{"report_id":"8906b0a3-ab3e-40df-b609-a824c81f51cf","version":0,"status":"done","tags":[],"date":"2026-06-13T17:08:24Z","url":{"schema":"http","addr":"web.tslegila.com/","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"104.21.86.7","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"web.tslegila.com/ZH/","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"title":"Telegram","dom":{"size":93692,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (56258)","md5":"96d07f6d08890a3a19427db50cc45e5c","sha1":"a679e75988af0c7587ef693284f535f550256e8b","sha256":"ef705d4456ba740784f6f00f86ef3512999427ec4b026eeaff1c8b75ce2ad0d5","sha512":"2b13b9b8f92c8979a3a0e31bdf3284df0732120917d326c47d4b012afa1631a4cf994cc70fc00490b310278b880402aad898dc3499a564825cecb634e4a7cfbd","ssdeep":"384:C7Gs7QCSuMhFKfooRI4TLd72msfohhecPz+nw9mRG:CCsyuMWfo54FnsfohhecPkA","tlshash":"e493cc70419112ff993342d2f9bbab3626f4815debc904c9d6fc17a623e8c66bd93910","dom_hash":"domhash5ef7299355b16eea88d6370246f904d3","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"web.tslegila.com/","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"104.21.86.7","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-18T17:08:24Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"web.tslegila.com","ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-04-22","domain_rank":0,"first_seen":"2026-06-13T17:08:29.727533Z","last_seen":"2026-06-13T17:08:29.727533Z","alert_count":560,"request_count":280,"received_data":4408430,"sent_data":186970,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"WebAssembly","description":"WebAssembly (abbreviated Wasm) is a binary instruction format for a stack-based virtual machine. Wasm is designed as a portable compilation target for programming languages, enabling deployment on the web for client and server applications.","website":"https://webassembly.org/","common_platform_enumeration":"","icon":"WebAssembly.svg","categories":["Programming languages"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.178.72","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2026-06-07T22:29:27.813409Z","alert_count":0,"request_count":2,"received_data":968862,"sent_data":958,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"t.me","ip":{"addr":"149.154.167.99","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"domain_registered":"2010-05-20","domain_rank":146,"first_seen":"2015-06-29T19:03:15Z","last_seen":"2026-06-11T22:39:11.829171Z","alert_count":0,"request_count":1,"received_data":491,"sent_data":472,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.30.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"zws2.web.telegram.org","ip":{"addr":"149.154.167.99","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"domain_registered":"2003-12-15","domain_rank":491032,"first_seen":"2021-06-24T06:55:52Z","last_seen":"2026-06-09T01:06:09.750108Z","alert_count":0,"request_count":1,"received_data":220,"sent_data":592,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.30.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"zws2-1.web.telegram.org","ip":{"addr":"149.154.167.99","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"domain_registered":"2003-12-15","domain_rank":279879,"first_seen":"2021-08-26T11:52:04Z","last_seen":"2026-06-12T16:13:47.185965Z","alert_count":0,"request_count":1,"received_data":220,"sent_data":594,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.30.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"telegram.me","ip":{"addr":"149.154.167.99","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"domain_registered":"2014-01-07","domain_rank":537,"first_seen":"2013-10-13T16:36:12Z","last_seen":"2026-06-12T16:13:47.224589Z","alert_count":0,"request_count":1,"received_data":491,"sent_data":479,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.30.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"web.tslegila.com/ZH/8287.e246ccf6a476d82bd6b3.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"271a1564279ef46aade8f072c12777a5","sha1":"d80ac257ca8df39da2b51a520807dcfe0439fcd5","sha256":"874a715375bad69dec2b9b1aad6d8b1a9443c4cfe2c3f2a0319b21a733cc2a4b","sha512":"fa2f77b23a9543bb28e3d08b3adc0ee4c923e2ff4b9333b068d7f309b9462afad9f356a3975b9b99d73c8dcef47e38c610d4cc2cf813b64ec5b6ab9f46826e82","ssdeep":"768:uRyLQqo27ZC/YPqRvxFsqfmdSmTRrfBobGsT3ZT3GiYl2T3yT3TdVcUWA7h5D1OP:urHVeNBoCEl/KfdM","tlshash":"b0c28584f7a5b07603626691046b541bf279ee28b44c58acf250e4f328b78da94fff74","size":27436,"data":"","first_seen":"2026-06-08T15:28:58.632113Z","last_seen":"2026-06-13T17:08:37.236253Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/3046.045a298715c911ec66cf.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"797139e06e32cc6da3ff92855bb80aad","sha1":"fa4b1f8368d19f650e7cda932c14bbcf2f1848a6","sha256":"5fb48de7981f6d9cd91e0231901aa570b83e0c4340667f6947cdde989a99d2fe","sha512":"d117a2afba8b4028d7e90d670265d12fdacd08ddf76a63ac2512dd9834ef80fa447c3ecd2af925754b10c172bfb6e029ed02240bccef4b5ae3785179a949a7af","ssdeep":"384:LLmi7SuM5m54Jj8wwolGcRvDwCIG4fAtbF+9hO2rgFRGt+g0mtaOYBlbKC/MpxBL:LL17SxQuOIh1DyUF+99X3xBB/H6Sgkp","tlshash":"e62363c4f6e6b0a1436371e0443b504af33e6a6ca44d40b8e295d4e678fa85dd67bf38","size":46794,"data":"","first_seen":"2026-06-08T15:28:58.71172Z","last_seen":"2026-06-13T17:08:37.126594Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/7283.12483e9bb6ecfadc0b6c.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"4ea3d7f608b3d37876331473ba8359e4","sha1":"d8abf7b16ae390e0fe520a124173c8532c372754","sha256":"84a5f85a6fc3037c53db2ed590538d4fb313ad3ac52e73e59c6fcfcf8234a33d","sha512":"8b03fadcbd130b7c8d84d330e08e84fb01df9e96b1d16f3290a87496c4f906e41ad4bdf137530be38abf1e5cd6775baee5521a1281aa5054aebe582d469cfa8a","ssdeep":"768:Ke+ebTqPIHWzlqcIO4HI+ebv3djbql2cPg+bwTjh1a4HASr:Bb+PVzlqcIzdCt","tlshash":"7723d8a9b381a1b66a5695e3403b0447f138f6252816d06cf739c8de687cdc5b93bf38","size":45744,"data":"","first_seen":"2026-06-08T15:28:58.75296Z","last_seen":"2026-06-13T17:08:37.101042Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"d43a276649bfcf378eae694f9df3b475","sha1":"00965b1173d56df61b1a183a61b7c180fe4cd110","sha256":"7a4a7773af250a2486d451dc08177255af1fb92f8b8cf41f24eff07345837e3b","sha512":"d9d4c26e06ffc589ab6f9aa47839850d9c9476f72c23f7e139e3ec394f7dbc1efbb52d1f49a3be1de9dfd6bf8b24c93c414d8f6ae5822a4143df302a5c4b29af","ssdeep":"192:t0WGLjOqrc38On35VfGXRWQeaGBSNLcrRdj4CqIbEoEhoCfRERKGkEmSqfigty+E:+WEJrc38O35VfGBWEwdMChwoEhbZAKGp","tlshash":"ef42e6c52742643ee397a8d9987a00533034da587419856c7b2eaed73c2bdc6f0b1f72","size":12161,"data":"","first_seen":"2026-06-06T06:06:39.13944Z","last_seen":"2026-06-13T17:08:37.143765Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"d43a276649bfcf378eae694f9df3b475","sha1":"00965b1173d56df61b1a183a61b7c180fe4cd110","sha256":"7a4a7773af250a2486d451dc08177255af1fb92f8b8cf41f24eff07345837e3b","sha512":"d9d4c26e06ffc589ab6f9aa47839850d9c9476f72c23f7e139e3ec394f7dbc1efbb52d1f49a3be1de9dfd6bf8b24c93c414d8f6ae5822a4143df302a5c4b29af","ssdeep":"192:t0WGLjOqrc38On35VfGXRWQeaGBSNLcrRdj4CqIbEoEhoCfRERKGkEmSqfigty+E:+WEJrc38O35VfGBWEwdMChwoEhbZAKGp","tlshash":"ef42e6c52742643ee397a8d9987a00533034da587419856c7b2eaed73c2bdc6f0b1f72","size":12161,"data":"","first_seen":"2026-06-06T06:06:39.13944Z","last_seen":"2026-06-13T17:08:37.143765Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/7784.a3c3e3e38d46532f1ca9.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"44d9784f12bcc86aae68822c887d357a","sha1":"30d8228c88b0a28567699e27be713e4b20ca7d5e","sha256":"520468d89596d743cf1c4e0adac4f035c77cb4296ec291a9f61e0604cf254db7","sha512":"1b0e56ada6fb96aaa59c5e3ab07a4f1c017609ff669d2ec8254863e5bd9268a7567da9320f7c31889ef9e2bc5e9591c3674553e735995135b25b72f43dbb2eca","ssdeep":"384:eA1pRdH3K+SWInGDrQ+YW5LhoASLv5S8VwktQ0CSRU6f/k5MC6LEmYwt/9RXC6iR:eA1pRdX1DrQ2LhoASLFtQUU63k5MC6LK","tlshash":"ac92187a52ad05c252ec48e908cb199951b8e0233c871d7e5134fdd630f28d7e2ebd79","size":21093,"data":"","first_seen":"2025-04-19T14:14:53.465174Z","last_seen":"2026-06-13T17:08:37.12584Z","times_seen":418,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/9357.ec931486e29d6c0283bc.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"a1f9eb9d48276edcec3895aeec32aa70","sha1":"8cc7dea26bca438fce1b7a345e128acc902777eb","sha256":"5386f4fb19b108ea60e74222778d586d923fae02624c065ad5ad5036248005ba","sha512":"2b12ea86b958cb8808589e5753c43aa9bd845a958dd97473499feb0a75db7e3dc64f0952ab8eac453868b43064a8063a8654f49c9d6deb4acbb011ef87c9908f","ssdeep":"","tlshash":"5551b8441a733c791de347a7b05b3b120c2513b27819f59326099eeb47b624f5b03f4a","size":2632,"data":"","first_seen":"2026-06-06T06:06:39.143703Z","last_seen":"2026-06-13T17:08:37.104091Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/rlottie-wasm.f013598f1b2ba719f25e.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"4441938ee433d3657c20d454d352a336","sha1":"dd67121d7fda7c17be196f60c72dfa06bcb5bc6f","sha256":"659bf63501a8054ef0eedda3dec466dbc1e9a1b2c4d5d59a285b005215e16679","sha512":"f90da6f2003442e547813d62f44e22e688f637616dd7f7f33c81e73d05a3a3de39947c0a8f580002cc96a716caecc4bcd988644ad78b01ae2e9a9792c726604e","ssdeep":"768:O6T4cK2yQ6eO1P2WgcdxazvszXIgBB1ARna76Ae/FqsSwYxRrqhlr3NqR:m1Q6eO4+IUzXXsjvi1alrcR","tlshash":"6153e88535d9b0ab42837878946f310bf2ab6d52641c8410db1dd4dabcb4e49e63ffe8","size":65591,"data":"","first_seen":"2024-05-16T20:37:02Z","last_seen":"2026-06-13T19:02:15.11616Z","times_seen":15143,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/rlottie-wasm.f013598f1b2ba719f25e.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"4441938ee433d3657c20d454d352a336","sha1":"dd67121d7fda7c17be196f60c72dfa06bcb5bc6f","sha256":"659bf63501a8054ef0eedda3dec466dbc1e9a1b2c4d5d59a285b005215e16679","sha512":"f90da6f2003442e547813d62f44e22e688f637616dd7f7f33c81e73d05a3a3de39947c0a8f580002cc96a716caecc4bcd988644ad78b01ae2e9a9792c726604e","ssdeep":"768:O6T4cK2yQ6eO1P2WgcdxazvszXIgBB1ARna76Ae/FqsSwYxRrqhlr3NqR:m1Q6eO4+IUzXXsjvi1alrcR","tlshash":"6153e88535d9b0ab42837878946f310bf2ab6d52641c8410db1dd4dabcb4e49e63ffe8","size":65591,"data":"","first_seen":"2024-05-16T20:37:02Z","last_seen":"2026-06-13T19:02:15.11616Z","times_seen":15143,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/rlottie-wasm.f013598f1b2ba719f25e.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"4441938ee433d3657c20d454d352a336","sha1":"dd67121d7fda7c17be196f60c72dfa06bcb5bc6f","sha256":"659bf63501a8054ef0eedda3dec466dbc1e9a1b2c4d5d59a285b005215e16679","sha512":"f90da6f2003442e547813d62f44e22e688f637616dd7f7f33c81e73d05a3a3de39947c0a8f580002cc96a716caecc4bcd988644ad78b01ae2e9a9792c726604e","ssdeep":"768:O6T4cK2yQ6eO1P2WgcdxazvszXIgBB1ARna76Ae/FqsSwYxRrqhlr3NqR:m1Q6eO4+IUzXXsjvi1alrcR","tlshash":"6153e88535d9b0ab42837878946f310bf2ab6d52641c8410db1dd4dabcb4e49e63ffe8","size":65591,"data":"","first_seen":"2024-05-16T20:37:02Z","last_seen":"2026-06-13T19:02:15.11616Z","times_seen":15143,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"70a0587176edcafe8fc9b2874af7e0af","sha1":"4f13b566876ece65aecddf38761b838555c570ec","sha256":"0021df2e71918d8877d6c2a3841354ec06650d0de25ea264f5e1c0fdc7415d81","sha512":"b511e546ed646334d8b2707aa34eccf37952c062d620fb858afcda16c6bcdde2b53e28164edd880425264437bc1915be667ae823f809749fca7dd6ebea02844b","ssdeep":"","tlshash":"91c08c8c265b4c7140e73b814b3f6100b015620360a19e313c1e7344cf20d279749804","size":178,"data":"","first_seen":"2025-06-23T23:40:13.056045Z","last_seen":"2026-06-13T17:08:37.269432Z","times_seen":264,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"ee1cfc04ffa1ffeb7bd438f86dfc5152","sha1":"ad8af58f6bc584182f9c97af1d8e79442e307d22","sha256":"084d4abbae46479a963de372156bc1bf623b382a813b96eef2cd36bd443d0aba","sha512":"ab48b17906d1d33ce06c741842fd570e0f133ee4d4e06716d230507570a5d6746a5a042d7c33c3d9d600c99beea1991441513f2c550d9d8ed911aac0dee64788","ssdeep":"","tlshash":"47d0a9c831eb1240a7e320982a432b3820261863500e8ac0b60d2b900f2ea2803c22ee","size":213,"data":"","first_seen":"2026-06-08T15:28:58.776847Z","last_seen":"2026-06-13T17:08:37.270274Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/5193.4b5399da91db26a505ed.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b9adab2591623aa95d486bb03ff41dc2","sha1":"a7c92be620fe60ad036d5f329f2d6402b987e5bf","sha256":"424ac490f04c58b1655dcc59320f7657976a2f898c569ddaf7ab26c28bfcfd95","sha512":"37a480602ab3541346158e983e65e11dbf2a6760c84981af2fc5c4a14a1bcc4a893b9b8b29af98268d5d8d9b1e7b04a667d4ba610dae84ac3bb2884d6fbac5c6","ssdeep":"192:W/kF3DWtg5I3cTKk/Q4yZOXG/lB0wKqwztTSuIdmPignIi7SdibRs1YpZNWBvYAl:WI3Dbac/TW30J/tBROZXyEW0NZuQl","tlshash":"2a82e76bee110c2e02d351a7fdca3106b5b982a6c2a05474d36dd06f03ad8dd367fb69","size":18423,"data":"","first_seen":"2026-06-08T15:28:58.754353Z","last_seen":"2026-06-13T17:08:37.189882Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"d43a276649bfcf378eae694f9df3b475","sha1":"00965b1173d56df61b1a183a61b7c180fe4cd110","sha256":"7a4a7773af250a2486d451dc08177255af1fb92f8b8cf41f24eff07345837e3b","sha512":"d9d4c26e06ffc589ab6f9aa47839850d9c9476f72c23f7e139e3ec394f7dbc1efbb52d1f49a3be1de9dfd6bf8b24c93c414d8f6ae5822a4143df302a5c4b29af","ssdeep":"192:t0WGLjOqrc38On35VfGXRWQeaGBSNLcrRdj4CqIbEoEhoCfRERKGkEmSqfigty+E:+WEJrc38O35VfGBWEwdMChwoEhbZAKGp","tlshash":"ef42e6c52742643ee397a8d9987a00533034da587419856c7b2eaed73c2bdc6f0b1f72","size":12161,"data":"","first_seen":"2026-06-06T06:06:39.13944Z","last_seen":"2026-06-13T17:08:37.143765Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/3559.7463f2fc78581a5d297e.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"16e25819c47c646e1cc696a4c8bf9921","sha1":"5007bfdcbbaf6390933a491d24c5f6b94132466d","sha256":"73b2d266beca220ef41207cd0aff880ba2787e960b60ef7446c8abe2bd7f256b","sha512":"ed77d819fd1515ec90c2147daabf26720ef305e23a8139c0d46c4a4fb9b4ca983d29fea8fdbc6a4d1db39b3c26ef149eb67c76ba21f4a73e7e5878087d4f36e9","ssdeep":"6144:NYoaWozxdaI1IPz9DD3O5MM4vHo7hyCS9mzR/RVxXoUC+hRMBNC5M8m3VO:4WozxdaijMDo7hyCYmzR/xrhiCZm3VO","tlshash":"4ec43db37ff1662e58972cd2bca2724163b9c10562446038f5dd80ab1a790cb53bbf6d","size":582360,"data":"","first_seen":"2026-06-08T15:28:58.719521Z","last_seen":"2026-06-13T17:08:37.223244Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/5905.228b6ba981b06680c03c.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"ee5c449b87bcb6f35bcc547c1f3af7ff","sha1":"c55a4efd6f8867c67375f79a675ba6d2618c8bfd","sha256":"0883d0c3875eafed08b44d205e2e160ab6b79c60c9cd8fb7adf90f33199b3fec","sha512":"f13bfbd100490b22075f6dc5e9bb120e838223cb7724cc76593c302364c780f8b9bc744ed1889ced63ce5e412086af95410163f5f17f4b27c9d34880244a4599","ssdeep":"1536:ouG3B/McaUFrnb3wHkgJ4K9pKMwHI/CglGQnAZkY0tfXuYEUp:YlrbBgXGsWkyA","tlshash":"46e3b682f86424161392a1e654b60749b739f41ca8c540acfb7cfed52dbcd8e36ab734","size":155171,"data":"","first_seen":"2025-04-19T14:14:53.473469Z","last_seen":"2026-06-13T17:08:37.107655Z","times_seen":411,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/9357.ec931486e29d6c0283bc.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"a1f9eb9d48276edcec3895aeec32aa70","sha1":"8cc7dea26bca438fce1b7a345e128acc902777eb","sha256":"5386f4fb19b108ea60e74222778d586d923fae02624c065ad5ad5036248005ba","sha512":"2b12ea86b958cb8808589e5753c43aa9bd845a958dd97473499feb0a75db7e3dc64f0952ab8eac453868b43064a8063a8654f49c9d6deb4acbb011ef87c9908f","ssdeep":"","tlshash":"5551b8441a733c791de347a7b05b3b120c2513b27819f59326099eeb47b624f5b03f4a","size":2632,"data":"","first_seen":"2026-06-06T06:06:39.143703Z","last_seen":"2026-06-13T17:08:37.104091Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/redirect.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"17773b57b87a678c98e26a7cac72df6c","sha1":"7422857aa75ee81cabcec2eed6c4a6168f363ee1","sha256":"375141f2d3f04c733276dbff5d9208ff36b2db6a64abcee723179ac24797974f","sha512":"28d9e1c2af08154e653e2291db46f4110edbf9f5591192f8d695c8852f9c3c755d69dfb5a032a45f51e0a3fc9417f16c20d0772b1225ca9b85e5531e12fa8bfc","ssdeep":"","tlshash":"e8e07dda0279030417e013f36d82b4709137c2fb604c5d028d984321a1b9b4f5b7b84f","size":325,"data":"","first_seen":"2023-07-27T09:32:34Z","last_seen":"2026-06-13T19:25:53.138034Z","times_seen":11488,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-MNRFRBBP0B","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.72","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"25e1ad071387c40604fa081819fafdf6","sha1":"ec0da85aba3d2c2fe5435055ef6152a8fa5da94c","sha256":"4f56cc236033c9fbdef22ec81c9e45a31af1c9821ed13e4d624323de5ee79924","sha512":"4c12be2c46a928065328e1beb0687b44f425bdfe2acbf86906028a3fc28d8b24a277aa446ddab31f3956fdfcc45b81fcce82bb8ad5c2140bd217eb8b581ceb02","ssdeep":"6144:1h+QbRknTI8s5XtjLEEQT1TpqBEzVTI1Ce8G3h7Y1MD9f:GjnTsEZXysu","tlshash":"b9a4e9ceb3d674225296f478903f018ba57b29e2b44cc899f189cce42e7469a4177f7c","size":483837,"data":"","first_seen":"2026-06-13T17:08:37.15286Z","last_seen":"2026-06-13T17:08:37.15286Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/6708.29afc871d92b717571ef.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8d40044e2c6c3a99922966d85e939a7f","sha1":"34c98fe3dcbf8bfd1c19f3ea7b9e76f6fb51b1a8","sha256":"375ca7a41e25af222b66164bbe4997edc8487745a616312ec647191850ff4955","sha512":"b4903187558eb6efb092a3ca18b48a07a64d588ed5b6b80e7b6a9ee97f0b45ea097e694834156954e76107e6c197415cd08edc7bc21cab26ab5448759d5dffde","ssdeep":"192:+BXzmONT16dWQ5v18/NXiseShD/DUWaD9mkt0Kk/YsAoDc+EurY61M:+BjmONTAdWq1q6S5/DUtZmkmKkT7D/EH","tlshash":"95220a81b132743e62a7d4d5e6190a02ba359159381da2bdf77c78fb2c5580b34bcf3a","size":10380,"data":"","first_seen":"2025-04-19T14:14:53.474732Z","last_seen":"2026-06-13T17:08:37.099144Z","times_seen":416,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/5905.228b6ba981b06680c03c.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"ee5c449b87bcb6f35bcc547c1f3af7ff","sha1":"c55a4efd6f8867c67375f79a675ba6d2618c8bfd","sha256":"0883d0c3875eafed08b44d205e2e160ab6b79c60c9cd8fb7adf90f33199b3fec","sha512":"f13bfbd100490b22075f6dc5e9bb120e838223cb7724cc76593c302364c780f8b9bc744ed1889ced63ce5e412086af95410163f5f17f4b27c9d34880244a4599","ssdeep":"1536:ouG3B/McaUFrnb3wHkgJ4K9pKMwHI/CglGQnAZkY0tfXuYEUp:YlrbBgXGsWkyA","tlshash":"46e3b682f86424161392a1e654b60749b739f41ca8c540acfb7cfed52dbcd8e36ab734","size":155171,"data":"","first_seen":"2025-04-19T14:14:53.473469Z","last_seen":"2026-06-13T17:08:37.107655Z","times_seen":411,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"70a0587176edcafe8fc9b2874af7e0af","sha1":"4f13b566876ece65aecddf38761b838555c570ec","sha256":"0021df2e71918d8877d6c2a3841354ec06650d0de25ea264f5e1c0fdc7415d81","sha512":"b511e546ed646334d8b2707aa34eccf37952c062d620fb858afcda16c6bcdde2b53e28164edd880425264437bc1915be667ae823f809749fca7dd6ebea02844b","ssdeep":"","tlshash":"91c08c8c265b4c7140e73b814b3f6100b015620360a19e313c1e7344cf20d279749804","size":178,"data":"","first_seen":"2025-06-23T23:40:13.056045Z","last_seen":"2026-06-13T17:08:37.269432Z","times_seen":264,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"ee1cfc04ffa1ffeb7bd438f86dfc5152","sha1":"ad8af58f6bc584182f9c97af1d8e79442e307d22","sha256":"084d4abbae46479a963de372156bc1bf623b382a813b96eef2cd36bd443d0aba","sha512":"ab48b17906d1d33ce06c741842fd570e0f133ee4d4e06716d230507570a5d6746a5a042d7c33c3d9d600c99beea1991441513f2c550d9d8ed911aac0dee64788","ssdeep":"","tlshash":"47d0a9c831eb1240a7e320982a432b3820261863500e8ac0b60d2b900f2ea2803c22ee","size":213,"data":"","first_seen":"2026-06-08T15:28:58.776847Z","last_seen":"2026-06-13T17:08:37.270274Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"d43a276649bfcf378eae694f9df3b475","sha1":"00965b1173d56df61b1a183a61b7c180fe4cd110","sha256":"7a4a7773af250a2486d451dc08177255af1fb92f8b8cf41f24eff07345837e3b","sha512":"d9d4c26e06ffc589ab6f9aa47839850d9c9476f72c23f7e139e3ec394f7dbc1efbb52d1f49a3be1de9dfd6bf8b24c93c414d8f6ae5822a4143df302a5c4b29af","ssdeep":"192:t0WGLjOqrc38On35VfGXRWQeaGBSNLcrRdj4CqIbEoEhoCfRERKGkEmSqfigty+E:+WEJrc38O35VfGBWEwdMChwoEhbZAKGp","tlshash":"ef42e6c52742643ee397a8d9987a00533034da587419856c7b2eaed73c2bdc6f0b1f72","size":12161,"data":"","first_seen":"2026-06-06T06:06:39.13944Z","last_seen":"2026-06-13T17:08:37.143765Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/7784.a3c3e3e38d46532f1ca9.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"44d9784f12bcc86aae68822c887d357a","sha1":"30d8228c88b0a28567699e27be713e4b20ca7d5e","sha256":"520468d89596d743cf1c4e0adac4f035c77cb4296ec291a9f61e0604cf254db7","sha512":"1b0e56ada6fb96aaa59c5e3ab07a4f1c017609ff669d2ec8254863e5bd9268a7567da9320f7c31889ef9e2bc5e9591c3674553e735995135b25b72f43dbb2eca","ssdeep":"384:eA1pRdH3K+SWInGDrQ+YW5LhoASLv5S8VwktQ0CSRU6f/k5MC6LEmYwt/9RXC6iR:eA1pRdX1DrQ2LhoASLFtQUU63k5MC6LK","tlshash":"ac92187a52ad05c252ec48e908cb199951b8e0233c871d7e5134fdd630f28d7e2ebd79","size":21093,"data":"","first_seen":"2025-04-19T14:14:53.465174Z","last_seen":"2026-06-13T17:08:37.12584Z","times_seen":418,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"70a0587176edcafe8fc9b2874af7e0af","sha1":"4f13b566876ece65aecddf38761b838555c570ec","sha256":"0021df2e71918d8877d6c2a3841354ec06650d0de25ea264f5e1c0fdc7415d81","sha512":"b511e546ed646334d8b2707aa34eccf37952c062d620fb858afcda16c6bcdde2b53e28164edd880425264437bc1915be667ae823f809749fca7dd6ebea02844b","ssdeep":"","tlshash":"91c08c8c265b4c7140e73b814b3f6100b015620360a19e313c1e7344cf20d279749804","size":178,"data":"","first_seen":"2025-06-23T23:40:13.056045Z","last_seen":"2026-06-13T17:08:37.269432Z","times_seen":264,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/main.82895b292870b429a101.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8b89546b9b091b3656c8cb1bad8b2720","sha1":"adecca981f12867e3d72b6bd3392368d454e396a","sha256":"69c3a7ec0989f9f71152a3e8d769e6d63c1721be47324394206642580ae84e54","sha512":"cfdeb27d763d2a8438c23137000b4a7ce69c4031205374d63b643edd284a4e48cad346105667299c4990def697cc438bc0e7b65c9164d75729debdf7c3576dca","ssdeep":"12288:ncNxcUGySPhYUmKAPzQ2QzN1HcBj8Buos3vhqqullR:nqxcUGmZijR","tlshash":"50a44bc57196b4e963e705e694bb0048f6385944380d8464f1acfcea3e368eea273f5d","size":468024,"data":"","first_seen":"2026-06-06T06:06:39.167159Z","last_seen":"2026-06-13T17:08:37.135681Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/5905.228b6ba981b06680c03c.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"ee5c449b87bcb6f35bcc547c1f3af7ff","sha1":"c55a4efd6f8867c67375f79a675ba6d2618c8bfd","sha256":"0883d0c3875eafed08b44d205e2e160ab6b79c60c9cd8fb7adf90f33199b3fec","sha512":"f13bfbd100490b22075f6dc5e9bb120e838223cb7724cc76593c302364c780f8b9bc744ed1889ced63ce5e412086af95410163f5f17f4b27c9d34880244a4599","ssdeep":"1536:ouG3B/McaUFrnb3wHkgJ4K9pKMwHI/CglGQnAZkY0tfXuYEUp:YlrbBgXGsWkyA","tlshash":"46e3b682f86424161392a1e654b60749b739f41ca8c540acfb7cfed52dbcd8e36ab734","size":155171,"data":"","first_seen":"2025-04-19T14:14:53.473469Z","last_seen":"2026-06-13T17:08:37.107655Z","times_seen":411,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/rlottie-wasm.f013598f1b2ba719f25e.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"4441938ee433d3657c20d454d352a336","sha1":"dd67121d7fda7c17be196f60c72dfa06bcb5bc6f","sha256":"659bf63501a8054ef0eedda3dec466dbc1e9a1b2c4d5d59a285b005215e16679","sha512":"f90da6f2003442e547813d62f44e22e688f637616dd7f7f33c81e73d05a3a3de39947c0a8f580002cc96a716caecc4bcd988644ad78b01ae2e9a9792c726604e","ssdeep":"768:O6T4cK2yQ6eO1P2WgcdxazvszXIgBB1ARna76Ae/FqsSwYxRrqhlr3NqR:m1Q6eO4+IUzXXsjvi1alrcR","tlshash":"6153e88535d9b0ab42837878946f310bf2ab6d52641c8410db1dd4dabcb4e49e63ffe8","size":65591,"data":"","first_seen":"2024-05-16T20:37:02Z","last_seen":"2026-06-13T19:02:15.11616Z","times_seen":15143,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-MNRFRBBP0B","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.72","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"7addf281e0ed63bd5e184eff23dfc472","sha1":"e2ad3e2d089a233affa4455cad0743f0b7a4a902","sha256":"b5e8687b473cfbd0058fd9d66dc4c544a982d9d68a76d37789c4c03c1ce5d722","sha512":"d25e18215145f2217e59b198a89679b1f12d910495c8f2360f3fec2d65e83b307e42661031745a875420fd2900cb08824d5910c9076570fad5d1f2b6ec69ccb4","ssdeep":"6144:10+QbRknTI8s5XtjLEEQT1TpqBEzVTI1Ce8G3h7Y1MD9f:njnTsEZXysu","tlshash":"e0a4e9ceb3d674225296f478903f018ba57b29e2b44cc899f189cce42e7469a4177f7c","size":483837,"data":"","first_seen":"2026-06-13T17:08:37.206176Z","last_seen":"2026-06-13T17:08:37.206176Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/7784.a3c3e3e38d46532f1ca9.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"44d9784f12bcc86aae68822c887d357a","sha1":"30d8228c88b0a28567699e27be713e4b20ca7d5e","sha256":"520468d89596d743cf1c4e0adac4f035c77cb4296ec291a9f61e0604cf254db7","sha512":"1b0e56ada6fb96aaa59c5e3ab07a4f1c017609ff669d2ec8254863e5bd9268a7567da9320f7c31889ef9e2bc5e9591c3674553e735995135b25b72f43dbb2eca","ssdeep":"384:eA1pRdH3K+SWInGDrQ+YW5LhoASLv5S8VwktQ0CSRU6f/k5MC6LEmYwt/9RXC6iR:eA1pRdX1DrQ2LhoASLFtQUU63k5MC6LK","tlshash":"ac92187a52ad05c252ec48e908cb199951b8e0233c871d7e5134fdd630f28d7e2ebd79","size":21093,"data":"","first_seen":"2025-04-19T14:14:53.465174Z","last_seen":"2026-06-13T17:08:37.12584Z","times_seen":418,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/7784.a3c3e3e38d46532f1ca9.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"44d9784f12bcc86aae68822c887d357a","sha1":"30d8228c88b0a28567699e27be713e4b20ca7d5e","sha256":"520468d89596d743cf1c4e0adac4f035c77cb4296ec291a9f61e0604cf254db7","sha512":"1b0e56ada6fb96aaa59c5e3ab07a4f1c017609ff669d2ec8254863e5bd9268a7567da9320f7c31889ef9e2bc5e9591c3674553e735995135b25b72f43dbb2eca","ssdeep":"384:eA1pRdH3K+SWInGDrQ+YW5LhoASLv5S8VwktQ0CSRU6f/k5MC6LEmYwt/9RXC6iR:eA1pRdX1DrQ2LhoASLFtQUU63k5MC6LK","tlshash":"ac92187a52ad05c252ec48e908cb199951b8e0233c871d7e5134fdd630f28d7e2ebd79","size":21093,"data":"","first_seen":"2025-04-19T14:14:53.465174Z","last_seen":"2026-06-13T17:08:37.12584Z","times_seen":418,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/5905.228b6ba981b06680c03c.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"ee5c449b87bcb6f35bcc547c1f3af7ff","sha1":"c55a4efd6f8867c67375f79a675ba6d2618c8bfd","sha256":"0883d0c3875eafed08b44d205e2e160ab6b79c60c9cd8fb7adf90f33199b3fec","sha512":"f13bfbd100490b22075f6dc5e9bb120e838223cb7724cc76593c302364c780f8b9bc744ed1889ced63ce5e412086af95410163f5f17f4b27c9d34880244a4599","ssdeep":"1536:ouG3B/McaUFrnb3wHkgJ4K9pKMwHI/CglGQnAZkY0tfXuYEUp:YlrbBgXGsWkyA","tlshash":"46e3b682f86424161392a1e654b60749b739f41ca8c540acfb7cfed52dbcd8e36ab734","size":155171,"data":"","first_seen":"2025-04-19T14:14:53.473469Z","last_seen":"2026-06-13T17:08:37.107655Z","times_seen":411,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/9357.ec931486e29d6c0283bc.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"a1f9eb9d48276edcec3895aeec32aa70","sha1":"8cc7dea26bca438fce1b7a345e128acc902777eb","sha256":"5386f4fb19b108ea60e74222778d586d923fae02624c065ad5ad5036248005ba","sha512":"2b12ea86b958cb8808589e5753c43aa9bd845a958dd97473499feb0a75db7e3dc64f0952ab8eac453868b43064a8063a8654f49c9d6deb4acbb011ef87c9908f","ssdeep":"","tlshash":"5551b8441a733c791de347a7b05b3b120c2513b27819f59326099eeb47b624f5b03f4a","size":2632,"data":"","first_seen":"2026-06-06T06:06:39.143703Z","last_seen":"2026-06-13T17:08:37.104091Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/9357.ec931486e29d6c0283bc.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"a1f9eb9d48276edcec3895aeec32aa70","sha1":"8cc7dea26bca438fce1b7a345e128acc902777eb","sha256":"5386f4fb19b108ea60e74222778d586d923fae02624c065ad5ad5036248005ba","sha512":"2b12ea86b958cb8808589e5753c43aa9bd845a958dd97473499feb0a75db7e3dc64f0952ab8eac453868b43064a8063a8654f49c9d6deb4acbb011ef87c9908f","ssdeep":"","tlshash":"5551b8441a733c791de347a7b05b3b120c2513b27819f59326099eeb47b624f5b03f4a","size":2632,"data":"","first_seen":"2026-06-06T06:06:39.143703Z","last_seen":"2026-06-13T17:08:37.104091Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/redirect.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"17773b57b87a678c98e26a7cac72df6c","sha1":"7422857aa75ee81cabcec2eed6c4a6168f363ee1","sha256":"375141f2d3f04c733276dbff5d9208ff36b2db6a64abcee723179ac24797974f","sha512":"28d9e1c2af08154e653e2291db46f4110edbf9f5591192f8d695c8852f9c3c755d69dfb5a032a45f51e0a3fc9417f16c20d0772b1225ca9b85e5531e12fa8bfc","ssdeep":"","tlshash":"e8e07dda0279030417e013f36d82b4709137c2fb604c5d028d984321a1b9b4f5b7b84f","size":325,"data":"","first_seen":"2023-07-27T09:32:34Z","last_seen":"2026-06-13T19:25:53.138034Z","times_seen":11488,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/compatTest.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a7bf9f96ab9bc1cc44d07be00be1d3a4","sha1":"a2b9045d69c63d57b371055dd70b4ad8ec71580e","sha256":"1ab74230c24da33fedb68e1b1536c670c141fb0e8c0f638f0a1a69bc78878f09","sha512":"d5ef74355959610682c667bbb0e004bf368d661b7aa8cbd3da01be6c0de9f36a1b1b4691c04d082fa7ea234c27da6c068be83ca965392f2928bb2fd52059bf32","ssdeep":"","tlshash":"c05125190db5726150796167ff1bb2433a294173050cfb64a620cf393eb285bc29fde9","size":2550,"data":"","first_seen":"2025-04-12T16:14:40.336405Z","last_seen":"2026-06-13T17:08:37.228607Z","times_seen":466,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/7784.a3c3e3e38d46532f1ca9.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"44d9784f12bcc86aae68822c887d357a","sha1":"30d8228c88b0a28567699e27be713e4b20ca7d5e","sha256":"520468d89596d743cf1c4e0adac4f035c77cb4296ec291a9f61e0604cf254db7","sha512":"1b0e56ada6fb96aaa59c5e3ab07a4f1c017609ff669d2ec8254863e5bd9268a7567da9320f7c31889ef9e2bc5e9591c3674553e735995135b25b72f43dbb2eca","ssdeep":"384:eA1pRdH3K+SWInGDrQ+YW5LhoASLv5S8VwktQ0CSRU6f/k5MC6LEmYwt/9RXC6iR:eA1pRdX1DrQ2LhoASLFtQUU63k5MC6LK","tlshash":"ac92187a52ad05c252ec48e908cb199951b8e0233c871d7e5134fdd630f28d7e2ebd79","size":21093,"data":"","first_seen":"2025-04-19T14:14:53.465174Z","last_seen":"2026-06-13T17:08:37.12584Z","times_seen":418,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":[{"level":"error","text":"map[type:undefined]","filename":"https://web.tslegila.com/ZH/main.82895b292870b429a101.js","line_number":0,"column_number":0},{"level":"log","text":"Task","filename":"https://web.tslegila.com/ZH/main.82895b292870b429a101.js","line_number":0,"column_number":0},{"level":"log","text":"Task","filename":"https://web.tslegila.com/ZH/main.82895b292870b429a101.js","line_number":0,"column_number":0},{"level":"log","text":"Task","filename":"https://web.tslegila.com/ZH/main.82895b292870b429a101.js","line_number":0,"column_number":0},{"level":"log","text":"Task","filename":"https://web.tslegila.com/ZH/main.82895b292870b429a101.js","line_number":0,"column_number":0},{"level":"log","text":"Task","filename":"https://web.tslegila.com/ZH/main.82895b292870b429a101.js","line_number":0,"column_number":0},{"level":"log","text":"Task","filename":"https://web.tslegila.com/ZH/main.82895b292870b429a101.js","line_number":0,"column_number":0},{"level":"log","text":"Task","filename":"https://web.tslegila.com/ZH/main.82895b292870b429a101.js","line_number":0,"column_number":0},{"level":"error","text":"Error while calling actor 'source's method 'source'Could not load the source for https://web.tslegila.com/ZH/rlottie-wasm.wasm.\nError: WebAssembly binary source is not available\nStack: _getSourceText@resource://devtools/server/actors/source.js:241:20\nsource@resource://devtools/server/actors/source.js:541:51\nhandler@resource://devtools/shared/protocol/Actor.js:228:37\nonPacket@resource://devtools/server/devtools-server-connection.js:371:58\n_onMessage@resource://devtools/shared/transport/worker-transport.js:104:18\nLine: 241, column: 20","filename":"resource://devtools/shared/protocol/Actor.js","line_number":0,"column_number":0},{"level":"error","text":"Could not load the source for https://web.tslegila.com/ZH/rlottie-wasm.wasm.\nError: WebAssembly binary source is not available\nStack: _getSourceText@resource://devtools/server/actors/source.js:241:20\nsource@resource://devtools/server/actors/source.js:541:51\nhandler@resource://devtools/shared/protocol/Actor.js:228:37\nonPacket@resource://devtools/server/devtools-server-connection.js:371:58\n_onMessage@resource://devtools/shared/transport/worker-transport.js:104:18\nLine: 241, column: 20","filename":"resource://devtools/shared/protocol/Actor.js","line_number":0,"column_number":0},{"level":"log","text":"Task","filename":"https://web.tslegila.com/ZH/main.82895b292870b429a101.js","line_number":0,"column_number":0},{"level":"error","text":"Error while calling actor 'source's method 'source'Could not load the source for https://web.tslegila.com/ZH/rlottie-wasm.wasm.\nError: WebAssembly binary source is not available\nStack: _getSourceText@resource://devtools/server/actors/source.js:241:20\nsource@resource://devtools/server/actors/source.js:541:51\nhandler@resource://devtools/shared/protocol/Actor.js:228:37\nonPacket@resource://devtools/server/devtools-server-connection.js:371:58\n_onMessage@resource://devtools/shared/transport/worker-transport.js:104:18\nLine: 241, column: 20","filename":"resource://devtools/shared/protocol/Actor.js","line_number":0,"column_number":0},{"level":"error","text":"Could not load the source for https://web.tslegila.com/ZH/rlottie-wasm.wasm.\nError: WebAssembly binary source is not available\nStack: _getSourceText@resource://devtools/server/actors/source.js:241:20\nsource@resource://devtools/server/actors/source.js:541:51\nhandler@resource://devtools/shared/protocol/Actor.js:228:37\nonPacket@resource://devtools/server/devtools-server-connection.js:371:58\n_onMessage@resource://devtools/shared/transport/worker-transport.js:104:18\nLine: 241, column: 20","filename":"resource://devtools/shared/protocol/Actor.js","line_number":0,"column_number":0},{"level":"error","text":"Error while calling actor 'source's method 'source'Could not load the source for https://web.tslegila.com/ZH/rlottie-wasm.wasm.\nError: WebAssembly binary source is not available\nStack: _getSourceText@resource://devtools/server/actors/source.js:241:20\nsource@resource://devtools/server/actors/source.js:541:51\nhandler@resource://devtools/shared/protocol/Actor.js:228:37\nonPacket@resource://devtools/server/devtools-server-connection.js:371:58\n_onMessage@resource://devtools/shared/transport/worker-transport.js:104:18\nLine: 241, column: 20","filename":"resource://devtools/shared/protocol/Actor.js","line_number":0,"column_number":0},{"level":"error","text":"Could not load the source for https://web.tslegila.com/ZH/rlottie-wasm.wasm.\nError: WebAssembly binary source is not available\nStack: _getSourceText@resource://devtools/server/actors/source.js:241:20\nsource@resource://devtools/server/actors/source.js:541:51\nhandler@resource://devtools/shared/protocol/Actor.js:228:37\nonPacket@resource://devtools/server/devtools-server-connection.js:371:58\n_onMessage@resource://devtools/shared/transport/worker-transport.js:104:18\nLine: 241, column: 20","filename":"resource://devtools/shared/protocol/Actor.js","line_number":0,"column_number":0},{"level":"error","text":"Error while calling actor 'source's method 'source'Could not load the source for https://web.tslegila.com/ZH/rlottie-wasm.wasm.\nError: WebAssembly binary source is not available\nStack: _getSourceText@resource://devtools/server/actors/source.js:241:20\nsource@resource://devtools/server/actors/source.js:541:51\nhandler@resource://devtools/shared/protocol/Actor.js:228:37\nonPacket@resource://devtools/server/devtools-server-connection.js:371:58\n_onMessage@resource://devtools/shared/transport/worker-transport.js:104:18\nLine: 241, column: 20","filename":"resource://devtools/shared/protocol/Actor.js","line_number":0,"column_number":0},{"level":"error","text":"Could not load the source for https://web.tslegila.com/ZH/rlottie-wasm.wasm.\nError: WebAssembly binary source is not available\nStack: _getSourceText@resource://devtools/server/actors/source.js:241:20\nsource@resource://devtools/server/actors/source.js:541:51\nhandler@resource://devtools/shared/protocol/Actor.js:228:37\nonPacket@resource://devtools/server/devtools-server-connection.js:371:58\n_onMessage@resource://devtools/shared/transport/worker-transport.js:104:18\nLine: 241, column: 20","filename":"resource://devtools/shared/protocol/Actor.js","line_number":0,"column_number":0},{"level":"log","text":"Task","filename":"https://web.tslegila.com/ZH/main.82895b292870b429a101.js","line_number":0,"column_number":0},{"level":"log","text":"Task","filename":"https://web.tslegila.com/ZH/main.82895b292870b429a101.js","line_number":0,"column_number":0},{"level":"log","text":"Task","filename":"https://web.tslegila.com/ZH/main.82895b292870b429a101.js","line_number":0,"column_number":0},{"level":"log","text":"Task","filename":"https://web.tslegila.com/ZH/main.82895b292870b429a101.js","line_number":0,"column_number":0},{"level":"log","text":"Task","filename":"https://web.tslegila.com/ZH/main.82895b292870b429a101.js","line_number":0,"column_number":0},{"level":"log","text":"Task","filename":"https://web.tslegila.com/ZH/main.82895b292870b429a101.js","line_number":0,"column_number":0},{"level":"log","text":"Task","filename":"https://web.tslegila.com/ZH/main.82895b292870b429a101.js","line_number":0,"column_number":0},{"level":"log","text":"Task","filename":"https://web.tslegila.com/ZH/main.82895b292870b429a101.js","line_number":0,"column_number":0},{"level":"log","text":"Task","filename":"https://web.tslegila.com/ZH/main.82895b292870b429a101.js","line_number":0,"column_number":0}]},"http":[{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f8-1f1ed.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.619Z","timestamp":1781370495619,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f8-1f1ed.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-15db\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cc48Qs8hTVrnMlQSFmCgj%2BCPAG8K8j8J%2FxkTv8YwQ5TI%2BkAf9ab2Kz8h4Ok8E%2FP3%2BqiEE7U%2BLhXqPE%2Fc1XYUBOaVrUlXrw2uDBiAjtKQuLsl0c2VUgav4fDh7sildwpKbEix\"}]}\r\ncontent-length: 5595\r\ncf-ray: a0b2b2407eb38deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5595,"size_decoded":6384,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"fb741ef7b0c9f43b927da0ccca211f43","sha1":"9f2b0de7ed24756e41da56cae134ee8879030159","sha256":"5f1aee2b5b8552508ffc206fb6d862960f5948fb199d1a42f2308e6cf1543d37","sha512":"e52de45ea161e74097a15e1ce8b3e82426e27294102472632d4723ece6a1779c9a623ad99fa062a624f43bd0698ed6b952b53029054ad4095e2907606e8f1537","ssdeep":"96:c2MPoYFTAgFQB/vZOZ3+vQmKREM4KJ4r5vFH64UnzQG5BHIZjk:hMlAsQB/voZ3WQm6oKJO6rnj5Bodk","tlshash":"f3b18f89920d4b1fe2086984ed81ec5425e6df688a0953afe49ff23f89fb3c57541285","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.088152Z","times_seen":50,"resource_available":false,"data":null}},"time_used":667,"timings":{"blocked":382,"dns":0,"connect":0,"send":0,"wait":285,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e8-1f1f2.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.420Z","timestamp":1781370495420,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e8-1f1f2.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-f16\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JDigQR6KfeTiKRFLvYK6y89XZJxzVdaDm0h2mjxbKmj4LvIjKyIUeUI0Szby2OdQW7tSr1rzyVPtWrmY0lDIMWw0dQKLlo5aKe1%2Bt1EgowIR3MISvO5xa2ONBGJW99b8GUp9\"}]}\r\ncontent-length: 3862\r\ncf-ray: a0b2b23c6d3c8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3862,"size_decoded":4638,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"02de05f59493ad53ee7171d7a3dfe640","sha1":"1c2870aa1b346025dd4109f353fc4965267ab115","sha256":"18a78dbb2765faa9edf626e8526e4d5a14891227d72d32bbc80fa575e99c6ef0","sha512":"23b6eebf161a08d9086498daf7a71c90c978707893e434234e509aa2d1f9dc818c2ca536660b8edb6eefb24ede0c97c6a6ac5d83943713c8a079062026851c21","ssdeep":"","tlshash":"56817dd5d3a7d20ef309eb9c045152b098c08e5fd6a309deb5c17db637b464a12e98b2","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.088809Z","times_seen":51,"resource_available":false,"data":null}},"time_used":619,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":619,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ec-1f1f5.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.518Z","timestamp":1781370495518,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ec-1f1f5.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-16ad\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8BV7f5xAckNkKHGEcJXCF6MLElbJWXBj2jBt3pUFOwIgrDaGHqcCw4aUSUDzobLtfz5VYYW7xI3dRR6Ow9xnrs5iUEfnrRd%2F6yTeiscikAqLHoJbniKmz4c1LB4qEzLGLurT\"}]}\r\ncontent-length: 5805\r\ncf-ray: a0b2b23cfd808deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5805,"size_decoded":6582,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"ae8a588354eeb277073181535dea31a3","sha1":"0da755bc20300af79823ca6026b0a196669d90d3","sha256":"df80a0edb90909597a88e0d652a1d5c7c744defad466e6e0663d42be6e7d765e","sha512":"0a6ac23df686e386d374642972e4e874c05a26786fa2d9436ae35fbb3cf56f5cfe264fe9f295e4266d28ff8e06ed6cdfd8d2270c334eb5d7d545e0cf770c4688","ssdeep":"96:mEf97v7Hq7FyLeoV9yY4gFi9YB4s7Y/IY9mJlZfDyCmOdOaeFgPdbzipgh:mEf97m4LJV4Y4EtRkmJl9DJm0OaEgVbX","tlshash":"a4c18d10b65da08beb8869bf46f4440a91b443b3642423d17c837ded481a73b3a73a39","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.089321Z","times_seen":50,"resource_available":false,"data":null}},"time_used":580,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":580,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ee-1f1f7.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.537Z","timestamp":1781370495537,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ee-1f1f7.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1481\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AlCOlYdLv739fDNlq7FqJ6ywrbKzCPQYS6Fm5K8VN5DnDuP1X1sATyzjSjnY1Aq%2FmU5rWLhy3Pn44FrIH4e1BEvVzbxV1LnPlbbywobHGMeXlldkJSJ3VuQk4Mlx7C0ohR7s\"}]}\r\ncontent-length: 5249\r\ncf-ray: a0b2b23d1d938deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5249,"size_decoded":6026,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"bc672c5e26c05de0d453cb60bc7efb0f","sha1":"ce0e37d6219122d9afa315b353450b2fdada1b0a","sha256":"825bcbb83da5efccdc75b15f043bc2ae104db3727ce399111678d560a56bedb2","sha512":"59a7483709c5369b78937a61aa203084c5a95609e32143af643631d9cbb785917d3656bc00439818c0cf91cdd514fd58b18a971e3039a1dae86105d3e3d619de","ssdeep":"96:IsE6t1/uBoy+gChS1XJviQ/1LPRvsQfn7sgm+JPfQicDRqB+DoDbe:IsEA/1rgf1XliY1pPP7lm+JGqBrDbe","tlshash":"03b15c77c6b8aca5dee31a891846031a4e973c646b2c0324c751b4e39df1dd6c986b23","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.089905Z","times_seen":50,"resource_available":false,"data":null}},"time_used":594,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":594,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f3-1f1f5.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.588Z","timestamp":1781370495588,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f3-1f1f5.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-f07\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mTfMYAh8m9LSLDEACqRFvgLjHooD1cLWwumTj2biY3NeakEZ9JXTDg2OQNw1FzU5qlhM4moirOnKPgb4wXLtDB6PcRB%2BFogPQ35lC9iR9mhqoN2TJojKOZb1oL128W5BN%2FON\"}]}\r\ncontent-length: 3847\r\ncf-ray: a0b2b2401e658deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3847,"size_decoded":4625,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"ba7c2df18ab49c05647205b4b19f75d8","sha1":"49f93d2c69ded7d214f546f2f521dfdf83f9319e","sha256":"1f5615547c2e2d81f51f917194b0d7d2a7916691e1a1bdebea8fe71a82db2b7c","sha512":"4bab07ff6af66727f3f3324a1c258b56a32fc7912e3fc25a4baf1b55047fd9242641960c753a1b13a3d952e5e2f06441dd8f5dfa265284105f9c246af6dc244e","ssdeep":"","tlshash":"ab818d85367fb4e05d14fcf7652c1a35e4e6923ca4b9f7899d6e04ecaaa338e4194060","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.090436Z","times_seen":50,"resource_available":false,"data":null}},"time_used":914,"timings":{"blocked":322,"dns":0,"connect":0,"send":0,"wait":592,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f3-1f1ff.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.592Z","timestamp":1781370495592,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f3-1f1ff.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1563\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OzgwajjNHiNTM7TO4uTBbKQ6dBfmZqVEw42naxA8cfKG%2B9UNvxd8DSfwpkVWz8G2aDgMf%2BIQOpHlK4oaoqBq0CuAYYou9aRcNTXQDUYMOgK30WzNXCI7p2nfAJEZmt%2BJ4PwW\"}]}\r\ncontent-length: 5475\r\ncf-ray: a0b2b2401e6c8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5475,"size_decoded":6256,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"fe77334af3271214dd172a8c787070aa","sha1":"38a25f727e5ec802675221c667e9c9848b690372","sha256":"6648c71232f9969a969a238f15bf4ebbe22a9a46ed33c61122dd9079469e85f0","sha512":"11a91e572cb1f3deb550b46c9e48064a12230aa8a91405f4df36d18aea7ba7fe1266c8b1a543e5bb9cc96d2ad756fcaf220e5e8df8aa6f97dceddcbb2f6615ad","ssdeep":"96:mW385UxLhO0KyIsYB2A8YImHMA4PP/EwO3P68QcRXSGRJu4+l5UBXdYiEFa:P3829fKyIsYB2A8UHMAMPc5h1gvrUNxF","tlshash":"b9b18e263c902e0bf626157b0e61bb0e5e143a740d1b7f202f4a734b399ad19b0d6dac","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.090985Z","times_seen":50,"resource_available":false,"data":null}},"time_used":919,"timings":{"blocked":325,"dns":0,"connect":0,"send":0,"wait":594,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/icon-192x192.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:09.321Z","timestamp":1781370489321,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/icon-192x192.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:09 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=6,i=?0\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-bf3\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=665yWr0guiaKId81C6P%2BUOvjQUxwq%2BEAsKm7zk6ZXm70ABQgVVrTnnVzs5f6oGq07%2FgBGGJBRwjPRx4dp81IxTziUJQGKPg7WtR6eqZy1bmgOKFbJ2EAH8IH188BcD%2F7uetu\"}]}\r\ncontent-length: 3059\r\ncf-ray: a0b2b2164c748deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3059,"size_decoded":3844,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit colormap, non-interlaced","md5":"1a1650d2c76bfc1ac484646c19e495b9","sha1":"fe58d66042ce9241226f5da9370230285ff604fc","sha256":"6e587a62c9d7a97f25265ab5eb29d101ad2e36810042a4116d2dd29da96b0bf8","sha512":"79c5c9278959bc94f66434779bebc1b46c055655f0bc58aa375f179c227e7ac0e52dea196764719d42aadcf98e4fd3b5a4488f2db977edde430aa3df733c03bc","ssdeep":"","tlshash":"bd514cd3253318e8e2dbfd7ace62041f656691ce5638ec120568de720c8985dc070caa","first_seen":"2023-05-16T22:57:55Z","last_seen":"2026-06-13T19:02:15.128691Z","times_seen":16404,"resource_available":false,"data":null}},"time_used":295,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":295,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ee-1f1e9.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.536Z","timestamp":1781370495536,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ee-1f1e9.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-f06\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FI9rlSbncYNqmvok80F8xeJQg7arwAKPSi61KLYe91O0dsWkUk477OWllRgS9pjHYjgkH054HfCsRQJnGTZuIwJEWa5UwD2HWS8Aih44tNZ59iIRKM4Uw%2BDhpNqgPrx65%2Fvv\"}]}\r\ncontent-length: 3846\r\ncf-ray: a0b2b23d1d928deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3846,"size_decoded":4624,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"d5c9793bf7d16d9faf75c47da592b057","sha1":"dcd1686f15b3eaadb4ca12b63a03b58cde28ac2f","sha256":"121c033748179d8819919e14daeae8bd1a0536a9a3b27661556f928b08ffc14a","sha512":"635d8fd815701bb40e27f2528ebc464b0bf65372dcd101f38c50956afcd20a2a4797788a2390e34253d9428445f1adc09c9c3a52d2a266cd1578ca6561cc1477","ssdeep":"","tlshash":"23816d33a4f518691fa0fb3bc39e367061b179b128a0c2c9405e4979e1b8b34db73905","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.092091Z","times_seen":56,"resource_available":false,"data":null}},"time_used":600,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":600,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f1-1f1f9.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.562Z","timestamp":1781370495562,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f1-1f1f9.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-ee6\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=q9hU4f%2B9Y862DaVChv60IXFuvuGYBJdLuD%2B0EpirwzrsZArU%2BKXRhzpZRPbOW8WuV7G0G5CkCnvTSNoZaT6xt2lCF1cpHW7aoKF6eIJlAA%2BIcHx9MIblxkR%2B0bO9fK%2BTd%2Fl2\"}]}\r\ncontent-length: 3814\r\ncf-ray: a0b2b23f5e2a8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3814,"size_decoded":4602,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"d875a434b32a68b5960f6f56033c8c5e","sha1":"eecfec9532265d072ccd025f961c4d0a1f64d799","sha256":"6ec05f48dea5e9ece9eda983869f24a507d1c998cb49a623b5e3fbc192743141","sha512":"0593536a66871c20af3d9b82cb75e3c586938ea44d311849d166651fc36e20756baa59e76a34db2c7f3d93e6839dd5cac38f1ed40014e725b7c523d88673837e","ssdeep":"","tlshash":"e8716dd56f12473508ec30c553f6f26aa52a1966aeebddcb0d4b7cc4a6369c1244cca2","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.092773Z","times_seen":50,"resource_available":false,"data":null}},"time_used":789,"timings":{"blocked":204,"dns":0,"connect":0,"send":0,"wait":585,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f5-1f1fc.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.604Z","timestamp":1781370495604,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f5-1f1fc.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-128d\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rVvIBXJinMLJMbPZHM%2BvDx2GS%2FMGJjQF71VjTL20uEQ%2BIuTCh6N1sfJcXexGd3E4SydoHSqKPv%2FVk5xhfeZsPjwjzEXcCatueg1JiCNEaPdFf9%2Fn5aB%2BUigh42mhtu5%2F6FuV\"}]}\r\ncontent-length: 4749\r\ncf-ray: a0b2b2404e8f8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4749,"size_decoded":5538,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"a2e719dca76185e2226b03b8e2a78fbb","sha1":"cf18af91a4d3c7cc30c6f911a359f0335c56885e","sha256":"f3c0e6ec04c02777f242cd279e87fd7604a97aba26380c0d7b7eb488f316df51","sha512":"13b287da531226aa6da6580edd1b84063a40314585bf27efbb164da828f49fd1f52d2c7865d74191a0b2aa35119fdbb773e5a670b6df5bbeb6e820aca04cf726","ssdeep":"96:2NX+jPqIOhm8FUY9FVxvJ1eUNSNs8avIRr2NDW2EbGSuy+XovJtPty5r07F:UIaUY9FXR1pNL8ay2NDW2CGS7+X6JtPL","tlshash":"a3a17da9620169337c6136bb1b2072506fb23c81e1637dcb8285fe072874a4e6a05fda","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.093363Z","times_seen":50,"resource_available":false,"data":null}},"time_used":654,"timings":{"blocked":352,"dns":0,"connect":0,"send":0,"wait":302,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1fa-1f1ec.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.665Z","timestamp":1781370495665,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1fa-1f1ec.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1508\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SuUIBSO2c%2BXqxiyu42NNtIMtUJErtmsZRi43a3XlkksvRhme%2B9thqRJf6apo4u0hrnQSlb3IVJ9MTN2CoUJvHgC1EqM0f7HhoY6Y2BZIaOiyOKubZVnQljkSitVDvxh4fEtX\"}]}\r\ncontent-length: 5384\r\ncf-ray: a0b2b241cf338deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5384,"size_decoded":6163,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"72d044b439e2487db234cc9a0505d59f","sha1":"eb061a8c99b32df938dc34f40df4e5e93a4b1877","sha256":"08fe02efcfaf446e7f8b87178d2d6ccc6b5f0bd30d31e2b5880a1a060ab21272","sha512":"afa06dd74b312f28604132e5bd23c365a7421ba2eb9c411cff4bc5aa74dade52104785d106a7565d965f91330c3ff10f441d3aa2791a15fd92bde5045ac6823f","ssdeep":"96:oTrzt0anh7KtVX00Kbzzm2Y3ucuQENMdrf2OJeT8BeT9rMWe+ZZuVhYCEc04:oTPv+DKXy13uc2Md72OUmeTBebPN04","tlshash":"c7b170525f500a15eea828a10bc71a01da1aa033590bf32bf1771e3d7c5b7caf9dd454","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.094029Z","times_seen":49,"resource_available":false,"data":null}},"time_used":875,"timings":{"blocked":586,"dns":0,"connect":0,"send":0,"wait":289,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/chat-bg-br.f34cc96fbfb048812820.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:06.562Z","timestamp":1781370486562,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/chat-bg-br.f34cc96fbfb048812820.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/main.646e16c287a10cb1a6cc.css\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:07 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\netag: \"68b1b066-780\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SXlatWvmxo7r7twHxQNC255b0UglkPzOzSN89zbvYIr8cFioC%2FJtyOG8SlncjZFPn4mO%2BiMVEzLTjZnQ8CF6MbAiwh66DhPEbwDHPSOLnEBg7YnkAp%2BvrhKRjOmirWr3BYJA\"}]}\r\ncontent-length: 1920\r\ncf-ray: a0b2b20508cd8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1920,"size_decoded":2700,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGB, non-interlaced","md5":"ff2989744d4813c906047582226abd28","sha1":"41b973276f7a99af05115b89b401aceb02f573c8","sha256":"3151f7930d821bccf4a76cbbe4a3533e2b56bdff696f260c864ab639ac7526ea","sha512":"add07f186c255e361094878a71eb4257c4e60a6e4908be168fbfac30f768b18e0e292f59e80d75d78eb79fb62c820c03c512f07bda6d8d1c323506e5d173bda2","ssdeep":"","tlshash":"f0413b8a645965a9ee6a1c2733c9314727d0c2911b46399284eb5d71ccce602d2d330e","first_seen":"2023-05-16T22:57:54Z","last_seen":"2026-06-13T19:25:53.145956Z","times_seen":866,"resource_available":false,"data":null}},"time_used":579,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":579,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ed-1f1f3.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.530Z","timestamp":1781370495530,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ed-1f1f3.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-126d\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bO7IW9xJAn%2BSw8yWZrOQXnNJfdljo%2B5JkxaxknzwlNoYysU9Zay4dYjlFg3reo7rQ%2F6BLT4Eujl0EFsA%2FMuTaVRNahEHdjvSPCe%2BOKQAMzuVDJv7dyTpd28ThoGUZ3kIyeep\"}]}\r\ncontent-length: 4717\r\ncf-ray: a0b2b23d1d8a8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4717,"size_decoded":5502,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"33b5316594a76a1c2b0feee32f0b5c2d","sha1":"95b9c39ba0725436e1fb9b6c4e7d0017f152d64c","sha256":"a92bdfdf3efec85aa29458bc6f4fe599ee59071dc685102b4773ba3746039118","sha512":"68fdeae4c9e44ebcd61fcc28207ccd75bef0b55b05ba1f9afe9baa0b39767685613d5093f570d7a6e4b034e18b27b3f97977bd5f3046d87ee81d77ab0271e0d0","ssdeep":"96:hxncKr0sz4zdxlqC7igwDYVTdZELTUuzERGaB2Cb0FtIVRDFsJhKJW6:hlbz4zdxltigtT3ELT7oRGSwIJIh4T","tlshash":"52a17d65b56ea9f84133e8178c00ba0251c25d2f87374d6f509f32a2e533e5ed271cb5","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.095077Z","times_seen":50,"resource_available":false,"data":null}},"time_used":583,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":583,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1e8.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.578Z","timestamp":1781370495578,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1e8.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-f35\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jYF4M4ubM455rmIac3goInPhLdeBNdT0OGP7Uj2hRO8xHYS2JvUJ57g8OwWDiAO93nzbj7HTb1Uk%2FYr0AcaS0KA2ZXIzGNvyHL3gDDjSPDE4eZsUK%2FQndzGBj73VpGspbxqJ\"}]}\r\ncontent-length: 3893\r\ncf-ray: a0b2b23fee508deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3893,"size_decoded":4671,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"5395a259d040862369a5edab491f21f8","sha1":"ba735e3a28deb0f781a1878b7233fcadc82fb74c","sha256":"6c2cdf71aba7113d7e2794b4641290b0d572409fbf984a4fcfda12b943ba18ce","sha512":"fafbe87dba9ca73caaf46354e83bd506e630bb366690c2150b4527ae40f2162ecb0162f12f4e9acd471434bdeaa2af473ff6b3a5dd357d7477350981a8b3cf6e","ssdeep":"","tlshash":"a8815b72d4d8b6d20a060d405d4e19b01da0df826e441764c94db08e1abf2e9cf3dac5","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.096095Z","times_seen":51,"resource_available":false,"data":null}},"time_used":579,"timings":{"blocked":292,"dns":0,"connect":0,"send":0,"wait":287,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f3-1f1fa.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.596Z","timestamp":1781370495596,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f3-1f1fa.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-16b8\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NxwDRR5KCiWcZ%2FPMAIdnGAPHTe189TAbGfx5qwvFSxJw0a2nM9JKCPoOwYIrA%2F4LBQLUtSdRAqqTKS7VlXVHjSXIOfvULrMPsqrUIwJyysARaHCEOrYENhtHnrU6SBrt410f\"}]}\r\ncontent-length: 5816\r\ncf-ray: a0b2b2403e828deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5816,"size_decoded":6595,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"d19c6d41c584e34ec067cbe2e97f7364","sha1":"392df08b3b630f4a7c2d4aa160e678253dda69bf","sha256":"b26893978bdbc02a0ec75626e1ae8208ad03f5d8572eacd0196cfc35bc59caa9","sha512":"dc7c3056611fceacc860541a636f8064830aca1abb70af8f2258e47693f84912ad3d7cd865b3cd035f1443ca54b3c4d22efb25a98f1d778e4eaae971aea74ae2","ssdeep":"96:7yHjgKRFLc9uAdcZmvy59qbzbwIeoRfsBz1cKTByiQMn3Cmn2VMI/uFYriwEzroQ:7yHjFFL9AdcZmvyDgzGXDlhtBcB/uaWp","tlshash":"52c1af85cdaaf8cdcd43fe7a1d6e0fd6f89340a9dd3d86445b9054e0823801e9f18318","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.096673Z","times_seen":51,"resource_available":false,"data":null}},"time_used":929,"timings":{"blocked":341,"dns":0,"connect":0,"send":0,"wait":588,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f9-1f1f2.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.662Z","timestamp":1781370495662,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f9-1f1f2.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e6-1f1f9.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.375Z","timestamp":1781370495375,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e6-1f1f9.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1021\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tCk%2BXLchLhJhcvWLdZg710wob4UjCMK4erhGeSE7Ar1XUactzjpdvQNh9Y4ODEAuZBoxX%2Bm%2BISyAA%2F6J4Dtp%2BU9xhrS94q90mcjrRu66aPEVKaVOgqCbrU6Gc5O7iuWz7Bvc\"}]}\r\ncontent-length: 4129\r\ncf-ray: a0b2b23c1d208deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4129,"size_decoded":4914,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"a17642de80ae709f8ef58a288fce997a","sha1":"3f12e92e714c3733e5bec05ba2b5c940ddd3eedc","sha256":"2396ebb41c39c9bad47d9d64fd57d991e48310ba8644bdd1fcd3827c9382337f","sha512":"7edf93b60169592be4491f217cd2d9dd9a2a491843a8eadb25feebfe52a0b065b94687f51007498381549c12330838a7c55207adac6e8cc2ef6da4682f12e38c","ssdeep":"96:IbL0aeMSF3x/olHO9aOH2BziowrzGhTutcj3zt1H/v:lxwYWBzi9nGlcA51fv","tlshash":"8f815d7c7b8e1f61d6f15a2dd30da8680c934d8648938c4e7022f4851f768b2428ab74","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.098078Z","times_seen":51,"resource_available":false,"data":null}},"time_used":304,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":304,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e7-1f1fe.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.388Z","timestamp":1781370495388,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e7-1f1fe.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-125b\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=81PqgdSjSvWphdDUDhA9exIb6inK5xIwPp1uaQc3%2BlPIcY600nH26Htl5zJCCrI8sq5ToGBY43FtuP4%2FMYS6qSQcGHq3fV9%2B18PWEG0F6E9ZgOyNtYilmGSIP6W9nqyRHMRp\"}]}\r\ncontent-length: 4699\r\ncf-ray: a0b2b23c2d298deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4699,"size_decoded":5480,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"dec5cab4b9e1c8dfecfa129d87594d8d","sha1":"359d543b9ddae4ff5b46aa4cf6cc062d30058efc","sha256":"eaba36ae62df681f3f7b92cf61ea08f60085a0f3299a9410b54247dbc47c867c","sha512":"e3261485f8e172e049c036c22edd466fab94c3ba3f2565907ed9db0024998839b82c6d992048182ab4bbc0858b5270ffbeb08e34acb6035c95371de2b16aab6c","ssdeep":"96:5iu4QgqCxhXhSJcAf/W8K2BDoJvxI4VVMHg37:wugqCxphSrDK0oPI4VVKg37","tlshash":"90a17d0a786985a745aa4df33a316609de10d0fbe47f300b9098f047895cbc83e437d6","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.09857Z","times_seen":51,"resource_available":false,"data":null}},"time_used":568,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":568,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f8-1f1f9.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.625Z","timestamp":1781370495625,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f8-1f1f9.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f8-1f1ea.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.645Z","timestamp":1781370495645,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f8-1f1ea.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/6708.29afc871d92b717571ef.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:06.600Z","timestamp":1781370486600,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/6708.29afc871d92b717571ef.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:07 GMT\r\ncontent-type: application/javascript\r\netag: W/\"68b1b066-288c\"\r\npriority: u=3,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=omzGF4zVny7BTZSjzjgtJJtH0Fpsqm39koRWzc4hU%2BN0EZwJXmhXWlUM75eaomDSnCMNO4UkKUVR3QsV6yREY6y%2Fxg11xnbl5mDOMbYO9inXGLpyCk%2Fy31FtnnakVEHE5fI7\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b20548e38deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10380,"size_decoded":4616,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (10326)","md5":"8d40044e2c6c3a99922966d85e939a7f","sha1":"34c98fe3dcbf8bfd1c19f3ea7b9e76f6fb51b1a8","sha256":"375ca7a41e25af222b66164bbe4997edc8487745a616312ec647191850ff4955","sha512":"b4903187558eb6efb092a3ca18b48a07a64d588ed5b6b80e7b6a9ee97f0b45ea097e694834156954e76107e6c197415cd08edc7bc21cab26ab5448759d5dffde","ssdeep":"192:+BXzmONT16dWQ5v18/NXiseShD/DUWaD9mkt0Kk/YsAoDc+EurY61M:+BjmONTAdWq1q6S5/DUtZmkmKkT7D/EH","tlshash":"95220a81b132743e62a7d4d5e6190a02ba359159381da2bdf77c78fb2c5580b34bcf3a","first_seen":"2025-04-19T14:14:53.474732Z","last_seen":"2026-06-13T17:08:37.099144Z","times_seen":416,"resource_available":true,"data":null}},"time_used":872,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":589,"receive":283,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1eb-1f1f7.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.496Z","timestamp":1781370495496,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1eb-1f1f7.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-d5c\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BsFj2CafUAcnVj7J0faa5lVWh3OWm8J7i6hhg5TnsiXZYmUThnPc2Lz8akFXdutX8IbIYM5K%2BywCx%2BqE2Imn4zki7iGpaoTlF8soA%2BC%2FiUgQzaUfuZmxYpG%2BTmzk3mdmcQiH\"}]}\r\ncontent-length: 3420\r\ncf-ray: a0b2b23cdd6e8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3420,"size_decoded":4204,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"0b2a5efaf504cf6e78d52b06ee89cf4c","sha1":"e6d47a053570d96772122ec266046f29c1c9a00d","sha256":"87967aded7e16ee2d2d9ca19deb77be25b15bbc7f1f9a60ef2fc1b02ed3f1574","sha512":"44d02a9eacbee7ef7459a82e6f1c6ff4c055eb901417c2f671fc129adfc4e033145163e2fc62390594246d2448306c30b055fd700e4e760f2cfa16d6c4ea5fa2","ssdeep":"","tlshash":"87615d8cf5154398cd48b7023956f6689439ed338fb7462fb55b79a73d32320642f209","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.099929Z","times_seen":50,"resource_available":false,"data":null}},"time_used":292,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":292,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/7283.12483e9bb6ecfadc0b6c.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:06.598Z","timestamp":1781370486598,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/7283.12483e9bb6ecfadc0b6c.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:07 GMT\r\ncontent-type: application/javascript\r\netag: W/\"68b1b066-b2b0\"\r\npriority: u=3,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=UO1knB1axskb%2FY4ycwIIugxBxSy85RDIC5L2v64RcXd%2BiolIk%2FTlY63Ti6s%2F51F2NE%2FpW4PQwosfPcONSZx97Yhf6%2FTfxvHhAh1QXnlPCRtKcq5LotAWDjQxFHPZA00HIvSh\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b20538e28deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":45744,"size_decoded":15213,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (45652)","md5":"4ea3d7f608b3d37876331473ba8359e4","sha1":"d8abf7b16ae390e0fe520a124173c8532c372754","sha256":"84a5f85a6fc3037c53db2ed590538d4fb313ad3ac52e73e59c6fcfcf8234a33d","sha512":"8b03fadcbd130b7c8d84d330e08e84fb01df9e96b1d16f3290a87496c4f906e41ad4bdf137530be38abf1e5cd6775baee5521a1281aa5054aebe582d469cfa8a","ssdeep":"768:Ke+ebTqPIHWzlqcIO4HI+ebv3djbql2cPg+bwTjh1a4HASr:Bb+PVzlqcIzdCt","tlshash":"7723d8a9b381a1b66a5695e3403b0447f138f6252816d06cf739c8de687cdc5b93bf38","first_seen":"2026-06-08T15:28:58.75296Z","last_seen":"2026-06-13T17:08:37.101042Z","times_seen":6,"resource_available":true,"data":null}},"time_used":1131,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":573,"receive":558,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1eb-1f1f4.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.488Z","timestamp":1781370495488,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1eb-1f1f4.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-14ba\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=EbK0ZIvWYze5Rzh6haHkccH2wjqPrNZIyDV0CMKNGmBoSj8ztf6tgycqGfxR%2B9Ypr9wz5p2iJJ3KiZDF3lMXP3UpyL2xC974fr4mS%2FVEuLWz2IHdji7L3lvkSmbSPgRavn4Y\"}]}\r\ncontent-length: 5306\r\ncf-ray: a0b2b23ccd6a8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5306,"size_decoded":6085,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"18cec585fba8c7158a6f9241f77ec265","sha1":"55a4e7d5f197701873e180285bf1bad2bf717fd6","sha256":"0519d4aa64f7819af1fd17974c4c175edc5cb616c5f8728503a5ff666e63507c","sha512":"00a08e05f22ce311d606f6ddd70245077fb34cf7c3e7ad20afce311aad806073724a9c2fb426331c6be059afa65286fd7b0e3a15e48a97d1ae8697705f7fb18e","ssdeep":"96:xVYO0gY/IVFBrkSZ5cOCp/4M1dMw/v7IzxikkBOeN9NVuKpxA:xVYNAeSZ5cZp/4MQwcwBIck","tlshash":"9fb1ad1289e88c23d594aeda180200a143afcd0c0259d02a1c9b3a287bbc72bd32937e","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.101968Z","times_seen":51,"resource_available":false,"data":null}},"time_used":597,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":597,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ee-1f1ea.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.540Z","timestamp":1781370495540,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ee-1f1ea.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-e0d\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vlfu2KAELJtF15jlQL1o6JuPQuykstkeIJahIr0Tlwzrauai%2BWJQLfkW8O3WhenEdUds3bAD7T%2F%2BU3lz42V4MuS4VXqw%2F8gRmCtbDJXBaCNAGosGJ8DmGPpVRj5QeQ3S9ZaC\"}]}\r\ncontent-length: 3597\r\ncf-ray: a0b2b23dedbf8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3597,"size_decoded":4379,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"b214fb33df8ef10c3f6d725e550ab8c0","sha1":"de60901b305c9b5587a3a9fc91f1794ef836ca67","sha256":"dc1913ada04169a23db8b88ef0d485e053327f2179dac907b0d40ed9032f34eb","sha512":"7219016d55fae7187100fb4949be0cb999010cb562e89a8a518beb0ca92bf4ceef21ecedc2191c55a93ad014d62beed7cc92be6863ac55d772699e655bd2d821","ssdeep":"","tlshash":"f3714947965008d1cd1c916a9520933bcc0cbeb5cfe88c9e4df93cf96eb4de4663a912","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.102966Z","times_seen":50,"resource_available":false,"data":null}},"time_used":595,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":595,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f0-1f1f3.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.620Z","timestamp":1781370495620,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f0-1f1f3.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1522\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ktzWBKYNGbf8DYzbuvohDH4O2557rfyuL496YNP7x%2Bs6uzlKXRtCVlr5doE93lyJV3T97Qxg8Vu7gjsE2C1IOL93QzLZ%2FuZda0jHr%2BFbuiN1svdIJZNDNabB8wl%2B%2BPe0WWeP\"}]}\r\ncontent-length: 5410\r\ncf-ray: a0b2b2407eb98deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5410,"size_decoded":6195,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"0582218f8a4c622082b5d630787998c7","sha1":"67a567459fb76206e65800d1d9721d09e225bb86","sha256":"e3f55091bff7bd8f452b8327be56b9d54abad3cec9c868febd8a84f362ea284d","sha512":"85885e1f1fc0875751be58073c7539e1d4140e30dc255bce1624a742ae64430d95c4433f3b47cf53d211e5384cfeaf9cfef9400a0763a87f335861ea47a7bc6d","ssdeep":"96:LTtfUkgrrwh/3Q4Gln1whxVrpvtSeSMKwXEDlYnN1XnvGDjW+XwwZBvSeUqPpQb5:fxUkgrrwhI4+n1wh7rpvkeDEJAnuDK+o","tlshash":"cfb1afae25c70ffbd82c513e9544e3cae0b18c8b127dd358530e8b752673510197fa10","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.103547Z","times_seen":50,"resource_available":false,"data":null}},"time_used":944,"timings":{"blocked":385,"dns":0,"connect":0,"send":0,"wait":559,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/9357.ec931486e29d6c0283bc.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","date":"2026-06-13T17:08:10.849Z","timestamp":1781370490849,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/9357.ec931486e29d6c0283bc.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:11 GMT\r\ncontent-type: application/javascript\r\netag: W/\"6a1ba772-a48\"\r\npriority: u=4,i=?0\r\nlast-modified: Sun, 31 May 2026 03:13:54 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=d68E16nCXyZciBP83iz%2Ft4DAooAcRiTjE7Q80Y8E4oAxwFKwVGyqVyaMfiLgqZUWYOG775akai3OEopJYOgcVtvUAIf1Ejyc0DlJojH3hwMJpuldkVkzOJSsKHoNLk6oW4Wp\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b21fde4c8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2632,"size_decoded":2116,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2578)","md5":"a1f9eb9d48276edcec3895aeec32aa70","sha1":"8cc7dea26bca438fce1b7a345e128acc902777eb","sha256":"5386f4fb19b108ea60e74222778d586d923fae02624c065ad5ad5036248005ba","sha512":"2b12ea86b958cb8808589e5753c43aa9bd845a958dd97473499feb0a75db7e3dc64f0952ab8eac453868b43064a8063a8654f49c9d6deb4acbb011ef87c9908f","ssdeep":"","tlshash":"5551b8441a733c791de347a7b05b3b120c2513b27819f59326099eeb47b624f5b03f4a","first_seen":"2026-06-06T06:06:39.143703Z","last_seen":"2026-06-13T17:08:37.104091Z","times_seen":5,"resource_available":true,"data":null}},"time_used":570,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":570,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ea-1f1e8.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.467Z","timestamp":1781370495467,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ea-1f1e8.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1577\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=whNq2OKTJj%2FNOY5xH0dyImkVW53GK09An%2Fuc8fy5CaVw3Ag42JcWzSRF87nFpG%2F9jUWYdpdGbjxo08Zj%2BMqUcucPwqHRcDsCKj6BN8B5AwaKgVYjrWHeQzjGKMPiMqhZHQrZ\"}]}\r\ncontent-length: 5495\r\ncf-ray: a0b2b23cad5d8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5495,"size_decoded":6278,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"b68ffc3af189a90a17ffc0c56fddbef4","sha1":"b211a92e76041830fe303079be5031ad64e9073b","sha256":"54fe11ec536d8fbebd0e66cc7c1b82b765093b5cebe1caadf9000cc1dc9fb4a1","sha512":"0dab5fa3292a42debed4a44917e41a4bda559d6808fbe9ef8a79959ac4c1f2ebf33f8098e481b30c04371c91d94a051a6ec5a9084982957379e461d3a4d1a328","ssdeep":"96:FtzaLZ7VrBuAi/tiTVMl6h2YZrycxPNbip72KwmnMIHye0simAlyO2tw9toeF4eG:Ft2LbBa1iTil6h7tNnbQ7MqMIHB1E138","tlshash":"06b1befa311049abf0c846a9ff1e22235a690b3b3ccb4434944f0812b9679dd43f71ab","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.104709Z","times_seen":51,"resource_available":false,"data":null}},"time_used":570,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":569,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f1-1f1f8.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.557Z","timestamp":1781370495557,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f1-1f1f8.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-117e\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hAHYtjnH03hGA0cArQFnblC%2FMBWGdf7exgkWYeOLZGm8cNJKu6wBIxPH5xCIBVZ0Dn7YRylg11kFARVapFQAeW98V8mCd2XBGwcCkevrH3rZdfuL2wEGcnPJnYXBlPhqNExK\"}]}\r\ncontent-length: 4478\r\ncf-ray: a0b2b23ede0c8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4478,"size_decoded":5255,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"db611077dd14b74a80cc5e97a6d9841a","sha1":"e02a9c706ace39c86dcc255a67a6521ab7ec5647","sha256":"b6aa5d3440ec3299d373e1a194c4896c4cfa852a48e4903b42849d9710728c36","sha512":"6cb338a2d0a2d4f2e6053f5487f7a47150bd92cc27be086ea90c332ffe6a3d34ac075a51e09e2aeeb64ab3edb2474fa5ec4f6d1392ffb1ee29b223edd3d6ce9a","ssdeep":"96:+mEdKjSF07UOEMXgnQ85wr4k8JSpvTYtfOwci8QumiixAb:3Ek+F2ZEMX985wr4LAYIwZ8fmbAb","tlshash":"e7918d64d7b47facf0ee13793a100d4e0cb424ca7b6ce87640928d9ed4783aad545b68","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.105304Z","times_seen":51,"resource_available":false,"data":null}},"time_used":717,"timings":{"blocked":125,"dns":0,"connect":0,"send":0,"wait":592,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f3-1f1f1.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.589Z","timestamp":1781370495589,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f3-1f1f1.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-fc2\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=A9DpGM6Gh1AqLxKEspn8UgsJzweQRx6B1PQDhG4ZgF9qNy3xwfLI4O%2F%2BKycLl%2BJpNRieiWtANC2gXH6ODeqPbdePoSMb0v0d0wZdXaDz19P9cvxOuEiabOkbse4C3E%2BhcT83\"}]}\r\ncontent-length: 4034\r\ncf-ray: a0b2b2401e668deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4034,"size_decoded":4816,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"2692f0f3d1f3c495bf5e543b5bf16493","sha1":"f6d524116d562dbdeede403e11f8bb090c97ac5d","sha256":"6df04945835842d20a038c494d0bdc9a6ce962d8cfa09ab65e67734dffbd3824","sha512":"954ca3496ad2cedc5fe29208a7151706e29476459586161237cd897b93efb1ac6b3889da4a6b0dc0302587111a4c135dfc77551262e13dbb573a1cf5d0fdd9a2","ssdeep":"","tlshash":"4e815cbd9844dea446027a000dac1072b6f5dffc7a69020fb3b93138957fa121e0a28e","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.105888Z","times_seen":50,"resource_available":false,"data":null}},"time_used":901,"timings":{"blocked":322,"dns":0,"connect":0,"send":0,"wait":579,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f8-1f1f1.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.630Z","timestamp":1781370495630,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f8-1f1f1.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f1-1f1f0.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.641Z","timestamp":1781370495641,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f1-1f1f0.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1581\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=O43mvJccjikic0ucqe2TBHHxUQBvICBONHwLLQ%2BdgSyPf6gmE7x0x2QKS6yF2zjZbRw98aSJbW6q%2BEr1pSfNDG2SwItQWZCBn42uNQCj3ZyEpwh1W3NB1Um8Yqitc0ZvSWDv\"}]}\r\ncontent-length: 5505\r\ncf-ray: a0b2b240beee8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5505,"size_decoded":6284,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"dffd5f9e88bd7afee47d8dae4ca49d56","sha1":"1bd9c1fd064f4249f6883373036d2fd642c43264","sha256":"7bd3abe5286f53f184977d7bd0a2f83c7e04b94ab053c678a0576c72b19f8315","sha512":"51018fea82c29c47692ec32791d42b38a1cdece3149b7af653c3da0775758ee49de45ca97f19d8663a1eb79a6e94c69841cabd60b1a02ddf6e2db75d9e7c0e4c","ssdeep":"96:Z0IjAc9fcDOxrlGYE5hYT6XPr/Y0Y6yq5LqwCQlzzLwEM/1RGT+5KUgK:Z3995hlGYEXYT6XPr/HTBqwLlbTSKTK","tlshash":"25b16dca6469fa30c9c26bf5f8b78c989e1808edb14495b71a6ec786c191116838e74f","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.106479Z","times_seen":50,"resource_available":false,"data":null}},"time_used":710,"timings":{"blocked":423,"dns":0,"connect":0,"send":0,"wait":287,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e7-1f1fc.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.405Z","timestamp":1781370495405,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e7-1f1fc.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1431\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5KjEqOXDgx1pvFFhzeRTEvpJyuJ7sWVNMf0TuckFPxMJfEmQUXuUj0XoMZxBNYpU5gSa2TJ7LEJ3WuKzDxPbxms%2BKIm8Mp49lsY%2FUj4p1MwH%2BEAYs7QufMybkuzEcifp%2Blsf\"}]}\r\ncontent-length: 5169\r\ncf-ray: a0b2b23c4d348deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5169,"size_decoded":5952,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"53292691c2e3315069b9798b260c7f8e","sha1":"add170891d5254f831ad967f4d35321421fa23a4","sha256":"09614e706f06e7b4dc9e0e02e498de0e26c6e08ec25fd1eee242f4fb19fa04d2","sha512":"32b064349a44a0f998b45ab973261b39d5a9a5bfa05c0ad767e58dd3e856367caa316fe9e6a375a7499f0ba993c57384955597973c4c7a5162dd7c1c18774bc5","ssdeep":"96:2lEw23KRGJvdMQJUKLlZCsC5SDfD6qnfrrD+A9NIWGJzOEo5c08:2Ow+LJvdhSfsCofWqd9NSOEo5l8","tlshash":"06b18e3a0ff35e70a409fa73cd7604da843daaa5407000dff99e151e9cad003296b445","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.107062Z","times_seen":50,"resource_available":false,"data":null}},"time_used":295,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":295,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/5905.228b6ba981b06680c03c.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","date":"2026-06-13T17:08:09.407Z","timestamp":1781370489407,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/5905.228b6ba981b06680c03c.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:09 GMT\r\ncontent-type: application/javascript\r\netag: W/\"68b1b066-25e23\"\r\npriority: u=4,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gR0BmAkNV2JgWyJ1v9NsWwgb0ZT7hPLROHMdVI9C4jGmYrUamFYbjpoImmDarM8V5HWGoAKUla%2Fwgpy2%2FahmH%2Bzcgr%2Fj%2FTEZ%2Fzu4mKsXEgyOWlan%2B1kvFwCUEoGEXtIijRkH\"}]}\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b216cc948deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":155171,"size_decoded":38493,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"ee5c449b87bcb6f35bcc547c1f3af7ff","sha1":"c55a4efd6f8867c67375f79a675ba6d2618c8bfd","sha256":"0883d0c3875eafed08b44d205e2e160ab6b79c60c9cd8fb7adf90f33199b3fec","sha512":"f13bfbd100490b22075f6dc5e9bb120e838223cb7724cc76593c302364c780f8b9bc744ed1889ced63ce5e412086af95410163f5f17f4b27c9d34880244a4599","ssdeep":"1536:ouG3B/McaUFrnb3wHkgJ4K9pKMwHI/CglGQnAZkY0tfXuYEUp:YlrbBgXGsWkyA","tlshash":"46e3b682f86424161392a1e654b60749b739f41ca8c540acfb7cfed52dbcd8e36ab734","first_seen":"2025-04-19T14:14:53.473469Z","last_seen":"2026-06-13T17:08:37.107655Z","times_seen":411,"resource_available":true,"data":null}},"time_used":1431,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":580,"receive":851,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e6-1f1f2.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.365Z","timestamp":1781370495365,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e6-1f1f2.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-f43\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=x6zuyYTH3EbwJoJFCK7gG0oh9AgZtdFavaJFhE7jewMnIJewwK4kNAufOoCASMfHelexGOMIdjWxQltYcLd9GdulnJ3JMhSj1dPI2dWZKmW2Dr651cqTzwPM%2BAeayuzyEKGo\"}]}\r\ncontent-length: 3907\r\ncf-ray: a0b2b23c0d1a8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3907,"size_decoded":4683,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"0163625dc285971bce7c7410422ce1c3","sha1":"7041234769524731835cecaa906e54f31e38406c","sha256":"3aa84c202f45344dd9cae5ead289d10654867413c3a481f65466e6f07845c5a6","sha512":"7105f7727a9c4908e19124068bb6f593bd8565f6a473d041ba6114a443676fdc11238a7798b81e1ed5c5522a683ce976e02df23ee46c3b872512b7202b7b58e8","ssdeep":"","tlshash":"62816cc34b85e080c586bdf3ed1da15602b05e6e9a10077566c53abee4be804a5deeb3","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.108244Z","times_seen":51,"resource_available":false,"data":null}},"time_used":594,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":594,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f1-1f1e7.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.555Z","timestamp":1781370495555,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f1-1f1e7.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-145a\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NZkNeofoC96U7520oeYygLboFxdbtsFlco4YxBwEEjCxy%2BrxsUuEAlvlj9iFUezgtwMaaYwHAJU2oXyGP1RMuu1d%2BXZP%2BXoxHjaJ9Xb8X8sOh7Cuhz1pYC%2F7EhdbMC7Vb7k5\"}]}\r\ncontent-length: 5210\r\ncf-ray: a0b2b23ece098deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5210,"size_decoded":5993,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"3bd35e47ac3fc115fa96fa65f786ae14","sha1":"94557fa4591aaf883b0b7b6f8ffb90a5a239ee77","sha256":"11bfbb0670b8c66e46225afa1dbee0445cbd3c4ddba40b8605b465306842650c","sha512":"1607ca84113177c56f5d1a0799096c1c181074f99f4b808bf71ac21b12d672baa4036a8d5d830bb4ccaddb88ffaa65f56f1b08e5e0d89200964c0cffbf736f8e","ssdeep":"96:wn9r3I+mS3D8WuhxgPw+ZjAr5jyNBk+4gv1BRyZgJeh+Wk2Ning0pKSrOLHz:w9MdSVDZiyNW+PBqgEh+v2MZpKPLHz","tlshash":"11b16da9e15bcb3aebcc15a597368190eb77ce1c836b9628571cfc05b93311ca41c0de","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.109244Z","times_seen":50,"resource_available":false,"data":null}},"time_used":408,"timings":{"blocked":116,"dns":0,"connect":0,"send":0,"wait":292,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1f9.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.570Z","timestamp":1781370495570,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1f9.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-e5f\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vxBo3ZAct6uZsqIfePQT7%2BribpCVPFcKk3xvwLElYy6aSk9EVvtmox343UPnsSjf2q%2BccUJqxsyIFQ3q3%2FrPkutIx%2BdTiudO7M5XUjWIWeYfDESPKstdssOXGgngg1DZphGK\"}]}\r\ncontent-length: 3679\r\ncf-ray: a0b2b23fce3f8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3679,"size_decoded":4461,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"efd0ad4821922be63008dc46a3fee452","sha1":"8e09b8a4bf3da4e0f3a3800b4852c3be8d91ddf0","sha256":"dbe5f8bb864489de78a18061c1d12c6e0618f0c9b47d91036cb7690b783bc72f","sha512":"8d42bfb8aab5785c8e4423e0b25cbe36f5ee4ceef788c80a8ecad0885468fdf2ddefbff60b6d551541514f9d9d0f59caffb0f8830f95b2615aacd1bfadafdba4","ssdeep":"","tlshash":"c4717bfb314886b1607680b2a0c3f27c827befa60b1158280a28f830717e254dc96f43","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.109917Z","times_seen":50,"resource_available":false,"data":null}},"time_used":854,"timings":{"blocked":275,"dns":0,"connect":0,"send":0,"wait":579,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1f0.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.599Z","timestamp":1781370495599,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1f0.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1a68\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2Fr2nB97s4NhFAditx1MPwJsUhZSru8DN5ParTdQri69VygUvEXplBJXqr2mpPQ%2BRBoOBWBFQwgGJ%2BZdIPiEOCRAVLfdk%2Bwx0BlE6Vwe29HSRwOZW6tlCZykKur2g2C9HMTw%2B\"}]}\r\ncontent-length: 6760\r\ncf-ray: a0b2b2403e848deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6760,"size_decoded":7545,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"abe847655adf5af30ccbaf861be3037a","sha1":"bccc93b4a6aa16c9df27a561f1a1738566beede4","sha256":"9f14380eeefe13a35ecea3ac5efb0c1d0148b3a4ac28b717a161fd69eb84b818","sha512":"51c17cdb2d9e79c0a3600db173f966523c62d9ab13ddeb73c80c0aa73dabf6bcb9ca9d0358b02a47d3550bfb554de9c66339bb82dcf87e169d128b15cc4f7c31","ssdeep":"96:YaLXFEJsAEFM5OAxEp9GtuAE/899Qu0uhvFv3hNSAI3acT1HSYD9xSWqb3L6lz:Pq0MIAx/tv9nvOn3acdLD9xVqrOz","tlshash":"2fd1aff0b3e0ce5680b517b442d052d26827b87dfce12bb24405987ebac53b049b7893","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.110592Z","times_seen":50,"resource_available":false,"data":null}},"time_used":928,"timings":{"blocked":344,"dns":0,"connect":0,"send":0,"wait":584,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f7-1f1ea.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.615Z","timestamp":1781370495615,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f7-1f1ea.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e8-1f1fb.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.423Z","timestamp":1781370495423,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e8-1f1fb.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-15fe\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MIwflmfZe9hycF1xCgsUnGS3Dyd%2FaNtAUwHokgCdvHX%2B7MyP8XznZmay3paJWwsK%2BXsP4PeUU%2FTdX7lOYYQzS0uaAMR%2Fgik%2BdI4HpXE7As0poSHE4psxh5dyLCusm6HPsp7s\"}]}\r\ncontent-length: 5630\r\ncf-ray: a0b2b23c6d3f8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5630,"size_decoded":6417,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"697ade357ce52985dfaa55264dc6d317","sha1":"b05a196bbaf267e706b617df5e6aa9eea5d47ee5","sha256":"0c80a73526e5ae887b26584a0577d823b26e4c0649683b190d12fd67b08d2139","sha512":"8e85bf1b7bda530da02b8bf36a236a7ef568cc188486544e0ca4fa528a13402c86b4ce336dbbfa920ed4623024e3ef85466326e837b6e5ddd8960782c10a69eb","ssdeep":"96:CsiK5556QzhI5bFbq/shFdc1hiP0bpF3fyhKy7SjC2TCV/R3lSNqB:DzPy3q/szjP0bpF307Sm20a4B","tlshash":"5dc16c53a186d8dafa014d29b2f46036ed39ff19cb75b6c3cd9a301a5af652070580d7","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.111189Z","times_seen":51,"resource_available":false,"data":null}},"time_used":582,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":582,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e6-1f1eb.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.277Z","timestamp":1781370495277,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e6-1f1eb.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1224\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=a3ZLtZYAlKZbCyQ3eBTk4Vk3t8jsiJKW1NnLvp6MpCQwAp30MDfA02kvndgL%2FCI2ec6oi0TtEWI3No9dktjsz7NZjCQAqpLxX4eDzNNRZe1rnNbP3bxKd76UjEEPGITAoBoH\"}]}\r\ncontent-length: 4644\r\ncf-ray: a0b2b23b7cfa8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4644,"size_decoded":5421,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"990dd632f1ef86ab4861faf1cf7be285","sha1":"2e042fde260abd268f9fefb6f8b21526983fcd17","sha256":"ca405e0798aace9d063d62737bcc45f18706641eef4e52b5b88e8eb84ab3302a","sha512":"18990abff9da26e08675fa73e210f02b540a9613b6dae444149b58ba4d730136dc9b19c46de359628f9aaa5f77ef3407c238177222cf31cda48034b2674d2d1f","ssdeep":"96:tzFtubwvsyTT9ToatV6mQRSCcslHkhjLEoss7wLUo2rL:V/u8vbZTVtV71slsX8Sv","tlshash":"4aa17e417752b58bf1f3f5774e9491ddbcf8a4b9ea61110e864fc4d4c3a68066aa0c06","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.111807Z","times_seen":52,"resource_available":false,"data":null}},"time_used":590,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":590,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e6-1f1fc.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.367Z","timestamp":1781370495367,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e6-1f1fc.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-13c5\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HYooVEcQXuKV%2Ft%2FXB7I01zPS882Z8XaKGpQIoLAISslQVZ7QP42RuCH7Tljh1UeK92%2B0%2Bo05KhAdb6NYwL0Bmpo%2Fxuntl7EyftuJHk1NajINiJTd1IKWvNYh2Kprc%2FWAAuFt\"}]}\r\ncontent-length: 5061\r\ncf-ray: a0b2b23c0d1b8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5061,"size_decoded":5848,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"e4215711f61dbe71e4eabb04628a7422","sha1":"a165caddca5d32c11719b1e4aac62eac35be602d","sha256":"5e211b8df63a6ad5899f7b12a12ad488fa4da16f3c8c4c8ea3a1bbc470770b25","sha512":"ab22b803196593ecbfe95d38164248f858b58567916f1038c5b860f48b52b35a93819e945ea9d3b9b353d915057f49784ede5d16d6a29f30f61a4debb2a89b13","ssdeep":"96:ZeG+LxPAYd3DbVCWqt5+rElUo/ETHeeJyes0r5XYnZD1DVFVHsgnrp+8CdjCkmdI:ZYPAY5XVCblr6NJFrtIDVFeqcCkaI","tlshash":"e7a1ae47e29e9bbd02b07fac18f0b9779be56871c347facf44126901349a141840ccf5","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.112376Z","times_seen":51,"resource_available":false,"data":null}},"time_used":296,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":296,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e7-1f1ff.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.393Z","timestamp":1781370495393,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e7-1f1ff.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-19f0\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Dig1IYtQbT8Mp2pDnYrGqw2qp6GP8Wz8s7XUB6SM5rK%2Bd7oBN9BPU%2Fsyh6HtAg%2BO7lqI3L6Y5lKAnzmv03vEpelKpueHozX6a5peVSscrc7L5%2FA8uYdCWZnAI1lr2I8NfY8s\"}]}\r\ncontent-length: 6640\r\ncf-ray: a0b2b23c3d2c8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6640,"size_decoded":7423,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"0040734aa31edcc366b505e5c2365c19","sha1":"e6912d889b546260ffe803a1e043eb475b909e87","sha256":"ff1a55481357a6a8bbbd27dfa5d66978124e36f50fb7402f52030d0645ff9558","sha512":"28c2930b6958e2323a347d8be1a1d142d2ea244060c6bb5216c80e46b78b943dbefccce243666677ff6df7a9ebab4f0cd422e91eb1e0f5675f1d667b371327f7","ssdeep":"192:b11/Nw1tOM8hPTlj/KMt2HFVIAcn/SDHlrUB:bDQtSt12z6n/qUB","tlshash":"b3d1af168329eadd2d15e622abda07f2cd72ba0c085368f5fd4f483242b5a65171c0db","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.112955Z","times_seen":50,"resource_available":false,"data":null}},"time_used":570,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":570,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ec-1f1fc.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.526Z","timestamp":1781370495526,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ec-1f1fc.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-f89\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ncBfvX66t2%2FfiPLOBFucZoeIhgNFnsCZjaTLm32ivvunfXNFPesCMNf54DUlpZuPpe78GQXOQI4e0MF8pjSCSChfDiRoGXeg8pdeszMUCbTFtzVlETixnxNP0qAFCNt6740m\"}]}\r\ncontent-length: 3977\r\ncf-ray: a0b2b23d0d868deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3977,"size_decoded":4753,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"934da7c7c1ec30ee9e92ed392bd17ced","sha1":"4ccec57e8f6a19851df4e1d589c0fabaad49aa18","sha256":"161d4f9e853195bbc85befbc23949debdded5b832b4733c72d4756352102230b","sha512":"01b4c4900fa92f5af080cc05b70b743591d2d0b70ee7227bfd3c1012aa08deca970e8b3de14792abb223173f8c8178f22a6fc0c53684911b1bfea29384400132","ssdeep":"","tlshash":"35814a1ac3202f9a5377416bec0dc2e983491ea19158e6bbb011b59a787c0c9ce03aad","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.113575Z","times_seen":50,"resource_available":false,"data":null}},"time_used":584,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":584,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f1-1f1fb.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.554Z","timestamp":1781370495554,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f1-1f1fb.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1051\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZVlKkSmIyAk3ghDrjgaSx3CU1XwIEv85dtNGhGOhMw9D%2BT1VWTfCSs%2F2TjJMY%2B%2FMiq03NJwnIqgQ6v0nU3mcKoUBf3rq4OXpr355OPL72YPzQogYNvrXjnBaxBLQC3bbLyBY\"}]}\r\ncontent-length: 4177\r\ncf-ray: a0b2b23ebe068deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4177,"size_decoded":4960,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"4a1d22d5dc7f89a422e28e82cb9bed35","sha1":"1c1a4e24c78159d3bcb0326270c38649d06bc4ec","sha256":"e514f8db8364de6d7110e16baa7dbc45e59f48d1400bb0b95c8fb0f6c4edc280","sha512":"b745f5f732a762a63de9dcb00d2c5d1b3e79e2ab76226ac40f50ffb507697637f0789e04d7f2e682e300f3de034f6ef2a7376a6bfbd660727ab513863973cf45","ssdeep":"96:roSqiakg5FTcz4Jx23u+snLp9eKVu78/iy4bktARfioNSd:rohiakUt32R0p9hdmbk0fsd","tlshash":"70813b5a7dea0c51cae3ad557c9374102dbe3d29db08b241e3ca7a2e437634ea821092","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.114235Z","times_seen":50,"resource_available":false,"data":null}},"time_used":688,"timings":{"blocked":105,"dns":0,"connect":0,"send":0,"wait":583,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f8-1f1fe.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.647Z","timestamp":1781370495647,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f8-1f1fe.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e7-1f1f9.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.398Z","timestamp":1781370495398,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e7-1f1f9.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-19c6\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=CQs%2BMkzvpB0tOsDNcpAuTO4UUs6k%2BEWy2LYU8ehVWvrwb9wA3n8pFAlLX3lHDE5ve9vH5y%2FmoTLUVdeT7G3DCfIvr4Gix9eWireTCcV64qk%2BbxgTGFBZskyQDW7BfQLdPbd2\"}]}\r\ncontent-length: 6598\r\ncf-ray: a0b2b23c3d308deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6598,"size_decoded":7381,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"c9db88f751644db18b2d3bb13b6f6776","sha1":"72edd5a6ce03f73f8515d5e5ac7bc250c8c10b1c","sha256":"21f81e34bd90175cc7d8e808dd6de9fe8e5bd0b2f7ef3e86575e0ab9ca7be1bf","sha512":"15e0898735a292aca5a2c5ec926de56c5b34313f3da197394849fcb4a70999ddef1c925012048e63742dee472beca5a2d1b2d8e0e8e4696f47b582d69152fb49","ssdeep":"192:wAmjV9324eAjik84cNleaLUJvZoZNLdXeuq4j9hH:CjVZ25Aq4a1rpBhH","tlshash":"e0d18dea985ccda53413eb91ed9c47020107e9f32c5262eacc37d8f82e4147d22361c3","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.114985Z","times_seen":50,"resource_available":false,"data":null}},"time_used":587,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":587,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ec-1f1e9.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.515Z","timestamp":1781370495515,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ec-1f1e9.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-150c\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=t%2FM6Q%2BeZOkFe6F%2BmgXpa3kHlJe5Y0PQTqb1KFdK4JjmJ%2F59KyiLVO8P%2FAG2diVzPbGtbB90bxjUt9ghKg0AddN2pVpB7f025GK6GFMN1YQ8zGB2jlr5qBI5grFBrIXMK%2B6aW\"}]}\r\ncontent-length: 5388\r\ncf-ray: a0b2b23cfd7e8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5388,"size_decoded":6175,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"d05f1f3ad89492ceceff7ac3a6a532c5","sha1":"3fef5f5823cd4962fb1174625a3ae0bb6bb96eaf","sha256":"903f02524810defaf467255f8865ed46233bd03ffa7acccef25e1b8aef13dd75","sha512":"5ccbbebbc6ca2ecd4a477580e255642d48e48f3c93f4ac2ffa5dc908e33e74507a5d7db4ed2310400c9c225ecfbc087a00cfab5252ca7db6a853d93c14d1eaab","ssdeep":"96:Q3TU13f3amXwlj+B9xsu0Y0yh+c38RP1pXzYQ/C7rDXKWiz7JivvQqimEV:2U1i89xZ0KaNpjxC7XuYvPve","tlshash":"36b19e32dc0406985c2c8a02952e7690afd26f29e1c645edcf5d7acae2b9f0acf94805","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.115651Z","times_seen":51,"resource_available":false,"data":null}},"time_used":573,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":573,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1fc-1f1f8.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.623Z","timestamp":1781370495623,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1fc-1f1f8.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-f9e\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9pADPHQINerD1S%2Bfj90ubESSgivgkYsFsL%2FNeqRsIfWYi1FBYkAs0Oino2lsoCOkjGWH3ve3djQrZCFD8ii8%2FemnN%2Bi34Yw8odqfCx%2F%2BRwbhRr5O0niZMHjazOLunN8Q3dC3\"}]}\r\ncontent-length: 3998\r\ncf-ray: a0b2b2408ec58deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3998,"size_decoded":4784,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"b853dd0a4ed71757a3ce9ce4cf622edb","sha1":"f1b0861d2f43b25b55f72e5eefeb0216e8c8d2e4","sha256":"4da4847e5690833a90662e14d9d7292ad2c0aea4de70caff64f91192fab0bf2e","sha512":"08115695931287d16e930a8963d0660a57c76ff3df94cb9f949f48307fe0636e80fd28626a5b99b531546c675cd3cb68e3d5bd2b68f9651c86ff60f8ec5c18c0","ssdeep":"","tlshash":"62817c8dee06dab8a4d6b80893c45379dc32c6fb18f03c6b664d633711ab2d217724a1","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.116814Z","times_seen":50,"resource_available":false,"data":null}},"time_used":689,"timings":{"blocked":392,"dns":0,"connect":0,"send":0,"wait":297,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1fc-1f1eb.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.678Z","timestamp":1781370495678,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1fc-1f1eb.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/rlottie-wasm.f013598f1b2ba719f25e.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","date":"2026-06-13T17:08:11.440Z","timestamp":1781370491440,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/rlottie-wasm.f013598f1b2ba719f25e.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:12 GMT\r\ncontent-type: application/javascript\r\netag: W/\"68b1b066-10037\"\r\npriority: u=4,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NOFXydZEA5gtSq67yg0dA8jH%2Bo2Ir%2FbwKBUWmro1NbagtENl%2BFy8sLLPUstqLqtP%2BT8McA79V77cAttiBrJrzw%2BBp14rHZHU3om7FjC3GTw1h1lgyqy1x%2FQXA8Wn8ACE3P%2Fn\"}]}\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b2238f188deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":65591,"size_decoded":22120,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"4441938ee433d3657c20d454d352a336","sha1":"dd67121d7fda7c17be196f60c72dfa06bcb5bc6f","sha256":"659bf63501a8054ef0eedda3dec466dbc1e9a1b2c4d5d59a285b005215e16679","sha512":"f90da6f2003442e547813d62f44e22e688f637616dd7f7f33c81e73d05a3a3de39947c0a8f580002cc96a716caecc4bcd988644ad78b01ae2e9a9792c726604e","ssdeep":"768:O6T4cK2yQ6eO1P2WgcdxazvszXIgBB1ARna76Ae/FqsSwYxRrqhlr3NqR:m1Q6eO4+IUzXXsjvi1alrcR","tlshash":"6153e88535d9b0ab42837878946f310bf2ab6d52641c8410db1dd4dabcb4e49e63ffe8","first_seen":"2024-05-16T20:37:02Z","last_seen":"2026-06-13T19:02:15.11616Z","times_seen":15143,"resource_available":true,"data":null}},"time_used":1155,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":586,"receive":569,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/rlottie-wasm.wasm","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","date":"2026-06-13T17:08:12.618Z","timestamp":1781370492618,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/rlottie-wasm.wasm HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:12 GMT\r\ncontent-type: application/wasm\r\netag: W/\"6a1ba789-4d890\"\r\npriority: u=4,i=?0\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=U9LvBjNKrPCJ5dzU%2BAYaRRdsM53uS%2F2Qpmx4aISeACqXy1OjmYz1ez14%2BfBg%2FpI%2B5BdWaepk%2FF2dcCooeNsWdLM5tTQ0c%2Bo8bIY%2FDJ%2BmWP%2F1ZLEIjrGW9NBQAIpdIwBdKLsJ\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b22ad8d28deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"WebAssembly","description":"WebAssembly (abbreviated Wasm) is a binary instruction format for a stack-based virtual machine. Wasm is designed as a portable compilation target for programming languages, enabling deployment on the web for client and server applications.","website":"https://webassembly.org/","common_platform_enumeration":"","icon":"WebAssembly.svg","categories":["Programming languages"]}],"data":{"size":317584,"size_decoded":134537,"mime_type":"application/wasm","magic":"WebAssembly (wasm) binary module version 0x1 (MVP)","md5":"ade36c82f1c7643da3ef1244ec008da5","sha1":"19654576f8d08fee41f8dce3e8f21e61084b9589","sha256":"f186efb3d724331c5d36813d3bbbe512630f9e199f4667f3c4aa43f3fec6cf14","sha512":"33a450f01cbca551f260d7b8d859f7ed8b8143f825d88121421e0a7feac07fd9e92c8d5d1fd17a5b5a192b63a28bd0ddddcd49fd7ccf47d23b782ade5d7f5686","ssdeep":"6144:rkMe/HUtjAy9pQFJSEH7mrqSiCaLCA5O9io/fAi7BPqk1b/2c:rr00t9QFJSRrzd1J","tlshash":"4264f927f21a9c65f4006937060d9937233b9890729970a6e78d38fb7cfb90db55b7a0","first_seen":"2023-05-16T22:57:55Z","last_seen":"2026-06-13T19:25:53.141452Z","times_seen":1193,"resource_available":false,"data":null}},"time_used":1387,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":283,"receive":1104,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e7-1f1f8.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.380Z","timestamp":1781370495380,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e7-1f1f8.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-10e1\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BTpCZSvCp7ry9jYoC1DNU0s5wJWKyUSSE26dz%2F2ptZvJfAme9yOE5yKsroQfunanxZqI2JW4ov6wPnoW8bBntL0wQUZloiK0JqCM1jW66yLelCignDbXaJIB7371WWc6Dazz\"}]}\r\ncontent-length: 4321\r\ncf-ray: a0b2b23c2d228deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4321,"size_decoded":5098,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"066513b5648e745587265d7c0ee92aae","sha1":"48e75035d4e204289fb2c5cf40a8eb7ae12684f6","sha256":"ee4723ae96a4c35c45ea71fca62e68188e2985aa2e000cdeb522fe40d9b16775","sha512":"4f335200b29eb9be3696226e70323cc239609949c1ba5d4fe7850345a7a9181ff269b72918d3b39dc4ae3c907345114e2dc728b0a98464b41af98a9455fd9278","ssdeep":"96:cZjr49QCvoqZ6w15yHCryYY1lCRxxp3/H2zSGR3YKL:KFy5GCrn64Rndf2z9JL","tlshash":"d7917d435e0a446cc9fda857996c04da8f39936420e7aae371ce9d33bc631c8d9db934","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.118555Z","times_seen":51,"resource_available":false,"data":null}},"time_used":588,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":588,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f0-1f1ea.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.548Z","timestamp":1781370495548,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f0-1f1ea.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-14c2\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=U9Q6V%2FwngzCvXTlJjQUguoVmrN8HDL70IamS7DZ%2F1qv%2FLkA4LmbAzIrKOkIV9bEFFiR3Pnr87T9MTjtZYUYZJ0E75gJn0q2fFv6L0kWS4VlRidTwpqHWqaAeujeMJ5zmlRh0\"}]}\r\ncontent-length: 5314\r\ncf-ray: a0b2b23e3de18deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5314,"size_decoded":6095,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"67b5ef5cd4d6a894b1c383707ce1f41d","sha1":"807e87c0eecfb9be3208916783ef5c021f4e386d","sha256":"f22ec8f87ca22a947415ccf5186f2ef5620d6521f97b83b1056fb60f41858406","sha512":"e03b91a540797b2616bfb45f66d44a38a103067b8279056ce7469de6508202c3993da38dcda47a3c647e16e0411e470369fe43d958c4364996e4d82dc6c63e48","ssdeep":"96:b+EL1HPl0jOoyBc7nTx8bQEUvXmMOi0dEbLlFSootIS:1BHd0j7y7l8ZEGLytR","tlshash":"69b19e95198ed820d64516af979b8244bf8428f04bb4b43391db0fec9ec7e6eb0b1b05","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.119102Z","times_seen":51,"resource_available":false,"data":null}},"time_used":625,"timings":{"blocked":32,"dns":0,"connect":0,"send":0,"wait":593,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f3-1f1eb.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.597Z","timestamp":1781370495597,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f3-1f1eb.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-140e\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=75mj%2BMG3s%2B6qs%2BSiyBuLEaS8mG3wbP1GvCCysxdtDJFtGetu8CcEiVUHXblL1oGXgQ%2B4OiEaEZhKiHMBQTpnWtzftXevnPN6w%2BwXW6BqdkJ5KJrFC65b5fWDnaS82YzhYsaK\"}]}\r\ncontent-length: 5134\r\ncf-ray: a0b2b2403e858deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5134,"size_decoded":5919,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"a3a386a3b6b64e48f01fbfe1fcd97e09","sha1":"06ac3948a92dc787bd88c4c3576c5cc35d08f7d4","sha256":"516da7a87b16427ca5dc69ca212a0498ea26befc46cea162f561f24d0a77fc4e","sha512":"f96df3a32bdb1a05d788f421985a247348fdaddd41011b0737089b997d3c1830c7d0df78a8fa584e8e878360f9a7a90e460aa7fad9ed3a9d961224fa8dee788c","ssdeep":"96:nEosGcof4reAlHnD8klKJB06E0y1yKV5bSAwWAnZUcE877:nE3GOllHnYfbAv5REZUcE8v","tlshash":"5fb18c540b25acef28ee902846e1624865d3dfa0db87b70e87c8b53e9b799cd1548800","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.119647Z","times_seen":50,"resource_available":false,"data":null}},"time_used":634,"timings":{"blocked":344,"dns":0,"connect":0,"send":0,"wait":290,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f9-1f1e8.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.663Z","timestamp":1781370495663,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f9-1f1e8.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1677\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=i6DrH6GTZar%2BjBJejCCa0pA9sYEqafeWQWK2v2Plr7aYl9LX3PZzYXCflyUble8tt%2B0is0ILa1spG9Qmr97k%2FmCHt3AlJBCL0ZRutQMvQI2e%2F00%2Fmkv1OJxeyko7ksbmaWc0\"}]}\r\ncontent-length: 5751\r\ncf-ray: a0b2b241bf2f8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5751,"size_decoded":6536,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"75d13ccde344aab4da62d0f71d16b757","sha1":"ca508ef0bb1c4355bcbc197677fc3eb973277528","sha256":"25269e01c15fa60d2098dfd988e774a50e43bf285af0259c14fe3fd410b03dee","sha512":"d5c13e6a411d35c4e12303104c1bb928bcb943847feef7dfdbfae0abad31616c516d1e7377055fb3ee2d8551f0861f92286cf1a224fc13dc3796e1ba750a6315","ssdeep":"96:Jn3VPaIbdpLlwm57m7g9TSEqnc95nX4i7Y+wdc3ps/Nv22fjrP/h8V5/BZ:ZtaIL35CVE8yGi72wpONO2vP/h8V5/L","tlshash":"e9c17e7b0f2b94ddfe44682d1cb77c47bff483e92b019a50225bb2f5250e481a5ea095","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.120348Z","times_seen":49,"resource_available":false,"data":null}},"time_used":876,"timings":{"blocked":577,"dns":0,"connect":0,"send":0,"wait":299,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1fa-1f1ff.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.673Z","timestamp":1781370495673,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1fa-1f1ff.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-126f\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=u1cRy%2F0vtOobJEp7WY3bZQ6IWkMO8xwQdfQpCtpyUaje8M8KuqEIqm5tbTIZ8TWU8iv%2BSzi9%2BWbDhF2aIT4a2cqWyh3z6MipBdBsMiy8HnVOdsG1uF%2BBIbveTCTmYMdTKLB1\"}]}\r\ncontent-length: 4719\r\ncf-ray: a0b2b241ff408deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4719,"size_decoded":5502,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"7d16a20fb90d27bd83702e6063640fcd","sha1":"d6f26663262eeb36d463ffc7b3924190be70dd8a","sha256":"9b504bd754148ab2b78d9a447e944ce05de3e7640f1d4a4190613ba9f6ca25df","sha512":"734167f06d689f59b6dc3893e1986af41a122a25a49032981cff78f49bf4a7f7c7357d7a1104657e187a5c665f859d73c7224b86e8ddbc2a486631f6bc820b25","ssdeep":"96:jxvUaASpPnbx3VzKgFy1+IryRHlb7SyAqarDOQoSNgJipEEwN2:jxJvDrzKgFy1ARFnPqSHSGJLU","tlshash":"91a18effb3050d52ebb1c42abfa96806e4bd3a5d81b080a0750af18678df14400efed8","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.121073Z","times_seen":49,"resource_available":false,"data":null}},"time_used":912,"timings":{"blocked":615,"dns":0,"connect":0,"send":0,"wait":297,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1fb-1f1f3.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.677Z","timestamp":1781370495677,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1fb-1f1f3.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1190\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5ApW6%2BERJKFhunavNUIJlzOh4X1FW3ywjgU8Kfbib7FaQc4CLr01rZwU7chBpiI%2FCI8cj17mahjgROeX0Kjb2nDJ1JGBvF1AutJE%2BuhzY%2B6I83XfSRKuzhsxrRvBK1HEG%2Fob\"}]}\r\ncontent-length: 4496\r\ncf-ray: a0b2b2420f458deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4496,"size_decoded":5281,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"f8bcd3fc3af602d1d69f576bfd8fc02b","sha1":"0a7124b351e78119dbeef25611644ebe7cb53969","sha256":"b1bf92e4a1edbef5cc78d0f220c3cab29178463cf036e39fed47bfb6f2821054","sha512":"20149a43d381c27a48ed866c1b81ad59a011a11dbbc4e70c692dfe6ff860b4f15f5c946c0d32fa39d3272820aac7c0943d8e64662e841ffd24881ec8d9acfa28","ssdeep":"96:wfEn3BaXp9+vXjwmg2vm4Li+1dHTMf5ur8uLFtUJsh:7K/+vXjGomo1ZS5cdsJS","tlshash":"10916cdfd2980c1c134f60932987e17d524924a6df76757fe4528b1e986fd3d4480a48","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.121643Z","times_seen":49,"resource_available":false,"data":null}},"time_used":920,"timings":{"blocked":627,"dns":0,"connect":0,"send":0,"wait":293,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/main.646e16c287a10cb1a6cc.css","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:04.400Z","timestamp":1781370484400,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/main.646e16c287a10cb1a6cc.css HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g0$t1781370480$j60$l0$h0; _ga=GA1.1.95620750.1781370481\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:04 GMT\r\ncontent-type: text/css\r\netag: W/\"68b1b066-1b6f7\"\r\npriority: u=2,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=K%2FqrwAY8gTNPuHd%2Fggcf3v9FM9h0oEWxh4h5LQ%2FIPjC2jkdNGDVvRV6GQUQeay9%2BNEmp2PqS1R4NFdT9UJmdz7KvZPWuu3QMuWBlSBOa92KVegIYiIoLTjze0m%2FIjq8LehIR\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b1f78de48deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":112375,"size_decoded":25725,"mime_type":"text/css","magic":"ASCII text, with very long lines (10789)","md5":"e09525fa418ce7442bcd7b9f04f63f2a","sha1":"f3af29d3488bf50c252c3abe10c910c73cadfe8d","sha256":"94efff7585470f56c8082979d3941a5d8571cc379ce3f98c287141deee516535","sha512":"63934477513068597f9c45a48094e92fec227221e4924ebb496f047a03e80d82c2ea814589360f233633a96463f1e1ec3cc93ba7dc1415be999c09d7473fa3fe","ssdeep":"768:2KKinmlPrbv89CbgdKNx2Ig37d3hnoo9eb6UbQvAnDIbhAkB56tfEEV+SoolKS:2biZCbx2Ig3p3OGv5yrfP7","tlshash":"b0b3f8a9e94011f9a723c23e97c4e76c9d38e441de210fafb247655c07ca3eb11e2b58","first_seen":"2025-04-19T14:14:53.466385Z","last_seen":"2026-06-13T17:08:37.122159Z","times_seen":403,"resource_available":false,"data":null}},"time_used":1110,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":284,"receive":826,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e7-1f1f3.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.411Z","timestamp":1781370495411,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e7-1f1f3.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-17d2\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yW4Frbg8qU3YJu7vQ6JcUinssSaVdrhy7%2FucYCig8CXkFXVk9wEjdiwpMvsj47xCJ8%2FdnONCYbryg135nkM2lKuV1E2FUuPY60akW4HRKuADJmMVyrtjsCk4PxhwRw3bX6sN\"}]}\r\ncontent-length: 6098\r\ncf-ray: a0b2b23c5d378deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6098,"size_decoded":6877,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"42bb71dfb2ea887ce5006fbfb23555af","sha1":"6cc61d09ea495a5bdcb3a8041e53d79ee2d8503b","sha256":"cd3ae3b52d6c0101af30e3705df0a9893fd8cfb38bd2fa384e058b2c94fc4ef1","sha512":"449c1fddaf5b36f3e4812f6b406cb6e88eabedbbba8596ad77391fa48b27bf91cc5c15fe01fb62253e25fbd1dd18574ac1e0a65bbe15d13d69a33810d4cc1f5a","ssdeep":"96:twfuEWMmGFR8c3n8pcYOOXW4nKiqZ2LZiVLPgD/ocr5xnecuIteiq3DnyUjn/VfN:nEnbacWm4KihIVLPgFr5xBpeiq3jy2nL","tlshash":"d7c18d92fb9eac7ac5317407c5508e1fadc02888503649a58f8c9be7cdfb10aa1e73d1","first_seen":"2024-03-20T06:44:06Z","last_seen":"2026-06-13T17:08:37.1238Z","times_seen":57,"resource_available":false,"data":null}},"time_used":293,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":293,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f5-1f1ec.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.606Z","timestamp":1781370495606,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f5-1f1ec.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-14ed\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=EKPwkSeOtfL9Ah5JbF56QF4iSApcjIiG6%2BJ7MZWoZTFMP4r3EHdMPQst9ItyMVp9LmvDcTly86tWuTBL2TlAg83VZlySMXzSU0eD2khimOGiSGPQc8hNThIx3Ys9hmKveIyv\"}]}\r\ncontent-length: 5357\r\ncf-ray: a0b2b2404e928deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5357,"size_decoded":6134,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"c090632200fb917389370fe59395a135","sha1":"d3784b1a2d487da80f495ad437220251b9e62e4f","sha256":"1edefd8658d380f67b0cfe321f48aa2deef4b209dea960e7faf35bcf1c6f1a1f","sha512":"b64f1f4dac3f2c17d0ec1c71527707da4e7022868564d3c3391e6e8cc4d4cf13e114bb82dfb097192906419708cdcc2b398effc5e9f178aa9bcbd3fbb47b4f9b","ssdeep":"96:YsYLMFACmt3eIVreiTu0pUsmyTCPg8TE1nA/X5NYlsTgim3qthJTTqhehq+:LYLMFktOi6ksyTC5g1A/Xv1gim3qtzTf","tlshash":"c3b1afa9f89de7883920b42f29e0d0806c1e175c491ec75cd41f05b6e5c2ac88f6d73d","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.125113Z","times_seen":50,"resource_available":false,"data":null}},"time_used":646,"timings":{"blocked":353,"dns":0,"connect":0,"send":0,"wait":293,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/7784.a3c3e3e38d46532f1ca9.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/3559.7463f2fc78581a5d297e.js","date":"2026-06-13T17:08:08.829Z","timestamp":1781370488829,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/7784.a3c3e3e38d46532f1ca9.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/3559.7463f2fc78581a5d297e.js\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:09 GMT\r\ncontent-type: application/javascript\r\netag: W/\"68b1b066-5265\"\r\npriority: u=4,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Iy9cDgaYYiDImDAvqp65TYwTHs0OtggxklTRmFMG8fEPQt49ZnXFjADwX4dRPq16rVLpmcSwdxztoRqKR7i6Js01KkKRlfC2MspylTHIy1ObxscGeQUm7WiKIDy%2Fs3FEczQO\"}]}\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b2133c068deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":21093,"size_decoded":8779,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (20956)","md5":"44d9784f12bcc86aae68822c887d357a","sha1":"30d8228c88b0a28567699e27be713e4b20ca7d5e","sha256":"520468d89596d743cf1c4e0adac4f035c77cb4296ec291a9f61e0604cf254db7","sha512":"1b0e56ada6fb96aaa59c5e3ab07a4f1c017609ff669d2ec8254863e5bd9268a7567da9320f7c31889ef9e2bc5e9591c3674553e735995135b25b72f43dbb2eca","ssdeep":"384:eA1pRdH3K+SWInGDrQ+YW5LhoASLv5S8VwktQ0CSRU6f/k5MC6LEmYwt/9RXC6iR:eA1pRdX1DrQ2LhoASLFtQUU63k5MC6LK","tlshash":"ac92187a52ad05c252ec48e908cb199951b8e0233c871d7e5134fdd630f28d7e2ebd79","first_seen":"2025-04-19T14:14:53.465174Z","last_seen":"2026-06-13T17:08:37.12584Z","times_seen":418,"resource_available":true,"data":null}},"time_used":546,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":247,"receive":298,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/3046.045a298715c911ec66cf.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/3559.7463f2fc78581a5d297e.js","date":"2026-06-13T17:08:09.988Z","timestamp":1781370489988,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/3046.045a298715c911ec66cf.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/3559.7463f2fc78581a5d297e.js\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:10 GMT\r\ncontent-type: application/javascript\r\netag: W/\"68b1b066-b6ca\"\r\npriority: u=4,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9yn8MsSA9ITOF977G3wV6Ynp9q97Z%2BBRzxWJFenkYFVeeXY6LO%2FhroUeGc4CW3g7MYgsDAVOlvJalNiEnCLm0TG%2BOCHdRITLoF05Hjzl09kQdqfgFaMKaMW1XQ3PwfGpDcwp\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b21a6d348deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":46794,"size_decoded":16483,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (46740)","md5":"797139e06e32cc6da3ff92855bb80aad","sha1":"fa4b1f8368d19f650e7cda932c14bbcf2f1848a6","sha256":"5fb48de7981f6d9cd91e0231901aa570b83e0c4340667f6947cdde989a99d2fe","sha512":"d117a2afba8b4028d7e90d670265d12fdacd08ddf76a63ac2512dd9834ef80fa447c3ecd2af925754b10c172bfb6e029ed02240bccef4b5ae3785179a949a7af","ssdeep":"384:LLmi7SuM5m54Jj8wwolGcRvDwCIG4fAtbF+9hO2rgFRGt+g0mtaOYBlbKC/MpxBL:LL17SxQuOIh1DyUF+99X3xBB/H6Sgkp","tlshash":"e62363c4f6e6b0a1436371e0443b504af33e6a6ca44d40b8e295d4e678fa85dd67bf38","first_seen":"2026-06-08T15:28:58.71172Z","last_seen":"2026-06-13T17:08:37.126594Z","times_seen":4,"resource_available":true,"data":null}},"time_used":1174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":594,"receive":580,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e7-1f1ec.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.412Z","timestamp":1781370495412,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e7-1f1ec.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-f4d\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6vn1GdgDySbWacY%2FOBa5fUA9CzN%2FxP%2F%2BV3GHkr8mn4DEZQjPPii8N%2FyOc9z4q%2B65j2Hoj26U%2BGk0b%2BqcXqyitqLZ5VZ%2FIDqTRwzHxiLOK4UVSnA%2FiqZJ0VOqUvAhK1KBk%2FTs\"}]}\r\ncontent-length: 3917\r\ncf-ray: a0b2b23c5d388deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3917,"size_decoded":4713,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"bd7698aeb0a03008d4b3464618715677","sha1":"c7618c44b6b469751fd82a6c23eed566fb872b40","sha256":"30da17b907747ea168e0eb990f3d06ae5e07324bb739e6ca38626263add8d727","sha512":"627ac8f2f2d501add611b221b48d383d29dcf4b7ed47b132094c39e3f53299b4c9108d07283e682c209141df9396c44cc937b07888813687c7b8dd11354107e9","ssdeep":"","tlshash":"d8814be58238de9260ca2a86e9c2552e79531dd30048f93ee586f858ceb0ea4541b99b","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.127352Z","times_seen":50,"resource_available":false,"data":null}},"time_used":581,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":581,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1eb-1f1ee.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.491Z","timestamp":1781370495491,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1eb-1f1ee.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1121\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZqKnzdSPZjblLsNU1PVZr5kEvL8hqkD%2BedQUDUW6q6UmfSoaPiE8rQRpf1BsVIT8hpfZJbAxfXvMu%2FyDL%2Bu4Cx%2FjVqWlOMAtLSseI7McT5E5%2Fle56glii15whhGPH0061D81\"}]}\r\ncontent-length: 4385\r\ncf-ray: a0b2b23cdd6d8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4385,"size_decoded":5170,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"d578dd13da4967d7bc23bc6f371e7ccb","sha1":"69a20d97fe83982b6ed1be3c30957e2d5b97fba5","sha256":"0d446f30909af3fb48ae1cd2aa848eac3ad2c9fccac9059f9567a289aecf4ac0","sha512":"cf6111c51b36959de8358754e6bb746911250496885a53e70beb46205b9ef1ca0df79567e93ebe966f4bbfdfcc78f6102259b8c0f9177ea4169ae79b5f20a09e","ssdeep":"96:S7Ch+F1RebmzbF5l4Egsj8GxWxFoZ7SsykP7EdBBCy:uRkmzbF5Arz27SsP70BCy","tlshash":"99916b1341dd42886d11e8b9bf4ebad55b2e2767b2beddd78a5b071403ab17000e9723","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.127952Z","times_seen":50,"resource_available":false,"data":null}},"time_used":573,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":573,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ed-1f1f7.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.448Z","timestamp":1781370495448,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ed-1f1f7.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-137e\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=J6GGrPyvK7B9Mw4Y%2Bjf1x8B%2F2HEmT9CP3W0fr%2FQjuJnFcqXhKSQXrhTuGMzZSVuW49AiihcFVy5C1g1J7gbSOVGyFtTcj0cW1Gg%2FUSMhE5gly1fRLJWLlb8PUJJR7HTBdvy%2F\"}]}\r\ncontent-length: 4990\r\ncf-ray: a0b2b23c8d4f8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4990,"size_decoded":5775,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"9100fbdb185864315f6558d56dca626d","sha1":"df973a54d814ff5941278fa88a60fe363f05afee","sha256":"4087d399e0f1528b7d21e56dc64e61a9368b14a7747f952b51e8b6c12f139a02","sha512":"e63f67846862e49533ca1c38879b0ab5675b936a25c2aea4da76a89abf1faa3a94ebe5640728816bf668817581eef2d9eda5c14b5f5d578d360ce25c3fbc99d6","ssdeep":"96:6T6nWKwY0VJ5ecuUSY4k94LK8HsVr9JItfkr/yRezilmsbgWZPRr:6TWOVbecZS+iTH+r/Ie/FkgWZPp","tlshash":"c3a19f72f0cefd4f8df3d3d66511427078dbe72668008d13c898a8150c63b82a14bb0e","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.128683Z","times_seen":50,"resource_available":false,"data":null}},"time_used":291,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":291,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e8-1f1fc.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.451Z","timestamp":1781370495451,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e8-1f1fc.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-11ea\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=G0Anmun5ZjAW6Xyjw10UMj6ZYurhxV9WUiijv70GGptR1KcXDDYnluZipMWHh3b6Vwp52IpV79ERk9HZAngqNzJX67%2FTeB3B0%2Fztx13yDDC8WyLBGU0%2FIL4XBBEBTIWAJAvM\"}]}\r\ncontent-length: 4586\r\ncf-ray: a0b2b23c9d528deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4586,"size_decoded":5367,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"906954bc15f0b43e4ae147813fbe198c","sha1":"eecca1a2ae787701b3475b58fa1c1f0bd50b52ce","sha256":"b138abe5705548663a841f2c0709158cdca3e261124874e908e5ca7a422e1d5c","sha512":"2b8ed20a3e70440d23f202a2e783891d0de2eda0ac93b1871694459d4f3f97e0308dcb5d6ec2b4c6e8fe113b8b44c1fa1acbb42879869954e917d8fc1656ca2a","ssdeep":"96:21UwGFFJbpV9AJ2LaRyt3k1Fx/7mjLCGp16Wxjmmy:+UwG1VV9AJ2ORyt3k1FxGLC4Timy","tlshash":"fd917d1519825b64c220488a9f2ee0fbd56793c8172ca70795baf97b4ce6c8721ec223","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.129341Z","times_seen":50,"resource_available":false,"data":null}},"time_used":587,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":587,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ec-1f1eb.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.499Z","timestamp":1781370495499,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ec-1f1eb.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-11a8\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=TgR4zwzuJn9wE7oWgZlkthymYmR43nvkqY1QjH86zxboxnAi5dxaJsC0FO9ATbOAOtJlsVTLLTgbzFJ1j%2FlAa9%2FBkDrjJ8VD7wZ2RXV9DqsA6NntK6HW2RSGkCAL6L7zOKQY\"}]}\r\ncontent-length: 4520\r\ncf-ray: a0b2b23ced708deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4520,"size_decoded":5299,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"6522886efff653dc7bd775c00c8b7998","sha1":"5f2d212c88383b337c45c1c51ba181b45c0b13b6","sha256":"39c283f169f90f1fee264f866bdb120a4e7137d72f99d4dd3e410e5f1a60af37","sha512":"cacce06a43570883c56a3fb758c45065091e069ee2cfad90787c3eb2e5e1a568b69374207630d6118f41c4917fef5525e98a4c6f1130a44666b39c5b5563b38a","ssdeep":"96:SMQRJKNgXPpNL+G10pNkOLzgmHm2pfYgWGYe6UJVe42XMUzMrgWqc:kGgxQU0pHPx3YgW+VJgFFMrgxc","tlshash":"9a919e336aa79ce49304723d6a8a8270ebb10f5d47e1940b07ba38714c37f0dce9285e","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.129947Z","times_seen":51,"resource_available":false,"data":null}},"time_used":575,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":575,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f1-1f1e6.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.553Z","timestamp":1781370495553,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f1-1f1e6.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-116c\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=XfGlYuSdR8I5uxm%2Bl5hZ13ppvdqIzzerPzhrSAnAih4MrjB9fR%2BmpIIQu%2F484n6eLepQS1fgS5mnEICwWLu9yOLt%2BCcowWfzkZRMdLjNOrwCE1Ka34GYrhtpmcPNHzL5hxLh\"}]}\r\ncontent-length: 4460\r\ncf-ray: a0b2b23eae048deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4460,"size_decoded":5243,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"0affc5b72bb4f04cc949079a77423179","sha1":"8d3101b3ea048983ce1370c3c879854a0223084e","sha256":"c4d6a91d5237db7689d3256dc83c367256b635346c592fa5cbc3b7358066119f","sha512":"780779e8b52d767df5c5f0aa8d64afd34520b11e53aca5a28c90d902f52963719be5cfe031ba08403492cd2aebabfec9dbe3fae4c5af016739f2e63c82ac6ebf","ssdeep":"96:76hg+QfWj1dkr3lss706Pwehgx2renLBJwsbkvW67cGeNyya/KJJYGXm:u8rVdQ6Pwehe5L/X4vAGeo0bY4m","tlshash":"ff916cd71c52ae5b0ae98f055ca3c39508b0ae5cd04351598bb2343babbb242a3351eb","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.130528Z","times_seen":50,"resource_available":false,"data":null}},"time_used":670,"timings":{"blocked":100,"dns":0,"connect":0,"send":0,"wait":570,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f3-1f1e8.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.590Z","timestamp":1781370495590,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f3-1f1e8.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-14ab\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qwwcnHBPOjIZHRf7qKxrdSrO2Z4Fv%2FpS95jVvEBX7Ux2ixVnUAYOddXprFDQhoNCpaVe4HLQ1Q5VnMfFpbd%2FL%2BY%2FF18RORwjOZTdP%2FCl%2Bc5um85xH0isV6XcJjkuoqMQ1r8N\"}]}\r\ncontent-length: 5291\r\ncf-ray: a0b2b2401e688deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5291,"size_decoded":6078,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"7c7faac60e5567604a3fbd0303fbbf57","sha1":"e72f684515cbd1cd7ec7d8dcc07a8acc707e4709","sha256":"36ae211e1b0e9c35787bd3fbff2331fe34a29103ded3bf0ac2863b90ee9a7dcb","sha512":"9cc9c91b38490986b3d92d83689278d12229a0d1ba5365f30bb95c34050235e971ddb0d464f43c29b17385b6aeeba69c14b3bbe5950f53d071ea299d7137d55b","ssdeep":"96:CzTVEZ6uyjnG2EVRiWAkav2rKOP1lD7r4XjAxzh1jninV7:CqQugnG24RpKEhxzhM","tlshash":"c4b18da251e57cb5e82c4b992c0a00a0bd49d629711b4f6ba8efc7b2a7c78c47d5f508","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.131126Z","times_seen":50,"resource_available":false,"data":null}},"time_used":906,"timings":{"blocked":323,"dns":0,"connect":0,"send":0,"wait":583,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f8-1f1f8.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.639Z","timestamp":1781370495639,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f8-1f1f8.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e7-1f1f4.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.401Z","timestamp":1781370495401,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e7-1f1f4.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1197\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7y7wiO4Cj%2Fl%2FTBe79e1uSJTH4NX6ZVEe4decoI79O68jbmVPqBUDT4mE%2F6G4nCcWnqM8GZXk7t7d5SrEcUmIejrT1hVFqwG2sk775tBnRUNaZn5bhbbPwZ8cLnFb6nAXkw%2BQ\"}]}\r\ncontent-length: 4503\r\ncf-ray: a0b2b23c4d318deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4503,"size_decoded":5286,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"1acd9fa787f298d0433d2034efffed00","sha1":"013f76a07969073cdf2ded1c88c1eb7f9d777a3b","sha256":"c828b5f08841998b615f16b9be38bcf650daee8f4a9d7737dfd731323606d53d","sha512":"72f52b02897ba5c4e29ad9d2404ff88d7345da77febbb530df0fbace11210c7bc921b2fe89d663d655aeb2aabe837d24e1b01e264ce0bc9e989fe8e2cb488484","ssdeep":"96:yNmhLg5d5AYcG1BOVhGy1qPF/qJI2wLVE5hmYrmedDvoL1Qtf51MIUI:mmhIAHGyyZaI2ey0XQboL1Q+If","tlshash":"c0916ce63e066f458c9b4b284c9121e8b0d69d37f6332ffd46c06b549a927d8958d212","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.131671Z","times_seen":51,"resource_available":false,"data":null}},"time_used":576,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":576,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f5-1f1fe.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.607Z","timestamp":1781370495607,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f5-1f1fe.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1160\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Tl52ODF8VfFyNOmU6qERVgpIJb6h5u6JxnWj0LcYbzJSIdRulDLpx5H3abhOGI7OmNIQ5B9%2Bk7Ui10zCo5imezmkgGe9md%2BdsKyCMJrk94mq7zQ%2FzOVcLYDaq%2BelJ3Q8EdeK\"}]}\r\ncontent-length: 4448\r\ncf-ray: a0b2b2405e948deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4448,"size_decoded":5231,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"642fa4a3127fe0e3325dbbd5ebd94e45","sha1":"3078ee85d6750d52950e5b75a671e5e29df29f32","sha256":"a02fa7139b97c7127170faeda9c92364ff1317e3b5cc44ff2190c82383684a81","sha512":"e21881fb89bfb93f51913e4beb7760e4facdd4f920eec823fb1f9daa5023f709dcbab2cf39cdc93d236a7db560aa2380c952895662a5ea800bb8ad097052e1e9","ssdeep":"96:NtIwyA+oaRT0GQSLZT8h3PZXhFjIDmd+32l1:NtIwyBoETBx03BvbIg","tlshash":"a3918efc7009f897d55a21835594627a441f8f481f0f0ac1aded7bf2a6eb1b193f4104","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.132214Z","times_seen":50,"resource_available":false,"data":null}},"time_used":940,"timings":{"blocked":360,"dns":0,"connect":0,"send":0,"wait":580,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f8-1f1fd.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.632Z","timestamp":1781370495632,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f8-1f1fd.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f9-1f1ed.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.652Z","timestamp":1781370495652,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f9-1f1ed.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e6-1f1ea.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.667Z","timestamp":1781370495667,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e6-1f1ea.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-df0\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IeOLV2jYI70DQFEcTuCP3%2FMp%2BUsdvbdwdCb7GJs7FmxWXnRkF%2FhLriZMX1bgHovP3TXYE1VbsZ3IGAe4rc9Eppvu65SJn3cxd92dpbtKR8y7isEaZODsDd9GJFF3GpwrMTaU\"}]}\r\ncontent-length: 3568\r\ncf-ray: a0b2b241cf358deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3568,"size_decoded":4348,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"93353bdbc0b4eb9e99d96a3de7d29101","sha1":"de206106be57f0c58f14712960db84d75a64622f","sha256":"3a80e66921c75a42306763c61bba6f2126e47e357871ea0cbae673f33c4c4b71","sha512":"94c2618bd6392c326029eb20307011d8ba9134c97add5991d2f6cb5e689f9d4c91ea4803e111bc3b2ada6c9544367ed89f4186ef191e98e71e1745078563d7b9","ssdeep":"","tlshash":"2c715c051ccd0da4819ddadc293598d5845c6ea92496ef577a32311e0ebfe801c74b17","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.132801Z","times_seen":49,"resource_available":false,"data":null}},"time_used":883,"timings":{"blocked":589,"dns":0,"connect":0,"send":0,"wait":294,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e6-1f1f4.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.339Z","timestamp":1781370495339,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e6-1f1f4.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-121b\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=XVKhJroamCCsICWLOUcPbtlTobWUL5SemIRyYGpGeBU5ATRGES9zRvinWXEP0tAPrkuTqEQ7LHRLKYInxyhYSfqss%2BnFO%2BA03HVa6Iz2PWsuq1L3f0Je%2BgeTRYU39bv7NF%2Fj\"}]}\r\ncontent-length: 4635\r\ncf-ray: a0b2b23bed0f8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4635,"size_decoded":5418,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"98d433fc9d4292d721c6ea342c08f3a5","sha1":"91c960197cf896b034c1904862e4fa1cddcc43d4","sha256":"d86f5ac3bcf440249db556beba31f0803c56b0d8e1707189d3a3552fec2e2ada","sha512":"cf0d089247b780646e32c87dc940ffbeae8aae68a1a90ee77e2e86ef8a395f941ea05e559f6b09bc7f8a929595cc029bd296ad8614e314fec1ad0957e0f4ab75","ssdeep":"96:mzCO87tGte0d3+XRgCEAGmVSgnFkKE97jf1k7gbgZnkkHSpcaIMA9:m58tGtDIzEdCS5jf1ugxkw7IV9","tlshash":"b5a17c1bf8e0c858c974574a991be016d9b2ac04ea074e43bd1eb097d6b346b3bb63c1","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.133402Z","times_seen":51,"resource_available":false,"data":null}},"time_used":585,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":585,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e7-1f1f7.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.407Z","timestamp":1781370495407,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e7-1f1f7.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-166b\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dXC0GWi9wrpxhzyKvOr1hlgImvsy1JM%2FoZfIbaYBqKWeGZf%2FOVTe7Fg25Waq1FGfKGJ%2F570xRZsZD%2BOXKzGKSh%2FAvX8z%2BjAjiDbjddzQmjtxW0PaW965DsCOiw9pQ8lWLm40\"}]}\r\ncontent-length: 5739\r\ncf-ray: a0b2b23c4d358deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5739,"size_decoded":6526,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"517d8def81b5f18f04fe7aa9ec087449","sha1":"3e335c832f514fd4182d95df41a4ddb978b3a596","sha256":"36f5983af31271542a7ac06c7d073d86a0abfac021a524fa08dae5704fb65754","sha512":"e75a45d36b6165ff6239aae873d45a879287672422b6960c37ac8e4324eb5789233ec4b4171bbd5346e2d880c9e05075221e41d2aa591acbcdea7e1e3cecc560","ssdeep":"96:5fDdpZ2lSUFLp05MzWQFx+Tttu4cF9iWuhlnnXGMzvt5Wfzn0UWecXiw66J0P:d7Z+DrzWQFxM/V+ahlnXGMrqWid","tlshash":"c2c18edb25abd909c97d3e2c4f8a3693461225a73b1c602c710ced5436053d9c1fb3e8","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.133997Z","times_seen":51,"resource_available":false,"data":null}},"time_used":288,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":288,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e8-1f1ee.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.447Z","timestamp":1781370495447,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e8-1f1ee.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-e1b\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wv3ZVGvLNMFCbkotVMGrXu4t8KZiZxNd%2FcASTHq6eJBeVGBdeoiVKBg0gtDKwLQyFdfbXTepbAZwai4VA9KXbP5j7yLSMS%2BiF2oNh5ySxP9kj7w3S3mmPzlJ8AfC3Cwo%2FzWB\"}]}\r\ncontent-length: 3611\r\ncf-ray: a0b2b23c8d4e8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3611,"size_decoded":4391,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"1e4aa7070373715c56f90b4739147826","sha1":"df0cb2272abcd4c3be4e17de3a7fa0bf6421d457","sha256":"17b1ffb17ae948482cdfe8030757717d75c5158d9394b17de2a35ffb7c9de3ae","sha512":"28ba7b99271bf69d16d165decfc09deaef2effc4a83abaf41170b62a74ca92589f4f5ea5e25ff68ed7df07694f3cf180371a43e1e126a411c9a57038afb9d1a4","ssdeep":"","tlshash":"41715cd510c07cdd84ad884447a6843f9948ade37e30151e4bbb7a36e63c3e8507e761","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.134569Z","times_seen":51,"resource_available":false,"data":null}},"time_used":293,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":293,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1fe-1f1ea.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.679Z","timestamp":1781370495679,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1fe-1f1ea.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-d94\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=daDvQ5yvS%2BjoFZzLY3%2FM%2BqU1cQyhwamoa9wrLrhsyuuK98b4TlBCCXfzqJOoTwypx96yw8xfJpN1uNQQ53eTfSQZF9bV%2BwhuxVqEImZJIy5Nlbm%2BgQNm0A0ZDN5aTNzSRbGd\"}]}\r\ncontent-length: 3476\r\ncf-ray: a0b2b2421f4b8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3476,"size_decoded":4260,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"a655c675c227f38b1e8dedbedeae16f5","sha1":"001b87e4fb95dc846f860996747a383dd13a98e8","sha256":"fe3f5f1f6b6b2db80d5bdaee2da885e0da49b63e1abb77de2459b5547eac7966","sha512":"2e117fe9821b9cf22e2c239f7f929573528b4aa4f1d0a5911a1c094c6ad693cb6d75adc39ad9217497922bbb43a12509b844fb2629f448313900634d04b46b11","ssdeep":"","tlshash":"a5715c4b4f174c5452a06f160eddc7189b205e7614a902f07ba3be8cb676b4aa35247e","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.135115Z","times_seen":49,"resource_available":false,"data":null}},"time_used":929,"timings":{"blocked":639,"dns":0,"connect":0,"send":0,"wait":290,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/main.82895b292870b429a101.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:04.399Z","timestamp":1781370484399,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/main.82895b292870b429a101.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g0$t1781370480$j60$l0$h0; _ga=GA1.1.95620750.1781370481\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:04 GMT\r\ncontent-type: application/javascript\r\netag: W/\"6a1ba772-72438\"\r\npriority: u=3,i=?0\r\nlast-modified: Sun, 31 May 2026 03:13:54 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qEOM3eqEH1QYyVoJl7VxBoFCEsfkubK4g8RVKbR%2FkbFySEY2Gmh%2BPBT6cgDhw9slnPTm713yz7h62qh7Y8wL05WE23SoKPuiQSqGqNIpIxfk5wZHas4ZESFqm6Nj6XH%2Bm0Na\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b1f77de38deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":468024,"size_decoded":161159,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65415)","md5":"8b89546b9b091b3656c8cb1bad8b2720","sha1":"adecca981f12867e3d72b6bd3392368d454e396a","sha256":"69c3a7ec0989f9f71152a3e8d769e6d63c1721be47324394206642580ae84e54","sha512":"cfdeb27d763d2a8438c23137000b4a7ce69c4031205374d63b643edd284a4e48cad346105667299c4990def697cc438bc0e7b65c9164d75729debdf7c3576dca","ssdeep":"12288:ncNxcUGySPhYUmKAPzQ2QzN1HcBj8Buos3vhqqullR:nqxcUGmZijR","tlshash":"50a44bc57196b4e963e705e694bb0048f6385944380d8464f1acfcea3e368eea273f5d","first_seen":"2026-06-06T06:06:39.167159Z","last_seen":"2026-06-13T17:08:37.135681Z","times_seen":6,"resource_available":true,"data":null}},"time_used":1994,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":581,"receive":1413,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f0-1f1ed.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.419Z","timestamp":1781370495419,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f0-1f1ed.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1570\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DOqvWm6ItL5piJMquItK3ZdJ%2FbfuuHgjLCMB1jhCbIVMdnlTTOn9RmM9Clbxc%2BEyHv%2FQhwiHHOfm2ZmfvW8cFTPXvoXfyCQxmtSk393AAMUioZenQh8JZlxugB8Nz7qhJH2h\"}]}\r\ncontent-length: 5488\r\ncf-ray: a0b2b23c5d3b8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5488,"size_decoded":6269,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"76445dee727c69677e1c0b4478d3e72c","sha1":"a23b4b341bb45522fa836d33c45ef8582d6d5cba","sha256":"310c205968ca1acc8b2825199dfce7efcfbe66b46bf7d1493bf44e1f46c37f01","sha512":"9c99b7340208236105d899c3cd8657d92d4391efd054ff658877a3d1443806ecff58a1068f5f78d09f4b1ff85b07694992f6eb4afc16eefbebcf9dbed0a31986","ssdeep":"96:bGP8PhaIgz2bJHlQb6+kWdBN41IoRw1668QD34fimjThWK4u7Jqf3Jt8RM:aFI7ab6TONhhcDQkfXtWKQ/yM","tlshash":"56b17cc5f2d278c795fb8184d01e8d3e919e0e5c863b08008c733e6aee3f9e59466e19","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.136693Z","times_seen":51,"resource_available":false,"data":null}},"time_used":589,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":589,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ee-1f1f6.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.539Z","timestamp":1781370495539,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ee-1f1f6.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-102d\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LhEOUAZH38ZpetaRgwljEtWo96KDYYQV6vJS7HQp31VcIccLbluXX%2FalaWng%2BxbFquohiW5342zTOYUriS94uksKe7JTmnfscBnk64%2BX5vjGXfMStFNbLyEJigQJ%2FaHMBkho\"}]}\r\ncontent-length: 4141\r\ncf-ray: a0b2b23d1d958deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4141,"size_decoded":4924,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"1ae48224bd5c58aa86982f8e632fdf31","sha1":"27ffef758cd696a95738cb8ae664a9da4b9e0624","sha256":"1c2bc0d8512173316c3d69b69c80f22107019b77d285523ead220e69e4941923","sha512":"f4179aa8adab224fb6ca9c83528ec801f403dcf82cf8e542357f3d0efead6d8d37dce488bb63d40fd2df4a9797ee49ee7938e3f645d44bbdab7ed0032ad3d083","ssdeep":"96:c/pPUsQuQGcfT91MLsb/G9EMlrwXYZGI4Ezmk:Mrjdcf7kTX5wIZGI4kh","tlshash":"e3814bbb672127a8daaeadb0e096300d1ee3413fb9050e7a10c4fa5f5fc8506951d4c1","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.137509Z","times_seen":51,"resource_available":false,"data":null}},"time_used":582,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":582,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ec-1f1e7.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.669Z","timestamp":1781370495669,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1ec-1f1e7.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f8-1f1fb.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.471Z","timestamp":1781370495471,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f8-1f1fb.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-129d\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fUARRhMCYLk0yWgZ8OvtlwRw%2F%2F8TvTJ3XN%2BaJGVJYn%2Bc%2BLOyM68pFchB7dCbSzRF25J%2Bib4Piy6VPgtY7NQAQ%2FcdwsosUh49XAhu14EhPSUxMFULxSftIEfbqraCFPCjwxx5\"}]}\r\ncontent-length: 4765\r\ncf-ray: a0b2b23cbd608deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4765,"size_decoded":5554,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"bc4c71c5b3457c2cd465d4c67633a793","sha1":"cd42f9ab302d615eff343cb845857b02e9372fab","sha256":"e007d8363204c5a55653c00ef86c3fd0d29feb251369906fdce32a0283c46055","sha512":"aba029efaa790261d0802a04e7e669e46766b565bfe67297184f7819ddd3972a38723359bfe027731b2c855f85516a7818020bce366097c8026acbc1bbee18c8","ssdeep":"96:fP55dt6Wq/UTWWb0/QXLVRe3yQ+Fy9jLkoZqy5s71A1NHzgL+:nltbjKWYkLVRe3P0yjLkvs4yhzl","tlshash":"b1a17c67ca1941a9574ec9afb43081cdce99cfac620eee1e4d2975ee0d7868b5350c0f","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.138162Z","times_seen":51,"resource_available":false,"data":null}},"time_used":596,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":596,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f0-1f1ff.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.547Z","timestamp":1781370495547,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f0-1f1ff.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-180c\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0G3jEoFFm6fsuemA7B35hwm%2FxFL8WVXpal2g2MEo0%2BOnBCKTYhxWWS1OR3vEhno2mImuKoiXms4YOzojbbjkR%2BqCe%2FjfAe%2B0erCb2XJ76ODfNsn4BkTnw%2BB%2FiZLJHdOdsR6Z\"}]}\r\ncontent-length: 6156\r\ncf-ray: a0b2b23e2ddf8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6156,"size_decoded":6945,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"66995f36d6d8f62692f1b9a46d93c2d6","sha1":"9874a4040bbc4c5fe710434a51744cdbbf849e6d","sha256":"eb0afa5cd9bfd452decf8fc4ce70638e1bb5aa5b2e7ce9a2172283bc74c1f435","sha512":"82e99e2d051fe599fdd21b05c1b002e34cf7c848e128616ad36c2b1c429844606cd00d9b0dc07b32c647f4b0a2a213df35c8b204a8797e3fa76e54c8563b795c","ssdeep":"192:CD2Atq5f5zsK2eF3/XLVjpJJK21xMYxfoT9:CD2WwZNjxMYU","tlshash":"50c1af11a362df2c4cd4406beacacb78b9ac4d14b2b605d0e37239c922f6167b437398","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.138751Z","times_seen":41,"resource_available":false,"data":null}},"time_used":596,"timings":{"blocked":21,"dns":0,"connect":0,"send":0,"wait":575,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e6-1f1f1.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.287Z","timestamp":1781370495287,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e6-1f1f1.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-17de\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=scQslxUHBrLnmdbxe2MlKfiLRZOWfF9VMERUvPGHJh9OUJuKq0ChSXxTwnEA%2FuJnVuqHvTnA526%2F%2FowWXVa0W%2BvnfQq3xBt9icPNtkOFDGDcwWrTCnXde43Uq8mggQjxVz5H\"}]}\r\ncontent-length: 6110\r\ncf-ray: a0b2b23b8cfb8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6110,"size_decoded":6893,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"7dbcada0a572b03519728bbcc0b94d62","sha1":"ef357bcf792fec54fb4cad73085fde508113f3aa","sha256":"ee5c0468ec8fd5275510acb47cd38c9bdf35f1d6d4d9d982df07d73096e9f500","sha512":"1db531abd3a22895d06f1bebd7e0fb7437d2afabb57e80fc4b2ff991521c0a3d29d260415d9b4955eade9bf9eaf39fa2bfac2830ba5c6e117a0bd0bf3483164c","ssdeep":"96:njC48ynpYtUkWBNw8EwXMEFxoTxrCYrc0gm+6hTYwrNiMA7RljXkbIxakN:n24nY0mGAxrCYJgmHTYwrkMElkK","tlshash":"0ec18e02985e9e0153b62b7a73333d9f9c507c521d45d24a2e2b42b1a971c7fe7c1926","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.139354Z","times_seen":51,"resource_available":false,"data":null}},"time_used":599,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":599,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e8-1f1ff.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.454Z","timestamp":1781370495454,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e8-1f1ff.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1005\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rARkKa69x%2BrR2kmgQweAeZrOjyp86869oKG4WmMsvP%2B0cucz2PQ0JD9RW5InU0npmZAU%2Bb69hVnpvdJrwoaPma84q9AKjX%2BA6OduYakFCMAdrxVtqVRyDZ3R%2FHZDEt7wBS27\"}]}\r\ncontent-length: 4101\r\ncf-ray: a0b2b23c9d558deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4101,"size_decoded":4886,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"ce78b4aa3a6846060fa0400c7aacbe38","sha1":"f1675097ad2ebb4f5e91d044f5839d776f3e2b1e","sha256":"6533e6964c7033acf627b78d9eb394669f8cae0c1700d8187b2ad51c2102e6c2","sha512":"d895f221c7e64a25f5039d47c84fd5df8f31b9ec467595963d998592e0210bd3e870b901555fecda25e5396f786f888ca2873349c49dce650d3e33ad3ab105b2","ssdeep":"96:/S0D21e+Vvxh55MAIwBxTdlU/KDeTKGYEYZb1:/Se2zVpb2mBdQNrk1","tlshash":"c3814c8f6a19cb5b851086973c74f28efcfe6a343eaa45292ed561721cac411258802e","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.139979Z","times_seen":51,"resource_available":false,"data":null}},"time_used":597,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":597,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f0-1f1ec.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.552Z","timestamp":1781370495552,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f0-1f1ec.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1622\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MvPafvC6wPsWzuDCvbAire4aVfIgA7M0zJrToF118qSK6HsPCO%2FlbpvH5BFE2OQaIUGSQTwOphXCJopUG%2FycTZYfM8sRu7M%2Ffbo%2FmG1pg1eH6i5eAj5vMErTcpsZ9INY%2BqLu\"}]}\r\ncontent-length: 5666\r\ncf-ray: a0b2b23e6df18deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5666,"size_decoded":6451,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"ae9cc76f78d6663ef7efe2f1bee3a31c","sha1":"714c38d6f3b5602cbff99a7e0547fb1c262e33a8","sha256":"e64841341b3bd96c9c65ae99bc92ccea09364843621dd6ce51201ca396c37af5","sha512":"1626aa1b931b49e81b7b3d4ea213a5a3c00a9e7c1cd2cd58eff3149c2e8b3ab9d9ef07bb4285975328ce30fb101fca7c3d28d2d14da2d0ed30e331fce2d8295d","ssdeep":"96:5nT57JVAW1CfPLmYh5PY8oVT68J0x30S9GljI/vMjoDmD5oFMKvAYYvvY/HdN:BV7JVAWcfDmYhy8oVT6cI/vSt4MKvAh2","tlshash":"f2c18d8e09c3aaf3df95eda05024da16fd984e2aa04d1356de19c10afd4ff712b23485","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.140592Z","times_seen":51,"resource_available":false,"data":null}},"time_used":637,"timings":{"blocked":59,"dns":0,"connect":0,"send":0,"wait":578,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f1-1f1f7.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.558Z","timestamp":1781370495558,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f1-1f1f7.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1a33\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=J0b3I0JiFzEmJIQVgpNGnZtM3REkEtI4KyQCz3DnK69w81MHrN2xMEpvTVt3%2B7DxH8SWGlpgRTATolaSHiqDkDa%2Fztv8suUNxCAHmaIQhxcrIPU2QzAXQOz51a1XmEEXYe5Z\"}]}\r\ncontent-length: 6707\r\ncf-ray: a0b2b23eee108deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6707,"size_decoded":7486,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"e147426b508c2758ead5ee54a75d78f1","sha1":"6bd9f10dd108789c6e2783483e5ba11758ab6820","sha256":"34ab712df88cff48f6a533bfa5c5bcb0a6d93d9522aa07be1f1230443840d3a0","sha512":"40a2f669a65592cc447b16f43e125df339a7ff81d7f51961f20a5ff808458ef64412a2bd7e34a0e4ce7b8e71836cb078c932cbe8ab8eaf5c1469c3e6de7e4b96","ssdeep":"96:vIU6VJX7YuUGNWUgOgFSA9gPh+lQH+bfKhEvZmwALyN8WaMLOrr/dQyxsj25dxrF:v4X0TGN25AA9Vmum/Gf+/dQyT9wu7","tlshash":"9fd18d01a144b964f94d3f2a46c3216c6ea29e36f7f812ac7684b1b41bf44c52df9f87","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.141295Z","times_seen":50,"resource_available":false,"data":null}},"time_used":446,"timings":{"blocked":139,"dns":0,"connect":0,"send":0,"wait":307,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f1-1f1fa.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.563Z","timestamp":1781370495563,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f1-1f1fa.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-fb2\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pmU9E9f%2BW95jTaPVrImNN6OGussdlHYkGZLtwdLIILBGypfftNyBAJfaodklqhX%2BNS6bkgMYeEWXlNqsU1ILTgTvxR7xto6bmwx3yCtjQDARe3TmYJei4HokVdSMEUI7ac8c\"}]}\r\ncontent-length: 4018\r\ncf-ray: a0b2b23f8e318deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4018,"size_decoded":4796,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"5b4a1a93ce9d420addc6a29d8c2616e5","sha1":"ebb6503db590c6fe944fdb16054ae26023ce1536","sha256":"d9a860b6ab8f98b338fa6768b53fad600d31498a75e167ce6e609a802689c391","sha512":"915c4d7e49248316c3c3c714a2f6aad8252e2c0fe83f8fcafdf3ae229a5515bb6873058d1aff9f0752a4620187f91163ba38801692f911a213483dd5c085c933","ssdeep":"","tlshash":"dd817d89621f9adec9643422ad711a9d5e32cd85f124925af0fdb4a4b436cf238c254f","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.141911Z","times_seen":50,"resource_available":false,"data":null}},"time_used":800,"timings":{"blocked":237,"dns":0,"connect":0,"send":0,"wait":563,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f7-1f1f8.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.628Z","timestamp":1781370495628,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f7-1f1f8.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-165c\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BrxMRKpJ%2F%2FjRroHAgNW9Nfqo8B0DCRB8k6L0fDzxNF1LlsjkxZ3m6Tw%2FZWjK1a6r4Md2td0iKKY9ICx8SMtH7VtnadmTHwLPDszqcgzUYWxN1crHjQ0AgaUAhHF1%2BDhOUzo4\"}]}\r\ncontent-length: 5724\r\ncf-ray: a0b2b2409ed18deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5724,"size_decoded":6507,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"1a2f2a57af8c2132a3a7fb4c48db8a0d","sha1":"cf88806f93c5cb31567e80b80a4892b0ea492d36","sha256":"82e8c7b01800111d6f06ad07b43fa1671ae8f581e2fcd5b0899f0460ddbd881d","sha512":"1a731eb70fc70f409a4dc9fe66e65474b30e5fc61ec059eb375dd511c6d552375bfd1c657bf0c27cc4d296823713fdb606ed4258bef5de440267f5e4b51a0e27","ssdeep":"96:1mcHODziOctTGsjwkldifsFDAtj455hg9v7wd88qE2n9vLQWm4H97+4UhUMc+Dd:1mwUzi/Gql3FX55hg9TwULvsWm49yBUQ","tlshash":"9cc18da03b5eee3847da614a1b27d120c6b1ff5298676582c223c53b5dce3ca97e8147","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.142544Z","times_seen":50,"resource_available":false,"data":null}},"time_used":697,"timings":{"blocked":398,"dns":0,"connect":0,"send":0,"wait":299,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f8-1f1f4.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.636Z","timestamp":1781370495636,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f8-1f1f4.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1189\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hjh71tVfGgee9UHalazK1Xl6qHocahXFVv%2FTEBSUWZSMBqhtAzOowQWsi1sstjGQS2i%2Bs4fzxeRQmvJaQKHSz%2FG7nEvailNj1frPzOFSMdvgTQMCFIH6afKOXIa%2BZkMtBy1e\"}]}\r\ncontent-length: 4489\r\ncf-ray: a0b2b240aee78deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4489,"size_decoded":5272,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"59b367512a1e77f09bbde297d480ee69","sha1":"b83aacdd99f8d2f2bb39a21624932740e4d8596f","sha256":"252fe91c9648ac1a449c5972c2afa916c21f8d7914e2de36ee5f2536026389a7","sha512":"b56068e1c08c4e426429e28598299d2a3ffb0cb214e319a3deb0980aac6c8d186889455d76eb14e67fd70d14dece76455c02a869cb88ad20217698f06bf0bb64","ssdeep":"96:8jkRuxovJhcvbxcFwybMrKBpVbiHejOMxhr+Fjl0Xix:82RqvNwwprobief+Fayx","tlshash":"db917c088fd54c0e9054b3cf931df9a886a01f15d93ed9b18a697ff2e73222e01908f9","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.143168Z","times_seen":50,"resource_available":false,"data":null}},"time_used":700,"timings":{"blocked":414,"dns":0,"connect":0,"send":0,"wait":286,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:07.589Z","timestamp":1781370487589,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/9722.89b6bceb625c55228313.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: worker\r\nSec-Fetch-Mode: same-origin\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:08 GMT\r\ncontent-type: application/javascript\r\netag: W/\"6a1ba772-2f81\"\r\npriority: u=4,i=?0\r\nlast-modified: Sun, 31 May 2026 03:13:54 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bGHZ0erjzs0QcgqkZsHsWL4gukc8cl5qeWPHT5aB1XqnwQ5MDzfLqyZAUvRDmsdCydLtmO8F%2FVGZYIn7XEnQjhTIt8SuWEe2pUz5PulrcZs8XwgzOn46g5bFouQIw0Sh7h0T\"}]}\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b20b7a5f8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12161,"size_decoded":6508,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (12107)","md5":"d43a276649bfcf378eae694f9df3b475","sha1":"00965b1173d56df61b1a183a61b7c180fe4cd110","sha256":"7a4a7773af250a2486d451dc08177255af1fb92f8b8cf41f24eff07345837e3b","sha512":"d9d4c26e06ffc589ab6f9aa47839850d9c9476f72c23f7e139e3ec394f7dbc1efbb52d1f49a3be1de9dfd6bf8b24c93c414d8f6ae5822a4143df302a5c4b29af","ssdeep":"192:t0WGLjOqrc38On35VfGXRWQeaGBSNLcrRdj4CqIbEoEhoCfRERKGkEmSqfigty+E:+WEJrc38O35VfGBWEwdMChwoEhbZAKGp","tlshash":"ef42e6c52742643ee397a8d9987a00533034da587419856c7b2eaed73c2bdc6f0b1f72","first_seen":"2026-06-06T06:06:39.13944Z","last_seen":"2026-06-13T17:08:37.143765Z","times_seen":6,"resource_available":true,"data":null}},"time_used":879,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":612,"receive":267,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e6-1f1f8.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.322Z","timestamp":1781370495322,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e6-1f1f8.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-15bd\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LSKqqluhtXeOnOCjHmEmf22WuQLlAMCKlBarbt28sNscHt4pEhqHlCUjH3K7I78Tv9rYjUBMqq6KxeAt8f4bVqzzma6%2FWcqBbGC1d6FL0MnFDakNthVm2RElAASkZHvJ1AwX\"}]}\r\ncontent-length: 5565\r\ncf-ray: a0b2b23bcd068deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5565,"size_decoded":6342,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"d9df1638dea879ad89fd0fec714319d7","sha1":"e269d67ba96b298634fb205dd6c1b76bd7a4ff71","sha256":"62c61f1a9c076556481f1a63a5e26d2321f40ba142920865e5202e4da2467846","sha512":"ada45cebfcc0ffe432a1e748d09211485d4c89ad18b3d239d418a676be2884895459168fc73b9bd9f5b14c3b01dbfc0587e4d84c50d457e0ec7b68e499b9b96d","ssdeep":"96:O5wb/L+QkdExdVfc0P4jahzGOW+EVyFZ1UocCeATr1eMKSN/T7:O276QkCdG642hzT7EuGoneEReI","tlshash":"8ab16b900b6212e4d0685b34c270dc0d13e83f9818db611e9b8bf420ad79cb259e3f6f","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.144416Z","times_seen":51,"resource_available":false,"data":null}},"time_used":599,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":599,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e7-1f1e6.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.404Z","timestamp":1781370495404,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e7-1f1e6.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-12fc\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NvryPSHsXglnYRSD%2BSWA6TBrk%2FQ55gxpN%2Fj44o9BqxkVWgmNBuQ%2B8%2Bq7X8lYaYnsvx4ccfXbhNTL1O0D9UxNXaiWGrtfROQeyJEqmmCgbYa1RjU%2F8fuBbCa0udiH%2F11rkQeT\"}]}\r\ncontent-length: 4860\r\ncf-ray: a0b2b23c4d338deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4860,"size_decoded":5649,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"ac5c244069bad7f50d366d2e972d60e8","sha1":"c6c53f0a8b2633c1660a02212a23205b2801f490","sha256":"7f1311de4fde2edd1122fda33ce0896856d818e21e2d1061a8c66f25ce67cb06","sha512":"b73f78e248bf52866d451bd8a3e42360b13b72b02f7ebf4886270683f4c06f6b519baa6d268c919b7b7f9c5506eecac530a3d62b066902b641963dc90da7480a","ssdeep":"96:ZqorYgq9xVgPSTeqEguM28tRZZAivgxLvnEuIDJ68CkJ/YmfZDM6K1:oobEY2EguORgBboRjJtfxM68","tlshash":"f5a16d9aeea4be34a3b9332106d70a19ed301f47680e24448f77793ad6b535ecd66017","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.145038Z","times_seen":51,"resource_available":false,"data":null}},"time_used":595,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":595,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e9-1f1f2.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.462Z","timestamp":1781370495462,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e9-1f1f2.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1728\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SA9zdgGl4iKTeDGdvrJZSYsXsn%2FLmdE1H625ffgZixvOzRMvChoKKsWEy6MH8l3ueRhk5MGYjvrnXHNsPnW3b5n%2FOqxC7%2F0FNZCTGKEiuZ9WcwiHEJfv8levp3IgOXJ9JBtW\"}]}\r\ncontent-length: 5928\r\ncf-ray: a0b2b23cad5a8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5928,"size_decoded":6709,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"b462459c20514cbba133443828a2aa68","sha1":"800a8fe4f6befb824f9d82e2661029aead9fe873","sha256":"48b10fb5cbc784b5c3932baca0f8309e6f8114fe1e81f636cef19b85583365b7","sha512":"4782b8269b498df85431d3c440ced08719b263681d458653f5df8e654b4ab00e5c7d46b3403ce15830de0966147931ab6a0ce571d90b6f6ebc8e68d5f90307b4","ssdeep":"96:8mwErSe2rRO8lDpDIM/27wm3+RHAGM6eGL7Qs3cyHstxCVQnEJcjQ+iruk:ereERO8zRiwm3oAGM6p3QsMuQEuNkuk","tlshash":"4ac18e8eeb221f2cdb2d3611a922825128c35fb7b9540b175d18f8b48d30fe447e9c0d","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.145678Z","times_seen":50,"resource_available":false,"data":null}},"time_used":590,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":590,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e9-1f1f4.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.465Z","timestamp":1781370495465,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e9-1f1f4.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1170\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JcvraRZvWP3X5hvaQ8VgEsV3NY8%2Fy8FucmxFx8Yh%2BK8%2F10RgWiehNYTu2oYmaP80znCmyGT5ZmDvUcyDhIyG9dOUA8NY04q1iX9CpmA2%2BDyuu4tAHgi2gweoi4ruLziDL0%2Be\"}]}\r\ncontent-length: 4464\r\ncf-ray: a0b2b23cad5c8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4464,"size_decoded":5249,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"6bd530861be1779c95c510cb6d0a342b","sha1":"b28673f76ca1025e5a0e56bcf8469bd13a2038b3","sha256":"622bfe18b6c4852e6bafdcbc3d7e4fe845902aaf46d951ae7773e93e416f7a1a","sha512":"9ba38f90469410a2125bd59181d01df67935c116909f48db085c4a40377976bccb217a55eb2e1be9d84c17a00ab9e8abbea5784d9665a6a3061c9b7fbdfc70f7","ssdeep":"96:qZ1n0Hu8lFUm0BsnWrAWVAXwBpYTLFfUOrrPdhUPKf:qrn0plFsBsQAWqXepYT2Ox","tlshash":"17916d5bd129cc9ac7c2cb69486bf7454e3a3f20f3868642c888fc54343107942557b6","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.146314Z","times_seen":50,"resource_available":false,"data":null}},"time_used":564,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":564,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ea-1f1ea.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.479Z","timestamp":1781370495479,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ea-1f1ea.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1031\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=KHTDGhzJQppHcFCH2t12LntVS1UdDcDchL9s2FhAIktbvHEXZ6zMZE784LctPeqtC2aN00yhG9FlqOAHsHVhyBVWqsdVlZrq2NVNvownw8T5D4%2B7QDeVPLe6mc0zGh3%2F3kvO\"}]}\r\ncontent-length: 4145\r\ncf-ray: a0b2b23ccd658deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4145,"size_decoded":4924,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"1ca1f352550d602d48a64c1378b6d540","sha1":"c2530372af592a0dbb5140def40fab79be85d7ba","sha256":"e4201acc2e841d0145d35178a61579c1c3d7c86c68715893c0acaf7e82d8fb08","sha512":"6038fc80021d41bffffc8369d3983164e018c44bbd383fb48eb9df07afab816e243333f15ec5221b4a94983c3160af887bf18af2b765738883d72d644a4837f3","ssdeep":"96:mlB33Jz+uEvp/kDlsymIu6cqc97xNHiOJBpbqk+vOSpk:mlZop/q83qcHIOJBt0Rpk","tlshash":"0a817e4590d7833fbadc614ad939063071824f9226dbcb09efc9b06e9238f4e34f159a","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.146965Z","times_seen":50,"resource_available":false,"data":null}},"time_used":587,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":587,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1e9.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.577Z","timestamp":1781370495577,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1e9.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-11a0\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PGOJCBiuQgvwOXq0iT6JPQnwALlUppJnAGt%2B9L7WHRzOzCbwDsoIqhzUc9ky%2Fv%2B9r5yCGXa34T%2Bgkd9SPc6VHTNQDrmLa0RAr1OFE2TsfkTfvwPeJoB0ihmR5WSIClNB3KT0\"}]}\r\ncontent-length: 4512\r\ncf-ray: a0b2b23fde4f8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4512,"size_decoded":5295,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"b0d31bdc344b2549271f571f89a6862f","sha1":"f4e569ce18c93876593ed3997c3c91b4e71395d6","sha256":"51185235aa6568d1e9b7798d469bde7a2b022e4799295f57b8131a6d731b4861","sha512":"a4eed22323abdcab4adbcee5cfe93ec92e886f4d2c515e9e5577ddf26e2dcd8af1edd04f273dd006aea0cb9d0ed5bb564cb510c623074d4980d87c3251c4b7d9","ssdeep":"96:ZirDNrFUaAqGAu8mxVm3B8nv4PB9Nmsufm5s1Z7OlLMn3mLi:4r5FUaMmx8ALufm5s77Osgi","tlshash":"d4918ef3c75b4c701ad7244d265037589ee907c5922df412d1bb8c289c7e15b40bdac7","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.147571Z","times_seen":50,"resource_available":false,"data":null}},"time_used":584,"timings":{"blocked":288,"dns":0,"connect":0,"send":0,"wait":296,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1e6.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.584Z","timestamp":1781370495584,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1e6.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1301\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YGriCCOkv4NBBVfcuCAbnNEX4HAGt2RSaZlrUnpmNm0aSLXYJ9ZAvvF1IChk%2BxpBxbUa5PdrckKI7rGPA1YE4g0yB8AhT0HAi6j40Br1R6O%2FVOImTnZ%2BYepyqgqp3J72w1RV\"}]}\r\ncontent-length: 4865\r\ncf-ray: a0b2b23ffe5a8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4865,"size_decoded":5646,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"49dad876be13de6bf3644677917dc079","sha1":"b601fd50e5c36ed104efef512a9aff53d02901ca","sha256":"b054401b855681cfbbb74a5bcd730589ef764004e893aede15838b5b3467bab9","sha512":"6eb15af695951a6500063437a079a5ebe58304fa1160f20cc143f9728d2d085d1c7f1b154c9db8c10ed2c20330b449b2dd76c6b0f585d7e623b97deab86dc86e","ssdeep":"96:gLoUvMZdkWf7jiNk32pDpn2AuBAEeZzkzBk6lKaIBcbgyAGO7RslfHc:+VvsTiK32BJPzkzBk6ka/jO9GPc","tlshash":"92a16ea8848c0d94d711d7adabb15048e63f172207b57ef30b46d0a69a4f741a838bcf","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.14821Z","times_seen":51,"resource_available":false,"data":null}},"time_used":908,"timings":{"blocked":308,"dns":0,"connect":0,"send":0,"wait":600,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e8-1f1e9.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.438Z","timestamp":1781370495438,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e8-1f1e9.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-15ff\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GQAeKHZgwnEmNeq9QuWKEyv4px%2FaMVsBgrGEfJnpWz6iWgvlhLdllM0Nc4oG%2BvwxVZLjODUnseHKtdUy%2FmeOFbK66M674TjR9CfsHWmZWN7f2q%2BHj1xzY6RGL%2Bnt6voG%2FiEr\"}]}\r\ncontent-length: 5631\r\ncf-ray: a0b2b23c7d498deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5631,"size_decoded":6418,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"ad4ee8ae80598025099aa142e0ad4f64","sha1":"e67f75684806b6a658235ff7b57b7b3f7e3714f3","sha256":"bd693101377416a86a9bf621295a118a72de2624effad92eb960231fa76e2b84","sha512":"20571ad6cd0c3a8c0dcb840e8797956b3f8aa56b12f533ccc833898a6836277bd648358e279c606d7b20f6bc3c7e5db30ac18ec3c8c56227d0da44c61f30814c","ssdeep":"96:UjLdLKzOa4e/FZYvbjDh7WxEhj0DTC5Rchb6qhVOBuS2UeH7isjRcl+b7:UjLdWzOEFZYS6AQaOc35RU+f","tlshash":"b7c18e726ca33c2aeaf03446c57a649a44d54c533a226fc4edc7766197fb0224c88253","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.14891Z","times_seen":51,"resource_available":false,"data":null}},"time_used":284,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":284,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1fd-1f1f0.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.551Z","timestamp":1781370495551,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1fd-1f1f0.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1292\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GjVLSoG%2Bw3zcsM2j74fUsfPxYZXx4yRkkAOaTYdm%2BzKfEtZNdIQ1pCf3N%2B52xZvI4B5YXuve9irDpkrPabMeDXj9BitKcjsmHUdwjRz55e8%2FW7UgJxNZRgKNYsycwedNPPh6\"}]}\r\ncontent-length: 4754\r\ncf-ray: a0b2b23e4de68deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4754,"size_decoded":5537,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"474b6568d80533f3b7ff428703421d22","sha1":"6614870c31f2e0ea61bcd5c3e861f143dfbe1082","sha256":"91ade6bf3c4300bea178076406f7343b34bacc52e9f026b0b735bfd424b7a8dc","sha512":"be8c524410c2b2ac4cb8384db5de87d1b26cd2c9b6494708fb3f26ea192677b56426b43ee17e31c552a8cd45ad7de69bf8c5570c902e9ba64d205d2d724d63a6","ssdeep":"96:Fr9hYpO+ovW15JLfQcuSZn9JN4leRLa28hzfFFXE+lZkCyUfIMmDntO:FhhYA+GW15JLYcv9JmleRLa2ILQCyUgK","tlshash":"43a18e515564f8530cc8322de4041e08284d05db373d81e5ef5781dfbda0b46f8aafd6","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.149567Z","times_seen":50,"resource_available":false,"data":null}},"time_used":342,"timings":{"blocked":39,"dns":0,"connect":0,"send":0,"wait":303,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1f5.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.600Z","timestamp":1781370495600,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1f5.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1ab3\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Oy1os8Cw%2F9a0wz6UNz1%2Fp1vu2t5o0hp82gLsofVjfSd53idJ0pyoganqxUxFCHvnzjIrsmeXfSu6IKEYH10szroiNNd1GfCz4pZ9hBZR7Ucfi5XbdAZQoy6fvJq7bOb6CF3F\"}]}\r\ncontent-length: 6835\r\ncf-ray: a0b2b2403e878deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6835,"size_decoded":7614,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"bc44f3015a905a5b2577d8c51c73809f","sha1":"13fc88b73a8c9263c20ff094eec9a46d462eddd2","sha256":"47514b817c6da3fc2f56a2f0a451032d31abb7345b26c29fdfe3a5c4fecb2eae","sha512":"c6a5e60e06f8f2e59db3fb22441e262133cc4805f08fdb26feec55cfaf237ada05383243124af1e9553a952b159de72ce01da11315e60cd0e973eee77a5105da","ssdeep":"192:m5siqTAZJiWgBPjecsROTh6S1y+SN9s1KD:m53/iW6ecIOTd1yZQe","tlshash":"e9e1af0d6cb14620e6167dd6c88732796d993bcc5214ee7afa08533adec192e42fd10d","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.150201Z","times_seen":50,"resource_available":false,"data":null}},"time_used":934,"timings":{"blocked":345,"dns":0,"connect":0,"send":0,"wait":589,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f7-1f1f4.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.616Z","timestamp":1781370495616,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f7-1f1f4.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-ced\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OtjcIplX%2FCQt2Ej03XwC0JwU2FKgZlHTfWqetFdFJhK2mKCEcWFvtq3CgFyY1OnAHQu4Wy%2BLLWFCVCSJEF1hdDAzsQudWBO%2FsGfnQSCP2XqCwEvehJTMTu%2BK7tlYzHbHpno8\"}]}\r\ncontent-length: 3309\r\ncf-ray: a0b2b2407eac8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3309,"size_decoded":4091,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"786328bf9f2f9fc14a2c0ccb25126650","sha1":"1ee05be95dbff871d0b4e4c7872e7adcf4486563","sha256":"caf57c21bfdd97d2f9b62b862170eb2d0d11282303a4e96e89db6b3cc340d184","sha512":"117cf049bbc00a0683a2d05a55c55cb81b2b4b5a06fb7476270cb9a32dd5efe8eee0ad9f122f87cd4ae8140b8b2fb3f9c14b7a9def27b07562901375c58ebed2","ssdeep":"","tlshash":"83616d961149eeddc713625b4662d412cd083e156503540e7c463ab5ea30ba0bc90fcf","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.150871Z","times_seen":50,"resource_available":false,"data":null}},"time_used":952,"timings":{"blocked":380,"dns":0,"connect":0,"send":0,"wait":572,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f7-1f1fa.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.617Z","timestamp":1781370495617,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f7-1f1fa.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f0-1f1f7.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.638Z","timestamp":1781370495638,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f0-1f1f7.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f9-1f1fc.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.648Z","timestamp":1781370495648,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f9-1f1fc.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-111a\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YmnOuDwmwKx0BPiaUXT5ENm2JwBEeauUkZvCOTId87WQ897tiV3hcLHEsMlFke5XAYBrK%2FLCSM%2BZkHYK7eAaJ4dT0fYaDPqIQFq7XbtDBMbNFvHds7RaNm0MiZbylz8a8T2C\"}]}\r\ncontent-length: 4378\r\ncf-ray: a0b2b240defe8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4378,"size_decoded":5157,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"9a98c11b291c5d9d87f49ff4481022ae","sha1":"17e20b036a8cd18532d64c6e752a38635f3a65aa","sha256":"39ba644834b625a9c5d9a36293f40197c513ebbdb4e374866113ace4f292212e","sha512":"b55f7ec9fc2bc1ee49a5d3a8c771c91a2d085887767dd36fa8174b8df33a3494b49620c02f637bc7642476561880cb6214d8ea19ce30ea17a64ab742f3f36189","ssdeep":"96:K6xcTi9piE1Beg2KGq9CAsOtIHcNRQgkD/TDbzHItT0yKi8KqnC:SiTS0CstgcE/THzotuKqnC","tlshash":"0e916dd47ad6691e7c2c8c7730a506447e26ef18d22e9292457123f322131abd784ca9","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.151532Z","times_seen":49,"resource_available":false,"data":null}},"time_used":740,"timings":{"blocked":446,"dns":0,"connect":0,"send":0,"wait":294,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f9-1f1f1.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.653Z","timestamp":1781370495653,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f9-1f1f1.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-134e\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dx0F4gJT%2FA%2BWOTg%2Fipdn9Yrmp5uZMzBFGpwJ1GNPj8defpIEQnf0c%2FH05deZB8tsRq9CZxGaSCAn0jvc85relwR1K9Fer4h4JhoxcQnzG6fHKDfpBuRgsOvzXZrE1IhvaCwN\"}]}\r\ncontent-length: 4942\r\ncf-ray: a0b2b2418f188deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4942,"size_decoded":5725,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"26c9e29333f232532e1bf68f61da765f","sha1":"2dddbe25595fe41cbe1f663e309293b52ca74514","sha256":"2ea39494d482ec12ef06b8e11e84f5c2e5de73e177882981deb1d22dbc8ffefb","sha512":"257d0b3d47452351354650e10f907d66f452fc16cca0f8364a4ef895de920c6a50248f935cdee3514b906562cbba086dbb0e7d79682d8b0893eca39720cc3b55","ssdeep":"96:N1HPqpfS49L34XZbEgajyP0LmKqBvhUjJV4oeU/XFftsqrFFkQT64BhF64ehB2ow:DPfo7YZbxbeWv2JV4ZItfFzThBhF6bhw","tlshash":"7ba18d8a13850b647233fb066f6b5a5965484e681a090beea003230ede19e071df6347","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.152164Z","times_seen":49,"resource_available":false,"data":null}},"time_used":837,"timings":{"blocked":547,"dns":0,"connect":0,"send":0,"wait":290,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-MNRFRBBP0B","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.72","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:04.393Z","timestamp":1781370484393,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:36:26 GMT","end":"Mon, 17 Aug 2026 08:36:25 GMT"},"fingerprint":{"sha1":"B1:69:2D:8A:87:48:5C:47:05:41:5B:52:3B:0E:2C:E9:BD:CC:03:75","sha256":"91:1E:26:69:78:6C:F7:F4:05:E8:B1:07:F4:04:FB:66:B9:20:6A:EB:43:9D:02:70:C8:AF:60:8C:BB:58:30:4F"}}},"request":{"raw":"GET /gtag/js?id=G-MNRFRBBP0B HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: zstd\r\nvary: Accept-Encoding\r\ndate: Sat, 13 Jun 2026 17:08:04 GMT\r\nexpires: Sat, 13 Jun 2026 17:08:04 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 163744\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":483837,"size_decoded":164328,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6033)","md5":"25e1ad071387c40604fa081819fafdf6","sha1":"ec0da85aba3d2c2fe5435055ef6152a8fa5da94c","sha256":"4f56cc236033c9fbdef22ec81c9e45a31af1c9821ed13e4d624323de5ee79924","sha512":"4c12be2c46a928065328e1beb0687b44f425bdfe2acbf86906028a3fc28d8b24a277aa446ddab31f3956fdfcc45b81fcce82bb8ad5c2140bd217eb8b581ceb02","ssdeep":"6144:1h+QbRknTI8s5XtjLEEQT1TpqBEzVTI1Ce8G3h7Y1MD9f:GjnTsEZXysu","tlshash":"b9a4e9ceb3d674225296f478903f018ba57b29e2b44cc899f189cce42e7469a4177f7c","first_seen":"2026-06-13T17:08:37.15286Z","last_seen":"2026-06-13T17:08:37.15286Z","times_seen":1,"resource_available":true,"data":null}},"time_used":90,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":46,"receive":44,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"t.me/_websync_?authed=0\u0026version=10.9.17+A","fqdn":"t.me","domain":"t.me","tld":"me"},"ip":{"addr":"149.154.167.99","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:06.697Z","timestamp":1781370486697,"http_version":"HTTP/2","security_state":"","security_info":null,"request":{"raw":"GET /_websync_?authed=0\u0026version=10.9.17+A HTTP/1.1\r\nHost: t.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx/1.30.1\r\ndate: Sat, 13 Jun 2026 17:08:06 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 24\r\nset-cookie: stel_web_auth=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; samesite=None; secure; HttpOnly\nstel_web_force=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; samesite=None; secure; HttpOnly\r\npragma: no-cache\r\ncache-control: no-store\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=35768000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.30.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e7-1f1ee.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.416Z","timestamp":1781370495416,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e7-1f1ee.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-15e5\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9L4zEaOESv9wuK%2FHOQfbId5j3HqmPq9YdT6K4dDL6%2FQnsYmNSNpM0%2BDQVEbduThpq8nfcjnwCT7SjdkK7FpW0rF9T3O6dr8lhpi50yKRyLJFw5Nv6KuvI%2B8QkpPgJspkHv30\"}]}\r\ncontent-length: 5605\r\ncf-ray: a0b2b23c5d3a8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5605,"size_decoded":6388,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"2770c03fcc42eeffe061cb0e4c7f128e","sha1":"9ce5ee94f505b3a8c0461b5f8854635e5592bec2","sha256":"d8721bec3a35c4230110929803b476eb8775d08b91003a3c4f9b791e0711d715","sha512":"8d6c3c74c18ae3a66d00b13c4198711b99ebba5455a909068abd0c6ffe6744185be606ab48f01e19551d51753c89766832b40be962acaf52906db8cc7f21c549","ssdeep":"96:HgHxbq0OMHXMHamgRJWoGmuurv+wcv7C14UxPSVvqryMixBsus:AZXOIYMRJfGgev7IPSVvzNxBsB","tlshash":"9bc19eb364e03b31a7a17001f964660fa9e568745960fb62f357d4c601e6273cca7952","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.156044Z","times_seen":50,"resource_available":false,"data":null}},"time_used":591,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":590,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1ec.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.565Z","timestamp":1781370495565,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1ec.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-e1c\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=93pwyUO7Gq796cMNCrI64NioEP0fVta5Kj0V%2BZ3VRNkhnsWezvWEsbLGmJ4nfYwog1kZcOMeuqK1gui8kwTBGijO6bvl8CbkvsDNf6Nv1sphcVYb5xqClQqVUStPITfLg8C%2F\"}]}\r\ncontent-length: 3612\r\ncf-ray: a0b2b23f9e368deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3612,"size_decoded":4390,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"ec5f46e9d66f9af2c747d654586b2c15","sha1":"27b0bf4cc7bd11b0db5cf1bb9ce270759d3a8a61","sha256":"013932383e6b581b96e042a2417baa95f7cbd69c0448f80710d8d8b504e5290e","sha512":"e62d65ded9aaa736c503260c41049f467b869ad04efa06389150d34f11919b1f4e0b6f34c2b9dd837eb32eb6f797c0ae9e20b9cc58fd7d0fed12e5f26214e0e2","ssdeep":"","tlshash":"b2713b064409fc6ec3d4ee96886bea70e4b47fe12a07219ccd8372285675a3303023e7","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.156756Z","times_seen":50,"resource_available":false,"data":null}},"time_used":550,"timings":{"blocked":250,"dns":0,"connect":0,"send":0,"wait":300,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1f8.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.582Z","timestamp":1781370495582,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1f8.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-16b4\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FAcjzZraPGzqukreDglGD1CSIPqm0fU8gWkMZ%2BQuSYbZ%2FbUiIyIccuDUNvPbCONrMgTun9YihaVd6ZLS0ccvXx3aO7E35OcFVw%2FyjiVu8GRs4OsiURAt%2F%2BX%2BnI7IN3sVvJ56\"}]}\r\ncontent-length: 5812\r\ncf-ray: a0b2b23fee548deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5812,"size_decoded":6599,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"9bf8a9ded8e624151aa9969c07b20368","sha1":"5d27dbb2db6aad017cb62b43f1e7cd13bca7ece4","sha256":"7fbcff19b9f5b85566103b7f16dee1b821b4c1b59e7acc252f69f45c7c0a0338","sha512":"9499a5f9f380490210f65f0abccea18c165f60ce8f2a336ae78e09621d01bff00d557d86584fdc8272110f118e21294f3f25122018473a4b699a90185ad54615","ssdeep":"96:D8S3eG9ZCRmeF8MTtgByDnBYICB8YC8n/n/h3v4f+HyRdr5G1FvHlv:D8TWZIFByWYIB8nv/5Hq5Ix","tlshash":"34c1aec5354bd4a51a6e60a61fe2e012da202831402742ba9cc828f01f7fda8f71926f","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.157473Z","times_seen":50,"resource_available":false,"data":null}},"time_used":864,"timings":{"blocked":300,"dns":0,"connect":0,"send":0,"wait":564,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f3-1f1f4.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.601Z","timestamp":1781370495601,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f3-1f1f4.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1391\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nC2gpOf%2BoU%2FnWZ3sPlnj6ToH9JsrFotYeWht95QNwVJVnSGGG13LVZcEPdKtywCw7FXss9aMlXhQ4eXmZU072n2kAskrRPVn7PkpjCekvr9eEzYF45WpxgnMy6z5f%2FWnn%2B36\"}]}\r\ncontent-length: 5009\r\ncf-ray: a0b2b2403e888deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5009,"size_decoded":5792,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"e62da259fee4692134d912120660cf61","sha1":"ca272ed326ac511c71bd0b0a13059bb86acade1f","sha256":"e5b2732d038893d388c8449b2eaebbeb93f4718be1371a8baa7394bbedae5519","sha512":"20c35747af1c4d851b4eb6e0c2ee8a7447dacc128fcb2d4c251b9aaafbeca05bdaabefb5b67907e78c2c8dd115f0cd6a7378e4b49527a5cda78d772f2cecbbf3","ssdeep":"96:gmF7lxf1RPDLQG5UMdj43g9JMfjHjZ4GDTv3XwCpJ7kjYSnVCq:gmhfDPDMGekj43LrH9j3jAjYyb","tlshash":"a1a16dae47b0ca4f982f3898b559262124654f7da025a182379335c85cf2588c8b797d","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.158288Z","times_seen":50,"resource_available":false,"data":null}},"time_used":918,"timings":{"blocked":345,"dns":0,"connect":0,"send":0,"wait":573,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1fa-1f1f8.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.672Z","timestamp":1781370495672,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1fa-1f1f8.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1f45\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=CuZhaBB%2FENRZz0t6J3zMLcynxq69NyH%2Fab2Bd6xP4LfC%2Fr4zAEiUWnY4c%2Feuo4G6cbQQUaMHJka3Z30gXg4Y5%2FxJEfBShGltRDeTSe1oZCA%2FX6XjHhrpR3VzrXh7nzvgEQb1\"}]}\r\ncontent-length: 8005\r\ncf-ray: a0b2b241ef3e8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8005,"size_decoded":8792,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"e63f3f8db0eacff58d54f38a4122c461","sha1":"ef481c34be97b9df61878975824162510244c643","sha256":"c490cbbc5ab79c3e32b38ac20f385f9c0160830edd2d0c79b5da35b37f38aee5","sha512":"a3a9af9171d430ea67345ca415da3cce352c02e2ec09562ea3cd8a2d344875362cfcdc6fac34725ec4d9295135b7b595cd204cde58976c3675594bbc8c41c98e","ssdeep":"192:UWGpyitK6F1+dfQuE90CFwix0Ys6pgKbOq3WUmG86+BY2oi:ggitKY5uEBFwiG6NbOqYGqY2oi","tlshash":"7af1ae8096443d5ceaaef9b747056d4d73d05a0a4325d63dfe4fe34883bb3f60268085","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.158961Z","times_seen":49,"resource_available":false,"data":null}},"time_used":907,"timings":{"blocked":611,"dns":0,"connect":0,"send":0,"wait":296,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ec-1f1ee.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.510Z","timestamp":1781370495510,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ec-1f1ee.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-14e1\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yR36R2VvcBp4Fm%2FJw2XpB1aXJZzsp1a6T9NTulqXmpIz%2BQEG78nhEui%2FZ7Ns0gbSgwjYmD25G%2F6J%2BDpMGa1CzKqdVTUBY24Cdq3xY%2FLIJgV6g0bwHVAYIdzFXKWyXFti3211\"}]}\r\ncontent-length: 5345\r\ncf-ray: a0b2b23cfd798deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5345,"size_decoded":6132,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"29fca84d679a698bea04dc37b8e7a3c2","sha1":"39faab00b2796d383e736b2765ea3e02182e2f3a","sha256":"2db133ac9cb87b81981f0b4dbfbe8d98729884c4d93deeb1f487a84151c7f289","sha512":"fd83c37bc90757b19778d3f7f7530744f7cda848d7784ecde13614f2f00826394b773bdfb92cc22a327fdbd570b1571ecb1ee0edd4ec6cc086018eee4c35f1f0","ssdeep":"96:3dKmwDAmTQ13VRI0VYy/40sgJ0ZZCHmc6H/RmL4nRy8IfI4F+JZqTUXS:HmT0VYQ40Eut6ZmwNIkJZOx","tlshash":"39b1af2b6e885bb694a8b12342e710058e1cc4818debd90c32f35b93c4d55256bec78f","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.159565Z","times_seen":51,"resource_available":false,"data":null}},"time_used":576,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":576,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1f7.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.573Z","timestamp":1781370495573,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1f7.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-12d8\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8%2Bdif17xKEiSxMlero8Ni3c4ES65BNplbxhZrywbbFBCdP2ZQfhm91wEwwTm7Fu0K4mrLld%2BZJp8tU8vaUIjt3Mdl9Q3iJwgMfOlAKoDsomIjehnHNfWGRkJlgEvFHcYvaLr\"}]}\r\ncontent-length: 4824\r\ncf-ray: a0b2b23fde4b8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4824,"size_decoded":5603,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"75c13831b3eb66b1fe55fd42e94eaa53","sha1":"5a4d4c88e8c5f68065da6e0a3fd22ea8d66f06a7","sha256":"0e8167b5dd831f290bca4e7d9be11aa5e8252cb823307277179e7a30900de1f5","sha512":"4d5f72bf055895c8720ff39cfb5f9fb4db7ad18415740d1543ee17f93273d471ac15b84b59ecda09dde9881ed9e8de3a092fc9e5849b6c016edf1f7b3ae2829e","ssdeep":"96:qiRvvrk65C3RYcfSJ0KPZ0vaqHoUbFw5j0PDNLjp8iHqL9wD0WbAN:qiRvvrFs3RYyfKcNbFw5ID9tTR0","tlshash":"fea18d8047acf0e94ec92662a6ba15f3d8fb8c24496c098fcb1bda10e401a85ce4dd1b","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.160163Z","times_seen":51,"resource_available":false,"data":null}},"time_used":580,"timings":{"blocked":283,"dns":0,"connect":0,"send":0,"wait":297,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1fb-1f1ee.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.671Z","timestamp":1781370495671,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1fb-1f1ee.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e7-1f1ef.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.395Z","timestamp":1781370495395,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e7-1f1ef.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-dc7\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xAmsWGYcTCOdmVXijIcjDUEezwfBS8CclsWAgvYH5TiCtsE7OnI7%2B9qjCjbFpzqdAid0dwH2kapelwgI9uzNMchcvwLNZCCS9hJMHTcd6eAzwSQVewlZv6AGzwSlFHKeyPOu\"}]}\r\ncontent-length: 3527\r\ncf-ray: a0b2b23c3d2d8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3527,"size_decoded":4303,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"c6022f61e14fe63e08ee88b94c74814b","sha1":"1ae0bf5ea2dc58dc171d83c569989282a50a1bb7","sha256":"6877247e97b03be653a9153cc26b5ca09ca726b367781c7f13a9b89ad599b734","sha512":"ddd85cd664f5f4bc78b79609fa0210e12a3ef0cdf04a822f4e936d355a3e4f2965b604faea1824ec1de0a678d2091fae03433bf193f5c122960def8e9e369df6","ssdeep":"","tlshash":"4d716cf59e2cc86c81740d13c0ab0e8556852f1c7d4785dd8e28bb32773a2b64a44584","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.160687Z","times_seen":50,"resource_available":false,"data":null}},"time_used":588,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":588,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e8-1f1f4.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.435Z","timestamp":1781370495435,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e8-1f1f4.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-fa2\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nSt%2FF61NXEtuty4nG5VpSQqxgdT0zxScMRhSJn9rXUMGQh8zB%2BpOHk4KHUsfAW%2B2Vw1nPC%2Bh0jpqX46h33UH726V4rrprwuzTAN%2FLffzDaUuQpyBLrK%2FTcGGHrXamdIHXGgL\"}]}\r\ncontent-length: 4002\r\ncf-ray: a0b2b23c7d468deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4002,"size_decoded":4788,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"9b0ab2b7a62d57205db14c771183ba02","sha1":"4a2c5a8d783f413210c6c951f61d493a145fbc14","sha256":"298bc8a5e26302ef3bb48d3397a46412bbd61fc19ad85c44a17f5babcbf532d0","sha512":"70f5150518cb3e9d718daa3703b7c01f098bbab7a999924c4ec2bb0d236524576805158d33f05cf0534239a8334b9f25d0ebf34649243ec0e7752cc3bf009263","ssdeep":"","tlshash":"e1816bafdc0c735da1aa1d25aed40c8b87bc5fe78232f05647d050ca8129a4909f6f13","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.161317Z","times_seen":51,"resource_available":false,"data":null}},"time_used":596,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":596,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"wss://zws2.web.telegram.org/apiws","fqdn":"zws2.web.telegram.org","domain":"telegram.org","tld":"org"},"ip":{"addr":"149.154.167.99","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:11.249Z","timestamp":1781370491249,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.web.telegram.org","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 29 Aug 2025 16:48:47 GMT","end":"Wed, 30 Sep 2026 16:48:47 GMT"},"fingerprint":{"sha1":"AC:C6:BB:E5:EE:C9:DE:30:05:3E:F8:7A:06:97:90:26:97:A9:15:B3","sha256":"22:D2:01:7E:95:F5:70:BF:86:00:C5:9D:06:06:05:A1:5A:9C:96:BE:6B:EB:A6:1F:F2:A4:C3:A1:BC:5D:3D:E6"}}},"request":{"raw":"GET /apiws HTTP/1.1\r\nHost: zws2.web.telegram.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-WebSocket-Version: 13\r\nOrigin: https://web.tslegila.com\r\nSec-WebSocket-Protocol: binary\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: lo5sizTJ+Vwl91jcc+sTAQ==\r\nSec-GPC: 1\r\nConnection: Upgrade\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nServer: nginx/1.30.1\r\nDate: Sat, 13 Jun 2026 17:08:11 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: wy8trdOa1Y6IYB9wd05Itd0KlRI=\r\nSec-WebSocket-Protocol: binary\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":[{"name":"Nginx:1.30.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":220,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":271,"timings":{"blocked":0,"dns":83,"connect":107,"send":0,"wait":25,"receive":0,"ssl":56},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/rlottie-wasm.f013598f1b2ba719f25e.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","date":"2026-06-13T17:08:11.434Z","timestamp":1781370491434,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/rlottie-wasm.f013598f1b2ba719f25e.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:12 GMT\r\ncontent-type: application/javascript\r\netag: W/\"68b1b066-10037\"\r\npriority: u=4,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fWixLd8jlE6ML1%2FfIgRLOJEdX%2BYkK5USRxPunyQIuzSSkVzJHYEbdT%2FYzIuyTENrWhBdLy0%2F4QQbAs8zYziszUrGWm6xciQ6X6IwgXvqZYYTucNAk%2FJ8np5MuObbqEqLgZZj\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b2237f158deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":65591,"size_decoded":21706,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"4441938ee433d3657c20d454d352a336","sha1":"dd67121d7fda7c17be196f60c72dfa06bcb5bc6f","sha256":"659bf63501a8054ef0eedda3dec466dbc1e9a1b2c4d5d59a285b005215e16679","sha512":"f90da6f2003442e547813d62f44e22e688f637616dd7f7f33c81e73d05a3a3de39947c0a8f580002cc96a716caecc4bcd988644ad78b01ae2e9a9792c726604e","ssdeep":"768:O6T4cK2yQ6eO1P2WgcdxazvszXIgBB1ARna76Ae/FqsSwYxRrqhlr3NqR:m1Q6eO4+IUzXXsjvi1alrcR","tlshash":"6153e88535d9b0ab42837878946f310bf2ab6d52641c8410db1dd4dabcb4e49e63ffe8","first_seen":"2024-05-16T20:37:02Z","last_seen":"2026-06-13T19:02:15.11616Z","times_seen":15143,"resource_available":true,"data":null}},"time_used":1162,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":592,"receive":570,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1f1.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.569Z","timestamp":1781370495569,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1f1.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-d57\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4qb8Xp2R1ePev7duPgBZjFdTfoMTKvqRCkFau3tjUiukPjohIwFJgvB19n9ch9ADwPO51tuE6M3lOH4K5vOL1QRtNa%2FhvXfLFRqWRmqcacNHTziOFMfyj3Np%2FTpLWTJpkDeA\"}]}\r\ncontent-length: 3415\r\ncf-ray: a0b2b23fce3c8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3415,"size_decoded":4193,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"e2f164e9a96fc8a8ae52f2496dfe5e46","sha1":"49478f05fa70b7c5a8e79c417d6757cf373618b6","sha256":"ada85f2307c115321ccaf830f498d6993a2128d11cba19ee8ed227218e34f196","sha512":"a080f48b716f8ada7a5ba355fc2644bd2992fbea8c5c90c1fe4a35f482390362827538fccbda0d721520e5e354427320d5bd035082909e03c5b1ebf66cb3a207","ssdeep":"","tlshash":"59613b62e0e9713f46565c7e2ad883f62a153f186eee53d50100b971d0b8a5c383fe2e","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.161981Z","times_seen":50,"resource_available":false,"data":null}},"time_used":872,"timings":{"blocked":273,"dns":0,"connect":0,"send":0,"wait":599,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1f3.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.579Z","timestamp":1781370495579,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1f3.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-10f8\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=e2gYwO84%2BHW%2FfoblPK7SaEWn3EzB8kCOGPj3YRfUQGV3JvEDI0txD%2BFeO30xL4gSWgrWK98zCDaTHPTMesQbHmFDu5RDW5Ymu29csvnpQr3K0g%2FWRXPnXeLayn9IDqGjY9xJ\"}]}\r\ncontent-length: 4344\r\ncf-ray: a0b2b23fee518deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4344,"size_decoded":5127,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"0ed1c716172f44b68334b98353e32e72","sha1":"bcf6a0cd198b82e730352e199b832745d0f6a6b0","sha256":"4d8fc1ccfc3f458ae9c23c41ba14ce882c22bb0a2c126043975aeb93b6776a01","sha512":"942f72bc5b766dd2b960b8ae4ada00dfc8391ae0a6ea2784ed7100cbeca479cdb8454474511c8ca28879937fa12dbe9d269711040c60c6e31cce8385add45faa","ssdeep":"96:O6wiyu1oerUT9axxeRIYB9bJiZjV/vKF/UTc/W:O1u1/IdaYvkjVvw+","tlshash":"44917f9a11974d12cda6d2d0054ef8864eeb061a36e67b04343cd7b37329cc5702c647","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.163926Z","times_seen":50,"resource_available":false,"data":null}},"time_used":890,"timings":{"blocked":293,"dns":0,"connect":0,"send":0,"wait":597,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f4-1f1f2.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.602Z","timestamp":1781370495602,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f4-1f1f2.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-10c0\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZCnwYSZq5opgnkdBt8zEGnLDf51WF9%2BRIxnQgmlZ2YOElCOtYvKfHHyQzNHoZDWoOCNC6VLl6lpIHi3fI%2FEBJFhYF2RMW%2Fnn40QC2A5hmRO9S%2BKynCQnByUTPiSZQARd%2FeXl\"}]}\r\ncontent-length: 4288\r\ncf-ray: a0b2b2403e8c8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4288,"size_decoded":5073,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"0f22223c07b642a1eaac664347e55939","sha1":"f3d142e68324e15e9e90f0d1f313ceaab9ac2275","sha256":"5b998721bf7de2d39d2419d97f9d24a93b9a11a76c43478c51f0ee26f2593b72","sha512":"575fb25b38803c8bf61edea1ac9e7e721448d4ad690055f2c4ce65338fe157e783105e8d09c1cee708c752445b44b2e7bf08ac8f19c5f6b965b22e97ce763067","ssdeep":"96:XB4vpboqdhIFgoGrYcCMgyRgAWAhOGx9IUoWBup+:x4eqduFivCMgmgoD9IGu0","tlshash":"82916dd60dfe012e84d39abf07483181079b9e14b3dda121762f3c9c227dd615f64a9c","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.164655Z","times_seen":51,"resource_available":false,"data":null}},"time_used":924,"timings":{"blocked":349,"dns":0,"connect":0,"send":0,"wait":575,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f8-1f1f0.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.633Z","timestamp":1781370495633,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f8-1f1f0.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-131d\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=utjWgZOgLI24M76dimJSuCZrfsObvJ49ihHJ7lMzXarauUCaXBix%2BKjy0pXOL5ZmvIOlKIeHueqo8y7XH4CnjlzaRjPej%2FFji4kZtqaebUQqQ3fF9eil%2BMTiFHb3%2FeQKCIi%2B\"}]}\r\ncontent-length: 4893\r\ncf-ray: a0b2b2409edd8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4893,"size_decoded":5678,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"fed181690a39d4fb8fdfa30bd299b927","sha1":"e5b8872a26c6f9c3b3ab47cc387e01c719a61f0d","sha256":"0404313239ca9e4d5033c6d551fbb4bc373f47459ca264e7089d4adffe72462c","sha512":"d58249d6b72262075d7a0cdd7b24c898c71f1d1c7d3fb2a9949f1b3b77db62bbb36b9e67bb5503125295c1a3859d5d39f390ee5cdba2a3522f28205265bef882","ssdeep":"96:gpJuwUPF/jaxbVye4RsfLI2zBV+wYaD66cbshyeKllGYay0O:F60e487BV+wYaFcbey1WYOO","tlshash":"7ba17e6044c71de21aa94092c4aa083f50d9bc2010af95657b9a3cfd5eb7e6471d6f8a","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.165262Z","times_seen":50,"resource_available":false,"data":null}},"time_used":701,"timings":{"blocked":403,"dns":0,"connect":0,"send":0,"wait":298,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f8-1f1ff.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.483Z","timestamp":1781370495483,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f8-1f1ff.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-199d\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fDKFkGmoV19Vx5l3ZOre8FYT%2F41uilBC1po7X5iGzN4rhblSJbyr7Df4P9AcioT7DTFkAu7VN7cEZEG38NqyNbakmY3BJMxmPTuo332fZHUuhnOPqSsRruEyZnbRvNFxazjL\"}]}\r\ncontent-length: 6557\r\ncf-ray: a0b2b23ccd678deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6557,"size_decoded":7334,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"5d01763e9a83eabe2fc97056621bba23","sha1":"51a215d6873d1bbbc1ad9d182c2df184dd7d5cf4","sha256":"281d853a1805b9f7f3960f61829537c8db212ee97350a957ccf944f69fd3274e","sha512":"754d905ba1e67be05b05ad1093b36999a4db6435314f40b15a92d0a0ce16021c46cd7e8520794c0893c6e39f8c1cf35c31bf564df8513daf2f075c5a8dc027ed","ssdeep":"192:qLQgtX7F2Qnr6OYXPtyVtrxIeEqp0xLz1QHVgvBa:OfEQrmMVZ8hQHVgvQ","tlshash":"3bd17e4f9d8a88a5e5a72cd23016309a26b37bd4ebc4101c91d2f5b1a36a559024ebbc","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.165943Z","times_seen":51,"resource_available":false,"data":null}},"time_used":326,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":326,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f5-1f1f1.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.610Z","timestamp":1781370495610,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f5-1f1f1.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-f6d\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=WTpHuMhJaz0VIkOVALEHo6a8AeNYaPtq0J0S3XGH6CEGgsEkej0xRl9ZsZCIrQbexYGLEcw458%2F51tr6Z6uhAGjeYGXqY%2B5t9bEZ50eRjVe0XfJ703gGNYPTAqyoqxc27dgx\"}]}\r\ncontent-length: 3949\r\ncf-ray: a0b2b2405e988deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3949,"size_decoded":4727,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"3a9b247198c41c92284e7db869bfe5c0","sha1":"aab02ca8c88826a42c91d13eab33e7102ae6a0bf","sha256":"ddd0b069e2bdbdfc262d94a1da991decd6960f7115478308c563f39610df6d10","sha512":"a65731f2402d2e993071b4d21a3720f1ea9141d086926cef4734f6446feaeb9c911bfa366c8ed1e0833cb1643d943f07eebc41552fb479dae68dcb8417c2e50b","ssdeep":"","tlshash":"86814bee1150fc68ff1291370a1cd4515b781f0616ea0a6340a637a278baf51c9e1537","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.166558Z","times_seen":50,"resource_available":false,"data":null}},"time_used":945,"timings":{"blocked":364,"dns":0,"connect":0,"send":0,"wait":580,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f9-1f1f3.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.659Z","timestamp":1781370495659,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f9-1f1f3.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1334\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DFZlOnUBW7Fdk8FDrlPmqnxaI16AmWK9%2BruFt7pS2hwAxeoBGgsodc4MRei3KF4E%2FemNODC5jaRfXNv1UAyXza%2FnJrMQFKv8WZWUxM7%2FefijZvF%2Faj3svasFyuoad9eyYgA9\"}]}\r\ncontent-length: 4916\r\ncf-ray: a0b2b241af2b8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4916,"size_decoded":5701,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"c3956016640103050641e27b9eea0924","sha1":"c38d05c686dddfaf717be885982e0e1c962e765d","sha256":"89c2098aad1fd6a636b38463bafaaf105dc82763d6718ec1f9796affc0de7724","sha512":"904fe59bdfba27515295a48c4891e59dc03d75f1a756a41fbfa15f2167dd787e38e4281d6df45f2f913ce57167da5158c42801ebc49511c3fe0a94a21ede25e0","ssdeep":"96:fYiiGm20+UqNL8X0qROiQnk6jk/EodhkDKUBw79esNkQ3T91:fYi02RfmciP6uDXkwgaL33","tlshash":"7aa16c0f15ac3f48e07289edca2055966c6edf09dbb3482f764a592099503e1d93e721","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.167336Z","times_seen":49,"resource_available":false,"data":null}},"time_used":858,"timings":{"blocked":570,"dns":0,"connect":0,"send":0,"wait":288,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f9-1f1f7.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.660Z","timestamp":1781370495660,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f9-1f1f7.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1270\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hqhuDvhzOW8EibFJQn%2BNirwxlowUxQ0d3maV7Rf1Nz181zDaS9ccqsz2JbqOQ%2ByREpJ4A8qnoSUBfYFCJwWzUgc3ErLS%2BJo%2BYpk2y5dzHr9fWDqRgty%2BlOxJ%2FVZXrvxCWuQs\"}]}\r\ncontent-length: 4720\r\ncf-ray: a0b2b241af2d8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4720,"size_decoded":5507,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"6bf066d649ae26b9a941876004333b19","sha1":"8371e43fd3a90ea3ff6938877454326b68d44550","sha256":"00fc15c00d88a8083f1fd43b222c0cfb0c65460c1ffe4b9848735660e873a5fa","sha512":"420f8590957511fd05f0a92d12ace9f475d1a3eb04a6c77afba57f95c83300d2462a393332e4c7900ea68cc54622d452c699f6e34ee8912c5a2c2f11e7ae2728","ssdeep":"96:cQM/JdZqIr5TJYZinW35z8Iiik+X2sa+tlP2Xyl7reMW:ZIr5mSWpQHihX2sa+aXyl7ry","tlshash":"05a18dd5df80580b06e85f1ead5a8242bf674d258adc2c0de245f9e7b2bb4f007141af","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.1681Z","times_seen":49,"resource_available":false,"data":null}},"time_used":941,"timings":{"blocked":573,"dns":0,"connect":0,"send":0,"wait":368,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1fb-1f1fa.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.674Z","timestamp":1781370495674,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1fb-1f1fa.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e6-1f1fa.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.369Z","timestamp":1781370495369,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e6-1f1fa.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-18ef\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5f3njrX8H320Hk4V%2BUdqFQKRs5%2FcQUySPOOiX%2FdjuaJ7ibd7tyY8ZfaCq5VUB3gg4ejkA8muT5cpVBkOYIWY7jrsZm%2BTQlO4E9ed5OTmc8APM5r2Z0zhCe08Z9arg3OrJqbx\"}]}\r\ncontent-length: 6383\r\ncf-ray: a0b2b23c1d1d8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6383,"size_decoded":7166,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"6f6da5c8b9b77cd1139f499f6039313a","sha1":"1826dae35ce7105657491c0e21863fb5daae958d","sha256":"6ac0e4216c48babd2b61794238f839f031c05704d2da403338a37d4986349277","sha512":"7f1dbcd883a9bf163cb9c683b51d33fe590cfb445fab4d78bc830b630d0baf62445284555a7a1516969625e710428bd50206d69e90b14a46c308f835dc4d591e","ssdeep":"96:YZkZAntEOaPPxF+cP5JVZ1OBImceN9eBXAI1Lea6haUl54KmRDXsQEzSFaei3FEO:YZkZFPHJXLehM6hX54zFXEzei3ChcN","tlshash":"47d19f6673b449a87d223ab64194fc9569c2d5be4cb12e079d0fa8d41017c21fb17f17","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.168789Z","times_seen":51,"resource_available":false,"data":null}},"time_used":588,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":588,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e8-1f1ec.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.441Z","timestamp":1781370495441,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e8-1f1ec.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1103\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ryeees3rY5VJhAstuK1hdRWEouQlMKz71iWB7Ae10SVkeyekLgEGthKgHzEzQIWmAb2QV%2B%2BF1gEjP%2BzLLFi8XymnepxHgK23wrdgd9LWfmoIAN52nLj69CT534CnA8I1wf%2Fr\"}]}\r\ncontent-length: 4355\r\ncf-ray: a0b2b23c8d4a8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4355,"size_decoded":5138,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"ab2e719957932f73b8a4a92876907e55","sha1":"fb3ca669b0ad9f424471266744cd53707b876ffa","sha256":"cfe9ce93133478fab9bca95352f60a0606236eaf4caa1f1f6804d8075c935066","sha512":"bb90d3e65d13cce2cc7f8c0224cc6ae8a318506d153145333b8543782f40c6304b06c3a4054b5c86363aa99d167ebb919f70698db50270219ad9522ae823a02b","ssdeep":"96:8PeWOd8GUwmgSDii81pEzFU3dKO671z2/GyGlhb66gS:+ws2i87qU3dpK1zqKhxgS","tlshash":"4b918f32d68e397cf406e228e6590b154d04079b374c6f575a891cb461adca139bc0d2","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.169435Z","times_seen":50,"resource_available":false,"data":null}},"time_used":587,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":587,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e8-1f1f7.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.446Z","timestamp":1781370495446,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e8-1f1f7.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1249\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tdHfZjGxt4lIcfAXja0xbc8DaIijtTtItGzrq9LWB1IiXItg9PyJbxt1ie7jH5L9KUktsliLYXtAzch9Kjw03HCX69rSY3QLgcaAyh1Yh%2Fl7bVDiOd0giSeG6kSX5Z21EWlp\"}]}\r\ncontent-length: 4681\r\ncf-ray: a0b2b23c8d4c8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4681,"size_decoded":5458,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"aa105adec1e57dffb69a7351893259a0","sha1":"faeb4207c3ede71d368ea72f3cff02f4c3946785","sha256":"48628d592fd1c5de598d82bd5d524830245016e48f297d6605d2f18d6638b93e","sha512":"138074c04761fbcea5be59e4e1a245110a41de8e5fe5a466a4f5496d9924c11ba1a228ef19aa87fa6eb96f846d5a41402316ee3fdceb25102b92d2d20af1b071","ssdeep":"96:oouKWXl2gpChfVlEH4Cov/g8oVtV87N5ugFLauJ0hGsa3f:oPnlT2PEH4FveVtVoN5nFHihGsav","tlshash":"56a17d7423a0e5feaa72a842de5f114566140e554b30176f2cc3bd5fa2f2d8f52c01ab","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.170136Z","times_seen":51,"resource_available":false,"data":null}},"time_used":579,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":579,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1f2.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.585Z","timestamp":1781370495585,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1f2.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-111a\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rMMvpc8qfiTEEyrDOZwsoJmyyuszDCFa79dT9J6dI7Es2Jt3pYzdi8spvaewAtm25iHiIgjxeZdpZ2ZG9vk0GkysP61DKKVCG5y7hs5CCcE%2FU%2FMH3%2BOphGkpzI%2FXue%2FaDVhp\"}]}\r\ncontent-length: 4378\r\ncf-ray: a0b2b2400e618deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4378,"size_decoded":5163,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"a630fe243f5e7883d5ee6bb5b90fbcc1","sha1":"74d7c8ee525b804d70cf0a55dc38f68e6a91b0c6","sha256":"fa0c38499d039d786ac590c97bcc7222090d1bfbfa40c11861ec706d4c60010f","sha512":"b7b6db5d5ef4b204d1d4b31278eb66ff972a93cde6b0126cb507bfec16ab36799d37beff3138015d5cd4e75b60e13a01087676ad4a87aee2faed2baa364f9f99","ssdeep":"96:7BP8cYkpX1qVoR/dM8SNX3ZN49Wx7P1glV9UGaRKdrcZI3AiB:xkk522U3Ec9glb3aghwiB","tlshash":"71917c188c9d9b2e15acff44689390ce1b5f82ac488d2c30764ad97fb66bf5120d44fb","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.170895Z","times_seen":50,"resource_available":false,"data":null}},"time_used":889,"timings":{"blocked":314,"dns":0,"connect":0,"send":0,"wait":575,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f5-1f1f8.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.605Z","timestamp":1781370495605,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f5-1f1f8.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-f92\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vEnQHaHdHvu%2FWVCeePVTt0owSH7DQrfUH3scUMMVhvETvNjfdBS8mXJp06zrMKgt5H1d5k9QPZXozPkofnGOGK4giZMZ%2Bwhcd3GvpIpXJJu5%2Fl6EKKwwCSfeRVm6qy2WE1GM\"}]}\r\ncontent-length: 3986\r\ncf-ray: a0b2b2404e908deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3986,"size_decoded":4766,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"9596cf715cc1fe885f6000866c7f165c","sha1":"c1c8dbe7b96fdd1817b393df070c1b6df4fd8253","sha256":"fe7c25755248b8be3bb2efb4affcb90d67a3febae1953b70de593c209322c916","sha512":"06a4f10a25a61c3b9430fe9b753bd451d961d73e783b15b953f0155da0cd6067dd225238ef80c04b1cca548f88df402d9543ff1561b599af84ea606c4eb84635","ssdeep":"","tlshash":"f7817cb2f082fe2ac21fb791145a31ac7de50325e79240c56977fd40b275a871be0309","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.171608Z","times_seen":50,"resource_available":false,"data":null}},"time_used":930,"timings":{"blocked":353,"dns":0,"connect":0,"send":0,"wait":577,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f8-1f1f3.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.627Z","timestamp":1781370495627,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f8-1f1f3.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-f41\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2BI9p%2FOLmxytpv1wE0Tg09X7ws1y%2By4g0NjvZhz2oimjxwB56oIDsPAMVr2Ubzs0bSwesvK4PLlgt0JwUtyHBeTKugwz1LgXM5%2Fg3YLhl1Wxzb3ZA6NyauZleE9z%2FQHCyR0z9\"}]}\r\ncontent-length: 3905\r\ncf-ray: a0b2b2408ece8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3905,"size_decoded":4689,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"b75c264e0836e912bd587ed5d58b2c70","sha1":"b761cd66f2a0d4dcd42c6df519c2c71245c39a11","sha256":"5ad2f63b7ed8d2c85bd52c22e7eebbdaa9b2e096f9bab8ee8c25cced188592d3","sha512":"57a9b15d5a1a7d5dd503ed5e36cb4a74600629feae3f51fe5389a9ff4eda55a756cc2dd453ffd82efdd7342df4574d8d1eecbd3b5b264d2097fad1eaca9241d3","ssdeep":"","tlshash":"96815b1a02b60a95ffb357360aba7f3cf0028e130e6349961cd27574e1fa36047c8a91","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.172265Z","times_seen":51,"resource_available":false,"data":null}},"time_used":696,"timings":{"blocked":396,"dns":0,"connect":0,"send":0,"wait":300,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1ea.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.580Z","timestamp":1781370495580,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1ea.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1310\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yrJhNz%2BaImhSDHYivdaj2vzrJP8fK%2Bwkk5SZgMr1VuN4MUA9iTF0hgjkSF4R821XRvYPxFKyOyoSI0HNwcMmvUhsixyAvhPia3zgtewJMRy1r3lTSLCxELqZb6T1zU2r1uFo\"}]}\r\ncontent-length: 4880\r\ncf-ray: a0b2b23fee538deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4880,"size_decoded":5659,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"ef0ff0a8fd312b515e82f79ea344a2da","sha1":"e12e6292de09d94e1d22c86fda7fe8f30992b3d9","sha256":"6c9a06eda0278a45c2b8b71701fbd3d77ffce2dff201179ba8b4f5ce5e6821be","sha512":"6e585934bd10f5834554d62f6063caa5285b8a9918f9bef35704b1a2fc24c442365d31d4ebb870fa4474f20de89667b15e9e85cb39dc36b94344e4d9a8266f81","ssdeep":"96:3sfOnueJs5mygVBh+s+2WjgxtwGTy7vmJJ1pdPmk+iDnU9MTvQ6jee:oIu3gVB5JtwFjoNIk9nnTvFl","tlshash":"d0a17d9941e3a0299a80ef455bbd154c7e13def2cfc638040ccab9275b7998f19d081d","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.172993Z","times_seen":50,"resource_available":false,"data":null}},"time_used":596,"timings":{"blocked":297,"dns":0,"connect":0,"send":0,"wait":299,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f3f4-200d-2620-fe0f.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.355Z","timestamp":1781370495355,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f3f4-200d-2620-fe0f.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-121b\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yz0XcLoVwxotglV80RhrO1vrkH3sLC6SvXvl3WzGcS%2Be6UxtMui2KBlC7Gwt3lTQXxEfY407yZLDu1YBrK6PD9HGdydKTFkBZ4983FN62JFfIEmCKkaCGUCufBcSFXZuFPGs\"}]}\r\ncontent-length: 4635\r\ncf-ray: a0b2b23bfd178deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4635,"size_decoded":5412,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"b3a4c9657b3955e0b1b7c7cbc48d6e8b","sha1":"4b7337c860feb04da60cb3ba2a986b0b868c5c79","sha256":"641704349ec44efe01305bd1cc96e9c22ddba825e0d8f4881a053f6ff8e0d29e","sha512":"7be063b7bd00221610fae60f9fb113e76842df74c6b24ef5406a79beefc5bdaa07b6d51a5ddc6800b023e0f3f40a050f4fc2f1a8c99edbd9a20dfec09b27b269","ssdeep":"96:ZpF7h5yyjUmyqt5kdtUJQgBM2gfMrTyYtQYiEeBhyYXDT24qGN:ZppNIm/5kTwQgB+0GMiZ2A+4jN","tlshash":"dba15cf61ef6d4aaa6c43357c6a7640dee61e539099949c2008269b8d6a4c1c80ee753","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.173712Z","times_seen":1399,"resource_available":false,"data":null}},"time_used":428,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":428,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e9-1f1f0.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.456Z","timestamp":1781370495456,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e9-1f1f0.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-10df\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2FotTb41dLuotzwEEMDp7ItlJJn0Crk1ANrxbUgPltzMYPB27kp4rBFw22tsTKEwmHZzoupqR%2F1vddhv%2BDmSy77383pXAUNSQt0ZJ33mzwn%2BPgqvGWbela8paiXiLqavIf%2Fs\"}]}\r\ncontent-length: 4319\r\ncf-ray: a0b2b23c9d568deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4319,"size_decoded":5102,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"8a607d98461f53b98d68d51afa363a55","sha1":"e7f9a7a842dad318c369a9c6f1ce04ed9bbf683d","sha256":"108931580af025093063be3b9a5f0ccd77ff15746ecb195d7e134577a23740d7","sha512":"731084b167e00358752d57975a12555f5cc85768e8e23626c3841a8d46432d7b6d5d2a247b94e36df0850c260869711ca9db5215388ecc82bba037c41c0195a2","ssdeep":"96:kFQ7JPpPZVy9SKbsBaFwIcYETZHpgN3LR5sEAPQfL43:YaJPpRs97EADcbu5a+q","tlshash":"68918fd38034a85ffd9e0dcb451808b851462cc172cf1e3a688d74351e7248ab55edb8","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.174495Z","times_seen":51,"resource_available":false,"data":null}},"time_used":573,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":573,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/favicon.svg","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:09.324Z","timestamp":1781370489324,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/favicon.svg HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:09 GMT\r\ncontent-type: image/svg+xml\r\netag: W/\"6a1ba789-37c\"\r\npriority: u=6,i=?0\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=oIoGlI5uL3R74ta%2BevTW2TZqPQf1BvZXLx20cpubqfIp%2FYL9LvwyGJdbDcO9YDQLgiC95ypOCKs8ltN8NAcqYGT5HsMWge1jcucZx%2FJh0gxlpDkggQwrOVuQW0VWGecC5AMs\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b2164c758deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":892,"size_decoded":1331,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d9ee2d4b0edd9f8ba2fb7242162c2c47","sha1":"398522893cf2cdefb5176f11bc67eab31c2d7382","sha256":"a462f1c5333e16b48335054493cfd1d0a13a96847b4b9ffe2cf24403e6e86010","sha512":"e404678e96fe6f6d1fe6c1390e4a64d90844a2d8903f84f1a34b23137593da5ba04112d9504b8bf480b392b294830a363344c5767e3bb5b7a3cb6f5df2a3aa45","ssdeep":"","tlshash":"97114493d060e71ad4c9e16bef61fca0116720cee5b745d485d95a34500fcdbfc08668","first_seen":"2023-05-09T00:01:39Z","last_seen":"2026-06-13T19:25:53.135767Z","times_seen":13989,"resource_available":false,"data":null}},"time_used":593,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":593,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ea-1f1ec.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.469Z","timestamp":1781370495469,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ea-1f1ec.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-f7f\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JoBGABnTaex7Y1L6kE7oXosEndp1tHNYbkR1p8yNd%2B3t4XJwshr4MG2lNgSdsOPP%2BT2mZrf3oC31ZJJ5gsIYjiUjG1vGuRl72EKCF8R5U2CS%2FKCsshPJW8WDrauOb7ganPTR\"}]}\r\ncontent-length: 3967\r\ncf-ray: a0b2b23cbd5e8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3967,"size_decoded":4747,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"7c2e17752191464c9a0f10ad6ed4fbf5","sha1":"a29809502ce3d18627ebc792093aef7e0cc744f2","sha256":"0259029dfe895abdc3c82b055adbaec2ab5be7324067c968c9e5de20f6757903","sha512":"0e876038f55a9218455e0b5789d9daada0b76e51a9043bed0b40985ad4c4484cf1fea2309acd5484a62acbde0a5d0b062806c910fa0eb0dd85e838baa7934258","ssdeep":"","tlshash":"0f815d879080d58e7b988a31d418cea14ec5847d4f800191d35fe42bf66d4129d59dcf","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.176111Z","times_seen":51,"resource_available":false,"data":null}},"time_used":577,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":577,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/KFOmCnqEu92Fr1Mu5mxKKTU1Kvnz.6b69287db14836e8ccee.woff2","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:06.577Z","timestamp":1781370486577,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/KFOmCnqEu92Fr1Mu5mxKKTU1Kvnz.6b69287db14836e8ccee.woff2 HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/main.646e16c287a10cb1a6cc.css\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:07 GMT\r\ncontent-type: font/woff2\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\netag: \"68b1b066-1a40\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hVZeI4Rl1Co1Si0yaAuWTgVyx6ayrN2OF5qqTpJjo%2FBQGOSv8mbc5ZIPzIAhw5oESTTzeJOMaiCQnGK7qtAkpA%2FT08YHj9OoKKTL7AHws55mPTE7qr0HOepz9nSlBxtd4fMK\"}]}\r\ncontent-length: 6720\r\ncf-ray: a0b2b20518d68deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6720,"size_decoded":7503,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 6720, version 1.0","md5":"ddbe8450ae34795dee574854e9b01533","sha1":"5c9aaeb1b9de21b0fb4c7d9b92276dc5ab81b8ab","sha256":"daf6c28c5a080458eba26ba64a95b1fcff823944d429ccb84e8a4f3a0baf05ca","sha512":"df3d13f930835b6dd7946612f71e4a55115d64eb0c5202f81d43df6e7fd1f0602bb31b3ef73cc386e2b6f3b33ecd83b06cf580e734f04e1a87dd2c0462d92479","ssdeep":"192:GUXoJC3HQRHnOj14WFTGX1XX1s1G3LH0X0+P:1oPk14g6RDr0X0c","tlshash":"60d19ee4f9d467dce608ae23e704732e97430633c952fbb5825699a49c42607fece1e0","first_seen":"2023-04-05T09:25:54Z","last_seen":"2026-06-13T17:08:37.17689Z","times_seen":3016,"resource_available":false,"data":null}},"time_used":577,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":577,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/7784.a3c3e3e38d46532f1ca9.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","date":"2026-06-13T17:08:08.488Z","timestamp":1781370488488,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/7784.a3c3e3e38d46532f1ca9.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:09 GMT\r\ncontent-type: application/javascript\r\netag: W/\"68b1b066-5265\"\r\npriority: u=4,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yYmQFTOZ8cIazTKk4pOU8GrNHGoN3SjNqgmwfehq%2BoIlbyCz5Ft6lZ3lsKZP%2Fte9SsaDT73Ab6gvBYE6J3%2BP%2F%2BC%2FTgF6pjqRlWG0aGtkuF1mYqvvoVTkQ7NNeb4MiO6fr4U6\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b2110b698deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":21093,"size_decoded":8736,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (20956)","md5":"44d9784f12bcc86aae68822c887d357a","sha1":"30d8228c88b0a28567699e27be713e4b20ca7d5e","sha256":"520468d89596d743cf1c4e0adac4f035c77cb4296ec291a9f61e0604cf254db7","sha512":"1b0e56ada6fb96aaa59c5e3ab07a4f1c017609ff669d2ec8254863e5bd9268a7567da9320f7c31889ef9e2bc5e9591c3674553e735995135b25b72f43dbb2eca","ssdeep":"384:eA1pRdH3K+SWInGDrQ+YW5LhoASLv5S8VwktQ0CSRU6f/k5MC6LEmYwt/9RXC6iR:eA1pRdX1DrQ2LhoASLFtQUU63k5MC6LK","tlshash":"ac92187a52ad05c252ec48e908cb199951b8e0233c871d7e5134fdd630f28d7e2ebd79","first_seen":"2025-04-19T14:14:53.465174Z","last_seen":"2026-06-13T17:08:37.12584Z","times_seen":418,"resource_available":true,"data":null}},"time_used":907,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":588,"receive":319,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/7784.a3c3e3e38d46532f1ca9.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","date":"2026-06-13T17:08:08.495Z","timestamp":1781370488495,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/7784.a3c3e3e38d46532f1ca9.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:09 GMT\r\ncontent-type: application/javascript\r\netag: W/\"68b1b066-5265\"\r\npriority: u=4,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BI6MHvub5M17W8pNOKqIsGjqTZZc4IQLpNUSBAMFEcOqcqcyKJ32KOYOJojbrhPO%2BuGq5AcDr%2Fk02Xzq%2B8%2BRFDUvH2EWwhspS0i69lA5wcz1VnYjY3n%2Ff%2BKT2I08LCFlURyv\"}]}\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b2111b6f8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":21093,"size_decoded":8792,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (20956)","md5":"44d9784f12bcc86aae68822c887d357a","sha1":"30d8228c88b0a28567699e27be713e4b20ca7d5e","sha256":"520468d89596d743cf1c4e0adac4f035c77cb4296ec291a9f61e0604cf254db7","sha512":"1b0e56ada6fb96aaa59c5e3ab07a4f1c017609ff669d2ec8254863e5bd9268a7567da9320f7c31889ef9e2bc5e9591c3674553e735995135b25b72f43dbb2eca","ssdeep":"384:eA1pRdH3K+SWInGDrQ+YW5LhoASLv5S8VwktQ0CSRU6f/k5MC6LEmYwt/9RXC6iR:eA1pRdX1DrQ2LhoASLFtQUU63k5MC6LK","tlshash":"ac92187a52ad05c252ec48e908cb199951b8e0233c871d7e5134fdd630f28d7e2ebd79","first_seen":"2025-04-19T14:14:53.465174Z","last_seen":"2026-06-13T17:08:37.12584Z","times_seen":418,"resource_available":true,"data":null}},"time_used":899,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":580,"receive":319,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/9357.ec931486e29d6c0283bc.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","date":"2026-06-13T17:08:10.856Z","timestamp":1781370490856,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/9357.ec931486e29d6c0283bc.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:11 GMT\r\ncontent-type: application/javascript\r\netag: W/\"6a1ba772-a48\"\r\npriority: u=4,i=?0\r\nlast-modified: Sun, 31 May 2026 03:13:54 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FUgIFkl2C4Ca45jxWGvkYrem%2F9%2BX%2BofXlWEyg3lWLA77qv%2FjNaxKcaLQ%2BNENwQgz94cro2Q384uERvLU%2F%2BSTMSnVYu2qJPoyCV9m230b%2BEnXj6AgZi%2FILyEH7DRaJQIIuELn\"}]}\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b21fde518deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2632,"size_decoded":2141,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2578)","md5":"a1f9eb9d48276edcec3895aeec32aa70","sha1":"8cc7dea26bca438fce1b7a345e128acc902777eb","sha256":"5386f4fb19b108ea60e74222778d586d923fae02624c065ad5ad5036248005ba","sha512":"2b12ea86b958cb8808589e5753c43aa9bd845a958dd97473499feb0a75db7e3dc64f0952ab8eac453868b43064a8063a8654f49c9d6deb4acbb011ef87c9908f","ssdeep":"","tlshash":"5551b8441a733c791de347a7b05b3b120c2513b27819f59326099eeb47b624f5b03f4a","first_seen":"2026-06-06T06:06:39.143703Z","last_seen":"2026-06-13T17:08:37.104091Z","times_seen":5,"resource_available":true,"data":null}},"time_used":564,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":564,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"wss://zws2-1.web.telegram.org/apiws","fqdn":"zws2-1.web.telegram.org","domain":"telegram.org","tld":"org"},"ip":{"addr":"149.154.167.99","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:12.972Z","timestamp":1781370492972,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.web.telegram.org","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 29 Aug 2025 16:48:47 GMT","end":"Wed, 30 Sep 2026 16:48:47 GMT"},"fingerprint":{"sha1":"AC:C6:BB:E5:EE:C9:DE:30:05:3E:F8:7A:06:97:90:26:97:A9:15:B3","sha256":"22:D2:01:7E:95:F5:70:BF:86:00:C5:9D:06:06:05:A1:5A:9C:96:BE:6B:EB:A6:1F:F2:A4:C3:A1:BC:5D:3D:E6"}}},"request":{"raw":"GET /apiws HTTP/1.1\r\nHost: zws2-1.web.telegram.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-WebSocket-Version: 13\r\nOrigin: https://web.tslegila.com\r\nSec-WebSocket-Protocol: binary\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: nO6Ft7GVAv+tHGmYBsSNgA==\r\nSec-GPC: 1\r\nConnection: Upgrade\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nServer: nginx/1.30.1\r\nDate: Sat, 13 Jun 2026 17:08:13 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: kWjAfbqavoBJ4zyvybZF63gcZug=\r\nSec-WebSocket-Protocol: binary\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":[{"name":"Nginx:1.30.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":220,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":265,"timings":{"blocked":0,"dns":82,"connect":102,"send":0,"wait":31,"receive":0,"ssl":49},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1ff.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.584Z","timestamp":1781370495584,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1ff.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-13db\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MaqwjsZMl%2Ft8UtQEszqzlu2S6yHp5Bh08jU7Oi1CAg7NyN5tRYR%2Fgc2dIbkXaLc6CsXuZYzIDlu%2BU9BI42YM2XKVP9zYioKIolN0NtzbcC25x1fetS3nH2rjY9%2FHJQUnm35I\"}]}\r\ncontent-length: 5083\r\ncf-ray: a0b2b2400e5f8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5083,"size_decoded":5866,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"2a1e7d7c49698df72d6f9c3b45e4127c","sha1":"8412389795c2cb3d9e2e9a561fcbbb7a92eae2d0","sha256":"e87923dc59c6115c3f0cc255c4c21658a84cc685df47ce02e50b6071b69c2afa","sha512":"156a1d4d838958d6e2b819183debb7a58ef14ab09121b92bc8a14db9d6674fd21688cf410e80faffc62639a27069bf3145d7e8e50aef33e20b9783788a1122c1","ssdeep":"96:HRV+zh06S/WXDOxLGIQWQwR3RCH3I9ZfzxgvaHr2orXzwjvr0hgtgjpn:x0zhSwq9R8cVgSyBjEgk","tlshash":"07a19e66277fb98760b427f20a842eb5d8007659ca12f3b00e0cce85b5f295698335f8","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.177727Z","times_seen":50,"resource_available":false,"data":null}},"time_used":907,"timings":{"blocked":313,"dns":0,"connect":0,"send":0,"wait":594,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:07.583Z","timestamp":1781370487583,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/9722.89b6bceb625c55228313.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: worker\r\nSec-Fetch-Mode: same-origin\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:08 GMT\r\ncontent-type: application/javascript\r\netag: W/\"6a1ba772-2f81\"\r\npriority: u=4,i=?0\r\nlast-modified: Sun, 31 May 2026 03:13:54 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IXO5KJBr%2FgSqYRbe%2FR9MoFiQNoLymlx2aKRuTSYtDoY6X1vVQ%2FXS06%2B6wS76XCClaHcadyuw43C8DXEsspuUGTGGmv6%2BrcZw%2FCm2i1U0M4lii36PmLhhb1EdIbljwxIUOffK\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b20b6a5e8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12161,"size_decoded":6511,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (12107)","md5":"d43a276649bfcf378eae694f9df3b475","sha1":"00965b1173d56df61b1a183a61b7c180fe4cd110","sha256":"7a4a7773af250a2486d451dc08177255af1fb92f8b8cf41f24eff07345837e3b","sha512":"d9d4c26e06ffc589ab6f9aa47839850d9c9476f72c23f7e139e3ec394f7dbc1efbb52d1f49a3be1de9dfd6bf8b24c93c414d8f6ae5822a4143df302a5c4b29af","ssdeep":"192:t0WGLjOqrc38On35VfGXRWQeaGBSNLcrRdj4CqIbEoEhoCfRERKGkEmSqfigty+E:+WEJrc38O35VfGBWEwdMChwoEhbZAKGp","tlshash":"ef42e6c52742643ee397a8d9987a00533034da587419856c7b2eaed73c2bdc6f0b1f72","first_seen":"2026-06-06T06:06:39.13944Z","last_seen":"2026-06-13T17:08:37.143765Z","times_seen":6,"resource_available":true,"data":null}},"time_used":885,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":660,"receive":225,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/9357.ec931486e29d6c0283bc.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","date":"2026-06-13T17:08:10.854Z","timestamp":1781370490854,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/9357.ec931486e29d6c0283bc.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:11 GMT\r\ncontent-type: application/javascript\r\netag: W/\"6a1ba772-a48\"\r\npriority: u=4,i=?0\r\nlast-modified: Sun, 31 May 2026 03:13:54 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SYtZ5exvE2aCB0SXj4IZsvo4ZfIgx89DfoG3FjBlFDY8lpdgXmtb9WL8D%2FVBglAswf31XQBEZd8PGK0IDyPular4kvlNwTdm%2Fy%2FiX0nlRxUW1h7UkTfUlIFJCzzvQEoEmsog\"}]}\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b21fde4f8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2632,"size_decoded":2127,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2578)","md5":"a1f9eb9d48276edcec3895aeec32aa70","sha1":"8cc7dea26bca438fce1b7a345e128acc902777eb","sha256":"5386f4fb19b108ea60e74222778d586d923fae02624c065ad5ad5036248005ba","sha512":"2b12ea86b958cb8808589e5753c43aa9bd845a958dd97473499feb0a75db7e3dc64f0952ab8eac453868b43064a8063a8654f49c9d6deb4acbb011ef87c9908f","ssdeep":"","tlshash":"5551b8441a733c791de347a7b05b3b120c2513b27819f59326099eeb47b624f5b03f4a","first_seen":"2026-06-06T06:06:39.143703Z","last_seen":"2026-06-13T17:08:37.104091Z","times_seen":5,"resource_available":true,"data":null}},"time_used":566,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":566,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f0-1f1fe.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.424Z","timestamp":1781370495424,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f0-1f1fe.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-16b6\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Nm3XYA7HwBD3iGt4UrULkK8sbXSKAqzJoSUI7swwoXPmcvGlkO2JjHhdYKbRnY9XU3tE1w3EesWxdwp94zLue2JgD252NTVUHpIugPFYsSZ9XU254D1hChRUl62llbVrBkIS\"}]}\r\ncontent-length: 5814\r\ncf-ray: a0b2b23c6d408deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5814,"size_decoded":6589,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"6c5d185ba5d1f0f359ca28468bc0ac57","sha1":"b9833f9a89abdcc89931b2aae4b28c001a5b01ff","sha256":"c67035c3351b1d734157bd45ce85f51c1b5ca8b6ffa213dbdc896d72e9d57a8d","sha512":"f3deb0d44fe5bf448f0275042b877ff4cc2a81256d413f60e96a05b8f1ebcb11b0a1686ef4f8ad6bde3b1e4d1e3e5daded36f3332d01afcf84c4ef27b142c910","ssdeep":"96:sNTWvRPd2XgA7cMk8Qbg7owfyjCjQv+dPfNmokziBbEngbvRm7xb80Yzjs:qAd2XgokRbg7owqjCjkAPYpiBAnzdYY","tlshash":"49c18fba5c750fbcc30fc134376da0174caed82d77eaaa90a55c4e1d2d6090564e99b8","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.178659Z","times_seen":51,"resource_available":false,"data":null}},"time_used":611,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":611,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e8-1f1f3.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.433Z","timestamp":1781370495433,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e8-1f1f3.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-10f4\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6IOKQsTz2Cl7guOxnXq0umu7r0oHI5gu5d3BcoRs%2FQqjRws9Hs1lD2Bwp4W9aHdK274xSxKgFlQ9nU2L68AQvPph9l91mLg8d9mRKaGKX5r5RdEoC4AC1IMNwAuoT1%2B%2BtFhQ\"}]}\r\ncontent-length: 4340\r\ncf-ray: a0b2b23c7d458deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4340,"size_decoded":5121,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"7367cb7e732e707e07b863a7be16df83","sha1":"f6225fb4458f82476872e6db5a0c2093508fa746","sha256":"320e0222179bb2d8c0bc0a3e5055c129ff2d93a612539d61ecd01ead64f33cc4","sha512":"25c5b6fba48e99841906973eb5787ac459b045ff7b089f2ed56cd0528d4f0781cb1e5d30f2b7a8e2248914ba9990547fd113bf3bae1afbed659cb64f755678e4","ssdeep":"96:wfFLqG30A1iORfLA8wPB8lvCLMpfO6Ln2EtN1ydDHsn214i+y5FHiFcM:0lQOcKlSMpGybL1Wrf4Fv","tlshash":"62916edc893d0cb9c9307fb6ae819522a4d00d8e9a9d275bd1073f3e1d7ea620d30715","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.179592Z","times_seen":50,"resource_available":false,"data":null}},"time_used":571,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":571,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1f4.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.564Z","timestamp":1781370495564,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1f4.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1579\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6turJzJcu4Y3hZuzkw4LrNPWsXCs%2BUqubGfhxarbLHas6lX2x%2FbyJw5ylUtWefggYs4Y5jKBg%2FqqWztzXvjaT%2FR99NubkHOA7NrCIiSAdeaJRS8Bz%2BJsb4L4gXfSjh4PZjoF\"}]}\r\ncontent-length: 5497\r\ncf-ray: a0b2b23f8e338deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5497,"size_decoded":6282,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"0a369f4185f6d60ae6ccbff901890ec4","sha1":"4a84be85353566dacd0e50c81b3ac1bbaa449c97","sha256":"ad5f1e34653b7858219ab0ea4df58f115b85727ac1fb26b179aeb1a400554232","sha512":"facc36b0233d17e87afb6aebca77a66fd217b33490a92e888f2f6f70335f2a03decd6839ec93d6248d5c73df07206c1f6644e41ab631bdb8803ca3a9a7515ea2","ssdeep":"96:SZugToRZGdmbRfZ5UssVE8JZ26Zt+kanR0Eh6CNWqxrAuNS1rrF2NPKya3Vb7oMx:SwQo1z5i33L+kuRT6gg52NPK/oU","tlshash":"b0b19e19b686ec292686293d4e675b5442c8a9df335b3dea876bc831e66d5134030c88","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.180413Z","times_seen":51,"resource_available":false,"data":null}},"time_used":543,"timings":{"blocked":240,"dns":0,"connect":0,"send":0,"wait":303,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f8-1f1e8.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.629Z","timestamp":1781370495629,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f8-1f1e8.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f8-1f1e7.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.635Z","timestamp":1781370495635,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f8-1f1e7.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-142b\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qdvprRT5OmEKGD%2Frotu8tsZofzZkf3frbqEs%2BndzXV7vMxMX3eM5phviq3nH8U39ucvkUFGzOoi5bRnzJ%2B6M11wvzacyeLHn5KtmdwQ6kIcCKhTzrTnzX5XwsaIMpK%2B%2BVE0J\"}]}\r\ncontent-length: 5163\r\ncf-ray: a0b2b240aee58deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5163,"size_decoded":5948,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"b9bfcbbddadb1afa53895a69a15b16fd","sha1":"4f1d4cf554ccfb18cfd42269636cd1430a617ccc","sha256":"d3e78c4229bbd62760f211de2a354798130be52560d950604195304137a29f75","sha512":"c737be2cbf23ab5069f8d77a9c65c6d3b62d635504346ce06a5e3a8a5a08b0ba9b94b0892e379526c7cf69917e68abe44010f6a8601777e13157e2442ce92349","ssdeep":"96:Ecp04Eplvw+WA5WEgh37SrhaVoZUpznSrfr5zvyiP2DmgNRD3VSDmWubu:t04ekNh3erhQVSrfpR2DNRlSSWuq","tlshash":"70b17b0e26608de14ce57de92cae00574a3e1f7a35ed6b30789e3421a775fa894833d2","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.181194Z","times_seen":50,"resource_available":false,"data":null}},"time_used":705,"timings":{"blocked":408,"dns":0,"connect":0,"send":0,"wait":297,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/7784.a3c3e3e38d46532f1ca9.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","date":"2026-06-13T17:08:08.491Z","timestamp":1781370488491,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/7784.a3c3e3e38d46532f1ca9.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:09 GMT\r\ncontent-type: application/javascript\r\netag: W/\"68b1b066-5265\"\r\npriority: u=4,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dOOG%2FtYxGwaYRfgsx2wyobWs4UqJi9CuT8NrmpiFbdZn5a9mi2Eyh503i8vL8%2BaSpUiA5Fk596iOl1G3c5iR7LopoEPBAw4XKmyGgZT7e4tLCWQ325mrWdGk9FCZ3V%2BeBRUM\"}]}\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b2111b6c8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":21093,"size_decoded":8834,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (20956)","md5":"44d9784f12bcc86aae68822c887d357a","sha1":"30d8228c88b0a28567699e27be713e4b20ca7d5e","sha256":"520468d89596d743cf1c4e0adac4f035c77cb4296ec291a9f61e0604cf254db7","sha512":"1b0e56ada6fb96aaa59c5e3ab07a4f1c017609ff669d2ec8254863e5bd9268a7567da9320f7c31889ef9e2bc5e9591c3674553e735995135b25b72f43dbb2eca","ssdeep":"384:eA1pRdH3K+SWInGDrQ+YW5LhoASLv5S8VwktQ0CSRU6f/k5MC6LEmYwt/9RXC6iR:eA1pRdX1DrQ2LhoASLFtQUU63k5MC6LK","tlshash":"ac92187a52ad05c252ec48e908cb199951b8e0233c871d7e5134fdd630f28d7e2ebd79","first_seen":"2025-04-19T14:14:53.465174Z","last_seen":"2026-06-13T17:08:37.12584Z","times_seen":418,"resource_available":true,"data":null}},"time_used":903,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":584,"receive":319,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/5905.228b6ba981b06680c03c.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","date":"2026-06-13T17:08:09.405Z","timestamp":1781370489405,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/5905.228b6ba981b06680c03c.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:09 GMT\r\ncontent-type: application/javascript\r\netag: W/\"68b1b066-25e23\"\r\npriority: u=4,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QwJGIBPusNeMY6IMr5r6ZNdxsaLQTcO%2BCjGXe4%2FKS2lBdYGZxmDoPhRMwwDCtc6ihVCQE7MM3A95kL4xZBNC3AD1tpc8twzoqg%2FppDd7rMUjqBu1pqqfy%2BmrrBwLf1bMwy%2BH\"}]}\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b216cc918deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":155171,"size_decoded":38428,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"ee5c449b87bcb6f35bcc547c1f3af7ff","sha1":"c55a4efd6f8867c67375f79a675ba6d2618c8bfd","sha256":"0883d0c3875eafed08b44d205e2e160ab6b79c60c9cd8fb7adf90f33199b3fec","sha512":"f13bfbd100490b22075f6dc5e9bb120e838223cb7724cc76593c302364c780f8b9bc744ed1889ced63ce5e412086af95410163f5f17f4b27c9d34880244a4599","ssdeep":"1536:ouG3B/McaUFrnb3wHkgJ4K9pKMwHI/CglGQnAZkY0tfXuYEUp:YlrbBgXGsWkyA","tlshash":"46e3b682f86424161392a1e654b60749b739f41ca8c540acfb7cfed52dbcd8e36ab734","first_seen":"2025-04-19T14:14:53.473469Z","last_seen":"2026-06-13T17:08:37.107655Z","times_seen":411,"resource_available":true,"data":null}},"time_used":1433,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":582,"receive":851,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e8-1f1f0.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.443Z","timestamp":1781370495443,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e8-1f1f0.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-17cc\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=TfHfXjcRxRzXPpysbUfWopvbo%2BEUerElsV%2BwanSLqc0EtttdE3J3ulqIjNQs6u37UrYResHgJrLQFujbswdTdQGHlstgcxrlqoBBtgDa5%2FL%2F%2BHGEWykaEgy%2Fr5D7S9GotG4T\"}]}\r\ncontent-length: 6092\r\ncf-ray: a0b2b23c8d4b8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6092,"size_decoded":6879,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"70c52f8ca971597f47309c4af60ca93c","sha1":"eb8c691cf126adc4d5c38f69cf5a5c0e91028f83","sha256":"1a45624971840a7096188818964ec57b18aff044f52d666466527b81faacb911","sha512":"70c366e7b949aa9e61612c05bf9a50de8d55b3c2dccdaf3440f3d5f90de52e97a016578eb275dd0f4c40954d5e56f1c1d02689e0b759509eb2d05fafce4207fe","ssdeep":"96:0p2suKmK4hhPuIiSXqYiesgnN7eCWru2/v7o4udZMmJhtUWcEpAYuBKOOcok57Ub:0p2hKmK4hh2IidY3sitbk/nudZeWcEyE","tlshash":"41c1af04a2eee9740f0c39189740e7a1052bb116784292b057d78525ef9ab77d3bcd62","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.182022Z","times_seen":51,"resource_available":false,"data":null}},"time_used":596,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":596,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e8-1f1fe.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.453Z","timestamp":1781370495453,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e8-1f1fe.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-142c\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=KXU1tg1%2FxuKEyE5OdBIHY9OgsOR%2FJdPMrCffyM7lYLFoch5BI2u34ulaFOKlB9nnLy5PYi0dY454ZtncwTTxtHYf%2BorxzOJJyUgJ3jHylg%2BPlLZeDi%2FVeSTR0N1XwhR2RTUh\"}]}\r\ncontent-length: 5164\r\ncf-ray: a0b2b23c9d538deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5164,"size_decoded":5949,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"170865d40a08acb78c3673bc336b53cb","sha1":"a4c01edcd42c83d8f016bc1e6042d1e6dbe62256","sha256":"766b80062eb646a8a11e53bd7f5705629e47167b75889974efdf643763132a45","sha512":"73098288f3dfdbd5e89abac1b3cba556b445667dfae486797856c0904d79fc1cb27ba79304712aa4af001fec636f117db8902fb2082cab89552779c6914cb9f1","ssdeep":"96:KH2aEAzEPCt+LuMb+PYVKLtlvdnAQZ/EZlPQgrCfbhWO9Gi6:BAziyJwVStJdrZOxQgrClWO9GP","tlshash":"70b16de386facfa172420321a571574ac8063ff75ccc09b7600670b168f571e95baaa3","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.182764Z","times_seen":51,"resource_available":false,"data":null}},"time_used":595,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":595,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f8-1f1ec.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.631Z","timestamp":1781370495631,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f8-1f1ec.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e6-1f1ee.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.352Z","timestamp":1781370495352,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e6-1f1ee.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-168c\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=W7PizYuhy50dNlJFUEPD6tzcxi2dRjJWHsRBPWL38VwCWQ57N1S0SK80EIoI4NL2ju%2FxWKNGFEn467teW69icbGvgJl%2F07BrvavzeCwBERRYsyFTtVZJV8C6nolGd9nBa1Fp\"}]}\r\ncontent-length: 5772\r\ncf-ray: a0b2b23bfd158deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5772,"size_decoded":6551,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"7f6e0e38d3beea170518bfdb4e8ced2d","sha1":"c887af0feed3757de345df17fa24b5db6d2bc879","sha256":"603f9d2764f4a96c835365829781230d19b7944cdbe89c12ecb21fb63c3a3688","sha512":"29784fba587d574e14e50a13f6876dfd0ec22748d61bab757c4583849c57de6063ed71a1532ffe5f0ec0231ca7c7191c802f92ebb9815a7c87fcf4fabbf5b420","ssdeep":"96:/8QO342vD2NxWLG4P9dKMuxTfbCC6GfsxtJsG4TWVl6i1+GSH8XDUUnVodQ:JavibWLGI16TjCC6dO5xUn2dQ","tlshash":"a5c19e32d677bd7af2da05aa7e896a232d39f59f0017e313874284c5233a7c4af25015","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.18356Z","times_seen":51,"resource_available":false,"data":null}},"time_used":582,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":582,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e6-1f1f7.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.362Z","timestamp":1781370495362,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e6-1f1f7.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1406\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Qs%2BvCKK5PBPruIfdMwklSHXHiYCsX15qy1U9DJI5WrdsXZmEJ%2BYcmYEyNNLoHufT38CFD%2FlkO2z2yvFV4qSHP44ZDWAOi6L05APuK4wv1wh9Vt9utDysPRcj5TfAS355WZj6\"}]}\r\ncontent-length: 5126\r\ncf-ray: a0b2b23c0d198deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5126,"size_decoded":5907,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"520cbb9588df3f7d2459486f10575ca5","sha1":"654cffcb76a8158fc6561711c57ff980265fb2f5","sha256":"08a74a44b2159de7347665c9a82a5fc1ec0738a080a850df27b5211f98bb4c0c","sha512":"06b4076c2d796f687199a1c1fee2660dfa349b3d00cd6fe89ba80bd3d7ca2509cd603c777c3c821cbad50d9db1c3ae1b15bc331ffce7e17f49adbcb4ae524017","ssdeep":"96:O2SOIytrzA+IFl42GfnASYleRGGrQjaMYhDIMjxMS9IaqzXR8YpmN9TarMFH7UT:RcytrzWFlW/1r56aMYhD7jxF9I5XZpmu","tlshash":"80b17d4a38a36d88d768d2d2a02804fd3c09dd006cdb39339895776eba712536b651bb","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.184309Z","times_seen":51,"resource_available":false,"data":null}},"time_used":592,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":592,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ed-1f1f0.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.532Z","timestamp":1781370495532,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ed-1f1f0.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1381\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HSZFM1%2F%2BeoUz0qNvunRqt4fhuonUTT0eQ4gtROI%2FVq9KCuNEM6WvXqLgxfPXibN8BNpf16Lv6s0mK%2FR3MwyrFB3nhz7Cv%2B6CdVi5m6RRQUE3hha3Mo%2BAU0YO0cwASUrqWtVh\"}]}\r\ncontent-length: 4993\r\ncf-ray: a0b2b23d1d8d8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4993,"size_decoded":5780,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"eea4da57c82367c2ab37ffa67ef74b17","sha1":"ad1b3aa461e80e09094ec6dc15fd5ddd7ff3f9be","sha256":"a1448eba3763bb4c28ba7ae8aa0d84058525607c6fca7f108ceb25051c091fd9","sha512":"4f5a497e16eb7c6826807c74d61484a069b800d587c19dbaef7cd95d87a0eaebd0a2e4c987e0ab7b8b36accdb3eded238d82c362a94982562f91a89961fbba43","ssdeep":"96:hKPZW6APESXFX20zW4DJwPjKJK6LMza+TdOtqCgZws6wnM2BTPY/E0v5A6mpCq:hyaEmpm7qFp+TNw32ZIKT","tlshash":"63a19e74715afce8946c2c6811037b6c93171e679490ccde372d56422e7a2a057e4eec","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.185033Z","times_seen":51,"resource_available":false,"data":null}},"time_used":290,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":290,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f1-1f1ee.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.560Z","timestamp":1781370495560,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f1-1f1ee.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-10e0\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yaS4euPr8t%2F7FVPUHGYYeQ%2F2VxyyU5ktaJqn%2BE0v5t7wf1FBibVwqqn%2BbATeuDrU9z7j5sDLIwRY2TkaGsKjCHrmeo8u5CndCbdfUOPX0QMb4B3%2BvL9XGWvTRb7zWpHWi2Bv\"}]}\r\ncontent-length: 4320\r\ncf-ray: a0b2b23f4e298deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4320,"size_decoded":5105,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"c5d4340e1bc12dbc4c2498a53d3039a3","sha1":"fa71316bc0ca34a8a9d5808085a848956f56aedc","sha256":"1c6e25dffb5133153120f4c46a6f4b4d6259319a3b61b0cc92d61e9e03bcb29f","sha512":"d64b0b92ffe5dbaad7a1c6a37d4d74513f48ea4c93af843bae5c772ab048ebd11f8e1742fe4ee391a55fce2624146901d89d1591b0154b927896a586b04fe64e","ssdeep":"96:dF6Z57OrXy9f0KrOdCTptDMvOjZNZemK/kLpVBkd727sGiv+uT:dst41gHuGZNZed/8QTxrT","tlshash":"51916d0e92f2e45d972a9a189318442a9fdf7f59a2713d5c5b833edccc34b0a84b441b","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.185848Z","times_seen":50,"resource_available":false,"data":null}},"time_used":798,"timings":{"blocked":201,"dns":0,"connect":0,"send":0,"wait":597,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1fb-1f1ec.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.409Z","timestamp":1781370495409,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1fb-1f1ec.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-179c\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nRD61KDT6PX4ALP2PbOl4zf0SOCpdlXApfaBA00OgDB%2F2F3E%2BiHpFldYYfmLTuYpMsb%2FEKUbuEIZsli2ODOWCdF%2FEEPUI7NSGvQuEcAT4IbO9ogtHhfnvbJauJ7Ya4%2Bx2uWO\"}]}\r\ncontent-length: 6044\r\ncf-ray: a0b2b23c5d368deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6044,"size_decoded":6829,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"49f70be2f73d107697c1edd1cf052a31","sha1":"f04cb0dfee34fca4b03cf4bb398d52f69f6390ef","sha256":"250cc87fe0798ce61bd4db722c2c29d1a6875ada2ba7aa9909a24c0bb2aaf6fe","sha512":"1deff2ed3359d60a3249275635d576cf1f0b4fe9b7b9cff2ab926ca4e4ec7904dcd4ca45745fb7db107a11368c33ff29ccbb9f3772cb2c5b27d0012ea65aa061","ssdeep":"96:oIavQgZEc/ebQOFxUSCMI3M3njHKtaL53/v0ASzmoeW2YOXsGmH6gAgjc:vAEopM3HKtKPfSzmoh2HsGmIgA","tlshash":"45c17d739031c87cd1a85a78c83825bb576b163e0c8d86535611c36a85fd7bde291a2d","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.186793Z","times_seen":50,"resource_available":false,"data":null}},"time_used":305,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":305,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ec-1f1fe.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.528Z","timestamp":1781370495528,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ec-1f1fe.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-14b9\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=47Qee%2FoFY4C2yBF%2BWCUFvcIQyGK93Pf8zTwf%2FS8rqv3jS0T4Vattcqkj%2BV%2FCCygHPGpse6uEub8t45MRiii2M8IzLpgiafjXIdmMa0SmQlmHeIDWPVXytdWpnUVsK%2FUycafP\"}]}\r\ncontent-length: 5305\r\ncf-ray: a0b2b23d0d888deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5305,"size_decoded":6092,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"27e624ff8a75e3933799d8fa7e32b67c","sha1":"cfff8352b7da6003aa599cc3a01a71363b7bf02c","sha256":"af5d745a960ef2e0b99329a50b563fab42b30317b1bfb5ec71ce0f0ff26190fa","sha512":"cc7cc4c6f1071b92da18bb45a5ad723756ea5c150a5aab55cd5cca27da53997ac26504dbb0d43cfc788b19ddb0c65021da4d53be4c841c2dd8246a3f3ed0a90c","ssdeep":"96:l4sE0jGj2A5chlLNVxoepC93pPOSVzrGMo7b8UokGLwC8aWZwZSqi:ly9SA5chliepC9335GMo7QUoQI1I","tlshash":"26b19dd3108c33b0cdc43b92c1a1e8d2e5359eaebd72f09b619f31a934b38a72151328","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.188159Z","times_seen":50,"resource_available":false,"data":null}},"time_used":588,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":588,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f7-1f1fc.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.618Z","timestamp":1781370495618,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f7-1f1fc.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-130e\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DEUcrf9%2FtszvgG2K4b2QR4UHYgIOO7XQUF34PDZ6lioFiJq8xPsFXClEkT8B8LFpZBAgE%2FBqpN3GBf0ZtTWo5y5elnc77Gk4AFXLQOKVkVI0dDtn5lWa7s57Dg6qavQV%2BfLI\"}]}\r\ncontent-length: 4878\r\ncf-ray: a0b2b2407eaf8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4878,"size_decoded":5659,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"c958a438bac689c382f7d552484303c5","sha1":"b3bc3bfe8cf82b94b8ad2a63dcd7beb4ae92c907","sha256":"b72fe0dbc860abc0ba7a4d6369a5d7c5f6a0fd7be1e51bbad7fef9cd0c3d161c","sha512":"12b2fd1321aa0f58dae204e82700c3fc6515a83c3c5dad9531ecaf329c30849b0d2d88767cfb4c21e4fbd6e6286105aa136ec7b97f6579a7422b8e232d6b1083","ssdeep":"96:c2wSA7NLh7KmdWlrgT2c25dDcrI5O5PBYER28kH6Eo0YLkbaW/qi:c2VABLNKmKgyzDLOj3jkH6vNL+/","tlshash":"aca1af05418fe1233ec28d86c45dd1373b39127253ab0dc6e0a4fa4ba11f6123b55c7e","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.189016Z","times_seen":50,"resource_available":false,"data":null}},"time_used":945,"timings":{"blocked":381,"dns":0,"connect":0,"send":0,"wait":564,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/5193.4b5399da91db26a505ed.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:06.603Z","timestamp":1781370486603,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/5193.4b5399da91db26a505ed.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:06 GMT\r\ncontent-type: application/javascript\r\netag: W/\"68b1b066-47f7\"\r\npriority: u=3,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=T4FGnZXf8l4NFMMDuGOl3Ikmj%2FNGk7Jpypz77Y%2BZYorzBeH2%2BhuiaLe5Fd4lwtraUEbMtw3UeTL%2FZBIuRFnen6LYU%2Ba7PXOvMAyojrJsyysOgHOOYJvOdQra3r%2BVhkAHlAub\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b20548e58deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":18423,"size_decoded":7629,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (18363)","md5":"b9adab2591623aa95d486bb03ff41dc2","sha1":"a7c92be620fe60ad036d5f329f2d6402b987e5bf","sha256":"424ac490f04c58b1655dcc59320f7657976a2f898c569ddaf7ab26c28bfcfd95","sha512":"37a480602ab3541346158e983e65e11dbf2a6760c84981af2fc5c4a14a1bcc4a893b9b8b29af98268d5d8d9b1e7b04a667d4ba610dae84ac3bb2884d6fbac5c6","ssdeep":"192:W/kF3DWtg5I3cTKk/Q4yZOXG/lB0wKqwztTSuIdmPignIi7SdibRs1YpZNWBvYAl:WI3Dbac/TW30J/tBROZXyEW0NZuQl","tlshash":"2a82e76bee110c2e02d351a7fdca3106b5b982a6c2a05474d36dd06f03ad8dd367fb69","first_seen":"2026-06-08T15:28:58.754353Z","last_seen":"2026-06-13T17:08:37.189882Z","times_seen":6,"resource_available":true,"data":null}},"time_used":572,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":290,"receive":282,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/5905.228b6ba981b06680c03c.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","date":"2026-06-13T17:08:09.402Z","timestamp":1781370489402,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/5905.228b6ba981b06680c03c.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:09 GMT\r\ncontent-type: application/javascript\r\netag: W/\"68b1b066-25e23\"\r\npriority: u=4,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ICVZE0tMR%2F%2FNNJ9KXWGUIuM1XlqqFyM%2BPxx3iCzqI31%2FfIghd0tg38R0H6E%2F6OMmfv1samlEGCJ5Kr2B6Ro%2B4sl7b0GbsUPhvIPVwtplAkDKjJgax58nffenPmiGzLeA8Gvs\"}]}\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b216cc8f8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":155171,"size_decoded":38938,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"ee5c449b87bcb6f35bcc547c1f3af7ff","sha1":"c55a4efd6f8867c67375f79a675ba6d2618c8bfd","sha256":"0883d0c3875eafed08b44d205e2e160ab6b79c60c9cd8fb7adf90f33199b3fec","sha512":"f13bfbd100490b22075f6dc5e9bb120e838223cb7724cc76593c302364c780f8b9bc744ed1889ced63ce5e412086af95410163f5f17f4b27c9d34880244a4599","ssdeep":"1536:ouG3B/McaUFrnb3wHkgJ4K9pKMwHI/CglGQnAZkY0tfXuYEUp:YlrbBgXGsWkyA","tlshash":"46e3b682f86424161392a1e654b60749b739f41ca8c540acfb7cfed52dbcd8e36ab734","first_seen":"2025-04-19T14:14:53.473469Z","last_seen":"2026-06-13T17:08:37.107655Z","times_seen":411,"resource_available":true,"data":null}},"time_used":1437,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":586,"receive":851,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ee-1f1f4.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.459Z","timestamp":1781370495459,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ee-1f1f4.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-2484\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1gacMLo2TTAEsqku7dA1rATxVwihpNtc8UYEyV4Gn8CmkW4UZqQqLcCvvOgSDrHtco7FLXtdpBknh149%2BQiMas6edzKK%2B7UHUHj3nZWopOTxZ9SaYRhtw2royS0wiwcXiayF\"}]}\r\ncontent-length: 9348\r\ncf-ray: a0b2b23cad578deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9348,"size_decoded":10127,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"b9f90c5ade4cbf1dc689be1a013e9b33","sha1":"7a8e93842aa442f867153b64cbcabfa8ec6dbbed","sha256":"497cb4d7298432cb2b77c65d67df4c93a4371bb8541556d03e08fe363c290481","sha512":"13d67cc0bd05a2c226e343b3c2a2b57f9d5f7c656f740b1c46d130cee9a429abbf0c9cda67ef0c797c94f5e6e60d9284f2cf6c40784f4345ab9234dbc11e13bf","ssdeep":"192:0c9c42Q7qo0ewwyBARm+DuoaVrUB1t7nz1ZH/Ic6wP:07PsqB4o+DeVALtFZIJ4","tlshash":"4012aef49088492ef7361e7af5e4e23805a48f6df0c57074841e79a18b75e92b818f43","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.190733Z","times_seen":51,"resource_available":false,"data":null}},"time_used":588,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":588,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ec-1f1f2.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.504Z","timestamp":1781370495504,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ec-1f1f2.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-11a7\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mPNeIxtMF%2Fyyy5AWlaVp5h18NjULST0CuwfBfpisfun668nhldyj2v%2FFntMEz6jyeb6EwgjvKkI68CbFXv1n1ul2uq%2Fym1vOCE1l8KKFk66vHH8AHj23D%2B41fGLa55akmDWU\"}]}\r\ncontent-length: 4519\r\ncf-ray: a0b2b23ced758deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4519,"size_decoded":5302,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"90751ce7388283d98ab31c9849e6061a","sha1":"708f1057170caf243ae055b9947dd38fb35f23df","sha256":"0846cf4b72cc93709aa1d3712de597b17de093c04d7f2830e8882b1056919ca7","sha512":"34d1e396f2ba1a02b339ec56c56fbc676fb0e5b0ec28601ff57adca96ef6931d68bf95b4b9c51646164757e28c75e74f72ced9e68b7b90df38329cecc6766e8c","ssdeep":"96:PJ/oNSHSZbiYY9uFdLSOgNI7iJjBBRl6EAYKI+PeUuF/zj+nc:R/ogy0YYgFYOr+lBBRQrPbuyc","tlshash":"76917d779da4c23be849fd011ba7de0941dd5f8c860cf68b854a7c21f47e45456cd21b","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.191561Z","times_seen":50,"resource_available":false,"data":null}},"time_used":570,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":570,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ec-1f1ed.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.509Z","timestamp":1781370495509,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ec-1f1ed.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-10a3\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JtP4NyFwF7XxG9ZLXJ0hFWq9V8TK3SzQcqM4wWfxT0EL5%2B4fNH53LsKloUc2NJfI%2FJDH4BDZXwnIulgoiAoEQLWgjAff%2FEiqzGA6%2FBMhfpYdotOBV5veHnrNeYW%2F8zsDiQS2\"}]}\r\ncontent-length: 4259\r\ncf-ray: a0b2b23cfd788deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4259,"size_decoded":5044,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"e92468b68a0f8c1e6f11c0b05f9e9e28","sha1":"5e0e3ee5f0fc748b9940e9f860104dddc4a90ff0","sha256":"8d2aee59787a113845f8b2f0d48cb8aef2f28817fd54126fefb4e2899406ae90","sha512":"54c37a69118edc56508a0b8358e7c168d8ff2de399a0194cba1fa8f4bd626601c7a5ad0f17cb44105a51314c3d84f9ea2accd6497b66b0e07f10a88a2b676678","ssdeep":"96:mO/AKTMhjlFU/SoSqHArjdM4OZxK6HNekkDXzhqHA6kEmfX0XscTf:mO/y5U/ZAdvOlpkDDhqRkEmfQsq","tlshash":"74917d6db1cd9d269233021d6b65eaf3f8454a6f8346d7442fd08d33a4499f25245690","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.192346Z","times_seen":51,"resource_available":false,"data":null}},"time_used":572,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":572,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ee-1f1f1.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.542Z","timestamp":1781370495542,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ee-1f1f1.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-14f7\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Mri1b406fL3A1H0lknyaE3f3ksKIR4Hq04LCKgfpkEROgR9V8WdQNfb599sPYgRYCi%2BlQIJe2MuujHrYcF0AbCOqrcYyrk%2Bu4Oe0k1SBkt%2BX5CqJwqmgwhMh24dmVGhXJlth\"}]}\r\ncontent-length: 5367\r\ncf-ray: a0b2b23e0dc58deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5367,"size_decoded":6148,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"28f78d2400571353ef31a8f97abde300","sha1":"6b19b041e6bab90b4ffa410bf8ef0249dbda437a","sha256":"602c1048a0f7ad18b5016d4fd9e40f9a5c19d3aa52286bf193ce4859a9e48aa4","sha512":"48668a02b8681a99e756fbe0f93a04a167d1d214298014496c5ede1c5ccb48c7e1576a59d44d758b54fc7ea2ff3f7063ac78af81282f76388fed46a43ac2d9f9","ssdeep":"96:c2l14gxkz+fnygv5lHnlFNSx9Y3MgprSOB/RL5dxnl8aPRW1RncsL/v3E8qf4jWQ:iTQxTlFoY3/5xRLXxnpW1Rce/v5qfAWQ","tlshash":"1bb17d6a8bc4ae69f8feb641ac490db385b874d29406625a1f302431f0d2b8b069790b","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.193161Z","times_seen":50,"resource_available":false,"data":null}},"time_used":573,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":573,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1eb-1f1f2.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.576Z","timestamp":1781370495576,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1eb-1f1f2.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-11c7\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gKpYFPNg3gvuUk4oqK8DnpGwVOdvzQuuqTn%2FEhINS49PJ1QHyJqsi6%2Be9gO7Do4mP1e6cN6JI0sLswEETcDSCqAn%2B38xiX5QITqS2Um9Q2AXpKNIE5TGY17FQY%2BQEpodLxYb\"}]}\r\ncontent-length: 4551\r\ncf-ray: a0b2b23fde4e8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4551,"size_decoded":5334,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"0beb58fb2d56f059d82def815f9477af","sha1":"b7e7f3b02bacb71c749a90e3aa0bbdc32dc27468","sha256":"407965cd3f2162e12953e9c3eb7b1e7759108ed018241413f70cb531bf0886a9","sha512":"4abadf0ba731ec9861589f460e2104f3a305a1b24a312ee09c094df4ac487978bf52250de32c9a607505a230a73157c774802ef064bb84fc598fa297db435a9b","ssdeep":"96:lDg14cjYQrOXiVzOaa3wV6o0mVop8P+QF30TLycPdpZV:lM4cjYQ+MzOZ3QDoePbF30T2idl","tlshash":"b3917d36d7470e70f957e17d0e2600e1f6caef2935294e8b1e18b024e6bf50449babe4","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.193989Z","times_seen":50,"resource_available":false,"data":null}},"time_used":577,"timings":{"blocked":285,"dns":0,"connect":0,"send":0,"wait":292,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f9-1f1ef.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.649Z","timestamp":1781370495649,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f9-1f1ef.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-112b\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZMyPF0g4jLOVXZ5ThoaCN00NnkWIOY%2FvcnsaueuKDJiOZRBSRPzkpkagVbnh9MsNwsX5Yx%2BCWx7E1iu93RJ5%2F0vhY%2FCOCGwXOzaRHmeZ3ESeiSi2ubawkbnBwb4HoVDLNl%2Bi\"}]}\r\ncontent-length: 4395\r\ncf-ray: a0b2b2417f158deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4395,"size_decoded":5180,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"9b9ab4d0f0cccd697fb998d1d1824249","sha1":"bd3c03eb53e8396792a4ab19328438317c89c20b","sha256":"32e12f1103311e256569e058a0a9da1eb9fac7e93c38e7da4a3e0942ff63deeb","sha512":"2197154f7816a88ab7b7589bafe8d95bbad591fd3f71df963bcb795248d4168c15d705b2c9ff194e85b1b1b64010c2a8099ecb9a10810cfaca230f2f5192d4f9","ssdeep":"96:+bF/m/XIwehRc4dEVDBi+KErcRTtDBNZflVNa+pojwcsgMW:+r3Thqs+k9tDBN3akoDso","tlshash":"34918dedac581c4774b75cb64dcd22aa5facab0278c3d5fc8a4a42124483b8e1258850","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.194811Z","times_seen":49,"resource_available":false,"data":null}},"time_used":833,"timings":{"blocked":538,"dns":0,"connect":0,"send":0,"wait":295,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/notification.mp3","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:06.547Z","timestamp":1781370486547,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/notification.mp3 HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nRange: bytes=0-\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370485$j55$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: audio\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 206 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:07 GMT\r\ncontent-type: audio/mpeg\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-2a80\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\ncontent-range: bytes 0-10879/10880\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=K3kI0jXHskzAOzVeB1%2FTcimiuWEfagEeRsYtYSwYW24mhyPXW%2BFI6VHZ%2Baf%2FSZwYFtQzx%2B6fGjsBfsBcuL%2B6a1%2B%2F3f0M0oNeEHB6ZsT8%2B1qN5JuLE4sIwZUy4ODXqsccJVlB\"}]}\r\ncontent-length: 10880\r\ncf-ray: a0b2b204e8c88deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10880,"size_decoded":11692,"mime_type":"audio/mpeg","magic":"Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, JntStereo","md5":"eba09b6a457792c52fc610b5f9f974b3","sha1":"95e6e0f7648e28ea21bc434054ea59aba3a35aea","sha256":"86093551f5a7f68c7dcac947bd8dc54c6a79dd9a5d83f7e40116d640eb28c7d6","sha512":"9dfc5ff830c9ed75c9923528c31e1361fa36500d76a209cd475984e5585a644c8aff1600bf02a658ef363436a51988ff1e63aa7606e541dc4a7b3449c5be4852","ssdeep":"192:RuQQeX7rYX/WUUIk8DLh+2BHpZqlXCYP69tuORf6tVQRa/nwNQBv5JC:RRYeUUEDLk2VClyaV0aZ5g","tlshash":"37226b18af11056ef4866bf0b3939b8dc42d26c37a26d4cdd3a5d7e369430e2a7d500d","first_seen":"2023-05-16T22:57:55Z","last_seen":"2026-06-13T19:02:15.118334Z","times_seen":16763,"resource_available":false,"data":null}},"time_used":884,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":596,"receive":288,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ec-1f1e6.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.503Z","timestamp":1781370495503,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ec-1f1e6.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-ef7\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=oZx6RFtwemwa6FOgQ9WPcpNES5udSz1TNfdqlawEBZ2S6wUWrPMUv%2B7PgLnCtI2nDkl73IDUNwnai%2FglRAd9Q2rtO4iE6Ybp6bP%2BOJXWB2W17reMPutKSQ2IoaL%2Bot882KMI\"}]}\r\ncontent-length: 3831\r\ncf-ray: a0b2b23ced748deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3831,"size_decoded":4613,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"fc65a47573b26405d10ed68c62c0b415","sha1":"4c75b8f58724b9e6c0e168a3e39ad3537ac3fa7a","sha256":"cbcfa35b6ab8157325fadf4a9527ace1dc4215d1e190c5d21908cd21ab9ee759","sha512":"bc62c636f76c9bafade7783f8dab337ae402704522dbd75ddafb39f500e03f31e867c3b5a425c1c914646360fa33686155d1b0bc5b294ecca35996d3ceee2979","ssdeep":"","tlshash":"f7814ccd58ff7824ef6b32665b44fb6563b4897f58e201472e40b53a12b224c614f2dc","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.196568Z","times_seen":51,"resource_available":false,"data":null}},"time_used":582,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":582,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1fe.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.567Z","timestamp":1781370495567,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1fe.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1c46\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=l0PtBhQxsgu8V51LU5c7oap1Iok5%2BJPhm4A3MJtcNg5PRITiUOAuHxPxZUnMaZgNKljy5idSrO7K%2FZn%2FvZit6GQvWgFMdx31bGXCL0zk7nRNvGVik0%2BzrifrE3ntpHDWEq2Q\"}]}\r\ncontent-length: 7238\r\ncf-ray: a0b2b23fae398deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7238,"size_decoded":8021,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"6f166fb64d79564494ef12ebe2a6e77f","sha1":"99469206225f5febea3947e0aad1d4463b97a0e6","sha256":"d3f6fedb94228b2a9138636c9a7b95807387d6590769e3c4dfe77511c58eb83f","sha512":"f73cf50ef8d5ce3dcb5a7ad176e5aa9dca4ef0c707192f61193ab671c370c016de5dc39ea4f5d80d2ce6d82feab3c2cc3edb2ee1c292295d93695d20619570a2","ssdeep":"192:4IAR1Utifpbuce14+9jR88QVWF56z9R1i8CP08SMLO/P/MP:5uhbPe14868QVWFO9eXis8cP","tlshash":"92e1bed7a27adf8e8d8475f40bac0000a956af4d243987125cf8f6f9bd500989217710","first_seen":"2024-03-09T05:56:45Z","last_seen":"2026-06-13T17:08:37.197445Z","times_seen":49,"resource_available":false,"data":null}},"time_used":544,"timings":{"blocked":254,"dns":0,"connect":0,"send":0,"wait":290,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f9-1f1f4.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.657Z","timestamp":1781370495657,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f9-1f1f4.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-eff\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=E8LxQpP%2FX%2Bt0rlDZyn4SN5Y%2BF%2F8pV0ANYxOcnsPvVyJjDNMzbuQsGh7d5hA2ar9SRih8ibypcDOG9%2BhsRNm7LNmmJz21DtchBSnIN9FWypKv6IC09NlQvE7E2YInT%2F9aysnV\"}]}\r\ncontent-length: 3839\r\ncf-ray: a0b2b2419f1e8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3839,"size_decoded":4625,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"cd4007a2dec220bd884a3f67c44dc1d4","sha1":"8bceffb2c089be7752548a231faeb4c1f1afeb20","sha256":"d1c4d8356a0a2e1dfb3849c5e1ded40abb76326ca8624228d4219fc50d8af81b","sha512":"5f8b19277ff7b896ad0d3c76099dd8718c59b5b1c54658473cb2d44297c5f48c12cdb0585d094b73dfed655c3f031424e1ee1008b24e03a9b012cc7e3e37e00f","ssdeep":"","tlshash":"37814c40bc79b6e397707e2a7d1910e83a585cb4445a79440de8707ecbb9605987fa50","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.19825Z","times_seen":49,"resource_available":false,"data":null}},"time_used":850,"timings":{"blocked":562,"dns":0,"connect":0,"send":0,"wait":288,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f9-1f1f9.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.658Z","timestamp":1781370495658,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f9-1f1f9.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/redirect.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:04.397Z","timestamp":1781370484397,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/redirect.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g0$t1781370480$j60$l0$h0; _ga=GA1.1.95620750.1781370481\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:04 GMT\r\ncontent-type: application/javascript\r\netag: W/\"6a1ba789-145\"\r\npriority: u=2,i=?0\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sCGfFecaoO6L7yAFJ8FqzQ0CWeRpW9Nr64zspKoB%2FIBqVHfeFSvwvMT4%2FuE2Lp7eBK8unI6K5XYgOS3ZZwsk4hZ8slfTBFBY84VOdqFf0QDuByA7jSpmM68uAFx5Hp%2FhCSNz\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b1f77de28deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":325,"size_decoded":976,"mime_type":"application/javascript","magic":"ASCII text","md5":"17773b57b87a678c98e26a7cac72df6c","sha1":"7422857aa75ee81cabcec2eed6c4a6168f363ee1","sha256":"375141f2d3f04c733276dbff5d9208ff36b2db6a64abcee723179ac24797974f","sha512":"28d9e1c2af08154e653e2291db46f4110edbf9f5591192f8d695c8852f9c3c755d69dfb5a032a45f51e0a3fc9417f16c20d0772b1225ca9b85e5531e12fa8bfc","ssdeep":"","tlshash":"e8e07dda0279030417e013f36d82b4709137c2fb604c5d028d984321a1b9b4f5b7b84f","first_seen":"2023-07-27T09:32:34Z","last_seen":"2026-06-13T19:25:53.138034Z","times_seen":11488,"resource_available":true,"data":null}},"time_used":582,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":582,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e6-1f1e9.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.327Z","timestamp":1781370495327,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e6-1f1e9.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1363\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YoIpB62dY%2Bup9NbbnKTF%2FgUMiqAcG%2FQxC6xoEcdXbjkHq88eOidANnGiTRX4boFfRScW0YpqyjEL4R99lIOslEMe3%2Fs8fOVYgeO5b%2BSgUC%2BBOHwebdVs0dydRx8glM31%2FshA\"}]}\r\ncontent-length: 4963\r\ncf-ray: a0b2b23bcd088deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4963,"size_decoded":5752,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"03de615a8a5a564cd3b9856e8e5a35a7","sha1":"887455bc6c3322f51b4ac6703d497799b4a2c297","sha256":"410bd2f65506fe08b223222dc2da1c6555b170eabfa46d0b7b3f2594be947f4e","sha512":"e6d7b712a8c822d5c0de781810e8b4a5a74f9624259d9506d53941ab2bfd98d2974b89de78c95564081dd4ec4405414b2b17a471e6408f9b023c4d65bad0b785","ssdeep":"96:NQcoLPVfk2g+kUSqpwcB5WP59jXctQ1NH8gIaXXVIuVK14N:a8hrUSqGc49jXctQegIwSHyN","tlshash":"22a16b89a9642c229fbb77fd1c0d646e357abfc520484cb3de133624e5b1053e9fa240","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.200041Z","times_seen":50,"resource_available":false,"data":null}},"time_used":607,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":607,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e6-1f1ec.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.359Z","timestamp":1781370495359,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e6-1f1ec.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-13f2\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SL%2BRE8d0LtW9sTJ3nuHL7zye8mzyQvPW6rGuJfAZZ6CZS2L9%2BBZsjOy%2Bew7iohT7OX3JnvqovWX3Rr%2BlEoHD%2FBYxf7JcROZuQl8x2RSKTJ3ZaJLCWkrgLvNvb05YWtp6nzug\"}]}\r\ncontent-length: 5106\r\ncf-ray: a0b2b23c0d188deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5106,"size_decoded":5891,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"8bdf0f23af51a64120afac295b07db67","sha1":"2f8b1a9ef2409a6a55f1c615c27f5832c2e2ae3e","sha256":"0c9afb662e6b3f9f2b0ac0ad8d026835ec356de5ab196dc78d4e10614e9808e1","sha512":"57a4d787e2864b04120534a7223ec7d05a9adcfa8efe3bb8229bdab37ec2a8aeed4c99c330e87b6f93a4aa15924a3f27031a02b7f896af6148a4f48d1b5d7173","ssdeep":"96:h2hDvfachVGQRoLmVWbY3Wh/MTUXLTwWqHxpHVU7wg/jygPlDIB32jjkNes:hivfa6VG0+Y3Wh8WQWaLHV6v/jVD82je","tlshash":"e0b15cc99940cd1dc85c3b03a191b166d8d26de10962a263c1ccf9a8a57afa5f70a6c3","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.200884Z","times_seen":51,"resource_available":false,"data":null}},"time_used":579,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":579,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e8-1f1e6.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.422Z","timestamp":1781370495422,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e8-1f1e6.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1164\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=CcSIsB3%2Fkwj9peq%2F61NaB2LKAj9qOcRFKru8szEwxQLjyrko2iOdpTGgEAdgbF3p46TpmRrBEgkDsF78oAuVuLAcUriFDVuV9N9FT9PMlo1MJqN6lPyI976hYwzhqI7JlkWQ\"}]}\r\ncontent-length: 4452\r\ncf-ray: a0b2b23c6d3e8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4452,"size_decoded":5231,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"051ee485409b33161b235c641153510b","sha1":"b0782d35aee07e4f8f3947fa6df10bde2678d01f","sha256":"34d51aa9e708d4d41c9ede8df21ea884a143c35decfd3e5af683e45642ef9f69","sha512":"906204830a0f9ad428f6ff70f3e86667e3a3b340ee4201a2fae97d555144e0de4d3405254502ad899f0d64759b3af26578f9e6340c46dbadda90ed2ff879b600","ssdeep":"96:Oy0OMIS/GiMJi8tqlmmPB3d1I2+3/8HB4cYJizYc6ACUq+Xe3:Oy0/Iuf8IlZFHi/8HKaR6ANlXe3","tlshash":"03917cf549601862fa55b6213db774eede3447724cbeaf5248f5c07d31a9030351d40a","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.201722Z","times_seen":50,"resource_available":false,"data":null}},"time_used":610,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":610,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ec-1f1f6.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.472Z","timestamp":1781370495472,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ec-1f1f6.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1173\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rv3R5cGzwpmeMQEazFAna9WWNJzzJfLVW6B4XMyr3LCaPAZ6GV7r9IKLKoNb%2FpzWtyvGx3yJmPmSWvYWo3SOUQcOvEj7uHe6ER3jbtlwZkNXPkIjaWfrH0ejkDgKnm11mL59\"}]}\r\ncontent-length: 4467\r\ncf-ray: a0b2b23cbd618deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4467,"size_decoded":5244,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"fcf8276ffc8a07cb855dc99d794a34d6","sha1":"da97626bcae993267cb3bbaf4afe3070a43524dc","sha256":"6b96003e7f13f61e6b696c65fac29b8de5154441ae37fcd61b376dc599d0e671","sha512":"08287d9bfd782b77cd65ab264dcf7dcebce134aa18cff5f414fb5a5debde8762475d6cba026f33232d5ef30e5e4c74785b5d2a1fb1ba9b909ff59c833b57e623","ssdeep":"96:YZke1oKs66XCUmyp28OyOB7Lj+UtwmOUvBy6xz/vCSfQUnMql:YZXCKs9XzDp28/OZLj+U9vBy6NCSfHX","tlshash":"ba916ce179e50419cb790b1b72669213ccd33c6255b9368a432d80c778e6839fa7411c","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.202538Z","times_seen":51,"resource_available":false,"data":null}},"time_used":602,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":602,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ee-1f1f9.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.543Z","timestamp":1781370495543,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ee-1f1f9.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-d5e\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=U5VchvZ3z6OrYZd%2FUZUTt9w0l7ll5E6e6rdze2IbZRezaeX1n6Grn53%2FIAjaG6cM9K3cW8ysX9jtdbky3oAdHw0ElRw3wp2sB4LQfxYCeQOmf4X9aRz7kY03ixX2y441M%2B3G\"}]}\r\ncontent-length: 3422\r\ncf-ray: a0b2b23e1dcc8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3422,"size_decoded":4202,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"116da5cb69963471852d96fe4a21aa8e","sha1":"6b9d6fa2686d175be83c6f9c2efc5a11521a31ea","sha256":"cf3254bd8f3b27ffdb6831bee3ca5a5f74c5f2c05f89c9e322f76f60ae53d5e4","sha512":"8f7e5568b6516faeec7700061c85e4960accf03c4fef29a66f1cc1b8a8d9690f781cae2087c3043ec842e0642b7e0c884b50b8d938c9a5f95be0d68b5106866f","ssdeep":"","tlshash":"c0616eb60a6e9e2d413a1aa4b83a127c4f6150c4b7de18d6f501ccd3ee695e4227d34d","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.203467Z","times_seen":51,"resource_available":false,"data":null}},"time_used":589,"timings":{"blocked":5,"dns":0,"connect":0,"send":0,"wait":584,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1fd.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.575Z","timestamp":1781370495575,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1fd.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-101c\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=p%2F5UJsKku0fKeoDoHqEqF3OS1KPPjkvvG0j5dOHH2z%2BDgvZyWcNcrN4YuaqFJx1vpksAOL%2FbigT%2Blu%2B57KthZ%2FWS5ZYiVcxqtnoXl74GovhC2WVSFjwOW5N0BCN0bjgMo%2Fn7\"}]}\r\ncontent-length: 4124\r\ncf-ray: a0b2b23fde4d8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4124,"size_decoded":4913,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"f0f002a3968f042993d0c18d25f67819","sha1":"03032fec7820a2c523e34fa354b05c56adca7b4e","sha256":"56ad2ffb00d52353696162230b41e4b2689a4aebb2cd6d84a6f04b539c7b8dce","sha512":"73911243dac8c2ff297ac5417686f9f0e9eb8e8c8be88cea367b83c97c6cc491e7b8da7a5dc4a7e27cce42866ece3156c8a09695b5a12eb9c830bc7ee4a03db7","ssdeep":"96:rqaWQ+iiGVLMi4RlMVbWcIyl7ht/OzIztmO2:rn6KMDwydylm4mO2","tlshash":"5d817eba3490c502fc29e71391728b7df2562de5320609380a1a7555ef7be6936bd331","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.204308Z","times_seen":50,"resource_available":false,"data":null}},"time_used":884,"timings":{"blocked":285,"dns":0,"connect":0,"send":0,"wait":599,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f3-1f1ec.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.595Z","timestamp":1781370495595,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f3-1f1ec.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-df4\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ueXj4LsZ15WcAUQaLtJj9AqRfACu73MVuCqjbEEw%2FdNFKAj%2BbFvtvNje7tj9kUt3vx8wZ8ynTqWQ882tNHICHzHOfVbXJAJ6VVdGMVfRMzpWCfin%2Bb0k2uljO8uNYdUIpnvS\"}]}\r\ncontent-length: 3572\r\ncf-ray: a0b2b2402e7d8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3572,"size_decoded":4352,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"dd8aaed25d1771472f89334305696d2a","sha1":"3d5661bd3ebb16c8048e2b66364f4730944faddb","sha256":"173b1545814f9fce55bbdb6473aaf20b3d914128ce5946d0234a2cec9d97b55f","sha512":"40eaa039e5aaf7d12b83b7395069bc1164af29e168a7701e72d80fb423a4195098453a918a0d10258030f5eb528f5ac712eeb199ac762d7911423dfcf0815011","ssdeep":"","tlshash":"a1716efb2193fa0a26b40ccd7d1b7479d024cc2d217917355516f12fbab1fd82121896","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.205241Z","times_seen":51,"resource_available":false,"data":null}},"time_used":631,"timings":{"blocked":339,"dns":0,"connect":0,"send":0,"wait":292,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-MNRFRBBP0B","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.72","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/","date":"2026-06-13T17:07:59.793Z","timestamp":1781370479793,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:36:26 GMT","end":"Mon, 17 Aug 2026 08:36:25 GMT"},"fingerprint":{"sha1":"B1:69:2D:8A:87:48:5C:47:05:41:5B:52:3B:0E:2C:E9:BD:CC:03:75","sha256":"91:1E:26:69:78:6C:F7:F4:05:E8:B1:07:F4:04:FB:66:B9:20:6A:EB:43:9D:02:70:C8:AF:60:8C:BB:58:30:4F"}}},"request":{"raw":"GET /gtag/js?id=G-MNRFRBBP0B HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: zstd\r\nvary: Accept-Encoding\r\ndate: Sat, 13 Jun 2026 17:07:59 GMT\r\nexpires: Sat, 13 Jun 2026 17:07:59 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 163742\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":483837,"size_decoded":164346,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6033)","md5":"7addf281e0ed63bd5e184eff23dfc472","sha1":"e2ad3e2d089a233affa4455cad0743f0b7a4a902","sha256":"b5e8687b473cfbd0058fd9d66dc4c544a982d9d68a76d37789c4c03c1ce5d722","sha512":"d25e18215145f2217e59b198a89679b1f12d910495c8f2360f3fec2d65e83b307e42661031745a875420fd2900cb08824d5910c9076570fad5d1f2b6ec69ccb4","ssdeep":"6144:10+QbRknTI8s5XtjLEEQT1TpqBEzVTI1Ce8G3h7Y1MD9f:njnTsEZXysu","tlshash":"e0a4e9ceb3d674225296f478903f018ba57b29e2b44cc899f189cce42e7469a4177f7c","first_seen":"2026-06-13T17:08:37.206176Z","last_seen":"2026-06-13T17:08:37.206176Z","times_seen":1,"resource_available":true,"data":null}},"time_used":148,"timings":{"blocked":-1,"dns":2,"connect":15,"send":0,"wait":40,"receive":56,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/9357.ec931486e29d6c0283bc.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","date":"2026-06-13T17:08:10.852Z","timestamp":1781370490852,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/9357.ec931486e29d6c0283bc.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:11 GMT\r\ncontent-type: application/javascript\r\netag: W/\"6a1ba772-a48\"\r\npriority: u=4,i=?0\r\nlast-modified: Sun, 31 May 2026 03:13:54 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nLIZO0%2FwWIRVWAWHuUayz6HqZtEWVfK4Eaxk0Q5zEgvpR%2B0afx4EsPmkDilbV5BdZxz2087IJracV3yEyTbVlNsJ2QaUUq7FpaCTSvaaUfKu22JDlZcPnIAecg7nebGyuG0%2F\"}]}\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b21fde4e8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2632,"size_decoded":2127,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2578)","md5":"a1f9eb9d48276edcec3895aeec32aa70","sha1":"8cc7dea26bca438fce1b7a345e128acc902777eb","sha256":"5386f4fb19b108ea60e74222778d586d923fae02624c065ad5ad5036248005ba","sha512":"2b12ea86b958cb8808589e5753c43aa9bd845a958dd97473499feb0a75db7e3dc64f0952ab8eac453868b43064a8063a8654f49c9d6deb4acbb011ef87c9908f","ssdeep":"","tlshash":"5551b8441a733c791de347a7b05b3b120c2513b27819f59326099eeb47b624f5b03f4a","first_seen":"2026-06-06T06:06:39.143703Z","last_seen":"2026-06-13T17:08:37.104091Z","times_seen":5,"resource_available":true,"data":null}},"time_used":567,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":567,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e8-1f1fa.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.450Z","timestamp":1781370495450,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e8-1f1fa.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1440\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RR8IuKXej8u9ff5iJEzU5mNKqb8opVZZRFa2UOuL4gtiwF8muTtYRZKBaM9AlbGQP5%2B9DtsBKCEUG0bPSrr%2FeX1iRfzlVL5s4X%2BLfEGWBKyykkKfAXYWsj2ttsIILB4NeBXN\"}]}\r\ncontent-length: 5184\r\ncf-ray: a0b2b23c9d508deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5184,"size_decoded":5965,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"03d784ba7763b92921baa8533bb8879f","sha1":"7126ab6e30b7538f72a2fed04808fc5aff4ebb19","sha256":"d6da4d72ec969d8507c7df76d7cfd8269378bc2955278c329b43abd1f1b49e6c","sha512":"729c26b2b32bf22e2b8df9b8612d06fba45a31fe122af432600b36bea0ff1f024e35e7994210074306fadcdc6a1a37fe9ce98b27d2ada5036a9c354ff71cc141","ssdeep":"96:9yrtvjmW48GiAMEr8qChlrAayh2yauuvpYigfHsPkqAIu3JirKH9W0+JX5jF:9yrt7RVAfr85hlUa02r9YfMPkqAIu3Ju","tlshash":"bab19e0ae071a43fee3f666bbf4c851c8026054d6c58f4cefd08a6391e991b5e095af0","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.208654Z","times_seen":51,"resource_available":false,"data":null}},"time_used":571,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":571,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f0-1f1fc.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.551Z","timestamp":1781370495551,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f0-1f1fc.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-ef8\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=F%2B3abH2LdvnP4IZyefwsMyo8R7ZSR%2FKsBzTELyG8FKQB3SaEi7J8rRxXfba4uxIZHZM2xZ9lW%2F1EVym474NjIDwN8u%2F8VLqoowYv849agubwY%2B9%2FMO0S8sVPsUEeTl7vOgD5\"}]}\r\ncontent-length: 3832\r\ncf-ray: a0b2b23e6def8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3832,"size_decoded":4618,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"4b32879653c41a7987af3db216562388","sha1":"d4da6392fc0db79b7a8a90babe7bee204e4380e2","sha256":"c25a8861fac6a81117e7e448288f7ee2adcf5b0c61b95db254957bac38b3e8cc","sha512":"8f1720cfa040f0ddedf7c76c5cdbdb549a88a0d7166e13477fbd39e22616a4b700e5e7fdd6b7561d23debdb6ffc83680d7f8dbdb8f13d633e63df7215de5d997","ssdeep":"","tlshash":"5d816d01c32e5fda20020952e61a10e5f862035fcabd58f6a470c09cbed8a36ae95b53","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.209634Z","times_seen":51,"resource_available":false,"data":null}},"time_used":643,"timings":{"blocked":57,"dns":0,"connect":0,"send":0,"wait":586,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f3-1f1ee.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.593Z","timestamp":1781370495593,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f3-1f1ee.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-12df\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7l4l%2BrTPcyt0rgfjbi2JgmMdph22G%2FaH5p4ery5BfGqlELP42kSqKmvRyb18UVQM6MYGBfsGrnhRT4jrCTQW19nLGmKT0QQdyGzFEYhEPeiN3PH2TWlFhmI7jj173ErFZzMP\"}]}\r\ncontent-length: 4831\r\ncf-ray: a0b2b2401e6f8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4831,"size_decoded":5610,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"16dc194741f0582c536d9fdce7c11404","sha1":"0a85ed96e95012f293fd1b15a0f50aa19e3fae0a","sha256":"f51b0dfbbae120fcc2bf1e97614797d377cc718c9405d4ed0036590d440b2af7","sha512":"b776959a6ffbbf8747c661e8bfc28d3f4a595645f1b676832ff353fa17557cc433c60bfe0f84e222f2c40111f658ea3901f18ce623b4bf707ad333dc3c4300cc","ssdeep":"96:uMQAkSGgVNKtdh8ZU3C5MU8qo7pYLBLex+jBr5ItNs96FalOfEMO1auM5E2:QTSZfOyU3C5OlEBqxEN5+i6Fa8EfM5H","tlshash":"4aa18ec486a8a5dcbe3bb2e9423ba0507ad14fb181f6f052d21076a97739ccd441e9c4","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.210859Z","times_seen":50,"resource_available":false,"data":null}},"time_used":618,"timings":{"blocked":329,"dns":0,"connect":0,"send":0,"wait":289,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f5-1f1f0.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.603Z","timestamp":1781370495603,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f5-1f1f0.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1097\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AaDkGJyGWjvk7w0rM%2Fg9Ywq%2BOElzVIloRW9GDc%2FLviSisZF61gJHJwuhkDMM0dfTGx5VrUOlFp5tdi%2BVa80dNHFRuSaxrFBllQWxjPw6vmBRb9EjBcW1YzPeMxSV%2Bod6JQQ5\"}]}\r\ncontent-length: 4247\r\ncf-ray: a0b2b2404e8e8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4247,"size_decoded":5032,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"9538af5882e234349a8a486bbb16f62b","sha1":"83dd5bc80fa8b0cfa4181f3cbf760a811d451aa5","sha256":"6b3511721a0632e98aca403c05992ad2d161c0c84b214569f8ce1de759c4caf1","sha512":"3e926cecb16f7c9e4381e71f08764367082adff22b296a50c6d2ff5f7e6a09213e1504f9f9d7fa36a4e72da571fb428b3ebfb31d861e822733330b679257e298","ssdeep":"96:kW0n7LivCK+wJqYl6HWmP1rG7kGJYWWCGl4U1ahhvffk0T2i:kTG2wJjQH7sfJY1Afj9","tlshash":"79915ca5a50db8e116cf35b3540c43eda34764fd021ae0501e52ea8a8be8df48b797d9","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.212296Z","times_seen":50,"resource_available":false,"data":null}},"time_used":940,"timings":{"blocked":351,"dns":0,"connect":0,"send":0,"wait":589,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ff-1f1e6.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.637Z","timestamp":1781370495637,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ff-1f1e6.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1453\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PLOPCtnvJSOBms6UfD5GQ%2FaPyb5s8FzbzJ%2FpOknHESC6oVdMv20YLxnoVwcRTE9%2BxxnKfU6p%2FdLs04Ma49GwMp%2B37z6y46TEy%2B3c5hI35oDtnGivItQpo3oqk78nF%2F2yZ%2BKU\"}]}\r\ncontent-length: 5203\r\ncf-ray: a0b2b240aee88deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5203,"size_decoded":5994,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"7e55842d9def6dfbf6071ef9af282c2d","sha1":"2d360500117550c17a795162bf5387bd68bcfd79","sha256":"ba27a787eeda853da0b4081c90bb2ce3a7682ad1ba29abb422b9229be7ab3c1c","sha512":"3deb9617e8bc8d54fe3208c78800fb74058dd0b17122523b8407820d0b8f384b73de7f9b74d0b9790805262bd2c0a168bd4368872519496d14ae9cddf81a5d03","ssdeep":"96:DZvK+9IPliZKhsmd5drPkSZpv9wEkqQfmcSWM4j+w4OQ9rh2:Dk0SiTMdrPkm2EvWS6iw4OQf2","tlshash":"cdb18c5124c7fc8d1127eff0a84ec84615a90cce95150c9ba03930ddeb756bac399f55","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.213421Z","times_seen":50,"resource_available":false,"data":null}},"time_used":706,"timings":{"blocked":415,"dns":0,"connect":0,"send":0,"wait":291,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-13T17:07:58.695Z","timestamp":1781370478695,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:07:59 GMT\r\ncontent-type: text/html\r\ncontent-encoding: zstd\r\npriority: u=0,i\r\nlast-modified: Sat, 05 Jul 2025 07:57:39 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JUbXe1eLnw2l%2FdrK5XIByZ6CzRsSd538dVkeGzItHg5Qu9weQZxTq7EfEKzajk%2BsGC3vqJLKItT56KZNpJYWPdj%2FyPbe%2B0fkEySJecOCygPHBVPT%2FllGJ2gHSjyh0ULlBcVE\"}]}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-cache-status: DYNAMIC\r\ncf-ray: a0b2b1d40ea78deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}],"data":{"size":5766,"size_decoded":2708,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"3c40ee078f0f15e6eeca4a691fe2895c","sha1":"09b3e1f30e1cadde42283e9a4f293f7130308eaa","sha256":"38f60201181239345ce3744b8f754946b5fb2b65fd4ef78bd1e0eefb8e10251c","sha512":"d2a3bbf5a572670863885c782b976821e696ecfeecb35453b6ce36b3f4199229246a2976ab12b0e486b783d846bac124926e35aceb5f34d0b497426cf1ab8b35","ssdeep":"96:oJ6VtsFfHhRtRMTtRLOSQPHVDhLcc/RaJXGShW:W6z+5RtRitdRQ/VDtcc/RaJ2oW","tlshash":"5fc1135746a298157239c2355bd6f5098925d0c3e22a699dbacd27df4fc2eb0c2f33d0","first_seen":"2025-08-01T23:36:12.097128Z","last_seen":"2026-06-13T17:08:37.214577Z","times_seen":273,"resource_available":true,"data":null}},"time_used":592,"timings":{"blocked":-1,"dns":7,"connect":18,"send":0,"wait":567,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/rlottie-wasm.f013598f1b2ba719f25e.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","date":"2026-06-13T17:08:11.435Z","timestamp":1781370491435,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/rlottie-wasm.f013598f1b2ba719f25e.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:12 GMT\r\ncontent-type: application/javascript\r\netag: W/\"68b1b066-10037\"\r\npriority: u=4,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iaqbwrQV%2FXJtqVwE33Rt2bktYUG2LImirkdEOvz%2B2EoCdaN9V9Dl4TQn1W8woA1A77N3rdSN0q%2BTy5cMzZvEHwOUHHI8MlZ9dn9q258FulIEgsGLbl269mds0GVOcMPcv%2FNU\"}]}\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b2237f168deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":65591,"size_decoded":22015,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"4441938ee433d3657c20d454d352a336","sha1":"dd67121d7fda7c17be196f60c72dfa06bcb5bc6f","sha256":"659bf63501a8054ef0eedda3dec466dbc1e9a1b2c4d5d59a285b005215e16679","sha512":"f90da6f2003442e547813d62f44e22e688f637616dd7f7f33c81e73d05a3a3de39947c0a8f580002cc96a716caecc4bcd988644ad78b01ae2e9a9792c726604e","ssdeep":"768:O6T4cK2yQ6eO1P2WgcdxazvszXIgBB1ARna76Ae/FqsSwYxRrqhlr3NqR:m1Q6eO4+IUzXXsjvi1alrcR","tlshash":"6153e88535d9b0ab42837878946f310bf2ab6d52641c8410db1dd4dabcb4e49e63ffe8","first_seen":"2024-05-16T20:37:02Z","last_seen":"2026-06-13T19:02:15.11616Z","times_seen":15143,"resource_available":true,"data":null}},"time_used":1160,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":591,"receive":569,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f9-1f1e9.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.429Z","timestamp":1781370495429,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f9-1f1e9.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-c72\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=KhHfsKUwrawlqD3vIibGUStRay5R7O1Y77QlfStV2h6bM3bGhKO%2B3sUUKpLcropzIN6DuQUrFYneitjLDzJA7Pw7EIHVrn48PPsnx5wv3rkIwMMSMjJrPp457tolfw23XKkf\"}]}\r\ncontent-length: 3186\r\ncf-ray: a0b2b23c6d438deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3186,"size_decoded":3962,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"ecf5649f1f9ca5ba4387419b940b0286","sha1":"e2956c4b97d6a1de37150423088c07a48db3e471","sha256":"eda78ec0221ac305fefc93d0bf8ba7cf26396ba83a5e7ca5834369e5137acfe5","sha512":"91d19080c0fb75cca892914aa07c9035256c3f076aed0a48a31c555bf1eb25b4f6f518584c1bb0baa79ced6a73a391997e7287d1f0abe854d56016ac8c0cec3a","ssdeep":"","tlshash":"6d613d7d62536a138fe813a9fc4129b375780c6714985cdb453c767e58780d7253c9e4","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.216115Z","times_seen":51,"resource_available":false,"data":null}},"time_used":290,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":290,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f0-1f1f2.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.437Z","timestamp":1781370495437,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f0-1f1f2.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-135b\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tesK%2FhqaAa%2FqVtbpxCBsuAHAqqcI1YJBkSnN8oTLsv4HxMLcQF3wsSqUFC%2B8VoQxnrOmSItaNOPKUSKgVCAMFOf4CnAl8eTu6ndhVmBU0k9blgzUeGIE1Nc23k2Ql4lAqIt3\"}]}\r\ncontent-length: 4955\r\ncf-ray: a0b2b23c7d488deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4955,"size_decoded":5736,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"98766d2ebe764df9bd84a6b933e8eff7","sha1":"c6631457580dedf75bee8a8a22b0adcae0939731","sha256":"7b962cad70debf896b55dcc16fb47e99edc2b67a24ce81cd2ccaf65d18bd2fac","sha512":"32943ba32964b8cc24e48afed55ff21b03aacf1104e0111b3924143b679471a1abc13fd87008f20aa1b9b1e9d8293776d0f7a527ca68983fc18ab7e5e0ef753f","ssdeep":"96:ojDM6SGEsNFisVLYnLAaXKgtmLyJ4SsWtjJnpLH9RQyDaHXC3TGz/87:6M6SGxFRV4LAaNmmp9Qyu0TGz/q","tlshash":"7aa18e93ca59eea12c2b05a7d9e1c1af2d3792a037e2543f143442f4ac985d014a8c2d","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.217342Z","times_seen":50,"resource_available":false,"data":null}},"time_used":572,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":572,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e9-1f1ef.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.460Z","timestamp":1781370495460,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e9-1f1ef.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1182\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=s3Gowoq7nv4dItu1IpoQxrN1fOM4WidYydu0%2Bs7Jzuq%2FR31wWRVH0r9jKFNihZCLgGHNQ7ILd67CglWWYT9d3oxTQ24oY%2FJl1mvREVkRGz85Zad106DJXvnIZ24QPNOPq%2B3R\"}]}\r\ncontent-length: 4482\r\ncf-ray: a0b2b23cad598deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4482,"size_decoded":5265,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"5d13450b3be29e13b494c862daf27f6a","sha1":"2f40395dea0450a11f80a39487dab80535bc2965","sha256":"f3962cac0521763c9af14f578a72d1cb363a60993e29a4d94c8a6a7dabe8605c","sha512":"798b58541da827ccc7e7dd75f4dc12edcc551e6d37cda08af879c94787aff8810d7ac258756a3bd1f33a8d370bea072467ebba4b296d61029bd814e23ef060e3","ssdeep":"96:qvYFUvPDdGEzchVQePVnTTCXRkwN0hHigTmxlCYOcc7:qTkEzAVrYqwOhMxna","tlshash":"90917ca22d4d1d4df26aa7694dabc492ca4cdfb1bed462014737b0e6a47cc984dc5e80","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.218426Z","times_seen":51,"resource_available":false,"data":null}},"time_used":592,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":592,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e8-1f1ed.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.646Z","timestamp":1781370495646,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1e8-1f1ed.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f9-1f1fb.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.664Z","timestamp":1781370495664,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f9-1f1fb.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-18c0\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=w7cTxi2Dek%2Bep4KP4QrHIpG%2FdEbuMp69i5ZGYorcWLcqwOtLt97NYghkCdy%2B5C6QPNWC5Ifev%2FZ20FJsaxPXXHjMN9UbVFJMXG95DPRdFMVDhH8B5UGliCmgSlBlWfSh09ti\"}]}\r\ncontent-length: 6336\r\ncf-ray: a0b2b241bf318deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6336,"size_decoded":7119,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"7f3ae39c99d2e1e54ced5bbf54358ce9","sha1":"410192f70fcf69ae64b6b4a2664509a808907520","sha256":"de315cc3c619c4d29dd01c0cae1fd26975981658ce9083bd6fe682be510bbbaf","sha512":"6cdd3eada87722957915dfae27a2bc6617e940a7ed30ca537250f613683865c540ca2957ad88b8822c147d37a1a473410f1c5882adab8519482ac11f2c8beea9","ssdeep":"192:noaIxMFwJ0i5tanLv4v3WK5faCNH4G7ipYA5:noBMqlGLvO3dl3NHIh","tlshash":"b2d17cd205b0be3ae6d310317a74f256268a3011e7e7448fa98f2d941395bcd852d228","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.21958Z","times_seen":49,"resource_available":false,"data":null}},"time_used":871,"timings":{"blocked":578,"dns":0,"connect":0,"send":0,"wait":293,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/telegram.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/","date":"2026-06-13T17:07:59.805Z","timestamp":1781370479805,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /telegram.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:00 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Fri, 04 Apr 2025 10:32:52 GMT\r\netag: \"67efb554-5019\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QwNTiY7dnm40ggSgHQtWwifmomBoB%2BJnY0U8PGOAuf7yDv5bm8pHUuNibqbO20El0NhuREELNCieIxgXxt6aKWp%2BEcxm3A4d7IRIoEirZmp87GOsMFv2%2FSb4Z%2BsQZuEI0TOx\"}]}\r\ncontent-length: 20505\r\ncf-ray: a0b2b1dacfa28deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":20505,"size_decoded":21289,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced","md5":"4a7c1f2807d4fb55764afa7405023b75","sha1":"7529301dc8154d63979d45c71007c14b87c4939d","sha256":"d2404443028756084851113a5cae296eeb0d510786f948d18dbbba479922a41a","sha512":"f028042701be728b87d3d2303deaed6e62ee108891589dde43d07083391c5a22d0b5ec494f1467c2be1c4b60829ad72541da2a69ab9f16321c2cc11e398aec45","ssdeep":"384:U3KNz8fQ0ILG2I4HcqJLeTKboFPvoKU0aKtZbYagOQzjxD+TXHqr2dK/h612x:8KeQ0Ia2N5eTKoFPwx0RZbYaTQZSI2GF","tlshash":"9a92e1edda453990c7cf81084d18a89a42027afd405528536ca3faf58b6ece75d607a9","first_seen":"2024-08-19T21:07:57.098831Z","last_seen":"2026-06-13T17:08:37.220976Z","times_seen":313,"resource_available":false,"data":null}},"time_used":901,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":606,"receive":295,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e7-1f1e9.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.384Z","timestamp":1781370495384,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e7-1f1e9.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1041\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tieksVrUlX7wWTTdcuYZxlsbjcor5LEurcKpEx3%2FET3HdbsgEkFKpDoVhgmPdTyGgR3vaHNWhRn8bNQ8Np2OLi%2FhOMaSo70zXefmc9ZiVl10Ml6hty%2BGztKoHXK2cIP%2B4TNq\"}]}\r\ncontent-length: 4161\r\ncf-ray: a0b2b23c2d278deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4161,"size_decoded":4944,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"9cce96440206c81df2d7411daf897481","sha1":"85beb1fe03ca0148a15478cf9e96e18921a85f01","sha256":"58544fabf399b60f55eeff3782a04a36e733c64f2035fbc9de6f2af4966699d2","sha512":"9020d879714ceb0888ec08e5dd1b6821d4f690247b6da8c96b4c8a4dbf3f16a27d70e7aeabcdaf23ed26fe260a81f998dd90e61fe3de2946aea3d5a36531f931","ssdeep":"96:tLhoahmE8P27SBenKJpz/EiJZAWyLFr4/xWgHr:t9ogmE8PxxDEoyLFr4/xHL","tlshash":"be817edc170ecc21c2350ebdab3ea964afd8d10d12d66b2877d39df6414c485ec2c6aa","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.222013Z","times_seen":51,"resource_available":false,"data":null}},"time_used":574,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":574,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/3559.7463f2fc78581a5d297e.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:06.818Z","timestamp":1781370486818,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/3559.7463f2fc78581a5d297e.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: worker\r\nSec-Fetch-Mode: same-origin\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:07 GMT\r\ncontent-type: application/javascript\r\netag: W/\"6a1ba772-8e2d8\"\r\npriority: u=4,i=?0\r\nlast-modified: Sun, 31 May 2026 03:13:54 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jH0USWMqzsW0i1rDHbidATOLGeAPHViulaUNoEtqh5UuuefHc5EdORwRetMWaeFggDOGfnGQ%2BGYJAj4TNgj%2F9jPVjn1wggl%2Bd2PlEYhU9H2XGDw9EZRkDeQYbdZsp3uCfqmE\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b206a9208deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":582360,"size_decoded":159124,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65500), with no line terminators","md5":"16e25819c47c646e1cc696a4c8bf9921","sha1":"5007bfdcbbaf6390933a491d24c5f6b94132466d","sha256":"73b2d266beca220ef41207cd0aff880ba2787e960b60ef7446c8abe2bd7f256b","sha512":"ed77d819fd1515ec90c2147daabf26720ef305e23a8139c0d46c4a4fb9b4ca983d29fea8fdbc6a4d1db39b3c26ef149eb67c76ba21f4a73e7e5878087d4f36e9","ssdeep":"6144:NYoaWozxdaI1IPz9DD3O5MM4vHo7hyCS9mzR/RVxXoUC+hRMBNC5M8m3VO:4WozxdaijMDo7hyCYmzR/xrhiCZm3VO","tlshash":"4ec43db37ff1662e58972cd2bca2724163b9c10562446038f5dd80ab1a790cb53bbf6d","first_seen":"2026-06-08T15:28:58.719521Z","last_seen":"2026-06-13T17:08:37.223244Z","times_seen":4,"resource_available":true,"data":null}},"time_used":1953,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":572,"receive":1381,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e9-1f1ff.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.311Z","timestamp":1781370495311,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e9-1f1ff.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-12ca\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6hEVF7vo1vh%2Bj34b0ZebQJJ%2BkWfKNDQHS1AekzmmkTn6qRt8vupCLy%2Ba%2BaeMPJyKhuNIxL1ddGyqI0gCJTAtpDhkvrLfEwycG%2FhvJ%2BHF%2FSQL8lzHLTwSTk%2FqAWeyDkSd71x6\"}]}\r\ncontent-length: 4810\r\ncf-ray: a0b2b23bbd038deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4810,"size_decoded":5601,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"0b9f5ac1da62944e66d41a28af430594","sha1":"5cf75d8f81c6cf947f64720510cb26500db9b055","sha256":"31d1c6376b2c146bd0894c757ecba0b3eb43b996028a9b3bb269f2d170dd82c5","sha512":"bf0fb5d180879233e95b9586ddf23ea44c433b7b63631b1c911ce039b0dd2039e41597fb1aecc97b298d5d5a3326121e07fec48dba3597adf610b76eeb508439","ssdeep":"96:SAXQuM6O/Mw9U4T6EJic1uKm7+D5FOC3SHPPADVP9Auok1:SAXG1/Mb4TT/1NnovYd9Au71","tlshash":"49a17cea663ebaf8d4f044e0187361b8245bcd01a50bb1deb139f75ea17a78c20de04c","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.225032Z","times_seen":51,"resource_available":false,"data":null}},"time_used":574,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":574,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/icon-192x192.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/","date":"2026-06-13T17:08:00.511Z","timestamp":1781370480511,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /icon-192x192.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:01 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=6,i=?0\r\nlast-modified: Tue, 01 Jul 2025 07:43:46 GMT\r\netag: \"686391b2-bf3\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3BeuMbWuLiApqBAqIZAm35DsvYDStxlcP8rPkbUKdY448Gd%2BGM5WCGF2vmG6crv4wbxVBd7sWDXWoTMxJxKwsPGtHNtEhPZUL3McEkwqYlM%2B0DUbhLM%2F%2FxEm9fHDNFx0UKlF\"}]}\r\ncontent-length: 3059\r\ncf-ray: a0b2b1df38a88deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3059,"size_decoded":3844,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit colormap, non-interlaced","md5":"1a1650d2c76bfc1ac484646c19e495b9","sha1":"fe58d66042ce9241226f5da9370230285ff604fc","sha256":"6e587a62c9d7a97f25265ab5eb29d101ad2e36810042a4116d2dd29da96b0bf8","sha512":"79c5c9278959bc94f66434779bebc1b46c055655f0bc58aa375f179c227e7ac0e52dea196764719d42aadcf98e4fd3b5a4488f2db977edde430aa3df733c03bc","ssdeep":"","tlshash":"bd514cd3253318e8e2dbfd7ace62041f656691ce5638ec120568de720c8985dc070caa","first_seen":"2023-05-16T22:57:55Z","last_seen":"2026-06-13T19:02:15.128691Z","times_seen":16404,"resource_available":false,"data":null}},"time_used":593,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":593,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-13T17:08:02.484Z","timestamp":1781370482484,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/ HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g0$t1781370480$j60$l0$h0; _ga=GA1.1.95620750.1781370481\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:02 GMT\r\ncontent-type: text/html\r\ncontent-encoding: zstd\r\npriority: u=0,i\r\nlast-modified: Sun, 31 May 2026 03:13:54 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fU9bwWCDEyigtjwdkmq%2FkhCso0zGPJVkFGuCIItQk4p82X10c6eAz6oat2hOCu0Y35goi%2BiAvh0wQD%2Fh%2FBIzg5M5lXZT89QmXWSqYVE60ZU4YhC0TMIqpgyy3ze5NOYoHSWP\"}]}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-cache-status: DYNAMIC\r\ncf-ray: a0b2b1eb8b728deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5362,"size_decoded":2572,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (3990)","md5":"c1846114eea3c0dbe803f60305cfe394","sha1":"9c80e23428c20840d0e5452f10869f5c1720f0af","sha256":"419d7b2408dee5d0341c0a0db44514b16797c32f5c7933524d5a4801c5b7ea29","sha512":"84f62cc6eb046530fb09fd5e6de11e66680cbf6d27b8505d120706f1c379d944e2995777ca4f4eef43f973cb0ce5e904f4128f0eea74238aca43d4509fa31ed8","ssdeep":"96:xEFzchG+b5C1dgHr1SnTlWe7SM/kACF03a13pcBG:aFzazCkrFlZm3a5CBG","tlshash":"e5b101a34b294c482221d136d916f80ce537d07ea764ee14b6981cff99e3ef1c2b7925","first_seen":"2026-06-06T06:06:39.171835Z","last_seen":"2026-06-13T17:08:37.226078Z","times_seen":7,"resource_available":true,"data":null}},"time_used":1872,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1872,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e7-1f1e7.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.387Z","timestamp":1781370495387,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e7-1f1e7.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1118\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MKiZOtuQ0QlDLTGf19bKH8xbAsZPcOiA3uEQgi4IHFjAoK8vYGwa5DPtshU2nwG9ll5lc9kYuAoAZBKdM73N5KqqCCrLYhGvmADTY3woSTpckRLPASCFXVhGhAnKDUzXRFpE\"}]}\r\ncontent-length: 4376\r\ncf-ray: a0b2b23c2d288deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4376,"size_decoded":5151,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"169e9b640f35f58b07b84d8df798d576","sha1":"e25780eac5d5702735b82adc6cd0b2b68562db4a","sha256":"13a95284da99a4d86775ba3db2fcf5b4876ed338434b11e8d2d6ff27c539419d","sha512":"8a067666f08648e732b7ff58bfb8c97f5ba7170599ee4c77429ebe1f736c0c030fa52d93e326c1030c56169156e0cc3dcdf18bd7aea2ad40e6f5ca6585984ab6","ssdeep":"96:Qyp6stiAF/3qFCRZt56lcyQQbMOwMTGWIFlik+4HRozX:dZJF/RZgdZwIOin46zX","tlshash":"98916c6ed05dabc6fd564f091ea5e227d4614ea06ff2434a5a473b8a4ff0c95c43d010","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.226995Z","times_seen":51,"resource_available":false,"data":null}},"time_used":591,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":591,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ec-1f1ea.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.505Z","timestamp":1781370495505,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ec-1f1ea.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1627\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bL5rfJXf4t2ua53zeqC6XCw85prxIS6bmae6vSNg71V0N7TdELEGxbU3HsvkCPtFQa9b6%2FF%2B8AgAiG0lgpdTD6iKvJDpQsRSMyc17VnPYY48EfSsysdInDgzynGNLkrfmabQ\"}]}\r\ncontent-length: 5671\r\ncf-ray: a0b2b23ced768deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5671,"size_decoded":6450,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"dd811686055cbd9eb103790eb16b0fe8","sha1":"63dcd9037834ae320617caf5233a9318f431effa","sha256":"8af17af38e6512174a94f52af48d24acbd2ddbda6cfb2aa1b334f14957f1f34a","sha512":"3a5d9c84bd39e2d215f8c60494338df7baf6ea876090d230eec3c2d7b1c63ea767c6a4e3a67cc45513730420dcfd6e2187c5a5e1daadfb2b58fd08dd6f743b51","ssdeep":"96:5S0luVvqf4eeT064fV8AXb2hVWN/ujVyZ5eUGVD6AOE+R663C62mO06TH1Qiiv:wwuhqg0fNgWN/ujsXeUC0E+RV3h2p0gq","tlshash":"5dc16ee62e09c33f06a461394ac3739ad1630db474d487462303bbb44afa55a104fdf7","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.22787Z","times_seen":51,"resource_available":false,"data":null}},"time_used":575,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":575,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/favicon.svg","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/","date":"2026-06-13T17:08:00.513Z","timestamp":1781370480513,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /favicon.svg HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:01 GMT\r\ncontent-type: image/svg+xml\r\netag: W/\"6863915c-37c\"\r\npriority: u=6,i=?0\r\nlast-modified: Tue, 01 Jul 2025 07:42:20 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LQPulbvXr%2FX%2B46layT%2FglBNBsxFlsKBSMyoXI4Sl1KCCXmy2ajhu%2FCaQtXQm%2F3Ch%2FNfGpeNUq%2B07HhiGN3ifIU22PCzFSL4lisdD6yrUb%2Bjk6aqaCfIiEMZheRn%2FuOVitnWz\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b1df38a98deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":892,"size_decoded":1343,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d9ee2d4b0edd9f8ba2fb7242162c2c47","sha1":"398522893cf2cdefb5176f11bc67eab31c2d7382","sha256":"a462f1c5333e16b48335054493cfd1d0a13a96847b4b9ffe2cf24403e6e86010","sha512":"e404678e96fe6f6d1fe6c1390e4a64d90844a2d8903f84f1a34b23137593da5ba04112d9504b8bf480b392b294830a363344c5767e3bb5b7a3cb6f5df2a3aa45","ssdeep":"","tlshash":"97114493d060e71ad4c9e16bef61fca0116720cee5b745d485d95a34500fcdbfc08668","first_seen":"2023-05-09T00:01:39Z","last_seen":"2026-06-13T19:25:53.135767Z","times_seen":13989,"resource_available":false,"data":null}},"time_used":589,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":589,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/compatTest.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:04.402Z","timestamp":1781370484402,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/compatTest.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g0$t1781370480$j60$l0$h0; _ga=GA1.1.95620750.1781370481\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:04 GMT\r\ncontent-type: application/javascript\r\netag: W/\"6a1ba789-9f6\"\r\npriority: u=3,i=?0\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=WXKVlvF95BXyxYUkc7WxM4HUa5Pkc6%2BGxMMcf1Zsrkib2P8ePua94qF7zOrRsMiNK%2FLX9B%2BMgBcdzwGnyBLi%2FSU3b1d8JFCHP1WhIB7Zmw1DJJPS2yL3zLKcUa2nljPok81H\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b1f78de58deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2550,"size_decoded":1765,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (413)","md5":"a7bf9f96ab9bc1cc44d07be00be1d3a4","sha1":"a2b9045d69c63d57b371055dd70b4ad8ec71580e","sha256":"1ab74230c24da33fedb68e1b1536c670c141fb0e8c0f638f0a1a69bc78878f09","sha512":"d5ef74355959610682c667bbb0e004bf368d661b7aa8cbd3da01be6c0de9f36a1b1b4691c04d082fa7ea234c27da6c068be83ca965392f2928bb2fd52059bf32","ssdeep":"","tlshash":"c05125190db5726150796167ff1bb2433a294173050cfb64a620cf393eb285bc29fde9","first_seen":"2025-04-12T16:14:40.336405Z","last_seen":"2026-06-13T17:08:37.228607Z","times_seen":466,"resource_available":true,"data":null}},"time_used":579,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":579,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ee-1f1f8.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.534Z","timestamp":1781370495534,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ee-1f1f8.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-12f1\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=oi58SaK02ve6ijUxjfkUXmsdcta5DXVZ2qF7BSoEovF%2BvmZ3T482aBEpQM7nkaLQXijN2xtFZoZdCaORiNL1jR4%2BUxpxUvaJw3rhDTPSoE0I8wE22wAMEcTis57vkYax%2Fw6T\"}]}\r\ncontent-length: 4849\r\ncf-ray: a0b2b23d1d8f8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4849,"size_decoded":5630,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"aa45551fa752cd134121a6b33d9abe1b","sha1":"75647fef8644e56bc4c602134ceeb7c01d2ccd9e","sha256":"404d8514fa3d68c5d81841b950ba1b5f191124b5b5935028faf2c727c741849c","sha512":"adf1c3c0002ed4dbf4699f6bb713aa108fae43f1df736fe6acedae94dab440cc5f22c8f0ff8009a2abe1e4bc93df1e45b77bf6e9d4ef2628110b0c63014aae85","ssdeep":"96:hu9t8vUZIjSY2P1zX9Usuzd8+8l67mh7pH8wm+J:hu9jIjwXX90m9KwfJ","tlshash":"16a16cd6c33ab6826a2e77601341e0c9f4268f3bf0500624e5f9b654a67dc161c270dc","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.229422Z","times_seen":51,"resource_available":false,"data":null}},"time_used":588,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":588,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f8-1f1ee.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.634Z","timestamp":1781370495634,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f8-1f1ee.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f9-1f1f0.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.656Z","timestamp":1781370495656,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f9-1f1f0.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ff-1f1f2.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.680Z","timestamp":1781370495680,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1ff-1f1f2.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.324b1e6d0f5ae7c6ab42.woff2","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:06.573Z","timestamp":1781370486573,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.324b1e6d0f5ae7c6ab42.woff2 HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/main.646e16c287a10cb1a6cc.css\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:07 GMT\r\ncontent-type: font/woff2\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\netag: \"68b1b066-2b30\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ulUXJptFKZVaWZan2%2BluV7CI2e3jzOOL6wlSMeTSxT9fl4neBNwuvzypRAxeiER8163aE0zg6ehxwhJ9wsq92TsnziaXIPquC%2BpkL7HM%2Fqxf%2FhnxqCK70OaMBXE1qWnDI3tr\"}]}\r\ncontent-length: 11056\r\ncf-ray: a0b2b20518d48deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11056,"size_decoded":11844,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 11056, version 1.0","md5":"07db243db21ed0a6b4ff05ff429686b7","sha1":"5d62925fdd7ed8e80f206d095ed093994f13d276","sha256":"ce897833ac6e362df7c91ac8223fe511c6defcf33964928a81004600a2dd4c2e","sha512":"d34d15e91ba706886f7b098b5a42b3e31d374fda47d6e873f10b40fbea78d848921d124fc17045e77c432bcf2b4d4adfe5aeca4c3122cec199ac92e3124541ec","ssdeep":"192:duC8R1LnQKFt7DX2XFEu+zjdNr/ucPDf/Teifn/m1t7w9vxUBpZRCo++TkXT0R97:dL8bQKFt32XF/+zhNr/uS6i+tU9v6RCM","tlshash":"9d32bf0731ed12a1f9e8b3b1b9adc3490ce275f00bbc52da8669787ed43660e95d0078","first_seen":"2023-04-05T09:25:54Z","last_seen":"2026-06-13T19:25:53.146467Z","times_seen":7625,"resource_available":false,"data":null}},"time_used":875,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":589,"receive":286,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"telegram.me/_websync_?authed=0\u0026version=10.9.17+A","fqdn":"telegram.me","domain":"telegram.me","tld":"me"},"ip":{"addr":"149.154.167.99","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:06.700Z","timestamp":1781370486700,"http_version":"HTTP/2","security_state":"","security_info":null,"request":{"raw":"GET /_websync_?authed=0\u0026version=10.9.17+A HTTP/1.1\r\nHost: telegram.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx/1.30.1\r\ndate: Sat, 13 Jun 2026 17:08:06 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 24\r\nset-cookie: stel_web_auth=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; samesite=None; secure; HttpOnly\nstel_web_force=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; samesite=None; secure; HttpOnly\r\npragma: no-cache\r\ncache-control: no-store\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=35768000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx:1.30.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ea-1f1f9.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.484Z","timestamp":1781370495484,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ea-1f1f9.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-12c8\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FpCxZ2SrtMwt09SChdE9%2BoAipk66TDYNBpiWIMFaTGGm9XbaEsOGJv3NG%2BN4wXaQAZ8s%2Fx4w%2BuqoYP36juwssDj6OIuOhj9BmAh2unggPkOvtIWlKxrtB7HspOR5MWsWwtjc\"}]}\r\ncontent-length: 4808\r\ncf-ray: a0b2b23ccd688deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4808,"size_decoded":5591,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"83c96b32eb1472c164fda3065db09692","sha1":"09f1be24d8acc2c56a8265ea653e1ee8f5d00f59","sha256":"6b203d12b0e1c0eb9a10d94d8854af4c42657d63709f9297032f67fe809b49ef","sha512":"43c89d2a25ef4dddca20fa49d5302c6148d547e12e1ca82fcc951aa9efce06e8c0a18fb709ce9717a582c327d0f623cbe0517d3b0625583a8a783f2ebc554a7e","ssdeep":"96:2/V3QfotGc2noVtO9hs0X+HKHNZK7SVXSowRDpn31vJE+Fh:0AfotFQiOFX+qHmSADR13D","tlshash":"4ca19f23b15459684434388a0d59f67da509641a872dbf637eb3f4a25e200e0f0fcb2d","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.23094Z","times_seen":50,"resource_available":false,"data":null}},"time_used":585,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":585,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ec-1f1f3.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.523Z","timestamp":1781370495523,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ec-1f1f3.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-db2\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yXlYcPfY0xOc04d04l86cWx7bJdpBfYcEpM2Cb%2Fet120dHoEg%2F6QqQBa8jGTqYl%2F2GK%2F8Mna5xkq5RKYtaqTXSvS6usznnAFiygOajDQecaPJUyva30MNUwP%2BFa1ybKDj7Mw\"}]}\r\ncontent-length: 3506\r\ncf-ray: a0b2b23d0d858deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3506,"size_decoded":4290,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"fd1cbd965f0480d1187ec9153753c115","sha1":"c9acfddf4888996df5a4f3c929011c8a0e9c35a4","sha256":"0f2afaff9323ac0033f872c217869b06e2b2467569f0340699b8010761eb115c","sha512":"b94b92bc6d878b0020ec4dece2b1b913d194088f23567c69e89ffbc330136e84d548ea71f3f7c10441a0c3e64e5753e33de501af991eae477a225ea2c37af578","ssdeep":"","tlshash":"ee715c75e691e8b2d327f47952c41be7dc64ad63222a23819e02f2b28df6a31d141b11","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.231611Z","times_seen":50,"resource_available":false,"data":null}},"time_used":588,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":588,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1fb.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.568Z","timestamp":1781370495568,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1fb.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-10a3\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lweP6XG7f4y4P1pvJrKGRu2SuHafpv8auPL9iOzUXUqVQBdFYqC%2BNON9DXmrtNcBKsWkjsjX7E2B8P%2B4xReW0xKaI%2Bk8TkcfxeLNdN958ANXM12IiXBvhKItINEFesUe6jzz\"}]}\r\ncontent-length: 4259\r\ncf-ray: a0b2b23fbe3b8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4259,"size_decoded":5040,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"e12d12c335e6d092d0dd943e2cf1d341","sha1":"778951f9fad005ced8e2899af07c12b7b5d0d911","sha256":"47e91d916196929f3fde8f93b8aeb928cc376775bab65a51868d31001347338d","sha512":"cbd1e81fee21efea2d14a4ad68fd5b350c6cdd197c9c2a6d65c495ee5f08b4b39e36994fc684b7861053242a9a6630f94e42a7ce371f02bc24bbf22c47e30627","ssdeep":"48:htYjxb6iT11H5qcX1nvj/WipAS4bIuPFBEEXFlG6zlAGsvpEC61UZe2ANumxwNHg:Y1681HAc7pz4EylGiAGsvqC6SDgeFLm","tlshash":"51918d043470fe4e5ee35caabf3d4dec09b871a5528a190a4c4b6cb66745b8281ce376","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.232288Z","times_seen":50,"resource_available":false,"data":null}},"time_used":565,"timings":{"blocked":271,"dns":0,"connect":0,"send":0,"wait":294,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1fa.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.574Z","timestamp":1781370495574,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1fa.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-ff2\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=afURgixiI8mLkvbSPVzF1n%2BTOEJoeiPIVIPt%2Bbk5o677Iy6YebcyH4Z1WzAxCLA4FwAdStYJOPo9pY%2BkX%2FetlLWc9%2FCUjYYuR7HAtsy3NCq13AO7J%2BxfY2%2FFMXj0WMmqzr7P\"}]}\r\ncontent-length: 4082\r\ncf-ray: a0b2b23fde4c8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4082,"size_decoded":4870,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"0a48fd684b5222189d6e49eccc153bcd","sha1":"94b240ef4b26522e8ea8e97a659be1ad7dc67852","sha256":"9eaeb57bebe394337c0109b5f93b150af46a66ee9cf74a3b38e1e59e710954db","sha512":"36a9389efb14e4b0ece782cb5e01d248d342730a4df0562bfeec7628c8df4450c2880037df3d857fbbc43abc3cf383efb17e76651a8b6e387aa7ba9ee972ae07","ssdeep":"","tlshash":"d7815ad2fc8f84aca3ce6e5b5dd71d21e45a3d0b25838e3258093b85ec3531e0e9478a","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.233089Z","times_seen":50,"resource_available":false,"data":null}},"time_used":876,"timings":{"blocked":283,"dns":0,"connect":0,"send":0,"wait":593,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e7-1f1f2.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.397Z","timestamp":1781370495397,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e7-1f1f2.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-192b\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=R3gieQ9CQ5aHvhWWEJ%2FnTIM%2B6fKGJerr%2BF5AcF40Cg1tY%2FO8RQK2hNPAHxqa6HVMXtp%2F8cl%2B6buW094VBnbg20WW9VrVJDmPaO3GkhBU4%2BasXKuFn7qY2NY9jHPnoTIl%2Brry\"}]}\r\ncontent-length: 6443\r\ncf-ray: a0b2b23c3d2f8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6443,"size_decoded":7234,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"8893bd3b330f2e00000312b8d55173d5","sha1":"692a2a37f63969164409663cd993aaf871232772","sha256":"4f99f5cbc08a8b0a99ede93feb3216394bc8eae99a1dff6a96b002bb75f20b73","sha512":"0c8454796253ed07595a0db4c0902ef24553fec53a6ca8b68d59a27f2fcce65ff4b6361a27cd9f65ba20c52e75798d7f1d753f9e1796a029553929a3dc17bd91","ssdeep":"192:qorVDDW9RQOi3jE0Sv5tGdrBN0yi/PCQ4:3DDW9RJdGR9l","tlshash":"c0d18d0262c6cb3d8d462fa77110745e2596ca631cc4610fce26eefbd8523e4ed867a9","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.233746Z","times_seen":51,"resource_available":false,"data":null}},"time_used":291,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":291,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f0-1f1ee.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.549Z","timestamp":1781370495549,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f0-1f1ee.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1a16\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=KIxtC5IHbbndlnmkDz4uSFlzKY3YsbKYMYA6Oxa1MY6%2F0gHm4t0t3pkCgZKdVmSOU7KpVnV8uDmtTel46MRMA2%2B9ipaLny5e3bPMNQhqtgmLHtKuHTwgIBivBHHghwBaXs4H\"}]}\r\ncontent-length: 6678\r\ncf-ray: a0b2b23e4de38deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6678,"size_decoded":7457,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"b480a1b743e6f494f4005adba3b4da89","sha1":"3a6dc6e4274a7a0b44eda40dcb135fa8fd4f2b57","sha256":"829fca7534c881467ba0d265b4cf9531d6abd0f757738aa8782faa1ace47be10","sha512":"b488707919b7eed9484fcf189232a503260d41ef6129a1e0c3877088727f6e0b6f624b3509cb1ca713563d1ce44db93a9b207e1c6423ca6b70d6df65bc661c4d","ssdeep":"96:8TEit83RXMCn5B0Uu13vMThDP1Y7NIOqA6w/4zYLITFojeK2ZgMOOP:0EsCn5GU6vYDP1YHT4fwqKm","tlshash":"a8d19f400069ca3bf1f702c5af5b459b8fa1676640af10f7460b5c6f95b8fe9b5c8498","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.234408Z","times_seen":50,"resource_available":false,"data":null}},"time_used":331,"timings":{"blocked":36,"dns":0,"connect":0,"send":0,"wait":295,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f1-1f1e8.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.620Z","timestamp":1781370495620,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f1-1f1e8.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-12b3\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5L%2FhCqYRDsJmhXMfCEkxjF4%2FziFREes3FHuU4MdSrELPPI5SWapA3j6kvCXheflvOUeJ7Y%2BimF4UoVkIh9T90PXLyILFb2E2imlbR9PbUFcddDLCKUlzcfkqQ2IvEkGFwVNR\"}]}\r\ncontent-length: 4787\r\ncf-ray: a0b2b2407ebe8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4787,"size_decoded":5568,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"478dc44dbc2913670db99226a735bdcb","sha1":"f68d353ef65aed964a2a79e4174538ff5b1d8196","sha256":"5ffae5c9c245c9476f19cb20c0631249af433fc41a05897a31312524a2ad0185","sha512":"b438b80212acee1e88cc87e228753c8604e35e5e2e96ffa7090f42d115c18c167662cbb56382106fef6d303776cba7774e5f74678e9e386693953cd3c0b132f0","ssdeep":"96:spYoqmlL93hTHdk9f+e+8ZzUD+wIQFU+dbRJZaVK+RSIZU91:eDj3hjdkAKdmIAFVRJvIZA","tlshash":"8aa18ea1f54193ba52e333f1d910a5bf8b805075456fc89e681e3a3d0c3076f0442e9f","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.235031Z","times_seen":50,"resource_available":false,"data":null}},"time_used":951,"timings":{"blocked":387,"dns":0,"connect":0,"send":0,"wait":564,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1fb-1f1e8.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.622Z","timestamp":1781370495622,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1fb-1f1e8.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-111e\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=H8fLUznR0v%2F6B8sAVCvVjSQ0w2UsCHNOwpuqbBSHv5jahqgQu5UTjRS5842KwX5CjO2rAVfVWeqEx8kPcCCeLnv0Ic8gZjnVguVEGyJIICpHik0rPZatZ5OsA4JqU3j9Hzjt\"}]}\r\ncontent-length: 4382\r\ncf-ray: a0b2b2407ebd8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4382,"size_decoded":5159,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"1fcc75099d7990fe1c814273eca3541d","sha1":"6e6b199c763bd01fb45d025b768cc2e23f5baff7","sha256":"4f35ed346d3cfe96927e3ef0a787816c8caec2df56927eca0dc5aa9bf079ae25","sha512":"630921cc286735dc8cd64900fe15bf694f7ae31572735858d3543714f4769dfde5d5183c9bdd1872e6ee41c7351d1d221f875581afdb81095698851b0fb77335","ssdeep":"96:Ynjt4svNUmFqiIUp8NxtZjAwi50zt4kqB3+gysm8JJw1Wo+sM8Z3Z:6amFqNdNbk0fq1ndm8XXQZ","tlshash":"33915d7707292b2f460c77281a642073ea339c254b61f064c705f7aca1f9a2dd836406","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.235646Z","times_seen":50,"resource_available":false,"data":null}},"time_used":944,"timings":{"blocked":387,"dns":0,"connect":0,"send":0,"wait":557,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f8-1f1f7.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.644Z","timestamp":1781370495644,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f8-1f1f7.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f9-1f1ec.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.654Z","timestamp":1781370495654,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f9-1f1ec.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/8287.e246ccf6a476d82bd6b3.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/3559.7463f2fc78581a5d297e.js","date":"2026-06-13T17:08:09.386Z","timestamp":1781370489386,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/8287.e246ccf6a476d82bd6b3.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/3559.7463f2fc78581a5d297e.js\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:09 GMT\r\ncontent-type: application/javascript\r\netag: W/\"68b1b066-6b2c\"\r\npriority: u=4,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9ZYq2gsZjdzwUaOry5z6Z78f4vdgX6ccUdA0J22Jujck7ZyOFKsNAX4bsCiiFiINt7XFP%2Bwm%2FSH3WCiXg%2FFAGVi8tDdWl1%2FClp9twQavcLEu3C%2Bs0N52xQYTVzpJf9zMFciq\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b216bc7f8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":27436,"size_decoded":9585,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (27299)","md5":"271a1564279ef46aade8f072c12777a5","sha1":"d80ac257ca8df39da2b51a520807dcfe0439fcd5","sha256":"874a715375bad69dec2b9b1aad6d8b1a9443c4cfe2c3f2a0319b21a733cc2a4b","sha512":"fa2f77b23a9543bb28e3d08b3adc0ee4c923e2ff4b9333b068d7f309b9462afad9f356a3975b9b99d73c8dcef47e38c610d4cc2cf813b64ec5b6ab9f46826e82","ssdeep":"768:uRyLQqo27ZC/YPqRvxFsqfmdSmTRrfBobGsT3ZT3GiYl2T3yT3TdVcUWA7h5D1OP:urHVeNBoCEl/KfdM","tlshash":"b0c28584f7a5b07603626691046b541bf279ee28b44c58acf250e4f328b78da94fff74","first_seen":"2026-06-08T15:28:58.632113Z","last_seen":"2026-06-13T17:08:37.236253Z","times_seen":5,"resource_available":true,"data":null}},"time_used":590,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":295,"receive":295,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ed-1f1fa.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.533Z","timestamp":1781370495533,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ed-1f1fa.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-fac\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dg7jMrCVO0gAsR%2Bg1ntteUjSoHoO%2B6NExXGN92%2BZJMDva6vU%2F1DYyXjXfZJfKlXRtB3WvJOh58o3NVXmhIsJsuVXLEHCjGxUswT8aRg0eEixm6OharRxoPJHkOHpG3M1AkPI\"}]}\r\ncontent-length: 4012\r\ncf-ray: a0b2b23d1d8e8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4012,"size_decoded":4794,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"9c723719a3623569764a0757926b0cfd","sha1":"004fe2c611471c5bcd487352c6596147f108dea3","sha256":"92b3d3a5fbb2de40729522e159929ab03ce6bb414d38afe65b363340c9db097e","sha512":"58d118c5dec4827f70280170ed1b92fa7397471f4ce3f5c189c2ec9694a2f7aeafe48701dbcde7924142739c0a6944600ce62e86169088805918e12540b0bdfd","ssdeep":"","tlshash":"b9815b0eb03d7ce24f9d3a38758266ce480a8cead7fb21d64401bdcb23779870478989","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.237063Z","times_seen":50,"resource_available":false,"data":null}},"time_used":565,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":565,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f5-1f1f7.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.613Z","timestamp":1781370495613,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f5-1f1f7.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1fb-1f1ea.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.675Z","timestamp":1781370495675,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1fb-1f1ea.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1280\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ntnIkKHmcLsogkv0kb61f%2FjUDw25vavnmqylGTVNYFuaYRtY1gliRoRy4XWADRhxHsN2P5ifGi91iLSYMZbYb%2Bgl1wC84uPLTIsPcWnMyd2Kc8k2AmgvEo9ZB0JZA2el%2BlbT\"}]}\r\ncontent-length: 4736\r\ncf-ray: a0b2b2420f438deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4736,"size_decoded":5517,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"9bbe895092077e68398011224091b9c5","sha1":"9ce792d7ad517001980ed96efe0fbe19779b8631","sha256":"6bab72f67ea7bfc3a8e20d0af2809c4c46f72cc7d2a86a729089b3706137e294","sha512":"1251964d3c08010f54541ad5ae7fce8791616348e546baa9c43c59223bf212de93dc66ef1cf9756cff74a0484f258fa34b6d4dfe1944434689f87ebe5bf70d46","ssdeep":"48:hhwHKpVuILGzUV0YhAne28HWITzNCs2QjE/j7Hx/zbKzGRcgIcl++8qxOXCR88dU:YI9yQCKapIsQ8oGRcWf88FIiKTp1Jzn9","tlshash":"70a1aed0052ca467a3b5427f0ee30c7d8055ba8449856ac7573388d2260fb8371f9e0e","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.23861Z","times_seen":49,"resource_available":false,"data":null}},"time_used":916,"timings":{"blocked":626,"dns":0,"connect":0,"send":0,"wait":290,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e7-1f1f6.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.402Z","timestamp":1781370495402,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e7-1f1f6.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1330\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ydEi5nW75YnsQgZ0gM6ubIr%2FxmTPNiZOAC%2FZc%2B1SsaciOOLeDhwgWO3j3M3mZXgvaGgagtWceN8NahRNwkWf1pZ2P1pqf2qECFLRoaLtCQdyeCM58yjsWy0YgX%2BIXrJ9UK7P\"}]}\r\ncontent-length: 4912\r\ncf-ray: a0b2b23c4d328deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4912,"size_decoded":5695,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"9484c455a7b16ff0cd0b05ee0bc89f08","sha1":"343bbe9e5c2de3994a1e6b18b2947dd08909ee51","sha256":"1ecb9caaa6f27604125f3acce0adbdacccc55c3bd6163c426b5470b92f05e886","sha512":"d29c861b82b166d91addbc128e7b3e33a6609c5ff158335a7259f5ad6c7321b50f60221f543becbcd3492c630c733f09616a3e3b1187814b23de3ddc33aee509","ssdeep":"96:5DbmjepM+w4jUQEwhw+AAlyGGdkUDoedrWYDFHlYVGRm0p6:5bmapZGIN8d3ked8ML6","tlshash":"7aa17ee3bf6928a9ede0c7a320320ceb175bceb778d852c14956b5d08931614a185d85","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.239874Z","times_seen":51,"resource_available":false,"data":null}},"time_used":288,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":288,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1eb-1f1f0.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.486Z","timestamp":1781370495486,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1eb-1f1f0.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-18bc\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wGTBHUvimhaZXhmt%2BKlxpGW%2FSppHRb2VDdbtRRJdFqxrwFJ1VCLwN%2FOVs398yP8ueFT97A3uwREBtA63tvd9s6LFEWXufQxK24d%2FVJ5KR1OIQkxqAbIiv1El%2BqJobrdp5XF4\"}]}\r\ncontent-length: 6332\r\ncf-ray: a0b2b23ccd698deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6332,"size_decoded":7117,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"c7f2437b49177ea45b571f714c1e8243","sha1":"c3e15d330e9630b5efd8283c02ee08d0e7e93fa4","sha256":"0d381380d35a122eb5367813b8a0f6762d32bf87d9219b94c4b4bcf9e10318c1","sha512":"ed30ceb6de7c8f69f3d6032998941c49751415ed2e4927efcaef30232838654a4475e301277cf482db796cf44b982d736cf65f05b95afb84ef0d00ac5e411d3b","ssdeep":"192:OtZuqy+gT/QXWiRcxHfvfP4654tKPEv332w:OtZu0Y4GQcxfP465HPE1","tlshash":"a3d1aed848420c478b4b63f16b3ab25b48b80d9ec525c0de9e1c350958f395eedbf552","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.240574Z","times_seen":50,"resource_available":false,"data":null}},"time_used":588,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":588,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ee-1f1f3.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.535Z","timestamp":1781370495535,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ee-1f1f3.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1261\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=S4zxJKSPPXIR68RFzHy7pT6%2Fn0KPVj3P2ZDjDviayAQaB1ailXtcFMjhCYkn8Sw7NIFXgRxZIQET1aGeNFMpyKEa2emcNgFpwyLkh2GylXvIEwDG6e7TITn%2BWx8DEmOTSYk5\"}]}\r\ncontent-length: 4705\r\ncf-ray: a0b2b23d1d908deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4705,"size_decoded":5484,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"f44926ee73b2301e2817848675a8c60e","sha1":"02c17511b14e855a27f86868fa5cbe29c48c299e","sha256":"e812f13a179656f2ecf05ca4f0c4bb33569b0197211535ad10b9fc4ca0f0b1a1","sha512":"bdbf897fcf6038ecef01eb43cda79ad17935897eb09702d0bebf630bb5a86e698ef26596b5ccc880ed4e0f2479a83e5d5f932b65a6a743e87dafdb8500d24ff5","ssdeep":"96:CDPFsTFrTg/H7SkuXyRofv7mjZbRLzWW+lRMCY/MwFbci6WcQ7:Q9UJYonK9blzWW+r2xAC","tlshash":"31a16d1d10959eaba32f9f346c8e269d024984ea498db17d75080fcfe1edd8f283d589","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.241199Z","times_seen":49,"resource_available":false,"data":null}},"time_used":573,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":573,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f3-1f1f7.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.587Z","timestamp":1781370495587,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f3-1f1f7.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-121c\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=EWcbXl%2Bf1b7miq2%2BECxx64XYtZQ2rR0a2%2Byrt0GAg9JE885bc1sVwI9yvEwfdNv2mmIFsB%2FnJ3XjP1xmuU2lFs%2FaRPfZgy76uKpMWM6zoxeHnpht39uDYtQOTc6H13kj4tPE\"}]}\r\ncontent-length: 4636\r\ncf-ray: a0b2b2400e648deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4636,"size_decoded":5421,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"011b044d1fc504973a154508d7134408","sha1":"2297c0cf7f7c917ec5ffe6fc43ef1443b31b2ceb","sha256":"4f285b0ca9aa0455c56573b87ffe46230275bd8404c7638deca3ae9b1ed7f4fb","sha512":"f979cf17bab2e3fc88b448310e3fc5427f3705abcd9caa7e48d35d3fade5c0917b8b0fa6c69fedaec606ccbda6bfadb3442054c40298538c70b263193b9bed1d","ssdeep":"96:8laXKYDxamRDIGfGDBNl6+SlbTNlclCfswlNs8JjbWoDL:8shDHqRWgpcjbWov","tlshash":"9ca12a6e70152e9b5be863371e3080ba35a16e29376ba68d62a43dbc0375a6094193cd","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.241995Z","times_seen":51,"resource_available":false,"data":null}},"time_used":614,"timings":{"blocked":320,"dns":0,"connect":0,"send":0,"wait":294,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f6-1f1e6.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.613Z","timestamp":1781370495613,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f6-1f1e6.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-10a1\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wmZlErbm1Wo%2BfzyldFpBKvbtXoSKnVVBZCuBkOHtgdXJkT0QvcSG0azTO0UR%2Fb01l%2BMnUMqfafOnEaSaIeeG7CW3CdV2ZDv67Ld6Lc%2FhP13i9KNwxIqFDbmfn%2FA9BsB%2BMXvk\"}]}\r\ncontent-length: 4257\r\ncf-ray: a0b2b2406ea78deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4257,"size_decoded":5044,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"a6229519b3a10eb0bab9bcf35fa87e7b","sha1":"8d6003957109a2267ade71a24f337582846a8938","sha256":"f1b2b894f4bd6d4b2e9751e9c7a84ed909c8ea66806742c8b759df24eb09ccb9","sha512":"2fb9e111a07e4fbd3f3e05aba9a34525f3eaf9bce0f2ead15a8f216a050d155f6b6dc6223d54aa3eb07e85c372fe7833a537f63bbe5c0d3aed50d4b5a49ece43","ssdeep":"96:vkMUUWHOqtnyau0OgsgsL7KA+anUSNcdidW1p1SMvo:vkMHmmKsLqR8Wxg","tlshash":"ca918e8afbe443fae4de234949e140268f4d7fb6ae01475629d33859c1b91f50c8e335","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.242711Z","times_seen":50,"resource_available":false,"data":null}},"time_used":664,"timings":{"blocked":374,"dns":0,"connect":0,"send":0,"wait":290,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1fa-1f1e6.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.666Z","timestamp":1781370495666,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1fa-1f1e6.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-f23\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Rt%2FpeLXU4ZNVk7CwvOvKZPF9Pg4t%2BMLY8%2BDUGcL1ci3%2FZOZgllbgsNsdc9ISo0DsSIV9kLV%2Fl77YMFOifHcRkU6pkP0dIJHhGi26EbigFJfkF15r2uMMQGvKbM%2Fbis2FoD6k\"}]}\r\ncontent-length: 3875\r\ncf-ray: a0b2b241cf348deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3875,"size_decoded":4661,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"858e718c1a53cabe014e057fcea84cc4","sha1":"2d6c2ea3d48e9f2d7b3e7196f3ced2347d4610ae","sha256":"814fe25579e74d5462fd853f2385af40d2a4f7541e79d4cf459d5fb7af029ed1","sha512":"310a4b2e8ddb718bf14aeac7f5257a40caf3095a55bdcf5a757d8b8bd9a2b68fcfcb4d0da9985e874d5a965ce3cb1b726d45d41847654049c7d234177c8df2a3","ssdeep":"","tlshash":"90814911f37b3e3c757ec453ae2b707e294a089d0f092ad9b6fa923d09e45642160b99","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.243411Z","times_seen":49,"resource_available":false,"data":null}},"time_used":879,"timings":{"blocked":588,"dns":0,"connect":0,"send":0,"wait":291,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/wasm_gzip_bg.5b87b4efddf8e0456f2f.wasm","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:06.545Z","timestamp":1781370486545,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/wasm_gzip_bg.5b87b4efddf8e0456f2f.wasm HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370485$j55$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:06 GMT\r\ncontent-type: application/wasm\r\netag: W/\"68b1b066-2d504\"\r\npriority: u=4,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MMgzO%2Fy88MIu5mNHuIRSbD%2BgyusW2e2yL0QKDDVrp3r4x9BVJoVNSjzfjBzr2wnk0opdbZm4UkEKUFT3HS%2F2mC0N7F7ipJx%2FSO1hgAtDBZG%2B6IdEEar%2FIWECcfVecxkUQ9ql\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b204e8c78deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"WebAssembly","description":"WebAssembly (abbreviated Wasm) is a binary instruction format for a stack-based virtual machine. Wasm is designed as a portable compilation target for programming languages, enabling deployment on the web for client and server applications.","website":"https://webassembly.org/","common_platform_enumeration":"","icon":"WebAssembly.svg","categories":["Programming languages"]}],"data":{"size":185604,"size_decoded":91066,"mime_type":"application/wasm","magic":"WebAssembly (wasm) binary module version 0x1 (MVP)","md5":"51059783a0fbf9737b45feae633671e8","sha1":"b72c8f78f9da12f038c23d3ca2f288884a3e04c3","sha256":"8df0b2c54ad6748923274546848a8fee00842860533926f0419ca625a36235dc","sha512":"b944a3896cf8b5fe6fbe5e2113ecf14bb4c349a3c086016efc6c75cf3555e833de4f42d3d6d110ad2e81848c1ba9bb79f721975fbf77baa936c070492ac174d1","ssdeep":"3072:K0MGJ2Wk9iHPgK/MIGYRcTJ2ZGeEMJCjHMDTRjMP/dA3rQ9rKouCvZ0cjaCXHmzw:KV7WPgUMIGYygZGeEHjHUTRjcd2cKYOy","tlshash":"21045b0af505697bf058ac36050ec43633a384a0b2e571bbe61d29ebacbf95515cbf70","first_seen":"2025-07-08T13:51:11.170211Z","last_seen":"2026-06-13T17:08:37.243946Z","times_seen":415,"resource_available":false,"data":null}},"time_used":1144,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":292,"receive":852,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1f6.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.572Z","timestamp":1781370495572,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1f6.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-13f8\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2jLr2zlHZePBW%2FYVhqhP7s06UXsLdC2pyHzsBrx3uU%2F8SsJ%2FZLPJqOVfrtnCCzbtc5SsD5%2Be8DJmoTwDwv1dDPqqfRzSp83IGhPntMkKpi1DMfNC8BjoHLFMhS%2B%2BTVto7Qgy\"}]}\r\ncontent-length: 5112\r\ncf-ray: a0b2b23fce3e8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5112,"size_decoded":5899,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"aede2cd4321e411aba2eb1fa94e37fb5","sha1":"2c61170535bcb096cef2df3c9a1fb796be377a6c","sha256":"1b948dbe243c0fae2ac95e62ebbafe3c5cf4db076ce2f1f2cebd5984726e92e5","sha512":"b415900e786353b4abf1ec456fa6dbec7c01715470e54509ace0ad8da7c0252c1478f66f643c6927fe5f2c10c53837d03ac81af07f8e719e6a055e8ebccd6f68","ssdeep":"96:5yWihsTBR1geRxNeQdXhFTxiFtO+4sHzA:5yWiCBR1xZXh/g4sHzA","tlshash":"cdb17c637d703d498334a1e662ecb61ff6e42dc15b39445dbec53881babe532420a36e","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.244538Z","times_seen":51,"resource_available":false,"data":null}},"time_used":871,"timings":{"blocked":275,"dns":0,"connect":0,"send":0,"wait":596,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f8-1f1e6.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.626Z","timestamp":1781370495626,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f8-1f1e6.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-16c2\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=b%2FYNdS5mzxoOV4O2XtAg%2BnGaQNzqEaOdEdJd35dIm8aIC54YfQPcLsEpJcgZ5rOPScjTILRdtGh%2FVODvQuvabb4Lx3QO63jT8Vzal%2Ft5ZEJG3NtIJpPrGxVrneV79iJyAOkU\"}]}\r\ncontent-length: 5826\r\ncf-ray: a0b2b2408ecd8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5826,"size_decoded":6609,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"4d6fd3605505511ff3ce70fd8bb8c45e","sha1":"9d4b9bd3f4bb23ca9015516e39ced01ec68ce958","sha256":"cd0711ec0167657cecdb806e72b316f402d829f9e31a5e6c3fcb4855cbce1f8d","sha512":"3cbfbcbdfb5721b94773b796eac60e327bef764aa51d95c234b5f2a8595451358538762d5ada7d775c801b4287ba0afe56b4317fbac2504baeda44bfb89fe396","ssdeep":"96:bYs5UsZSrwTQocg02n0H3kgITnV9n3rU4nuR+zhofFbDJt0kxC3XnYWBJ:bYs5UuSmQo50HUzV93X8+mFzbC3zX","tlshash":"12c16da7d9af20cafed02352a6351b7188910d676fe1f42303383454b4bab5684886ef","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.245208Z","times_seen":52,"resource_available":false,"data":null}},"time_used":686,"timings":{"blocked":396,"dns":0,"connect":0,"send":0,"wait":290,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ea-1f1f8.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.640Z","timestamp":1781370495640,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ea-1f1f8.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1457\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bt3%2F%2B4N0tyEYZzsiW76RocKwVrNWkDiTmVR%2Butnl3LcTr23TGzzeV5jj6F6gdYG6dmhLtJGk2ycCMcMn1vJnYZRb8M4BPWmU7i0cZnlOgWTgSth1iQ%2FGcZQRb7N4teApBd%2Fs\"}]}\r\ncontent-length: 5207\r\ncf-ray: a0b2b240beed8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5207,"size_decoded":5992,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"65307cee2ff4bd4dafbc713536d6ac31","sha1":"faa0698b4197da89d2edb0af62362f70294c68dd","sha256":"ef5e65e6c2360cadb59cd89120ad3034e19b77d70dbb8855f7effb7c8c8952e4","sha512":"9a14e0ffabe95b5f285892d2a81b87e91db999c38e8f972bdd8f8db2fd11dcd26866d41091a241083e6ab5ecb0a4dffd623334eb651e939abd9f3c17b66214c4","ssdeep":"96:N1a9UGlU6fBcIbeKNPfk0JCcuaQRpG6B7Q4l6bOS1Ee9:N1a9Uy3CEJC3pnB7/2LD","tlshash":"7bb18feb46a74c76d76072392fd852d0147b87ccb775038334a564308c6af3499a48fe","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.245809Z","times_seen":49,"resource_available":false,"data":null}},"time_used":722,"timings":{"blocked":422,"dns":0,"connect":0,"send":0,"wait":300,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:07.594Z","timestamp":1781370487594,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/9722.89b6bceb625c55228313.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: worker\r\nSec-Fetch-Mode: same-origin\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:08 GMT\r\ncontent-type: application/javascript\r\netag: W/\"6a1ba772-2f81\"\r\npriority: u=4,i=?0\r\nlast-modified: Sun, 31 May 2026 03:13:54 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bRLVtf9Skf7J6IKT1EDmGnsBI0pDJnLRyfnmbh9KbryFoZCxQPUp8WKaDZid89Ln5Bge0jx6Bpc5x0SH8pkmxkkSNrBsQC8U4oMNxcAfQowRGgu0c4V9GzoNWrcTG0iKlhK5\"}]}\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b20b7a628deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12161,"size_decoded":6509,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (12107)","md5":"d43a276649bfcf378eae694f9df3b475","sha1":"00965b1173d56df61b1a183a61b7c180fe4cd110","sha256":"7a4a7773af250a2486d451dc08177255af1fb92f8b8cf41f24eff07345837e3b","sha512":"d9d4c26e06ffc589ab6f9aa47839850d9c9476f72c23f7e139e3ec394f7dbc1efbb52d1f49a3be1de9dfd6bf8b24c93c414d8f6ae5822a4143df302a5c4b29af","ssdeep":"192:t0WGLjOqrc38On35VfGXRWQeaGBSNLcrRdj4CqIbEoEhoCfRERKGkEmSqfigty+E:+WEJrc38O35VfGBWEwdMChwoEhbZAKGp","tlshash":"ef42e6c52742643ee397a8d9987a00533034da587419856c7b2eaed73c2bdc6f0b1f72","first_seen":"2026-06-06T06:06:39.13944Z","last_seen":"2026-06-13T17:08:37.143765Z","times_seen":6,"resource_available":true,"data":null}},"time_used":874,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":608,"receive":266,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f5-1f1eb.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.501Z","timestamp":1781370495501,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f5-1f1eb.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1403\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=S2SBBDKmo%2B7QnMOZINGwjyL%2B5GWVzjXctp1D%2BXew1d%2FpUOXoPqTq%2FLlE3qR1T0HAnXtow2dwJPgsSZ%2ByLZG1ux%2F6vfFhPlGEX0e6TA4XvJWMtuBd3ST36y4PuM1nTHtcT%2F%2Bg\"}]}\r\ncontent-length: 5123\r\ncf-ray: a0b2b23ced728deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5123,"size_decoded":5916,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"ccb3727fc395a3036f08dd529cb4e454","sha1":"c18fd097a4f55271d795529d44d3eb01ddf0bf83","sha256":"d6153205a96fb40578d1a36f7d52b7e0a5d80457f65db58eb659bd892bcbe96d","sha512":"ac0b6e7a9b1c59468e2fd7fb4f194bc849f304978098382e1c10133b5d5cf3360e8e5b690fa7f9235b07f72da77a00c8fe108b6c7fa805b03d9036f6e2992717","ssdeep":"96:uGKEKAD2MSvrrl/qilnHmsV5Rq3zn9uzUGXV3XdHf3wKp+SF:uGKERDPmrpCilnHmce3znElRZf3JF","tlshash":"c8b16d833212a9a15d5b092d2e96c6a847bacd76d215f37a0c18fdb5c47776b03c5b04","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.246432Z","times_seen":50,"resource_available":false,"data":null}},"time_used":589,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":589,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f5-1f1ed.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.609Z","timestamp":1781370495609,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f5-1f1ed.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f5-1f1f2.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.621Z","timestamp":1781370495621,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f5-1f1f2.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-211a\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5m3oZWQq1ZfbtQkair2yA%2Bz93uIaOAZVTSFxwpEJ%2B%2FVn7bt%2BTbeEKb%2BV5r7DQKTDdesxteCootRm2mESlYKiUN8XEld4bqLRHdaQklQjflmARi7%2BYWpzn%2FnQIKSrOXj2cVw7\"}]}\r\ncontent-length: 8474\r\ncf-ray: a0b2b2407ebc8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8474,"size_decoded":9263,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"db8967eab97b3670099d9cb7107aee50","sha1":"3a1a41f54d54cee4612171120a0ba6638efd82da","sha256":"f62eea2258759e5361a0c0634db98caa66bbbcce2566e84d981ccd38ebe710f8","sha512":"ec0b7e6e21d41512c9776f54f10d2ec8812f9092986906105716c66a9496ce319afb6bb605ba7efdd9151cb48fdb11a61e6c9a82158921025101efd0df48500a","ssdeep":"192:OOvdNfkPzxA2yMpomSIVwktIij1ZgCYc8K+pxYXV58tG:OqWzxA2XOmhVD+iPgxUXEM","tlshash":"cc02a0c25a8d0de69fc4b0a718d891b05e3dee131d20848f6ac13d42d2f32e55ade2d7","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.247012Z","times_seen":50,"resource_available":false,"data":null}},"time_used":677,"timings":{"blocked":387,"dns":0,"connect":0,"send":0,"wait":290,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/5905.228b6ba981b06680c03c.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","date":"2026-06-13T17:08:09.383Z","timestamp":1781370489383,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/5905.228b6ba981b06680c03c.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:09 GMT\r\ncontent-type: application/javascript\r\netag: W/\"68b1b066-25e23\"\r\npriority: u=4,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=B%2F96bD3tIehrhMTlqW%2BV7Kz6j7jCTxJmYP3h5uUR1VbC1dTCekSY7tOzdPTxv8x8OY5DLtEtLaSR98kZQCXIj4Tdt%2BusFfZEfIt%2FbftcjQ25y1vjQL3pjiIuZRhEWrXMWWeW\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b216ac7c8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":155171,"size_decoded":37998,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"ee5c449b87bcb6f35bcc547c1f3af7ff","sha1":"c55a4efd6f8867c67375f79a675ba6d2618c8bfd","sha256":"0883d0c3875eafed08b44d205e2e160ab6b79c60c9cd8fb7adf90f33199b3fec","sha512":"f13bfbd100490b22075f6dc5e9bb120e838223cb7724cc76593c302364c780f8b9bc744ed1889ced63ce5e412086af95410163f5f17f4b27c9d34880244a4599","ssdeep":"1536:ouG3B/McaUFrnb3wHkgJ4K9pKMwHI/CglGQnAZkY0tfXuYEUp:YlrbBgXGsWkyA","tlshash":"46e3b682f86424161392a1e654b60749b739f41ca8c540acfb7cfed52dbcd8e36ab734","first_seen":"2025-04-19T14:14:53.473469Z","last_seen":"2026-06-13T17:08:37.107655Z","times_seen":411,"resource_available":true,"data":null}},"time_used":1455,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":604,"receive":851,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ed-1f1f9.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.529Z","timestamp":1781370495529,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ed-1f1f9.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1025\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rpQGOKCYM4HnIF9Ho5hu%2FiwcaBbdlsfPycarP4Wcs0UmVXgLZfG6X02H3%2BlzSN72WzZm%2FHtvEhgVHIzLiUfOQBHDecmy5Xlxd9NzthfgUbdc7zxa1f4JgoHzYi0tNyysToDl\"}]}\r\ncontent-length: 4133\r\ncf-ray: a0b2b23d0d898deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4133,"size_decoded":4914,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"18a317e329781dd1cf420ac61e6013de","sha1":"eeb4003de29ab5803bb2903400d2785eb1e637e1","sha256":"776ec99ef2c9609fc30d867d02da55ee2c41b11ccd4017da27ebb028ca1b992d","sha512":"0ca4442cd32bde8a2425e6316f74efe164afcd159e5cf26e92ad51721bad1f3ed8570772d16a601dcf97453cd00c8afea50942fb162a593a860afcc427ddb30c","ssdeep":"96:1eu26bW6vKqVlb7FMYszY6rS5QYK4ycT+L+KMCSlAdkZLA7rqMz:1eu/L/Db7hs+e9+KMCpdWLHMz","tlshash":"5e817df4a8f2fa6ad14da3e5bb000f26dac0073a9d6f90a0f5c64097111a44424aad79","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.24757Z","times_seen":50,"resource_available":false,"data":null}},"time_used":575,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":575,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f1-1f1fe.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.559Z","timestamp":1781370495559,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f1-1f1fe.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-11d0\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MUQGk4HbNexUZe%2BUkyZfqv0g1Ylnb59NUZP6JnpFS9OI2AwChYpPEhLi%2BbZq6BGYQU2bb4BhhRx5QswDpf5Fh3T24xgcdJOhq8s%2FzjVJz5ULEQ73R7aJHBZVZymOXFKzePlu\"}]}\r\ncontent-length: 4560\r\ncf-ray: a0b2b23f3e258deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4560,"size_decoded":5341,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"55053fb98bfd44a2ac156472d3e53a44","sha1":"b48f542647f6dcd37160fc8da02735e9dc8c585f","sha256":"89cf4b13f0fcb92029e73bd4304cc313c2bbff866e323b6e33f8fd6b9b57e3eb","sha512":"8451ec170bbb57a8630a085598c0fa98d1ec1bb21333861a0189268948d15dcfe25e683b57193e8eef9d3e20b4046a3c2eede2695c702eb32d39b5841e1e7492","ssdeep":"96:S7AFqtVv2LS9zlnCgLJGj31c5HwvazMvKX7NB0yjsBDSruI70lV+u:y5XwUlCg1g31clWsMvgNSyezg0lsu","tlshash":"75915cf20cce8c9c1a69a2bca712e8283344dd543f0776254163f514fef85ead5885e5","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.248151Z","times_seen":50,"resource_available":false,"data":null}},"time_used":763,"timings":{"blocked":184,"dns":0,"connect":0,"send":0,"wait":579,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ff-1f1fc.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.683Z","timestamp":1781370495683,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1ff-1f1fc.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f8-1f1f2.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.624Z","timestamp":1781370495624,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1f8-1f1f2.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1fa-1f1fe.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.670Z","timestamp":1781370495670,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ZH/img-apple-160/1f1fa-1f1fe.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T19:33:38.803897Z","times_seen":16394044,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/7784.a3c3e3e38d46532f1ca9.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","date":"2026-06-13T17:08:08.493Z","timestamp":1781370488493,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/7784.a3c3e3e38d46532f1ca9.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:09 GMT\r\ncontent-type: application/javascript\r\netag: W/\"68b1b066-5265\"\r\npriority: u=4,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=E7n0y1bCpRzGmssaP7XdVEebQVAAQ39vnj0E2x0fg6B%2F2WccWva4o45%2BPC7k3W4FXqJswTYDtM%2BsxAnGwUnTOnlDzvZS0jDBt%2BsU%2BPywixuwcX4bfLL58jdCrKUFtZV9GsBl\"}]}\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b2111b6e8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":21093,"size_decoded":8838,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (20956)","md5":"44d9784f12bcc86aae68822c887d357a","sha1":"30d8228c88b0a28567699e27be713e4b20ca7d5e","sha256":"520468d89596d743cf1c4e0adac4f035c77cb4296ec291a9f61e0604cf254db7","sha512":"1b0e56ada6fb96aaa59c5e3ab07a4f1c017609ff669d2ec8254863e5bd9268a7567da9320f7c31889ef9e2bc5e9591c3674553e735995135b25b72f43dbb2eca","ssdeep":"384:eA1pRdH3K+SWInGDrQ+YW5LhoASLv5S8VwktQ0CSRU6f/k5MC6LEmYwt/9RXC6iR:eA1pRdX1DrQ2LhoASLFtQUU63k5MC6LK","tlshash":"ac92187a52ad05c252ec48e908cb199951b8e0233c871d7e5134fdd630f28d7e2ebd79","first_seen":"2025-04-19T14:14:53.465174Z","last_seen":"2026-06-13T17:08:37.12584Z","times_seen":418,"resource_available":true,"data":null}},"time_used":881,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":583,"receive":298,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f0-1f1f5.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.598Z","timestamp":1781370495598,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f0-1f1f5.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-14bb\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=N2l9my14QQ0cCsjHnrn1p8XWL%2FlidTrZpphRlmnj1TF0vi9jpqWbRISq6XHI7vXcFkpQfZ6P%2FbF22%2FTRJLdK%2F1roXM9797HBfqIKM%2BV01r3iPpfvQcWuruFoWPk9oV6RMq2S\"}]}\r\ncontent-length: 5307\r\ncf-ray: a0b2b2403e868deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5307,"size_decoded":6092,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"8bc3ee67f533ac61e3c330d9e1f9f181","sha1":"6bac2637b0d352bdf516b76c14e4928af01d2048","sha256":"b913b891677fc52ef5dc0f3babdc6816f2d46555aa01d34681fffeac48d0980d","sha512":"616d38f51c2dc7b934c875614c9d481e8ab1e7c02eebe1ff6cf03dd03c7adade65a0845051e0f0ec1be7aea2139dcba5decab1bf9a9cf33264561e312b26d499","ssdeep":"96:UnBXhV/+sX1/AvkdmX3kpeGf6QPWPp88wjJ78Kz+8y3rXyXZtrJJXcPH:UnDV/RXyZXUIGRGq4KzHy3rgZt7X8H","tlshash":"f1b18e22a105c218192876f255a0fb493df2def54d9dabf2347efdd0a6b418002bde38","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.248697Z","times_seen":50,"resource_available":false,"data":null}},"time_used":646,"timings":{"blocked":344,"dns":0,"connect":0,"send":0,"wait":302,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/rlottie-wasm.f013598f1b2ba719f25e.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","date":"2026-06-13T17:08:11.438Z","timestamp":1781370491438,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/rlottie-wasm.f013598f1b2ba719f25e.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/9722.89b6bceb625c55228313.js\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:12 GMT\r\ncontent-type: application/javascript\r\netag: W/\"68b1b066-10037\"\r\npriority: u=4,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ctJI22UvxLvVRN5N0MeBXuXCuq3nC%2F3BTa8huRAValHp%2FGCLZWDIv7IVPFkCTY%2FgyTHQl1FH6Vv2wqtsNOurh0iBPJqu9eNxfyPUZjYQTkg5DisG7F4p9TQ1SQpQ8%2F0vhV2k\"}]}\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b2238f178deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":65591,"size_decoded":22002,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"4441938ee433d3657c20d454d352a336","sha1":"dd67121d7fda7c17be196f60c72dfa06bcb5bc6f","sha256":"659bf63501a8054ef0eedda3dec466dbc1e9a1b2c4d5d59a285b005215e16679","sha512":"f90da6f2003442e547813d62f44e22e688f637616dd7f7f33c81e73d05a3a3de39947c0a8f580002cc96a716caecc4bcd988644ad78b01ae2e9a9792c726604e","ssdeep":"768:O6T4cK2yQ6eO1P2WgcdxazvszXIgBB1ARna76Ae/FqsSwYxRrqhlr3NqR:m1Q6eO4+IUzXXsjvi1alrcR","tlshash":"6153e88535d9b0ab42837878946f310bf2ab6d52641c8410db1dd4dabcb4e49e63ffe8","first_seen":"2024-05-16T20:37:02Z","last_seen":"2026-06-13T19:02:15.11616Z","times_seen":15143,"resource_available":true,"data":null}},"time_used":1157,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":588,"receive":569,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ea-1f1f7.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.476Z","timestamp":1781370495476,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ea-1f1f7.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-14e3\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=96DDmjP6bD9GyrzOlIH8qn3MrKs4I7YgRh5BJbymuti0C6nVLxq9kx70P%2FMIZlq9wV9tNjdRgCUAXAS7aQH%2BA1aApAcx2%2FJInMzVvZTJSQ1WPszj5uJkhxiQ0CMoTD2fUDy4\"}]}\r\ncontent-length: 5347\r\ncf-ray: a0b2b23cbd648deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5347,"size_decoded":6128,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"ad0a8cb4df90ba1bbf75bf420db2af90","sha1":"5c10a9a2f728b22835fc29d8350a74819c84264c","sha256":"eb486ce718ae68522fac35f6a1fc0a039ef6ccd00790886bf313b245ae87bbcf","sha512":"af6a04b6e097f03c52e0c70415013d1ca6a9897c097b04e98169e3db7f8799b237ceda9a7380745d7fc67566cb38e0fa9e6cce453d1a1822f595f02e790346e8","ssdeep":"96:ay0598manohkubkRFlY7OIhzC1LAxlmFThThYY/MereEXY9IWSiIgkrtNN:JA96op8TY7OIh+ixcFgcMHEXY9IbPg6N","tlshash":"abb1aec9ddd040285666b4351579801fdcdf3e45372dac500ac3c0ea43da862ab3a8a2","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.249268Z","times_seen":51,"resource_available":false,"data":null}},"time_used":593,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":593,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e6-1f1ff.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.377Z","timestamp":1781370495377,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e6-1f1ff.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-11ec\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=j2%2Fr2fY5WGGZd49H9e0Gel1IUUGeGdKo25RDO6JadIujUGC5sgmZacCxW0Uu%2FYO700QbFum0b5%2FqO%2BWrkbEqoYw%2Fd0Er0%2BzBxpIX58tJRIoyzDLnqZHfk5CD7Qfvr6qLwJ16\"}]}\r\ncontent-length: 4588\r\ncf-ray: a0b2b23c1d218deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4588,"size_decoded":5375,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"8319321208db2e33135cd0311ca9aa61","sha1":"05aff4d62e2bcc14984a19ae428b882059662ec7","sha256":"6543e4470b096da26e6b1059fcf7193c07b8c10b7db2d611b795ed8c489c8f92","sha512":"f26a83ca03776fb8a2948fd68a8a0ab76710de031fdd03a413952f2d7776c617f57f91795446919447f056ad7fd1005ddc4378fcada850d860bb9d5d36651cd4","ssdeep":"96:iDmhAry1fEliRYkj/q8NYKfCRwrKx2/eabTYTym/BKB7YfZMquXwP2wxYB5FioUI:urS6a+AYKaWec1TYT9ZMlXwOEo5FPN","tlshash":"2e916c86885db717d25aa8229eccd43194ac5fbd8d3bfcae616785b270cc095b04b145","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.250146Z","times_seen":51,"resource_available":false,"data":null}},"time_used":590,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":590,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1fc.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.566Z","timestamp":1781370495566,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1fc.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-11e8\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xMgzSYr2HlMuPz9EFLvFAUTF2i1EycA6SImIZsoipy2Np4jkzUv7dXJLkS8Du4wLEaMXHdEuJ98OKitxAPtgcNcLGhiUl4SBtsdfYJqplLd6m51%2Fz9yU3NhxvokWmgi2oyO2\"}]}\r\ncontent-length: 4584\r\ncf-ray: a0b2b23f9e378deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4584,"size_decoded":5361,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"6f637a60248be27639ac439c8e05beed","sha1":"4072f71c2efb105418e3128d114dd6dbcb7ae616","sha256":"d25c6863fc5be6b88d3aae67d642815e682b97424c4e1414f83e4032dcd94d8b","sha512":"668393e7b2ee4e46bd619ecfdde00946cfbc9ab6510303d8be41ad51bad5492a2ba3e3b1fe464a77b4166fbcf27daf17e9e609bea4bcccabbf6a91e8a59ed33b","ssdeep":"96:Y0CFgRZ5hE6dH3+hfFAB5dDManUru2WfZq5Q52n2o5lWuB:Y0C2j5n+NcHUa7xqn2o5ld","tlshash":"31915add586d207de1d1202c1cb766a6ba4e256e56c14b843a1c08923950bc597b877e","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.251168Z","times_seen":50,"resource_available":false,"data":null}},"time_used":551,"timings":{"blocked":251,"dns":0,"connect":0,"send":0,"wait":299,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ef-1f1f4.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.546Z","timestamp":1781370495546,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ef-1f1f4.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1041\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iQD%2FYGIKXCyj%2FguCKhDddj2P4KxuaG3qngOoLwYZuA%2BEhgiXzsczLXraBJPqVu6KqPn5W8s%2BnB3NKLErC6ch6%2BQ%2F%2BuZDHDJ1d5FfafVtyvGlMMS7qwU0xGwNxHQmMGD9HkSZ\"}]}\r\ncontent-length: 4161\r\ncf-ray: a0b2b23e2dde8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4161,"size_decoded":4950,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"0b260e6a6313d640fb955e2a0c89bfea","sha1":"71b4b930b76b70232b8b63dd0e2623d431dd7b65","sha256":"6d07d999e76dbc8d70405b4acabe26e9b30ebd1a6383902b96dd6a201872e9cd","sha512":"31a2cef680e058fda77075f6a897bea206d10b48bd4068a330d32c7092e18b7d6be7a006095a8b0cf24c42bdee3e92a9ae7ec279d81792e2b79a041638dd99cf","ssdeep":"96:YEnFZEA3YDK3Dsr/ogimdqvpK/gIG90uqkkCMZyVVR:YEFaQs8g6vpuMikFXF","tlshash":"5f816cb4a57a986fd7b2370f0a8584b03ba5b0b2f97298b6c0016c709f03654932f891","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.25177Z","times_seen":51,"resource_available":false,"data":null}},"time_used":600,"timings":{"blocked":18,"dns":0,"connect":0,"send":0,"wait":582,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f5-1f1f9.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.611Z","timestamp":1781370495611,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f5-1f1f9.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-12e7\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4SuLi0e6QK3BUFWC35eJALSs5UxNy0WLeGHFS%2FHmiSdUB92bOF3YRa28z40qgTZHWtyMz7uM7syQN2sqAyhOzdLA%2FJXmHI2MUpeR%2FVjnHmIlLOGJ10YgWbiA4oNAI2xBN1E9\"}]}\r\ncontent-length: 4839\r\ncf-ray: a0b2b2405e9c8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4839,"size_decoded":5620,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"9224930251cec04977aabf4087010597","sha1":"36748c791a25774b67e31dd8e480648246dbc85d","sha256":"a162b2802dd1ef1f3228c18444d2f9d118d0d8a494aa7105ecd18a5b68090ade","sha512":"7c5bc3dbd002d63de79b23d6e58dc03268e2b61dc5be68d93100476675faa28dcce90f67fa7b0a3c9c4a6a9b119b63d09889ad64ed02f8cccb62e8edcbb1d4c8","ssdeep":"96:T4ozoyuNruNkENKpK0kHCMiVqUaCHlQ58eK+v0XgNb:Uoky8rlEW+iVqBOlQyeKk0wJ","tlshash":"a0a19ec39fc9deea0f51a06e1f7c8664124a709b7402f5f5086ad88d47f0244a2e48c5","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.252374Z","times_seen":50,"resource_available":false,"data":null}},"time_used":657,"timings":{"blocked":365,"dns":0,"connect":0,"send":0,"wait":292,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e7-1f1eb.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.415Z","timestamp":1781370495415,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e7-1f1eb.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-107c\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=k9WIZS5VxEDuOUx730hnfu%2FhibJNexQUAnZ6zhsbvaj7GA7sXt2v4aPqiuD9Odt%2FR2T9mc7v0pvfqMQOxuC5FUyr7dDWnTiI%2FUpI3Lx2yG9OJdL519f422FnBvxsFcSJ0O7%2F\"}]}\r\ncontent-length: 4220\r\ncf-ray: a0b2b23c5d398deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4220,"size_decoded":5003,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"b4a2f45e07d6b2bcd68bc4f0549f5a60","sha1":"63c3c8a89c64fbb5e07ef97176a2c8127d30324e","sha256":"1f69e9fa9dba9ac606e21b52d153e8c38b73b9e97e33af84a0394ffcc48e7bc5","sha512":"b378b54c12942422d7a8ec95fedc5cc098aaddd8e54f9f6a1877a3c68701966ee7b3b5b6f24a3fe478c64476f0f89e0959209f2243cc70a73ee968b58b6bcccb","ssdeep":"96:zE1YN8kg9FTvbNJ08LgzKget/YDrDpnlHtrG6m:zZNO5jnBgzKgK/CrPm","tlshash":"09913c8d6bc3c9ea95f405770f79728494380a6d409cd24868e6318ad7fcdcac16a3b9","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.253064Z","times_seen":51,"resource_available":false,"data":null}},"time_used":597,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":597,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e9-1f1ea.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.507Z","timestamp":1781370495507,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e9-1f1ea.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-e06\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=i38nF5DvXA9rpnPoUHWGGQlDQCEjI98Cp9Ii52t3wwUAmZ2oWNdc8%2B%2Bfq6Qbbgn%2FMvucdavcHiKwWb2fiBTX6m2eSohQAseMD0eJ52x%2Fo1yl12XkWhLEddDBSe0nTFo9xd3I\"}]}\r\ncontent-length: 3590\r\ncf-ray: a0b2b23ced778deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3590,"size_decoded":4372,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"f4b6855f4229ac61cd68db10f8f7e817","sha1":"840410f98fc143e29f8def225c069de522359d99","sha256":"3d9b2c0477bc7b4815dd11d68c0a5044fd327f6aed2139c35fb16d17b66f72b6","sha512":"ddec78b5c0a79a5ba1147d2c29d8b351f4520f206bcd128f0acceb28e5e46ddd2af60505ba3fd327a6a2f2e4baf0631476aa06ca66d3c95c2bbacc71c11d3783","ssdeep":"","tlshash":"87716e72438a6dc7df169141f4a9940b743250fb4f82a337e20db5d36134b4b7c25687","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.253762Z","times_seen":50,"resource_available":false,"data":null}},"time_used":583,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":583,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ec-1f1f7.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.511Z","timestamp":1781370495511,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ec-1f1f7.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-184b\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Bh8%2BqfDFs1Pfe2jFlNbvjwX9WDZzKsowjOzP3lmsiadkBkOLHyxG13ZU4uOz7kx5HAgjzxIOPNy5kiy0nHaMZfoRcrbN7oWTfo3%2FNx5zZz%2F5FN1PAAXT%2BVr%2FcUocsv2Jo3ip\"}]}\r\ncontent-length: 6219\r\ncf-ray: a0b2b23cfd7b8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6219,"size_decoded":7004,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"5490ef2fd940c91dbdd3f549a3792782","sha1":"abd1fd93f4cbc50d0cf9b6b0e162ddfbc5cf43b9","sha256":"fb4efcb76e7dd8519e700d0a37d72cd6a90fc721fd2262a444d7d0e843dc595c","sha512":"df60d5cff50c530d322182124f37248d07faec9690ab644d3e64ec2f18dbdab3e0fefa6e368e87ae06a69a87c450fcf83c0d804a168e392191f6f7e8cbd318b1","ssdeep":"96:pdpzFcZCAOqU8DVj/fbWNQg78pLaNVGl2r89rB3Mfr2Y0ch5xW335KQYgkB1fXMd:3pmU85LfbWNQgkazGUAkfR+pdXd","tlshash":"29d16dca3c825c9e989ec7c2a9a64064f5d135fe4360eb619f5d5c7cad33405644c9f3","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.254393Z","times_seen":51,"resource_available":false,"data":null}},"time_used":570,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":570,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f5-1f1e6.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.605Z","timestamp":1781370495605,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f5-1f1e6.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-11fa\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ElgnY4c3Wr0AGKURDBxZnVYh2YUAiJxAU%2BiYS22CLOxpI%2BPY6AqKUkchfbmvYluU3F6eGJKe05WmfbleUHQGXofuh1gt8%2Bwp%2BtGYf3a2WBBqitxyGDwqZK3M6bjYJiy5jYIg\"}]}\r\ncontent-length: 4602\r\ncf-ray: a0b2b2404e918deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4602,"size_decoded":5385,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"df7ff5de5dce78c4a95258466d3de9d5","sha1":"ed9b8437a150e481c74a079bf131576c8e90b32f","sha256":"b49941a56101fc5e9668e7fb9b75699d3c5af3708822337b6e81cd3c2520ff3e","sha512":"b0c961de9db796a054ff7e470ad291b89e4924cd6d8f6a8c9ca40d9ef86f66c54ed46223e626d16f79abe0fbf2dc288c917c1a337a6ccd7bed414fd73fcee7a7","ssdeep":"96:JTYrQbXnzBo15HqC6GwS2KP/Y4gy89hmj34g+FfbOx9gvpwOnnzmjkeHK7:JeW3d6FQSN/Y08GmJo9K6OzmYeq7","tlshash":"43918cf0d9b986e543ccb1f915ec99740f4bdd1a5ea1a0ec1e27b8383531ba41613b12","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.255013Z","times_seen":56,"resource_available":false,"data":null}},"time_used":928,"timings":{"blocked":353,"dns":0,"connect":0,"send":0,"wait":575,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/9722.89b6bceb625c55228313.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:07.591Z","timestamp":1781370487591,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/9722.89b6bceb625c55228313.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: worker\r\nSec-Fetch-Mode: same-origin\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:08 GMT\r\ncontent-type: application/javascript\r\netag: W/\"6a1ba772-2f81\"\r\npriority: u=4,i=?0\r\nlast-modified: Sun, 31 May 2026 03:13:54 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3UsM3CuwGuUwAgSMRC5B0uo8DCf%2Bb9AEWpI8c9EcfCuPXlo0n9%2B6lScXNjox8JzWf0DXK9jDtPhMPmn0zfHqrk6s4XlwSGR1hm4D%2FlB1n%2F0rW6estM0evWlynAeebztMyyip\"}]}\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b20b7a618deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12161,"size_decoded":6514,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (12107)","md5":"d43a276649bfcf378eae694f9df3b475","sha1":"00965b1173d56df61b1a183a61b7c180fe4cd110","sha256":"7a4a7773af250a2486d451dc08177255af1fb92f8b8cf41f24eff07345837e3b","sha512":"d9d4c26e06ffc589ab6f9aa47839850d9c9476f72c23f7e139e3ec394f7dbc1efbb52d1f49a3be1de9dfd6bf8b24c93c414d8f6ae5822a4143df302a5c4b29af","ssdeep":"192:t0WGLjOqrc38On35VfGXRWQeaGBSNLcrRdj4CqIbEoEhoCfRERKGkEmSqfigty+E:+WEJrc38O35VfGBWEwdMChwoEhbZAKGp","tlshash":"ef42e6c52742643ee397a8d9987a00533034da587419856c7b2eaed73c2bdc6f0b1f72","first_seen":"2026-06-06T06:06:39.13944Z","last_seen":"2026-06-13T17:08:37.143765Z","times_seen":6,"resource_available":true,"data":null}},"time_used":876,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":610,"receive":266,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e7-1f1ed.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.383Z","timestamp":1781370495383,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e7-1f1ed.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1035\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=c3Zag1k9weLYFmakB%2BZCa80NMrGv1k51HHQdVM3YmVqTXqn8FtOtsahJpiPzkk2CGsyXAIX1NlBtX6Zgde1%2BCfROsOwzvqgRvCEJ4eHXibbLlagFwlyabCUIlLdcSG%2FsLwjg\"}]}\r\ncontent-length: 4149\r\ncf-ray: a0b2b23c2d258deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4149,"size_decoded":4930,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"1d5df4ecc178d233c5ee2e0416ec29b9","sha1":"831432a57f4982c31e916f6d5bee6899bba8f910","sha256":"ca037cfcb33d6e41ba0b19d76c0a791f0baccb8fe2fcdfa8db5f5814c49ff1bf","sha512":"f5b94aa5382711999be43665d061272a0f8f210482d591f37fe0bba6e3cdb2bcf6842c121c09eadcf6ed3dca305b86b48018e6e9c2b6ba961c7dca2f16795994","ssdeep":"96:MEa4y87X3KTz37hMuEuLnPgYLN9mxTHXFOlO2tZODgD901Ir/zH:Ry87X3KvkunPYVOlXZODgR0m/zH","tlshash":"6e815d4047d5ed344e59248e9994232cecaccebce6c846da5027393895fc9567c4de8b","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.255589Z","times_seen":51,"resource_available":false,"data":null}},"time_used":590,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":590,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1eb-1f1ef.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.490Z","timestamp":1781370495490,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1eb-1f1ef.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-185a\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JVcf3h8oyHK5VtyJRYCBTo9FC2mAAs%2BJXg%2FMYOUHQbx91vrelhTZxHysvPerYL6TVGaB9jCxWY7JteN7Lx7wWwcl5N0qOic%2BEV2eGQXVYAMXJQ%2FvXgl8uHbdVd4I8VCo8DZz\"}]}\r\ncontent-length: 6234\r\ncf-ray: a0b2b23cdd6c8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6234,"size_decoded":7017,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"deaa5ec14fb2bb323b1d0e5c4669854d","sha1":"ef463c0265f7dd0e1394f49298ed64d8e1dfb5cd","sha256":"4f46a96c10ad22cb8bf870eee898d38124e54e12e83c7dca448067261d57f7a6","sha512":"5672cc61ab8c7d055f04acde8f50cbd0ab832aa30a4cc4d203f87a1cd65aad608da4c683979f6e495af32548f9695e9fb0a77c984f1dbb343ad85b060b1799b8","ssdeep":"96:hyMA790r7NrAIowBCcj8NmBJZomhTSTKrowxZ1zxLE4HFyIksCDvzotNbfAJEuIr:NNrAlwBCcpJZtvoCs6vUzoTfSUMwcW","tlshash":"e2d1a09a1667f5121dddab11c734ed33de780b5fe37433625c5081d9372a506b189634","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.256155Z","times_seen":51,"resource_available":false,"data":null}},"time_used":572,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":572,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f9-1f1ff.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.650Z","timestamp":1781370495650,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f9-1f1ff.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1325\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2F9J5DZ2Z8DIELEZc%2Fe%2BV1bVYCkeu%2F6F6iyJpom8afP9PkFqUkQ41QR3O8wO9qL1%2FwFFyxEwM5cEYMO0bJk3aT25O8wsEun7xdbl5ITdnRAoIfT9rlymd3DIdwyr3M2JsN5iV\"}]}\r\ncontent-length: 4901\r\ncf-ray: a0b2b2417f168deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4901,"size_decoded":5686,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"1919c02a1f990b1b7a9273512d7b3e3a","sha1":"9e5e1564f9de63ce8a6a9cb4da643141b22e43c7","sha256":"888ced05e3e686ff29a9e167e5fe8075936d855f9a0edd3965d19c649e701359","sha512":"d405374ad879bca3a585225df294bcb194ea17ce2acef357959911c6d6e55f73070b2251f37094aa2d93ecc25604285c971c0ed218f909a218093109993be2bd","ssdeep":"96:jo/3q9yFo1VFfeWAXqKWjxaEbIVP5joOQX82y2Wfj/UpOnBJLCc8HR1j9u:jo/3H6VFfrAXqjsEb6xkZ8Z2XApCcSn8","tlshash":"a1a18e3652b4ada3b72975a9bb820fca1b52d02570422bd2ed7e56b05f15b848023207","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.25674Z","times_seen":49,"resource_available":false,"data":null}},"time_used":829,"timings":{"blocked":539,"dns":0,"connect":0,"send":0,"wait":290,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/redirect.js","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.tslegila.com/","date":"2026-06-13T17:07:59.797Z","timestamp":1781370479797,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /redirect.js HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:00 GMT\r\ncontent-type: application/javascript\r\netag: W/\"6868dac3-145\"\r\npriority: u=2,i=?0\r\nlast-modified: Sat, 05 Jul 2025 07:56:51 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=G7BAt4m8h9LTk68bBKREVaJWKteyVQ%2BzAspS2BwKPhZUQEal%2BeoR5rsysccAVU3q648RV%2BTjmJtxGJDgx%2BzJLhjHRN%2BnZQM0df9dmaMWFh%2FGQHoz3XENjLjJ%2FqAXOvmtD4FB\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\ncf-ray: a0b2b1dabf9f8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":325,"size_decoded":984,"mime_type":"application/javascript","magic":"ASCII text","md5":"17773b57b87a678c98e26a7cac72df6c","sha1":"7422857aa75ee81cabcec2eed6c4a6168f363ee1","sha256":"375141f2d3f04c733276dbff5d9208ff36b2db6a64abcee723179ac24797974f","sha512":"28d9e1c2af08154e653e2291db46f4110edbf9f5591192f8d695c8852f9c3c755d69dfb5a032a45f51e0a3fc9417f16c20d0772b1225ca9b85e5531e12fa8bfc","ssdeep":"","tlshash":"e8e07dda0279030417e013f36d82b4709137c2fb604c5d028d984321a1b9b4f5b7b84f","first_seen":"2023-07-27T09:32:34Z","last_seen":"2026-06-13T19:25:53.138034Z","times_seen":11488,"resource_available":true,"data":null}},"time_used":600,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":600,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.465390c6e54c60f4a15f.woff2","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:06.501Z","timestamp":1781370486501,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.465390c6e54c60f4a15f.woff2 HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/main.646e16c287a10cb1a6cc.css\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370485$j55$l0$h0; _ga=GA1.1.95620750.1781370481\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:07 GMT\r\ncontent-type: font/woff2\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\netag: \"68b1b066-2b08\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=49MU%2F5lETT0adI1%2Fs2Z3XBhOrZ4hApt%2BMCVuad2nznCIZuXOkDoZMdfvEUmSgVydVQ49GwQS43fcGg9LEhLaEAwJGXIBNmmjtCZjBSOF9hERmkG3oWdJKwgs%2FAONvtMX1krD\"}]}\r\ncontent-length: 11016\r\ncf-ray: a0b2b204a8b18deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11016,"size_decoded":11804,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 11016, version 1.0","md5":"15fa3062f8929bd3b05fdca5259db412","sha1":"6ff06a34f68ad0324ddec1bbe4d453c959178b36","sha256":"5d1bc9b443f3f81fa4b4ad4634c1bb9702194c1898e3a9de0ab5e2cdc0e9f479","sha512":"07e96d7520b4ede158e77bef10a01a33cd8be7d263fe6900f89c023e65e4a63570e8a442dec2e96030fb563b25610005a748d48f9330fd31eb91b37d1003d376","ssdeep":"192:Tysuo7z1NVoTUYAKVOO7YVxRwHQUXFI5xoBwH9f4d9QFmOfiS:TvdvVoTSjOYR4QUVIgBwpFLaS","tlshash":"6e32af8071ff1c50ff85c2f69be68efa2c2b1895c619016f5240b476397525e9c294bb","first_seen":"2023-04-05T09:25:54Z","last_seen":"2026-06-13T19:25:53.128837Z","times_seen":33950,"resource_available":false,"data":null}},"time_used":884,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":597,"receive":287,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/KFOlCnqEu92Fr1MmEU9fABc4AMP6lbBP.3e1bb90afe5eb4a94c5f.woff2","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:06.575Z","timestamp":1781370486575,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/KFOlCnqEu92Fr1MmEU9fABc4AMP6lbBP.3e1bb90afe5eb4a94c5f.woff2 HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/main.646e16c287a10cb1a6cc.css\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:07 GMT\r\ncontent-type: font/woff2\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\netag: \"68b1b066-1ad0\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=r98Min1ZHe9qLzmSDImB0cAyWjntQn2nMOyaHY7vU08BdeMPuyXlHh6A36VBKm%2FmSGy8duEnzDRplGH1itGtOcLY9S4iRsOgdcNjWOQCD77lHtgBUy7BVxHVOzsMHoeyJCnJ\"}]}\r\ncontent-length: 6864\r\ncf-ray: a0b2b20518d58deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6864,"size_decoded":7645,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 6864, version 1.0","md5":"2efb23d70eb9a590216a126ce28120b0","sha1":"27786db7735f04a4d59ad023fd327d2dea51ae68","sha256":"af2fdef955568dc79de38bfb097d53586855945811b638d6c41513bd62e25cc4","sha512":"3e7e08d638dfc4ff416b697684369e067e1e2acb127c637bec664915cc35ccc9d5124c321a34efe0d6a5c3185a9ba7b87ce1012005c1d11421faa889ebf960e8","ssdeep":"192:pByZoVsKss/uL0j5SV1uOVEBMGU/KDKzDy9X:jqoVsKs4OV1u/BMGxKXi","tlshash":"1ee19fd508741543f563b238abd648e244d3c4b7a9648f7daf23beda8f534cc655a304","first_seen":"2023-04-05T09:25:54Z","last_seen":"2026-06-13T17:08:37.25804Z","times_seen":909,"resource_available":false,"data":null}},"time_used":578,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":578,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ec-1f1fa.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.519Z","timestamp":1781370495519,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ec-1f1fa.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-110f\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3ml6G2fyMvNKPpeTcH8j%2FU8zRDB2Qli5MWgckYIzvSv96AmX7cxaJHM6TgCL%2By4qOyM8wyz69%2FMWQtJY1gPfa8LxOLN%2BGV4Tc42SzurYfzqnjjjP0SZHyo3XPTTLrPBV%2BKtg\"}]}\r\ncontent-length: 4367\r\ncf-ray: a0b2b23cfd828deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4367,"size_decoded":5152,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"dd1cffdee6e1a164ff44403d55389362","sha1":"1a8cf2a3bcb54e148751bb1a81fa332387c3e8fe","sha256":"4ac04becb9527e2d3117dd4746beb5bee6a2a5029fc30e19d3c4525c0296816a","sha512":"12442f81cd188f9e48d2748f50f7a4d41694c3f6aae33abca2129b59878d122ac69f5849888930caad3633f627b7c6823f4d674c2930de4912b8d0dba74f862c","ssdeep":"96:3965HMPQ27qyQkwL6sQjJbAXMDczpFBgqG2tkC+/QXo9:t65HMPvZsQjtIEcxgqd+4Y9","tlshash":"54917cf1819fb0f284b58af604d82db291e2a7b746994bd458330f358e7378807507c5","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.258849Z","times_seen":51,"resource_available":false,"data":null}},"time_used":584,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":584,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ef-1f1f2.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.544Z","timestamp":1781370495544,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ef-1f1f2.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1592\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=J%2FgLpizi7sEdDBzjUEtvGGYdFa7DZ2WQmbl7TS9tWNxpfW1VPFJTMI6yf%2FNYatb6ueRz%2FbTJmdtqZiQvTAkqhdu%2Fo9dj3NH6Mv38jCu7PcsCbLaYtBme9sj4eeQmAfWGgjoF\"}]}\r\ncontent-length: 5522\r\ncf-ray: a0b2b23e1dce8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5522,"size_decoded":6305,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"c7c4fd0341dc050cb815c064c5c54989","sha1":"7cc1f084eb9f4eda385675a35acb8daa38523657","sha256":"65f564b75a4392406456d621ff8642343845d900b53bb61fc03b613a0685bd1b","sha512":"fcd99803639182dfca1c0feab498a90acb849ef16c2c7c43bfa2cd8df7593759c51eb40988f867623148cdadbf22046680c19066f62d0600d47b29c27f9a6789","ssdeep":"96:SvpkZ991yyfbiqhvPZ5O5aJKQ/42GeJIeuiK2ZaL0v3MSdum4FQuejXAa+c:Sva9Vf28PZOaJKQ/42GQSO6zQuXUjXAo","tlshash":"49b17e92fd11bcfcd8a1a3518ea86207f2ca6c0c994ed6a2f81930576639cc9763811f","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.259468Z","times_seen":50,"resource_available":false,"data":null}},"time_used":601,"timings":{"blocked":10,"dns":0,"connect":0,"send":0,"wait":591,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ef-1f1f5.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.545Z","timestamp":1781370495545,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ef-1f1f5.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-11f0\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2Noj9aiHK0tU0zX29dUxM4Tse7Wvk3t3KN0gq5OyZdWsZpzcB%2BeAO7n3qt1Bn061o4i0quBbX%2BhcTj369v1q391zuNH9Z5TUGjrBmAhhiX1hlWnoiJu%2FqMqBCT6DEqgHwgUt\"}]}\r\ncontent-length: 4592\r\ncf-ray: a0b2b23e2dcf8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4592,"size_decoded":5373,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"08bad8a9152a6fb637643a0fe954a404","sha1":"c11191efa662724481220404d7498167c6fec07e","sha256":"874ed5bc615159b1eb4d306686ff91e9c8a289df0e5d126f30265762852ee9a7","sha512":"91806e48ad92d4d1ee39ad3e88900cb515b3c8b97d370e08841f6a620b41638b1758d5dce9560a62f09dfceab073cde92304bfc50fdac792efdfad8c07808dda","ssdeep":"96:kHteUSks8gnawLpK4FDhzQkmL7wX1JvgiosHE4Bc39V8m:XkmjI4FDhEkmL78JTPECc39Vv","tlshash":"25916dd08b9d89a4487b1e083daf0efc4d25be7d3baf5d1cb1b5f888797228c1801806","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.260121Z","times_seen":51,"resource_available":false,"data":null}},"time_used":950,"timings":{"blocked":13,"dns":0,"connect":0,"send":0,"wait":937,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f3-1f1ea.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.594Z","timestamp":1781370495594,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f3-1f1ea.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-119c\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AdWNUXCeKBmof5DjV7tnhhr3tV6me%2BOt1FhoJ0uGk63GvEsazVLHBR%2Bt73B3KJ2yQj2C0AuUrQ4NJXp9so3HDX5QN%2FNvRFWJx0A3OUJ6Ibg6XuFPQgoW3LwkRMfI6vKl8g1W\"}]}\r\ncontent-length: 4508\r\ncf-ray: a0b2b2402e7a8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4508,"size_decoded":5289,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"237cdde5971884ca5cd66d437b0a9649","sha1":"4761e38dcbac8b9084a5b7be1a7ded99c8846b9b","sha256":"308ebdbf08f9d5e7f21dabae1856d6599dabdcbeb2001ee4a186981363e49cbb","sha512":"5ce0e11834dbb19e02f5af3cc8d620fd5a610a94b2f1065a06fa16dc411df159ea648739967ac4bcb1b2b4935a8117de69eb7979e7ad019b59bafa458c921877","ssdeep":"96:U2fy+Or3dydHBLmYh9aO85e/QMGAqBBh4Z6z+dfNZ2ryGAB1XVi5PECh:RfwJEHJnw54TqBBh4Z6ziNMGXB1liv","tlshash":"bf917cc16a768d0ee8eaba23e7877415f4761e086126b99221913991ce72311f0a5e39","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.260765Z","times_seen":50,"resource_available":false,"data":null}},"time_used":903,"timings":{"blocked":335,"dns":0,"connect":0,"send":0,"wait":568,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/chat-bg-pattern-light.ee148af944f6580293ae.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:06.564Z","timestamp":1781370486564,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/chat-bg-pattern-light.ee148af944f6580293ae.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://web.tslegila.com/ZH/main.646e16c287a10cb1a6cc.css\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:07 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i\r\nlast-modified: Fri, 29 Aug 2025 13:51:34 GMT\r\netag: \"68b1b066-429eb\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ptiN2Ix5yn%2FPxjlqd3HJRkfdRmvPtjzWYkfXsyzQlpJ5gtcVpLBwK1HEEWKAoaUdOnMzPOQ1i9bmKiA6YuahinA9IwxSLO65Dr08eGICxNyl%2FiumXEUTqPww9%2BEZPhI%2FHIUx\"}]}\r\ncontent-length: 272875\r\ncf-ray: a0b2b20508ce8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":272875,"size_decoded":273661,"mime_type":"image/png","magic":"PNG image data, 1123 x 2307, 4-bit colormap, non-interlaced","md5":"3d558d8de7082a2b2355076c8988c3fd","sha1":"d74980e29b0ec2f102b0dcd614503fd42a255b85","sha256":"00745db819d91c37bf0f59bee00ab2efe9766fddcb726ff1bcb6847748b2bbc7","sha512":"5f6f62eba34a80efd63ec237536a288dacb799b1270d07f82b82f0ee280923349105acfab71333361ff3efdf64708cd682f89ac2831dc02d0d7357bb5c4c3926","ssdeep":"6144:rNYvpliapP4LNqNMaT3SU4+hRT2ieSaVTrewN69j+YOnZmDXxGjuC1:rNCpb+L7aum2Bt6hr/C","tlshash":"49442315c47c54964f1c08af035b679cb1939b8bfc16b33d67aadc0d32278d8a74baa4","first_seen":"2023-05-16T22:57:54Z","last_seen":"2026-06-13T19:25:53.143512Z","times_seen":860,"resource_available":false,"data":null}},"time_used":1722,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":581,"receive":1141,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f5-1f1ea.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.608Z","timestamp":1781370495608,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f5-1f1ea.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-d93\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cEpqSYKLeedBjE83u74KIcoKEt6v0INicrSiUyicXl1RG9oe8KXhXFJLnsI%2FdeLE0GkV1QlmJR7%2Fa%2F%2FQ2jGzU8KrJP6n5pv6PgjVE3EGBi%2F2RVieVqxynBqzQYXCxJbtYLRJ\"}]}\r\ncontent-length: 3475\r\ncf-ray: a0b2b2405e938deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3475,"size_decoded":4259,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"6a6769d356b264e12ef636b159aa5d80","sha1":"506b09ea6ae9aae8d6134cf1577960d388be6e88","sha256":"1c04b5c02df6c8ad6589528544557f782c0593ef89214022eaab52df90b65841","sha512":"4aca8c85714d359fc20a743f1eaeb891222033f0f9105ea68e31ffa46c4508cb3169fcca4753cf515ad10927c725fc6dd39562b18e82f9ad0a4a21460dbef3c0","ssdeep":"","tlshash":"f1615c42a90342bd13820fcd9f198677f2281e44bdab29f6341d3ddd53361168e8a7e5","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.262166Z","times_seen":50,"resource_available":false,"data":null}},"time_used":652,"timings":{"blocked":360,"dns":0,"connect":0,"send":0,"wait":292,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f8-1f1e9.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.643Z","timestamp":1781370495643,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f8-1f1e9.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-f65\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9I8kjCx6weGiSEXRoP2O%2BxoSwePtDn2uu1o9mnSMflXGz8OiKQCXsxTU6fC%2FUvM7l7WKoUVIrt6ewddkuWzrtLn81yBqwwJTeBxi8tOqmpA4Ru4Zw6ImH%2BacW64kj6LcRehw\"}]}\r\ncontent-length: 3941\r\ncf-ray: a0b2b240beef8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3941,"size_decoded":4721,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"0baa4fc5e09dd1168a54262bae9e3b99","sha1":"926d2f10bb8d053dcec7faa453dc06322401c86b","sha256":"6b12499c7a84f6cfa8816f98de3f63b54f82abf3cdfff8d43b4e1b1fb115adac","sha512":"426634c15a0fdcb4909d362fe187129a99c30b311c0d0814714d258772b2920a3e0244c19ba8b037b6ceb0aba2022d723fbe812ba0729237d25c76a2652e7f4e","ssdeep":"","tlshash":"30816c53a311ed3a954c0321e82e47b951905a4e5eca4ba835f4451cc973effe3cbd92","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.26285Z","times_seen":49,"resource_available":false,"data":null}},"time_used":725,"timings":{"blocked":426,"dns":0,"connect":0,"send":0,"wait":299,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f3-1f1e6.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.586Z","timestamp":1781370495586,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f3-1f1e6.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1594\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2CMxorCfvYGrAYCRf3H56fEGoGWG98FUg9TLc1usG0DyX4kdzLd7Au4%2FKKBWj5IQSEl4dNsuylCqbwCRMpYrm3IYFLiwWlN4r5Mgd9N8pVcfOpg8DW4fwSI%2FFLNY8TiCHNCZ\"}]}\r\ncontent-length: 5524\r\ncf-ray: a0b2b2400e638deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5524,"size_decoded":6303,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"117352d938615d96c64c6ee2279816f8","sha1":"e3bf98ec8f4ac3eb304ca8c3571028a222404057","sha256":"45df40169dbcbbe99c39a24954059130d4c516ed3cde5b530cdeee9a10f86427","sha512":"a127db5dcd46dd2c2d35895c786cb83c2055779506375f707b244efc114bf8ca3e82df96a8eeb8541a524d9734da7e721f59c759774cf6b71fdb87ee4fa17a5e","ssdeep":"96:qyRrajvOfh2zvuvRUwEjxqQJL292z2C60uLPRV:VUi0ORt2xNL67CvMJV","tlshash":"96b19e4656e3d8f574f49c0a44dc0c64d801e948d7936b0f0bee8a3673e99275d07be1","first_seen":"2024-04-06T23:36:14Z","last_seen":"2026-06-13T17:08:37.263508Z","times_seen":50,"resource_available":false,"data":null}},"time_used":610,"timings":{"blocked":319,"dns":0,"connect":0,"send":0,"wait":291,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e7-1f1ea.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.389Z","timestamp":1781370495389,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e7-1f1ea.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-c43\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1FteTUDTs3we8JbcT79XL8ZElBol5HqvwV14i3Ag4mGU3NADbUClCTpqZf0V1f3KkXCBdPYSpJCQk%2B5KIeg7TG1WUJv2K01AN8IiHRjp0fmIneO81VNEW2M0PwTTYEnsbvmm\"}]}\r\ncontent-length: 3139\r\ncf-ray: a0b2b23c2d2b8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3139,"size_decoded":3915,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"95ea82bc7753bbb3cec2a90558797e60","sha1":"061564f6e98c209744078f4aeff4919cb4032b0c","sha256":"c57906595c97ff0773df3a3b6bf5689e8d1d05c26481fdd62d0633f15be71dee","sha512":"646643f0c096106ff4d0eca53aa9b45f1703dcfd70cc2a66d7c4de34c66b3a6465bb1452b2c898cc6bb0f56dfa2aa1ca5be6b20596e98e4f3d086fc06dd6292c","ssdeep":"","tlshash":"05514bfa0194fc88e29272cdd7a0c07ef8368e8ee964905a1b357f140933a20839e151","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.264208Z","times_seen":50,"resource_available":false,"data":null}},"time_used":579,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":574,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e8-1f1f1.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.430Z","timestamp":1781370495430,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e8-1f1f1.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1033\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iXVd%2BCwGntxhzXMInT%2BJJwBhxaqGNTTuzvleb8ySTib%2F5LkvT8UbW0i17DoY0A%2BubRlxq66KsuR6L898WxehyJjRhks97b%2FUJ0xU%2FSDZ2%2BqwaTHLhdc7jsH%2Fub2Uu9Uzh7XC\"}]}\r\ncontent-length: 4147\r\ncf-ray: a0b2b23c7d448deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4147,"size_decoded":4938,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"d40a06f2bdbf2ce93833eb72723c110b","sha1":"30159c21d2b6e24784b4414ce7b6425325f97b78","sha256":"979940b117fa7938ef9cfa2b1563e40f5cee03f7a42621d4a1744dfee6c92d0e","sha512":"819d820490320fde313ea8cc1889d2a5d6a7a3e567eed143e170c4c66851736b18254e078cef3b6a9787898d3e6c9214576d98a7d306eb5803b6991aa0a2047e","ssdeep":"96:XmiU/gAPy3QI3KKQLpIr+qPW5vOzJmLzhI:XmiyZ63QI3Kf3lvOVmLK","tlshash":"6a815d4f17c45524a928b8a72d4e7ed98d8c4df0a9e74d49b982bb20abb1404edd8e11","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.265004Z","times_seen":51,"resource_available":false,"data":null}},"time_used":569,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":569,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ec-1f1f1.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.514Z","timestamp":1781370495514,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ec-1f1f1.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:15 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-110d\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IcH%2FGzuMijcSoGfT%2Fym%2BqJAQ7nCByvHYNk07tZj56az%2BYeySli63DRvnVoj1MgSPT7%2BOmsUgH6LYdDLPeMCWtOumWjLcUCoAZcPm%2F3TpIwKbaH5BI7I5YLe4q7COAiwPkZPt\"}]}\r\ncontent-length: 4365\r\ncf-ray: a0b2b23cfd7c8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4365,"size_decoded":5152,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"ee737e0de9afea578dbda2834d4ca878","sha1":"55426db9dc28bf78bfde4d03cb33a17945e67065","sha256":"f5ddcbd93bda7c88260be93f87710ce94ef58b13e47e54cd7d37b189c20f14fa","sha512":"84d5ae86afddbe153b0415953d930065a22bd33f8dd9b69325af919474b33787fff73104aa584adcb8489b4157562c32bf41e4032dd2e3cb0119874838ea25d5","ssdeep":"96:OkUv8F2qke4TGHm4Zb26czp5kpYNzlY2/+iR6JB:OkuR96rpYNBL+C6P","tlshash":"cb918e0806a5ccfcd8b800d35ffea951ed905e9b552cf60c7193ea9d6dc2161d33b802","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.26574Z","times_seen":51,"resource_available":false,"data":null}},"time_used":285,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":285,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1ec-1f1f9.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.522Z","timestamp":1781370495522,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1ec-1f1f9.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1315\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8F7gYy0GVanRWrbHoJgIR0vh7IbK%2F%2B2myfqL2%2F00bJnAF%2FmTvf8CYIQ3853SvzycJSQZZw4bf00lKO2WVPeFNdhNW%2BxBr2Z%2FUmKI%2B1%2FKjUFY6AlJokumC1u6mjrWKvGufy4f\"}]}\r\ncontent-length: 4885\r\ncf-ray: a0b2b23d0d848deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4885,"size_decoded":5676,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"b202a85b77803eb79dba4b7b43db2c02","sha1":"e520df3dbdbe37e1a38a9fef5e4906ad9b07de89","sha256":"0a306afed8b4a0bf439894949ee6a0fc4ad4fd920abe476fc21c0234c6bf1ae9","sha512":"406bb50c98748502ffef510f9b01ebf590a77cf7318e97fcfb79db3c02871978d2c2d5fb324259a832420f554938171f8a7bdadaa4ca66d312b08534d7a5efd8","ssdeep":"96:ZY5liNEc3IYSUf3qVwLf9RdO8Ctdrt/+MR0z3klDl:ZY5liqc35dqVY97jCXwMmzklx","tlshash":"8ba18c21c536b416b2badd520a65025edb6eaf8a08de340340d4fb9673bf70cb220815","first_seen":"2024-04-06T23:36:12Z","last_seen":"2026-06-13T17:08:37.266522Z","times_seen":51,"resource_available":false,"data":null}},"time_used":567,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":567,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1f2-1f1ed.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.571Z","timestamp":1781370495571,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1f2-1f1ed.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-1687\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yZkTNZMjdhcgop6Xqz8A1SOXHq5E7LKtfx24%2F1ymIHt1xD7%2F8RwY82Ufrxzg3AunZEEqzvZsBNPw7%2F9jKA6CEzbNnWLxyy5Lq7JCc2WSg29xYpBOiF9OSA6FjHrFU1lp%2Fm%2F7\"}]}\r\ncontent-length: 5767\r\ncf-ray: a0b2b23fce408deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5767,"size_decoded":6552,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"ddce25d2c77c6092026e52bda8ef3715","sha1":"98a4845d371ac4431d264830b10e6812382e2752","sha256":"02a0b654961a882dc6844a81925e6e7328a77705e093283d77ea192fa99889e8","sha512":"122228c068964a9b68d6c4fab6763b3b9ecab50095d171cded2dd73570c092be467d4369bed755d9dcbef9be86d4c4328bada303a261db7c3e67b7053e26f3c4","ssdeep":"96:rz4PGakaeIBmnucJgzt26k2q71TdTdBlNQnA1pXGJobtCZK3Dnt:rUGa2nucJg5Tk2q5fUqRC4","tlshash":"3ec18da1639ea211b8c4ca32d1db1458d240bee9f9a97c929b39f4c74d788041ef6d89","first_seen":"2024-04-06T23:36:13Z","last_seen":"2026-06-13T17:08:37.26765Z","times_seen":50,"resource_available":false,"data":null}},"time_used":560,"timings":{"blocked":275,"dns":0,"connect":0,"send":0,"wait":285,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.tslegila.com/ZH/img-apple-160/1f1e8-1f1eb.png","fqdn":"web.tslegila.com","domain":"tslegila.com","tld":"com"},"ip":{"addr":"172.67.213.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.tslegila.com/ZH/","date":"2026-06-13T17:08:15.426Z","timestamp":1781370495426,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tslegila.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 09:29:13 GMT","end":"Tue, 21 Jul 2026 09:29:12 GMT"},"fingerprint":{"sha1":"85:2D:25:32:F4:A3:85:33:0D:B3:89:B7:73:7B:77:0D:F0:AF:4F:D6","sha256":"31:FE:5C:D0:AF:2D:87:A6:A4:D5:C8:9D:EF:91:F2:83:88:12:F6:4F:B7:32:5A:1F:39:A3:81:84:72:B2:8A:74"}}},"request":{"raw":"GET /ZH/img-apple-160/1f1e8-1f1eb.png HTTP/1.1\r\nHost: web.tslegila.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://web.tslegila.com/ZH/\r\nSec-GPC: 1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nConnection: keep-alive\r\nCookie: _ga_MNRFRBBP0B=GS2.1.s1781370480$o1$g1$t1781370486$j54$l0$h0; _ga=GA1.1.95620750.1781370481; __gaid__=Asdu1kkYw2z5L2qQNNMHfE9SxaUrJPb\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 13 Jun 2026 17:08:16 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nlast-modified: Sun, 31 May 2026 03:14:17 GMT\r\netag: \"6a1ba789-115a\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cMeGGDku9OjAbu5xMSAbXukF8K2x2iC4JDXGmYQcH7y7Fyh8U1n5QOcguo2AI1YOpyk%2BAh%2FK3SUqVlTblt5qo2rVw9GhZA3fIxM9THWL2fsAm23D1fmJADC5zL1YIU1%2Fefsv\"}]}\r\ncontent-length: 4442\r\ncf-ray: a0b2b23c6d428deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4442,"size_decoded":5223,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"c17614918e42473f572f2278705e9bf8","sha1":"39d2b5181d54a35c2fe18185cfe6fcbed1cb1dc7","sha256":"859650cd4034383d4b2bc14ada21d739414ec63d9085fcc248c09986c5a5835b","sha512":"7d16833453fe6431ab6485737222ede63695e6014f4b27c49fdf185c3e4077ac1fb18c6f7c5e08156ff7c9b43b3ff62b0fafbca8d560ae5cd41d6682808d9a46","ssdeep":"96:elQai6DHdRNZEiTYiNj8sdcq8+hzfoh5o/GikgreU5htoOG2:eWai6P/EiTYiN4s+q8Kzfo5o+iN1bog","tlshash":"1a917df3aa9f18c99d64077b5d27c8628ecea72523a0181ddc30d58a40871a9f62f34a","first_seen":"2024-04-06T23:36:11Z","last_seen":"2026-06-13T17:08:37.268582Z","times_seen":51,"resource_available":false,"data":null}},"time_used":613,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":613,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-13","alert":"Sinkholed","trigger":"web.tslegila.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}}]}