legacyrisksolutions.com/leadership/
301 Moved Permanently 162 B URL HTTP/1.1 legacyrisksolutions.com/leadership/
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET /leadership/ HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 12 Sep 2022 10:16:32 GMT
Content-Type: text/html
Content-Length: 162
Location: https://legacyrisksolutions.com/leadership/
X-FW-Server: Flywheel/4.1.0
X-FW-Hash: 8tna7dnomk
Server: Flywheel/4.1.0
X-FW-Serve: TRUE
X-Cache: MISS
X-FW-Static: NO
X-FW-Type: VISIT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16762
Expires: Mon, 12 Sep 2022 14:55:55 GMT
Date: Mon, 12 Sep 2022 10:16:33 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 12 Sep 2022 10:08:11 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nzh9khBoMV6r1ZF41n2A_2Y3wwverzp3wb1RO1mCwUMZvP-hguP33w==
Age: 502
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 12 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QO-gXBhaLECssfEHqT8V-U7wEPB6dfxs-HtYChMPEunjYWBKcDAkiw==
age: 10761
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3693eec2bbf1ba1b131a26261e2962d7
fb4e8e800d64ae1848bebf2e91c17997dce0d238
c827c7c26493652b52fa52105ce866a14a0d6c3cdd06e0058c67219e42cd2756
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C827C7C26493652B52FA52105CE866A14A0D6C3CDD06E0058C67219E42CD2756"
Last-Modified: Sat, 10 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21577
Expires: Mon, 12 Sep 2022 16:16:10 GMT
Date: Mon, 12 Sep 2022 10:16:33 GMT
Connection: keep-alive
legacyrisksolutions.com/leadership/
200 OK 17 kB URL HTTP/2 legacyrisksolutions.com/leadership/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Hash a001e87394194498cbcf8691d38f61f1
c406b5f75056fb60f4bfcea9848b31e3038a996e
7d19e47ce0551c1936482e95a6bed5b1db30d0b750e8283251a8353bd823bcc6
Analyzer Verdict Alert fortinet Phishing
GET /leadership/ HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: text/html; charset=UTF-8
content-length: 16583
vary: Accept-Encoding
link: <https://legacyrisksolutions.com/wp-json/>; rel="https://api.w.org/", <https://legacyrisksolutions.com/wp-json/wp/v2/pages/102>; rel="alternate"; type="application/json", <https://legacyrisksolutions.com/?p=102>; rel=shortlink
x-fw-server: Flywheel/4.1.0
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
x-cacheable: YES
x-fw-serve: TRUE
x-cache: HIT
x-hits: 2
x-fw-static: NO
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 12 Sep 2022 09:56:07 GMT
Cache-Control: max-age=3600
Expires: Mon, 12 Sep 2022 10:45:54 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KFTOSKuIyDm_O5eUVEsmfhMOfE9E6c9MGmpA-zS697wXmyZn6g-WHg==
Age: 1226
ocsp.digicert.com/
200 OK 471 B IP
Hash cb674936db4af4be99c3c397eff8c6ae
de79d76bac3fae5799b0ff35ecc19360595dfb06
992b884b64f9f6fdb76a6ba91c48fed329325b95b99d8003b282879a52093c08
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2914
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 10:16:33 GMT
Last-Modified: Mon, 12 Sep 2022 09:27:59 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bff3a3f3f4f889b08163e7d307438790
c430c7c151973fa0e63ddf52e5624e1ce2282161
bce7d12a2343d8e43fbd05522fe82807ed48933a984aa113c284267364981750
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 10:16:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bff3a3f3f4f889b08163e7d307438790
c430c7c151973fa0e63ddf52e5624e1ce2282161
bce7d12a2343d8e43fbd05522fe82807ed48933a984aa113c284267364981750
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 10:16:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c3d8032059a24d14d00c2ee5d8840c01
62efae1ea6aaea612a12d42b6e5b65d24be11437
2319fe90c8b4d3cc41ec9cce275c82d19fb764015196bd1c52dfb9c5d85b9b0b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 10:16:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
legacyrisksolutions.com/wp-content/plugins/page-list/css/page-list.css?ver=5.2
200 OK 563 B URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/page-list/css/page-list.css?ver=5.2
IP
File type ASCII text, with CRLF line terminators
Hash 06030330a5d134b720eb9d50445b756b
6290695811121264ba4e42a55f266224227e6e1c
8ea3d34bf824d1b1b8042c2c4269b9cb1d157fbd724a1c76f49e5ff18871d08e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/page-list/css/page-list.css?ver=5.2 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: text/css
content-length: 563
last-modified: Thu, 27 Feb 2020 22:53:28 GMT
vary: Accept-Encoding
etag: W/"5e584868-65d"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/plugins/simple-banner/simple-banner.css?ver=2.10.6
200 OK 280 B URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/simple-banner/simple-banner.css?ver=2.10.6
IP
Hash 54ad60a243960c4dda25c661b23ddf11
7e579eda2498c566342e3fe8f1bea914bb401a9a
c6c10f774b0e021bdb8d3b22d04b65dbd0b4912ee78309ad15cf4a98175fbfd5
GET /wp-content/plugins/simple-banner/simple-banner.css?ver=2.10.6 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: text/css
content-length: 280
last-modified: Tue, 21 Dec 2021 04:01:47 GMT
vary: Accept-Encoding
etag: W/"61c151ab-1e7"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-118902044-1
200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-118902044-1
IP
File type ASCII text, with very long lines (1615)
Hash d1c391caa054ccb07e49dbc8d2d4e782
0aecdf4803f1b1cd894ad75673d2b03f0648b87d
c1920e4a66592fe9e9c82daea5dab1300c35733cea2bfadc50eed67a267d9482
GET /gtag/js?id=UA-118902044-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 12 Sep 2022 10:16:33 GMT
expires: Mon, 12 Sep 2022 10:16:33 GMT
cache-control: private, max-age=900
last-modified: Mon, 12 Sep 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41969
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bff3a3f3f4f889b08163e7d307438790
c430c7c151973fa0e63ddf52e5624e1ce2282161
bce7d12a2343d8e43fbd05522fe82807ed48933a984aa113c284267364981750
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 10:16:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
legacyrisksolutions.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.6.5
200 OK 912 B URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.6.5
IP
File type ASCII text, with very long lines (13766)
Hash 1b68f537a3157b7b4a4b9bcd869a32a1
a39486c87a5d26152ad49af5230994a979937d77
6dd4837ea7a3a87c9d8370503205b24baf7728737ee01667bc02cc7209eecbf8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.6.5 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: text/css
content-length: 912
last-modified: Thu, 19 May 2022 12:32:30 GMT
vary: Accept-Encoding
etag: W/"628638de-35ed"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
200 OK 6.9 kB URL HTTP/2 legacyrisksolutions.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 4ef51806238b5922f305f0801320fb7b
f31074880163771bb0bc96cf90f95943bb72baa4
ef01d56cd4b3277ac61b9d9e0fa6c30653501575d44ca38a9f73bf7369d22945
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
content-length: 6896
last-modified: Thu, 01 Sep 2022 16:48:55 GMT
vary: Accept-Encoding
etag: W/"6310e277-50ea"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.6.5
200 OK 1.1 kB URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.6.5
IP
File type ASCII text, with very long lines (2577)
Hash 71a6972e79bfdcc72ffc068e6e845a23
0e37b7f3c6252f6701998fa0e2e1b555b4804a97
dc7dbf2f94f1c49a262b4be428f54349805cfa2841806bc8d691fda13b82e90f
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.6.5 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
content-length: 1099
last-modified: Thu, 19 May 2022 12:32:30 GMT
vary: Accept-Encoding
etag: W/"628638de-a12"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c3d8032059a24d14d00c2ee5d8840c01
62efae1ea6aaea612a12d42b6e5b65d24be11437
2319fe90c8b4d3cc41ec9cce275c82d19fb764015196bd1c52dfb9c5d85b9b0b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 10:16:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
legacyrisksolutions.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.5
200 OK 4.7 kB URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.5
IP
File type ASCII text, with very long lines (14238)
Hash 71f447d660f663d3644478c77f6852cb
d7f81fcb1cd14be1aa139064baa79ed5f0535ca5
44b4e959af512961e4a1a5a4baffac21bf694769f4828287a37ac273f0c338f2
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.5 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
content-length: 4652
last-modified: Thu, 19 May 2022 12:32:30 GMT
vary: Accept-Encoding
etag: W/"628638de-37c5"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2
200 OK 705 B URL HTTP/2 legacyrisksolutions.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP
File type ASCII text, with very long lines (1465)
Hash 19bbc441740a1a6f3a64155bdfc3dba5
55a4beb22cd76a1d66c4a6947968408f337b4890
ed5fdb40d566079267ca224b2d9bbe7235a66ce393c083c28c64be9c24a0dfda
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
content-length: 705
last-modified: Thu, 01 Sep 2022 16:48:55 GMT
vary: Accept-Encoding
etag: W/"6310e277-5dc"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/themes/genesis/lib/js/menu/superfish.args.min.js?ver=3.3.3
200 OK 132 B URL HTTP/2 legacyrisksolutions.com/wp-content/themes/genesis/lib/js/menu/superfish.args.min.js?ver=3.3.3
IP
File type ASCII text, with no line terminators
Hash c94b7aeed7521dc95699cd74f9609b19
7b19e24f0d95007f896156fe38283b39f32b9988
20550f7bcb2a817ac9a5879e04260da8268e971c0b8031a6b7a2f48a55ee60d5
GET /wp-content/themes/genesis/lib/js/menu/superfish.args.min.js?ver=3.3.3 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
content-length: 132
last-modified: Thu, 08 Oct 2020 11:36:24 GMT
etag: "5f7ef9b8-84"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/themes/workstation-pro/js/responsive-menus.min.js?ver=1.1.3
200 OK 1.4 kB URL HTTP/2 legacyrisksolutions.com/wp-content/themes/workstation-pro/js/responsive-menus.min.js?ver=1.1.3
IP
File type ASCII text, with very long lines (546)
Hash 4aaabae20f14a1790bb22adc128f3603
dc2a72ec501fdc2105dc9598229a27e321769bff
bd217c962c1aa9a98d2032ca8258ce75d7fae47f4ecbcc67f47748925bba512e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/workstation-pro/js/responsive-menus.min.js?ver=1.1.3 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
content-length: 1423
last-modified: Thu, 08 Oct 2020 11:37:00 GMT
vary: Accept-Encoding
etag: W/"5f7ef9dc-e5c"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/themes/genesis/lib/js/skip-links.min.js?ver=3.3.3
200 OK 251 B URL HTTP/2 legacyrisksolutions.com/wp-content/themes/genesis/lib/js/skip-links.min.js?ver=3.3.3
IP
File type ASCII text, with very long lines (386), with no line terminators
Hash 2d0b1905d07058a7a7fce935cc8daacf
93c5e93088524ab3ab1c6d944f433e7c9a9b2f74
cdfdf54e49bb9605726750451648eaef5536099a7fafe13dfb4d41af86c278c9
GET /wp-content/themes/genesis/lib/js/skip-links.min.js?ver=3.3.3 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
content-length: 251
last-modified: Thu, 08 Oct 2020 11:36:24 GMT
vary: Accept-Encoding
etag: W/"5f7ef9b8-182"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
200 OK 3.0 kB URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
File type ASCII text, with very long lines (12198), with no line terminators
Hash e65ea0438473fb6374955fee1f3eba50
b9dba5f666e935feb1f8d2ef7603498c4fc41084
6d9426074ca65faa87b9b2a31d90558edd3f2e99bd1395be93386e2365c07a42
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
content-length: 3015
last-modified: Thu, 19 May 2022 12:32:30 GMT
vary: Accept-Encoding
etag: W/"628638de-2fa6"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
200 OK 3.5 kB URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP
File type ASCII text, with very long lines (10544)
Hash dc4c67610f9f86a0594185e9e77e7b24
c7589eb11d6ec7d0df88c594079a80c024b5b3dc
ee55ccab62ec93cffa39325861675d036bffb1d90f487b671fa212f770df1aab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
content-length: 3452
last-modified: Thu, 19 May 2022 12:32:30 GMT
vary: Accept-Encoding
etag: W/"628638de-29ba"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/uploads/sites/24/elementor/css/post-257.css?ver=1652963621
200 OK 357 B URL HTTP/2 legacyrisksolutions.com/wp-content/uploads/sites/24/elementor/css/post-257.css?ver=1652963621
IP
File type ASCII text, with very long lines (1119), with no line terminators
Hash 747cf47576858cf7651bba4f34291ff6
d54433c1d020502550e8f319db1927494423af8d
6e486bf2840792fba25b65369199316d2e32bf9a8f73f1dad2f4d8e03e23c107
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/sites/24/elementor/css/post-257.css?ver=1652963621 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: text/css
content-length: 357
last-modified: Thu, 19 May 2022 12:33:41 GMT
vary: Accept-Encoding
etag: W/"62863925-45f"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/plugins/norton-directory/public//js/ajax-get-posts.js?ver=1.0.0
200 OK 887 B URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/norton-directory/public//js/ajax-get-posts.js?ver=1.0.0
IP
Hash bba499a6bd453744be6675e7a2747bbc
423e4fd3d95e4a8a250ff8d529fc5e8ce0d09166
582b6303bf8557c2ee3f4e7c1f713eb1dbf036e3ed98798bf8d28c2d4eb7109e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/norton-directory/public//js/ajax-get-posts.js?ver=1.0.0 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
content-length: 887
last-modified: Mon, 15 Aug 2022 11:06:31 GMT
vary: Accept-Encoding
etag: W/"62fa28b7-e00"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.8.2
200 OK 3.3 kB URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.8.2
IP
File type ASCII text, with very long lines (1577)
Hash 1dee6a3decb1139caa392ff5205a75c4
9b21fb4d7c6e20a737d6b9b66c46d309d864825f
bb462344602a86ec3cfef29a834c0a1a4d47ef80c1754c8fec5be54e88de14d7
GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.8.2 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
content-length: 3255
last-modified: Sat, 27 Aug 2022 04:06:12 GMT
vary: Accept-Encoding
etag: W/"63099834-2e7a"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/uploads/sites/24/elementor/css/post-102.css?ver=1652970168
200 OK 1.0 kB URL HTTP/2 legacyrisksolutions.com/wp-content/uploads/sites/24/elementor/css/post-102.css?ver=1652970168
IP
File type ASCII text, with very long lines (12521), with no line terminators
Hash 5fd8cd9777709eeb5cf1f24b1b9ad99d
ea1cd6fc767d743c0f6cf38fedb27c42ed91b6bd
d85a81e308d2c7c3365180a6afa21ca666ded2510708a5b0d2e35bf4b5f4275e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/sites/24/elementor/css/post-102.css?ver=1652970168 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: text/css
content-length: 1046
last-modified: Thu, 19 May 2022 14:22:48 GMT
vary: Accept-Encoding
etag: W/"628652b8-30e9"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.5
200 OK 2.6 kB URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.5
IP
File type ASCII text, with very long lines (10019)
Hash c42d43078a3ff558042b6ec80c66a086
fd8951772644a8b4c30111eb74f33fff40d4e095
050daa68d90726ceafd44b1eb12565fea6845bb17cce63464effd28199a0df61
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.5 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: text/css
content-length: 2631
last-modified: Thu, 19 May 2022 12:32:30 GMT
vary: Accept-Encoding
etag: W/"628638de-4824"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/plugins/norton-directory/public/js/norton-directory-public.js?ver=1.0.0
200 OK 479 B URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/norton-directory/public/js/norton-directory-public.js?ver=1.0.0
IP
Hash 5850a4d6be478b5a5c29526a957840c4
1854bff2c967f028cf8c1f53b3c7878fb605e329
654a9a69300dd841ea2bc14d36c346377cee298b126463cc844fb26929260843
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/norton-directory/public/js/norton-directory-public.js?ver=1.0.0 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
content-length: 479
last-modified: Wed, 05 Feb 2020 08:31:41 GMT
vary: Accept-Encoding
etag: W/"5e3a7d6d-346"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/uploads/sites/24/elementor/css/global.css?ver=1652964681
200 OK 853 B URL HTTP/2 legacyrisksolutions.com/wp-content/uploads/sites/24/elementor/css/global.css?ver=1652964681
IP
File type ASCII text, with very long lines (6697)
Hash 6353561f71bb562b9a6dceb3d5f63039
57fe1cf802591d0060ffbb5a5e1823e06947d83e
ab94c495f8ce2d5f82ec25eebab9570f3b9460e5d4d7d0632e7e845474ae1b52
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/sites/24/elementor/css/global.css?ver=1652964681 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: text/css
content-length: 853
last-modified: Thu, 19 May 2022 12:51:21 GMT
vary: Accept-Encoding
etag: W/"62863d49-2503"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.5
200 OK 11 kB URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.5
IP
File type ASCII text, with very long lines (37702)
Hash 13159c83b85503182893c4d525a7fdaa
f351c7c39a13cf504d92990cb06772ee93586ad8
e6b5f5621604c631ce573d3111575850bca1ace554ada7f1adc46c47b47d6398
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.5 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
content-length: 11065
last-modified: Thu, 19 May 2022 12:32:30 GMT
vary: Accept-Encoding
etag: W/"628638de-936d"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.5
200 OK 2.2 kB URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.5
IP
File type ASCII text, with very long lines (4921)
Hash 1324432319090980ad78daa2c88e6905
73ae24e838bb334c735f2d06b0df91587d846bd4
7bdc00bd6c65cd6a6e4a8d4900737189e3a7239660c482a82b84a0e4b56ea900
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.5 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
content-length: 2196
last-modified: Thu, 19 May 2022 12:32:30 GMT
vary: Accept-Encoding
etag: W/"628638de-1360"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/themes/genesis/lib/js/menu/superfish.min.js?ver=1.7.10
200 OK 1.9 kB URL HTTP/2 legacyrisksolutions.com/wp-content/themes/genesis/lib/js/menu/superfish.min.js?ver=1.7.10
IP
File type ASCII text, with very long lines (4270)
Hash 3e9084126111712fb9d119a6e69f9c63
9ec38bae8db4a78925715964215a1f893cc975ba
7f2044729852950d596c5e486584b35de48f66c611d91b22725110ea28d5e599
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/genesis/lib/js/menu/superfish.min.js?ver=1.7.10 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
content-length: 1895
last-modified: Thu, 08 Oct 2020 11:36:24 GMT
vary: Accept-Encoding
etag: W/"5f7ef9b8-1193"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.6.5
200 OK 13 kB URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.6.5
IP
File type ASCII text, with very long lines (43353)
Hash e2b0df5cc87e1f4c27d6bfdabe9d372d
b69583970ed505d21d01368d73258e7e6cd31894
50d11f04e4cbf0a305aef54f8f8e1d88800107cbe76402544129177e74d16695
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.6.5 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
content-length: 13157
last-modified: Thu, 19 May 2022 12:32:30 GMT
vary: Accept-Encoding
etag: W/"628638de-a980"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: S/XCu+3z7/TrlRSAxif8Wg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: RfPJYTTdFOhz+738xZ19X+rk/kg=
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 4894843dd17150368f9e81305262c361
09c1036ec45f4da92b1749c5b0a76062d32ee681
5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 10:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 4894843dd17150368f9e81305262c361
09c1036ec45f4da92b1749c5b0a76062d32ee681
5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 10:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 4894843dd17150368f9e81305262c361
09c1036ec45f4da92b1749c5b0a76062d32ee681
5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 10:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
legacyrisksolutions.com/wp-content/uploads/sites/24/2020/10/cropped-LGS-logo-1.png
200 OK 14 kB URL HTTP/2 legacyrisksolutions.com/wp-content/uploads/sites/24/2020/10/cropped-LGS-logo-1.png
IP
File type PNG image data, 600 x 172, 8-bit gray+alpha, non-interlaced\012- data
Hash b40f9a0de73a6e1e87214be6258df562
4c084e64349f0daaeaf50cc4d7fcfbc2431ca813
77b74bcea7f395640235d112f4294859235968f8682901e39cf4cda3f92602d3
GET /wp-content/uploads/sites/24/2020/10/cropped-LGS-logo-1.png HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:34 GMT
content-type: image/png
content-length: 13663
last-modified: Thu, 08 Oct 2020 14:22:56 GMT
etag: "5f7f20c0-355f"
x-fw-server: Flywheel/4.1.0
pragma: public
cache-control: max-age=2592000, public
x-fw-hash: 8tna7dnomk
server: Flywheel/4.1.0
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://legacyrisksolutions.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 08:31:01 GMT
expires: Wed, 06 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 524733
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/themes/workstation-pro/dist/fonts/OpenSans-Regular.ttf
200 OK 97 kB URL HTTP/2 legacyrisksolutions.com/wp-content/themes/workstation-pro/dist/fonts/OpenSans-Regular.ttf
IP
File type TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansRegular1.10;1ASC;OpenSans-R\012- data
Hash 3ed9575dcc488c3e3a5bd66620bdf5a4
babe8dce93a3e48b6c3c79720a0c048e88dd1fe7
037236ed4bf58a85f67074c165d308260fd6be01c86d7df4e79ea16eb273f8c5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/workstation-pro/dist/fonts/OpenSans-Regular.ttf HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/wp-content/themes/workstation-pro/style.css?ver=1.1.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:34 GMT
content-type: application/font-sfnt
content-length: 96932
last-modified: Thu, 08 Oct 2020 12:32:27 GMT
etag: "5f7f06db-17aa4"
x-fw-server: Flywheel/4.1.0
pragma: public
access-control-allow-origin: *
x-fw-hash: 8tna7dnomk
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCQYbw.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCQYbw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15528, version 1.0\012- data
Hash 595fe3fc0b85f3cc9ef5aed2d519abc5
96e76de44987e9dec2f97f1e5eb7a18c738daf5d
747d5a0865fe76129cc17fe70097fd5b1db733ed3bbfa0210a8505d80c14ab5a
GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCQYbw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://legacyrisksolutions.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15528
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 22:59:00 GMT
expires: Wed, 06 Sep 2023 22:59:00 GMT
cache-control: public, max-age=31536000
age: 472654
last-modified: Tue, 19 Apr 2022 18:53:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/themes/workstation-pro/dist/fonts/Radley-Regular.ttf
200 OK 77 kB URL HTTP/2 legacyrisksolutions.com/wp-content/themes/workstation-pro/dist/fonts/Radley-Regular.ttf
IP
File type TrueType Font data, 17 tables, 1st "GDEF", 14 names, Microsoft, language 0x409, Copyright 2011 The Radley Project Authors (https://github.com/googlefonts/RadleyFont)RadleyRegul\012- data
Hash 03897faf9ec5f53850f4c5a81d64e985
8eb0b474d9fbac05ed44d072c936973f9fe6971a
98e50c879015937966f320c353deb65ed0fcaa6bf069949190dec36f19a5de2e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/workstation-pro/dist/fonts/Radley-Regular.ttf HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/wp-content/themes/workstation-pro/style.css?ver=1.1.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:34 GMT
content-type: application/font-sfnt
content-length: 77104
last-modified: Thu, 08 Oct 2020 12:32:29 GMT
etag: "5f7f06dd-12d30"
x-fw-server: Flywheel/4.1.0
pragma: public
access-control-allow-origin: *
x-fw-hash: 8tna7dnomk
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 4894843dd17150368f9e81305262c361
09c1036ec45f4da92b1749c5b0a76062d32ee681
5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 10:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
legacyrisksolutions.com/wp-content/themes/workstation-pro/dist/fonts/OpenSans-Bold.ttf
200 OK 104 kB URL HTTP/2 legacyrisksolutions.com/wp-content/themes/workstation-pro/dist/fonts/OpenSans-Bold.ttf
IP
File type TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansBold1.10;1ASC;OpenSans-Bold\012- data
Size 104 kB (104120 bytes)
Hash 1025a6e0fb0fa86f17f57cc82a6b9756
1e3704ee48b5ff7e582488ead87b05249f14dc1c
f7916a37377e38527d4306303cfe89b653b49b0a6b0b05c6b7593f7ab0248da8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/workstation-pro/dist/fonts/OpenSans-Bold.ttf HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/wp-content/themes/workstation-pro/style.css?ver=1.1.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:34 GMT
content-type: application/font-sfnt
content-length: 104120
last-modified: Thu, 08 Oct 2020 12:32:27 GMT
etag: "5f7f06db-196b8"
x-fw-server: Flywheel/4.1.0
pragma: public
access-control-allow-origin: *
x-fw-hash: 8tna7dnomk
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/themes/workstation-pro/dist/fonts/Radley-Italic.ttf
200 OK 73 kB URL HTTP/2 legacyrisksolutions.com/wp-content/themes/workstation-pro/dist/fonts/Radley-Italic.ttf
IP
File type TrueType Font data, 17 tables, 1st "GDEF", 14 names, Microsoft, language 0x409, Copyright 2011 The Radley Project Authors (https://github.com/googlefonts/RadleyFont)RadleyItali\012- data
Hash db6d2c9331615e0ebe04745ac6888d89
3a0eed1b0813f3c00a7204382d8eff111d4ffe92
aee76cd874077831fe2b1a9ad3aad46c10513d68e719b9ab0f7eef1a758ff1b6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/workstation-pro/dist/fonts/Radley-Italic.ttf HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/wp-content/themes/workstation-pro/style.css?ver=1.1.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:34 GMT
content-type: application/font-sfnt
content-length: 72856
last-modified: Thu, 08 Oct 2020 12:32:29 GMT
etag: "5f7f06dd-11c98"
x-fw-server: Flywheel/4.1.0
pragma: public
access-control-allow-origin: *
x-fw-hash: 8tna7dnomk
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/uploads/sites/24/2020/09/2020_LRS_Headshots-01-911x1024.jpg
200 OK 122 kB URL HTTP/2 legacyrisksolutions.com/wp-content/uploads/sites/24/2020/09/2020_LRS_Headshots-01-911x1024.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 911x1024, components 1\012- data
Size 122 kB (121977 bytes)
Hash 36cacb102a04ca4e6f7bb1db9f3eacbf
a04785e08de0a9ae88b3c79cdb7237ad1bbf228c
06f05a64b1584144ab702e97090aef8bff9855984649a1409ed3d85023d23f90
GET /wp-content/uploads/sites/24/2020/09/2020_LRS_Headshots-01-911x1024.jpg HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:34 GMT
content-type: image/jpeg
content-length: 121977
last-modified: Thu, 08 Oct 2020 11:50:00 GMT
etag: "5f7efce8-1dc79"
x-fw-server: Flywheel/4.1.0
pragma: public
cache-control: max-age=2592000, public
x-fw-hash: 8tna7dnomk
server: Flywheel/4.1.0
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/uploads/sites/24/2020/09/2020_LRS_Headshots-Preston-910x1024.jpg
200 OK 86 kB URL HTTP/2 legacyrisksolutions.com/wp-content/uploads/sites/24/2020/09/2020_LRS_Headshots-Preston-910x1024.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 910x1024, components 1\012- data
Hash b13fe40ac31be0e57b63a510046fb919
46390c6b622fbff28540cd3d9b169889207e9d3d
62435e4322194d1b256c146c0ead8a72f939f5a0e22c8fb2db594341500bc7ba
GET /wp-content/uploads/sites/24/2020/09/2020_LRS_Headshots-Preston-910x1024.jpg HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:34 GMT
content-type: image/jpeg
content-length: 86513
last-modified: Thu, 08 Oct 2020 11:49:45 GMT
etag: "5f7efcd9-151f1"
x-fw-server: Flywheel/4.1.0
pragma: public
cache-control: max-age=2592000, public
x-fw-hash: 8tna7dnomk
server: Flywheel/4.1.0
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/uploads/sites/24/2020/09/2020_LRS_Headshots-Tommy-911x1024.jpg
200 OK 114 kB URL HTTP/2 legacyrisksolutions.com/wp-content/uploads/sites/24/2020/09/2020_LRS_Headshots-Tommy-911x1024.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 911x1024, components 1\012- data
Size 114 kB (114021 bytes)
Hash d3b60f7e234d4f896849b05e48181c5c
d6faca2bef250d9b225056566968b10ce643799a
364d6b86162fef8d2819b73f83c70ffdcf364d05360329fe81c4aa1d5c5ce778
GET /wp-content/uploads/sites/24/2020/09/2020_LRS_Headshots-Tommy-911x1024.jpg HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:34 GMT
content-type: image/jpeg
content-length: 114021
last-modified: Thu, 08 Oct 2020 11:49:50 GMT
etag: "5f7efcde-1bd65"
x-fw-server: Flywheel/4.1.0
pragma: public
cache-control: max-age=2592000, public
x-fw-hash: 8tna7dnomk
server: Flywheel/4.1.0
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.4
200 OK 150 kB URL HTTP/2 legacyrisksolutions.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.4
IP
Size 150 kB (149478 bytes)
Hash fec1a71330cd8566fd0449d5b17d9782
d3a229ddb0ec3fd7ddb1b98c51413134fab4d291
50e64ddb80d1d6c4598910ac2fda3b2e191b715cf27fd2e2e5ecc97fe99eee64
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.4 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 16:48:55 GMT
vary: Accept-Encoding
etag: W/"6310e277-4705"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/uploads/sites/24/2020/09/2020_LRS_Headshots-Cheryl-910x1024.jpg
200 OK 146 kB URL HTTP/2 legacyrisksolutions.com/wp-content/uploads/sites/24/2020/09/2020_LRS_Headshots-Cheryl-910x1024.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 910x1024, components 1\012- data
Size 146 kB (145644 bytes)
Hash aacb74d60e1d432ca052cf5af7d42bd0
40ac0f67f94699592962e2f5b7d2236e22f9841e
23910da7f752dd06a4667f11364c301230be6cf21862918425ef68fac8624db2
GET /wp-content/uploads/sites/24/2020/09/2020_LRS_Headshots-Cheryl-910x1024.jpg HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:34 GMT
content-type: image/jpeg
content-length: 145644
last-modified: Thu, 08 Oct 2020 11:49:38 GMT
etag: "5f7efcd2-238ec"
x-fw-server: Flywheel/4.1.0
pragma: public
cache-control: max-age=2592000, public
x-fw-hash: 8tna7dnomk
server: Flywheel/4.1.0
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
200 OK 362 kB URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP
Size 362 kB (361962 bytes)
Hash 666a6b0092a0fe5913ff2a7247d31892
be0d830fcc5b0f66814afc249d9c8c9bc8c3d901
19a629076297c84b5635bf35f3e081d37ce840895aee52cac27b569e40fe480d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
last-modified: Thu, 19 May 2022 12:32:30 GMT
vary: Accept-Encoding
etag: W/"628638de-21f91"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Mon, 12 Sep 2022 08:41:12 GMT
expires: Mon, 12 Sep 2022 10:41:12 GMT
cache-control: public, max-age=7200
age: 5722
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/uploads/sites/24/2020/09/cropped-2020_LRS_Favicon-01-1-192x192.png
200 OK 15 kB URL HTTP/2 legacyrisksolutions.com/wp-content/uploads/sites/24/2020/09/cropped-2020_LRS_Favicon-01-1-192x192.png
IP
File type PNG image data, 192 x 192, 8-bit gray+alpha, non-interlaced\012- data
Hash f597ec515f91e7251f082413320a508a
81c45301b0fbd4fa4f59678af70e540e30fc8143
0be2a6755b7f5261000fab2990c700b5290458ffe55b16f6eec25e5a441e1a51
GET /wp-content/uploads/sites/24/2020/09/cropped-2020_LRS_Favicon-01-1-192x192.png HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:34 GMT
content-type: image/png
content-length: 15002
last-modified: Thu, 08 Oct 2020 13:04:14 GMT
etag: "5f7f0e4e-3a9a"
x-fw-server: Flywheel/4.1.0
pragma: public
cache-control: max-age=2592000, public
x-fw-hash: 8tna7dnomk
server: Flywheel/4.1.0
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/uploads/sites/24/2020/09/cropped-2020_LRS_Favicon-01-1-32x32.png
200 OK 819 B URL HTTP/2 legacyrisksolutions.com/wp-content/uploads/sites/24/2020/09/cropped-2020_LRS_Favicon-01-1-32x32.png
IP
File type PNG image data, 32 x 32, 8-bit gray+alpha, non-interlaced\012- data
Hash 9d8157caa96ea06e1c04408fe56057a0
a366cef571abd62975f32b081dcc157f35e071a7
475a549ab5f56dc9b6021da553e9e2329349d14fd49154f6bfa8192cf454bb95
GET /wp-content/uploads/sites/24/2020/09/cropped-2020_LRS_Favicon-01-1-32x32.png HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:34 GMT
content-type: image/png
content-length: 819
last-modified: Thu, 08 Oct 2020 13:04:14 GMT
etag: "5f7f0e4e-333"
x-fw-server: Flywheel/4.1.0
pragma: public
cache-control: max-age=2592000, public
x-fw-hash: 8tna7dnomk
server: Flywheel/4.1.0
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14631
Expires: Mon, 12 Sep 2022 14:20:26 GMT
Date: Mon, 12 Sep 2022 10:16:35 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14631
Expires: Mon, 12 Sep 2022 14:20:26 GMT
Date: Mon, 12 Sep 2022 10:16:35 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14631
Expires: Mon, 12 Sep 2022 14:20:26 GMT
Date: Mon, 12 Sep 2022 10:16:35 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14631
Expires: Mon, 12 Sep 2022 14:20:26 GMT
Date: Mon, 12 Sep 2022 10:16:35 GMT
Connection: keep-alive
legacyrisksolutions.com/wp-content/themes/workstation-pro/style.css?ver=1.1.3
200 OK 8.8 kB URL HTTP/2 legacyrisksolutions.com/wp-content/themes/workstation-pro/style.css?ver=1.1.3
IP
Hash e9a1ea7bc7c9de013863ecf37225925c
5906e9e7e17fa451af9658e23f456e2a93c05d9f
914d5acc889f1eed5e66249ee139a85f4e4e2d9dc554c162b06bab32cca0d8bb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/workstation-pro/style.css?ver=1.1.3 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: text/css
last-modified: Thu, 08 Oct 2020 12:31:35 GMT
vary: Accept-Encoding
etag: W/"5f7f06a7-9c8f"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae1f7987-7b92-4cec-85ab-243250e02a06.webp
200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae1f7987-7b92-4cec-85ab-243250e02a06.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7ccc33ae0c85a906f2c17db281ec790
1904722d70348235d5472c54f888d2b4b991e2aa
f48edc03624f582b05b596694b76bd784f85eb9f2ca5dd025bbea9cc2ff1f096
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae1f7987-7b92-4cec-85ab-243250e02a06.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6999
x-amzn-requestid: 61e3e817-fb62-47c7-b938-2dfc6a134622
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO1mlG3XIAMFo5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3629-37c2c8982c4ccf891875c59a;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:00:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: S2TR552YpZeEbhTSAn4vdXexYpvR4Lrr-LaJmfNd7LnO0L4QM8w-Dg==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 03:38:55 GMT
age: 23860
etag: "1904722d70348235d5472c54f888d2b4b991e2aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F877083da-81e2-47df-adc5-ba5b0f83249c.jpeg
200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F877083da-81e2-47df-adc5-ba5b0f83249c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6065db8d4276060fbc5f9e0ef04573bc
4077cf9a03f0fa3601bcbea161bfe762feb3a7e0
a14f6e8db246a321dbdcd8672e1914daa53cb9a27a926f63393e5ddc279e58de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F877083da-81e2-47df-adc5-ba5b0f83249c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9588
x-amzn-requestid: 61cc89f2-7e05-483a-a17b-be3041e0c096
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUJK7GvaIAMFoHw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e5578-068429955950e2374ca0dade;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:39:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: VJtwWtz9hw9B_bK6SXcRQbN7HXqDsVD3twNaSqIkwGQeRTeAbyReFg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:55:40 GMT
age: 44455
etag: "4077cf9a03f0fa3601bcbea161bfe762feb3a7e0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/plugins/social-pug/assets/dist/front-end-free.1.19.1.js?ver=1.19.1
200 OK 21 kB URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/social-pug/assets/dist/front-end-free.1.19.1.js?ver=1.19.1
IP
Hash e8f950ef1036b18bb1b992ffc529405d
cede6f60bc1446d437e4b7170e218a77959ecd3a
d01b6827607e211daec0e84e9587b8f9f2449ded3284ca115b42bcc8ea74f793
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/social-pug/assets/dist/front-end-free.1.19.1.js?ver=1.19.1 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
last-modified: Tue, 21 Dec 2021 04:00:27 GMT
vary: Accept-Encoding
etag: W/"61c1515b-7207"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 9.9 kB URL HTTP/2 legacyrisksolutions.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
Hash d9851318dce0176751414ce1687736af
afd9d0ea135e40bafd9e61070edafdc5d5fb54e5
bcdd8e6ddd79168e5d39f9a0cb615f6f1326a3a9102209a039c5c3bbfb5ff8ac
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 16:48:55 GMT
vary: Accept-Encoding
etag: W/"6310e277-2bd8"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82cfbbd4-ab05-47a9-8f70-73405b312a0e.jpeg
200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82cfbbd4-ab05-47a9-8f70-73405b312a0e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 866ace739b788c7d6e9047d246985a8f
bec098ac12c44fc877555fea7b3ddb8cbef12b2d
1d8599845425acd4bf90d7da05efdd2a9c7e0b5a37efc291cdcf1a2277671429
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82cfbbd4-ab05-47a9-8f70-73405b312a0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8390
x-amzn-requestid: 43e68b0e-80fd-43ed-8f63-86ec0c94c0a6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUJAPGy8IAMFsdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e5534-0d51f22d34cb67eb2319ebf1;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:37:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: e-lL-3G5SCGgrsm_9pp51JYvBtgtZB144EZPmBq6Mx16HfXYK2-nZw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:44:30 GMT
etag: "bec098ac12c44fc877555fea7b3ddb8cbef12b2d"
content-type: image/jpeg
age: 45125
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg
200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c14088c4ca0d576e087feed41b7f1565
172b23f2ef39b6c3fdebb5441b10a95712206d0a
2699efa811ceac5420f5bd26c35a6f48b51854e29cbce7cbb62efb613db7d6b9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8799
x-amzn-requestid: 1bcdf387-9ad2-449a-861e-3352b1744d23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUI-0G6vIAMFgbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e552b-42aa46af6315148106c4fdee;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:37:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: g2mxKK8L5T4YkeD8JqNUuV_KfsIq8ypRMvxhsyzSZSEIP4gDl4zLVQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:41:51 GMT
age: 45284
etag: "172b23f2ef39b6c3fdebb5441b10a95712206d0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/plugins/norton-directory/public/css/norton-directory-public.css?ver=1.0.0
200 OK 0 B URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/norton-directory/public/css/norton-directory-public.css?ver=1.0.0
IP
GET /wp-content/plugins/norton-directory/public/css/norton-directory-public.css?ver=1.0.0 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: text/css
last-modified: Wed, 05 Feb 2020 08:31:38 GMT
vary: Accept-Encoding
etag: W/"5e3a7d6a-23d7"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.4
200 OK 0 B URL HTTP/2 legacyrisksolutions.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.4
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.4 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: text/css
last-modified: Thu, 01 Sep 2022 16:48:54 GMT
vary: Accept-Encoding
etag: W/"6310e276-145db"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-includes/css/dashicons.min.css?ver=5.9.4
200 OK 0 B URL HTTP/2 legacyrisksolutions.com/wp-includes/css/dashicons.min.css?ver=5.9.4
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=5.9.4 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: text/css
last-modified: Thu, 01 Sep 2022 16:48:54 GMT
vary: Accept-Encoding
etag: W/"6310e276-e688"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto+Condensed%3A300italic%2C700italic%2C700%2C300&ver=1.1.3
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto+Condensed%3A300italic%2C700italic%2C700%2C300&ver=1.1.3
IP
GET /css?family=Roboto+Condensed%3A300italic%2C700italic%2C700%2C300&ver=1.1.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 12 Sep 2022 10:16:33 GMT
date: Mon, 12 Sep 2022 10:16:33 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/plugins/social-pug/assets/dist/style-frontend-pro.1.19.1.css?ver=1.19.1
200 OK 0 B URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/social-pug/assets/dist/style-frontend-pro.1.19.1.css?ver=1.19.1
IP
GET /wp-content/plugins/social-pug/assets/dist/style-frontend-pro.1.19.1.css?ver=1.19.1 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: text/css
last-modified: Tue, 21 Dec 2021 04:00:27 GMT
vary: Accept-Encoding
etag: W/"61c1515b-18cfa"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/plugins/if-menu/assets/if-menu-site.css?ver=5.9.4
200 OK 0 B URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/if-menu/assets/if-menu-site.css?ver=5.9.4
IP
GET /wp-content/plugins/if-menu/assets/if-menu-site.css?ver=5.9.4 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: text/css
last-modified: Tue, 21 Dec 2021 04:00:32 GMT
vary: Accept-Encoding
etag: W/"61c15160-3a1"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
200 OK 0 B URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
IP
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: text/css
last-modified: Thu, 19 May 2022 12:32:30 GMT
vary: Accept-Encoding
etag: W/"628638de-4ab8"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.6.5
200 OK 0 B URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.6.5
IP
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.6.5 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: text/css
last-modified: Thu, 19 May 2022 12:32:30 GMT
vary: Accept-Encoding
etag: W/"628638de-27dfe"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
200 OK 0 B URL HTTP/2 legacyrisksolutions.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 16:48:55 GMT
vary: Accept-Encoding
etag: W/"6310e277-15db1"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.4
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.4
IP
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.4 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 12 Sep 2022 10:16:33 GMT
date: Mon, 12 Sep 2022 10:16:33 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
legacyrisksolutions.com/wp-content/plugins/simple-banner/simple-banner.js?ver=2.10.6
200 OK 0 B URL HTTP/2 legacyrisksolutions.com/wp-content/plugins/simple-banner/simple-banner.js?ver=2.10.6
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/simple-banner/simple-banner.js?ver=2.10.6 HTTP/1.1
Host: legacyrisksolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://legacyrisksolutions.com/leadership/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 10:16:33 GMT
content-type: application/javascript
last-modified: Tue, 21 Dec 2021 04:01:47 GMT
vary: Accept-Encoding
etag: W/"61c151ab-1220"
x-fw-server: Flywheel/4.1.0
pragma: public
x-fw-hash: 8tna7dnomk
content-encoding: gzip
server: Flywheel/4.1.0
cache-control: max-age=2592000, public
x-cacheable: YES
x-fw-serve: TRUE
x-cache: MISS
x-fw-static: YES
x-fw-type: VISIT
accept-ranges: bytes
X-Firefox-Spdy: h2
96.126.104.53
93.184.220.29
95.101.11.115
0.0.0.0