1&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=846255998&wv-type=3&browser-info=we%3A1%3Aet%3A1669979828%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111708%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979828&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 02 Dec 2022 11:17:10 GMT
access-control-allow-origin: https://www.e-legion.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Dec-2022 11:17:10 GMT
last-modified: Fri, 02-Dec-2022 11:17:10 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/25789676?wv-check=61152&wv-type=0&wmode=0&wv-part=1&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=686187975&browser-info=we%3A1%3Aet%3A1669979832%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111711%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979832&t=gdpr(14)ti(2)
93.158.134.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/25789676?wv-check=61152&wv-type=0&wmode=0&wv-part=1&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=686187975&browser-info=we%3A1%3Aet%3A1669979832%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111711%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979832&t=gdpr(14)ti(2)
IP 93.158.134.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/25789676?wv-check=61152&wv-type=0&wmode=0&wv-part=1&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=686187975&browser-info=we%3A1%3Aet%3A1669979832%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111711%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979832&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 02 Dec 2022 11:17:13 GMT
access-control-allow-origin: https://www.e-legion.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Dec-2022 11:17:13 GMT
last-modified: Fri, 02-Dec-2022 11:17:13 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/25789676?wmode=0&wv-part=2&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=106624346&wv-type=3&browser-info=we%3A1%3Aet%3A1669979832%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111711%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979832&t=gdpr(14)ti(2)
93.158.134.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/25789676?wmode=0&wv-part=2&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=106624346&wv-type=3&browser-info=we%3A1%3Aet%3A1669979832%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111711%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979832&t=gdpr(14)ti(2)
IP 93.158.134.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/25789676?wmode=0&wv-part=2&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=106624346&wv-type=3&browser-info=we%3A1%3Aet%3A1669979832%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111711%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979832&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 02 Dec 2022 11:17:13 GMT
access-control-allow-origin: https://www.e-legion.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Dec-2022 11:17:13 GMT
last-modified: Fri, 02-Dec-2022 11:17:13 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/25789676?wmode=0&wv-part=2&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=519773028&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1669979832%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111711%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979832&t=gdpr(14)ti(2)
93.158.134.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/25789676?wmode=0&wv-part=2&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=519773028&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1669979832%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111711%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979832&t=gdpr(14)ti(2)
IP 93.158.134.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/25789676?wmode=0&wv-part=2&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=519773028&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1669979832%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111711%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979832&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 02 Dec 2022 11:17:13 GMT
access-control-allow-origin: https://www.e-legion.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Dec-2022 11:17:13 GMT
last-modified: Fri, 02-Dec-2022 11:17:13 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/dpd/cover.png
185.199.109.153200 OK 0 B URL HTTP/2 www.e-legion.com/i/projects/dpd/cover.png
IP 185.199.109.153:0
GET /i/projects/dpd/cover.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:09 GMT
access-control-allow-origin: *
etag: "62cd134d-1fff1"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 62D4:B926:12E1131:1371590:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.323699,VS0,VE177
vary: Accept-Encoding
x-fastly-request-id: fe8f18fe54d9f4c23ac8d68fc0fad02d49f5d351
content-length: 131057
X-Firefox-Spdy: h2
www.e-legion.com/i/photos/events/mblt2021-2.eng.png
185.199.109.153200 OK 0 B URL HTTP/2 www.e-legion.com/i/photos/events/mblt2021-2.eng.png
IP 185.199.109.153:0
GET /i/photos/events/mblt2021-2.eng.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: "62cd134c-24ab8"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 0808:EF76:14B6B32:155F20A:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.350280,VS0,VE249
vary: Accept-Encoding
x-fastly-request-id: 43a447c391939156bef2dcfdccf0f8b2e5ffcf63
content-length: 150200
X-Firefox-Spdy: h2
www.e-legion.com/i/projects/lingualeo/cover.png
185.199.109.153200 OK 0 B URL HTTP/2 www.e-legion.com/i/projects/lingualeo/cover.png
IP 185.199.109.153:0
GET /i/projects/lingualeo/cover.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:09 GMT
access-control-allow-origin: *
etag: "62cd134d-38ae1"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: CCEC:7631:19A4DC:1A433A:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.342740,VS0,VE274
vary: Accept-Encoding
x-fastly-request-id: 3e9b2d5377172b03121218a97712d7358fef7862
content-length: 232161
X-Firefox-Spdy: h2
www.youtube.com/iframe_api
142.250.74.142200 OK 0 B URL HTTP/2 www.youtube.com/iframe_api
IP 142.250.74.142:0
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Fri, 02 Dec 2022 11:17:06 GMT
date: Fri, 02 Dec 2022 11:17:06 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=8hzAK8xluXo; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=PdsEMl9nkx0; Domain=.youtube.com; Expires=Wed, 31-May-2023 11:17:06 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+201; expires=Sun, 01-Dec-2024 11:17:06 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat:100,200,300,400,500,600,700,800,900&subset=cyrillic
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:100,200,300,400,500,600,700,800,900&subset=cyrillic
IP 142.250.74.106:0
GET /css?family=Montserrat:100,200,300,400,500,600,700,800,900&subset=cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 11:17:05 GMT
date: Fri, 02 Dec 2022 11:17:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.1.0/css/bootstrap.min.css
188.114.98.234200 OK 0 B URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.0/css/bootstrap.min.css
IP 188.114.98.234:0
GET /bootstrap/4.1.0/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 11:17:05 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"fee68c0f2f583161134a1fcb5950501d"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 03/10/2022 17:27:17
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 863
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 8a60d03a17c86a84badd5c3db2470f39
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7733a774b8deb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js
188.114.98.234200 OK 0 B URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js
IP 188.114.98.234:0
GET /bootstrap/4.1.0/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 11:17:05 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"ce6e785579ae4cb555c9de311d1b9271"
last-modified: Mon, 25 Jan 2021 22:04:05 GMT
cdn-cachedat: 11/15/2022 10:39:35
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1054
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: d4ae49d12fcba1ac20ac460082c9233c
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7733a774b8e7b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mc.yandex.ru/watch/87397800?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A2%3Adp%3A0%3Als%3A1647334067387%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A816167000%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
93.158.134.119302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/87397800?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A2%3Adp%3A0%3Als%3A1647334067387%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A816167000%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP 93.158.134.119:0
GET /watch/87397800?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A2%3Adp%3A0%3Als%3A1647334067387%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A816167000%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/87397800/1?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A2%3Adp%3A0%3Als%3A1647334067387%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A816167000%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Fri, 02 Dec 2022 11:17:06 GMT
access-control-allow-origin: https://www.e-legion.com
set-cookie: yabs-sid=82745591669979826; Path=/; SameSite=None; Secure
i=FBUvpua2trJ/O6dPZkA4f0LNvOsNANJ9kUdI9vSVzw5lyT2arR0i0H8Nb3gbI0S3SXlnHENgMaRUVeyyvN0yrqZn6F0=; Expires=Mon, 29-Nov-2032 11:17:04 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=3805567091669979826; Expires=Sat, 02-Dec-2023 11:17:06 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=3805567091669979826; Expires=Sat, 02-Dec-2023 11:17:06 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1701515826.yc.1669979826#1701515826.yrts.1669979826#1701515826.yrtsi.1669979826; Expires=Sat, 02-Dec-2023 11:17:06 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Dec-2022 11:17:06 GMT
last-modified: Fri, 02-Dec-2022 11:17:06 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2