178.20.41.168:8080/?pid=532&click_id=656594812930530001f8a67e&sub_id=18&channel=-1001682994742
301 MOVED PERMANENTLY 247 B URL User Request GET HTTP/1.1 178.20.41.168:8080/?pid=532&click_id=656594812930530001f8a67e&sub_id=18&channel=-1001682994742
IP
ASN #48282 Hosting technology LTD
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4c6aba51ce6eb20b0893ca788864fecb
c7fa5b1bc7578653f2ce85f04de6081e36980845
0038394ba895482d7eb3f7ce03fc78c9703061e3e5023a3110a7719db8d009c9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /?pid=532&click_id=656594812930530001f8a67e&sub_id=18&channel=-1001682994742 HTTP/1.1
Host: 178.20.41.168:8080
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 MOVED PERMANENTLY
Server: Werkzeug/2.2.3 Python/3.10.12
Date: Tue, 28 Nov 2023 07:19:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 247
Location: https://t.me/+bsrJ1UQOT9EwOWMy
Connection: close
200 OK 4.4 kB URL User Request GET HTTP/2 IP
ASN #62041 Telegram Messenger Inc
Certificate IssuerGoDaddy.com, Inc.
Subject*.t.me
FingerprintD7:CC:2A:92:7B:DC:AE:6A:D7:92:51:20:49:AD:3B:AC:F9:27:F8:16
ValidityFri, 06 Oct 2023 19:50:31 GMT - Wed, 06 Nov 2024 19:50:31 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3560)
Hash 030e7a7ec002c67f48d37e4fa9bc73f7
f9bba153caceb9190810e6591053f36ecbb206e0
e0aff2c0b1459dced993e2cec8aedf7ef3e5822cc577383cc6b7884ffec1aacd
GET /+bsrJ1UQOT9EwOWMy HTTP/1.1
Host: t.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 28 Nov 2023 07:19:48 GMT
content-type: text/html; charset=utf-8
content-length: 4417
set-cookie: stel_ssid=f6c0b220385ef5788d_11174989567561276196; expires=Wed, 29 Nov 2023 07:19:48 GMT; path=/; samesite=None; secure; HttpOnly
pragma: no-cache
cache-control: no-store
x-frame-options: ALLOW-FROM https://web.telegram.org
content-security-policy: frame-ancestors https://web.telegram.org
content-encoding: gzip
strict-transport-security: max-age=35768000
X-Firefox-Spdy: h2
cdn4.cdn-telegram.org/file/ImTPyhP3u92EEOLcYHtiedO91J7cVtCmqe9vW5yV2HiObekrtMbHFUjrCSaT8xmVLogsggEbk_-3-SY55iPtwlE1bjx_ETNBYlaj3IsYbgFKmH7mEyAbAq7G1o-2dBLx5Pgpjyh1R_xZ2ieNCOsiEKeJXv7qJ12nMkqDgY04laQlu8VsFEvWJ4HDU2_cmeMlc2NfQpNODqrisiwlPDqCPPFHitol5UJQnLVNpPRCYdEVHRkFfMkvdJYIh_u2SNXgS_JcxOQs6G5nMlGaVjutGf6lhp-dDNBiMMQhWbYE7rDHa-WTAJFlzcY9xZFP0-xBr4DyfvY8Ns-8MDL2DfLTGA.jpg
200 OK 8.7 kB URL GET HTTP/2 cdn4.cdn-telegram.org/file/ImTPyhP3u92EEOLcYHtiedO91J7cVtCmqe9vW5yV2HiObekrtMbHFUjrCSaT8xmVLogsggEbk_-3-SY55iPtwlE1bjx_ETNBYlaj3IsYbgFKmH7mEyAbAq7G1o-2dBLx5Pgpjyh1R_xZ2ieNCOsiEKeJXv7qJ12nMkqDgY04laQlu8VsFEvWJ4HDU2_cmeMlc2NfQpNODqrisiwlPDqCPPFHitol5UJQnLVNpPRCYdEVHRkFfMkvdJYIh_u2SNXgS_JcxOQs6G5nMlGaVjutGf6lhp-dDNBiMMQhWbYE7rDHa-WTAJFlzcY9xZFP0-xBr4DyfvY8Ns-8MDL2DfLTGA.jpg
IP
Requested by https://t.me/+bsrJ1UQOT9EwOWMy
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x320, components 3\012- data
Hash d1e0737512ef281a1ecca43feb23fbeb
a44a3eff0e30c5b109393b774e1db7e3b69b4ede
c27567cdbd2366ae5d2ee1451cdc4adbd220c853be406ea002ca4f073ce69099
GET /file/ImTPyhP3u92EEOLcYHtiedO91J7cVtCmqe9vW5yV2HiObekrtMbHFUjrCSaT8xmVLogsggEbk_-3-SY55iPtwlE1bjx_ETNBYlaj3IsYbgFKmH7mEyAbAq7G1o-2dBLx5Pgpjyh1R_xZ2ieNCOsiEKeJXv7qJ12nMkqDgY04laQlu8VsFEvWJ4HDU2_cmeMlc2NfQpNODqrisiwlPDqCPPFHitol5UJQnLVNpPRCYdEVHRkFfMkvdJYIh_u2SNXgS_JcxOQs6G5nMlGaVjutGf6lhp-dDNBiMMQhWbYE7rDHa-WTAJFlzcY9xZFP0-xBr4DyfvY8Ns-8MDL2DfLTGA.jpg HTTP/1.1
Host: cdn4.cdn-telegram.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://t.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 28 Nov 2023 07:19:49 GMT
content-type: image/jpeg
content-length: 8683
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
cache-control: public,max-age=7200
etag: "d106ac386e0b79dfec5f65ca66218386f030f693"
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
telegram.org/fonts/Roboto/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
200 OK 11 kB URL GET HTTP/2 telegram.org/fonts/Roboto/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP
ASN #62041 Telegram Messenger Inc
Requested by https://t.me/+bsrJ1UQOT9EwOWMy
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
File type Web Open Font Format (Version 2), TrueType, length 11028, version 1.0\012- data
Hash 1f6d3cf6d38f25d83d95f5a800b8cac3
279f300ca2cbbdf9f5036ef2f438607fbf377daa
796de064b8d80eba7ccacb8ba67d77fdbcdf4b385c844645d452c24537b3108f
GET /fonts/Roboto/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://t.me
DNT: 1
Connection: keep-alive
Referer: https://telegram.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 28 Nov 2023 07:19:50 GMT
content-type: application/octet-stream
content-length: 11028
last-modified: Thu, 20 Oct 2022 11:05:33 GMT
etag: "63512b7d-2b14"
expires: Sat, 02 Dec 2023 07:19:50 GMT
cache-control: max-age=345600
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
telegram.org/fonts/Roboto/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2
200 OK 11 kB URL GET HTTP/2 telegram.org/fonts/Roboto/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2
IP
ASN #62041 Telegram Messenger Inc
Requested by https://t.me/+bsrJ1UQOT9EwOWMy
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
File type Web Open Font Format (Version 2), TrueType, length 11040, version 1.0\012- data
Hash 5e22a46c04d947a36ea0cad07afcc9e1
6091d981c2a4ee975c7f6b56186ee698040bb804
0f53e8b0a717ca4ce313eec62b90d41db62c2f4946259a65c93bf8e84c5b0c44
GET /fonts/Roboto/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://t.me
DNT: 1
Connection: keep-alive
Referer: https://telegram.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 28 Nov 2023 07:19:50 GMT
content-type: application/octet-stream
content-length: 11040
last-modified: Thu, 20 Oct 2022 11:05:33 GMT
etag: "63512b7d-2b20"
expires: Sat, 02 Dec 2023 07:19:50 GMT
cache-control: max-age=345600
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
telegram.org/fonts/Roboto/KFOlCnqEu92Fr1MmWUlfABc4AMP6lbBP.woff2
200 OK 6.6 kB URL GET HTTP/2 telegram.org/fonts/Roboto/KFOlCnqEu92Fr1MmWUlfABc4AMP6lbBP.woff2
IP
ASN #62041 Telegram Messenger Inc
Requested by https://t.me/+bsrJ1UQOT9EwOWMy
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
File type Web Open Font Format (Version 2), TrueType, length 6620, version 1.0\012- data
Hash 376ffe2ca0b038d08d5e582ec13a310f
ec85284f360bada79122b5dca3088103c769ca8a
2f662599cf4323a18b4f7da381a998a8873c0277fff2d866336f7ee943a102d6
GET /fonts/Roboto/KFOlCnqEu92Fr1MmWUlfABc4AMP6lbBP.woff2 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://t.me
DNT: 1
Connection: keep-alive
Referer: https://telegram.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 28 Nov 2023 07:19:50 GMT
content-type: application/octet-stream
content-length: 6620
last-modified: Thu, 20 Oct 2022 11:05:33 GMT
etag: "63512b7d-19dc"
expires: Sat, 02 Dec 2023 07:19:50 GMT
cache-control: max-age=345600
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
telegram.org/fonts/Roboto/KFOmCnqEu92Fr1Mu5mxKKTU1Kvnz.woff2
200 OK 6.5 kB URL GET HTTP/2 telegram.org/fonts/Roboto/KFOmCnqEu92Fr1Mu5mxKKTU1Kvnz.woff2
IP
ASN #62041 Telegram Messenger Inc
Requested by https://t.me/+bsrJ1UQOT9EwOWMy
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
File type Web Open Font Format (Version 2), TrueType, length 6460, version 1.0\012- data
Hash 491a7a9678c3cfd4f86c092c68480f23
32e18ae407d782adfd54c78c6259c7be52db6bf3
41b5c3b25f4258190937deb900fa57a6db6d450ce7dd2af2259af760119a1c41
GET /fonts/Roboto/KFOmCnqEu92Fr1Mu5mxKKTU1Kvnz.woff2 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://t.me
DNT: 1
Connection: keep-alive
Referer: https://telegram.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 28 Nov 2023 07:19:50 GMT
content-type: application/octet-stream
content-length: 6460
last-modified: Thu, 20 Oct 2022 11:05:33 GMT
etag: "63512b7d-193c"
expires: Sat, 02 Dec 2023 07:19:50 GMT
cache-control: max-age=345600
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
telegram.org/img/apple-touch-icon.png
200 OK 5.6 kB URL GET HTTP/2 telegram.org/img/apple-touch-icon.png
IP
ASN #62041 Telegram Messenger Inc
Requested by https://t.me/+bsrJ1UQOT9EwOWMy
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
File type PNG image data, 180 x 180, 8-bit/color RGB, non-interlaced\012- data
Hash 295ccdb03006b8dfef45090dafbd46ac
491ab660270e47cbac6a5731c51cca71c1c1b2b1
a51d667d4262047c23e3a2a8aac3b46dc8a58c686cc013f2354011c07bf22cf3
GET /img/apple-touch-icon.png HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://t.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 28 Nov 2023 07:19:50 GMT
content-type: image/png
content-length: 5644
last-modified: Thu, 21 Apr 2022 13:47:47 GMT
etag: "62616083-160c"
expires: Sat, 02 Dec 2023 07:19:50 GMT
cache-control: max-age=345600
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
telegram.org/css/font-roboto.css?1
200 OK 6.2 kB URL GET HTTP/2 telegram.org/css/font-roboto.css?1
IP
ASN #62041 Telegram Messenger Inc
Requested by https://t.me/+bsrJ1UQOT9EwOWMy
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
File type ASCII text, with very long lines (6354), with no line terminators
Hash c06318a1f377e388b69b104b4cefa1a6
151f067aae997487880e573876f96b8d598e64db
1a53363e667fffef8a82588191989d36e680b4d341c6b557e62bf207311a3d70
GET /css/font-roboto.css?1 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://t.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 28 Nov 2023 07:19:49 GMT
content-type: text/css
last-modified: Thu, 20 Oct 2022 11:05:33 GMT
etag: W/"63512b7d-1816"
expires: Sat, 02 Dec 2023 07:19:49 GMT
cache-control: max-age=345600
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
telegram.org/img/tgme/pattern.svg?1
200 OK 232 kB URL GET HTTP/2 telegram.org/img/tgme/pattern.svg?1
IP
ASN #62041 Telegram Messenger Inc
Requested by https://t.me/+bsrJ1UQOT9EwOWMy
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size 232 kB (231706 bytes)
Hash d0c22c6a97023d85ba6e644a41c44a5d
4284efb616c182da4450c123174ce0e81a322845
118add53487c02aaf5b5ab9f69380fa06717deb10492e14aaa487e3c62806ad4
GET /img/tgme/pattern.svg?1 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegram.org/css/telegram.css?236
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 28 Nov 2023 07:19:50 GMT
content-type: image/svg+xml
last-modified: Thu, 05 Jan 2023 17:52:04 GMT
etag: W/"63b70e44-3891a"
expires: Sat, 02 Dec 2023 07:19:50 GMT
cache-control: max-age=345600
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
telegram.org/css/bootstrap.min.css?3
200 OK 42 kB URL GET HTTP/2 telegram.org/css/bootstrap.min.css?3
IP
ASN #62041 Telegram Messenger Inc
Requested by https://t.me/+bsrJ1UQOT9EwOWMy
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
File type ASCII text, with very long lines (42164)
Hash c2656e265ef58a9cc9f4b70b15da5fb9
85c5ebdb89d4574d72688c2650d4b84b9b09770a
f1d083ffaa644c708f11db29707aa57c19246e6d32643b03fee3f82c17b224b3
GET /css/bootstrap.min.css?3 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://t.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 28 Nov 2023 07:19:49 GMT
content-type: text/css
last-modified: Fri, 10 Nov 2017 17:54:14 GMT
etag: W/"5a05e7c6-a61b"
expires: Sat, 02 Dec 2023 07:19:49 GMT
cache-control: max-age=345600
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
telegram.org/img/website_icon.svg?4
200 OK 1.9 kB URL GET HTTP/2 telegram.org/img/website_icon.svg?4
IP
ASN #62041 Telegram Messenger Inc
Requested by https://t.me/+bsrJ1UQOT9EwOWMy
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
File type SVG Scalable Vector Graphics image\012- XML document, ASCII text, with very long lines (1968), with no line terminators
Hash 5caca7ae1cffb3da0b06150a15020005
04cfb934f238d33209406393a3fbf78454815739
1ea747a06fbc240c2594a8c523cb248bbda4784f0fcad9d0f06334f1a378604f
GET /img/website_icon.svg?4 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://t.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 28 Nov 2023 07:19:50 GMT
content-type: image/svg+xml
last-modified: Mon, 20 Jul 2020 20:41:37 GMT
etag: W/"5f160181-768"
expires: Sat, 02 Dec 2023 07:19:50 GMT
cache-control: max-age=345600
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
telegram.org/css/telegram.css?236
200 OK 115 kB URL GET HTTP/2 telegram.org/css/telegram.css?236
IP
ASN #62041 Telegram Messenger Inc
Requested by https://t.me/+bsrJ1UQOT9EwOWMy
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
File type ASCII text, with very long lines (1267)
Size 115 kB (114867 bytes)
Hash 0d209d756face073dd14a437f07e58b2
20cb9119fdd02921a6bd0b1500f78a0b76a7a5c0
acd326a9263ee8c4cbc757fed46333732a0e3f8f48d398cbd4f8e36a09fdaf76
GET /css/telegram.css?236 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://t.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 28 Nov 2023 07:19:49 GMT
content-type: text/css
last-modified: Mon, 20 Mar 2023 10:58:55 GMT
etag: W/"64183c6f-1c0b3"
expires: Sat, 02 Dec 2023 07:19:49 GMT
cache-control: max-age=345600
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
telegram.org/js/tgwallpaper.min.js?3
200 OK 3.0 kB URL GET HTTP/2 telegram.org/js/tgwallpaper.min.js?3
IP
ASN #62041 Telegram Messenger Inc
Requested by https://t.me/+bsrJ1UQOT9EwOWMy
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
File type ASCII text, with very long lines (2998), with no line terminators
Hash f03422dc797fd26a3834b1ec041128ed
a6e88f4fe48b749c2b7360e8e004f64b6cfffb1a
046ec6b7909d0ca5cc6ef271a1b57b2f2be0bd88e3495fd8c496f1524e8ffaac
GET /js/tgwallpaper.min.js?3 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://t.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 28 Nov 2023 07:19:49 GMT
content-type: application/javascript
last-modified: Thu, 03 Mar 2022 19:57:25 GMT
etag: W/"62211da5-ba3"
expires: Sat, 02 Dec 2023 07:19:49 GMT
cache-control: max-age=345600
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
178.20.41.168
34.111.35.152
149.154.167.99