Report - www.e-legion.com/

Report Overview

Submitted URL
www.e-legion.com/
IP
185.199.108.153
ASN
#54113 FASTLY
Submitted
2022-12-02 11:17:16
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
88

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	982 B	54 kB	142.250.74.163
ocsp2.globalsign.com	1544	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	367 B	1.9 kB	104.18.21.226
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	1.5 kB	142.250.74.164
mc.yandex.ru	2672	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	9.0 kB	82 kB	93.158.134.119
www.e-legion.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	31 kB	1.1 MB	185.199.108.153
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	3.3 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
prostor-lite.ru	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	406 B	901 B	77.244.216.45
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	373 B	21 kB	142.250.74.110
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	718 B	2.8 kB	104.18.21.226
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	607 B	711 B	64.233.164.156
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	1.5 kB	142.250.74.35
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	432 B	7.5 kB	104.17.25.14
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.8 kB	12 kB	142.250.74.131
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	407 B	24 kB	69.16.175.42
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	444 B	746 B	142.250.74.106
stackpath.bootstrapcdn.com	2467	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	874 B	1.9 kB	188.114.98.234
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
www.youtube.com	90	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	362 B	1.4 kB	142.250.74.142
vk.com	2243	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	929 B	24 kB	87.240.132.67
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	58 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	23.33.119.27
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	763 B	145 kB	142.250.74.168
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.213.140.56
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	735 B	1.8 kB	142.250.74.66

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-02	medium	www.e-legion.com/	Phishing
2022-12-02	medium	www.e-legion.com/	Phishing
2022-12-02	medium	www.e-legion.com/i/projects/tele2-3.0/cover.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/emoji/family-mfkk.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/projects/burgerking/cover.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/projects/5ka/cover.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/logos/app-futura-certified-developer.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/emoji/heart.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/emoji/trophy.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/emoji/medal.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/projects/globus-2.0/cover.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/projects/ms-tech-events/cover.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/emoji/hammer-and-wrench.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/projects/alfa-direct-2.0/cover.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/projects/cafetera/cover.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/projects/888/cover.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/projects/my-jet-sport/cover.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/emoji/muscle.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/projects/venn/cover.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/projects/bm/cover.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/projects/skillaz/cover.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/projects/bm-wallet/cover.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/projects/taxi777/cover.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/projects/vkarmane/cover.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/projects/rtrs/cover.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/emoji/student-male.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/emoji/graduation-cap.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/emoji/nerd.svg	Phishing
2022-12-02	medium	www.e-legion.com/app.min.js	Phishing
2022-12-02	medium	www.e-legion.com/i/projects/jet-kid/cover.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/logos/openprofession.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/logos/stepik.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/emoji/student-female.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/logos/coursera.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/logos/dzsystems.svg	Phishing
2022-12-02	medium	www.e-legion.com/fbq-events.min.js	Phishing
2022-12-02	medium	www.e-legion.com/i/icons/support.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/icons/design.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/icons/reload.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/bg/achievements.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/icons/analytics.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/logos/usabilitylab.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/icons/testing.svg	Phishing
2022-12-02	medium	www.e-legion.com/i/icons/development.svg	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (96)

	URL	Size	First Seen	Last Seen
	www.e-legion.com/	46 B	2023-03-08	2023-03-08
Pretty URL www.e-legion.com/ IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash f8f3c95cc8495d69e6dda17b86546cc3 6023029ac35fcd0548ef4d6f7cc2acc45a8b7558 3f01e0d4ac507db6cfcca847a263ec3562c031d4a9bfba76bce948aeb9a563d7 Loading...

	www.e-legion.com/	494 B	2023-03-08	2023-03-08
Pretty URL www.e-legion.com/ IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 9305ce6a584b25677e3ea86bebb25b42 53a0d937c2af9c9cea61998b46f343f39c6935d2 b502e5cc7b5fc949a37df1ca7367472eb03adb898416b52442837d6d0d2bf24a Loading...

	www.e-legion.com/app.min.js	128 kB	2023-03-08	2023-03-08
Pretty URL www.e-legion.com/app.min.js IP 185.199.109.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 33ac9afd12b5a1eb1215644f7d4d984a 23bb6c1c6e174cc82dee7cabb4f29f7f40ac43ff 7e976bde6f5c5587c86393dd108ab61b6bc754d8dbfa9bf286024526f719bbf0 Loading...

	www.e-legion.com/fbq-events.min.js	1.7 kB	2023-03-08	2023-03-08
Pretty URL www.e-legion.com/fbq-events.min.js IP 185.199.109.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 749ed37ca22cd05e76daa8a5aef834fe ec23639ebfff4d2dd767ea7682d0a4779bf74e83 83ac1fe1d98fde89acb53ef53ff481a280cd020db16b02d4132aa2be77939b21 Loading...

	www.e-legion.com/	502 B	2023-03-08	2023-03-08
Pretty URL www.e-legion.com/ IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash d7e272c1df630e83e66fa0d75c31d430 2cda185f85cccd36b41551b9a1a6f185f051ddb9 ad5967be827baa18607cbc3b2058851d55000f70119bbd95e2208c8a0796c362 Loading...

	www.e-legion.com/	99 B	2023-03-08	2023-03-08
Pretty URL www.e-legion.com/ IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash d0815c649405fa57bf0edf0f6ae2560d 2b02e5be9c18b22309982dbb77e79c7945a7e64e 8a2d6d2ab639c5adeaa5201fd5a1411d53709b2db5c955a34c455559008ee6c0 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-19
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-19 19:03:21 Times Seen1521 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	www.e-legion.com/	368 B	2023-03-08	2023-03-08
Pretty URL www.e-legion.com/ IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash c6cd410517917dfaee3c42b993205cd4 a25ba121e30b4a57265689dcb59f7c0f86399218 9b62b424516f1e4780ebc11ce1b92f4b8e41e79612d0940f54c0f7019963c8a4 Loading...

	unknown	0 B	2023-03-07	2024-04-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-20 04:28:39 Times Seen36969586 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.youtube.com/iframe_api	1.0 kB	2023-03-08	2023-03-08
Pretty URL www.youtube.com/iframe_api IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:40 Last Seen2023-03-08 20:01:27 Times Seen1 Hash 4b1b56c41ca69ca3b13082663fb7c243 7107352f907fab0794b351b7c32971529999d430 0762c9e44bfa46e2e56e7908e69696eb5e3b92f93a11d824f6bc43f47244c7f1 Loading...

	vk.com/js/api/openapi.js?159	106 kB	2023-03-08	2023-12-03
Pretty URL vk.com/js/api/openapi.js?159 IP 87.240.132.67 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:36:43 Last Seen2023-12-03 16:12:46 Times Seen1261 Hash 6aba827f31cd3750ef56b691f9b5a139 e541e9196dcb954a26bfc211fab774f4cf12365c 2f7760ee2b81f4659c6f34ada0f7a7d263c2ce6035c2b5f4b082fac60802897e Loading...

	www.googletagmanager.com/gtm.js?id=GTM-P23G9N	298 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-P23G9N IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 4687dd6fd945aab0d6b9c1f0f1179b55 bc5c6ee2aff0eee800a044156431664569a70c85 c8015dea1e8186f344dcf126880fa25ff3a54f79d541cd496c6f798871e3d094 Loading...

	www.e-legion.com/	250 B	2023-03-08	2023-03-08
Pretty URL www.e-legion.com/ IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash ef2cd3ef74ffad48328f402747c8923d ab9d10450a8d4189cc55b0baf8f282cd9de2f09d c8eceb55c00930656b7055762a06137dcd06eea76dc3ce22998ae6e6c4f04971 Loading...

	prostor-lite.ru/gtm/?crmid=87467&callback=p_conf_callback.p_func461267	2.0 kB	2023-03-08	2023-03-08
Pretty URL prostor-lite.ru/gtm/?crmid=87467&callback=p_conf_callback.p_func461267 IP 77.244.216.45 ASN #49505 OOO Network of data-centers Selectel Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash cdf344768f89d263362c57cd2d6239f8 266839f13953f81f55efdb06e40a307ce478f597 130fb4f52c179eecf85cd8f135b77e158f0a8abe99127ec85c9b22362a0ab7b7 Loading...

	www.e-legion.com/	399 B	2023-03-08	2023-03-08
Pretty URL www.e-legion.com/ IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 078f23ba5023f1ec49c3e638e7b3301d 985817327e60d086dbc4efc67b3daec8ae553941 5defbb08d69c671c13a340998415bc14a45063f62c055db69342092002fcd429 Loading...

	www.e-legion.com/	333 B	2023-03-08	2023-03-08
Pretty URL www.e-legion.com/ IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 7824247f76eab51b8adc060bdf6297e2 1ccfec5e03eff77ff98c11df84db8f8886bb9a4f e562732cb7f8afb302fe2a4e403cb83229e7ed559960497a97248945d9046292 Loading...

	mc.yandex.ru/metrika/tag.js	214 kB	2023-03-08	2023-03-11
Pretty URL mc.yandex.ru/metrika/tag.js IP 93.158.134.119 ASN #13238 YANDEX LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:44 Last Seen2023-03-11 23:51:42 Times Seen1 Hash eed495e5f5918b605647ddfabccaa865 a0f16bf130bfc3755630e6e522d9fb3463919ab9 b93d3ad05d5001b63a353f35b5a76fe1f34032b67f6a9ef426611c285fe7ffc9 Loading...

	www.e-legion.com/	337 B	2023-03-08	2023-03-08
Pretty URL www.e-legion.com/ IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 632741a81111873fa56774341e5f7558 dfaa12b2510600154c2bfa1df8b420658c174429 183880b798b74a1ca02a7d9ca6c0af815680ee76bf01cbf5da04929716cff560 Loading...

	code.jquery.com/jquery-3.3.1.slim.min.js	70 kB	2023-03-07	2024-04-20
Pretty URL code.jquery.com/jquery-3.3.1.slim.min.js IP 69.16.175.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-20 04:21:59 Times Seen8253 Hash 99b0a83cf1b0b1e2cb16041520e87641 bc5836992c0b260496ba520fe1336d499bf06eb7 dde76b9b2b90d30eb97fc81f06caa8c338c97b688cea7d2729c88f529f32fbb1 Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/null/?random=1669979824347&cv=11&fst=1669979824347&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.e-legion.com%2F&tiba=e-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&rfmt=3&fmt=4	2.0 kB	2023-03-08	2023-03-08
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/null/?random=1669979824347&cv=11&fst=1669979824347&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.e-legion.com%2F&tiba=e-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&rfmt=3&fmt=4 IP 142.250.74.66 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 4ba5e980698f9f66e190d94027fe22bb edf52433f99622f4c93c7ba04300da9014fa73fb 9ba28f077136986687ded84d68c6e96c93df42ba0bf95bbcf56b3ec40fff2813 Loading...

	www.youtube.com/s/player/dab28f34/www-widgetapi.vflset/www-widgetapi.js	165 kB	2023-03-08	2023-03-12
Pretty URL www.youtube.com/s/player/dab28f34/www-widgetapi.vflset/www-widgetapi.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:40 Last Seen2023-03-12 18:52:40 Times Seen1 Hash e875c8859acb7eda0451c1d1a01cf0cc d7c5c593e603ea50d55d8cbbb05648cf5d9b130c edae723b0ed9ce7951cb1fc7bbb2163f91779db1a85bdacffc78ddf209e5f8ff Loading...

	cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.3/umd/popper.min.js	20 kB	2023-03-07	2024-04-18
Pretty URL cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.3/umd/popper.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:07 Last Seen2024-04-18 13:50:03 Times Seen4464 Hash 83fb8c4d9199dce0224da0206423106f d8503645c17f9856868a7def3dc0505e19a95ec7 f7cbc01a310318defd4e31e4616543e2cf3baef5a47562c73ece4c0b716f157e Loading...

	stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js	51 kB	2023-03-07	2024-04-19
Pretty URL stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js IP 188.114.98.234 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-19 22:54:25 Times Seen6220 Hash ce6e785579ae4cb555c9de311d1b9271 5ef2c15b47d7290698c737676ba9c3056b45f2e8 0bca10549df770ab6790046799e5a9e920c286453ebbb2afb0d3055339245339 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 3f32f3fdc9756a8bd83ffee12778827c	1.3 kB	2023-03-08	2023-04-13
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-04-13 06:58:38 Times Seen2 Hash 3f32f3fdc9756a8bd83ffee12778827c f51e944106571e6b9d87f72cd82100778d0d538a c5dca8f9a9e5ed80dd11a59cc21d4c8f7714f9adcb2ee05862c5dc308f34b714 Loading...

	#2 Eval - 63efcd4e8114dc9818df62c22d393617	12 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 63efcd4e8114dc9818df62c22d393617 fc952d937de8d204a9f495c8f6c051bcbf0026d5 b21a67a57b1726c3872e5c9bc11be2b6e7a10e3cb33738fd09eeb348728275de Loading...

	#3 Eval - 2f1b751039d4f77ef8bceea704d095d0	57 B	2023-03-08	2023-11-16
Pretty Observations First Seen2023-03-08 07:44:06 Last Seen2023-11-16 10:07:00 Times Seen20 Hash 2f1b751039d4f77ef8bceea704d095d0 195f8e694be8a8e511816ad8b3486efce089bab7 e86da3d2d90823f5de3766f400a0b9d2636d4fa894ffcca95863358abbefdcf2 Loading...

	#4 Eval - 26e646b2f986c81aad921d3d920d2e73	890 B	2023-03-08	2023-10-27
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-10-27 16:45:32 Times Seen8 Hash 26e646b2f986c81aad921d3d920d2e73 e144e51d5bd599aeae5175f0f9e516b5e6fe737c 488da85776c4b7da6d5d91f9668fc379533f5163c85c1b5c8a8ce3a06a31f711 Loading...

	#5 Eval - 3dfde1423b6ca7488724116122d73711	241 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 3dfde1423b6ca7488724116122d73711 7bda308261cd3cb819218482b90fad34c47e4f89 bb5e1bfd8639e3c84c3562e484aab5557f11517774f87c542aa8f0d5d10b53bb Loading...

	#6 Eval - 58bb2381a87dc66480efefd10f954e8a	7.8 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 58bb2381a87dc66480efefd10f954e8a 3f31af21a0ed1e95caa495613cfd465d72485eef 2a83736e6412fd4c840187ba2a4d56b7305e8e0b0806ab2012e9b59df6d424d9 Loading...

	#7 Eval - 359f73152400ae39b01cfb50ffac7561	1.3 kB	2023-03-08	2023-03-26
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-26 04:07:50 Times Seen2 Hash 359f73152400ae39b01cfb50ffac7561 04454a11ba3afe3dc6f062c92295855b6b574441 5242303458149bfee839f7abe3511a249fbf44594126f0f5df971161c46332a5 Loading...

	#8 Eval - 4f49b4e8cad94c49b94ae975e89be11e	1.3 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 4f49b4e8cad94c49b94ae975e89be11e c29f7205632b245197cc8c53f22be346d1a7f334 9a3dd568b16562e8060f3bee373ba1b3a60b58f64e3ffa21e4014f96526add10 Loading...

	#9 Eval - d134317405b7f4ba05db2b8dc2bb502d	12 kB	2023-03-08	2023-03-26
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-26 04:07:49 Times Seen2 Hash d134317405b7f4ba05db2b8dc2bb502d d5bd803377cd2ddbf4d8b66b4b721b37e5c79c5c 28ed78227eb09a6343381bbfcd0db60b9d839c0c5bd1f5cbc4e091443d54cb31 Loading...

	#10 Eval - 856345e0feb3a8da595903c0e7cf8e41	3.5 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 856345e0feb3a8da595903c0e7cf8e41 5711ccffe870b03f412e246d7deacd6106469492 ded5a4f7c7b07dfc12fc3f934619c79624ae7394adfe4a7e98bc26ab4798f424 Loading...

	#11 Eval - dc660794a25c01536a56c659e65b2277	922 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash dc660794a25c01536a56c659e65b2277 f84319d1f1bf61114fefe6cb0967b49e477cab7f 9f48d250aed1fddf70264914791c6c4108a7126c64a9ba0d2e9e70b56d9deecc Loading...

	#12 Eval - eb26faae3a514ed13d0d6c53cd216aca	12 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash eb26faae3a514ed13d0d6c53cd216aca 5f31aafc5c3f8b77a0d8e3792d5ac9552d3b06cc ac14ea33b6e721e8879645594bef5656b8e67c5e41b3369a31736a3409f58fb4 Loading...

	#13 Eval - 98b27ce86f429ffe4424ae9d1c7b5f1b	67 B	2023-03-08	2023-10-27
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-10-27 16:45:32 Times Seen8 Hash 98b27ce86f429ffe4424ae9d1c7b5f1b f9d3ba7f0e1dbf2fc4023eaa7b703e0d2776e58f 10b2357627a5f6a45a198352ccc9f11172b78d8a25b0a7dc4d555808dedcc9ac Loading...

	#14 Eval - 4c7e6b007e53273da6ab4e8b850158c1	12 kB	2023-03-08	2023-03-26
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-26 04:07:50 Times Seen2 Hash 4c7e6b007e53273da6ab4e8b850158c1 3733efd956b0cf1e8f587312975d3e22e7abaa09 536e142fc04b80620ec7b0cdc98e70c0a918ba3b90fd22bfe0546c1e66012b88 Loading...

	#15 Eval - 913e2071910562d9102e2c7827579f54	12 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 913e2071910562d9102e2c7827579f54 f77a6cbae8a0017372b97e2652d97303bd55ab37 9331a21e2b7e609d9aaa3887e541b6dd1788f51f00f8000f15b8cd42859dfb40 Loading...

	#16 Eval - 570a321667b8dd469e8aa7f3d8ab1535	2.0 kB	2023-03-08	2023-07-12
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-07-12 09:55:20 Times Seen6 Hash 570a321667b8dd469e8aa7f3d8ab1535 fcb8c3bcd584c44a1eb8c10b87d8183bd89375db 854e883c0d87cfda1a9c39badd62adf13fe8a4df728a8277ba58cfc9f5e66276 Loading...

	#17 Eval - a236e3aab872b9539b2f7e5d87529b1a	419 B	2023-03-08	2023-10-27
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-10-27 16:45:32 Times Seen8 Hash a236e3aab872b9539b2f7e5d87529b1a cd3a98326af9eee34566e3e96bb331f012ca67a5 be1257cbe5950706e41b2b419431a99c37ce190f46fbcb399f275294a5f1fedf Loading...

	#18 Eval - 8de1f233b7876047d3a3d7925f8d5f34	3.5 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 8de1f233b7876047d3a3d7925f8d5f34 6d31b66ac2b454452492ab56aead889d056846a5 e60ce14af734b43be6d584bfe3b32bbec914bf80351ff4f49fbce03671d0fe5f Loading...

	#19 Eval - 36f2acc3a28d92f94e7b162381610c8b	836 B	2023-03-08	2023-04-13
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-04-13 06:58:38 Times Seen5 Hash 36f2acc3a28d92f94e7b162381610c8b 56bd5ff6a5f7c0971ec120b92ecc642633f116e4 ec233667bcdfa2967a07e181c100f908fa1ab35c4a6e8476e3b24c3d13c578d4 Loading...

	#20 Eval - 5fe56e212cb6c082c47960a729bce85c	1.2 kB	2023-03-08	2023-07-12
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-07-12 09:55:20 Times Seen6 Hash 5fe56e212cb6c082c47960a729bce85c 823ab6467cd13f4f0a119565677eaf1d735f4e9e e6de18fa7b0b2592984a5ba706c04e618da74b37adabdba4386b81ac2d416920 Loading...

	#21 Eval - d4a824686ba49fbd9534f405114f391b	699 B	2023-03-08	2023-10-27
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-10-27 16:45:32 Times Seen8 Hash d4a824686ba49fbd9534f405114f391b 0dac72551462e525d8a1a81c934a573838879f0b 2537b691d84f2549518115629891c47c74f52c7be0f5d897fe56fa970950934a Loading...

	#22 Eval - 325d2a9b6e3e6f09f94766d51011afcb	1.3 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 325d2a9b6e3e6f09f94766d51011afcb b2cc22c50c31c591245f643e29a35c6d86923295 efee314a2af3201d3009aaa876522054d16f7d7ea9c3e3d2ed3b7ea6211f2fa0 Loading...

	#23 Eval - b1b3247e2893be376274f847d9d39da3	12 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash b1b3247e2893be376274f847d9d39da3 f506523259a7afc344a536334fb8531d63827937 f0c3b49ade5e7480bfcee8d23c6eae13f19935e301e51ab8747c25bd7b34d6e4 Loading...

	#24 Eval - 78de821bd5e64de2c8a8e823ea8c1aa0	1.3 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 78de821bd5e64de2c8a8e823ea8c1aa0 677c5e91bc1464ba7b4ee8e7c5f8cda90a3f5f66 210d46b1cc7437610b6246e752115e258ebb97ed7a9ff38a6e4a767a9a9a18c4 Loading...

	#25 Eval - 161164ac0b31a590923ba56b987743ec	1.0 kB	2023-03-08	2023-10-27
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-10-27 16:45:32 Times Seen8 Hash 161164ac0b31a590923ba56b987743ec 093028db3fee2bfed56fc92d56d56da99b6795c2 02a5fc4b226a8af9c04e39d3c1bd462c12211db61bb05855bdc58be0fdd4edc5 Loading...

	#26 Eval - d67c95c77fa296d872a867edc47c3a95	120 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash d67c95c77fa296d872a867edc47c3a95 b95978e29bd64e211610095616655cb1607e38b8 125b51396995ef9740d91e79f16e34cb935d49097fc8c7c963b77f1f093bc28c Loading...

	#27 Eval - ff4cec87a4e5a2f7c927c1055cfb33e9	3.1 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash ff4cec87a4e5a2f7c927c1055cfb33e9 f6c9a6578e268e0a50d36114bd72285a9e9d8100 7cdd0fd7596a25a726489c4323514c0e47ce3d6b993a028567639e6da73e45bd Loading...

	#28 Eval - a89564445f18c8051236b62b9db80e37	2.7 kB	2023-03-08	2023-04-13
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-04-13 06:58:37 Times Seen5 Hash a89564445f18c8051236b62b9db80e37 8b758fb153c7c61873ecf1450a46d82a1ff781c1 60d79561b94f4472cd9a2270537bd0d1802c29a5a3d252acf43ea3ed638a10b6 Loading...

	#29 Eval - f20c1ff3ee54e5328314425b7abd402b	1.3 kB	2023-03-08	2023-03-26
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-26 04:07:50 Times Seen2 Hash f20c1ff3ee54e5328314425b7abd402b 63dc81b51e19030c42c263cbb3f17d766cc21313 cf96ea0cb2be38e60ff8f363b301bd612242674b967368f2ece7952e5e1fc68d Loading...

	#30 Eval - 8c7da7c73730c25a8133a625b2762063	444 B	2023-03-08	2023-10-27
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-10-27 16:45:32 Times Seen8 Hash 8c7da7c73730c25a8133a625b2762063 1c9573afbc932f82b1f417f32e019e6866ec46aa 958b8b2d1529ea6b61a1487cfc0e7c78f847e3dc1c4499f4420ed67d325442e9 Loading...

	#31 Eval - 839f4697932167bb141af648b8d1e849	12 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 839f4697932167bb141af648b8d1e849 7d85273a4e7d9b8f64d427ead0a638c2f2b8bac3 2f869c4505cdec7451a1ac9e9457e75ea2f5ad16329b378267d7750af9b6fc3b Loading...

	#32 Eval - d41d8cd98f00b204e9800998ecf8427e	0 B	2023-03-07	2024-04-20
Pretty Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-20 04:28:39 Times Seen36969586 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	#33 Eval - e22a23f6d45e1ceabe719e63a2237bf6	3.5 kB	2023-03-08	2023-04-13
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-04-13 06:58:38 Times Seen2 Hash e22a23f6d45e1ceabe719e63a2237bf6 bc365e5e0472e947b3d62cf7cb4543466f85cd39 3af04cf304c82aa88b68ad9ee26bd200a0b3b91a9d5a789e2b901653f7cbb4dc Loading...

	#34 Eval - f13218b11aedbe77eacc6b4d7fbc8f2d	3.5 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash f13218b11aedbe77eacc6b4d7fbc8f2d b10b7d255469c404bd0b6a2b69186931f7ee67d6 65094212b45c350a4a2d987ed06bd9d772019e5aad4876d6945d117f3ff7d682 Loading...

	#35 Eval - 11d49de5ac3a1452b33e2eb5770fd2a4	1.5 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 11d49de5ac3a1452b33e2eb5770fd2a4 46c3b0587fe02b62ee5ca14c656bd76a2700839a 2a4936d45593ff4336d838871243a526bc30407d9b2656b9e21b104eee293f6d Loading...

	#36 Eval - 73b3a4cbd30efccb35c509e7221e0814	120 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 73b3a4cbd30efccb35c509e7221e0814 cce45af0b70825188b48e9796088de3b907fe60c 57df031bfc0d567e63e56913c90044dbb5bb9d6a9ee615c8150b4348eef77158 Loading...

	#37 Eval - 474cb230a6702a32ac9a65fb30a7d4d1	119 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 474cb230a6702a32ac9a65fb30a7d4d1 eb7b121e192827f2816fe885d502cf7f54f780d6 6aff9a110a3cd5ae0ebf6f542360b703db703e4df84b12d0535786ef8bda17d9 Loading...

	#38 Eval - 929625e5f3d0c0fecbec34e3aea7f287	240 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 929625e5f3d0c0fecbec34e3aea7f287 36217338398b3adae9d0d5c7c4df73feb819cec6 00644ed8c0c7c0f5b0fa5edbc7f11d8e8876c8a302cba1b9a00ba1bc75e4dd98 Loading...

	#39 Eval - 2399ebb1d285677124dd40b0353c5f22	3.5 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 2399ebb1d285677124dd40b0353c5f22 84bfb7dbb6362e57a93b68ad52f765fbd16d366a 08fa9f599cd8cbba339ee328aab3b67d71bd5bcf1f58c141d787e8ca7d846559 Loading...

	#40 Eval - 1505f9ab9ec671791a6298f02ba45449	10 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 1505f9ab9ec671791a6298f02ba45449 9bcf11254234ee3120b6cad37184deb397a1ab0e a7e07d1fd2f11253f48204dbc2802d3ffd66dec7ad879f582afac93df5310b00 Loading...

	#41 Eval - 9d8329173aa03c85e6c1c20b5cc215da	1.3 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 9d8329173aa03c85e6c1c20b5cc215da 70997ecada75b62f733ddd16218d0eb8527cc774 5a6c21552bd1bedd509c68ef5b40be0fe090cf0bcff05511eaa65ac743099ecf Loading...

	#42 Eval - 85c7d2856e5dba0c5fbd89042fdd2249	72 B	2023-03-08	2023-10-27
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-10-27 16:45:32 Times Seen8 Hash 85c7d2856e5dba0c5fbd89042fdd2249 f9a5e11b9712dfb822ca4592bb7edc33c746708c ecefae815d69739ab3df11db90e21c7e1e3d35e5d6309e1b3ff82f522c638662 Loading...

	#43 Eval - 76ed88d6f487ed06573190ff324b280c	3.5 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 76ed88d6f487ed06573190ff324b280c bdcec1b861a7aee5e73670ebc4ec60204f9a29c3 57511a8adc0fba4af644fba0577a754b2fd609b5383fe436727021c9185c81bc Loading...

	#44 Eval - a445084f4134ed036e53a0c8cd1db7e2	1.3 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash a445084f4134ed036e53a0c8cd1db7e2 6fc8b5e4338a0d1b8d3cb6bafc4f9ee6617d910f 7ecde6c5da1c0297d1badc522476875909f78ac3b0d17b104bde39fc7c69f167 Loading...

	#45 Eval - 4c72046b75a5d2dc85b3900ceccd0f8f	503 B	2023-03-08	2023-03-26
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-26 05:50:42 Times Seen4 Hash 4c72046b75a5d2dc85b3900ceccd0f8f 9ba92435e5efe7efac1dc6c243a8e2be9d505607 6001a4c5097c6b2db45f18be2ce6f278e469082ae6d532742f1868838af6b187 Loading...

	#46 Eval - 29684eb6cdc5a3ca9ff1faefeff8e5d4	117 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 29684eb6cdc5a3ca9ff1faefeff8e5d4 6b10c29aee17f5342a314eb74e69d135d1ea2909 b951443b358c13e92738591171b074ad9cf553907888abd5f515b95c1a28feca Loading...

	#47 Eval - e511369c1799dd83a04867cf7cc585fb	140 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash e511369c1799dd83a04867cf7cc585fb 6fe01062b3c391e11957c40d09f757219a05a82c 6eca1524b3050f3740e3cd37b5bd85492d95bdf55640143fdb92fe90471377b7 Loading...

	#48 Eval - 93c781e70f3722a65f8f01d9770ccdf4	50 B	2023-03-08	2023-10-27
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-10-27 16:45:32 Times Seen8 Hash 93c781e70f3722a65f8f01d9770ccdf4 342b5d2c6849d710fce785ac963db58287db9ac7 e09550cd17e3fd19e9bfccc3f8956a8172b29dd6f9cd3e9dbf5b2d7100b6e6e0 Loading...

	#49 Eval - 3c73fa65017b245eedc3423ff1a52b5f	111 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 3c73fa65017b245eedc3423ff1a52b5f 20b7ecf181c86475b100928ff39c3688190d0b05 038d890c07ad929f829b76ed39b6831a543d464728bd8a64d74f226b3e9d27a4 Loading...

	#50 Eval - b57791d7e016f2a4b15627dde68e002f	12 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash b57791d7e016f2a4b15627dde68e002f a6f17a8b4260cb871a93bd3f4ae78d4f3bf0b41f 497cb015db0ce1519e490c18c3e131789515bfec4de2b6ede68d8a727a4f1714 Loading...

	#51 Eval - 40b993a79c7c10f08fb093dad47c70d9	2.6 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 40b993a79c7c10f08fb093dad47c70d9 c11e40d629820a73323afa373738e484fcc47d78 ea5e2d7b0af175525c1f53bd6970f3ce76a4164d3017c957453d64f14f96da28 Loading...

	#52 Eval - 3ca12e50eb941b2ae7eb5794ba1cce0e	3.1 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 3ca12e50eb941b2ae7eb5794ba1cce0e cd5fd2749041e0e9a5ecd25c28f7f597ca72bfee 719efe180060ef123142c22354b66d94f631c584f0259bd65490eadba6c58baf Loading...

	#53 Eval - 05f7b1dd98f79b7eef295f899c79e47d	636 B	2023-03-08	2023-10-27
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-10-27 16:45:32 Times Seen8 Hash 05f7b1dd98f79b7eef295f899c79e47d a1c9272302a1d6ef98ed076d67ccc4cf4e9f0f38 04aa635abd111950ce7c2814f6fee57c73095a268f2d87fbb20216a320d8d5ab Loading...

	#54 Eval - 7673a02c1f3391852fb5b354e0af0bc8	3.5 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 7673a02c1f3391852fb5b354e0af0bc8 9db06f0237206e63f6d77785ab02c046cce4d47c 72b021d69b0bed59663f8ba620fe73b76d5f667a2328f520c91081b91ee6c1c2 Loading...

	#55 Eval - f65d485b61acd7e0dd32345a04a89f1f	1.3 kB	2023-03-08	2023-03-26
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-26 04:07:50 Times Seen2 Hash f65d485b61acd7e0dd32345a04a89f1f 0af3535e8b2e6fe0e7ec98d6381808e90ded4271 d943f0e59ef01c417e2cd1440f64b80754872138adfa4954a2cb18a38087a212 Loading...

	#56 Eval - ee06af1e19f09579364a8f068cdc222a	12 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash ee06af1e19f09579364a8f068cdc222a 3cdcf877fcf329920be8d0dd9d611b5e98b2477a 33cda09f3a45d3952692b0f394f7f41b67bd440f5945a5ae5aa9290152f025d7 Loading...

	#57 Eval - 404884f3c690f8ea49247cec41ac41a2	195 B	2023-03-08	2023-10-27
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-10-27 16:45:32 Times Seen8 Hash 404884f3c690f8ea49247cec41ac41a2 aced4ca9d9a59e4ecc73cd29f6193a5ba7f7392c fad6db65650898b2fbbdc11018721d2cb7811497f57cd06121fef8e556eddeff Loading...

	#58 Eval - 6e343c6e9d182662b39b0faee959d7df	3.6 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 6e343c6e9d182662b39b0faee959d7df 61707d74bf408e97fa6fb310e3e622666eab8f8f 47fbcc76d5c9c8cd4107b46048b67f23c9aa10e4732a980462198368e9d527d3 Loading...

	#59 Eval - 29870a4da0b3031d42f0cb5dc98e0dd6	824 B	2023-03-08	2023-10-27
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-10-27 16:45:32 Times Seen8 Hash 29870a4da0b3031d42f0cb5dc98e0dd6 c8e55ea87363db459163e528516fdc103af2ca66 021136b13c9f872de1309714e11865609c00a4f2e17dcd8b0da542a000281180 Loading...

	#60 Eval - 587ae9de0e54004c03917f4d0916fb68	1.6 kB	2023-03-08	2023-04-13
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-04-13 06:58:37 Times Seen5 Hash 587ae9de0e54004c03917f4d0916fb68 bd48d3ee5118eea858f26799acde36b118dfee27 26ed5b95f1a260da8000f9a595310fd1e53fbfcc9f99879fc791d97b1f8f2d23 Loading...

	#61 Eval - 0856fec81739ceed5267f0876c85c19a	12 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 0856fec81739ceed5267f0876c85c19a 55478a85025c3128c2d65ff215466bb5f831e718 b217d8b6056c4c7ade2f7d7327380d2e3199ffdf701d33b44e0ee441838f19c2 Loading...

	#62 Eval - 82f58a37f7b247f268cae191beb278c1	12 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 82f58a37f7b247f268cae191beb278c1 34a0584c0b645edb5a404dea8f171c952962d8ba da66d3c84e18819d6a8aee0884f2a5170e8ef2be0d26e3e8fe4bacad19d92e93 Loading...

	#63 Eval - ba6878dbbae5bcc4179c3353f3d3908f	2.6 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash ba6878dbbae5bcc4179c3353f3d3908f 2ba9d4c1bce11a6fc3b844e0d09c1f7098edcbdb 42cbba87558126a9cd0951d1846d873b489cd82bea9df849ce606c3c57a0a8b6 Loading...

	#64 Eval - 1405481959e49c1148757396158aad8c	12 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 1405481959e49c1148757396158aad8c 416f501dfb263e9997cbdf9d3539dc49e4d3ad77 17d59f0b4fa4c83b35e1bd3cfe8129442e729df42e0149a3cc63248d174d0dec Loading...

	#65 Eval - d3af3ad096109cc23d200c604c003d27	1.3 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash d3af3ad096109cc23d200c604c003d27 9c6d5465acbe7e9fe0cd2db35476993e244c232f ad9daccbf4039642b39012bc12d77a7403701662461c23c4ae085ca08a7672cf Loading...

	#66 Eval - ff68d386e97a82429d28ca15857ca696	127 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash ff68d386e97a82429d28ca15857ca696 baa7445eb0639423e750cf086833d6219bc26a20 ecbe27ba9dd418b1e5e6220f5833e27fbbce756cda5557603a19976711b6bcd3 Loading...

	#67 Eval - 7f1fa6c4e9d30076a0e7be5d17e24a0b	3.5 kB	2023-03-08	2023-03-26
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-26 04:07:50 Times Seen2 Hash 7f1fa6c4e9d30076a0e7be5d17e24a0b b9602e817bd7b43fb654c28c0dc6393064f0f0c8 f296cdcc8c1636eb048b823d820aa2b9c3c3bbd19cc9ded5d2f9801bf8b7c6a3 Loading...

	#68 Eval - e3fc4a9ab4de3364a6d6667ffd847a7e	1.9 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash e3fc4a9ab4de3364a6d6667ffd847a7e 7dfdb80deb58761261f6cd5d4b336a81c8cdc961 a97c61b395aa6972587a1be308a93130d85607b54b09b4efb7357d3e121c2783 Loading...

	#69 Eval - 720d9086ec2fea18366984d8a76c7918	3.5 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 720d9086ec2fea18366984d8a76c7918 8485ddf71c301f484ee1ead94166e295f491f576 afc7435cdec73a42090f10739850b037687b30a26ef3d7e332e64721098e1c41 Loading...

	#70 Eval - 9047f9553396f03ce962309576c012ce	12 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 9047f9553396f03ce962309576c012ce e24ece35ff6e8f460453f71639a7d9026f631561 8d932d191b4b4d0af60654ca5b2bd323a19ea59bff74bf07dbfdfcebf19a85d2 Loading...

	#71 Eval - ad25b3bea49f73796e610cf507795a55	364 B	2023-03-08	2023-10-27
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-10-27 16:45:32 Times Seen8 Hash ad25b3bea49f73796e610cf507795a55 b23c6755beb429c7cb98f89a7a0a120db088afdf 67024cf1430a8a9b7324502e3591548032a18aa8c410c6994d2f4eb3f42d168e Loading...

	#72 Eval - dc44b036572e9067569c3d0bc1259951	722 B	2023-03-08	2023-07-12
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-07-12 09:55:20 Times Seen6 Hash dc44b036572e9067569c3d0bc1259951 4c440d592b56d2112dd686b7650c34f4784dd37e c868febfea9c17daa8b0f94aed0bbb14d63448ae9114631d3d78789b702a37ae Loading...

	#73 Eval - 8867b0da6ea3734cd85b0bdc5c5b95a9	241 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 14:36:56 Last Seen2023-03-08 14:36:56 Times Seen1 Hash 8867b0da6ea3734cd85b0bdc5c5b95a9 8f672179f0e04ece4e953b779f33ceb106f3be76 2d4aeaf1a7da6db95781b6dafb1c1a194e29bd2dbae156152f6a82531b67f431 Loading...

HTTP Transactions (140)

URL IP Response Size

www.e-legion.com/

185.199.108.153

301 Moved Permanently

162 B

URL HTTP/1.1
www.e-legion.com/
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Connection: keep-alive
Content-Length: 162
Server: GitHub.com
Content-Type: text/html
Location: https://www.e-legion.com/
X-GitHub-Request-Id: B92E:6619:145E3A4:1500AF3:6389DEB0
Accept-Ranges: bytes
Date: Fri, 02 Dec 2022 11:17:04 GMT
Via: 1.1 varnish
Age: 0
X-Served-By: cache-bma1626-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1669979825.723367,VS0,VE127
Vary: Accept-Encoding
X-Fastly-Request-ID: f331dcc8dead4b5c1b401ef3159e07e0bc04f449

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9181
Expires: Fri, 02 Dec 2022 13:50:05 GMT
Date: Fri, 02 Dec 2022 11:17:04 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6301
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:04 GMT
Last-Modified: Fri, 02 Dec 2022 09:32:03 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 10:18:11 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3533
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6754
Expires: Fri, 02 Dec 2022 13:09:38 GMT
Date: Fri, 02 Dec 2022 11:17:04 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: bSabTdNO0ZIpKfde22rKcPdzKF991XiN8+UzVAdmb3vNTSmVZJ6yW6LGW7pa5LxH1vGkjai4QMs=
x-amz-request-id: T47TDSERBQ3BBGQ6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 10:46:40 GMT
age: 1825
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 11:17:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.e-legion.com/

185.199.109.153

200 OK

26 kB

URL HTTP/2
www.e-legion.com/
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10656)
Size
26 kB (25958 bytes)
Hash
d09de55bc9bf71b81af08d47a6be7d5a
69aa603684b8217daf0969bdf26d3dbf21661548
c021bfd2f3be619e15a837589f5563e20553072305d7f5f62961001ac5a557cd

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: GitHub.com
content-type: text/html; charset=utf-8
last-modified: Tue, 12 Jul 2022 06:23:11 GMT
access-control-allow-origin: *
etag: W/"62cd134f-16554"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: CE30:0EBC:192A180:19EBB2D:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.024375,VS0,VE124
vary: Accept-Encoding
x-fastly-request-id: 4373f44e38e2b3daf00ac0deebaedd02e41939ac
content-length: 25958
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.3/umd/popper.min.js

104.17.25.14

200 OK

6.5 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.3/umd/popper.min.js
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (20164)
Size
6.5 kB (6451 bytes)
Hash
ae393ccddfcfe335c9b29ee90aaf72cb
6a42536ed79b4ea9e3a71c69db3b5f7205dc7e81
75cbee82410be7ca2b5b5406219b0575725c415510df701ddf1e9e7fdec22aa8

HTTP Headers

GET /ajax/libs/popper.js/1.14.3/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 11:17:05 GMT
content-type: application/javascript; charset=utf-8
content-length: 6451
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4f71"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4369151
expires: Wed, 22 Nov 2023 11:17:05 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WHDiMgPfKr2gKhb8zcP%2FadUxMMVpkiM7DmO240z5FoTZFljR5gYR9BwPB%2F%2BRl6nLw7%2BZJbvXDxytvYkN5fzC49BaueSHqZhEl1cg6piXSe%2Bmr%2Fm%2B3bBW9T17b7pgIvA8r%2BhOqFB1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7733a7749865b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
90b4caf4c10d4aedbbf15a03650df1f8
f2da7656691c4bc1238df9c60f4439dde08541dc
2c67636d085bb985e6cc0a524aeb26d2a8d1f574d538e394349d2196587e1219

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6242
Cache-Control: max-age=163703
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:05 GMT
Etag: "6389a2c6-116"
Expires: Sun, 04 Dec 2022 08:45:28 GMT
Last-Modified: Fri, 02 Dec 2022 07:01:26 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
90b4caf4c10d4aedbbf15a03650df1f8
f2da7656691c4bc1238df9c60f4439dde08541dc
2c67636d085bb985e6cc0a524aeb26d2a8d1f574d538e394349d2196587e1219

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6242
Cache-Control: max-age=163703
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:05 GMT
Etag: "6389a2c6-116"
Expires: Sun, 04 Dec 2022 08:45:28 GMT
Last-Modified: Fri, 02 Dec 2022 07:01:26 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

code.jquery.com/jquery-3.3.1.slim.min.js

69.16.175.42

200 OK

24 kB

URL HTTP/2
code.jquery.com/jquery-3.3.1.slim.min.js
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (65247)
Size
24 kB (24038 bytes)
Hash
0f2e7d37e730fdbb1d8a1e8638529ecb
c21d16978a858baa75be15cb7e799ff000929429
cc938c08b93e67c94c68995709f52133c62cac78991f42058503b9c3d9e4b0b0

HTTP Headers

GET /jquery-3.3.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 11:17:05 GMT
content-encoding: gzip
content-length: 24038
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-1111d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1669979825.dop010.sk1.t,1669979825.cds238.sk1.hn,1669979825.cds230.sk1.c
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/tele2-3.0/cover.svg

185.199.109.153

200 OK

908 B

URL HTTP/2
www.e-legion.com/i/projects/tele2-3.0/cover.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1248)
Size
908 B (908 bytes)
Hash
944fb80a8e52c37bbc91d3babe8dc607
4f8fb3d24a23a28c40a2616a15a3c9997272e661
f9ccc15c06a76055765f77eeff133f6508e597be2ab8d5aa8e84f03294245b9a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/projects/tele2-3.0/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 06:23:11 GMT
access-control-allow-origin: *
etag: W/"62cd134f-656"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: A41A:B926:12E112F:137158C:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.317142,VS0,VE105
vary: Accept-Encoding
x-fastly-request-id: 0c7670b35c81dc25aa1e5ccfee7103a2d89dd9ea
content-length: 908
X-Firefox-Spdy: h2

www.e-legion.com/i/logos/cert-agency-android-2018.png

185.199.109.153

200 OK

4.3 kB

URL HTTP/2
www.e-legion.com/i/logos/cert-agency-android-2018.png
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
PNG image data, 160 x 160, 8-bit colormap, non-interlaced\012- data
Size
4.3 kB (4278 bytes)
Hash
4e4501ca4008b2e6909c22d2e106a8c1
b0edb6a7e7cd7e926ba69eec0f724c32935766fc
2607d77c9de3424a76e31294528b00d84694f36ec23db0ea16486ebffc1da674

HTTP Headers

GET /i/logos/cert-agency-android-2018.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: "62cd134c-10b6"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 8D96:4378:1498678:153CF88:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.315189,VS0,VE111
vary: Accept-Encoding
x-fastly-request-id: 50f4ca3e92e1ee52cf4dae908af087d89aee581d
content-length: 4278
X-Firefox-Spdy: h2

www.e-legion.com/i/emoji/family-mfkk.svg

185.199.109.153

200 OK

12 kB

URL HTTP/2
www.e-legion.com/i/emoji/family-mfkk.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1557)
Size
12 kB (11984 bytes)
Hash
75b472b6f258eb63c90b5fa8c1084634
2ff0f4ed605d150810ecc05714b3f7f485253834
db3c63eb80ca579cfd9293085debbde89bef27f9f06288a98121823aa1f431b7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/emoji/family-mfkk.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-df6f"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 582A:3380:1E3C83E:1F279C4:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.313254,VS0,VE116
vary: Accept-Encoding
x-fastly-request-id: 31e577a1fd41991d0844fa794008865667dfc902
content-length: 11984
X-Firefox-Spdy: h2

www.e-legion.com/i/logos/clutch-top-mobile-app.png

185.199.109.153

200 OK

14 kB

URL HTTP/2
www.e-legion.com/i/logos/clutch-top-mobile-app.png
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
PNG image data, 160 x 160, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (14381 bytes)
Hash
84466471ec1b98722e32a070c19420dd
a75485fcac05def93e6d3effc172a2cff49bc6dc
34f46a3de3a058eb81f0ed2c15990ab17c15f7873699caebeeb3b4f3f6c06d6e

HTTP Headers

GET /i/logos/clutch-top-mobile-app.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: "62cd134c-382d"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 9B94:6619:145E3EA:1500B36:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.313954,VS0,VE117
vary: Accept-Encoding
x-fastly-request-id: ee81dfa979eaa6d443a07660a718b7a5bd3cf68f
content-length: 14381
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/burgerking/cover.svg

185.199.109.153

200 OK

3.0 kB

URL HTTP/2
www.e-legion.com/i/projects/burgerking/cover.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3848)
Size
3.0 kB (2986 bytes)
Hash
bc66b3841e2aea84f387d78ff9c11c1c
2ac6537d42d42d4da8008da1e60b13fdbb83d4d1
27d5998ae1afe22a2a84f216a693881a3a26e48afc3d2dab4d318a666220bc49

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/projects/burgerking/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:09 GMT
access-control-allow-origin: *
etag: W/"62cd134d-171d"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F62C:9054:51504E:54257E:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.316535,VS0,VE114
vary: Accept-Encoding
x-fastly-request-id: 99b9fbd1d9695afd3c27039fbe0866e5d7b7b331
content-length: 2986
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/5ka/cover.svg

185.199.109.153

200 OK

807 B

URL HTTP/2
www.e-legion.com/i/projects/5ka/cover.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
807 B (807 bytes)
Hash
9934a913146e4854393aa678360844d4
bcd659389372c74aa11628e6be456c8bfd14620c
2841aec0cc00ecb0526a861abc7cb749a0e0f9ff6337e7049378d728ce8773a8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/projects/5ka/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-5ce"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: DC9A:EF76:14B6B20:155F1F8:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.318212,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: 8fd13205b120d4b7d73877185df6f4fdaf8c8ac0
content-length: 807
X-Firefox-Spdy: h2

www.e-legion.com/i/logos/app-futura-certified-developer.svg

185.199.109.153

200 OK

4.7 kB

URL HTTP/2
www.e-legion.com/i/logos/app-futura-certified-developer.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (11200), with no line terminators
Size
4.7 kB (4711 bytes)
Hash
eee40d377f7a3c7bad1cf6deb8e38079
4e306413e89a5940566fcb67432d244b76acc1f2
d3fe5e9b8deb167f2a481224564180fb56cedbd97cb6c94b98be0bfec17c3998

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/logos/app-futura-certified-developer.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-2bc0"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 3132:0EBC:192A19D:19EBB5D:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.315396,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: d51148b4e7274943e6251d4705851fdc2282dbb6
content-length: 4711
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.e-legion.com/i/emoji/heart.svg

185.199.109.153

200 OK

2.1 kB

URL HTTP/2
www.e-legion.com/i/emoji/heart.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , Unicode text, UTF-8 text, with very long lines (587)
Size
2.1 kB (2066 bytes)
Hash
61629a3b8403579e387dc1fb939836a1
0dae4fe455c544446447a3ea5778415906f566b7
451b48f88fadede3f6f1cc9bdc21ff7fdbbb52e40c60d5b597a9d8b6b02b2981

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/emoji/heart.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-4261"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 955E:3290:B15B75:B674C5:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.327758,VS0,VE112
vary: Accept-Encoding
x-fastly-request-id: fa307d1f03e48a136851ef88e247db6474b51994
content-length: 2066
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/raiffeisen/cover.png

185.199.109.153

200 OK

7.5 kB

URL HTTP/2
www.e-legion.com/i/projects/raiffeisen/cover.png
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
PNG image data, 416 x 416, 8-bit colormap, non-interlaced\012- data
Size
7.5 kB (7464 bytes)
Hash
665ae119851adf880ba2c9e363fee144
b17d07ee61a522cf9f28273c5fdb99bce1cdc714
49048514e6e5f091249486a955f3b7e987a1bd2f1195bc953bbde1851e311196

HTTP Headers

GET /i/projects/raiffeisen/cover.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
last-modified: Tue, 12 Jul 2022 06:23:10 GMT
access-control-allow-origin: *
etag: "62cd134e-1d28"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: EE12:787E:1C4E23D:1D2D997:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.323801,VS0,VE117
vary: Accept-Encoding
x-fastly-request-id: 8020a7aca47e46868bf8558287caab6a48cc2dab
content-length: 7464
X-Firefox-Spdy: h2

www.e-legion.com/i/emoji/trophy.svg

185.199.109.153

200 OK

8.3 kB

URL HTTP/2
www.e-legion.com/i/emoji/trophy.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , Unicode text, UTF-8 text, with very long lines (9679)
Size
8.3 kB (8315 bytes)
Hash
63fa4328691db4ae8d1f1abfe102f596
90e7153bb28448b2830d18d30bd5022f5833a72d
25e32d0c97a27cd781168b9bbf25f257efbf851e5adc374464de90145305a51b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/emoji/trophy.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-8726"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 26EE:7631:19A4D0:1A432C:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.326382,VS0,VE114
vary: Accept-Encoding
x-fastly-request-id: 5c12c23ba1a62f61675ac8f9763422fd08632656
content-length: 8315
X-Firefox-Spdy: h2

www.e-legion.com/i/emoji/medal.svg

185.199.109.153

200 OK

4.7 kB

URL HTTP/2
www.e-legion.com/i/emoji/medal.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , Unicode text, UTF-8 text, with very long lines (532)
Size
4.7 kB (4736 bytes)
Hash
366a838a1954e3ec73a94b62a38c8ac0
a2d33515cf663a0eb9193ec6922085ab692d685c
f67816ab892feb64d9d88bb065d2168e8ec768534e0fb9d6a3782c3abf028733

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/emoji/medal.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-6d57"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 581E:7631:19A4D0:1A432B:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.327205,VS0,VE114
vary: Accept-Encoding
x-fastly-request-id: 95561c8afe818d92641c721defd1219c5aab383e
content-length: 4736
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/yandex/cover.png

185.199.109.153

200 OK

3.3 kB

URL HTTP/2
www.e-legion.com/i/projects/yandex/cover.png
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
PNG image data, 416 x 416, 8-bit colormap, non-interlaced\012- data
Size
3.3 kB (3348 bytes)
Hash
f328045f6b48860f8a1016c4abaa039d
38239a6f883a3a3a5bea143960a1f558f7dbf64f
bfc764ab3187029c9f2e2c78de173ccbde578d9c6348f0dcf4a104e0de5fc8bf

HTTP Headers

GET /i/projects/yandex/cover.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:11 GMT
access-control-allow-origin: *
etag: "62cd134f-d14"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: CE30:0EBC:192A19D:19EBB60:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.323459,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: b6e1cc2b5f95db5789f7897b543d0352bc7bc3ca
content-length: 3348
X-Firefox-Spdy: h2

www.e-legion.com/i/logos/bmw.png

185.199.109.153

200 OK

9.4 kB

URL HTTP/2
www.e-legion.com/i/logos/bmw.png
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
PNG image data, 240 x 240, 8-bit colormap, non-interlaced\012- data
Size
9.4 kB (9383 bytes)
Hash
d45b9b7cd9857a897067956475d8c73b
e2f40a6f2d8ea195a8d39a277fe0bb27bdf0b18b
b44704fc65e4cd04cdf2928ff4363505643a66b877f4b4b2ec613f4929aac8da

HTTP Headers

GET /i/logos/bmw.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: "62cd134c-24a7"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: A412:3D7E:1E10144:1EFB098:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.328985,VS0,VE113
vary: Accept-Encoding
x-fastly-request-id: e9fa75fa13262b5c1fe907535e198b52e64b5a5b
content-length: 9383
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/globus-2.0/cover.svg

185.199.109.153

200 OK

8.3 kB

URL HTTP/2
www.e-legion.com/i/projects/globus-2.0/cover.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (9283)
Size
8.3 kB (8277 bytes)
Hash
4e16b824681aded70f538129e449270e
e0cd60065de137bc4158ff3a5a7f846b5917d902
42327e180ed89a069e4026f97982936479525cc99db71ddbe545c8602949363f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/projects/globus-2.0/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:09 GMT
access-control-allow-origin: *
etag: W/"62cd134d-42cb"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: EC6C:BE7B:7220F4:75BC48:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.323119,VS0,VE120
vary: Accept-Encoding
x-fastly-request-id: 237cec6f1732a75e0d1af996f87961be0211d366
content-length: 8277
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.e-legion.com/i/projects/ms-tech-events/cover.svg

185.199.109.153

200 OK

2.7 kB

URL HTTP/2
www.e-legion.com/i/projects/ms-tech-events/cover.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4882)
Size
2.7 kB (2722 bytes)
Hash
49fa75a4ad3f73158d84975ed7270acf
a44b0a1da761907c6861498af1b9ebfe5d94f5c9
384a51b7a6ce765b91309abb287b8fb6e49a0f54c1d70513f0a5a016c1571356

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/projects/ms-tech-events/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:10 GMT
access-control-allow-origin: *
etag: W/"62cd134e-16b0"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: CA70:A430:1D8259D:1E6CFA2:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.323906,VS0,VE119
vary: Accept-Encoding
x-fastly-request-id: 6b991d61d5e524efbba63985633260e2ebcfa582
content-length: 2722
X-Firefox-Spdy: h2

www.e-legion.com/i/emoji/hammer-and-wrench.svg

185.199.109.153

200 OK

8.2 kB

URL HTTP/2
www.e-legion.com/i/emoji/hammer-and-wrench.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2006)
Size
8.2 kB (8231 bytes)
Hash
9b55ee37dc1ee4d760bb59c4fed0541c
3a3793ae3c78b2a76c23760b66df5e3c073ab8d7
0d0bb61630b57e199766c5aa0ee2361e8b82fad1c888dedd3e32dd6d82c59015

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/emoji/hammer-and-wrench.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-8ffe"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: DCAA:4378:149867A:153CF8B:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.325802,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: 4874c1b78dc5e1da10c2bd08f9d636c33349cf21
content-length: 8231
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/alfa-direct-2.0/cover.svg

185.199.109.153

200 OK

223 B

URL HTTP/2
www.e-legion.com/i/projects/alfa-direct-2.0/cover.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
223 B (223 bytes)
Hash
73cf0518cb0b60369e726acd621eac01
077c9980946f5fa9f8dae1922181f437c6d7d6fc
8ca135c9af56ec3899dd768540079db0c490293ae0f3036150e95f12a6c559d5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/projects/alfa-direct-2.0/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-125"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 5836:A90D:1DF4FF0:1EE01BD:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.320724,VS0,VE124
vary: Accept-Encoding
x-fastly-request-id: bde568a039fc54ad26a39be8381f2b169ffe081f
content-length: 223
X-Firefox-Spdy: h2

www.e-legion.com/i/logos/burgerking.png

185.199.109.153

200 OK

14 kB

URL HTTP/2
www.e-legion.com/i/logos/burgerking.png
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
PNG image data, 252 x 252, 8-bit colormap, non-interlaced\012- data
Size
14 kB (14375 bytes)
Hash
75e7ee517e87e5807ea27031e8b91d9c
82fb7f8a9feaabd713087ae5b2a1802600c0c5ad
0ad0fed743e842369339bc450ccf5c980be97803d2f05ffed5678eb6066cb54f

HTTP Headers

GET /i/logos/burgerking.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: "62cd134c-3827"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 7DB4:B926:12E1133:1371591:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.329768,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: a46751ba356f8850d9915303e96cb77c75a6b4cf
content-length: 14375
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/cafetera/cover.svg

185.199.109.153

200 OK

2.5 kB

URL HTTP/2
www.e-legion.com/i/projects/cafetera/cover.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1368)
Size
2.5 kB (2474 bytes)
Hash
c3cf4710bd65e7ffa0d3a05c637646f6
64db51d38b161e2c5aa401611b5947a3d2e6343f
49dff958ae2ab60d005ebaf828c0329155234794b51c6de79dfa0c4b8f23ae0e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/projects/cafetera/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 06:23:09 GMT
access-control-allow-origin: *
etag: W/"62cd134d-1568"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 4218:727E:1D856DC:1E70077:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.324617,VS0,VE121
vary: Accept-Encoding
x-fastly-request-id: 3ad61c8b9eef07b698faf1f2f74b123e5edd1a6b
content-length: 2474
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/888/cover.svg

185.199.109.153

200 OK

1.1 kB

URL HTTP/2
www.e-legion.com/i/projects/888/cover.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Size
1.1 kB (1147 bytes)
Hash
55eed4ffb56e01969f3e3417b16b8b78
7a977dc0b3413cb04186410c37496305247b57e0
d97abd4dc5d7afb1454f1876d6c8506510860ae077291e062b87705a0b1e6d1e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/projects/888/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-c0d"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 6B02:13121:64FA53:684B52:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.331288,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: f6d24de293bb395c8699f60bba030a29edacfc16
content-length: 1147
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
90b4caf4c10d4aedbbf15a03650df1f8
f2da7656691c4bc1238df9c60f4439dde08541dc
2c67636d085bb985e6cc0a524aeb26d2a8d1f574d538e394349d2196587e1219

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6242
Cache-Control: max-age=163703
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:05 GMT
Etag: "6389a2c6-116"
Expires: Sun, 04 Dec 2022 08:45:28 GMT
Last-Modified: Fri, 02 Dec 2022 07:01:26 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278

www.e-legion.com/i/projects/my-jet-sport/cover.svg

185.199.109.153

200 OK

2.2 kB

URL HTTP/2
www.e-legion.com/i/projects/my-jet-sport/cover.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3811)
Size
2.2 kB (2184 bytes)
Hash
29b1145444f1abb756364482d77d49d0
c7f3af48870d2244867a8dc6b29a9c25d522ce19
474dad6826f5a92f845f1d73cd81602a7eb5091075c7a47ce86676fd5b3fe18a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/projects/my-jet-sport/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:10 GMT
access-control-allow-origin: *
etag: W/"62cd134e-1117"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 7DAA:7631:19A4D0:1A432A:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.323559,VS0,VE123
vary: Accept-Encoding
x-fastly-request-id: 659ceeb12cba2d5a9c91e9fa1243017e7c364bba
content-length: 2184
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-P23G9N

142.250.74.168

200 OK

95 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-P23G9N
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (65323)
Size
95 kB (94954 bytes)
Hash
4048efe834959fa73ada2fac27f532b4
9105634239e6f7ec6f7e1c844191274ec3e209ea
6345436de013814205b3c3664cd78de85229d945329c928dcb7ea2dbb27a62f5

HTTP Headers

GET /gtm.js?id=GTM-P23G9N HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 11:17:05 GMT
expires: Fri, 02 Dec 2022 11:17:05 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Dec 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94954
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-53Z3C9T

142.250.74.168

200 OK

48 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-53Z3C9T
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (4815)
Size
48 kB (48369 bytes)
Hash
25a53917373005b5eefc0bd8504fee55
d40495b9937778e953037c2694fdb7085a1ffedd
8c316540e0b2fd3c52976b888a77874ca2b32f59924608af0d15d09e2400609a

HTTP Headers

GET /gtm.js?id=GTM-53Z3C9T HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 11:17:05 GMT
expires: Fri, 02 Dec 2022 11:17:05 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Dec 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 48369
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/spiking/cover.png

185.199.109.153

200 OK

107 kB

URL HTTP/2
www.e-legion.com/i/projects/spiking/cover.png
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
PNG image data, 416 x 416, 8-bit/color RGBA, non-interlaced\012- data
Size
107 kB (106827 bytes)
Hash
b0f7624ce48fed4ebc9fe1c46341c858
72a62489aca4d52bbc9eddb450679646e3bbb4b6
2d6fd1b9948f8e1e8568e332333bdaede88076924a6a9907ea25da046a5da763

HTTP Headers

GET /i/projects/spiking/cover.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
last-modified: Tue, 12 Jul 2022 06:23:11 GMT
access-control-allow-origin: *
etag: "62cd134f-1a14b"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 9292:797B:E34C1:E8437:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.317690,VS0,VE129
vary: Accept-Encoding
x-fastly-request-id: 04d9b3d4e8e4843dcbffeeeb7516947dddf9d9d4
content-length: 106827
X-Firefox-Spdy: h2

www.e-legion.com/i/emoji/muscle.svg

185.199.109.153

200 OK

5.8 kB

URL HTTP/2
www.e-legion.com/i/emoji/muscle.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1494)
Size
5.8 kB (5791 bytes)
Hash
73124357651b15b2662dbea00406aadf
1e944802052b7b9cd5191a171cff8dba98174fa0
ba3ecf17d5491820294ff0073eec1edb51839c1584cd0f3959c7a39351e07cdf

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/emoji/muscle.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-1033e"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 6EF8:3380:1E3C840:1F279C9:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.328475,VS0,VE121
vary: Accept-Encoding
x-fastly-request-id: 96df9011aebde07c99bfc1d85216a0e564fddc93
content-length: 5791
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/venn/cover.svg

185.199.109.153

200 OK

434 B

URL HTTP/2
www.e-legion.com/i/projects/venn/cover.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (350)
Size
434 B (434 bytes)
Hash
0f5c168980416fc26a178a6a0ab967c1
4620ec931936179c1a0493150bd8325f81e3d955
08a7e6080238dfa94e0979665a36bd4d623d3c22782af196f38ec4b5c14a1d4c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/projects/venn/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:11 GMT
access-control-allow-origin: *
etag: W/"62cd134f-2ff"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F63E:1CB9:1D89358:1E6F488:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.332002,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: ae8f65d39bc4a701e6c9067da64fa0770a832332
content-length: 434
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/master-podarkov/cover.png

185.199.109.153

200 OK

106 kB

URL HTTP/2
www.e-legion.com/i/projects/master-podarkov/cover.png
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
PNG image data, 416 x 416, 8-bit/color RGBA, non-interlaced\012- data
Size
106 kB (106203 bytes)
Hash
c6358480f8f58b6b5ed3df99bfcc79e8
5ad7964bb74be61e19f20ad73ca8daea22eaa3f1
720254540a9d039392b00a141a30d54ee36ef64e393778426f7a2094af817054

HTTP Headers

GET /i/projects/master-podarkov/cover.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:10 GMT
access-control-allow-origin: *
etag: "62cd134e-19edb"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: BF4E:7631:19A4D2:1A4330:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.335232,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: 7925bd339aad3963514ccb507f381a3163a11da4
content-length: 106203
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/ppf/cover.png

185.199.109.153

200 OK

12 kB

URL HTTP/2
www.e-legion.com/i/projects/ppf/cover.png
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
PNG image data, 416 x 416, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (11662 bytes)
Hash
5713e40c4a4e00c416ea5efa90fd75cc
d370a0b6e92601ac0ec6a20fe9e10a177bfb7c88
18752922c6d2120825eff12c1b7f341eee7a248c5d5b52f77412fe48d4e6ce80

HTTP Headers

GET /i/projects/ppf/cover.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:10 GMT
access-control-allow-origin: *
etag: "62cd134e-2d8e"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 421A:3290:B15B75:B674C7:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.333170,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: d1bb7ddadb5bfe389ad434ce718ef5031c4d25ae
content-length: 11662
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/bm/cover.svg

185.199.109.153

200 OK

2.9 kB

URL HTTP/2
www.e-legion.com/i/projects/bm/cover.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (626)
Size
2.9 kB (2867 bytes)
Hash
36a1b3d450728a8b693946b62d353fac
6234c83be34903092b8ddba6fb5305dc1714efbc
eed39734004bcf6463ac4212b58c730c3cf246166645aa842350a3ac953c3608

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/projects/bm/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-2d79"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 9B92:787E:1C4E23E:1D2D99C:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.333930,VS0,VE125
vary: Accept-Encoding
x-fastly-request-id: c507c36b351f4c735a784faf6d6dd9b8e2df9742
content-length: 2867
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/skillaz/cover.svg

185.199.109.153

200 OK

1.2 kB

URL HTTP/2
www.e-legion.com/i/projects/skillaz/cover.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1538)
Size
1.2 kB (1203 bytes)
Hash
48b8c5e1adb0af88c91c88a38106e291
4a032aec65ad24399ea2f39030e058eb6a3fdeec
2c7da7a4067e006476f1023c981343f037e329a099cafecba2e4c0219aad2531

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/projects/skillaz/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:10 GMT
access-control-allow-origin: *
etag: W/"62cd134e-b27"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F6B2:0EBC:192A1A2:19EBB65:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.334736,VS0,VE125
vary: Accept-Encoding
x-fastly-request-id: e53c18e02eea6f119050c51acdffab4264c2016e
content-length: 1203
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/bm-wallet/cover.svg

185.199.109.153

200 OK

3.0 kB

URL HTTP/2
www.e-legion.com/i/projects/bm-wallet/cover.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4039)
Size
3.0 kB (2955 bytes)
Hash
3262071b5dab9a93b9d2830bc9e1afa0
48d90f7d73e0701e687810d8795240485693a70a
f939b418f3eb6bc606db479684a36a509a75f12e30290fa61443bb301047ee2f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/projects/bm-wallet/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-1b55"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 2E6E:EF76:14B6B26:155F1FC:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.342760,VS0,VE117
vary: Accept-Encoding
x-fastly-request-id: e5ed49d7a021095ccb6c07ea8856241bb4e58cc1
content-length: 2955
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/1tv/cover.png

185.199.109.153

200 OK

63 kB

URL HTTP/2
www.e-legion.com/i/projects/1tv/cover.png
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
PNG image data, 416 x 416, 8-bit colormap, non-interlaced\012- data
Size
63 kB (63129 bytes)
Hash
a7c59de2299f12e53bfcf34ac76f478f
b96dff2cbc70b19b57ab8b8a9a98f4675d1c7d1b
a4c456a47e2cb3e2c2632955c925cda2c433e224c56b36fd4e4cfbaf26521a8c

HTTP Headers

GET /i/projects/1tv/cover.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: "62cd134c-f699"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 582C:9054:515051:542581:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.324049,VS0,VE135
vary: Accept-Encoding
x-fastly-request-id: f2bfdaefb514e8c48417adca31941fbdd36d63b1
content-length: 63129
X-Firefox-Spdy: h2

www.e-legion.com/i/logos/mobile-app-daily.png

185.199.109.153

200 OK

36 kB

URL HTTP/2
www.e-legion.com/i/logos/mobile-app-daily.png
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
PNG image data, 160 x 158, 8-bit/color RGBA, non-interlaced\012- data
Size
36 kB (36428 bytes)
Hash
efbe606a346be541247bd54a9d132507
83d8ff2c6ce574039cc0a398880a851a50a338be
e1dfd2ce424835922ed7074cc3a27d31ee8de718d0335f632b3bea0a51822560

HTTP Headers

GET /i/logos/mobile-app-daily.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: "62cd134c-8e4c"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 7DD2:A90D:1DF4FEF:1EE01BB:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.316129,VS0,VE145
vary: Accept-Encoding
x-fastly-request-id: 0db8ae4e172bf800681a028a4ea73ec9293305a9
content-length: 36428
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/taxi777/cover.svg

185.199.109.153

200 OK

422 B

URL HTTP/2
www.e-legion.com/i/projects/taxi777/cover.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
422 B (422 bytes)
Hash
02c6d0332958065dfba06b9aa018066e
ee9c73c92a1ebd331b216bb765aa3ce57aa29d08
f527cc2f198d192d82c3efdd6901d165ad39749c1c94a6ff1fef89640e379a7b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/projects/taxi777/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:11 GMT
access-control-allow-origin: *
etag: W/"62cd134f-3f5"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: EEFE:B926:12E1135:1371596:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.345743,VS0,VE116
vary: Accept-Encoding
x-fastly-request-id: fda4de77a95fec298ccde66182fe30f2b2059886
content-length: 422
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/wikimart/cover.png

185.199.109.153

200 OK

11 kB

URL HTTP/2
www.e-legion.com/i/projects/wikimart/cover.png
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
PNG image data, 416 x 416, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10619 bytes)
Hash
167b4451db0ecc9791d6509ae9d677b7
405b2c34edb437e5a6d633644b67499c9a438748
58339efc58971727fc78bbe6521015a832d39605371e4463a67a2516896c1c02

HTTP Headers

GET /i/projects/wikimart/cover.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:11 GMT
access-control-allow-origin: *
etag: "62cd134f-297b"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 7A62:EF76:14B6B26:155F1FD:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.344233,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: eb2f9b7772824e07c022154045afdd4490fad2ab
content-length: 10619
X-Firefox-Spdy: h2

www.e-legion.com/app.min.css

185.199.109.153

200 OK

18 kB

URL HTTP/2
www.e-legion.com/app.min.css
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (51824)
Size
18 kB (18190 bytes)
Hash
938b6778198b2e43d222e55c7ba645fc
7d789486b94bed13c384dc846c28e766f2c06c19
8d2eb5aace4b3f88409d2bf089fd683f721bff0d3137eb9672e6e9eb824eb0ff

HTTP Headers

GET /app.min.css HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:07 GMT
access-control-allow-origin: *
etag: W/"62cd134b-181c0"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 6F08:5B1B:10EC90A:116F339:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.312632,VS0,VE150
vary: Accept-Encoding
x-fastly-request-id: d3b22d42612d4aefd4e236ed69382c4acdb1c2d0
content-length: 18190
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/smeshariki/cover.en.png

185.199.109.153

200 OK

81 kB

URL HTTP/2
www.e-legion.com/i/projects/smeshariki/cover.en.png
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
PNG image data, 416 x 416, 8-bit/color RGBA, non-interlaced\012- data
Size
81 kB (81330 bytes)
Hash
b854e00eba002cfd4a5003b6690401bf
be3b27e1a3b17d5f8e80b4a3806e887210311d0c
b8778e647583682f377f2cc45f96433a2d1ee83df5102533021ac3de5de6657b

HTTP Headers

GET /i/projects/smeshariki/cover.en.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:10 GMT
access-control-allow-origin: *
etag: "62cd134e-13db2"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 655A:797B:E34C7:E843F:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.336144,VS0,VE131
vary: Accept-Encoding
x-fastly-request-id: 5bf96ddfba91e1aad38c6fcea55cb715d58cdaca
content-length: 81330
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/vkarmane/cover.svg

185.199.109.153

200 OK

902 B

URL HTTP/2
www.e-legion.com/i/projects/vkarmane/cover.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1259)
Size
902 B (902 bytes)
Hash
17eb942fffc3961627feb8cb01780211
439bcc205aec6eea3b4f81cb8a25d3ab98550c22
bd582bd8be4ed671d73b98d1530184bfb1a6f0d6323bda4e52649af8a4133cc3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/projects/vkarmane/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:11 GMT
access-control-allow-origin: *
etag: W/"62cd134f-76a"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 9CEE:3290:B15B77:B674C8:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.343766,VS0,VE125
vary: Accept-Encoding
x-fastly-request-id: d18b13e3c9b35e9237f260bc99c1c472bb1e0f81
content-length: 902
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/rtrs/cover.svg

185.199.109.153

200 OK

1.1 kB

URL HTTP/2
www.e-legion.com/i/projects/rtrs/cover.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (792)
Size
1.1 kB (1084 bytes)
Hash
db078a4c76be24ed2524924ec80e8779
6bf9496b80fd76ed31b1ae380eddee5ced815c81
0568c4baba9d124cb984289222ef8f60fc6617964ed848abe7f7c06c96440882

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/projects/rtrs/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:10 GMT
access-control-allow-origin: *
etag: W/"62cd134e-7fa"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: CAC2:0EBC:192A1A5:19EBB67:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.344083,VS0,VE124
vary: Accept-Encoding
x-fastly-request-id: 83745641318859e6269166a467ff1e5dba7b5a09
content-length: 1084
X-Firefox-Spdy: h2

www.e-legion.com/i/emoji/student-male.svg

185.199.109.153

200 OK

4.4 kB

URL HTTP/2
www.e-legion.com/i/emoji/student-male.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1541)
Size
4.4 kB (4372 bytes)
Hash
f75fe4cddd8dfabb2e2bbd6acae11c26
335798abf23ad80c4187220e0d507a5da7e19fdc
b6c8a620fa948c40148ac8fb7efa5767916aae6efbda7dc1cc53b9e74200e126

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/emoji/student-male.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-35e3"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: D0B8:9054:515054:542585:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.350206,VS0,VE119
vary: Accept-Encoding
x-fastly-request-id: 21233cdfb5d483eaddb03c9eea7bee6d9fae7c69
content-length: 4372
X-Firefox-Spdy: h2

www.e-legion.com/i/emoji/graduation-cap.svg

185.199.109.153

200 OK

5.3 kB

URL HTTP/2
www.e-legion.com/i/emoji/graduation-cap.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (915)
Size
5.3 kB (5274 bytes)
Hash
379edfb0d7ee820606360514b73fef9e
b95a367d502f46ed0e141e0d2456c8fc44437512
d27860782166c019076fcc2cdd5d286152737c17045d37601e1d7ea38bb76191

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/emoji/graduation-cap.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-9baf"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: D6C4:1CB9:1D8935D:1E6F490:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.350245,VS0,VE121
vary: Accept-Encoding
x-fastly-request-id: f3af898952e380e2cddc4d565cfd68104526df24
content-length: 5274
X-Firefox-Spdy: h2

www.e-legion.com/i/emoji/nerd.svg

185.199.109.153

200 OK

4.9 kB

URL HTTP/2
www.e-legion.com/i/emoji/nerd.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (648)
Size
4.9 kB (4900 bytes)
Hash
c664fcbc4de59e2b6ca933926c257774
16e753ce58e2b8902e776ed7ea8a5a17a6c093d5
1afab2f3ad0ec9cabad3922e695532191628c90b2b7fbf056889343c30e04f16

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/emoji/nerd.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-7497"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: E3C4:4378:1498680:153CF8F:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.350297,VS0,VE123
vary: Accept-Encoding
x-fastly-request-id: cc68e3741eb6511b3c2d112eada197ef08b25727
content-length: 4900
X-Firefox-Spdy: h2

www.e-legion.com/app.min.js

185.199.109.153

200 OK

38 kB

URL HTTP/2
www.e-legion.com/app.min.js
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (65523), with no line terminators
Size
38 kB (37539 bytes)
Hash
c7f40ab54844895bf7ed7fe7626aebb7
53d51454bd2861a77979fc78e9de14e7a9c43ba9
7490c634d8342ef6597043a9acd370ca3a0da4c6736908438da0af72dbdda17c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /app.min.js HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:07 GMT
access-control-allow-origin: *
etag: W/"62cd134b-1f310"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: DCAC:3380:1E3C846:1F279CC:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.358007,VS0,VE121
vary: Accept-Encoding
x-fastly-request-id: c7af4faef03a35183a4d97d52552f2c3c0d2e982
content-length: 37539
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/bmw/cover.png

185.199.109.153

200 OK

80 kB

URL HTTP/2
www.e-legion.com/i/projects/bmw/cover.png
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
PNG image data, 416 x 416, 8-bit colormap, non-interlaced\012- data
Size
80 kB (79779 bytes)
Hash
96bf5cdd8009b33a84518a8270f6c934
13b920f9f8c282994f8c318918bffb137ee9b164
c186599179ecf5fd8ddec7febad65cccd20602cba83d1eb5e65e14fb7edf44da

HTTP Headers

GET /i/projects/bmw/cover.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:09 GMT
access-control-allow-origin: *
etag: "62cd134d-137a3"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 6B04:1CB9:1D89355:1E6F484:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.325112,VS0,VE165
vary: Accept-Encoding
x-fastly-request-id: b3cfd427ee1da7f7fb29c4794c63752a2411b2e4
content-length: 79779
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.e-legion.com/i/projects/jet-kid/cover.svg

185.199.109.153

200 OK

889 B

URL HTTP/2
www.e-legion.com/i/projects/jet-kid/cover.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1513)
Size
889 B (889 bytes)
Hash
529946e46fe8be8dc9f3f49787e82961
bb9c6956319c9669887a3c372c8f2c130d5b4abe
4ee52f8dc9e76efb9c092f6538fe688be997d5baf55a88a2496264647f91d61d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/projects/jet-kid/cover.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:09 GMT
access-control-allow-origin: *
etag: W/"62cd134d-662"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: CCE2:B926:12E113A:137159A:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.332546,VS0,VE184
vary: Accept-Encoding
x-fastly-request-id: e1b2fdb347c3c7342e39ef0bd9281ff2ddaa54d1
content-length: 889
X-Firefox-Spdy: h2

www.e-legion.com/i/logos/openprofession.svg

185.199.109.153

200 OK

3.0 kB

URL HTTP/2
www.e-legion.com/i/logos/openprofession.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (8058)
Size
3.0 kB (2978 bytes)
Hash
785674f362149d6e1baffe7bfd405750
c07217544406ed3da3dde97bee7fa1e7599f620f
e6ae0867d734ab56c5c7914ca043275a40c0aa4e0710cf2e3b65d6402d1b7112

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/logos/openprofession.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-1f7b"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 6B1A:A430:1D825A8:1E6CFB5:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.350405,VS0,VE178
vary: Accept-Encoding
x-fastly-request-id: e49056a42da6b8f5440138c9963aafc2e04a6929
content-length: 2978
X-Firefox-Spdy: h2

www.e-legion.com/i/logos/stepik.svg

185.199.109.153

200 OK

1.2 kB

URL HTTP/2
www.e-legion.com/i/logos/stepik.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2932)
Size
1.2 kB (1225 bytes)
Hash
42e618a72d36c647d82417664a5a8bd5
bd0761e4151b9e0f7102bfbf23a454c67468671c
1139f611ee4080b79280fc88ef38a99a41cf05cf3ed1594fa46a69fd23a27b49

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/logos/stepik.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-b75"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 6B1C:9054:51505B:542591:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.355742,VS0,VE180
vary: Accept-Encoding
x-fastly-request-id: 9ced7bd0ffd8efd9001cbb2c2dc5cc0e52810f51
content-length: 1225
X-Firefox-Spdy: h2

www.e-legion.com/i/emoji/student-female.svg

185.199.109.153

200 OK

5.9 kB

URL HTTP/2
www.e-legion.com/i/emoji/student-female.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (811)
Size
5.9 kB (5920 bytes)
Hash
e49d32f82d4edcf6e6d256bd7c4c7536
9c2e352822f60e2104528b5470732b6e9c5b2459
65905365c52465181d50a00d03f0b12531dccac831ca25ec3fb48ae6291926dc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/emoji/student-female.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-a5f1"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: C47C:3D7E:1E10151:1EFB0A6:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.350180,VS0,VE190
vary: Accept-Encoding
x-fastly-request-id: 0785d3646b330334581730f9046d873e3906297e
content-length: 5920
X-Firefox-Spdy: h2

www.e-legion.com/i/logos/coursera.svg

185.199.109.153

200 OK

2.2 kB

URL HTTP/2
www.e-legion.com/i/logos/coursera.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4314)
Size
2.2 kB (2192 bytes)
Hash
1a2e16e853e083ee71bbbf0801f875ce
6347f1791c029a1c28deff0f51b32d01b39758c7
2e787ee5c26cec315ab10b8be7183b4a97f783feb0e991f1f85f57cfb76afc38

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/logos/coursera.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-10db"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: CCF8:3D7E:1E10151:1EFB0A8:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.355479,VS0,VE188
vary: Accept-Encoding
x-fastly-request-id: 3d2a0bd10fab33946df10b1a7d9729737ae6357b
content-length: 2192
X-Firefox-Spdy: h2

www.e-legion.com/i/logos/dzsystems.svg

185.199.109.153

200 OK

1.8 kB

URL HTTP/2
www.e-legion.com/i/logos/dzsystems.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (5467), with no line terminators
Size
1.8 kB (1789 bytes)
Hash
4020597f278c7b25b70efd754a197e85
1cfe257a7a58ca5c7548d268fe808eb7c8893f1c
8a7e75aec6b164faec078077b519598be26e3c9c3092e6ecc544360d3a3b907e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/logos/dzsystems.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-155b"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 7DE6:1CB9:1D89364:1E6F49D:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.356590,VS0,VE190
vary: Accept-Encoding
x-fastly-request-id: d15218dde0be463321662e3b8ea65ab6d948501e
content-length: 1789
X-Firefox-Spdy: h2

www.e-legion.com/fbq-events.min.js

185.199.109.153

200 OK

858 B

URL HTTP/2
www.e-legion.com/fbq-events.min.js
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (1692), with no line terminators
Size
858 B (858 bytes)
Hash
5d2f2d863398df1b96f10ddf18ab356e
72586f207cb892b965929d5c0027648eaa662341
f11ef79690cf968a3f70875efa817b4973acfbe2f16a4d917fbb0becdb8dc9a6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /fbq-events.min.js HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:07 GMT
access-control-allow-origin: *
etag: W/"62cd134b-69c"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: C482:5B1B:10EC91B:116F34C:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.359582,VS0,VE189
vary: Accept-Encoding
x-fastly-request-id: d4a852242500d637fca4b357f889e18f5cfb52d6
content-length: 858
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/auchan/cover.en.png

185.199.109.153

200 OK

96 kB

URL HTTP/2
www.e-legion.com/i/projects/auchan/cover.en.png
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
PNG image data, 416 x 416, 8-bit/color RGBA, non-interlaced\012- data
Size
96 kB (96208 bytes)
Hash
4aa79ef37f77e34493d377017dba53c1
5f037bee194e792d5a73fd836b3ee1791f1d816a
5c51d8db7b4408fa4d8ce9ef420116d0313078d58d4c379f9fda3ab3e0034eda

HTTP Headers

GET /i/projects/auchan/cover.en.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: "62cd134c-177d0"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 0A22:5B1B:10EC914:116F347:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.330692,VS0,VE227
vary: Accept-Encoding
x-fastly-request-id: 811ba67e5b14063d3717deb3bb2f08ba78a55301
content-length: 96208
X-Firefox-Spdy: h2

www.e-legion.com/i/photos/events/mblt-dev.jpg

185.199.109.153

200 OK

249 kB

URL HTTP/2
www.e-legion.com/i/photos/events/mblt-dev.jpg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, baseline, precision 8, 832x400, components 3\012- data
Size
249 kB (249211 bytes)
Hash
4b31b666b198a59bbabc403eebeec094
ab34b96adf3d87a641493e872d9e4b94e0cc21f3
5dca781863db2fc5d08f150e2bfa7ee62a1b3de2aca1e4d957cf374d3741ea0c

HTTP Headers

GET /i/photos/events/mblt-dev.jpg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/jpeg
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: "62cd134c-3cd7b"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 6B18:3380:1E3C84D:1F279D2:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.350251,VS0,VE277
vary: Accept-Encoding
x-fastly-request-id: 4867fe792dd818d9ec4e7c466fe05cad94ab7ecf
content-length: 249211
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 11:11:15 GMT
cache-control: public,max-age=3600
age: 350
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6303
Cache-Control: max-age=171292
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:05 GMT
Etag: "6389c02e-1d7"
Expires: Sun, 04 Dec 2022 10:51:57 GMT
Last-Modified: Fri, 02 Dec 2022 09:06:54 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5fc12e7b1238ac24822e4fb1c1901d25
9b1c8ada64031145f956acfd8216a7d5dfe5528c
35c8c758d1555cf09b172c0d2e07ccc18110a10b8cd5e121005859e2a26daa1a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35C8C758D1555CF09B172C0D2E07CCC18110A10B8CD5E121005859E2A26DAA1A"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8411
Expires: Fri, 02 Dec 2022 13:37:16 GMT
Date: Fri, 02 Dec 2022 11:17:05 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

prostor-lite.ru/gtm/?crmid=87467&callback=p_conf_callback.p_func461267

77.244.216.45

200 OK

651 B

URL HTTP/1.1
prostor-lite.ru/gtm/?crmid=87467&callback=p_conf_callback.p_func461267
IP
77.244.216.45:0
ASN
#49505 OOO Network of data-centers Selectel

File type
ASCII text, with very long lines (2007), with no line terminators
Size
651 B (651 bytes)
Hash
eb66cc40f21aadb1974f4e941af8e65e
1a937c105c2a4f5b2cf2b695cfcefd661fac19f7
82823c3836c571566cdc6ed12029a5004df5bbea065b779754e346f8c0339a71

HTTP Headers

GET /gtm/?crmid=87467&callback=p_conf_callback.p_func461267 HTTP/1.1
Host: prostor-lite.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 11:17:06 GMT
Server: Apache/2.4.38 (Debian)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 651
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

142.250.74.163

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 16:40:18 GMT
expires: Fri, 01 Dec 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 67008
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2

142.250.74.163

200 OK

21 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21276, version 1.0\012- data
Size
21 kB (21276 bytes)
Hash
59c9b83cc112cf7eeb3bf7a5e96b21fe
771790b776b5e1bc3039c337024e400974184208
a8447cdec51e85d9e93971a0d4a53bcf6085d70bf1d201662837d2fb953422c7

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21276
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 18:57:47 GMT
expires: Thu, 30 Nov 2023 18:57:47 GMT
cache-control: public, max-age=31536000
age: 145159
last-modified: Mon, 11 Jul 2022 19:01:17 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.e-legion.com/i/icons/support.svg

185.199.109.153

200 OK

1.3 kB

URL HTTP/2
www.e-legion.com/i/icons/support.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2740)
Size
1.3 kB (1268 bytes)
Hash
62600f20b659af7acebda58198b0c1b8
a6f2b9618f2b494e0e57f60575f1341ff79180e1
33fb42d64448ff6d6382fe0003196e03a351de5e028d969352c1ceede17244f7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/icons/support.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/app.min.css
Cookie: pclick_entry=eyJpZCI6IjE2Njk5Nzk4MjQwNzguODUzMzkiLCJyZWZlcnJlciI6IiIsImZpcnN0X3VybCI6Imh0dHBzOi8vd3d3LmUtbGVnaW9uLmNvbSIsImZpcnN0X3JlZmVyZXIiOiIiLCJ1cmwiOiJodHRwczovL3d3dy5lLWxlZ2lvbi5jb20iLCJzb3VyY2UiOiJkaXJlY3QiLCJ1bmlxdWVfaWQiOiIxNjY5OTc5ODI0MDc4Ljg2MTk5IiwiY3JtaWQiOiI4NzQ2NyIsImVudGVycyI6eyJjbnQiOltdLCJvdGhlciI6W3siaWQiOiIxNjY5OTc5ODI0MDc4Ljg1MzM5IiwidXJsIjoiaHR0cHM6Ly93d3cuZS1sZWdpb24uY29tLyIsInJlZmVycmVyIjoiIn1dfX0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-b10"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 8C72:727E:1D85730:1E700C9:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:06 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979826.941228,VS0,VE107
vary: Accept-Encoding
x-fastly-request-id: 1271b6b00e9e6d04f674fdeb5caeb7680d8632a3
content-length: 1268
X-Firefox-Spdy: h2

www.e-legion.com/i/icons/design.svg

185.199.109.153

200 OK

645 B

URL HTTP/2
www.e-legion.com/i/icons/design.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1214)
Size
645 B (645 bytes)
Hash
8a2994cce298d90a47b45068b1f2caf3
19f38c3c85c78bb5d48184f0f9aad17e31cf6925
7ce59f920a35f70976051fb0d3e3a18e9aa876589f1472975732cd60bdd62df8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/icons/design.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/app.min.css
Cookie: pclick_entry=eyJpZCI6IjE2Njk5Nzk4MjQwNzguODUzMzkiLCJyZWZlcnJlciI6IiIsImZpcnN0X3VybCI6Imh0dHBzOi8vd3d3LmUtbGVnaW9uLmNvbSIsImZpcnN0X3JlZmVyZXIiOiIiLCJ1cmwiOiJodHRwczovL3d3dy5lLWxlZ2lvbi5jb20iLCJzb3VyY2UiOiJkaXJlY3QiLCJ1bmlxdWVfaWQiOiIxNjY5OTc5ODI0MDc4Ljg2MTk5IiwiY3JtaWQiOiI4NzQ2NyIsImVudGVycyI6eyJjbnQiOltdLCJvdGhlciI6W3siaWQiOiIxNjY5OTc5ODI0MDc4Ljg1MzM5IiwidXJsIjoiaHR0cHM6Ly93d3cuZS1sZWdpb24uY29tLyIsInJlZmVycmVyIjoiIn1dfX0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-51a"
expires: Fri, 02 Dec 2022 11:27:06 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 2E6E:EF76:14B6B80:155F255:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:06 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979826.938966,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: 643e8ef543ae25483fb78b698954eee0e62b8337
content-length: 645
X-Firefox-Spdy: h2

www.e-legion.com/i/icons/reload.svg

185.199.109.153

200 OK

333 B

URL HTTP/2
www.e-legion.com/i/icons/reload.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (412)
Size
333 B (333 bytes)
Hash
51e9dec496e1261cded613bf3b405576
83756d1af396c3585cdea49c11e5ddc59848bc43
bfdda60b45d0ba6b3332f9c25625a84c48cee068d03103d3bc4f063350fc071c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/icons/reload.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/app.min.css
Cookie: pclick_entry=eyJpZCI6IjE2Njk5Nzk4MjQwNzguODUzMzkiLCJyZWZlcnJlciI6IiIsImZpcnN0X3VybCI6Imh0dHBzOi8vd3d3LmUtbGVnaW9uLmNvbSIsImZpcnN0X3JlZmVyZXIiOiIiLCJ1cmwiOiJodHRwczovL3d3dy5lLWxlZ2lvbi5jb20iLCJzb3VyY2UiOiJkaXJlY3QiLCJ1bmlxdWVfaWQiOiIxNjY5OTc5ODI0MDc4Ljg2MTk5IiwiY3JtaWQiOiI4NzQ2NyIsImVudGVycyI6eyJjbnQiOltdLCJvdGhlciI6W3siaWQiOiIxNjY5OTc5ODI0MDc4Ljg1MzM5IiwidXJsIjoiaHR0cHM6Ly93d3cuZS1sZWdpb24uY29tLyIsInJlZmVycmVyIjoiIn1dfX0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-1f8"
expires: Fri, 02 Dec 2022 11:27:06 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 1C1E:0EBC:192A205:19EBBBC:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:06 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979826.942307,VS0,VE113
vary: Accept-Encoding
x-fastly-request-id: 888c886af9b38249eececba27e1162c7a1c7c759
content-length: 333
X-Firefox-Spdy: h2

www.e-legion.com/i/bg/achievements.svg

185.199.109.153

200 OK

3.3 kB

URL HTTP/2
www.e-legion.com/i/bg/achievements.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6548)
Size
3.3 kB (3294 bytes)
Hash
e71f821956b6e361b66eb1b347d1fcac
3e5c9fde3ecc614cbbc586262f213dd4633bc1d8
4acd47f1863c5bb62ba8f020ea0a88608b6e3d0e5834d72ab03dc2c7e64d8105

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/bg/achievements.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/app.min.css
Cookie: pclick_entry=eyJpZCI6IjE2Njk5Nzk4MjQwNzguODUzMzkiLCJyZWZlcnJlciI6IiIsImZpcnN0X3VybCI6Imh0dHBzOi8vd3d3LmUtbGVnaW9uLmNvbSIsImZpcnN0X3JlZmVyZXIiOiIiLCJ1cmwiOiJodHRwczovL3d3dy5lLWxlZ2lvbi5jb20iLCJzb3VyY2UiOiJkaXJlY3QiLCJ1bmlxdWVfaWQiOiIxNjY5OTc5ODI0MDc4Ljg2MTk5IiwiY3JtaWQiOiI4NzQ2NyIsImVudGVycyI6eyJjbnQiOltdLCJvdGhlciI6W3siaWQiOiIxNjY5OTc5ODI0MDc4Ljg1MzM5IiwidXJsIjoiaHR0cHM6Ly93d3cuZS1sZWdpb24uY29tLyIsInJlZmVycmVyIjoiIn1dfX0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:07 GMT
access-control-allow-origin: *
etag: W/"62cd134b-19f4"
expires: Fri, 02 Dec 2022 11:27:06 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 3CB0:1CB9:1D893B6:1E6F4E3:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:06 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979826.941668,VS0,VE114
vary: Accept-Encoding
x-fastly-request-id: 93db71a03255564014100ea86f00ff810374b570
content-length: 3294
X-Firefox-Spdy: h2

www.e-legion.com/i/icons/analytics.svg

185.199.109.153

200 OK

644 B

URL HTTP/2
www.e-legion.com/i/icons/analytics.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1328)
Size
644 B (644 bytes)
Hash
c9a0604f195fb1e784eacbc9f4ae274a
91059cdf4fa7b53dc17a405e84a8d8f70c00bdc0
4e2536a85f6f87aaf5df179d56e578f3e85b06d2809a8162d7a53316645f648f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/icons/analytics.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/app.min.css
Cookie: pclick_entry=eyJpZCI6IjE2Njk5Nzk4MjQwNzguODUzMzkiLCJyZWZlcnJlciI6IiIsImZpcnN0X3VybCI6Imh0dHBzOi8vd3d3LmUtbGVnaW9uLmNvbSIsImZpcnN0X3JlZmVyZXIiOiIiLCJ1cmwiOiJodHRwczovL3d3dy5lLWxlZ2lvbi5jb20iLCJzb3VyY2UiOiJkaXJlY3QiLCJ1bmlxdWVfaWQiOiIxNjY5OTc5ODI0MDc4Ljg2MTk5IiwiY3JtaWQiOiI4NzQ2NyIsImVudGVycyI6eyJjbnQiOltdLCJvdGhlciI6W3siaWQiOiIxNjY5OTc5ODI0MDc4Ljg1MzM5IiwidXJsIjoiaHR0cHM6Ly93d3cuZS1sZWdpb24uY29tLyIsInJlZmVycmVyIjoiIn1dfX0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-58c"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 2D1A:BE7B:722148:75BC9F:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:06 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979826.937699,VS0,VE119
vary: Accept-Encoding
x-fastly-request-id: c5490f3440e08de4bf522f056289dafc7467ee6d
content-length: 644
X-Firefox-Spdy: h2

www.e-legion.com/i/logos/usabilitylab.svg

185.199.109.153

200 OK

464 B

URL HTTP/2
www.e-legion.com/i/logos/usabilitylab.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1180)
Size
464 B (464 bytes)
Hash
ea0077359ee46b3518a24221f88fea8a
ba4a58ab9c02d8243637c1c1a0fbdc98cef99f43
0cbefeb3645163997d7a77826643247863ef0824437d0da37c09d3152380e6cd

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/logos/usabilitylab.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-18d6"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 8A32:9518:1DF40EB:1EDEC3D:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.357772,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: d889d1989fd91da2697339f37f2d0126f70c1e62
content-length: 2763
X-Firefox-Spdy: h2

www.e-legion.com/i/icons/testing.svg

185.199.109.153

200 OK

861 B

URL HTTP/2
www.e-legion.com/i/icons/testing.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1550)
Size
861 B (861 bytes)
Hash
ea062613a71b8ca32023e5d57cb9beb7
5116abdb4abb0d7d4dbb372affe25bfbf7a3142c
c64651b83982da0dff69c84b8fc39bd85af194aaa9ed70b5c4b5042f49cbefac

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/icons/testing.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/app.min.css
Cookie: pclick_entry=eyJpZCI6IjE2Njk5Nzk4MjQwNzguODUzMzkiLCJyZWZlcnJlciI6IiIsImZpcnN0X3VybCI6Imh0dHBzOi8vd3d3LmUtbGVnaW9uLmNvbSIsImZpcnN0X3JlZmVyZXIiOiIiLCJ1cmwiOiJodHRwczovL3d3dy5lLWxlZ2lvbi5jb20iLCJzb3VyY2UiOiJkaXJlY3QiLCJ1bmlxdWVfaWQiOiIxNjY5OTc5ODI0MDc4Ljg2MTk5IiwiY3JtaWQiOiI4NzQ2NyIsImVudGVycyI6eyJjbnQiOltdLCJvdGhlciI6W3siaWQiOiIxNjY5OTc5ODI0MDc4Ljg1MzM5IiwidXJsIjoiaHR0cHM6Ly93d3cuZS1sZWdpb24uY29tLyIsInJlZmVycmVyIjoiIn1dfX0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-66a"
expires: Fri, 02 Dec 2022 11:27:06 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: C38C:0EBC:192A205:19EBBBB:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:06 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979826.940294,VS0,VE119
vary: Accept-Encoding
x-fastly-request-id: ae51e7038a1ed2083c5637394e088c8553bb5619
content-length: 861
X-Firefox-Spdy: h2

www.e-legion.com/i/icons/development.svg

185.199.109.153

200 OK

961 B

URL HTTP/2
www.e-legion.com/i/icons/development.svg
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1912)
Size
961 B (961 bytes)
Hash
79962775ca98bc9e1966651a186719fb
8083614abfc38a28e63694f77c698ce91060ea37
26ff89a082c4da745f1d90d8468db3b78a513bef94714c5fcc178c93d859c30e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/icons/development.svg HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/app.min.css
Cookie: pclick_entry=eyJpZCI6IjE2Njk5Nzk4MjQwNzguODUzMzkiLCJyZWZlcnJlciI6IiIsImZpcnN0X3VybCI6Imh0dHBzOi8vd3d3LmUtbGVnaW9uLmNvbSIsImZpcnN0X3JlZmVyZXIiOiIiLCJ1cmwiOiJodHRwczovL3d3dy5lLWxlZ2lvbi5jb20iLCJzb3VyY2UiOiJkaXJlY3QiLCJ1bmlxdWVfaWQiOiIxNjY5OTc5ODI0MDc4Ljg2MTk5IiwiY3JtaWQiOiI4NzQ2NyIsImVudGVycyI6eyJjbnQiOltdLCJvdGhlciI6W3siaWQiOiIxNjY5OTc5ODI0MDc4Ljg1MzM5IiwidXJsIjoiaHR0cHM6Ly93d3cuZS1sZWdpb24uY29tLyIsInJlZmVycmVyIjoiIn1dfX0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: W/"62cd134c-7d4"
expires: Fri, 02 Dec 2022 11:27:06 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: EAFC:3380:1E3C892:1F27A1B:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:06 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979826.939645,VS0,VE133
vary: Accept-Encoding
x-fastly-request-id: 77ee5e341abb0736c2e2777291c5a731a207c27a
content-length: 961
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 02 Dec 2022 10:41:08 GMT
expires: Fri, 02 Dec 2022 12:41:08 GMT
cache-control: public, max-age=7200
age: 2158
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.213.140.56

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.213.140.56:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: p4y/vGJM7M0LUgHWuyGX1A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: LdQjjee6aTE93XBeOxYS/V6P63c=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

googleads.g.doubleclick.net/pagead/viewthroughconversion/null/?random=1669979824347&cv=11&fst=1669979824347&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.e-legion.com%2F&tiba=e-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&rfmt=3&fmt=4

142.250.74.66

200 OK

915 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/null/?random=1669979824347&cv=11&fst=1669979824347&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.e-legion.com%2F&tiba=e-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&rfmt=3&fmt=4
IP
142.250.74.66:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2019), with no line terminators
Size
915 B (915 bytes)
Hash
12ef8530ae37fb37424078dbf787f334
24ef480e21ceda371c85962e28775a1eb68482bf
fc1d5b1b1c818771b0e6365e5a5cd65cf5a5d3a68f487083b399670b718f8ccd

HTTP Headers

GET /pagead/viewthroughconversion/null/?random=1669979824347&cv=11&fst=1669979824347&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.e-legion.com%2F&tiba=e-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 11:17:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 915
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 02-Dec-2022 11:32:06 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.21.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
4f7b75a7521bf1d98f26d3e555f51a00
3efe85a63e714bf753337820b3d48cac22723277
19dbcdf6f4ad3716cde0e20b6777446db44ac823d3fcf9f4d698785b8969bb18

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 11:17:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Tue, 06 Dec 2022 07:38:59 GMT
ETag: "3efe85a63e714bf753337820b3d48cac22723277"
Last-Modified: Fri, 02 Dec 2022 07:39:00 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1401
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7733a779cca80b59-OSL

www.e-legion.com/apple-touch-icon.png

185.199.109.153

200 OK

1.3 kB

URL HTTP/2
www.e-legion.com/apple-touch-icon.png
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
PNG image data, 180 x 180, 4-bit colormap, non-interlaced\012- data
Size
1.3 kB (1283 bytes)
Hash
ddf12ed4d87dfc13a0d8fe94d2ed3313
5677b0ab54754ee7525f0621fcdefaf93d9d5e84
025728f57cb5076c50e5df4ca2f719fa507093e7bd1dbbf4d3170a78396e11a1

HTTP Headers

GET /apple-touch-icon.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Cookie: pclick_entry=eyJpZCI6IjE2Njk5Nzk4MjQwNzguODUzMzkiLCJyZWZlcnJlciI6IiIsImZpcnN0X3VybCI6Imh0dHBzOi8vd3d3LmUtbGVnaW9uLmNvbSIsImZpcnN0X3JlZmVyZXIiOiIiLCJ1cmwiOiJodHRwczovL3d3dy5lLWxlZ2lvbi5jb20iLCJzb3VyY2UiOiJkaXJlY3QiLCJ1bmlxdWVfaWQiOiIxNjY5OTc5ODI0MDc4Ljg2MTk5IiwiY3JtaWQiOiI4NzQ2NyIsImVudGVycyI6eyJjbnQiOltdLCJvdGhlciI6W3siaWQiOiIxNjY5OTc5ODI0MDc4Ljg1MzM5IiwidXJsIjoiaHR0cHM6Ly93d3cuZS1sZWdpb24uY29tLyIsInJlZmVycmVyIjoiIn1dfX0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:07 GMT
access-control-allow-origin: *
etag: "62cd134b-503"
expires: Fri, 02 Dec 2022 11:27:06 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 8A3A:A430:1D82615:1E6D022:6389DEB2
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:06 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979826.117266,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: 808dfaf363ea200425dc65e595cadd2b3e2fd31e
content-length: 1283
X-Firefox-Spdy: h2

www.e-legion.com/favicon-16x16.png

185.199.109.153

200 OK

406 B

URL HTTP/2
www.e-legion.com/favicon-16x16.png
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
406 B (406 bytes)
Hash
61f77fb9e0694be22720ec4577ba7c38
4672282b3264546d78f537f461a9e5f22a8afff6
a8dfdeeed37e6365bb79e669319c31184fe423bf9a82e9da4d9623d2f9d900cd

HTTP Headers

GET /favicon-16x16.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Cookie: pclick_entry=eyJpZCI6IjE2Njk5Nzk4MjQwNzguODUzMzkiLCJyZWZlcnJlciI6IiIsImZpcnN0X3VybCI6Imh0dHBzOi8vd3d3LmUtbGVnaW9uLmNvbSIsImZpcnN0X3JlZmVyZXIiOiIiLCJ1cmwiOiJodHRwczovL3d3dy5lLWxlZ2lvbi5jb20iLCJzb3VyY2UiOiJkaXJlY3QiLCJ1bmlxdWVfaWQiOiIxNjY5OTc5ODI0MDc4Ljg2MTk5IiwiY3JtaWQiOiI4NzQ2NyIsImVudGVycyI6eyJjbnQiOltdLCJvdGhlciI6W3siaWQiOiIxNjY5OTc5ODI0MDc4Ljg1MzM5IiwidXJsIjoiaHR0cHM6Ly93d3cuZS1sZWdpb24uY29tLyIsInJlZmVycmVyIjoiIn1dfX0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:07 GMT
access-control-allow-origin: *
etag: "62cd134b-196"
expires: Fri, 02 Dec 2022 11:27:06 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: D6D4:4378:14986E8:153CFF7:6389DEB2
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:06 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979826.117815,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: 999e6e711b9f056f99dbfff9210bc6c2addafb19
content-length: 406
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.globalsign.com/gseccovsslca2018

104.18.21.226

200 OK

938 B

URL HTTP/1.1
ocsp.globalsign.com/gseccovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
938 B (938 bytes)
Hash
35bb7a420a0144fa68e64b20d2aa8cec
bb03a3032a03b0eb4c399d055984b45b39a29066
3a3b41b66d3de67b69a0bf4a4decbdfff593f6310b120fd30d036c7110e47e6c

HTTP Headers

POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 11:17:06 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Tue, 06 Dec 2022 08:18:55 GMT
ETag: "bb03a3032a03b0eb4c399d055984b45b39a29066"
Last-Modified: Fri, 02 Dec 2022 08:18:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 208
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7733a77a298bb511-OSL

ocsp.globalsign.com/gseccovsslca2018

104.18.21.226

200 OK

938 B

URL HTTP/1.1
ocsp.globalsign.com/gseccovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
938 B (938 bytes)
Hash
35bb7a420a0144fa68e64b20d2aa8cec
bb03a3032a03b0eb4c399d055984b45b39a29066
3a3b41b66d3de67b69a0bf4a4decbdfff593f6310b120fd30d036c7110e47e6c

HTTP Headers

POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 11:17:06 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Tue, 06 Dec 2022 08:18:55 GMT
ETag: "bb03a3032a03b0eb4c399d055984b45b39a29066"
Last-Modified: Fri, 02 Dec 2022 08:18:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 208
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7733a77a2b88b524-OSL

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

vk.com/js/api/openapi.js?159

87.240.132.67

200 OK

23 kB

URL HTTP/2
vk.com/js/api/openapi.js?159
IP
87.240.132.67:0
ASN
#47541 VKontakte Ltd

File type
ASCII text, with very long lines (3849)
Size
23 kB (23318 bytes)
Hash
6b56e2aa629cc5f334bba9e200af3bfe
1e99707868f45c499400d95e75348c3d7b7686f5
7cb4aa1277e9f29f5c6d21c642b7c08cfce199332e30395c20995847a0db3fab

HTTP Headers

GET /js/api/openapi.js?159 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: kittenx
date: Fri, 02 Dec 2022 11:17:06 GMT
content-type: application/x-javascript
content-length: 23318
last-modified: Fri, 02 Dec 2022 07:14:40 GMT
etag: "6389a5e0-5b16"
content-encoding: br
expires: Tue, 06 Dec 2022 11:17:06 GMT
cache-control: max-age=345600
x-frontend: front220004
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-72713940-1&cid=1466973938.1669979824&jid=731298877&gjid=177297762&_gid=1101758711.1669979824&_u=YGDAgEABAAAAAGAAI~&z=1050694606

64.233.164.156

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-72713940-1&cid=1466973938.1669979824&jid=731298877&gjid=177297762&_gid=1101758711.1669979824&_u=YGDAgEABAAAAAGAAI~&z=1050694606
IP
64.233.164.156:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-72713940-1&cid=1466973938.1669979824&jid=731298877&gjid=177297762&_gid=1101758711.1669979824&_u=YGDAgEABAAAAAGAAI~&z=1050694606 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.e-legion.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 02 Dec 2022 11:17:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

vk.com/rtrg?p=VK-RTRG-273773-19LoV&metatag_url=https%3A%2F%2Fwww.e-legion.com%2F&metatag_title=Mobile%20App%20Development%2C%20Design%2C%20Analytics%2C%20QA%20testing%20for%20iOS%20%26%20Android

87.240.132.67

200 OK

65 B

URL HTTP/2
vk.com/rtrg?p=VK-RTRG-273773-19LoV&metatag_url=https%3A%2F%2Fwww.e-legion.com%2F&metatag_title=Mobile%20App%20Development%2C%20Design%2C%20Analytics%2C%20QA%20testing%20for%20iOS%20%26%20Android
IP
87.240.132.67:0
ASN
#47541 VKontakte Ltd

File type
GIF image data, version 89a, 1 x 1\012- data
Size
65 B (65 bytes)
Hash
ec4341fe3a8b2c4880fbfe0ef9cde34f
a0947414eb426b2939ca1a05fc870763f6bfc63f
01229c58f8015c623259e635969b8520945e2e0de1927a1375d48ad0ce915463

HTTP Headers

GET /rtrg?p=VK-RTRG-273773-19LoV&metatag_url=https%3A%2F%2Fwww.e-legion.com%2F&metatag_title=Mobile%20App%20Development%2C%20Design%2C%20Analytics%2C%20QA%20testing%20for%20iOS%20%26%20Android HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Fri, 02 Dec 2022 11:17:06 GMT
content-type: image/gif
content-length: 65
x-powered-by: KPHP/7.4.112788
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Sat, 09 Dec 2023 03:54:08 GMT; path=/; domain=.vk.com
remixstlid=9061328978894778436_8VmX9HOyuziRGqUrpk93BZVUwrbZHhD12brE5e040B4; expires=Sat, 02 Dec 2023 11:17:06 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
content-encoding: gzip
x-frontend: front220004
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
315873c315af2be891e63f8b421bae65
5277bb0c4fea2b036c6faf28d66395c96166ffd2
3f6657d352a42f8257409f2ed365a3fb928ac3eb74a34a2c74a433290182cc92

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-72713940-1&cid=1466973938.1669979824&jid=731298877&_u=YGDAgEABAAAAAGAAI~&z=96948623

142.250.74.35

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-72713940-1&cid=1466973938.1669979824&jid=731298877&_u=YGDAgEABAAAAAGAAI~&z=96948623
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-72713940-1&cid=1466973938.1669979824&jid=731298877&_u=YGDAgEABAAAAAGAAI~&z=96948623 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 11:17:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/pagead/1p-user-list/null/?random=1669979824347&cv=11&fst=1669978800000&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.e-legion.com%2F&tiba=e-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&fmt=3&is_vtc=1&random=458638667&rmt_tld=1&ipr=y

142.250.74.35

200 OK

42 B

URL HTTP/2
www.google.no/pagead/1p-user-list/null/?random=1669979824347&cv=11&fst=1669978800000&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.e-legion.com%2F&tiba=e-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&fmt=3&is_vtc=1&random=458638667&rmt_tld=1&ipr=y
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/null/?random=1669979824347&cv=11&fst=1669978800000&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.e-legion.com%2F&tiba=e-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&fmt=3&is_vtc=1&random=458638667&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 11:17:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-72713940-1&cid=1466973938.1669979824&jid=731298877&_u=YGDAgEABAAAAAGAAI~&z=96948623

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-72713940-1&cid=1466973938.1669979824&jid=731298877&_u=YGDAgEABAAAAAGAAI~&z=96948623
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-72713940-1&cid=1466973938.1669979824&jid=731298877&_u=YGDAgEABAAAAAGAAI~&z=96948623 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 11:17:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/pagead/1p-user-list/null/?random=1669979824347&cv=11&fst=1669978800000&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.e-legion.com%2F&tiba=e-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&fmt=3&is_vtc=1&random=458638667&rmt_tld=0&ipr=y

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/pagead/1p-user-list/null/?random=1669979824347&cv=11&fst=1669978800000&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.e-legion.com%2F&tiba=e-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&fmt=3&is_vtc=1&random=458638667&rmt_tld=0&ipr=y
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/null/?random=1669979824347&cv=11&fst=1669978800000&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.e-legion.com%2F&tiba=e-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&fmt=3&is_vtc=1&random=458638667&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 11:17:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

mc.yandex.ru/metrika/tag.js

93.158.134.119

200 OK

73 kB

URL HTTP/2
mc.yandex.ru/metrika/tag.js
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (586)
Size
73 kB (73266 bytes)
Hash
a4567a1e52f99c2b3870f58375ec8cac
dbfc795e71fc19f7e45e8637abc4ac770f639a48
2b13b5716855040bd9a08972b0e61369e50c6daa402ed937e18f6795f82429c8

HTTP Headers

GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-length: 73266
date: Fri, 02 Dec 2022 11:17:06 GMT
access-control-allow-origin: *
etag: "6388ac0c-11e32"
expires: Fri, 02 Dec 2022 12:17:06 GMT
last-modified: Thu, 01 Dec 2022 16:28:44 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/watch/25789676?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A1%3Adp%3A0%3Als%3A1402572172566%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A184824109%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)

93.158.134.119

302 Found

407 B

URL HTTP/2
mc.yandex.ru/watch/25789676?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A1%3Adp%3A0%3Als%3A1402572172566%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A184824109%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
JSON data\012- , ASCII text, with very long lines (407), with no line terminators
Size
407 B (407 bytes)
Hash
6e94587a16aa497dc1858cbaf5b7f0d9
4e8abfda65f338b45c9881741326511bdf01253a
be58c1d7d19c8554ce370f352d247b3ca11a4eded052e0497876c64219d8236c

HTTP Headers

GET /watch/25789676?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A1%3Adp%3A0%3Als%3A1402572172566%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A184824109%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
location: /watch/25789676/1?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A1%3Adp%3A0%3Als%3A1402572172566%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A184824109%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Fri, 02 Dec 2022 11:17:06 GMT
access-control-allow-origin: https://www.e-legion.com
set-cookie: yabs-sid=1419740281669979826; Path=/; SameSite=None; Secure
i=q+8SCDWQDYe8u6jWRM3YjqldfsheIhHj2/mEZ1KdcyK2mzlfySp7XWorw922oD6NZj8X3kuzZ5+zkyw9S04k534JXzY=; Expires=Mon, 29-Nov-2032 11:17:05 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=9086354511669979826; Expires=Sat, 02-Dec-2023 11:17:06 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=9086354511669979826; Expires=Sat, 02-Dec-2023 11:17:06 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1701515826.yc.1669979826#1701515826.yrts.1669979826#1701515826.yrtsi.1669979826; Expires=Sat, 02-Dec-2023 11:17:06 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Dec-2022 11:17:06 GMT
last-modified: Fri, 02-Dec-2022 11:17:06 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/watch/25789676/1?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A1%3Adp%3A0%3Als%3A1402572172566%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A184824109%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29

93.158.134.119

200 OK

426 B

URL HTTP/2
mc.yandex.ru/watch/25789676/1?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A1%3Adp%3A0%3Als%3A1402572172566%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A184824109%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
JSON data\012- , ASCII text, with very long lines (426), with no line terminators
Size
426 B (426 bytes)
Hash
1a11170a61b6a87c4a38b64a07f8b597
17fcd35f4cf53749490c4780ebc0158b61ed677e
650969d893e40d1e58b7552d0ab51b1e2e506a65d52a95ba0118e846f0aab05a

HTTP Headers

GET /watch/25789676/1?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A1%3Adp%3A0%3Als%3A1402572172566%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A184824109%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.e-legion.com
Referer: https://www.e-legion.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 426
date: Fri, 02 Dec 2022 11:17:06 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://www.e-legion.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Dec-2022 11:17:06 GMT
last-modified: Fri, 02-Dec-2022 11:17:06 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/metrika/advert.gif

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/metrika/advert.gif
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Fri, 02 Dec 2022 11:17:06 GMT
access-control-allow-origin: *
etag: "6388ac0c-2b"
expires: Fri, 02 Dec 2022 12:17:06 GMT
accept-ranges: bytes
last-modified: Thu, 01 Dec 2022 16:28:44 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7772
Expires: Fri, 02 Dec 2022 13:26:39 GMT
Date: Fri, 02 Dec 2022 11:17:07 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7772
Expires: Fri, 02 Dec 2022 13:26:39 GMT
Date: Fri, 02 Dec 2022 11:17:07 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7772
Expires: Fri, 02 Dec 2022 13:26:39 GMT
Date: Fri, 02 Dec 2022 11:17:07 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7772
Expires: Fri, 02 Dec 2022 13:26:39 GMT
Date: Fri, 02 Dec 2022 11:17:07 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7772
Expires: Fri, 02 Dec 2022 13:26:39 GMT
Date: Fri, 02 Dec 2022 11:17:07 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6174 bytes)
Hash
b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 00:54:54 GMT
age: 37333
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4803 bytes)
Hash
cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: ad2d9243-5e32-4faf-8ff3-b9abd3af1e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb1_hEJJIAMF4Vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387d063-596f5833509112ee6cbedf54;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:51:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jM-fTqLsmU3c_gc9Wle-lvCwXelA9Sid9axtzJQDsfOHv23yUbKsBw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 23:43:28 GMT
age: 41619
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11402 bytes)
Hash
1c80b8025242ddfcc816ec612456b99e
aa944d10fe4a44b790b01ef62edc0f85a6d558e3
a9f060bc15738a3fe257e0c81a29e4611a89c273bcbb2765ce856d4e854a5f1f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11402
x-amzn-requestid: 20c2c359-1e43-40c0-885d-1c90e76ea12b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGzJHu-IAMFbYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e7a-1d89722e767daa014b174a39;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OJBnbjJB_kvPuJcePGnno3zI0CTWAzV-Osb2L1hPZZhlNYhFHWmLsA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:51:33 GMT
etag: "aa944d10fe4a44b790b01ef62edc0f85a6d558e3"
content-type: image/jpeg
age: 48334
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb8ec880-52b8-4350-bb47-d051878e78f1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.9 kB (6882 bytes)
Hash
25c68d8b1fae82820f93efca500fd848
45cf5e1a54ee491497ffe08a8e39fe97ba3c8a48
f0ec6b6f6ba0a931c9b71f5bc7ad1e5b89c8e4d8b7441f35eeebfba418d0e588

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb8ec880-52b8-4350-bb47-d051878e78f1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6882
x-amzn-requestid: 6b5f15a5-c15b-46bf-9fd5-5d013d37a0eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGfrG3WIAMFc9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891dfd-6038ca700dfb4489230c2683;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2O6x-8-ESFDtlhcjVyGxEXCZcLbbfhsCVQeX02lbNMupPWmM-fKuLA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:47:56 GMT
age: 48551
etag: "45cf5e1a54ee491497ffe08a8e39fe97ba3c8a48"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8863 bytes)
Hash
156e9ea97b774cbd8361072e4041b6c8
fc71ae3cae92ed6011904bb2367f23bf4e69fab4
58d953c19ebbbdfc3965bbe3f52308d4702deaf4d0c029f4674bcb862da138af

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8863
x-amzn-requestid: 798d014b-0f9c-4787-a676-8f5e8fae3d11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdG14HBNIAMFdWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851bf-7549feac6d476a8512676412;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cgj3fw3lpngosMNOK7cZUZO94T__4RTy_p7wa6rI62OOvhI5E9wMSw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 13:30:28 GMT
age: 78399
etag: "fc71ae3cae92ed6011904bb2367f23bf4e69fab4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb2cfbf1-2aef-40a6-97e1-99a756e32924.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13461 bytes)
Hash
16a112f00456d38c4c9e051ccf40e105
8fe32fffe672f0e91ce773af0e4be960f55bad08
43517bbcd17ec6d05d09a4c0d183610acdc7e2fa4767cb786cb8b936d5f44402

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb2cfbf1-2aef-40a6-97e1-99a756e32924.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13461
x-amzn-requestid: 8c0121a6-cf29-4cd0-bd42-d9f67af62b84
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQsyGhGoAMF1-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c7eb-593f28367320530e2dcafbfb;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:03:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fY7pkaeRu9vdWa68sWrtGxp2BkC9lZhbJ1cgGWap2H8y1zXUxKT6zA==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 05:08:22 GMT
age: 22125
etag: "8fe32fffe672f0e91ce773af0e4be960f55bad08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/25789676?wmode=0&wv-part=1&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=50520773&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1669979828%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111708%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979828&t=gdpr(14)ti(2)

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/25789676?wmode=0&wv-part=1&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=50520773&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1669979828%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111708%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979828&t=gdpr(14)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/25789676?wmode=0&wv-part=1&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=50520773&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1669979828%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111708%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979828&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 156791
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Fri, 02 Dec 2022 11:17:10 GMT
access-control-allow-origin: https://www.e-legion.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Dec-2022 11:17:10 GMT
last-modified: Fri, 02-Dec-2022 11:17:10 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/25789676?wmode=0&wv-part=1&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=846255998&wv-type=3&browser-info=we%3A1%3Aet%3A1669979828%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111708%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979828&t=gdpr(14)ti(2)

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/25789676?wmode=0&wv-part=1&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=846255998&wv-type=3&browser-info=we%3A1%3Aet%3A1669979828%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111708%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979828&t=gdpr(14)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/25789676?wmode=0&wv-part=1&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=846255998&wv-type=3&browser-info=we%3A1%3Aet%3A1669979828%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111708%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979828&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Fri, 02 Dec 2022 11:17:10 GMT
access-control-allow-origin: https://www.e-legion.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Dec-2022 11:17:10 GMT
last-modified: Fri, 02-Dec-2022 11:17:10 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/25789676?wv-check=61152&wv-type=0&wmode=0&wv-part=1&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=686187975&browser-info=we%3A1%3Aet%3A1669979832%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111711%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979832&t=gdpr(14)ti(2)

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/25789676?wv-check=61152&wv-type=0&wmode=0&wv-part=1&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=686187975&browser-info=we%3A1%3Aet%3A1669979832%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111711%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979832&t=gdpr(14)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/25789676?wv-check=61152&wv-type=0&wmode=0&wv-part=1&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=686187975&browser-info=we%3A1%3Aet%3A1669979832%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111711%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979832&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Fri, 02 Dec 2022 11:17:13 GMT
access-control-allow-origin: https://www.e-legion.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Dec-2022 11:17:13 GMT
last-modified: Fri, 02-Dec-2022 11:17:13 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/25789676?wmode=0&wv-part=2&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=106624346&wv-type=3&browser-info=we%3A1%3Aet%3A1669979832%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111711%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979832&t=gdpr(14)ti(2)

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/25789676?wmode=0&wv-part=2&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=106624346&wv-type=3&browser-info=we%3A1%3Aet%3A1669979832%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111711%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979832&t=gdpr(14)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/25789676?wmode=0&wv-part=2&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=106624346&wv-type=3&browser-info=we%3A1%3Aet%3A1669979832%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111711%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979832&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Fri, 02 Dec 2022 11:17:13 GMT
access-control-allow-origin: https://www.e-legion.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Dec-2022 11:17:13 GMT
last-modified: Fri, 02-Dec-2022 11:17:13 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/25789676?wmode=0&wv-part=2&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=519773028&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1669979832%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111711%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979832&t=gdpr(14)ti(2)

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/25789676?wmode=0&wv-part=2&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=519773028&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1669979832%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111711%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979832&t=gdpr(14)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/25789676?wmode=0&wv-part=2&wv-hit=878278059&page-url=https%3A%2F%2Fwww.e-legion.com%2F&rn=519773028&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1669979832%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221202111711%3Au%3A1669979825813448503%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1669979832&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Fri, 02 Dec 2022 11:17:13 GMT
access-control-allow-origin: https://www.e-legion.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Dec-2022 11:17:13 GMT
last-modified: Fri, 02-Dec-2022 11:17:13 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/dpd/cover.png

185.199.109.153

200 OK

0 B

URL HTTP/2
www.e-legion.com/i/projects/dpd/cover.png
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /i/projects/dpd/cover.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:09 GMT
access-control-allow-origin: *
etag: "62cd134d-1fff1"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 62D4:B926:12E1131:1371590:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.323699,VS0,VE177
vary: Accept-Encoding
x-fastly-request-id: fe8f18fe54d9f4c23ac8d68fc0fad02d49f5d351
content-length: 131057
X-Firefox-Spdy: h2

www.e-legion.com/i/photos/events/mblt2021-2.eng.png

185.199.109.153

200 OK

0 B

URL HTTP/2
www.e-legion.com/i/photos/events/mblt2021-2.eng.png
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /i/photos/events/mblt2021-2.eng.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:08 GMT
access-control-allow-origin: *
etag: "62cd134c-24ab8"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 0808:EF76:14B6B32:155F20A:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.350280,VS0,VE249
vary: Accept-Encoding
x-fastly-request-id: 43a447c391939156bef2dcfdccf0f8b2e5ffcf63
content-length: 150200
X-Firefox-Spdy: h2

www.e-legion.com/i/projects/lingualeo/cover.png

185.199.109.153

200 OK

0 B

URL HTTP/2
www.e-legion.com/i/projects/lingualeo/cover.png
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /i/projects/lingualeo/cover.png HTTP/1.1
Host: www.e-legion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 12 Jul 2022 06:23:09 GMT
access-control-allow-origin: *
etag: "62cd134d-38ae1"
expires: Fri, 02 Dec 2022 11:27:05 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: CCEC:7631:19A4DC:1A433A:6389DEB1
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:17:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669979825.342740,VS0,VE274
vary: Accept-Encoding
x-fastly-request-id: 3e9b2d5377172b03121218a97712d7358fef7862
content-length: 232161
X-Firefox-Spdy: h2

www.youtube.com/iframe_api

142.250.74.142

200 OK

0 B

URL HTTP/2
www.youtube.com/iframe_api
IP
142.250.74.142:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Fri, 02 Dec 2022 11:17:06 GMT
date: Fri, 02 Dec 2022 11:17:06 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=8hzAK8xluXo; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=PdsEMl9nkx0; Domain=.youtube.com; Expires=Wed, 31-May-2023 11:17:06 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+201; expires=Sun, 01-Dec-2024 11:17:06 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Montserrat:100,200,300,400,500,600,700,800,900&subset=cyrillic

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Montserrat:100,200,300,400,500,600,700,800,900&subset=cyrillic
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Montserrat:100,200,300,400,500,600,700,800,900&subset=cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 11:17:05 GMT
date: Fri, 02 Dec 2022 11:17:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

stackpath.bootstrapcdn.com/bootstrap/4.1.0/css/bootstrap.min.css

188.114.98.234

200 OK

0 B

URL HTTP/2
stackpath.bootstrapcdn.com/bootstrap/4.1.0/css/bootstrap.min.css
IP
188.114.98.234:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /bootstrap/4.1.0/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 11:17:05 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"fee68c0f2f583161134a1fcb5950501d"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 03/10/2022 17:27:17
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 863
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 8a60d03a17c86a84badd5c3db2470f39
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7733a774b8deb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js

188.114.98.234

200 OK

0 B

URL HTTP/2
stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js
IP
188.114.98.234:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /bootstrap/4.1.0/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 11:17:05 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"ce6e785579ae4cb555c9de311d1b9271"
last-modified: Mon, 25 Jan 2021 22:04:05 GMT
cdn-cachedat: 11/15/2022 10:39:35
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1054
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: d4ae49d12fcba1ac20ac460082c9233c
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7733a774b8e7b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

mc.yandex.ru/watch/87397800?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A2%3Adp%3A0%3Als%3A1647334067387%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A816167000%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)

93.158.134.119

302 Found

0 B

URL HTTP/2
mc.yandex.ru/watch/87397800?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A2%3Adp%3A0%3Als%3A1647334067387%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A816167000%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /watch/87397800?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A2%3Adp%3A0%3Als%3A1647334067387%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A816167000%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.e-legion.com
Connection: keep-alive
Referer: https://www.e-legion.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
location: /watch/87397800/1?wmode=7&page-url=https%3A%2F%2Fwww.e-legion.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A1401%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A2%3Adp%3A0%3Als%3A1647334067387%3Ahid%3A878278059%3Az%3A0%3Ai%3A20221202111704%3Aet%3A1669979825%3Ac%3A1%3Arn%3A816167000%3Arqn%3A1%3Au%3A1669979825813448503%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C32%2C133%2C3%2C329%2C0%2C%2C81%2C4%2C%2C%2C%2C1450%3Aco%3A0%3Ans%3A1669979822919%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669979825%3At%3Ae-legion%20%E2%80%93%20mobile%20apps%20development%20company.%20Application%20development%20for%20iPhone%2C%20iPad%2C%20Android%2C%20and%20Windows&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Fri, 02 Dec 2022 11:17:06 GMT
access-control-allow-origin: https://www.e-legion.com
set-cookie: yabs-sid=82745591669979826; Path=/; SameSite=None; Secure
i=FBUvpua2trJ/O6dPZkA4f0LNvOsNANJ9kUdI9vSVzw5lyT2arR0i0H8Nb3gbI0S3SXlnHENgMaRUVeyyvN0yrqZn6F0=; Expires=Mon, 29-Nov-2032 11:17:04 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=3805567091669979826; Expires=Sat, 02-Dec-2023 11:17:06 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=3805567091669979826; Expires=Sat, 02-Dec-2023 11:17:06 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1701515826.yc.1669979826#1701515826.yrts.1669979826#1701515826.yrtsi.1669979826; Expires=Sat, 02-Dec-2023 11:17:06 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Dec-2022 11:17:06 GMT
last-modified: Fri, 02-Dec-2022 11:17:06 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (96)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations