{"report_id":"bc4ed368-d119-4591-bb2e-106bc188ea72","version":6,"status":"done","tags":[],"date":"2026-01-24T13:50:08Z","url":{"schema":"https","addr":"legastrade.com","fqdn":"legastrade.com","domain":"legastrade.com","tld":"com"},"ip":{"addr":"82.29.199.30","port":0,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"final":{"url":{"schema":"https","addr":"legastrade.com/","fqdn":"legastrade.com","domain":"legastrade.com","tld":"com"},"title":"LEGAS — AI Trading Engine | Powered by Precision \u0026 Intelligence","dom":{"size":94279,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (30090)","md5":"c765c08a1ec4632f94c4150e5a90d267","sha1":"0496f647e3a64c73afc3ae4c13707e03aaaf7bdf","sha256":"f3cd91dc08e04182f4c331e140f2e7c8a266a2c0003970f2e67ad798391bc1d4","sha512":"6bcdd448aca09da2fb18afa6b1bd4a666a2c8e7d6a313256838a3357616be179e85e92b81250a4d681ea4889e0372b3720567bae124d1fb22fa171fe4f10925a","ssdeep":"1536:3/HtHX7SAf8KQ0X7/eFJhAC/rghXx/c64Jysq7vTXNkGHi35FqkbhB2u9YrIghwQ:57SAf8XrghhSnw5abYSJfYMyt3","tlshash":"e693f968a30c1228551b53f1f9d8736ce13cd682ff630d6bf51c00a79bc9eb8566b6a4","dom_hash":"domhash1e5a0710a657d1a6883562e51116c63d","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"legastrade.com","fqdn":"legastrade.com","domain":"legastrade.com","tld":"com"},"ip":{"addr":"82.29.199.30","port":0,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-28T13:50:08Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":2,"urlquery":0,"analyzer":1}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-01-24T13:49:48Z","timestamp":1769262588,"ip_dst":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"ip_src":{"addr":"Client IP","port":40864,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO AI Service Domain (lovable .app) in TLS SNI","source":"{\"timestamp\":\"2026-01-24T13:49:48.705087+0000\",\"flow_id\":1279886530225799,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.36\",\"src_port\":40864,\"dest_ip\":\"185.158.133.1\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2063043,\"rev\":1,\"signature\":\"ET INFO AI Service Domain (lovable .app) in TLS SNI\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2025_06_18\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0042\"],\"mitre_tactic_name\":[\"Resource_Development\"],\"mitre_technique_id\":[\"T1587\"],\"mitre_technique_name\":[\"Develop_Capabilities\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2025_06_18\"]}},\"tls\":{\"sni\":\"aerial.lovable.app\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":920,\"bytes_toclient\":3515,\"start\":\"2026-01-24T13:49:48.697991+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-01-24T13:49:48Z","timestamp":1769262588,"ip_dst":{"addr":"185.158.133.2","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"ip_src":{"addr":"Client IP","port":58698,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO AI Service Domain (lovable .app) in TLS SNI","source":"{\"timestamp\":\"2026-01-24T13:49:48.716991+0000\",\"flow_id\":376590483373214,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.36\",\"src_port\":58698,\"dest_ip\":\"185.158.133.2\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2063043,\"rev\":1,\"signature\":\"ET INFO AI Service Domain (lovable .app) in TLS SNI\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2025_06_18\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0042\"],\"mitre_tactic_name\":[\"Resource_Development\"],\"mitre_technique_id\":[\"T1587\"],\"mitre_technique_name\":[\"Develop_Capabilities\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2025_06_18\"]}},\"tls\":{\"sni\":\"aerial.lovable.app\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":920,\"bytes_toclient\":3515,\"start\":\"2026-01-24T13:49:48.703646+0000\"}}"}],"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"legastrade.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"legastrade.com","ip":{"addr":"82.29.199.30","port":443,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"domain_registered":"2025-11-16","domain_rank":0,"first_seen":"2025-12-18T23:05:00.750951Z","last_seen":"2025-12-18T23:05:00.750951Z","alert_count":7,"request_count":7,"received_data":950822,"sent_data":3147,"comment":"","tags":null,"fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Hostinger","description":"Hostinger is an employee-owned Web hosting provider and internet domain registrar.","website":"https://www.hostinger.com","common_platform_enumeration":"","icon":"Hostinger.svg","categories":["Hosting"]},{"name":"Bootstrap:3.3.7","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}]},{"fqdn":"aerial.lovable.app","ip":{"addr":"185.158.133.2","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"domain_registered":"2023-05-06","domain_rank":0,"first_seen":"2026-01-24T13:50:09.25418Z","last_seen":"2026-01-24T13:50:09.25418Z","alert_count":0,"request_count":1,"received_data":707,"sent_data":535,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"legastrade.com/assets/index-BfICG4K9.js","fqdn":"legastrade.com","domain":"legastrade.com","tld":"com"},"ip":{"addr":"82.29.199.30","port":443,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"e3dc09c249fe24d7f1962f65ab0e7343","sha1":"2c70c2bebfc331cf2120fb12927e397c656e23dd","sha256":"37c7e3a838aebaff621cfa4a8792e7940c6e885218d18d879ae6bb79a5072da3","sha512":"77af19fdf7d6be5346fd6a28de97ee3282de4fb8c7051c164a11938a4e8bdb96299bf07364c819bab1a1cc85695e3e155a4220455aa91d4cc151e091b040d648","ssdeep":"6144:p9wwYAdDFMHh+ZbeXwS5l6mB6TqzlNoGXhdLFZdtNVWbyiVOBb6xjR9BUtCDLGlh:VHdDFMHl4KZnLFZdtNVODVRm","tlshash":"e8b4e7c4e3dd397e5a02a0590c2ec6dcb53d68379bb88067b1ac946a35c053bd377ea4","size":527681,"data":"","first_seen":"2026-01-24T13:50:11.408186Z","last_seen":"2026-01-24T13:50:20.164111Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"legastrade.com/assets/~flock.js","fqdn":"legastrade.com","domain":"legastrade.com","tld":"com"},"ip":{"addr":"82.29.199.30","port":443,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"ed557a78d5301fbb961abfe911a42b62","sha1":"d11a2a4e9fee28c4b1abc38cd8136bffec7e325b","sha256":"a86e084b4f82709814be6c15fd6305daa783fda87ad95402da9a4d3a1dd6d748","sha512":"18dd1525e2b4d89e3c46d92367fca020cf99fb07856acfd96a25dc7410611eea83b438c91691683983495945eb04a9427bc63e2a383cbe93449f4df0eb1ddb51","ssdeep":"384:FtUCBXTpeaFEo5TTThri1t/mCsOCXiTNZruJ4vKFlcEhRCDxOcX/YM2Vybyq/kmt:n7XTpeauI/Thri1CKWM4ldRzurwkTO0D","tlshash":"cea2b6d61007243d57ead1a13929f7d63177ea98a0caec8a7de91f84d414c83f3f294a","size":21296,"data":"","first_seen":"2025-07-30T15:25:28.733337Z","last_seen":"2026-06-13T16:54:01.414445Z","times_seen":10598,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"legastrade.com/assets/index-BfICG4K9.js","fqdn":"legastrade.com","domain":"legastrade.com","tld":"com"},"ip":{"addr":"82.29.199.30","port":443,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://legastrade.com/","date":"2026-01-24T13:49:47.524Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"legastrade.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 17 Jan 2026 14:46:33 GMT","end":"Fri, 17 Apr 2026 14:46:32 GMT"},"fingerprint":{"sha1":"2D:F2:5B:5A:6C:0A:F0:17:1F:8C:7A:F0:B4:08:D4:23:72:8E:80:7C","sha256":"67:E5:52:5D:34:96:BA:A7:0D:C3:A3:15:A6:DC:B5:78:F9:F7:54:B4:54:F2:91:4F:2B:A4:3F:D7:7B:BC:CB:7E"}}},"request":{"raw":"GET /assets/index-BfICG4K9.js HTTP/1.1\r\nHost: legastrade.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://legastrade.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sat, 31 Jan 2026 13:49:47 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Fri, 19 Dec 2025 17:14:26 GMT\r\netag: \"80d41-694587f2-299f84b3d7a97df2;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 133981\r\ndate: Sat, 24 Jan 2026 13:49:47 GMT\r\nserver: LiteSpeed\r\nplatform: hostinger\r\npanel: hpanel\r\nretry-after: 60\r\ncontent-security-policy: upgrade-insecure-requests\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Hostinger","description":"Hostinger is an employee-owned Web hosting provider and internet domain registrar.","website":"https://www.hostinger.com","common_platform_enumeration":"","icon":"Hostinger.svg","categories":["Hosting"]}],"data":{"size":527681,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (1081)","md5":"e3dc09c249fe24d7f1962f65ab0e7343","sha1":"2c70c2bebfc331cf2120fb12927e397c656e23dd","sha256":"37c7e3a838aebaff621cfa4a8792e7940c6e885218d18d879ae6bb79a5072da3","sha512":"77af19fdf7d6be5346fd6a28de97ee3282de4fb8c7051c164a11938a4e8bdb96299bf07364c819bab1a1cc85695e3e155a4220455aa91d4cc151e091b040d648","ssdeep":"6144:p9wwYAdDFMHh+ZbeXwS5l6mB6TqzlNoGXhdLFZdtNVWbyiVOBb6xjR9BUtCDLGlh:VHdDFMHl4KZnLFZdtNVODVRm","tlshash":"e8b4e7c4e3dd397e5a02a0590c2ec6dcb53d68379bb88067b1ac946a35c053bd377ea4","first_seen":"2026-01-24T13:50:11.408186Z","last_seen":"2026-01-24T13:50:20.164111Z","times_seen":2,"resource_available":true,"data":null}},"time_used":343,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":101,"receive":242,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"legastrade.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"legastrade.com/assets/index-BKALaKhi.css","fqdn":"legastrade.com","domain":"legastrade.com","tld":"com"},"ip":{"addr":"82.29.199.30","port":443,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://legastrade.com/","date":"2026-01-24T13:49:47.528Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"legastrade.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 17 Jan 2026 14:46:33 GMT","end":"Fri, 17 Apr 2026 14:46:32 GMT"},"fingerprint":{"sha1":"2D:F2:5B:5A:6C:0A:F0:17:1F:8C:7A:F0:B4:08:D4:23:72:8E:80:7C","sha256":"67:E5:52:5D:34:96:BA:A7:0D:C3:A3:15:A6:DC:B5:78:F9:F7:54:B4:54:F2:91:4F:2B:A4:3F:D7:7B:BC:CB:7E"}}},"request":{"raw":"GET /assets/index-BKALaKhi.css HTTP/1.1\r\nHost: legastrade.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://legastrade.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sat, 31 Jan 2026 13:49:47 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 19 Dec 2025 17:14:26 GMT\r\netag: \"14f1e-694587f2-9cf18fefce0645db;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 12659\r\ndate: Sat, 24 Jan 2026 13:49:47 GMT\r\nserver: LiteSpeed\r\nplatform: hostinger\r\npanel: hpanel\r\nretry-after: 60\r\ncontent-security-policy: upgrade-insecure-requests\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Hostinger","description":"Hostinger is an employee-owned Web hosting provider and internet domain registrar.","website":"https://www.hostinger.com","common_platform_enumeration":"","icon":"Hostinger.svg","categories":["Hosting"]}],"data":{"size":85790,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"299e00772c3298338072f8abfaa408e4","sha1":"941da9e9096b5b22920b9140a7e603d661a1fdeb","sha256":"70331f22edc513a37b6182a5f4a021efbddb06318904fef8124f051559efc5a5","sha512":"15d903eb9cf9c6ba051f5adc1bfa4151c7da21c0dd2d0da8feabb50caa1a08d229bc5104bbca60715b232325e305930876d15226387515c2b6da20d2de86aeb1","ssdeep":"1536:SMphnjhBwkGP2RU/bmaGOCr378VQZkt5FNCoC6:SMphnjkkGsUiaGOCr378VQZkt5FfC6","tlshash":"96838519b929a17f7c27a1e4c3cc79aca51df0c0de3a06b5be8a41252bd27f50d7b814","first_seen":"2025-12-18T23:05:04.40074Z","last_seen":"2026-01-24T13:50:20.171879Z","times_seen":5,"resource_available":false,"data":null}},"time_used":342,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":330,"receive":12,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"legastrade.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"legastrade.com/favicon.ico","fqdn":"legastrade.com","domain":"legastrade.com","tld":"com"},"ip":{"addr":"82.29.199.30","port":443,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://legastrade.com/","date":"2026-01-24T13:49:48.663Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"legastrade.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 17 Jan 2026 14:46:33 GMT","end":"Fri, 17 Apr 2026 14:46:32 GMT"},"fingerprint":{"sha1":"2D:F2:5B:5A:6C:0A:F0:17:1F:8C:7A:F0:B4:08:D4:23:72:8E:80:7C","sha256":"67:E5:52:5D:34:96:BA:A7:0D:C3:A3:15:A6:DC:B5:78:F9:F7:54:B4:54:F2:91:4F:2B:A4:3F:D7:7B:BC:CB:7E"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: legastrade.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://legastrade.com/\r\nCookie: session-id=ef81894c-2f8b-41de-8f9e-afd52742da30\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ncontent-type: text/html\r\nlast-modified: Tue, 22 Apr 2025 07:41:12 GMT\r\netag: \"119f-68074818-21212e9916469b2e;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 1626\r\ndate: Sat, 24 Jan 2026 13:49:48 GMT\r\nserver: LiteSpeed\r\ncontent-security-policy: upgrade-insecure-requests\r\nplatform: hostinger\r\npanel: hpanel\r\nretry-after: 60\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Bootstrap:3.3.7","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Hostinger","description":"Hostinger is an employee-owned Web hosting provider and internet domain registrar.","website":"https://www.hostinger.com","common_platform_enumeration":"","icon":"Hostinger.svg","categories":["Hosting"]}],"data":{"size":4511,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (371)","md5":"b16e9097fc7d3af8ebfcfce7aba0a42d","sha1":"2af3c8408b8445fe81d9a7c8d7cc8e8a05bf80f5","sha256":"e7db95c97a5d45787cc3e40cbcb93b748fefc65bc14e162c746e37f979861729","sha512":"53a7a2c276fbc5159231c162eb863504448515f1a078832b81f1bffeedb1c82932810b66748fd4111d1b8fb866622a5cc63e79e497227b611c90886ba45d3f3b","ssdeep":"96:tr+ulojsBwJG8YqVcqHL/GSrrLc1VhrJuzeK:tyoasBwJG8nVjaSeVhrJgeK","tlshash":"0891f88f25f381452603c99037f9b61499554007f685eca8bdee9228cfc4b8a41e3bdc","first_seen":"2025-04-22T08:45:29.599713Z","last_seen":"2026-06-13T16:56:43.644749Z","times_seen":34205,"resource_available":true,"data":null}},"time_used":115,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":102,"receive":13,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"legastrade.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aerial.lovable.app/~api/analytics","fqdn":"aerial.lovable.app","domain":"aerial.lovable.app","tld":"lovable.app"},"ip":{"addr":"185.158.133.2","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://legastrade.com/","date":"2026-01-24T13:49:48.740Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lovable.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 19 Dec 2025 16:09:14 GMT","end":"Thu, 19 Mar 2026 17:09:07 GMT"},"fingerprint":{"sha1":"A6:73:60:FE:69:A6:8B:3A:4A:27:4F:42:CE:31:43:83:46:56:10:85","sha256":"D3:CB:8D:88:AB:4B:2B:07:14:F8:93:ED:8A:2E:1D:DE:A5:BC:19:32:AB:EA:0C:28:B6:55:01:D8:37:30:3A:42"}}},"request":{"raw":"OPTIONS /~api/analytics HTTP/1.1\r\nHost: aerial.lovable.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://legastrade.com/\r\nOrigin: https://legastrade.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 24 Jan 2026 13:49:49 GMT\r\ncontent-type: text/html; charset=utf-8\r\nset-cookie: __cf_bm=k70A4gRZkqPWI175FcowPg2R.Oh3Uo5q2GOmJmMTcc0-1769262588.757073-1.0.1.1-G_G4GE6M4A8bD40xtJ7SM.A.xz2BF4uCOfUv7f.5zfCn2NxHye2r45eTtKvkIUegmzpDVYENqmQinEtXmSjauE3ylBjAiMqqlQff8OhkVqObVV19MayrQWTTrpo2BlQs; HttpOnly; Secure; Path=/; Domain=lovable.app; Expires=Sat, 24 Jan 2026 14:19:49 GMT\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nvary: accept-encoding\r\netag: W/\"356c2a74f8814a015a236b52f13cd1bb\"\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: 9c2fff0bbd1f5695-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T17:33:37.826371Z","times_seen":16391923,"resource_available":true,"data":null}},"time_used":574,"timings":{"blocked":13,"dns":1,"connect":1,"send":0,"wait":511,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"legastrade.com/assets/legas-assassin-DD6p68rv.jpg","fqdn":"legastrade.com","domain":"legastrade.com","tld":"com"},"ip":{"addr":"82.29.199.30","port":443,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://legastrade.com/","date":"2026-01-24T13:49:47.534Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"legastrade.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 17 Jan 2026 14:46:33 GMT","end":"Fri, 17 Apr 2026 14:46:32 GMT"},"fingerprint":{"sha1":"2D:F2:5B:5A:6C:0A:F0:17:1F:8C:7A:F0:B4:08:D4:23:72:8E:80:7C","sha256":"67:E5:52:5D:34:96:BA:A7:0D:C3:A3:15:A6:DC:B5:78:F9:F7:54:B4:54:F2:91:4F:2B:A4:3F:D7:7B:BC:CB:7E"}}},"request":{"raw":"GET /assets/legas-assassin-DD6p68rv.jpg HTTP/1.1\r\nHost: legastrade.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://legastrade.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sat, 31 Jan 2026 13:49:47 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Fri, 19 Dec 2025 17:14:26 GMT\r\netag: \"2690f-694587f2-28d467d6398c4d17;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 157967\r\ndate: Sat, 24 Jan 2026 13:49:47 GMT\r\nserver: LiteSpeed\r\nplatform: hostinger\r\npanel: hpanel\r\nretry-after: 60\r\ncontent-security-policy: upgrade-insecure-requests\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Hostinger","description":"Hostinger is an employee-owned Web hosting provider and internet domain registrar.","website":"https://www.hostinger.com","common_platform_enumeration":"","icon":"Hostinger.svg","categories":["Hosting"]}],"data":{"size":157967,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1080, components 3","md5":"cd711a480ddaabaec1e93edf4285f263","sha1":"db50fa959bb9655d2b534d8a197857693eae7b57","sha256":"31b465797dacf21e487d513c8a9490b0c1ae52b18431fc5c2af0441692e06fb7","sha512":"8e5f99c9065969ae189ae3f96811b0f03d426a6089ae6273fb2ebdbd1a1f42d90da1ccc6d79079ecb3fa13a893abd38f90d71bf52ac6cca29bb930539e1f352f","ssdeep":"3072:Qr1s0eaQEI32JOHBBeXkn+VcxyMF5zhQ0g7D44j72X:O1waQnReXy+e4MXzhQ0a44j7g","tlshash":"eef3020bad06eb93e88183fc2f885dfeef15330c5be234d82563ce8b7910969559916d","first_seen":"2026-01-24T13:50:11.411851Z","last_seen":"2026-01-24T13:50:20.168549Z","times_seen":2,"resource_available":false,"data":null}},"time_used":477,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":376,"receive":101,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"legastrade.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"legastrade.com/assets/~flock.js","fqdn":"legastrade.com","domain":"legastrade.com","tld":"com"},"ip":{"addr":"82.29.199.30","port":443,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://legastrade.com/","date":"2026-01-24T13:49:47.530Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"legastrade.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 17 Jan 2026 14:46:33 GMT","end":"Fri, 17 Apr 2026 14:46:32 GMT"},"fingerprint":{"sha1":"2D:F2:5B:5A:6C:0A:F0:17:1F:8C:7A:F0:B4:08:D4:23:72:8E:80:7C","sha256":"67:E5:52:5D:34:96:BA:A7:0D:C3:A3:15:A6:DC:B5:78:F9:F7:54:B4:54:F2:91:4F:2B:A4:3F:D7:7B:BC:CB:7E"}}},"request":{"raw":"GET /assets/~flock.js HTTP/1.1\r\nHost: legastrade.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://legastrade.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sat, 31 Jan 2026 13:49:47 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Fri, 19 Dec 2025 17:14:26 GMT\r\netag: \"5330-694587f2-99244cc8a8986c4c;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 8002\r\ndate: Sat, 24 Jan 2026 13:49:47 GMT\r\nserver: LiteSpeed\r\nplatform: hostinger\r\npanel: hpanel\r\nretry-after: 60\r\ncontent-security-policy: upgrade-insecure-requests\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Hostinger","description":"Hostinger is an employee-owned Web hosting provider and internet domain registrar.","website":"https://www.hostinger.com","common_platform_enumeration":"","icon":"Hostinger.svg","categories":["Hosting"]}],"data":{"size":21296,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (21296), with no line terminators","md5":"ed557a78d5301fbb961abfe911a42b62","sha1":"d11a2a4e9fee28c4b1abc38cd8136bffec7e325b","sha256":"a86e084b4f82709814be6c15fd6305daa783fda87ad95402da9a4d3a1dd6d748","sha512":"18dd1525e2b4d89e3c46d92367fca020cf99fb07856acfd96a25dc7410611eea83b438c91691683983495945eb04a9427bc63e2a383cbe93449f4df0eb1ddb51","ssdeep":"384:FtUCBXTpeaFEo5TTThri1t/mCsOCXiTNZruJ4vKFlcEhRCDxOcX/YM2Vybyq/kmt:n7XTpeauI/Thri1CKWM4ldRzurwkTO0D","tlshash":"cea2b6d61007243d57ead1a13929f7d63177ea98a0caec8a7de91f84d414c83f3f294a","first_seen":"2025-07-30T15:25:28.733337Z","last_seen":"2026-06-13T16:54:01.414445Z","times_seen":10598,"resource_available":true,"data":null}},"time_used":347,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":339,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"legastrade.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"legastrade.com/logo.png","fqdn":"legastrade.com","domain":"legastrade.com","tld":"com"},"ip":{"addr":"82.29.199.30","port":443,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://legastrade.com/","date":"2026-01-24T13:49:47.532Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"legastrade.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 17 Jan 2026 14:46:33 GMT","end":"Fri, 17 Apr 2026 14:46:32 GMT"},"fingerprint":{"sha1":"2D:F2:5B:5A:6C:0A:F0:17:1F:8C:7A:F0:B4:08:D4:23:72:8E:80:7C","sha256":"67:E5:52:5D:34:96:BA:A7:0D:C3:A3:15:A6:DC:B5:78:F9:F7:54:B4:54:F2:91:4F:2B:A4:3F:D7:7B:BC:CB:7E"}}},"request":{"raw":"GET /logo.png HTTP/1.1\r\nHost: legastrade.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://legastrade.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sat, 31 Jan 2026 13:49:47 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 19 Dec 2025 17:14:26 GMT\r\netag: \"c478-694587f2-f92d9649f84583f;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 50296\r\ndate: Sat, 24 Jan 2026 13:49:47 GMT\r\nserver: LiteSpeed\r\nplatform: hostinger\r\npanel: hpanel\r\nretry-after: 60\r\ncontent-security-policy: upgrade-insecure-requests\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Hostinger","description":"Hostinger is an employee-owned Web hosting provider and internet domain registrar.","website":"https://www.hostinger.com","common_platform_enumeration":"","icon":"Hostinger.svg","categories":["Hosting"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":50296,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced","md5":"2bbd5563ec4e108ac2bde0724de9764f","sha1":"558da85206522ba850ca404de3637ffc49f934d2","sha256":"e7b017dce0482e97f8e0dfff05fb59f3b1b15c2520ebc4e33c8519a9140601f1","sha512":"0d5bea7718a3fb87ca6f696f83c835df97527ba19d8742fdfa3c31649677c1c55c5c8cb4352117d8c634040e95af8578eb6d5de98cff610f09de0544602100d1","ssdeep":"1536:m9v8pl+uCJ0YktPI6B7gIBbh5eAe3ofmp:2gc3JCOuFBl5ePYup","tlshash":"933302be47456b04d3fc733c5397580715668a24bb3e301a9efcf4650ad8b8258ed9b8","first_seen":"2025-12-18T23:05:04.397902Z","last_seen":"2026-01-24T13:50:20.167398Z","times_seen":5,"resource_available":false,"data":null}},"time_used":387,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":343,"receive":44,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"legastrade.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"legastrade.com/","fqdn":"legastrade.com","domain":"legastrade.com","tld":"com"},"ip":{"addr":"82.29.199.30","port":443,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-24T13:49:46.620Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"legastrade.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 17 Jan 2026 14:46:33 GMT","end":"Fri, 17 Apr 2026 14:46:32 GMT"},"fingerprint":{"sha1":"2D:F2:5B:5A:6C:0A:F0:17:1F:8C:7A:F0:B4:08:D4:23:72:8E:80:7C","sha256":"67:E5:52:5D:34:96:BA:A7:0D:C3:A3:15:A6:DC:B5:78:F9:F7:54:B4:54:F2:91:4F:2B:A4:3F:D7:7B:BC:CB:7E"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: legastrade.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html\r\nlast-modified: Sat, 20 Dec 2025 13:50:38 GMT\r\netag: \"1862e-6946a9ae-f6cded196ee28d5e;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 11440\r\ndate: Sat, 24 Jan 2026 13:49:46 GMT\r\nserver: LiteSpeed\r\nplatform: hostinger\r\npanel: hpanel\r\nretry-after: 60\r\ncontent-security-policy: upgrade-insecure-requests\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Hostinger","description":"Hostinger is an employee-owned Web hosting provider and internet domain registrar.","website":"https://www.hostinger.com","common_platform_enumeration":"","icon":"Hostinger.svg","categories":["Hosting"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":99886,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (607)","md5":"44ef5290936eb482779c3ea0bdda7373","sha1":"da313def37ed199a948db7711b631531f8e94c3e","sha256":"83095e5c451c405d74b70f49a39a18e59d71708b068e4af5410f1a66bf015765","sha512":"36e60806a602f477257d718834af12d8dd8d92d25f0bd263bc5e8d96e06059a65fc0f5c8065a3cb2953dcb5813edbcbede9c8bc3b9bc7b92e8b05b3c1ad3c3e1","ssdeep":"1536:/Ac5UOISAf8KQ0X7/eFJhAC/rgYUwewrWNot2NrVRS3UlirPE+PeH3oDmHvLTV2q:NISAf8XrgLCLUKzqvxDoJtrLTg","tlshash":"f4a3c658530d296c041713baf9dc7398947e8d75e7b24eebf97f003715ca8a8962b2b0","first_seen":"2026-01-24T13:50:11.414524Z","last_seen":"2026-01-24T13:50:20.17029Z","times_seen":2,"resource_available":false,"data":null}},"time_used":650,"timings":{"blocked":264,"dns":57,"connect":100,"send":0,"wait":102,"receive":14,"ssl":108},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"legastrade.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}