200 OK 2.8 kB URL User Request GET HTTP/1.1 IP
ASN #24940 Hetzner Online GmbH
Certificate IssuerLet's Encrypt
Subjectxn--r1a.website
Fingerprint90:19:60:05:73:94:BE:17:50:B3:C1:4D:10:48:13:AA:FB:37:3D:BB
ValidityWed, 18 Oct 2023 08:37:07 GMT - Tue, 16 Jan 2024 08:37:06 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1493), with CRLF line terminators
Hash 5da77553b5825480f870528ac00d8940
61dda629929c7f541d8ab146a56fc58642d7c895
08c759bb6c952be661f704f1efb789d539e904d67611536cc62f4c2f6d23ec44
GET / HTTP/1.1
Host: xn--r1a.website
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 Nov 2023 13:28:57 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=9easgs03ub690cmg8dn9hlhtaf; path=/
lang=en
Strict-Transport-Security: max-age=0
Content-Encoding: gzip
xn--r1a.website/s/telegram
200 OK 21 kB URL GET HTTP/1.1 xn--r1a.website/s/telegram
IP
ASN #24940 Hetzner Online GmbH
Certificate IssuerLet's Encrypt
Subjectxn--r1a.website
Fingerprint90:19:60:05:73:94:BE:17:50:B3:C1:4D:10:48:13:AA:FB:37:3D:BB
ValidityWed, 18 Oct 2023 08:37:07 GMT - Tue, 16 Jan 2024 08:37:06 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1267)
Hash 224ea075feb774a2a0b8daa8a02c5a1a
3a19d0d8dcb71606757cfd0abeaac0a5da61308f
e82e69305ccbec65387229b7fc2e6f291b5b8f365eac238c40da38b635fa6ae9
GET /s/telegram HTTP/1.1
Host: xn--r1a.website
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Cookie: PHPSESSID=9easgs03ub690cmg8dn9hlhtaf; lang=en
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 Nov 2023 13:28:58 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Cache-control: no-store
Strict-Transport-Security: max-age=35768000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
xn--r1a.website/style.css
200 OK 735 B URL GET HTTP/1.1 xn--r1a.website/style.css
IP
ASN #24940 Hetzner Online GmbH
Certificate IssuerLet's Encrypt
Subjectxn--r1a.website
Fingerprint90:19:60:05:73:94:BE:17:50:B3:C1:4D:10:48:13:AA:FB:37:3D:BB
ValidityWed, 18 Oct 2023 08:37:07 GMT - Tue, 16 Jan 2024 08:37:06 GMT
File type ASCII text, with very long lines (1308), with CRLF line terminators
Hash c75486476bd17bd707cbb81540acb77f
1976b27a60ae2fb8f70211c24ed9062118342339
0940842235fcfbe39956755bd39bc43a041312f607a0c586f64df0a4b9e05e84
GET /style.css HTTP/1.1
Host: xn--r1a.website
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Cookie: PHPSESSID=9easgs03ub690cmg8dn9hlhtaf; lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 Nov 2023 13:28:58 GMT
Content-Type: text/css
Last-Modified: Thu, 25 Jun 2020 15:35:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5ef4c445-741"
Strict-Transport-Security: max-age=0
Content-Encoding: gzip
cdn1.cdn-telegram.org/file/KVv503Sd_cLQJxCkAikYw-ycoMfgdGn5SaCxRdW9BgNHUsAtZY_b23LYdM5221AuMdm13_3RwjhlhOmEtkSGyaRESj_52mLR0URxyvD5aBx3lV9ABNi5JfFYAsw90lA6axxge-IjATojiSE-3Di8jWz_EEMbWLEnXXQj4OrWdDdLGkvW4-ouGaAZFysudxRPQQBODg9dLmOUEsXi8W-sBQmn7r1TKWxDC_R71MC0Ps8J6ETkXMNq7RU-nn4NvlawADkqjffvdRikQwP0fEIYu4RIlUw6Gg2cb45EzVKx_mGtKXBzX2QGDUqseMnhYoJ0CcXBN_tOebaF20rUG61Q5g.jpg
200 OK 2.9 kB URL GET HTTP/2 cdn1.cdn-telegram.org/file/KVv503Sd_cLQJxCkAikYw-ycoMfgdGn5SaCxRdW9BgNHUsAtZY_b23LYdM5221AuMdm13_3RwjhlhOmEtkSGyaRESj_52mLR0URxyvD5aBx3lV9ABNi5JfFYAsw90lA6axxge-IjATojiSE-3Di8jWz_EEMbWLEnXXQj4OrWdDdLGkvW4-ouGaAZFysudxRPQQBODg9dLmOUEsXi8W-sBQmn7r1TKWxDC_R71MC0Ps8J6ETkXMNq7RU-nn4NvlawADkqjffvdRikQwP0fEIYu4RIlUw6Gg2cb45EzVKx_mGtKXBzX2QGDUqseMnhYoJ0CcXBN_tOebaF20rUG61Q5g.jpg
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 160x160, components 3\012- data
Hash 866279d2fa9c46896946c9555c34d9f1
14a3d552bafd2746d418eb8e00a267e17a3eadfc
baecc3508c6838397382402292fbe1331e2c405a6f5f71b17d03b1466aa7ce37
GET /file/KVv503Sd_cLQJxCkAikYw-ycoMfgdGn5SaCxRdW9BgNHUsAtZY_b23LYdM5221AuMdm13_3RwjhlhOmEtkSGyaRESj_52mLR0URxyvD5aBx3lV9ABNi5JfFYAsw90lA6axxge-IjATojiSE-3Di8jWz_EEMbWLEnXXQj4OrWdDdLGkvW4-ouGaAZFysudxRPQQBODg9dLmOUEsXi8W-sBQmn7r1TKWxDC_R71MC0Ps8J6ETkXMNq7RU-nn4NvlawADkqjffvdRikQwP0fEIYu4RIlUw6Gg2cb45EzVKx_mGtKXBzX2QGDUqseMnhYoJ0CcXBN_tOebaF20rUG61Q5g.jpg HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
content-length: 2909
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
date: Sun, 05 Nov 2023 13:05:14 GMT
cache-control: public,max-age=7200
etag: "c445c74ea7a32424fcf3e31a0a2606241d94e914"
content-type: image/jpeg
age: 1424
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
xn--r1a.website/favicon.ico
200 OK 3.6 kB URL GET HTTP/1.1 xn--r1a.website/favicon.ico
IP
ASN #24940 Hetzner Online GmbH
Certificate IssuerLet's Encrypt
Subjectxn--r1a.website
Fingerprint90:19:60:05:73:94:BE:17:50:B3:C1:4D:10:48:13:AA:FB:37:3D:BB
ValidityWed, 18 Oct 2023 08:37:07 GMT - Tue, 16 Jan 2024 08:37:06 GMT
File type MS Windows icon resource - 2 icons, 16x16, 32x32\012- data
Hash f1a3246371aa2d4ffd4f376ae9080b5d
a5b2c928a64ea5240ec2ea18c5ba0b2ffad09910
c61825c6b8465600ac65c2654346e844f871f7a7ceb2ea118a371b06b1db9678
GET /favicon.ico HTTP/1.1
Host: xn--r1a.website
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Cookie: PHPSESSID=9easgs03ub690cmg8dn9hlhtaf; lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 Nov 2023 13:28:58 GMT
Content-Type: image/x-icon
Content-Length: 3638
Last-Modified: Thu, 25 Jun 2020 15:35:58 GMT
Connection: keep-alive
ETag: "5ef4c45e-e36"
Strict-Transport-Security: max-age=0
Accept-Ranges: bytes
telegram.org/fonts/Roboto/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
200 OK 11 kB URL GET HTTP/2 telegram.org/fonts/Roboto/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP
ASN #62041 Telegram Messenger Inc
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
File type Web Open Font Format (Version 2), TrueType, length 11028, version 1.0\012- data
Hash 1f6d3cf6d38f25d83d95f5a800b8cac3
279f300ca2cbbdf9f5036ef2f438607fbf377daa
796de064b8d80eba7ccacb8ba67d77fdbcdf4b385c844645d452c24537b3108f
GET /fonts/Roboto/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xn--r1a.website
DNT: 1
Connection: keep-alive
Referer: https://telegram.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:58 GMT
content-type: application/octet-stream
content-length: 11028
last-modified: Thu, 20 Oct 2022 11:05:33 GMT
etag: "63512b7d-2b14"
expires: Thu, 09 Nov 2023 13:28:58 GMT
cache-control: max-age=345600
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
telegram.org/fonts/Roboto/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
200 OK 11 kB URL GET HTTP/2 telegram.org/fonts/Roboto/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
IP
ASN #62041 Telegram Messenger Inc
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
File type Web Open Font Format (Version 2), TrueType, length 11072, version 1.0\012- data
Hash e7df3d0942815909add8f9d0c40d00d9
cf5032eea3399a58870e8a05e629b006a8c7c3c7
bce2f309470952b7affa62ff4d91b454334c68cefa541429b502904d20696875
GET /fonts/Roboto/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xn--r1a.website
DNT: 1
Connection: keep-alive
Referer: https://telegram.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:58 GMT
content-type: application/octet-stream
content-length: 11072
last-modified: Thu, 20 Oct 2022 11:05:33 GMT
etag: "63512b7d-2b40"
expires: Thu, 09 Nov 2023 13:28:58 GMT
cache-control: max-age=345600
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn4.cdn-telegram.org/file/GQPCQuUF3wCSlJa-Vx0TJZoY6G5VDPdpr7vJ5PG1Em9ZBh8W5Va_S-jz9L8v4mPRwbcOyMNE9QdjVzlfaUoyR66dYh2sny1Bi8AaE5zpUBSCwBHCgXJzs_MQlEUbmzc9US5q6zRVrJOw-MZW6mje3oBg-iXQWqHel0qHpqjyj6orhDjEKWzv6Qc1z1RKq_wAWbmLYnwFyWLo_oTxDIIJzsmm5e_k_vKEmqcRBWkjk5xqaLKZlrHIG-faYtFvKOPtULBXpAvfFWfgMuAA2_3nQACfvixvvjqyYtLwllokP5vh-GRBoOHwf3hUfOM8MBN96QFX0_LYmAjk9d9auFaVfw.jpg
200 OK 55 kB URL GET HTTP/2 cdn4.cdn-telegram.org/file/GQPCQuUF3wCSlJa-Vx0TJZoY6G5VDPdpr7vJ5PG1Em9ZBh8W5Va_S-jz9L8v4mPRwbcOyMNE9QdjVzlfaUoyR66dYh2sny1Bi8AaE5zpUBSCwBHCgXJzs_MQlEUbmzc9US5q6zRVrJOw-MZW6mje3oBg-iXQWqHel0qHpqjyj6orhDjEKWzv6Qc1z1RKq_wAWbmLYnwFyWLo_oTxDIIJzsmm5e_k_vKEmqcRBWkjk5xqaLKZlrHIG-faYtFvKOPtULBXpAvfFWfgMuAA2_3nQACfvixvvjqyYtLwllokP5vh-GRBoOHwf3hUfOM8MBN96QFX0_LYmAjk9d9auFaVfw.jpg
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 600x380, components 3\012- data
Hash e14eeb03d666fc6a7ee03d4170d69674
696ebe5af2ed2f1fecc2437889db7f4408fe99bb
341eb63b03165209aab5586f9cac2ba1e3dcb2f58ecc85c0fbba286050a03324
GET /file/GQPCQuUF3wCSlJa-Vx0TJZoY6G5VDPdpr7vJ5PG1Em9ZBh8W5Va_S-jz9L8v4mPRwbcOyMNE9QdjVzlfaUoyR66dYh2sny1Bi8AaE5zpUBSCwBHCgXJzs_MQlEUbmzc9US5q6zRVrJOw-MZW6mje3oBg-iXQWqHel0qHpqjyj6orhDjEKWzv6Qc1z1RKq_wAWbmLYnwFyWLo_oTxDIIJzsmm5e_k_vKEmqcRBWkjk5xqaLKZlrHIG-faYtFvKOPtULBXpAvfFWfgMuAA2_3nQACfvixvvjqyYtLwllokP5vh-GRBoOHwf3hUfOM8MBN96QFX0_LYmAjk9d9auFaVfw.jpg HTTP/1.1
Host: cdn4.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
content-length: 54613
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
date: Sun, 05 Nov 2023 13:08:35 GMT
cache-control: public,max-age=7200
etag: "4a98573148aaf935f6dfedd6850e4b2dedf71274"
content-type: image/jpeg
age: 1223
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn4.cdn-telegram.org/file/Tl1l1v4U7HROK_9YSsnjCrJUEkvjeXvW-f9UiSAzjgTmPii2mgL5v4mpe6zyKkIusDvlcyq7HF0h5nCgfKEkl0nhfj3dwLnR40mjA2f7TpYh4bwGStxOUQ_MmkaTqvkpePmhaz3q4z6zDILwfmbsDsLHHms7PlCrBcGRDr7_xFHcanAVHFQXiAXtHHgMT8wNhIY_hJP7WzNzyogJXU0AAdOeEShYZ3TDYDacMLgRemEdFBE1GWRGf_d7SN51YG2K96DI0VNFTNaT2N4a1M5n3WKcAj6Wlt9b6FXQNvsX95u3-keYX137Kx-wonj2UQMXKNrUb2M64GFFIi3OFIDUKA.jpg
200 OK 127 kB URL GET HTTP/2 cdn4.cdn-telegram.org/file/Tl1l1v4U7HROK_9YSsnjCrJUEkvjeXvW-f9UiSAzjgTmPii2mgL5v4mpe6zyKkIusDvlcyq7HF0h5nCgfKEkl0nhfj3dwLnR40mjA2f7TpYh4bwGStxOUQ_MmkaTqvkpePmhaz3q4z6zDILwfmbsDsLHHms7PlCrBcGRDr7_xFHcanAVHFQXiAXtHHgMT8wNhIY_hJP7WzNzyogJXU0AAdOeEShYZ3TDYDacMLgRemEdFBE1GWRGf_d7SN51YG2K96DI0VNFTNaT2N4a1M5n3WKcAj6Wlt9b6FXQNvsX95u3-keYX137Kx-wonj2UQMXKNrUb2M64GFFIi3OFIDUKA.jpg
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x507, components 3\012- data
Size 127 kB (126711 bytes)
Hash 5b1f40b8711a468628d3c4e6d8105d5e
3c0dad9187713546a1cf884f9c0b71fe898e1177
9de06b00a40a8183206ba5d828b0739e98404b01f1922ff69060d94d32ff7d52
GET /file/Tl1l1v4U7HROK_9YSsnjCrJUEkvjeXvW-f9UiSAzjgTmPii2mgL5v4mpe6zyKkIusDvlcyq7HF0h5nCgfKEkl0nhfj3dwLnR40mjA2f7TpYh4bwGStxOUQ_MmkaTqvkpePmhaz3q4z6zDILwfmbsDsLHHms7PlCrBcGRDr7_xFHcanAVHFQXiAXtHHgMT8wNhIY_hJP7WzNzyogJXU0AAdOeEShYZ3TDYDacMLgRemEdFBE1GWRGf_d7SN51YG2K96DI0VNFTNaT2N4a1M5n3WKcAj6Wlt9b6FXQNvsX95u3-keYX137Kx-wonj2UQMXKNrUb2M64GFFIi3OFIDUKA.jpg HTTP/1.1
Host: cdn4.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
content-length: 126711
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
date: Sun, 05 Nov 2023 13:08:35 GMT
cache-control: public,max-age=7200
etag: "eed0c6b47aad5d8db90ae3923ee17d8feb94bd21"
content-type: image/jpeg
age: 1223
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn4.cdn-telegram.org/file/MmHG3aXoM4AsjK_SFoUn-RieLtabFElq6Ntiv5wkSV9TKlRXcDFmV_I1SBSzITQN0XkLKoyhglF7KnBX-xWx5XvTXzoZpFjgGeEG2Px9XbnK0Dhp7qH38RW4aLCInKDJJ6qL39p7db2lDkrxmNr0Srv-ZFmzgu4_rT_ZJDNAR34dhEh6o7wTZWBZTEPrO8TVXhfkRyq5B36Qt0TLzQlghzZCfTpeUHpeg6tYB3bXbIUUkcSgk13RqAYsWU2km7Nr0CXXcuduXYnJ5Q1fcHfIjRIytS00zQjgA3weFlQT5tszivoO66Pvq21dcRiw1oIRFvKrjlQHHvl1vnPvRfIj_w.jpg
200 OK 108 kB URL GET HTTP/2 cdn4.cdn-telegram.org/file/MmHG3aXoM4AsjK_SFoUn-RieLtabFElq6Ntiv5wkSV9TKlRXcDFmV_I1SBSzITQN0XkLKoyhglF7KnBX-xWx5XvTXzoZpFjgGeEG2Px9XbnK0Dhp7qH38RW4aLCInKDJJ6qL39p7db2lDkrxmNr0Srv-ZFmzgu4_rT_ZJDNAR34dhEh6o7wTZWBZTEPrO8TVXhfkRyq5B36Qt0TLzQlghzZCfTpeUHpeg6tYB3bXbIUUkcSgk13RqAYsWU2km7Nr0CXXcuduXYnJ5Q1fcHfIjRIytS00zQjgA3weFlQT5tszivoO66Pvq21dcRiw1oIRFvKrjlQHHvl1vnPvRfIj_w.jpg
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x507, components 3\012- data
Size 108 kB (108038 bytes)
Hash 38e28b05bfbc255a49e9b912d3f92076
d5f26cd187955c6b7e8c7776ec434d4ad411c3c1
8d1f35dd2c27730edd21fd8acceb1a886e4647d4cc5c9db6052d69e6d22dfce5
GET /file/MmHG3aXoM4AsjK_SFoUn-RieLtabFElq6Ntiv5wkSV9TKlRXcDFmV_I1SBSzITQN0XkLKoyhglF7KnBX-xWx5XvTXzoZpFjgGeEG2Px9XbnK0Dhp7qH38RW4aLCInKDJJ6qL39p7db2lDkrxmNr0Srv-ZFmzgu4_rT_ZJDNAR34dhEh6o7wTZWBZTEPrO8TVXhfkRyq5B36Qt0TLzQlghzZCfTpeUHpeg6tYB3bXbIUUkcSgk13RqAYsWU2km7Nr0CXXcuduXYnJ5Q1fcHfIjRIytS00zQjgA3weFlQT5tszivoO66Pvq21dcRiw1oIRFvKrjlQHHvl1vnPvRfIj_w.jpg HTTP/1.1
Host: cdn4.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
content-length: 108038
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
date: Sun, 05 Nov 2023 13:08:35 GMT
cache-control: public,max-age=7200
etag: "6f1d5aca5f95471a203f55a124bcd3d762765291"
content-type: image/jpeg
age: 1223
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn4.cdn-telegram.org/file/EQzdFbW0_9IZLPI6ROeKlUTiTXCmUKUo9HRzY1xQ2xKp0_v1L0pZuJ9GU1rbOvwSa3xI0mCzjZBsxbvbqWszE7aZSFsngZzabgi1Vf6ae_P1beZV_mQsFlGS4b1vF_z_7BRa5crQm1EuyQyhrsHJUG9gffgh1C3vLSPQRaS5LAaHvNpK568pOf-CzIioErEjfET_Dpdj1HSZz3kmqnCIW1z-P_K--0saP8vZUlCwGtDR6soZrnqaybFmU0lMyeY1nyrd3vXUBWrA12uD8w9WTyMs2BWXg_4QxBjXmcIVWUXAYlXlUZeGyZQ2ymz2tQ6ul6nrNDd1eil7yDTy0xkfcw.jpg
200 OK 130 kB URL GET HTTP/2 cdn4.cdn-telegram.org/file/EQzdFbW0_9IZLPI6ROeKlUTiTXCmUKUo9HRzY1xQ2xKp0_v1L0pZuJ9GU1rbOvwSa3xI0mCzjZBsxbvbqWszE7aZSFsngZzabgi1Vf6ae_P1beZV_mQsFlGS4b1vF_z_7BRa5crQm1EuyQyhrsHJUG9gffgh1C3vLSPQRaS5LAaHvNpK568pOf-CzIioErEjfET_Dpdj1HSZz3kmqnCIW1z-P_K--0saP8vZUlCwGtDR6soZrnqaybFmU0lMyeY1nyrd3vXUBWrA12uD8w9WTyMs2BWXg_4QxBjXmcIVWUXAYlXlUZeGyZQ2ymz2tQ6ul6nrNDd1eil7yDTy0xkfcw.jpg
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x515, components 3\012- data
Size 130 kB (130422 bytes)
Hash 33864a0d3f413f97f7d6b406b730bc64
41b4553f7038b4f4daf9134db4b9db757e59f51f
72f875fd72333b45c137bfe5aed57c50900f88c96503e635c5ee7124794c6cb0
GET /file/EQzdFbW0_9IZLPI6ROeKlUTiTXCmUKUo9HRzY1xQ2xKp0_v1L0pZuJ9GU1rbOvwSa3xI0mCzjZBsxbvbqWszE7aZSFsngZzabgi1Vf6ae_P1beZV_mQsFlGS4b1vF_z_7BRa5crQm1EuyQyhrsHJUG9gffgh1C3vLSPQRaS5LAaHvNpK568pOf-CzIioErEjfET_Dpdj1HSZz3kmqnCIW1z-P_K--0saP8vZUlCwGtDR6soZrnqaybFmU0lMyeY1nyrd3vXUBWrA12uD8w9WTyMs2BWXg_4QxBjXmcIVWUXAYlXlUZeGyZQ2ymz2tQ6ul6nrNDd1eil7yDTy0xkfcw.jpg HTTP/1.1
Host: cdn4.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
content-length: 130422
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
date: Sun, 05 Nov 2023 13:08:35 GMT
cache-control: public,max-age=7200
etag: "88903fa9e41eb74b196219ce47e505b85ac72b55"
content-type: image/jpeg
age: 1223
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn4.cdn-telegram.org/file/taUHnQjSL16YpZBQHX3jG06ziHEz6yrZy8fRQ4Pwkwm5iDk1v3u5NNsadZ4ahcgpemQ3JQX1FT2ofytLe4G6qmntiwqddO3sI-vjOi9upl4I4DcvT0i3ZTgF4fFLorFgb0KFN77oxwjlFg68MQJ5Hd3UzzjXmbLn1osjeCNmI4hKpEfmVPh_q09fe0P4_zfwxTkTcUc5JWEpnYigvuDBqV7fB5kbvWcovCtjTsyJfGKbqvf4H09UVgrE_JHd9vvXKP5uDjX5e991GBI2ti4GNiATQ6yof6fcq_8A9ksZSJneWnBSx1OftFLDB3IuuHuLqufKOt-F38PJR4VB6vyiCw.jpg
200 OK 134 kB URL GET HTTP/2 cdn4.cdn-telegram.org/file/taUHnQjSL16YpZBQHX3jG06ziHEz6yrZy8fRQ4Pwkwm5iDk1v3u5NNsadZ4ahcgpemQ3JQX1FT2ofytLe4G6qmntiwqddO3sI-vjOi9upl4I4DcvT0i3ZTgF4fFLorFgb0KFN77oxwjlFg68MQJ5Hd3UzzjXmbLn1osjeCNmI4hKpEfmVPh_q09fe0P4_zfwxTkTcUc5JWEpnYigvuDBqV7fB5kbvWcovCtjTsyJfGKbqvf4H09UVgrE_JHd9vvXKP5uDjX5e991GBI2ti4GNiATQ6yof6fcq_8A9ksZSJneWnBSx1OftFLDB3IuuHuLqufKOt-F38PJR4VB6vyiCw.jpg
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x507, components 3\012- data
Size 134 kB (133840 bytes)
Hash 5d3efec3b19f7d7fe91b07de105c1be4
cdd7f297a994ca229c6658667d2783424a483261
e2277783313418e017ae082d60803d89320c974ae0e5eb013ec7483b085ac47e
GET /file/taUHnQjSL16YpZBQHX3jG06ziHEz6yrZy8fRQ4Pwkwm5iDk1v3u5NNsadZ4ahcgpemQ3JQX1FT2ofytLe4G6qmntiwqddO3sI-vjOi9upl4I4DcvT0i3ZTgF4fFLorFgb0KFN77oxwjlFg68MQJ5Hd3UzzjXmbLn1osjeCNmI4hKpEfmVPh_q09fe0P4_zfwxTkTcUc5JWEpnYigvuDBqV7fB5kbvWcovCtjTsyJfGKbqvf4H09UVgrE_JHd9vvXKP5uDjX5e991GBI2ti4GNiATQ6yof6fcq_8A9ksZSJneWnBSx1OftFLDB3IuuHuLqufKOt-F38PJR4VB6vyiCw.jpg HTTP/1.1
Host: cdn4.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
content-length: 133840
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
date: Sun, 05 Nov 2023 13:08:35 GMT
cache-control: public,max-age=7200
etag: "54d347362c9b0901a9b2dac6e4f0e48751e33e00"
content-type: image/jpeg
age: 1223
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
xn--r1a.website/i/emoji/5204330443725347173.json
200 OK 2.8 kB URL GET HTTP/1.1 xn--r1a.website/i/emoji/5204330443725347173.json
IP
ASN #24940 Hetzner Online GmbH
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerLet's Encrypt
Subjectxn--r1a.website
Fingerprint90:19:60:05:73:94:BE:17:50:B3:C1:4D:10:48:13:AA:FB:37:3D:BB
ValidityWed, 18 Oct 2023 08:37:07 GMT - Tue, 16 Jan 2024 08:37:06 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1493), with CRLF line terminators
Hash 5da77553b5825480f870528ac00d8940
61dda629929c7f541d8ab146a56fc58642d7c895
08c759bb6c952be661f704f1efb789d539e904d67611536cc62f4c2f6d23ec44
GET /i/emoji/5204330443725347173.json HTTP/1.1
Host: xn--r1a.website
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/s/telegram
Cookie: PHPSESSID=9easgs03ub690cmg8dn9hlhtaf; lang=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 Nov 2023 13:28:59 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: lang=en
Strict-Transport-Security: max-age=0
Content-Encoding: gzip
cdn1.cdn-telegram.org/file/GdOE_ptXOJcr8Y4Qpz0cFP7NZmXPlkNPQYe9oAPdp1N4GXbRgdb0jqM1-wjQmVt1AoZyMIIdd1d84-ZlJpWQlhgWbx2fIHYjEqZR1YVvQ4tRuev1-lMv9oZCXyKPf2JC5Y0mnjyG41U0FyYBoBcx2cEmxHcpzW4cjoAOsYQYfu9kjkVSNX9Pv-gMp93Zd9TFdT5Cwha8Rf0rFyQNmldocmvlDHJN-Eg5q2gR6aQCHKwHuJPsQ-nab6Rpi1lRcbSiOywBSxoxtT7iFOeFXgr4f5w6mLp6-KFpPspTJBawaQbfpMus2m6a0QYtLohCXFamNKiNEsvPnaI35iZ-EMjh_w
200 OK 16 kB URL GET HTTP/2 cdn1.cdn-telegram.org/file/GdOE_ptXOJcr8Y4Qpz0cFP7NZmXPlkNPQYe9oAPdp1N4GXbRgdb0jqM1-wjQmVt1AoZyMIIdd1d84-ZlJpWQlhgWbx2fIHYjEqZR1YVvQ4tRuev1-lMv9oZCXyKPf2JC5Y0mnjyG41U0FyYBoBcx2cEmxHcpzW4cjoAOsYQYfu9kjkVSNX9Pv-gMp93Zd9TFdT5Cwha8Rf0rFyQNmldocmvlDHJN-Eg5q2gR6aQCHKwHuJPsQ-nab6Rpi1lRcbSiOywBSxoxtT7iFOeFXgr4f5w6mLp6-KFpPspTJBawaQbfpMus2m6a0QYtLohCXFamNKiNEsvPnaI35iZ-EMjh_w
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x320, components 3\012- data
Hash c5e878f70ce5fda45ae39a926fd988a1
35435cb33d2cdda66a0c96d4ec02474e8c7bcc57
8a1d1a7128590ac7de30d43bdadb4b923dd6665107a20a35e0c52f9ab2a0cc85
GET /file/GdOE_ptXOJcr8Y4Qpz0cFP7NZmXPlkNPQYe9oAPdp1N4GXbRgdb0jqM1-wjQmVt1AoZyMIIdd1d84-ZlJpWQlhgWbx2fIHYjEqZR1YVvQ4tRuev1-lMv9oZCXyKPf2JC5Y0mnjyG41U0FyYBoBcx2cEmxHcpzW4cjoAOsYQYfu9kjkVSNX9Pv-gMp93Zd9TFdT5Cwha8Rf0rFyQNmldocmvlDHJN-Eg5q2gR6aQCHKwHuJPsQ-nab6Rpi1lRcbSiOywBSxoxtT7iFOeFXgr4f5w6mLp6-KFpPspTJBawaQbfpMus2m6a0QYtLohCXFamNKiNEsvPnaI35iZ-EMjh_w HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:58 GMT
content-type: image/jpeg
content-length: 16248
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
cache-control: public,max-age=7200
etag: "2ebde2a3db27abc530439c2fa9f85d46275a704e"
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn1.cdn-telegram.org/file/SOR-F7Q3qjHeONXKKdTtSB8HSOt6iNV6FeddWVPRzQvFEooxH7vV7xTOmlmn-dLoTBM3OfuR6zqziuNbfQiblJMwH5oKK9yjTx15lYLWK8Pk-FkSutoBPgCSG_54uKnHDDrVxtgpQt8jrjEpIshsNX7Hw5Lvf5AaGxL1EVcKcBC32t6J_VPAgJsEJzKnVpc-tBio7rD394_JgHndwjmnmP5WL_U7AdsfHCcSrWHkUmDtf0kHfr7YjywKXEmjMfG6Z_EtuiSbiUyKOJ_PSZAkwVlMSjArGNJXtYJ2z_k563JS82KxC_mKsCuOSUp82LSa2TITJRa_oTdpypmxiYzj8A
200 OK 19 kB URL GET HTTP/2 cdn1.cdn-telegram.org/file/SOR-F7Q3qjHeONXKKdTtSB8HSOt6iNV6FeddWVPRzQvFEooxH7vV7xTOmlmn-dLoTBM3OfuR6zqziuNbfQiblJMwH5oKK9yjTx15lYLWK8Pk-FkSutoBPgCSG_54uKnHDDrVxtgpQt8jrjEpIshsNX7Hw5Lvf5AaGxL1EVcKcBC32t6J_VPAgJsEJzKnVpc-tBio7rD394_JgHndwjmnmP5WL_U7AdsfHCcSrWHkUmDtf0kHfr7YjywKXEmjMfG6Z_EtuiSbiUyKOJ_PSZAkwVlMSjArGNJXtYJ2z_k563JS82KxC_mKsCuOSUp82LSa2TITJRa_oTdpypmxiYzj8A
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x320, components 3\012- data
Hash 6b90716e76182f57204b8df169dcc5aa
ed571ee2369c42cdf77971ff815ccac80080d206
652a542b1b1e245be0632ea540efef7e874eadbb392b290bbc5c0e0fbe4608bb
GET /file/SOR-F7Q3qjHeONXKKdTtSB8HSOt6iNV6FeddWVPRzQvFEooxH7vV7xTOmlmn-dLoTBM3OfuR6zqziuNbfQiblJMwH5oKK9yjTx15lYLWK8Pk-FkSutoBPgCSG_54uKnHDDrVxtgpQt8jrjEpIshsNX7Hw5Lvf5AaGxL1EVcKcBC32t6J_VPAgJsEJzKnVpc-tBio7rD394_JgHndwjmnmP5WL_U7AdsfHCcSrWHkUmDtf0kHfr7YjywKXEmjMfG6Z_EtuiSbiUyKOJ_PSZAkwVlMSjArGNJXtYJ2z_k563JS82KxC_mKsCuOSUp82LSa2TITJRa_oTdpypmxiYzj8A HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:58 GMT
content-type: image/jpeg
content-length: 19164
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
cache-control: public,max-age=7200
etag: "cbb258446739d9fa16bc05a5e2f90c7365628d2e"
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn1.cdn-telegram.org/file/r-smaU2CzJnujgsaTZSZlrRjPl0OvP4_D80MXeMqxL-q68gHk-iZXoy3oP-Ads1b5Ho5pV5IWQvH92DBofSraU-iwLU7d9bT2pDdW21cm7IPXru4QFafmD4qB705Z-oqHR01ZkEJLzan9GRBNN7sr99TsEgtMB9tyvv6MmwZisUh6-Hk-C7NHAOWY-YvITdkerttxfADqxekhLijfRh_hnP8iP8qASboW1zUCvOb5mynRsqbVr7zQPPf42MkXvd15rogH85cm5ofznvcB-F4w7Eb4262g4sLIa0Phd-cn6LblxufhACF_7q1ciwtZjtDyoJn4tIWmAaMCk21veHSIw
200 OK 19 kB URL GET HTTP/2 cdn1.cdn-telegram.org/file/r-smaU2CzJnujgsaTZSZlrRjPl0OvP4_D80MXeMqxL-q68gHk-iZXoy3oP-Ads1b5Ho5pV5IWQvH92DBofSraU-iwLU7d9bT2pDdW21cm7IPXru4QFafmD4qB705Z-oqHR01ZkEJLzan9GRBNN7sr99TsEgtMB9tyvv6MmwZisUh6-Hk-C7NHAOWY-YvITdkerttxfADqxekhLijfRh_hnP8iP8qASboW1zUCvOb5mynRsqbVr7zQPPf42MkXvd15rogH85cm5ofznvcB-F4w7Eb4262g4sLIa0Phd-cn6LblxufhACF_7q1ciwtZjtDyoJn4tIWmAaMCk21veHSIw
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x320, components 3\012- data
Hash 836d11ee767b06e027d8acefc3f9c4d8
382bf370a96068074445273d3d13ee4c41a70496
1da86addaaa65ec0baac6d4801c7139a668dbbef9cfe5b163537c2d7034b173d
GET /file/r-smaU2CzJnujgsaTZSZlrRjPl0OvP4_D80MXeMqxL-q68gHk-iZXoy3oP-Ads1b5Ho5pV5IWQvH92DBofSraU-iwLU7d9bT2pDdW21cm7IPXru4QFafmD4qB705Z-oqHR01ZkEJLzan9GRBNN7sr99TsEgtMB9tyvv6MmwZisUh6-Hk-C7NHAOWY-YvITdkerttxfADqxekhLijfRh_hnP8iP8qASboW1zUCvOb5mynRsqbVr7zQPPf42MkXvd15rogH85cm5ofznvcB-F4w7Eb4262g4sLIa0Phd-cn6LblxufhACF_7q1ciwtZjtDyoJn4tIWmAaMCk21veHSIw HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: image/jpeg
content-length: 18596
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
cache-control: public,max-age=7200
etag: "f9de32950ebc7a3d6d657981614e0ee0e2c47ed8"
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
xn--r1a.website/v/
200 OK 24 B IP
ASN #24940 Hetzner Online GmbH
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerLet's Encrypt
Subjectxn--r1a.website
Fingerprint90:19:60:05:73:94:BE:17:50:B3:C1:4D:10:48:13:AA:FB:37:3D:BB
ValidityWed, 18 Oct 2023 08:37:07 GMT - Tue, 16 Jan 2024 08:37:06 GMT
File type ASCII text, with no line terminators
Hash b326b5062b2f0e69046810717534cb09
5ffe533b830f08a0326348a9160afafc8ada44db
b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b
POST /v/ HTTP/1.1
Host: xn--r1a.website
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 93
Origin: https://xn--r1a.website
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/s/telegram
Cookie: PHPSESSID=9easgs03ub690cmg8dn9hlhtaf; lang=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 Nov 2023 13:28:59 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: stel_ssid=120827bf12995ca924_10191966667776027573; expires=Mon, 06 Nov 2023 13:28:59 GMT; path=/; samesite=None; secure; HttpOnly
Pragma: no-cache
Cache-control: no-store
Strict-Transport-Security: max-age=35768000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
cdn1.cdn-telegram.org/file/lfj5ma8A9Mhg0hhQMG3RdN-SUeoLl-4nXTi00w63SvFyqLwCMgOH5m-SZnL8tRQmGl06r_iUIW7ONSWeSw0eRfUOdjEvgSZ6Yub-ydBv8KuTM9Yfo1XLTZvnUNx-cLKjMpfyPtYjSwbCdKjsOBVFSvnwRJCD1R4nB6rAtTH4awKmBO54X82y48oxOboaeFnxkwEDTc47g4IvtDSbPmfUh8478hHYwIlxFi3Q3ru_h4B5wJh5RZoiEy8CFSMsN5ZunRbH-rrAUZmCz_KzU8166EHxi1dCHkevotbOPrwZtcWszjkpF6mIY7KhLxkD8hc7HqrmpBVPJUSfd2OjNaZ9GA
200 OK 18 kB URL GET HTTP/2 cdn1.cdn-telegram.org/file/lfj5ma8A9Mhg0hhQMG3RdN-SUeoLl-4nXTi00w63SvFyqLwCMgOH5m-SZnL8tRQmGl06r_iUIW7ONSWeSw0eRfUOdjEvgSZ6Yub-ydBv8KuTM9Yfo1XLTZvnUNx-cLKjMpfyPtYjSwbCdKjsOBVFSvnwRJCD1R4nB6rAtTH4awKmBO54X82y48oxOboaeFnxkwEDTc47g4IvtDSbPmfUh8478hHYwIlxFi3Q3ru_h4B5wJh5RZoiEy8CFSMsN5ZunRbH-rrAUZmCz_KzU8166EHxi1dCHkevotbOPrwZtcWszjkpF6mIY7KhLxkD8hc7HqrmpBVPJUSfd2OjNaZ9GA
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x320, components 3\012- data
Hash 29e8ed27dd2488c309ac4f87b76ffdb0
ddf43bd76d3544093311164e00b70da77966a0fb
f24ab84c5269a141fdfc2b9b74d7be14a21a74de71feebca720ef7bb094c0ac4
GET /file/lfj5ma8A9Mhg0hhQMG3RdN-SUeoLl-4nXTi00w63SvFyqLwCMgOH5m-SZnL8tRQmGl06r_iUIW7ONSWeSw0eRfUOdjEvgSZ6Yub-ydBv8KuTM9Yfo1XLTZvnUNx-cLKjMpfyPtYjSwbCdKjsOBVFSvnwRJCD1R4nB6rAtTH4awKmBO54X82y48oxOboaeFnxkwEDTc47g4IvtDSbPmfUh8478hHYwIlxFi3Q3ru_h4B5wJh5RZoiEy8CFSMsN5ZunRbH-rrAUZmCz_KzU8166EHxi1dCHkevotbOPrwZtcWszjkpF6mIY7KhLxkD8hc7HqrmpBVPJUSfd2OjNaZ9GA HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: image/jpeg
content-length: 18015
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
cache-control: public,max-age=7200
etag: "8f82cdc9f6ba4c6865fe121ce2d9acb23d49e9ec"
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn1.cdn-telegram.org/file/IL0LX9mtTTUzT-l0Q_sMr08mXqRHb1MGXFNqwVyhm2lD0UCf8Eumcg0LnasI4eBbhJHqIncD0fiQE9DOvcqIBPKRJsSLJvsA75th01W555N3-_Sc0IZNgzXZ6LL3ILLPHvCyTZmypTce2ESwnED1fpWkM2CSIPwZ0o9CfmTxRY167NHUNP2I8zs9KcfVo0_1DX9cKRWxOePaHyLcCLQMXdUPfx8AuYvfKckdfc75R6oLreJDywSy4wzD6d00MWUBRBL12_JhKF8vWjarZ43u5FK00_cXDvWaB0iHBOV9i0ceKLbRrgFuPOATFjXmIuLk_xXlVaeT2Cx_9ukZx6b7Jg
200 OK 20 kB URL GET HTTP/2 cdn1.cdn-telegram.org/file/IL0LX9mtTTUzT-l0Q_sMr08mXqRHb1MGXFNqwVyhm2lD0UCf8Eumcg0LnasI4eBbhJHqIncD0fiQE9DOvcqIBPKRJsSLJvsA75th01W555N3-_Sc0IZNgzXZ6LL3ILLPHvCyTZmypTce2ESwnED1fpWkM2CSIPwZ0o9CfmTxRY167NHUNP2I8zs9KcfVo0_1DX9cKRWxOePaHyLcCLQMXdUPfx8AuYvfKckdfc75R6oLreJDywSy4wzD6d00MWUBRBL12_JhKF8vWjarZ43u5FK00_cXDvWaB0iHBOV9i0ceKLbRrgFuPOATFjXmIuLk_xXlVaeT2Cx_9ukZx6b7Jg
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x320, components 3\012- data
Hash c9f38783928d3cb5b9652bfbc5d54ef4
7e4ca2fdbda1a347cb707603c84c19a07680429c
580018d6394b825a4502e86d3bb165aca29241dc5f6ed67e287977e6e6475087
GET /file/IL0LX9mtTTUzT-l0Q_sMr08mXqRHb1MGXFNqwVyhm2lD0UCf8Eumcg0LnasI4eBbhJHqIncD0fiQE9DOvcqIBPKRJsSLJvsA75th01W555N3-_Sc0IZNgzXZ6LL3ILLPHvCyTZmypTce2ESwnED1fpWkM2CSIPwZ0o9CfmTxRY167NHUNP2I8zs9KcfVo0_1DX9cKRWxOePaHyLcCLQMXdUPfx8AuYvfKckdfc75R6oLreJDywSy4wzD6d00MWUBRBL12_JhKF8vWjarZ43u5FK00_cXDvWaB0iHBOV9i0ceKLbRrgFuPOATFjXmIuLk_xXlVaeT2Cx_9ukZx6b7Jg HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: image/jpeg
content-length: 20018
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
cache-control: public,max-age=7200
etag: "68a620bf45a245cdf7634ce0dbb8b5f01fb59394"
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn1.cdn-telegram.org/file/BqpBXvF1MDLRKEKzLaiqeWwV6LmA8f6HmoshWMQDrK__tBdmhfmKeHxCqmHkBLI_XANMxGlED5-X3BPIYebnrrsgiIDGgE6x0W3TLk3OgUUGDI54HczP01BHhbz6XUaBAuXYNCrQBR0o7aoXY7EjbV6hjd3N_eyeiAYSkGVrp-3nkHJrqNJSML_vlKwhmNafCVueGPYFQwK4GfjnvxTjimPhVZ9I6ozoo5ciYeYUcAUoyqb8KQMOpzWzrjn1Z3Lg51XvmpWY4FApFFeuLOfzdNUynP0y0-DK4FChSbdYfGpcVfydGi8pELIxea3zyaUJ2NUsXGz3LRU_mjwbNSov4A
200 OK 18 kB URL GET HTTP/2 cdn1.cdn-telegram.org/file/BqpBXvF1MDLRKEKzLaiqeWwV6LmA8f6HmoshWMQDrK__tBdmhfmKeHxCqmHkBLI_XANMxGlED5-X3BPIYebnrrsgiIDGgE6x0W3TLk3OgUUGDI54HczP01BHhbz6XUaBAuXYNCrQBR0o7aoXY7EjbV6hjd3N_eyeiAYSkGVrp-3nkHJrqNJSML_vlKwhmNafCVueGPYFQwK4GfjnvxTjimPhVZ9I6ozoo5ciYeYUcAUoyqb8KQMOpzWzrjn1Z3Lg51XvmpWY4FApFFeuLOfzdNUynP0y0-DK4FChSbdYfGpcVfydGi8pELIxea3zyaUJ2NUsXGz3LRU_mjwbNSov4A
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x320, components 3\012- data
Hash 19690aed7cfb1f8789acfe53e95ae299
441a1f26c8fe4112633dceb536e07a2ef7f1c600
a287e59dd0818bfebfbc452eb8e878a8f8d5f1ffd08c64b807f7f45f6dda06a9
GET /file/BqpBXvF1MDLRKEKzLaiqeWwV6LmA8f6HmoshWMQDrK__tBdmhfmKeHxCqmHkBLI_XANMxGlED5-X3BPIYebnrrsgiIDGgE6x0W3TLk3OgUUGDI54HczP01BHhbz6XUaBAuXYNCrQBR0o7aoXY7EjbV6hjd3N_eyeiAYSkGVrp-3nkHJrqNJSML_vlKwhmNafCVueGPYFQwK4GfjnvxTjimPhVZ9I6ozoo5ciYeYUcAUoyqb8KQMOpzWzrjn1Z3Lg51XvmpWY4FApFFeuLOfzdNUynP0y0-DK4FChSbdYfGpcVfydGi8pELIxea3zyaUJ2NUsXGz3LRU_mjwbNSov4A HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: image/jpeg
content-length: 17667
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
cache-control: public,max-age=7200
etag: "3dcb71b3ffb4d42a8e7b9e0e18342b565c9a30f3"
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn1.cdn-telegram.org/file/ZRLtqAZ7mokVQo-u-xXMQ1pf5qrlf9DJOvBbJH12WgSbV09xV2J72J4A8yQRCsBUI64B6BWwapHJHqL49dX-FlT1_8gSIwlbqTQ79NK1CpxxGaMFHJlu7n5Y7T5zkmvAvPnewrLoltL-fpTTHy82JBcOtB0xWAA1V05_hNBtJSDgWxCIEkFAJCyOQIuPU9ai1yjwYafJfgUV0JJQtZMiDijWuANT9K5a3ndjirfD6vVKUzQc0hpL9DHgKvqTeCXSO2i2eFgRFTfLkps_b9ABtiPK-XDHXPKSBc61K7vbNqOR8Pz1uHZn6YQmq_4uvT6HyCUM_MHhnXpBnJVfGAik1w
200 OK 17 kB URL GET HTTP/2 cdn1.cdn-telegram.org/file/ZRLtqAZ7mokVQo-u-xXMQ1pf5qrlf9DJOvBbJH12WgSbV09xV2J72J4A8yQRCsBUI64B6BWwapHJHqL49dX-FlT1_8gSIwlbqTQ79NK1CpxxGaMFHJlu7n5Y7T5zkmvAvPnewrLoltL-fpTTHy82JBcOtB0xWAA1V05_hNBtJSDgWxCIEkFAJCyOQIuPU9ai1yjwYafJfgUV0JJQtZMiDijWuANT9K5a3ndjirfD6vVKUzQc0hpL9DHgKvqTeCXSO2i2eFgRFTfLkps_b9ABtiPK-XDHXPKSBc61K7vbNqOR8Pz1uHZn6YQmq_4uvT6HyCUM_MHhnXpBnJVfGAik1w
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x320, components 3\012- data
Hash 75d9f6455dd1a281687a1a7ea3bd2ac9
f91c7612b7c33a5d6f94f5483317bfa8fe6d792e
14ed685a46e3779a476bd23a95d5e29aa6c3ec1c5a9102e11ca74e9acdb7c718
GET /file/ZRLtqAZ7mokVQo-u-xXMQ1pf5qrlf9DJOvBbJH12WgSbV09xV2J72J4A8yQRCsBUI64B6BWwapHJHqL49dX-FlT1_8gSIwlbqTQ79NK1CpxxGaMFHJlu7n5Y7T5zkmvAvPnewrLoltL-fpTTHy82JBcOtB0xWAA1V05_hNBtJSDgWxCIEkFAJCyOQIuPU9ai1yjwYafJfgUV0JJQtZMiDijWuANT9K5a3ndjirfD6vVKUzQc0hpL9DHgKvqTeCXSO2i2eFgRFTfLkps_b9ABtiPK-XDHXPKSBc61K7vbNqOR8Pz1uHZn6YQmq_4uvT6HyCUM_MHhnXpBnJVfGAik1w HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: image/jpeg
content-length: 17398
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
cache-control: public,max-age=7200
etag: "c5915316abbe34823affdc711d6f12a74598cad0"
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn1.cdn-telegram.org/file/EvZVPqwSqUMmtNg_TlRyMEzKU6IhWLSb9LnXG7C49172f0-c_rUreeqRcCBiBwEYseUG1R7Km5dZrggQjla90iUmbMZJAPGBp_Kf1V1muhCdFUM7DgJthFYZq15X8pfAujBKt1MmUazC4Km92aCO7bL7lS5-QABqZc5IXSLb12VYXUCwtQxjcwrRcuSHH_889l4W0YOM-BcWQ7A6i9ABhUsg7Z9GHHPjQagJDRAciibvnN0irPh_MSy_GTsVzN4NuThS8sI0u3t_qxkk_prVGWUcoVTGAMO_w6x_cRFFJoKBdFSk5XZFMsCCbx4F4zgAiSbeEzie36r5oxMYpP8iNw
200 OK 15 kB URL GET HTTP/2 cdn1.cdn-telegram.org/file/EvZVPqwSqUMmtNg_TlRyMEzKU6IhWLSb9LnXG7C49172f0-c_rUreeqRcCBiBwEYseUG1R7Km5dZrggQjla90iUmbMZJAPGBp_Kf1V1muhCdFUM7DgJthFYZq15X8pfAujBKt1MmUazC4Km92aCO7bL7lS5-QABqZc5IXSLb12VYXUCwtQxjcwrRcuSHH_889l4W0YOM-BcWQ7A6i9ABhUsg7Z9GHHPjQagJDRAciibvnN0irPh_MSy_GTsVzN4NuThS8sI0u3t_qxkk_prVGWUcoVTGAMO_w6x_cRFFJoKBdFSk5XZFMsCCbx4F4zgAiSbeEzie36r5oxMYpP8iNw
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 206x320, components 3\012- data
Hash 6670d2160b115929ee0354d6d54f68c8
9466bcb57c1c27e1034ae173fd58d0feb4ce2d68
5a2826783cf252699b7f00a84ef11659c089db007c0698d12ba8cc57570a3293
GET /file/EvZVPqwSqUMmtNg_TlRyMEzKU6IhWLSb9LnXG7C49172f0-c_rUreeqRcCBiBwEYseUG1R7Km5dZrggQjla90iUmbMZJAPGBp_Kf1V1muhCdFUM7DgJthFYZq15X8pfAujBKt1MmUazC4Km92aCO7bL7lS5-QABqZc5IXSLb12VYXUCwtQxjcwrRcuSHH_889l4W0YOM-BcWQ7A6i9ABhUsg7Z9GHHPjQagJDRAciibvnN0irPh_MSy_GTsVzN4NuThS8sI0u3t_qxkk_prVGWUcoVTGAMO_w6x_cRFFJoKBdFSk5XZFMsCCbx4F4zgAiSbeEzie36r5oxMYpP8iNw HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: image/jpeg
content-length: 15242
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
cache-control: public,max-age=7200
etag: "1e9b83c48aaa98d18a3d9b721fb7f4f7fb9a9eb3"
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn1.cdn-telegram.org/file/CKqFnNZ6kL7tYnk6PbYi8xBrg75QsJKAZzCqiwzLwqvSR3PyKptZ3nkqXCdCD-RbffkbLNYj15WOskJtP4FBazAq9FMAYns6KcZJzF6OIq6lmrHHRI8kLZjxQhDeKDVZFakfcBoXWoT4TDix8fvxERxQUU5mWXE8Nk60ZbaSbLp794Etd_Kx9Nsk-uYv_MUaV4X9fsrM6mqA-nCPerFiJUxuWLShz8Hboi3Wjg0NlociCHGtZU1UnYvXsodcjZ6VONOMckih7nsbpilX7zEf85i3_sJOPNuEPZqPFQMcMisjBrLGQWM-zEJQuEZh0b59yOCBo9Od7JzbQaEPMMXAvg
200 OK 18 kB URL GET HTTP/2 cdn1.cdn-telegram.org/file/CKqFnNZ6kL7tYnk6PbYi8xBrg75QsJKAZzCqiwzLwqvSR3PyKptZ3nkqXCdCD-RbffkbLNYj15WOskJtP4FBazAq9FMAYns6KcZJzF6OIq6lmrHHRI8kLZjxQhDeKDVZFakfcBoXWoT4TDix8fvxERxQUU5mWXE8Nk60ZbaSbLp794Etd_Kx9Nsk-uYv_MUaV4X9fsrM6mqA-nCPerFiJUxuWLShz8Hboi3Wjg0NlociCHGtZU1UnYvXsodcjZ6VONOMckih7nsbpilX7zEf85i3_sJOPNuEPZqPFQMcMisjBrLGQWM-zEJQuEZh0b59yOCBo9Od7JzbQaEPMMXAvg
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x320, components 3\012- data
Hash 6b8dd005aa7d282515f5fdc6d15fd347
9268e1882c166bbc165524b3532ef7345b5ad82b
6819a60d64236348aca6a73fe0eb5f040e8b9ff52d94b01597b4d1b249ff1b88
GET /file/CKqFnNZ6kL7tYnk6PbYi8xBrg75QsJKAZzCqiwzLwqvSR3PyKptZ3nkqXCdCD-RbffkbLNYj15WOskJtP4FBazAq9FMAYns6KcZJzF6OIq6lmrHHRI8kLZjxQhDeKDVZFakfcBoXWoT4TDix8fvxERxQUU5mWXE8Nk60ZbaSbLp794Etd_Kx9Nsk-uYv_MUaV4X9fsrM6mqA-nCPerFiJUxuWLShz8Hboi3Wjg0NlociCHGtZU1UnYvXsodcjZ6VONOMckih7nsbpilX7zEf85i3_sJOPNuEPZqPFQMcMisjBrLGQWM-zEJQuEZh0b59yOCBo9Od7JzbQaEPMMXAvg HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: image/jpeg
content-length: 18503
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
cache-control: public,max-age=7200
etag: "6da4c79f353f123e332151d49752adffa1f6147e"
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn1.cdn-telegram.org/file/b8PUBrtHd5Jt41PHr4e1ma3-vrpyrNlS4D9NH2N7j5T4B7nH1owUzuKJBaBEKNtEQ1wNn26tYDogh_0GpA1XI6YN5xcaO2ack7JlXVGO85jhhSSq18XNsztS0r0CvFdq1oTeDVPAQzNse29NovSFdNPWx8FFDiO8vBoM_GL7mAgmO884800I4ZQV-xPMtBaQSwYGt0hVqUIkm4XnWm0KHhzFS94cWTqShR3M51A2-B7q6ALTi3JsCOAi5KGXqGD0i0RPtoRwrh8f1-bLaz8hQZFJ1K8tHFXhUwZeKQ0hvE243Qspu6KX3kPqcgJ655DzLq8wqNAR842xSfVhVvQF4A
200 OK 19 kB URL GET HTTP/2 cdn1.cdn-telegram.org/file/b8PUBrtHd5Jt41PHr4e1ma3-vrpyrNlS4D9NH2N7j5T4B7nH1owUzuKJBaBEKNtEQ1wNn26tYDogh_0GpA1XI6YN5xcaO2ack7JlXVGO85jhhSSq18XNsztS0r0CvFdq1oTeDVPAQzNse29NovSFdNPWx8FFDiO8vBoM_GL7mAgmO884800I4ZQV-xPMtBaQSwYGt0hVqUIkm4XnWm0KHhzFS94cWTqShR3M51A2-B7q6ALTi3JsCOAi5KGXqGD0i0RPtoRwrh8f1-bLaz8hQZFJ1K8tHFXhUwZeKQ0hvE243Qspu6KX3kPqcgJ655DzLq8wqNAR842xSfVhVvQF4A
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x320, components 3\012- data
Hash fb508ea031e56fffb57b79e1e44a84bc
dbaa7ac90382197de6874396e22eadfc8400877b
c043ecfabffb76fbacf499d11285dbe644dcd9dc4a7ac1f7d7361728fbd6f3e5
GET /file/b8PUBrtHd5Jt41PHr4e1ma3-vrpyrNlS4D9NH2N7j5T4B7nH1owUzuKJBaBEKNtEQ1wNn26tYDogh_0GpA1XI6YN5xcaO2ack7JlXVGO85jhhSSq18XNsztS0r0CvFdq1oTeDVPAQzNse29NovSFdNPWx8FFDiO8vBoM_GL7mAgmO884800I4ZQV-xPMtBaQSwYGt0hVqUIkm4XnWm0KHhzFS94cWTqShR3M51A2-B7q6ALTi3JsCOAi5KGXqGD0i0RPtoRwrh8f1-bLaz8hQZFJ1K8tHFXhUwZeKQ0hvE243Qspu6KX3kPqcgJ655DzLq8wqNAR842xSfVhVvQF4A HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: image/jpeg
content-length: 18713
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
cache-control: public,max-age=7200
etag: "e9bd56f5fb065b634358257f9b8013b2f7509dbf"
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn1.cdn-telegram.org/file/qyI11O25ukfUTY_jATuLnrtgZWNsVYaVf6EEm5DrOGR0iNINikBoCyFMP-taQhm-ua7tUmBgdQY0ooni43XAUb1YAkvLZdchHM21UWdCgNp6kyy3K721hEf-bZZpMZCW_Hbqg23yAb59w08h-MtxrOrs41ffVPacHyT6SXibHvWGBxWDL85QmUfkDo3m0SXZX7vYOlJhoX9ObeZbPnp-ZL-Z3cF5Re3dcZ7UUWOq5r4vfAF6GkVo7BeHvv-GTFEBO4dfLVYKzXUjYFL4bnpka9KEp5YiquKtzOcHZs7Ui3kFvXYJoFIUEGQafo15EcOKb4pdNrMAjHU39rAE79uphQ
200 OK 19 kB URL GET HTTP/2 cdn1.cdn-telegram.org/file/qyI11O25ukfUTY_jATuLnrtgZWNsVYaVf6EEm5DrOGR0iNINikBoCyFMP-taQhm-ua7tUmBgdQY0ooni43XAUb1YAkvLZdchHM21UWdCgNp6kyy3K721hEf-bZZpMZCW_Hbqg23yAb59w08h-MtxrOrs41ffVPacHyT6SXibHvWGBxWDL85QmUfkDo3m0SXZX7vYOlJhoX9ObeZbPnp-ZL-Z3cF5Re3dcZ7UUWOq5r4vfAF6GkVo7BeHvv-GTFEBO4dfLVYKzXUjYFL4bnpka9KEp5YiquKtzOcHZs7Ui3kFvXYJoFIUEGQafo15EcOKb4pdNrMAjHU39rAE79uphQ
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x320, components 3\012- data
Hash 2aa6c16568c3ce60a7ddea7a57a482e0
a5cafff67cddb4d210afa310436ebcea913f52cb
8325539100ad1a8e2a958a2129b3fba48e40a115ad593850c788495585af1db0
GET /file/qyI11O25ukfUTY_jATuLnrtgZWNsVYaVf6EEm5DrOGR0iNINikBoCyFMP-taQhm-ua7tUmBgdQY0ooni43XAUb1YAkvLZdchHM21UWdCgNp6kyy3K721hEf-bZZpMZCW_Hbqg23yAb59w08h-MtxrOrs41ffVPacHyT6SXibHvWGBxWDL85QmUfkDo3m0SXZX7vYOlJhoX9ObeZbPnp-ZL-Z3cF5Re3dcZ7UUWOq5r4vfAF6GkVo7BeHvv-GTFEBO4dfLVYKzXUjYFL4bnpka9KEp5YiquKtzOcHZs7Ui3kFvXYJoFIUEGQafo15EcOKb4pdNrMAjHU39rAE79uphQ HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: image/jpeg
content-length: 18953
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
cache-control: public,max-age=7200
etag: "6adfa71c5b6648c9ed8a28ff6e7ec4c745a12d04"
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn1.cdn-telegram.org/file/nrmJv51J4gMzdP6mlF483EeLTdd6UYKO1nzFVq9PoIFH7H4Mfo9bLAEk1tycap68_YFk21328tPjvC-_gqeDa9zzVVsM5hNS1tKdjMWU74l3qywPokeUO3XljQ6lVzcBzy_EDUdQFzopXMC9B2FM2YRoF6ZYZpyxE8UVwc8mIkGZdUd1ysU0vw9X_bbdhMi_dSXK6oOlqI0B1QsVdpjgwihdhoTXXnLqMbJOaaBq1FMVazTA4ieKOEbBiuVtWFoKMT2ylBjpySVvKk1fe4GB47eMlG74CoxDp4YFa3L5cNx5NksKhxPfS6NqKZlvUbUNu_KKHbAfDUpeiWdvbe5FMw
200 OK 17 kB URL GET HTTP/2 cdn1.cdn-telegram.org/file/nrmJv51J4gMzdP6mlF483EeLTdd6UYKO1nzFVq9PoIFH7H4Mfo9bLAEk1tycap68_YFk21328tPjvC-_gqeDa9zzVVsM5hNS1tKdjMWU74l3qywPokeUO3XljQ6lVzcBzy_EDUdQFzopXMC9B2FM2YRoF6ZYZpyxE8UVwc8mIkGZdUd1ysU0vw9X_bbdhMi_dSXK6oOlqI0B1QsVdpjgwihdhoTXXnLqMbJOaaBq1FMVazTA4ieKOEbBiuVtWFoKMT2ylBjpySVvKk1fe4GB47eMlG74CoxDp4YFa3L5cNx5NksKhxPfS6NqKZlvUbUNu_KKHbAfDUpeiWdvbe5FMw
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x320, components 3\012- data
Hash b845a593f239681ad686434e744a74ed
f30f34ecc4c07b347eb0211f0cf0ffa4fbaa9cbb
c73c49f8cd0184e4d8535875b6b3e194f12dbc0e863fd7d1f288b39455014bd6
GET /file/nrmJv51J4gMzdP6mlF483EeLTdd6UYKO1nzFVq9PoIFH7H4Mfo9bLAEk1tycap68_YFk21328tPjvC-_gqeDa9zzVVsM5hNS1tKdjMWU74l3qywPokeUO3XljQ6lVzcBzy_EDUdQFzopXMC9B2FM2YRoF6ZYZpyxE8UVwc8mIkGZdUd1ysU0vw9X_bbdhMi_dSXK6oOlqI0B1QsVdpjgwihdhoTXXnLqMbJOaaBq1FMVazTA4ieKOEbBiuVtWFoKMT2ylBjpySVvKk1fe4GB47eMlG74CoxDp4YFa3L5cNx5NksKhxPfS6NqKZlvUbUNu_KKHbAfDUpeiWdvbe5FMw HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: image/jpeg
content-length: 17344
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
cache-control: public,max-age=7200
etag: "acfc6f0d88a56156620997a3721524761dc449e5"
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn1.cdn-telegram.org/file/e6gd0lt-etCcCLBTZY1WcdSMXQ1ybQzljUWZ1LmsBT8Q7_8T7PFJV2qzkZqcM3STWVkCIkqW_R0GoyqD4Z31VPZDg_lUKtkQpvVW_k_siSWMNmAI3EePsJx76jPka2BC_pyfDj35ZRR-0O1TF6Ik95IQG2Fk3LylOCOnwHuLqkNXIp9TIAcDWFrb12tjteVhlWlz1GpZU0rXVzinLfnaoGLKbrjkpKMkc6LNhjLPb9H4y5J2bF9loXPVl-i2HrBkwuXaF7CVRsV7tTFBxhhnOAfKw3oVUc1XhbP99U2nRqZMz6566W8PSNMkGIB7guySQNAtnV1UVJAEjRvA_CQsnw
200 OK 16 kB URL GET HTTP/2 cdn1.cdn-telegram.org/file/e6gd0lt-etCcCLBTZY1WcdSMXQ1ybQzljUWZ1LmsBT8Q7_8T7PFJV2qzkZqcM3STWVkCIkqW_R0GoyqD4Z31VPZDg_lUKtkQpvVW_k_siSWMNmAI3EePsJx76jPka2BC_pyfDj35ZRR-0O1TF6Ik95IQG2Fk3LylOCOnwHuLqkNXIp9TIAcDWFrb12tjteVhlWlz1GpZU0rXVzinLfnaoGLKbrjkpKMkc6LNhjLPb9H4y5J2bF9loXPVl-i2HrBkwuXaF7CVRsV7tTFBxhhnOAfKw3oVUc1XhbP99U2nRqZMz6566W8PSNMkGIB7guySQNAtnV1UVJAEjRvA_CQsnw
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 206x320, components 3\012- data
Hash 8186f620687e901fbf8b1e76980be398
fce0b2fcce6c6a3b65414a0becbf8b13900defe0
dec9b49d97e154271c44de2e69a182d1e619e36d145c7390f29fa8126108ef1f
GET /file/e6gd0lt-etCcCLBTZY1WcdSMXQ1ybQzljUWZ1LmsBT8Q7_8T7PFJV2qzkZqcM3STWVkCIkqW_R0GoyqD4Z31VPZDg_lUKtkQpvVW_k_siSWMNmAI3EePsJx76jPka2BC_pyfDj35ZRR-0O1TF6Ik95IQG2Fk3LylOCOnwHuLqkNXIp9TIAcDWFrb12tjteVhlWlz1GpZU0rXVzinLfnaoGLKbrjkpKMkc6LNhjLPb9H4y5J2bF9loXPVl-i2HrBkwuXaF7CVRsV7tTFBxhhnOAfKw3oVUc1XhbP99U2nRqZMz6566W8PSNMkGIB7guySQNAtnV1UVJAEjRvA_CQsnw HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: image/jpeg
content-length: 15517
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
cache-control: public,max-age=7200
etag: "7d29ab55104f1ed822c5d7a9a65214f320a1078c"
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn1.cdn-telegram.org/file/WmNeEhvjouoPKegpRkCA4jidr24ZZDXGwG9JjeESDgr-f0_IYv5KZvOQ63xd45rXy061dJIvi_jcmkHSpfdB9aP7Jh6kvIQAF0SU83-NAK2MjA_OHDiBSNV5yh4OlgwZjnEHwmu0yNe-IhNG840pdwbMbAM2WTkisiPRHwvvoXFRRXBpLD4LHAvV-hz07n5oOoBImt0Y-UjBf_1TQ-GTpyNhhVZQfE8YPBIRDznLcLkMDUIJqZCG3G08vMcV24ePonZaLexDbLRwK_VQE3OTQdWbhNwdho0qFMe9zekfdLhNMua9OKL1gxxx3ziwxvuwcDOO-uztDltDh1eTKz4ktg
200 OK 12 kB URL GET HTTP/2 cdn1.cdn-telegram.org/file/WmNeEhvjouoPKegpRkCA4jidr24ZZDXGwG9JjeESDgr-f0_IYv5KZvOQ63xd45rXy061dJIvi_jcmkHSpfdB9aP7Jh6kvIQAF0SU83-NAK2MjA_OHDiBSNV5yh4OlgwZjnEHwmu0yNe-IhNG840pdwbMbAM2WTkisiPRHwvvoXFRRXBpLD4LHAvV-hz07n5oOoBImt0Y-UjBf_1TQ-GTpyNhhVZQfE8YPBIRDznLcLkMDUIJqZCG3G08vMcV24ePonZaLexDbLRwK_VQE3OTQdWbhNwdho0qFMe9zekfdLhNMua9OKL1gxxx3ziwxvuwcDOO-uztDltDh1eTKz4ktg
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 206x320, components 3\012- data
Hash 7afad76ef72cb94062cd08026559293a
59a1b3e573958f3273c05a02cceec7dd4f9c8334
08b393cb87f028c1e6c12c346fbd70f7a9eee8b97d000ffe8a8fcbbde5f1eac2
GET /file/WmNeEhvjouoPKegpRkCA4jidr24ZZDXGwG9JjeESDgr-f0_IYv5KZvOQ63xd45rXy061dJIvi_jcmkHSpfdB9aP7Jh6kvIQAF0SU83-NAK2MjA_OHDiBSNV5yh4OlgwZjnEHwmu0yNe-IhNG840pdwbMbAM2WTkisiPRHwvvoXFRRXBpLD4LHAvV-hz07n5oOoBImt0Y-UjBf_1TQ-GTpyNhhVZQfE8YPBIRDznLcLkMDUIJqZCG3G08vMcV24ePonZaLexDbLRwK_VQE3OTQdWbhNwdho0qFMe9zekfdLhNMua9OKL1gxxx3ziwxvuwcDOO-uztDltDh1eTKz4ktg HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: image/jpeg
content-length: 12054
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
cache-control: public,max-age=7200
etag: "fc860938ef9bbc217da569cc7cf656b7f9826cbe"
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn1.cdn-telegram.org/file/5a8e442d07.mp4?token=DuZ8P4zuZVKZLWyCw5K5GBQgvqVM7EGvqzN0gf-Pt3O0DQC8KzR7cT7lCcJnFPGHZxKOtShJdwCFIPjT1uNwb2Y8289wJhMXQ0l9ERFTNMaiwJk5UzOmQrZLZrqxDBSocy55JkWxqo7q3Cuq9UqY_8Tpo5Dq_iuboOo0P5957GyYBlhq23A-2cm7Un9Gi2S2iKOfgicdyT3AbL8yOu6ouO3BLhVdqzaZkYHH3BrMTZpOCI6naSqqQzzTtiZ5sYNWBoUuGIsvX25b6J_DaXpbFc451aQdk_JpaEevEaGvK1WYz5y1lEt5JlVi-6Ox8bpCB0fstzYkC2YF0lhbwZwQYQ
206 Partial Content 835 kB URL GET HTTP/3 cdn1.cdn-telegram.org/file/5a8e442d07.mp4?token=DuZ8P4zuZVKZLWyCw5K5GBQgvqVM7EGvqzN0gf-Pt3O0DQC8KzR7cT7lCcJnFPGHZxKOtShJdwCFIPjT1uNwb2Y8289wJhMXQ0l9ERFTNMaiwJk5UzOmQrZLZrqxDBSocy55JkWxqo7q3Cuq9UqY_8Tpo5Dq_iuboOo0P5957GyYBlhq23A-2cm7Un9Gi2S2iKOfgicdyT3AbL8yOu6ouO3BLhVdqzaZkYHH3BrMTZpOCI6naSqqQzzTtiZ5sYNWBoUuGIsvX25b6J_DaXpbFc451aQdk_JpaEevEaGvK1WYz5y1lEt5JlVi-6Ox8bpCB0fstzYkC2YF0lhbwZwQYQ
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 835 kB (834668 bytes)
Hash 774c9283353d2a2d0d4b9bdba3269934
3f7a9b73eced70208e41a7dd27db1c7645c3694d
96e07fe6cb7563a937fe85f17673a922700db1e798c92d8ae0be7925d34997b1
GET /file/5a8e442d07.mp4?token=DuZ8P4zuZVKZLWyCw5K5GBQgvqVM7EGvqzN0gf-Pt3O0DQC8KzR7cT7lCcJnFPGHZxKOtShJdwCFIPjT1uNwb2Y8289wJhMXQ0l9ERFTNMaiwJk5UzOmQrZLZrqxDBSocy55JkWxqo7q3Cuq9UqY_8Tpo5Dq_iuboOo0P5957GyYBlhq23A-2cm7Un9Gi2S2iKOfgicdyT3AbL8yOu6ouO3BLhVdqzaZkYHH3BrMTZpOCI6naSqqQzzTtiZ5sYNWBoUuGIsvX25b6J_DaXpbFc451aQdk_JpaEevEaGvK1WYz5y1lEt5JlVi-6Ox8bpCB0fstzYkC2YF0lhbwZwQYQ HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: video/mp4
content-length: 834668
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes
cache-control: public,max-age=7200
etag: "e7600e3dc8b097d7396c76156a06c4669661e668"
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-range: bytes 0-834667/834668
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn1.cdn-telegram.org/file/5f1ef17b6c.mp4?token=ZPSyq2YMezrz7BJZYxtA-TQ9tQmnrdyYSO6whbSmZGKZIKvd71kIRdxH5OOwjUriuR9KIEa0bpqDJghBL6dg_HYykn8nhz-bjiKDtfQRLKIXEoAEFh_Ni9rN7ZgBhZd8g7sfSfhEeTJlvsV11ZOrdpdPf4sXlFKSrAxIHENo1yxJ41-6jGcdNOhUbJ2xDrYYklWs5ws84RnJAPoSnrBKObnWcwkRQ-2fLE55ypFYnSKH9mDM4vWtc-zvhfFyltC4worQ_a0k8gyJnuRdDSsEeI7TwUEqCsEajlk9niovilnoBJ8cagY_HTf4QyvOW-NVO-qoG2LntPv58WFTsHc2eQ
206 Partial Content 1.7 MB URL GET HTTP/3 cdn1.cdn-telegram.org/file/5f1ef17b6c.mp4?token=ZPSyq2YMezrz7BJZYxtA-TQ9tQmnrdyYSO6whbSmZGKZIKvd71kIRdxH5OOwjUriuR9KIEa0bpqDJghBL6dg_HYykn8nhz-bjiKDtfQRLKIXEoAEFh_Ni9rN7ZgBhZd8g7sfSfhEeTJlvsV11ZOrdpdPf4sXlFKSrAxIHENo1yxJ41-6jGcdNOhUbJ2xDrYYklWs5ws84RnJAPoSnrBKObnWcwkRQ-2fLE55ypFYnSKH9mDM4vWtc-zvhfFyltC4worQ_a0k8gyJnuRdDSsEeI7TwUEqCsEajlk9niovilnoBJ8cagY_HTf4QyvOW-NVO-qoG2LntPv58WFTsHc2eQ
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 1.7 MB (1654531 bytes)
Hash cd24649a8f79afb8db9d43005fb171f4
1d5cefeab8f230798e44e6fc12185d39ecd6f63e
2b9a9e92c6230c98a08c46ac2e8c74195580b1a4d5ced5c638deac7ef02fdebc
GET /file/5f1ef17b6c.mp4?token=ZPSyq2YMezrz7BJZYxtA-TQ9tQmnrdyYSO6whbSmZGKZIKvd71kIRdxH5OOwjUriuR9KIEa0bpqDJghBL6dg_HYykn8nhz-bjiKDtfQRLKIXEoAEFh_Ni9rN7ZgBhZd8g7sfSfhEeTJlvsV11ZOrdpdPf4sXlFKSrAxIHENo1yxJ41-6jGcdNOhUbJ2xDrYYklWs5ws84RnJAPoSnrBKObnWcwkRQ-2fLE55ypFYnSKH9mDM4vWtc-zvhfFyltC4worQ_a0k8gyJnuRdDSsEeI7TwUEqCsEajlk9niovilnoBJ8cagY_HTf4QyvOW-NVO-qoG2LntPv58WFTsHc2eQ HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: video/mp4
content-length: 1654531
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes
cache-control: public,max-age=7200
etag: "9b5a55cf7ed1d160e851beba87c3f947a2ccc6f6"
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-range: bytes 0-1654530/1654531
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn1.cdn-telegram.org/file/IT6tjZI7mvwMdEA0RM_-pOlClbZuo877tYu93r4Fcx-JBj911TWlQ2ZvvPNRX0ao6Lz_AykwJ9Tfe5PAWh-KGc2iqrfbM8zPdcDh5MImIbUAkw0fbvWv8SCiTYGFA0grmVZngqKtx6-H5LNgC3b8iZY__LmEnk0qNmCSiKreRUg-xExJrSe4s-XcCsjCjnKQ-5IBLLHrgvPkqBDDNnNkDdJZSjb24fQiFtGm7qVLJ8p0zx84cDgv_m_8IVNdpo8AD5EQNIz31cWVyUomSyns2f4L2Hr0KFmMtoojadXbMCmkp83wlvmC5hi8r4rHJIQqL2HyGKqxU4Cv0pNlpz6hWQ
200 OK 13 kB URL GET HTTP/2 cdn1.cdn-telegram.org/file/IT6tjZI7mvwMdEA0RM_-pOlClbZuo877tYu93r4Fcx-JBj911TWlQ2ZvvPNRX0ao6Lz_AykwJ9Tfe5PAWh-KGc2iqrfbM8zPdcDh5MImIbUAkw0fbvWv8SCiTYGFA0grmVZngqKtx6-H5LNgC3b8iZY__LmEnk0qNmCSiKreRUg-xExJrSe4s-XcCsjCjnKQ-5IBLLHrgvPkqBDDNnNkDdJZSjb24fQiFtGm7qVLJ8p0zx84cDgv_m_8IVNdpo8AD5EQNIz31cWVyUomSyns2f4L2Hr0KFmMtoojadXbMCmkp83wlvmC5hi8r4rHJIQqL2HyGKqxU4Cv0pNlpz6hWQ
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x213, components 3\012- data
Hash 3e2aa4747f9cdf4654cb249becda9245
6a2a86782cf67e777d2ecd436fe3cc3f11be4577
8ff2692d64ad244a382049f064509cb0c3beaf6c6ffc9dd616ecd9b5a2a556f3
GET /file/IT6tjZI7mvwMdEA0RM_-pOlClbZuo877tYu93r4Fcx-JBj911TWlQ2ZvvPNRX0ao6Lz_AykwJ9Tfe5PAWh-KGc2iqrfbM8zPdcDh5MImIbUAkw0fbvWv8SCiTYGFA0grmVZngqKtx6-H5LNgC3b8iZY__LmEnk0qNmCSiKreRUg-xExJrSe4s-XcCsjCjnKQ-5IBLLHrgvPkqBDDNnNkDdJZSjb24fQiFtGm7qVLJ8p0zx84cDgv_m_8IVNdpo8AD5EQNIz31cWVyUomSyns2f4L2Hr0KFmMtoojadXbMCmkp83wlvmC5hi8r4rHJIQqL2HyGKqxU4Cv0pNlpz6hWQ HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:29:00 GMT
content-type: image/jpeg
content-length: 12604
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes, bytes
cache-control: public,max-age=7200
etag: "39b2badb8565a96531805cebd014725655e7e2a3"
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn1.cdn-telegram.org/file/c3eea7808b.mp4?token=WIfuoxdfam4sl4-Q8qC4NDTDK7zZOnuq-nHnnuN9DH2e_uombBJxv1kqK_m6ta-5GnZUq-a5JSNqgdHg0D5abuuDuwTcatMiHnQMN6S6ILP_VwX-YaIbQsYYEulQ0W2zeJJyXXj3bgsq_Uh2ktCHYTdeKn7iBsbTnizS26TfQf-PlN-jxkLEA5gkgsSUMNWREykiNuDlWEOU4q5qo9inLcMQSOXUF_PI7zbjO4EkqhOF6GLoTx3IQPTo-CYo01tegsDOJpGQlRW810UPfG9tI3Da15IVWFXaVZyezyeqHdtWrUgzyopZNd4DT3fnjkPBpOz9yzr1HWfWVMkAxuFAOQ
206 Partial Content 32 kB URL GET HTTP/3 cdn1.cdn-telegram.org/file/c3eea7808b.mp4?token=WIfuoxdfam4sl4-Q8qC4NDTDK7zZOnuq-nHnnuN9DH2e_uombBJxv1kqK_m6ta-5GnZUq-a5JSNqgdHg0D5abuuDuwTcatMiHnQMN6S6ILP_VwX-YaIbQsYYEulQ0W2zeJJyXXj3bgsq_Uh2ktCHYTdeKn7iBsbTnizS26TfQf-PlN-jxkLEA5gkgsSUMNWREykiNuDlWEOU4q5qo9inLcMQSOXUF_PI7zbjO4EkqhOF6GLoTx3IQPTo-CYo01tegsDOJpGQlRW810UPfG9tI3Da15IVWFXaVZyezyeqHdtWrUgzyopZNd4DT3fnjkPBpOz9yzr1HWfWVMkAxuFAOQ
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
Hash f3c18a209fc77040e5af099752bdcc55
dc1e3a7a5c6ff92455a01b0f1ff0327304e926b0
50e3d05e0d2c8042592ce7b8f65dd228d99ca07a66b6cc99c8c248d37dc92b5e
GET /file/c3eea7808b.mp4?token=WIfuoxdfam4sl4-Q8qC4NDTDK7zZOnuq-nHnnuN9DH2e_uombBJxv1kqK_m6ta-5GnZUq-a5JSNqgdHg0D5abuuDuwTcatMiHnQMN6S6ILP_VwX-YaIbQsYYEulQ0W2zeJJyXXj3bgsq_Uh2ktCHYTdeKn7iBsbTnizS26TfQf-PlN-jxkLEA5gkgsSUMNWREykiNuDlWEOU4q5qo9inLcMQSOXUF_PI7zbjO4EkqhOF6GLoTx3IQPTo-CYo01tegsDOJpGQlRW810UPfG9tI3Da15IVWFXaVZyezyeqHdtWrUgzyopZNd4DT3fnjkPBpOz9yzr1HWfWVMkAxuFAOQ HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=2523136-
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
server: nginx/1.18.0
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
date: Sun, 05 Nov 2023 13:28:59 GMT
cache-control: public,max-age=7200
etag: "957f022506c276b8bf8f405f5fbc94ec8e39ea23"
content-type: video/mp4
content-range: bytes 2523136-2555472/2555473
content-length: 32337
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn1.cdn-telegram.org/file/65c33a48a9.mp4?token=XQLGISSYoCNwc5ZoJtcHvxnR-KjsCjKll_5OaaK1fn-DOQ-kBIIA8BJ0IfrMGMmkcGqjLjfAm-IRmwDZaqMusLYHd9xA_58gTI3-WcOJgl9MU9dIfIbBuMjrX255244UVYGTQjtZTx5dNC6iUeTsaa_PwbuVs0xbeyH2unn1pO0XfWZSHnsIkerz8hD1PdjGQWKdp641spk3uIynvb2BxT6n7Wrbg0u8S9mTBndWWrKqNgL8dIgh0opVgfMUMOSS_llr7vrnYq7LSDNhYOOMa-VfqjBczgf0DKl44SrU_wo18DzuuzD_Cqq2rQcJKxMkQ3DwCLjiGqB1oSTrEW0Tgg
206 Partial Content 52 kB URL GET HTTP/3 cdn1.cdn-telegram.org/file/65c33a48a9.mp4?token=XQLGISSYoCNwc5ZoJtcHvxnR-KjsCjKll_5OaaK1fn-DOQ-kBIIA8BJ0IfrMGMmkcGqjLjfAm-IRmwDZaqMusLYHd9xA_58gTI3-WcOJgl9MU9dIfIbBuMjrX255244UVYGTQjtZTx5dNC6iUeTsaa_PwbuVs0xbeyH2unn1pO0XfWZSHnsIkerz8hD1PdjGQWKdp641spk3uIynvb2BxT6n7Wrbg0u8S9mTBndWWrKqNgL8dIgh0opVgfMUMOSS_llr7vrnYq7LSDNhYOOMa-VfqjBczgf0DKl44SrU_wo18DzuuzD_Cqq2rQcJKxMkQ3DwCLjiGqB1oSTrEW0Tgg
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
Hash f34ab4b4a20628582a9a73c0217ab0f6
3b79dcdda6486d6189334ed8ae41e4712069d1d4
729ff5cd30ea8dcd8804c903b78ead433273d15d5741eb7a85628f7f9046991c
GET /file/65c33a48a9.mp4?token=XQLGISSYoCNwc5ZoJtcHvxnR-KjsCjKll_5OaaK1fn-DOQ-kBIIA8BJ0IfrMGMmkcGqjLjfAm-IRmwDZaqMusLYHd9xA_58gTI3-WcOJgl9MU9dIfIbBuMjrX255244UVYGTQjtZTx5dNC6iUeTsaa_PwbuVs0xbeyH2unn1pO0XfWZSHnsIkerz8hD1PdjGQWKdp641spk3uIynvb2BxT6n7Wrbg0u8S9mTBndWWrKqNgL8dIgh0opVgfMUMOSS_llr7vrnYq7LSDNhYOOMa-VfqjBczgf0DKl44SrU_wo18DzuuzD_Cqq2rQcJKxMkQ3DwCLjiGqB1oSTrEW0Tgg HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=6455296-
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
server: nginx/1.18.0
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
date: Sun, 05 Nov 2023 13:28:59 GMT
cache-control: public,max-age=7200
etag: "c5447ca61b027b0dd35a7df69d71881454b58439"
content-type: video/mp4
content-range: bytes 6455296-6507067/6507068
content-length: 51772
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn1.cdn-telegram.org/file/855f2db4e9.mp4?token=ribc6IcWoRptKt047cMn4heYwbCnST1FxwM8_dwqVRiYulz_-auYwlrT9rtbBecclFtvjItFn5bARy7ARJdZusti6xz-FHdjvgQP9GeIBoyZY7SSWpMGhE38A0b82qC3B3mDeeob2ZyMXhbRgznmOYJlFa4yJJT-Nud1R4u0Wp3xwIZYdZ8yntLz6PCxYVM3Cx0GV03Lanldu1aO4X-GzysdcAxaRVoaQ_VVqkkt1hOCxDLKgX_IvABhKVzWcx4DbJgxUGEoR06JeK9Io1E7AZWEeDuaEzkKcs8Yii2yLM8KJjg0M1uvMDi7QjvGTN3ZU03cB-XDCcWDQUdGu1Zb2Q
206 Partial Content 55 kB URL GET HTTP/3 cdn1.cdn-telegram.org/file/855f2db4e9.mp4?token=ribc6IcWoRptKt047cMn4heYwbCnST1FxwM8_dwqVRiYulz_-auYwlrT9rtbBecclFtvjItFn5bARy7ARJdZusti6xz-FHdjvgQP9GeIBoyZY7SSWpMGhE38A0b82qC3B3mDeeob2ZyMXhbRgznmOYJlFa4yJJT-Nud1R4u0Wp3xwIZYdZ8yntLz6PCxYVM3Cx0GV03Lanldu1aO4X-GzysdcAxaRVoaQ_VVqkkt1hOCxDLKgX_IvABhKVzWcx4DbJgxUGEoR06JeK9Io1E7AZWEeDuaEzkKcs8Yii2yLM8KJjg0M1uvMDi7QjvGTN3ZU03cB-XDCcWDQUdGu1Zb2Q
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
Hash 3fc53fecc52688bcfeff97ba6b51fe80
a4c018c8f889fbe1a237f71a77553c3218c9b311
35ec6c12e26bda1b4790469046aee70565638891ede334252447bdce0f964aec
GET /file/855f2db4e9.mp4?token=ribc6IcWoRptKt047cMn4heYwbCnST1FxwM8_dwqVRiYulz_-auYwlrT9rtbBecclFtvjItFn5bARy7ARJdZusti6xz-FHdjvgQP9GeIBoyZY7SSWpMGhE38A0b82qC3B3mDeeob2ZyMXhbRgznmOYJlFa4yJJT-Nud1R4u0Wp3xwIZYdZ8yntLz6PCxYVM3Cx0GV03Lanldu1aO4X-GzysdcAxaRVoaQ_VVqkkt1hOCxDLKgX_IvABhKVzWcx4DbJgxUGEoR06JeK9Io1E7AZWEeDuaEzkKcs8Yii2yLM8KJjg0M1uvMDi7QjvGTN3ZU03cB-XDCcWDQUdGu1Zb2Q HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=4390912-
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
server: nginx/1.18.0
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
date: Sun, 05 Nov 2023 13:28:59 GMT
cache-control: public,max-age=7200
etag: "af046d2388332d1c0763f78b2459a10cbec76d75"
content-type: video/mp4
content-range: bytes 4390912-4445795/4445796
content-length: 54884
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn1.cdn-telegram.org/file/e6303f8fd9.mp4?token=ozEOu2gHBWXFvUsWxSYpj7_OjoKaZPPbcvbzClfy-RgkURO7b83WhGnq5SBSPtJeolQJCrlNMgmTLS_RN98rNyu2IdAD9cIjf661tzBYtqJZco67XhPo10ZfD9Jz1sLkTUnAt7nGUdAbsj4nSjjM48zPgNdK6A4rGgrhX0KFaJ2MxzdrPJ8yyVGxdzuA1v8ak5KEQwUeFxW0ZbpRdymv2Wig692wFcqbOJKdrui3qFZ6jmzRFtd4exOUM9IbXrGRnoJix9cef6Vm5M08ftZ_IfgXS_KWf9czaE0OescmfrYRm10qilP8hvgInPBUUGUUauZju8Ns3oVlenwH1cGdLA
206 Partial Content 3.5 MB URL GET HTTP/3 cdn1.cdn-telegram.org/file/e6303f8fd9.mp4?token=ozEOu2gHBWXFvUsWxSYpj7_OjoKaZPPbcvbzClfy-RgkURO7b83WhGnq5SBSPtJeolQJCrlNMgmTLS_RN98rNyu2IdAD9cIjf661tzBYtqJZco67XhPo10ZfD9Jz1sLkTUnAt7nGUdAbsj4nSjjM48zPgNdK6A4rGgrhX0KFaJ2MxzdrPJ8yyVGxdzuA1v8ak5KEQwUeFxW0ZbpRdymv2Wig692wFcqbOJKdrui3qFZ6jmzRFtd4exOUM9IbXrGRnoJix9cef6Vm5M08ftZ_IfgXS_KWf9czaE0OescmfrYRm10qilP8hvgInPBUUGUUauZju8Ns3oVlenwH1cGdLA
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 3.5 MB (3461658 bytes)
Hash 1358c5c4336b60c44117f3ea96b0bc6d
d153ecfea085c19cc0bf78ec380fbf650ffbcbe3
24890a5d2eddcd21845b65ab8700e8a7c5f71e964e49de8afd0503122fc4cd22
GET /file/e6303f8fd9.mp4?token=ozEOu2gHBWXFvUsWxSYpj7_OjoKaZPPbcvbzClfy-RgkURO7b83WhGnq5SBSPtJeolQJCrlNMgmTLS_RN98rNyu2IdAD9cIjf661tzBYtqJZco67XhPo10ZfD9Jz1sLkTUnAt7nGUdAbsj4nSjjM48zPgNdK6A4rGgrhX0KFaJ2MxzdrPJ8yyVGxdzuA1v8ak5KEQwUeFxW0ZbpRdymv2Wig692wFcqbOJKdrui3qFZ6jmzRFtd4exOUM9IbXrGRnoJix9cef6Vm5M08ftZ_IfgXS_KWf9czaE0OescmfrYRm10qilP8hvgInPBUUGUUauZju8Ns3oVlenwH1cGdLA HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: video/mp4
content-length: 3461658
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes
cache-control: public,max-age=7200
etag: "5af85be503242e045f4d6f9e616badde5c5b664f"
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-range: bytes 0-3461657/3461658
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn1.cdn-telegram.org/file/af12613e0d.mp4?token=u2dTwy3oxv6wqjQN3OPv9RpAQpncBvWiZdGmE9iB-NJfu3UcerCcmBKZjq9u0rWySjDAiWnXKSsZOzm-PF2k6yg48juCeGVhgu66stqULVgEIUB2SO0mOSzZmvv7RIvO5FivEIsGDpVAMpUjVFMTmTE1J-WDtmM9Hh7_boaVSbI6V6jqUBkcMnnlbro1yH7EKLvJKMnZdtvfLDhkn__FlmNkG9Q5s2Mqp-AeakEawVoov0liX7RJnThMvzesquMd-toqKwFipRvaqBuemc-KguIB8P81DVmfdDpwJi3xf6T7pjsM17i7cLMX3Rt3mVg2xqj7csOFJa50E16ARZ8tew
206 Partial Content 28 kB URL GET HTTP/3 cdn1.cdn-telegram.org/file/af12613e0d.mp4?token=u2dTwy3oxv6wqjQN3OPv9RpAQpncBvWiZdGmE9iB-NJfu3UcerCcmBKZjq9u0rWySjDAiWnXKSsZOzm-PF2k6yg48juCeGVhgu66stqULVgEIUB2SO0mOSzZmvv7RIvO5FivEIsGDpVAMpUjVFMTmTE1J-WDtmM9Hh7_boaVSbI6V6jqUBkcMnnlbro1yH7EKLvJKMnZdtvfLDhkn__FlmNkG9Q5s2Mqp-AeakEawVoov0liX7RJnThMvzesquMd-toqKwFipRvaqBuemc-KguIB8P81DVmfdDpwJi3xf6T7pjsM17i7cLMX3Rt3mVg2xqj7csOFJa50E16ARZ8tew
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
Hash 4664ee476820a1ccce67f94dc1e736b1
7739743bb6cde0e0ea9495576e5380c65049ac08
b8ecfec482dd0846a07aa0423c48e82f4348f8c1b0853d1c4f9ec9053a9b632f
GET /file/af12613e0d.mp4?token=u2dTwy3oxv6wqjQN3OPv9RpAQpncBvWiZdGmE9iB-NJfu3UcerCcmBKZjq9u0rWySjDAiWnXKSsZOzm-PF2k6yg48juCeGVhgu66stqULVgEIUB2SO0mOSzZmvv7RIvO5FivEIsGDpVAMpUjVFMTmTE1J-WDtmM9Hh7_boaVSbI6V6jqUBkcMnnlbro1yH7EKLvJKMnZdtvfLDhkn__FlmNkG9Q5s2Mqp-AeakEawVoov0liX7RJnThMvzesquMd-toqKwFipRvaqBuemc-KguIB8P81DVmfdDpwJi3xf6T7pjsM17i7cLMX3Rt3mVg2xqj7csOFJa50E16ARZ8tew HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=4587520-
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
server: nginx/1.18.0
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
date: Sun, 05 Nov 2023 13:28:59 GMT
cache-control: public,max-age=7200
etag: "242f642f3d131a4789207b829e8c7899a3e3fa9e"
content-type: video/mp4
content-range: bytes 4587520-4615440/4615441
content-length: 27921
age: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn1.cdn-telegram.org/file/c5b1ce8872.mp4?token=u0Zh4JnHN-1p5PxahWu46E2BGk1_NRJBeOkKp5Yyxxurw_0SvNO44PlscgDOLK7XhXyP2xdooIZ9SwMrETa6NgEGMyJ1zLdLfUygLSjtLa_iG5xWpb1KBKZ5jnKGaBzxJZKINWk6pVSLnAJCs6EQ2OY5Zll9Bp1g71tTI-XDWQHnTp4tvt2YHCQhkT8ZLqB0CH8G8uAL2xu4My6TxcYQJuZxR9N2GEX7aGiVsyD3cUazvuV8hhO_m3E5iBt9r4VQ_8JNUQgm5nU5z3k937LW6pFZ_2MRuriWo0OLnVJPSXZ27kxB1eqlSAFxQDXxg0ypY2kJ6ziZoR6q4-W2s8DGUw
206 Partial Content 38 kB URL GET HTTP/3 cdn1.cdn-telegram.org/file/c5b1ce8872.mp4?token=u0Zh4JnHN-1p5PxahWu46E2BGk1_NRJBeOkKp5Yyxxurw_0SvNO44PlscgDOLK7XhXyP2xdooIZ9SwMrETa6NgEGMyJ1zLdLfUygLSjtLa_iG5xWpb1KBKZ5jnKGaBzxJZKINWk6pVSLnAJCs6EQ2OY5Zll9Bp1g71tTI-XDWQHnTp4tvt2YHCQhkT8ZLqB0CH8G8uAL2xu4My6TxcYQJuZxR9N2GEX7aGiVsyD3cUazvuV8hhO_m3E5iBt9r4VQ_8JNUQgm5nU5z3k937LW6pFZ_2MRuriWo0OLnVJPSXZ27kxB1eqlSAFxQDXxg0ypY2kJ6ziZoR6q4-W2s8DGUw
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
Hash 9b3cbc3109dea062305e1fff80534b7f
f8a7012258d69b57befe6b5c3dcff05484aa5afd
a5f3f8d496b03fe43d477fb57a73674aaa2484807a333e4a908c3cd6dbe4653e
GET /file/c5b1ce8872.mp4?token=u0Zh4JnHN-1p5PxahWu46E2BGk1_NRJBeOkKp5Yyxxurw_0SvNO44PlscgDOLK7XhXyP2xdooIZ9SwMrETa6NgEGMyJ1zLdLfUygLSjtLa_iG5xWpb1KBKZ5jnKGaBzxJZKINWk6pVSLnAJCs6EQ2OY5Zll9Bp1g71tTI-XDWQHnTp4tvt2YHCQhkT8ZLqB0CH8G8uAL2xu4My6TxcYQJuZxR9N2GEX7aGiVsyD3cUazvuV8hhO_m3E5iBt9r4VQ_8JNUQgm5nU5z3k937LW6pFZ_2MRuriWo0OLnVJPSXZ27kxB1eqlSAFxQDXxg0ypY2kJ6ziZoR6q4-W2s8DGUw HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=5111808-
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
server: nginx/1.18.0
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
date: Sun, 05 Nov 2023 13:28:59 GMT
cache-control: public,max-age=7200
etag: "0ae20636990f1ea858602c162e0e4e0753819298"
content-type: video/mp4
content-range: bytes 5111808-5149779/5149780
content-length: 37972
age: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn1.cdn-telegram.org/file/0282d8e479.mp4?token=QwgqF34bHn4ARLj3tPrZf0scs3sujZR6QaniJJiY21RTbQTMe4i7V3QK9Kq9kSDdJoba_Thg7K5nheWsdtIIC1FoqcsJ1mLeE6pxvIXHEcTkKFzzOC6iZLanpgZfArE96RD4hrvq0jnTo0XcC91zuSvD-6izJZ3NRQnFyw3j3B6gFWJcBkty3drTb3wl-svrVQnFHlP7Q7Z8zA06KHLZkLcEL89VwugouhAyEGKi_NLGYhM11kDJCTWuh3SesjXCmW90LyNOJOfV7rjiqkMn4WR_VBR4bq0bcrwNuXZAIb-M-jj7AozVF5oiFvWNnbQ93mJ1lzkcvmpb0Vvglw8j_g
206 Partial Content 4.1 MB URL GET HTTP/3 cdn1.cdn-telegram.org/file/0282d8e479.mp4?token=QwgqF34bHn4ARLj3tPrZf0scs3sujZR6QaniJJiY21RTbQTMe4i7V3QK9Kq9kSDdJoba_Thg7K5nheWsdtIIC1FoqcsJ1mLeE6pxvIXHEcTkKFzzOC6iZLanpgZfArE96RD4hrvq0jnTo0XcC91zuSvD-6izJZ3NRQnFyw3j3B6gFWJcBkty3drTb3wl-svrVQnFHlP7Q7Z8zA06KHLZkLcEL89VwugouhAyEGKi_NLGYhM11kDJCTWuh3SesjXCmW90LyNOJOfV7rjiqkMn4WR_VBR4bq0bcrwNuXZAIb-M-jj7AozVF5oiFvWNnbQ93mJ1lzkcvmpb0Vvglw8j_g
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 4.1 MB (4065066 bytes)
Hash 2e85b5e2307ff9645b5f6a93d236f86b
4c183823ae0be799c067fe33aff252426782e74e
3c66d7f23a87aa8edb27263410897e62f1640b35f78d34981d758ddd02e0c950
GET /file/0282d8e479.mp4?token=QwgqF34bHn4ARLj3tPrZf0scs3sujZR6QaniJJiY21RTbQTMe4i7V3QK9Kq9kSDdJoba_Thg7K5nheWsdtIIC1FoqcsJ1mLeE6pxvIXHEcTkKFzzOC6iZLanpgZfArE96RD4hrvq0jnTo0XcC91zuSvD-6izJZ3NRQnFyw3j3B6gFWJcBkty3drTb3wl-svrVQnFHlP7Q7Z8zA06KHLZkLcEL89VwugouhAyEGKi_NLGYhM11kDJCTWuh3SesjXCmW90LyNOJOfV7rjiqkMn4WR_VBR4bq0bcrwNuXZAIb-M-jj7AozVF5oiFvWNnbQ93mJ1lzkcvmpb0Vvglw8j_g HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: video/mp4
content-length: 4065066
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes
cache-control: public,max-age=7200
etag: "4c909e5e0fcc02227bf9c819fbf410563bd257a7"
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-range: bytes 0-4065065/4065066
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
telegram.org/js/jquery.min.js
200 OK 4.3 MB URL GET HTTP/2 telegram.org/js/jquery.min.js
IP
ASN #62041 Telegram Messenger Inc
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
File type gzip compressed data, max speed, from Unix\012- data
Size 4.3 MB (4333788 bytes)
Hash 6c607200d00cb9bd0016423c001ac030
dbb7b725659780b79174428a19093626a14ade3d
0660a2b7b043aaa5c005baee8aaff5b181f2871c5d37aefd0d253cedeba88d31
GET /js/jquery.min.js HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:58 GMT
content-type: application/javascript
last-modified: Fri, 10 Nov 2017 17:54:14 GMT
etag: W/"5a05e7c6-1762a"
expires: Thu, 09 Nov 2023 13:28:58 GMT
cache-control: max-age=345600
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
telegram.org/js/jquery-ui.min.js
200 OK 3.5 MB URL GET HTTP/2 telegram.org/js/jquery-ui.min.js
IP
ASN #62041 Telegram Messenger Inc
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
File type gzip compressed data, max speed, from Unix\012- data
Size 3.5 MB (3494087 bytes)
Hash 762fd81b0adeb45310dda9e36929fd45
4c1e7c53ba30d053b1a84208af36fc88986fdff2
16d653986bc8376545cabf4993094a652ca37eb2fb3ba5421eeaa619e880945d
GET /js/jquery-ui.min.js HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:58 GMT
content-type: application/javascript
last-modified: Fri, 10 Nov 2017 17:54:14 GMT
etag: W/"5a05e7c6-181a9"
expires: Thu, 09 Nov 2023 13:28:58 GMT
cache-control: max-age=345600
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
cdn1.cdn-telegram.org/file/d2b0ea893a.mp4?token=CB-gD6cTit05PirrdFz6nToM5BWM-BSxTZBicfSXUduZ9cL28c31Oi7M-sUS57LP1_qtCwuL-mlnJV2DWZYWXbdLBCqJpYuJmbUU7cpv2Dezzj5IomjkQXilUQEZ9s8U7i2pt_qT50NpGU9OTKJZyElUJJSmkxoZCKRwaXQASHEu5PkdL5--NLpcYdg6r5mkgUuG4afr4xwHWMhdT7h65Y6MurRFIBEDn-bSgLU_9UHvF5c33XFU_CJpkc84uBlvhlYcLALRstRW6wMhtJM2SrbUvQgLJX893QeeVrrA22ClihLYCNYlhng_0WSbVdC6otxTL6GnOcxUz3QCTIhIvg
206 Partial Content 3.9 MB URL GET HTTP/3 cdn1.cdn-telegram.org/file/d2b0ea893a.mp4?token=CB-gD6cTit05PirrdFz6nToM5BWM-BSxTZBicfSXUduZ9cL28c31Oi7M-sUS57LP1_qtCwuL-mlnJV2DWZYWXbdLBCqJpYuJmbUU7cpv2Dezzj5IomjkQXilUQEZ9s8U7i2pt_qT50NpGU9OTKJZyElUJJSmkxoZCKRwaXQASHEu5PkdL5--NLpcYdg6r5mkgUuG4afr4xwHWMhdT7h65Y6MurRFIBEDn-bSgLU_9UHvF5c33XFU_CJpkc84uBlvhlYcLALRstRW6wMhtJM2SrbUvQgLJX893QeeVrrA22ClihLYCNYlhng_0WSbVdC6otxTL6GnOcxUz3QCTIhIvg
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 3.9 MB (3867014 bytes)
Hash 2fa714be167ea73de10a2c2a3b6f65c2
d5be54603b4ce2b77e6ec4be87095291d16abf68
52eafe4fbb1ff0e0b09bb249519c5333436cc0fa7e474263e7638c17a3bb5ef6
GET /file/d2b0ea893a.mp4?token=CB-gD6cTit05PirrdFz6nToM5BWM-BSxTZBicfSXUduZ9cL28c31Oi7M-sUS57LP1_qtCwuL-mlnJV2DWZYWXbdLBCqJpYuJmbUU7cpv2Dezzj5IomjkQXilUQEZ9s8U7i2pt_qT50NpGU9OTKJZyElUJJSmkxoZCKRwaXQASHEu5PkdL5--NLpcYdg6r5mkgUuG4afr4xwHWMhdT7h65Y6MurRFIBEDn-bSgLU_9UHvF5c33XFU_CJpkc84uBlvhlYcLALRstRW6wMhtJM2SrbUvQgLJX893QeeVrrA22ClihLYCNYlhng_0WSbVdC6otxTL6GnOcxUz3QCTIhIvg HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: video/mp4
content-length: 3867014
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes
cache-control: public,max-age=7200
etag: "9aa440f3d8727024e8b083af77538c6aec3d9f96"
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-range: bytes 0-3867013/3867014
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn1.cdn-telegram.org/file/2a46b2c833.mp4?token=YtVdkh4RRshabh2AHNqcLiGqxhLr_ra2C3VOz4VcN34ULasLxyMfBKSfCdzdHH3usPolPcf0qS3ZV7ouo_FR2QXir-fwQfvQvz7deZsLOx8kWIP3ZLeSMF4iwr3KC3If3iJ5F5OYJKxwHU5YCxMZsfpdAfPHrD0nWQhZMrnGJyTEkjnjLcu-zgcu-SUHARdDMFkXHjN9sXi5yxYF_Ijiq4N6D0s9tBHznaJJz0weWpyHI-Zk8zaSF0uF8KqqV1MOMzFbDyqmEqofGDrEIT6yc8Fk6MiYk5Yw0xwMmMVbbMuk0c9mhtMWzAYDHPbHaJVMZlcdKcko0b0HsQxtQ2S7uA
206 Partial Content 5.8 MB URL GET HTTP/3 cdn1.cdn-telegram.org/file/2a46b2c833.mp4?token=YtVdkh4RRshabh2AHNqcLiGqxhLr_ra2C3VOz4VcN34ULasLxyMfBKSfCdzdHH3usPolPcf0qS3ZV7ouo_FR2QXir-fwQfvQvz7deZsLOx8kWIP3ZLeSMF4iwr3KC3If3iJ5F5OYJKxwHU5YCxMZsfpdAfPHrD0nWQhZMrnGJyTEkjnjLcu-zgcu-SUHARdDMFkXHjN9sXi5yxYF_Ijiq4N6D0s9tBHznaJJz0weWpyHI-Zk8zaSF0uF8KqqV1MOMzFbDyqmEqofGDrEIT6yc8Fk6MiYk5Yw0xwMmMVbbMuk0c9mhtMWzAYDHPbHaJVMZlcdKcko0b0HsQxtQ2S7uA
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 5.8 MB (5848829 bytes)
Hash a609b80e0ec6bdd5d5aed69ff618eb48
2fddd53a4027ac5d7472050d069a812bdb2e8242
5d934ef72b6fb28b2ed0100f286c8d17add5758f02621bc58649f0e52d35bd86
GET /file/2a46b2c833.mp4?token=YtVdkh4RRshabh2AHNqcLiGqxhLr_ra2C3VOz4VcN34ULasLxyMfBKSfCdzdHH3usPolPcf0qS3ZV7ouo_FR2QXir-fwQfvQvz7deZsLOx8kWIP3ZLeSMF4iwr3KC3If3iJ5F5OYJKxwHU5YCxMZsfpdAfPHrD0nWQhZMrnGJyTEkjnjLcu-zgcu-SUHARdDMFkXHjN9sXi5yxYF_Ijiq4N6D0s9tBHznaJJz0weWpyHI-Zk8zaSF0uF8KqqV1MOMzFbDyqmEqofGDrEIT6yc8Fk6MiYk5Yw0xwMmMVbbMuk0c9mhtMWzAYDHPbHaJVMZlcdKcko0b0HsQxtQ2S7uA HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: video/mp4
content-length: 5848829
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes
cache-control: public,max-age=7200
etag: "979050da478c21eecb1c41ab8e23e7c5ff86ca3e"
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-range: bytes 0-5848828/5848829
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
telegram.org/js/tgwallpaper.min.js?3
200 OK 4.8 MB URL GET HTTP/2 telegram.org/js/tgwallpaper.min.js?3
IP
ASN #62041 Telegram Messenger Inc
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
File type gzip compressed data, max speed, from Unix\012- data
Size 4.8 MB (4762607 bytes)
Hash e21f29f6322a52c53e1deec79914bdaf
a99eafa7907ab7fb7ef87180b28fbbbf2ce5b724
a7d9748156d1fe249892e7640dd45f141ee23e0ca7745afd779501ff09d6e9a8
GET /js/tgwallpaper.min.js?3 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:58 GMT
content-type: application/javascript
last-modified: Thu, 03 Mar 2022 19:57:25 GMT
etag: W/"62211da5-ba3"
expires: Thu, 09 Nov 2023 13:28:58 GMT
cache-control: max-age=345600
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
cdn1.cdn-telegram.org/file/0c3eacc3ad.mp4?token=JEIMja14oExmU4dWQljZjRBHNlVsO7fCxgRUoaZu8NEL_q1y7TQJeJgx-Dsx2h_oDsbviz7EGLh_9NFrAJMJWQAJsELMxCljENpB1hMeuaxi1t7dKrTIRfKXFVcf4em4N-svSQBUjVSAVXuy2v65RPTBfmkuhvxBVmIaFlEgcnMCN2114d1cLxR0gTLVB0n55hMtBjHEwP_JZLP_lYz8EAwWPYAsgY1wZ54HcbxuBRKqN0JqyQoa_Cpe1Une3x0pHdws6UvvFhstLT9HM5rjAAus8SqYaI6kXHvoVWWjZShEcTzY5qp68-xUugDSe4Dy-98NRqQ2dgnMr_sTNhYlNQ
206 Partial Content 5.5 MB URL GET HTTP/3 cdn1.cdn-telegram.org/file/0c3eacc3ad.mp4?token=JEIMja14oExmU4dWQljZjRBHNlVsO7fCxgRUoaZu8NEL_q1y7TQJeJgx-Dsx2h_oDsbviz7EGLh_9NFrAJMJWQAJsELMxCljENpB1hMeuaxi1t7dKrTIRfKXFVcf4em4N-svSQBUjVSAVXuy2v65RPTBfmkuhvxBVmIaFlEgcnMCN2114d1cLxR0gTLVB0n55hMtBjHEwP_JZLP_lYz8EAwWPYAsgY1wZ54HcbxuBRKqN0JqyQoa_Cpe1Une3x0pHdws6UvvFhstLT9HM5rjAAus8SqYaI6kXHvoVWWjZShEcTzY5qp68-xUugDSe4Dy-98NRqQ2dgnMr_sTNhYlNQ
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 5.5 MB (5524790 bytes)
Hash 981a0a6668accd2a3d4acf58d80a4e71
f25d9ec66ad0e51e047481f58aff22ce0d71fefe
f1ea8acc780589c648dad99652f4100c7c44d73c8686ffdd8285957bbe910a08
GET /file/0c3eacc3ad.mp4?token=JEIMja14oExmU4dWQljZjRBHNlVsO7fCxgRUoaZu8NEL_q1y7TQJeJgx-Dsx2h_oDsbviz7EGLh_9NFrAJMJWQAJsELMxCljENpB1hMeuaxi1t7dKrTIRfKXFVcf4em4N-svSQBUjVSAVXuy2v65RPTBfmkuhvxBVmIaFlEgcnMCN2114d1cLxR0gTLVB0n55hMtBjHEwP_JZLP_lYz8EAwWPYAsgY1wZ54HcbxuBRKqN0JqyQoa_Cpe1Une3x0pHdws6UvvFhstLT9HM5rjAAus8SqYaI6kXHvoVWWjZShEcTzY5qp68-xUugDSe4Dy-98NRqQ2dgnMr_sTNhYlNQ HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: video/mp4
content-length: 5524790
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes
cache-control: public,max-age=7200
etag: "5df508dace58509ea860d041b97b53b29eb1dfb9"
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-range: bytes 0-5524789/5524790
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn1.cdn-telegram.org/file/575079340d.mp4?token=MctruEFpVPX0Hv8nxk09VObZJTL55Mvh7Is4_I7XkjNlT32hIR3_hD-fNgPAbgJt2XZeAP-lSOY9tGDwPuMIYLXpExRVEwyCEbkXy3n6W2pXYyODaVZJXBNTSmjSeAqSxEfifmOpeHulJnaED4Pwdl4FtaixLjqnM87iLXurwqzg0Tpyjz_nx-mglzyWkoULZQALTEO3p0i3t-sQVudy52LawV-MyWzdEiiSEk1J8TZhpf6Pit2yyQZNq0w-Iq0xLeJRKyaKawUDOid_yYmadkxaYLfuVJr4RyqhRmWKDS8KVUXEpSjw2naMCA52ohzHus0kFZbIzGJhb-F4CPEfeg
206 Partial Content 4.8 MB URL GET HTTP/3 cdn1.cdn-telegram.org/file/575079340d.mp4?token=MctruEFpVPX0Hv8nxk09VObZJTL55Mvh7Is4_I7XkjNlT32hIR3_hD-fNgPAbgJt2XZeAP-lSOY9tGDwPuMIYLXpExRVEwyCEbkXy3n6W2pXYyODaVZJXBNTSmjSeAqSxEfifmOpeHulJnaED4Pwdl4FtaixLjqnM87iLXurwqzg0Tpyjz_nx-mglzyWkoULZQALTEO3p0i3t-sQVudy52LawV-MyWzdEiiSEk1J8TZhpf6Pit2yyQZNq0w-Iq0xLeJRKyaKawUDOid_yYmadkxaYLfuVJr4RyqhRmWKDS8KVUXEpSjw2naMCA52ohzHus0kFZbIzGJhb-F4CPEfeg
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 4.8 MB (4761086 bytes)
Hash c67600adcbeb4700d93e9fe02e84c108
f95c0d09ff1d6e6264d1c0eac8d6a6a2b91b0042
dcddf00a472a5b65172294172c8683ab7894912d8d4302988e6a54363ec796fa
GET /file/575079340d.mp4?token=MctruEFpVPX0Hv8nxk09VObZJTL55Mvh7Is4_I7XkjNlT32hIR3_hD-fNgPAbgJt2XZeAP-lSOY9tGDwPuMIYLXpExRVEwyCEbkXy3n6W2pXYyODaVZJXBNTSmjSeAqSxEfifmOpeHulJnaED4Pwdl4FtaixLjqnM87iLXurwqzg0Tpyjz_nx-mglzyWkoULZQALTEO3p0i3t-sQVudy52LawV-MyWzdEiiSEk1J8TZhpf6Pit2yyQZNq0w-Iq0xLeJRKyaKawUDOid_yYmadkxaYLfuVJr4RyqhRmWKDS8KVUXEpSjw2naMCA52ohzHus0kFZbIzGJhb-F4CPEfeg HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: video/mp4
content-length: 4761086
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes
cache-control: public,max-age=7200
etag: "3b7959a91e009aa7b95dde6eb47b1fb6ba1b6afa"
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-range: bytes 0-4761085/4761086
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn1.cdn-telegram.org/file/1fd9cbc654.mp4?token=EgED98UmoaTqWH_UpMeNqYviYO0gQQ1filmdpPMbttNgXH7bqquHbWTfvZgSKDSUt0gpyIi29su8KmLT33hWkE2BtxP7p9g3K6fvLKksUG-3VtrfVuoexBWoK0__iGGQ-NQVI3czqmkhaX9kUQmRqZHrGba25RvP5wuCJ1X-RYfHytd1KSKW0by5vXhYG5dfAVXqSA5E4BeLfXRAhvHz6AhVoCYc7YjkQtfLEb04NnYPB1BWvinNT3wMPSGbnYbnw2E9DiCYngvFgcrDUvT4x7A_SkhHIw1oQqLvhn5JxwXX6zMtf47GpLh3V90d8iVLEH1PdMY-xYUXXCjilPczAw
206 Partial Content 4.7 MB URL GET HTTP/3 cdn1.cdn-telegram.org/file/1fd9cbc654.mp4?token=EgED98UmoaTqWH_UpMeNqYviYO0gQQ1filmdpPMbttNgXH7bqquHbWTfvZgSKDSUt0gpyIi29su8KmLT33hWkE2BtxP7p9g3K6fvLKksUG-3VtrfVuoexBWoK0__iGGQ-NQVI3czqmkhaX9kUQmRqZHrGba25RvP5wuCJ1X-RYfHytd1KSKW0by5vXhYG5dfAVXqSA5E4BeLfXRAhvHz6AhVoCYc7YjkQtfLEb04NnYPB1BWvinNT3wMPSGbnYbnw2E9DiCYngvFgcrDUvT4x7A_SkhHIw1oQqLvhn5JxwXX6zMtf47GpLh3V90d8iVLEH1PdMY-xYUXXCjilPczAw
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 4.7 MB (4670869 bytes)
Hash f91c61ea74714aa4c4b2b6fb2e67507e
5fb0a597a45b9336c6b51b078686af24d3e4a4e3
25c7027a58eb54cd4f3a08325350833ecd4ccac9a8541fbf903b1843c1e0853b
GET /file/1fd9cbc654.mp4?token=EgED98UmoaTqWH_UpMeNqYviYO0gQQ1filmdpPMbttNgXH7bqquHbWTfvZgSKDSUt0gpyIi29su8KmLT33hWkE2BtxP7p9g3K6fvLKksUG-3VtrfVuoexBWoK0__iGGQ-NQVI3czqmkhaX9kUQmRqZHrGba25RvP5wuCJ1X-RYfHytd1KSKW0by5vXhYG5dfAVXqSA5E4BeLfXRAhvHz6AhVoCYc7YjkQtfLEb04NnYPB1BWvinNT3wMPSGbnYbnw2E9DiCYngvFgcrDUvT4x7A_SkhHIw1oQqLvhn5JxwXX6zMtf47GpLh3V90d8iVLEH1PdMY-xYUXXCjilPczAw HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
server: nginx/1.18.0
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
date: Sun, 05 Nov 2023 13:28:59 GMT
cache-control: public,max-age=7200
etag: "85e0a6f6810faa162c0c515a8a66f9235717ef6d"
content-type: video/mp4
content-range: bytes 0-4670868/4670869
content-length: 4670869
age: 3
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
telegram.org/js/widget-frame.js?62
200 OK 94 kB URL GET HTTP/2 telegram.org/js/widget-frame.js?62
IP
ASN #62041 Telegram Messenger Inc
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/widget-frame.js?62 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:58 GMT
content-type: application/javascript
last-modified: Thu, 20 Apr 2023 18:46:51 GMT
etag: W/"6441889b-16f16"
expires: Thu, 09 Nov 2023 13:28:58 GMT
cache-control: max-age=345600
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
telegram.org/img/tgme/pattern.svg?1
200 OK 232 kB URL GET HTTP/2 telegram.org/img/tgme/pattern.svg?1
IP
ASN #62041 Telegram Messenger Inc
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size 232 kB (231706 bytes)
Hash d0c22c6a97023d85ba6e644a41c44a5d
4284efb616c182da4450c123174ce0e81a322845
118add53487c02aaf5b5ab9f69380fa06717deb10492e14aaa487e3c62806ad4
GET /img/tgme/pattern.svg?1 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegram.org/css/telegram-web.css?37
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: image/svg+xml
last-modified: Thu, 05 Jan 2023 17:52:04 GMT
etag: W/"63b70e44-3891a"
expires: Thu, 09 Nov 2023 13:28:59 GMT
cache-control: max-age=345600
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css
200 OK 141 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (65324)
Size 141 kB (140936 bytes)
Hash 04aca1f4cd3ec3c05a75a879f3be75a3
675fcf28f9fbf37139d3b2c0b676f96f601a4203
7928b5ab63c6e89ee0ee26f5ef201a58c72baf91abb688580a1aa26eb57b3c11
GET /bootstrap/4.1.3/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xn--r1a.website
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 05 Nov 2023 13:28:58 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"04aca1f4cd3ec3c05a75a879f3be75a3"
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 07/30/2023 11:18:37
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 756
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 84e1cd198ca8a7461e7d0eeb825d96e4
cdn-cache: HIT
cf-cache-status: HIT
age: 387223
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 82157163689d569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
telegram.org/js/tgsticker.js?31
200 OK 25 kB URL GET HTTP/2 telegram.org/js/tgsticker.js?31
IP
ASN #62041 Telegram Messenger Inc
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
Hash 1400a5f5bb460526b907b489c84ac96a
1cdb62d2b39eff966e96a476f72704bc86591036
42d42f23d7276824168808093be0f20e3e53673718c79349cc22da88f58d3e23
GET /js/tgsticker.js?31 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:58 GMT
content-type: application/javascript
last-modified: Wed, 29 Mar 2023 11:31:32 GMT
etag: W/"64242194-601c"
expires: Thu, 09 Nov 2023 13:28:58 GMT
cache-control: max-age=345600
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
telegram.org/css/font-roboto.css?1
200 OK 6.2 kB URL GET HTTP/2 telegram.org/css/font-roboto.css?1
IP
ASN #62041 Telegram Messenger Inc
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
File type ASCII text, with very long lines (6354), with no line terminators
Hash c06318a1f377e388b69b104b4cefa1a6
151f067aae997487880e573876f96b8d598e64db
1a53363e667fffef8a82588191989d36e680b4d341c6b557e62bf207311a3d70
GET /css/font-roboto.css?1 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:58 GMT
content-type: text/css
last-modified: Thu, 20 Oct 2022 11:05:33 GMT
etag: W/"63512b7d-1816"
expires: Thu, 09 Nov 2023 13:28:58 GMT
cache-control: max-age=345600
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
telegram.org/css/telegram-web.css?37
200 OK 27 kB URL GET HTTP/2 telegram.org/css/telegram-web.css?37
IP
ASN #62041 Telegram Messenger Inc
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
File type ASCII text, with very long lines (877)
Hash 74290f2b02c5ebfab7f60aa7f8e9df57
bf38f97543e15b8665778b4724ca88065aea0f8c
f5569fd592a9f98733b42e918680b19ddcab0d5cf365d001b4ade87cf84968ba
GET /css/telegram-web.css?37 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:58 GMT
content-type: text/css
last-modified: Thu, 05 Jan 2023 17:52:04 GMT
etag: W/"63b70e44-6b31"
expires: Thu, 09 Nov 2023 13:28:58 GMT
cache-control: max-age=345600
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
telegram.org/css/widget-frame.css?66
200 OK 83 kB URL GET HTTP/2 telegram.org/css/widget-frame.css?66
IP
ASN #62041 Telegram Messenger Inc
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
File type ASCII text, with very long lines (1653)
Hash f80deb4a4fc00fa54cf4a1617ffaad1e
52f5528aa59e0ad22c5103318a86a4c421d45b34
d61214fdf1c1eee41b83cb56d52b82db20a47bfeab5248bb6fda7a4f0744eedf
GET /css/widget-frame.css?66 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:58 GMT
content-type: text/css
last-modified: Sat, 01 Apr 2023 17:42:21 GMT
etag: W/"64286cfd-1456a"
expires: Thu, 09 Nov 2023 13:28:58 GMT
cache-control: max-age=345600
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
telegram.org/js/telegram-web.js?14
200 OK 12 kB URL GET HTTP/2 telegram.org/js/telegram-web.js?14
IP
ASN #62041 Telegram Messenger Inc
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoDaddy.com, Inc.
Subject*.telegram.org
FingerprintAB:E8:E5:0A:DF:76:6C:98:C8:9F:D7:9C:26:CC:5E:B0:3D:AD:09:30
ValidityFri, 11 Aug 2023 16:00:43 GMT - Wed, 11 Sep 2024 16:00:43 GMT
Hash babe04a6c3cc2a8fb3e3b2db61e0ca6d
58296a032b0ea2f4fa2ce20076fdba1e22da1513
e4b7033bdd850b9dd9847fb31e63627e352e38a3cb5cf5a483ca3d2cc1093c58
GET /js/telegram-web.js?14 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:58 GMT
content-type: application/javascript
last-modified: Fri, 18 Mar 2022 10:32:52 GMT
etag: W/"62345fd4-2e63"
expires: Thu, 09 Nov 2023 13:28:58 GMT
cache-control: max-age=345600
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
cdn1.cdn-telegram.org/file/3cfcd2ea2f.mp4?token=itwQC5c2e2XZo8rAw470KPstDIPZbErTgxIeq60C303IRpaqeuPASDKoNX8MOcgo5Gfbvb9BJYY7HM9qw5vSxzWbFNIHHAhInSCGQAP5FcmE5kb6ZMoto_joOJ1FeJyBRkn0zG8Uchb9XIJzT6-ydvoFgGnXZG6gj6PSIC3QsibBIfl1EeouyVyfS7wdr272UkDPoLkkezkKNJDJdYFHbg8mSUisizlxw2hHwPDbdpkXr73b2OPIQMpQlsn4ToDI3IX3ZkdjhKQOqJVYA81_5dg_5s18mQ5JmV6qhsEhAddJsG_N512uVnF_qVX6vV4wxaUOt9e3s7FXUAVNuYAP6A
206 Partial Content 4.3 MB URL GET HTTP/3 cdn1.cdn-telegram.org/file/3cfcd2ea2f.mp4?token=itwQC5c2e2XZo8rAw470KPstDIPZbErTgxIeq60C303IRpaqeuPASDKoNX8MOcgo5Gfbvb9BJYY7HM9qw5vSxzWbFNIHHAhInSCGQAP5FcmE5kb6ZMoto_joOJ1FeJyBRkn0zG8Uchb9XIJzT6-ydvoFgGnXZG6gj6PSIC3QsibBIfl1EeouyVyfS7wdr272UkDPoLkkezkKNJDJdYFHbg8mSUisizlxw2hHwPDbdpkXr73b2OPIQMpQlsn4ToDI3IX3ZkdjhKQOqJVYA81_5dg_5s18mQ5JmV6qhsEhAddJsG_N512uVnF_qVX6vV4wxaUOt9e3s7FXUAVNuYAP6A
IP
Requested by https://xn--r1a.website/s/telegram
Certificate IssuerGoogle Trust Services LLC
Subjectcdn1.cdn-telegram.org
Fingerprint79:F4:49:35:E7:E7:73:9F:FD:BE:84:5C:D4:FC:EA:06:91:E7:18:CC
ValiditySat, 04 Nov 2023 08:54:58 GMT - Fri, 02 Feb 2024 09:46:50 GMT
Size 4.3 MB (4294967 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /file/3cfcd2ea2f.mp4?token=itwQC5c2e2XZo8rAw470KPstDIPZbErTgxIeq60C303IRpaqeuPASDKoNX8MOcgo5Gfbvb9BJYY7HM9qw5vSxzWbFNIHHAhInSCGQAP5FcmE5kb6ZMoto_joOJ1FeJyBRkn0zG8Uchb9XIJzT6-ydvoFgGnXZG6gj6PSIC3QsibBIfl1EeouyVyfS7wdr272UkDPoLkkezkKNJDJdYFHbg8mSUisizlxw2hHwPDbdpkXr73b2OPIQMpQlsn4ToDI3IX3ZkdjhKQOqJVYA81_5dg_5s18mQ5JmV6qhsEhAddJsG_N512uVnF_qVX6vV4wxaUOt9e3s7FXUAVNuYAP6A HTTP/1.1
Host: cdn1.cdn-telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://xn--r1a.website/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 206 Partial Content
server: nginx/1.18.0
date: Sun, 05 Nov 2023 13:28:59 GMT
content-type: video/mp4
content-length: 4294967
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy: default-src 'none'; sandbox
x-frame-options: DENY
x-xss-protection: 1; mode=block
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length
accept-ranges: bytes
cache-control: public,max-age=7200
etag: "7f975845fae37486192bc622236e3d9bfff38724"
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-range: bytes 0-4294966/4294967
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
95.216.186.40
149.154.167.99
34.111.35.152
104.18.10.207
0.0.0.0