{"report_id":"7bfac7dd-267e-4260-a8e4-cf50c384b4fd","version":6,"status":"done","tags":[],"date":"2025-01-17T17:10:42Z","url":{"schema":"https","addr":"t.co/dO71g0GkYA","fqdn":"t.co","domain":"t.co","tld":"co"},"ip":{"addr":"162.159.140.229","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"telegra.ph/Link-11-26-27","fqdn":"telegra.ph","domain":"telegra.ph","tld":"ph"},"title":"Link – Telegraph"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"","expires_at":"2027-03-28T17:10:42Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"telegra.ph","ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"domain_registered":"unknown","domain_rank":61046,"first_seen":"2016-03-03T04:27:14Z","last_seen":"2025-01-10T12:34:16.575703Z","alert_count":0,"request_count":11,"received_data":588539,"sent_data":4768,"comment":"","tags":null,"fingerprints":null},{"fqdn":"t.me","ip":{"addr":"149.154.167.99","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"domain_registered":"2010-05-20","domain_rank":6552,"first_seen":"2015-06-29T19:03:15Z","last_seen":"2025-01-11T09:44:54.144508Z","alert_count":0,"request_count":1,"received_data":282,"sent_data":426,"comment":"","tags":null,"fingerprints":null},{"fqdn":"is.gd","ip":{"addr":"104.25.234.53","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2007-09-12","domain_rank":51320,"first_seen":"2014-05-30T17:06:36Z","last_seen":"2025-01-15T03:42:40.483704Z","alert_count":0,"request_count":1,"received_data":7619,"sent_data":492,"comment":"","tags":null,"fingerprints":null},{"fqdn":"edit.telegra.ph","ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"domain_registered":"unknown","domain_rank":353450,"first_seen":"2017-02-02T08:51:37Z","last_seen":"2025-01-17T14:25:23.225326Z","alert_count":0,"request_count":1,"received_data":736,"sent_data":543,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2025-01-17T17:10:18Z","timestamp":1737133818,"ip_dst":{"addr":"149.154.167.99","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.21","port":42900,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Telegram Domain (t .me in TLS SNI)","source":"{\"timestamp\":\"2025-01-17T17:10:18.008842+0000\",\"flow_id\":1895697883974610,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.21\",\"src_port\":42900,\"dest_ip\":\"149.154.167.99\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2041933,\"rev\":1,\"signature\":\"ET INFO Observed Telegram Domain (t .me in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2022_06_24\"],\"deployment\":[\"Perimeter\"],\"former_sid\":[\"2851827\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_12_07\"]}},\"tls\":{\"sni\":\"t.me\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"15af977ce25de452b96affa2addb1036\",\"string\":\"771,4866,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":789,\"bytes_toclient\":4500,\"start\":\"2025-01-17T17:10:17.969682+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"telegra.ph/js/jquery.selection.min.js","fqdn":"telegra.ph","domain":"telegra.ph","tld":"ph"},"ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"485340bf60de255d917b74218669d9c5","sha1":"5bfa17a6e88faa54c7c29f4ef1a1ccc3d80e1175","sha256":"e8a9bc2271729e7078ae34f415d174765fafa7045593d270adcdd364b529ac08","sha512":"27558ffcc917334e65f77e07f11354aab27266c5cfc6267d7f120f6e2a69a1868ea7af4ca3bd7c56fe357809eac1856a5c9208b1c42c96f8459f5de8528ccd2a","ssdeep":"","tlshash":"c9516294b1c5b4378bbb30a6808b2315d0b54c40508e985cbb7ef98cfc79a9a58339f9","size":2710,"data":"","first_seen":"2023-03-07T01:03:08Z","last_seen":"2026-05-04T02:07:31.958885Z","times_seen":4980,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"telegra.ph/js/load-image.all.min.js?1","fqdn":"telegra.ph","domain":"telegra.ph","tld":"ph"},"ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"f983dbf664d416edff89057d892e2bb5","sha1":"0f6eab722ffeda3a62e62151edeff15a07c3ced4","sha256":"24923cb2ac81afe909f228d38891f3ddbdb64b0374cc821585975d1ed1e20370","sha512":"ec6acfed6f81df0ec4db68115a10b9c56f5d6ee0932ba7525ab756cf870e50ab888701231d05e21c5a2a480f13a6d3f46a9b75fa24781ac534cfaa7f77f7cd34","ssdeep":"384:Cw8q18xsv4ka4rV0TB4y7DKOtg7znlC7Rmz:Cna8xsE7DNunsRmz","tlshash":"d7720a58b44374a046a340e2664f020ef078a711dd099da9eb94c2597878cefe2fb77d","size":16772,"data":"","first_seen":"2023-03-07T01:03:07Z","last_seen":"2026-05-04T02:07:31.94266Z","times_seen":4979,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"telegra.ph/js/quill.min.js?10","fqdn":"telegra.ph","domain":"telegra.ph","tld":"ph"},"ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"e2f44403ec3ecf567e8b8a9b091616dc","sha1":"1fd0f2555b83632d7b17cae8ccf25422211e8a85","sha256":"7c6cd331016a7cb8dafa981c75bb72ed857e5ea00eb3438ffce1a446cbdfb186","sha512":"0a49e23d1ae5f64c45c06c53c1a475d73ba26ea508009211f036190c9325f0f00c674e23baf9e2352dbc35688b79be571ec6f5b4c7527bc7e38e9d4c64aa4c0c","ssdeep":"1536:RD2R2V9FI1SJKwqZy+zQU85XHvUCxad6vc6XjDKbD7Ihk0dr4C3wMDooqePv+oMt:YJUnWJ9NgTMojlzQyZ8v","tlshash":"9514c69c7691f4b202e351f5802f110af376a97de049a0d4e6a9d8f19db8c5e11bbf38","size":201874,"data":"","first_seen":"2024-09-09T22:11:37Z","last_seen":"2026-05-04T02:07:31.943605Z","times_seen":2773,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"t.me/_websync_?path=Link-11-26-27\u0026hash=8ac55e0d73ef1a9063","fqdn":"t.me","domain":"t.me","tld":"me"},"ip":{"addr":"149.154.167.99","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"33c7f42d99cf0bb6f4d4ddfc819febf1","sha1":"027cf9b3d545d46ff7cecd0669c8e411440423c5","sha256":"3544fbb65b848dd24192ba608359e02cadd6ff8aa3d2175c6f5a4d3c23afccd3","sha512":"6648be4d935dd772b78cfae07aa34a6396380a3de7c1de3fe0b1f068363bf3d49b26ffb641174e8676783b182095ac332270bb7bf344813ae34db139b2376cec","ssdeep":"","tlshash":"9d40000c0000003003000000003000300000000000000000000003000300030030000c","size":5,"data":"","first_seen":"2023-03-07T01:03:07Z","last_seen":"2026-05-04T02:07:31.939641Z","times_seen":4974,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"telegra.ph/Link-11-26-27","fqdn":"telegra.ph","domain":"telegra.ph","tld":"ph"},"ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"a93d235a9f8cd96efc5193e4592c558c","sha1":"b323844b654762f36b3a2f13d68ddaaf8d44ffc0","sha256":"ddcb3e296c77dd2a6585da77f254992f5b564236a992fcf6dc80248fabcb9e15","sha512":"5a78405b5fefb05c23d880da6f3446e7868da54632f5c8bb23bca99b0bf482cf60b90b3cfdb119b1d88b3d6e2dd2df831c6beca18287e148a29e26710b3c8275","ssdeep":"","tlshash":"79f023134003e3b495a2062b9d389e4a7792d40f08837032dc4c838248688fe301e457","size":441,"data":"","first_seen":"2025-01-17T17:10:42.856777Z","last_seen":"2025-02-26T15:08:19.114702Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"telegra.ph/js/jquery.min.js","fqdn":"telegra.ph","domain":"telegra.ph","tld":"ph"},"ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"8101d596b2b8fa35fe3a634ea342d7c3","sha1":"d6c1f41972de07b09bfa63d2e50f9ab41ec372bd","sha256":"540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441","sha512":"9e1634eb02ab6acdfd95bf6544eefa278dfdec21f55e94522df2c949fb537a8dfeab6bcfecf69e6c82c7f53a87f864699ce85f0068ee60c56655339927eebcdb","ssdeep":"1536:/PEkjP+iADIOr/NEe876nmBu3HvF38sEeLHFoqqhJ7SerN5wVI+xcBmPv7E+nzm6:ENMyqhJvN32cBC7M6Whca98HrB","tlshash":"b293c8d9b6d27162977730b850bf510bb13a98eab80c4c60f1a4d8e47d78e89507bf2d","size":95786,"data":"","first_seen":"2023-03-07T01:02:02Z","last_seen":"2026-05-04T02:30:50.824714Z","times_seen":48434,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"telegra.ph/js/autosize.min.js","fqdn":"telegra.ph","domain":"telegra.ph","tld":"ph"},"ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"bd4f179f94d68ec0999348ff53afe2c0","sha1":"e7a0816561e5a62f97c6f7c1e5b5d9af60ccb2b0","sha256":"ad0f0ffdcd62a3c1918dd0e51b06f52be8941a74bd6702cf9708752a90bfd36c","sha512":"9552af023d1af4a8115e2324d99762cb105cf381b757a66894da554cb7675657cf05ead29a94e24e4dc0690f5006525375c39933251265ceeb9e3a6f99adf044","ssdeep":"","tlshash":"de71899b3a40b43052da9232221fb64fb22719df6799406062b4fcb46c74db43639fb8","size":3419,"data":"","first_seen":"2023-03-07T01:03:07Z","last_seen":"2026-05-04T02:07:31.94169Z","times_seen":5039,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"telegra.ph/js/core.min.js?67","fqdn":"telegra.ph","domain":"telegra.ph","tld":"ph"},"ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"a137b64516580cc0e354ee1d37d2ffc9","sha1":"39bdb86a75bb9a41a97c44df0177fb7b2feaa3ef","sha256":"4d4c1f3c9334378ddce87ce85d94cf99a75b65b9e6604d7779f8dc0999ef486f","sha512":"6c474b9922789d80e327474daaafd5d02319a088d8dfd1ac1460c3d3cae55a9c57b86f0a07a195e88dc795241ea0fcfd1d3c5ff525c5f49201c4e76b7466618c","ssdeep":"1536:Xc6F6d62B6K6kUV2lLMWMyup3jlmIRFK5DNzuN:XGUV2U","tlshash":"c733e96db1b636f216e720a8449f3706f3761925d44a8180d17ddce919bce8a2237f3e","size":51742,"data":"","first_seen":"2024-09-09T22:11:37Z","last_seen":"2026-05-04T02:07:31.953502Z","times_seen":2773,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"telegra.ph/Link-11-26-27","fqdn":"telegra.ph","domain":"telegra.ph","tld":"ph"},"ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-01-17T17:10:17.494Z","timestamp":1737133817494,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.telegra.ph","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 13 Sep 2024 13:00:16 GMT","end":"Wed, 15 Oct 2025 13:00:16 GMT"},"fingerprint":{"sha1":"11:72:FA:24:DC:C4:E4:21:BA:55:19:D1:7A:6C:53:14:D4:37:57:8B","sha256":"78:6F:F4:38:CD:9F:EB:C5:5F:E6:66:AF:1B:1A:DE:67:89:6E:6C:9D:CA:0B:30:03:66:0D:D3:5C:24:46:10:3A"}}},"request":{"raw":"GET /Link-11-26-27 HTTP/1.1\r\nHost: telegra.ph\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://t.co/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.20.1\r\ndate: Fri, 17 Jan 2025 17:10:17 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 2051\r\nx-frame-options: SAMEORIGIN\r\npragma: no-cache\r\ncache-control: no-store\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2051,"size_decoded":7106,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (446)","md5":"9d22eed93fda0c55f385b5fa8d4943c8","sha1":"6cd0f04c44535eea580b4dcd90b251cfebbec0c3","sha256":"16cb6aabe5995228499000436695589d1140ca288ce593611b3d983110aa2c1b","sha512":"d8b7f797c699dd495c267c705f5315acf800e9f2ee6ac1aebc04bc97ba3af5c5990edd9b68c88934c557f85918f88177e5b8915f7ac5ddaa75c20dcd3b22613c","ssdeep":"96:CsuWzU70W5fjmZ/nAqPJjeIJumKF95RZjieojwXZk/NqPY0c:/Y7m5VJjeeu1hkrb","tlshash":"72e141f244f45b33236201d26ae3f706bfd0d24bd5953401b1ec46e92feaed18a2b126","first_seen":"2025-01-17T17:10:42.845746Z","last_seen":"2025-01-17T17:10:42.845746Z","times_seen":1,"resource_available":false,"data":null}},"time_used":388,"timings":{"blocked":183,"dns":13,"connect":19,"send":0,"wait":21,"receive":0,"ssl":149},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"t.me/_websync_?path=Link-11-26-27\u0026hash=8ac55e0d73ef1a9063","fqdn":"t.me","domain":"t.me","tld":"me"},"ip":{"addr":"149.154.167.99","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://telegra.ph/Link-11-26-27","date":"2025-01-17T17:10:17.967Z","timestamp":1737133817967,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.t.me","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Sun, 06 Oct 2024 19:51:28 GMT","end":"Fri, 07 Nov 2025 19:51:28 GMT"},"fingerprint":{"sha1":"BA:44:79:96:41:99:29:DF:8F:08:73:A9:D4:90:C4:0D:7D:02:8F:9B","sha256":"0E:80:C2:B4:D7:71:5E:55:75:55:C9:E0:B6:71:DC:4D:4B:5D:80:E2:59:9E:74:F0:65:DD:33:3A:C1:B4:D1:99"}}},"request":{"raw":"GET /_websync_?path=Link-11-26-27\u0026hash=8ac55e0d73ef1a9063 HTTP/1.1\r\nHost: t.me\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://telegra.ph/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0\r\ndate: Fri, 17 Jan 2025 17:10:18 GMT\r\ncontent-type: text/javascript\r\ncontent-length: 25\r\npragma: no-cache\r\ncache-control: no-store\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=35768000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":25,"size_decoded":5,"mime_type":"text/javascript","magic":"ASCII text, with no line terminators","md5":"33c7f42d99cf0bb6f4d4ddfc819febf1","sha1":"027cf9b3d545d46ff7cecd0669c8e411440423c5","sha256":"3544fbb65b848dd24192ba608359e02cadd6ff8aa3d2175c6f5a4d3c23afccd3","sha512":"6648be4d935dd772b78cfae07aa34a6396380a3de7c1de3fe0b1f068363bf3d49b26ffb641174e8676783b182095ac332270bb7bf344813ae34db139b2376cec","ssdeep":"","tlshash":"a63000000000000000000000000000000000000000000000000003000000000000000c","first_seen":"2023-03-07T01:03:07Z","last_seen":"2026-05-04T02:07:31.939641Z","times_seen":4974,"resource_available":true,"data":null}},"time_used":248,"timings":{"blocked":109,"dns":13,"connect":19,"send":0,"wait":20,"receive":0,"ssl":85},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"telegra.ph/images/icons.png?1","fqdn":"telegra.ph","domain":"telegra.ph","tld":"ph"},"ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://telegra.ph/Link-11-26-27","date":"2025-01-17T17:10:18.198Z","timestamp":1737133818198,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.telegra.ph","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 13 Sep 2024 13:00:16 GMT","end":"Wed, 15 Oct 2025 13:00:16 GMT"},"fingerprint":{"sha1":"11:72:FA:24:DC:C4:E4:21:BA:55:19:D1:7A:6C:53:14:D4:37:57:8B","sha256":"78:6F:F4:38:CD:9F:EB:C5:5F:E6:66:AF:1B:1A:DE:67:89:6E:6C:9D:CA:0B:30:03:66:0D:D3:5C:24:46:10:3A"}}},"request":{"raw":"GET /images/icons.png?1 HTTP/1.1\r\nHost: telegra.ph\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://telegra.ph/Link-11-26-27\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.20.1\r\ndate: Fri, 17 Jan 2025 17:10:18 GMT\r\ncontent-type: image/png\r\ncontent-length: 3295\r\nlast-modified: Tue, 22 Nov 2016 01:40:43 GMT\r\netag: \"5833a21b-cdf\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3295,"size_decoded":3295,"mime_type":"image/png","magic":"PNG image data, 40 x 487, 8-bit/color RGBA, non-interlaced","md5":"dbf6327fc24074b3cabf15ac2f39aa5c","sha1":"43da0594bcd09eb2cd6ef4f703ca40e4d6fa2c14","sha256":"4131357ee671ebc7f0430bc803d04a0cb7170d8f98302071d5c061aa6f93cf4e","sha512":"5fe748705592e1e5bd7d43f3d71a2edf139b724ffc9a58b9122e1b22ebc6da79ea4d259e1dd8c7744018563b5ef9ce5f6a02d9a972683ade194ae74c0f70a242","ssdeep":"","tlshash":"fe614b92115400fce4be62637053ae9814303953c995dab04b4117fd3e1a6b9ce98afc","first_seen":"2023-04-30T22:45:21Z","last_seen":"2026-05-04T02:07:31.936092Z","times_seen":4972,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":19,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"telegra.ph/js/core.min.js?67","fqdn":"telegra.ph","domain":"telegra.ph","tld":"ph"},"ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://telegra.ph/Link-11-26-27","date":"2025-01-17T17:10:17.965Z","timestamp":1737133817965,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.telegra.ph","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 13 Sep 2024 13:00:16 GMT","end":"Wed, 15 Oct 2025 13:00:16 GMT"},"fingerprint":{"sha1":"11:72:FA:24:DC:C4:E4:21:BA:55:19:D1:7A:6C:53:14:D4:37:57:8B","sha256":"78:6F:F4:38:CD:9F:EB:C5:5F:E6:66:AF:1B:1A:DE:67:89:6E:6C:9D:CA:0B:30:03:66:0D:D3:5C:24:46:10:3A"}}},"request":{"raw":"GET /js/core.min.js?67 HTTP/1.1\r\nHost: telegra.ph\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://telegra.ph/Link-11-26-27\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.20.1\r\ndate: Fri, 17 Jan 2025 17:10:17 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 06 Sep 2024 12:45:34 GMT\r\netag: W/\"66daf96e-ca1e\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15858,"size_decoded":51895,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32062)","md5":"6a6f2ee707107cf509212f5917400232","sha1":"bec3915219dfa9d857257fa824cf30dbcdeabe7e","sha256":"ff194e32a134f67c098beec698d5cd90d8e9f907f56892eb0a619a9edad67a21","sha512":"9d7a83982ee9a98cfd3fdffbd7ef20dc49865c11de8b5a172565d26a098060fd66a5898bb39898a777f817af3c705d03cf84a35725ca4b946fd230163904ac50","ssdeep":"1536:Xc6F6d62B6K6kUV2lLMWMyup3jlmIRFK5DNzu2:XGUV2t","tlshash":"e633e96db1b636f216e720a8449f3706f3761925d44a8180d17ddce919bce8a2237f3e","first_seen":"2025-01-17T17:10:42.848257Z","last_seen":"2025-01-17T17:10:42.848257Z","times_seen":1,"resource_available":false,"data":null}},"time_used":94,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":94,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"telegra.ph/images/favicon.png?1","fqdn":"telegra.ph","domain":"telegra.ph","tld":"ph"},"ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://telegra.ph/Link-11-26-27","date":"2025-01-17T17:10:18.306Z","timestamp":1737133818306,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.telegra.ph","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 13 Sep 2024 13:00:16 GMT","end":"Wed, 15 Oct 2025 13:00:16 GMT"},"fingerprint":{"sha1":"11:72:FA:24:DC:C4:E4:21:BA:55:19:D1:7A:6C:53:14:D4:37:57:8B","sha256":"78:6F:F4:38:CD:9F:EB:C5:5F:E6:66:AF:1B:1A:DE:67:89:6E:6C:9D:CA:0B:30:03:66:0D:D3:5C:24:46:10:3A"}}},"request":{"raw":"GET /images/favicon.png?1 HTTP/1.1\r\nHost: telegra.ph\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://telegra.ph/Link-11-26-27\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.20.1\r\ndate: Fri, 17 Jan 2025 17:10:18 GMT\r\ncontent-type: image/png\r\ncontent-length: 166\r\nlast-modified: Tue, 22 Nov 2016 15:54:16 GMT\r\netag: \"58346a28-a6\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":166,"size_decoded":166,"mime_type":"image/png","magic":"PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced","md5":"91169aa7638bd8b8d898dadc4d0d0dd9","sha1":"817e5c6bb48ea41ac6eb061c70ab1e895f294239","sha256":"2f2f4f03b4f5bacdde4c08482b99d0a4e418c280c6c1ada8c724b3a48e24609f","sha512":"bdef44ce6ab197f022b75534fe40a9a40a29cc451523dd0f2d134740726ee0f9f87d5ec363d49c279e5e56c19fd70d944e84d21f07315e4cd2babd71581e7c7c","ssdeep":"","tlshash":"63c08cc3629d3965ce0582be932796206836a25942d1581c5a49813a82aa3cf18a9e62","first_seen":"2023-04-30T22:45:21Z","last_seen":"2026-05-04T02:07:31.954533Z","times_seen":5034,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":19,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"telegra.ph/js/jquery.min.js","fqdn":"telegra.ph","domain":"telegra.ph","tld":"ph"},"ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://telegra.ph/Link-11-26-27","date":"2025-01-17T17:10:17.960Z","timestamp":1737133817960,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.telegra.ph","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 13 Sep 2024 13:00:16 GMT","end":"Wed, 15 Oct 2025 13:00:16 GMT"},"fingerprint":{"sha1":"11:72:FA:24:DC:C4:E4:21:BA:55:19:D1:7A:6C:53:14:D4:37:57:8B","sha256":"78:6F:F4:38:CD:9F:EB:C5:5F:E6:66:AF:1B:1A:DE:67:89:6E:6C:9D:CA:0B:30:03:66:0D:D3:5C:24:46:10:3A"}}},"request":{"raw":"GET /js/jquery.min.js HTTP/1.1\r\nHost: telegra.ph\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://telegra.ph/Link-11-26-27\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.20.1\r\ndate: Fri, 17 Jan 2025 17:10:17 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 09 Nov 2016 17:39:54 GMT\r\netag: W/\"58235f6a-1762a\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":95786,"size_decoded":95786,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32086)","md5":"8101d596b2b8fa35fe3a634ea342d7c3","sha1":"d6c1f41972de07b09bfa63d2e50f9ab41ec372bd","sha256":"540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441","sha512":"9e1634eb02ab6acdfd95bf6544eefa278dfdec21f55e94522df2c949fb537a8dfeab6bcfecf69e6c82c7f53a87f864699ce85f0068ee60c56655339927eebcdb","ssdeep":"1536:/PEkjP+iADIOr/NEe876nmBu3HvF38sEeLHFoqqhJ7SerN5wVI+xcBmPv7E+nzm6:ENMyqhJvN32cBC7M6Whca98HrB","tlshash":"b293c8d9b6d27162977730b850bf510bb13a98eab80c4c60f1a4d8e47d78e89507bf2d","first_seen":"2023-03-07T01:02:02Z","last_seen":"2026-05-04T02:30:50.824714Z","times_seen":48434,"resource_available":true,"data":null}},"time_used":97,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":97,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"telegra.ph/css/quill.core.min.css","fqdn":"telegra.ph","domain":"telegra.ph","tld":"ph"},"ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://telegra.ph/Link-11-26-27","date":"2025-01-17T17:10:17.957Z","timestamp":1737133817957,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.telegra.ph","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 13 Sep 2024 13:00:16 GMT","end":"Wed, 15 Oct 2025 13:00:16 GMT"},"fingerprint":{"sha1":"11:72:FA:24:DC:C4:E4:21:BA:55:19:D1:7A:6C:53:14:D4:37:57:8B","sha256":"78:6F:F4:38:CD:9F:EB:C5:5F:E6:66:AF:1B:1A:DE:67:89:6E:6C:9D:CA:0B:30:03:66:0D:D3:5C:24:46:10:3A"}}},"request":{"raw":"GET /css/quill.core.min.css HTTP/1.1\r\nHost: telegra.ph\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://telegra.ph/Link-11-26-27\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.20.1\r\ndate: Fri, 17 Jan 2025 17:10:17 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 14 Nov 2016 18:41:34 GMT\r\netag: W/\"582a055e-1c16\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7190,"size_decoded":7190,"mime_type":"text/css","magic":"ASCII text, with very long lines (7298), with no line terminators","md5":"6fd379f02c9081b5478731edc7f02433","sha1":"38e65ccf5642c6831318d5474717df45f0f92d75","sha256":"ab18145724380a18fdb455d90615c4dc99aff6ec57af134c4cad1cdb25bc0ff5","sha512":"a057525050dfd719df09e25ac97673e543a7841cebd91c32a95712830fef0f065ba10a39b218b7989d66b890c15cc84d06e6b9903f9a51badf5d56f9fcbb27f6","ssdeep":"48:bAsmSH+4bkN437FYRb90W0AISVsJZJdQu5wnlwlZ9S1r+dQXuNgzMR1am:bAeeSkNP9ff2kG06","tlshash":"44e18d6239a2787f8276803fe04276e0b1d5d392e0c54275e2afef1825db499435ff68","first_seen":"2023-04-05T23:02:46Z","last_seen":"2025-04-06T17:47:28.540954Z","times_seen":3079,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"telegra.ph/css/core.min.css?47","fqdn":"telegra.ph","domain":"telegra.ph","tld":"ph"},"ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://telegra.ph/Link-11-26-27","date":"2025-01-17T17:10:17.958Z","timestamp":1737133817958,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.telegra.ph","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 13 Sep 2024 13:00:16 GMT","end":"Wed, 15 Oct 2025 13:00:16 GMT"},"fingerprint":{"sha1":"11:72:FA:24:DC:C4:E4:21:BA:55:19:D1:7A:6C:53:14:D4:37:57:8B","sha256":"78:6F:F4:38:CD:9F:EB:C5:5F:E6:66:AF:1B:1A:DE:67:89:6E:6C:9D:CA:0B:30:03:66:0D:D3:5C:24:46:10:3A"}}},"request":{"raw":"GET /css/core.min.css?47 HTTP/1.1\r\nHost: telegra.ph\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://telegra.ph/Link-11-26-27\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.20.1\r\ndate: Fri, 17 Jan 2025 17:10:17 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 20 Apr 2023 12:19:27 GMT\r\netag: W/\"64412dcf-39a44\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":236100,"size_decoded":236100,"mime_type":"text/css","magic":"ASCII text, with very long lines (37945)","md5":"97f8260e2fc321a619d66fd10bb8796e","sha1":"38e66bbb11748d7a469c2f35dc14526e6386f020","sha256":"976c89984ca0224c0f9ecc1bdedd1f82d34a7d7b14826491837d0d1cb1275f01","sha512":"2b2f21ef6ffc55e08499ad1328b50e3cbfac51d91d4c00c4c284797493c5b6b86fb47268c107ff614d583f1fa9f20b2e01a2248aa2241e41d4712f916fb1928d","ssdeep":"6144:DkqkxjiE0/gahb9lyX27VCyg+dlht0MkxZfz/hAXck9Ce:Y2Oahpom7/nOzhacyf","tlshash":"e634013c18a03ebf1a62d3ddbad27d65fc608e83d8e57cbc984181d8d2c39d16269b45","first_seen":"2023-04-21T04:55:21Z","last_seen":"2026-05-04T02:07:31.952537Z","times_seen":5293,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"telegra.ph/js/quill.min.js?10","fqdn":"telegra.ph","domain":"telegra.ph","tld":"ph"},"ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://telegra.ph/Link-11-26-27","date":"2025-01-17T17:10:17.964Z","timestamp":1737133817964,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.telegra.ph","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 13 Sep 2024 13:00:16 GMT","end":"Wed, 15 Oct 2025 13:00:16 GMT"},"fingerprint":{"sha1":"11:72:FA:24:DC:C4:E4:21:BA:55:19:D1:7A:6C:53:14:D4:37:57:8B","sha256":"78:6F:F4:38:CD:9F:EB:C5:5F:E6:66:AF:1B:1A:DE:67:89:6E:6C:9D:CA:0B:30:03:66:0D:D3:5C:24:46:10:3A"}}},"request":{"raw":"GET /js/quill.min.js?10 HTTP/1.1\r\nHost: telegra.ph\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://telegra.ph/Link-11-26-27\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.20.1\r\ndate: Fri, 17 Jan 2025 17:10:17 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 06 Sep 2024 12:45:34 GMT\r\netag: W/\"66daf96e-31492\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":201874,"size_decoded":201874,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32051)","md5":"e2f44403ec3ecf567e8b8a9b091616dc","sha1":"1fd0f2555b83632d7b17cae8ccf25422211e8a85","sha256":"7c6cd331016a7cb8dafa981c75bb72ed857e5ea00eb3438ffce1a446cbdfb186","sha512":"0a49e23d1ae5f64c45c06c53c1a475d73ba26ea508009211f036190c9325f0f00c674e23baf9e2352dbc35688b79be571ec6f5b4c7527bc7e38e9d4c64aa4c0c","ssdeep":"1536:RD2R2V9FI1SJKwqZy+zQU85XHvUCxad6vc6XjDKbD7Ihk0dr4C3wMDooqePv+oMt:YJUnWJ9NgTMojlzQyZ8v","tlshash":"9514c69c7691f4b202e351f5802f110af376a97de049a0d4e6a9d8f19db8c5e11bbf38","first_seen":"2024-09-09T22:11:37Z","last_seen":"2026-05-04T02:07:31.943605Z","times_seen":2773,"resource_available":true,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"is.gd/5OW8Ig","fqdn":"is.gd","domain":"is.gd","tld":""},"ip":{"addr":"104.25.234.53","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-01-17T17:10:17.286Z","timestamp":1737133817286,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"is.gd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 31 Dec 2024 00:35:28 GMT","end":"Mon, 31 Mar 2025 01:35:26 GMT"},"fingerprint":{"sha1":"4B:AF:30:31:1B:9C:CC:0F:3A:4C:AA:DA:01:8C:64:CF:28:92:B7:D2","sha256":"4B:33:EA:31:4B:82:71:66:25:06:AC:E1:CF:5C:20:23:D0:A0:0B:5D:3E:B3:EB:63:5C:66:8B:2C:1E:2E:98:AB"}}},"request":{"raw":"GET /5OW8Ig HTTP/1.1\r\nHost: is.gd\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://t.co/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Fri, 17 Jan 2025 17:10:17 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: https://telegra.ph/Link-11-26-27\r\ncf-cache-status: DYNAMIC\r\nset-cookie: __cf_bm=uXvrAzEq2spmltmRR5edChuyY2U0.otxYuQX8xDV4lc-1737133817-1.0.1.1-5z5g4KLf8BaaUO1FCXy37vdvJMNngamy1xWaVjeKBvwdWMlfVBKTjsCeMSy3lDOvhtpUDK_jMaWsl53b5sFWMw; path=/; expires=Fri, 17-Jan-25 17:40:17 GMT; domain=.is.gd; HttpOnly; Secure; SameSite=None\r\nserver: cloudflare\r\ncf-ray: 9037f536688fb4f9-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":7106,"size_decoded":7106,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-04T02:32:57.119956Z","times_seen":14612899,"resource_available":true,"data":null}},"time_used":260,"timings":{"blocked":56,"dns":21,"connect":1,"send":0,"wait":143,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"telegra.ph/js/jquery.selection.min.js","fqdn":"telegra.ph","domain":"telegra.ph","tld":"ph"},"ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://telegra.ph/Link-11-26-27","date":"2025-01-17T17:10:17.961Z","timestamp":1737133817961,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.telegra.ph","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 13 Sep 2024 13:00:16 GMT","end":"Wed, 15 Oct 2025 13:00:16 GMT"},"fingerprint":{"sha1":"11:72:FA:24:DC:C4:E4:21:BA:55:19:D1:7A:6C:53:14:D4:37:57:8B","sha256":"78:6F:F4:38:CD:9F:EB:C5:5F:E6:66:AF:1B:1A:DE:67:89:6E:6C:9D:CA:0B:30:03:66:0D:D3:5C:24:46:10:3A"}}},"request":{"raw":"GET /js/jquery.selection.min.js HTTP/1.1\r\nHost: telegra.ph\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://telegra.ph/Link-11-26-27\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.20.1\r\ndate: Fri, 17 Jan 2025 17:10:17 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 18 Nov 2016 17:42:12 GMT\r\netag: W/\"582f3d74-a96\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2710,"size_decoded":2710,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2764), with no line terminators","md5":"cf91097998a4b85ed439414196029b1b","sha1":"4c013c7bded86b4fe6e0fd35574d9b29eb4fb2bd","sha256":"aa427ff8ff6b042effc7328b4aab7efbc9db92e02167a68941799ca568c6f88e","sha512":"aa665c12c7077670743dc3e538b6b0bef0afcd3c4397d9be474271ac117dc36ff1172649092a71e118351b35b4e528e94f93ed2cda58d5c1d80453eea74d1b4f","ssdeep":"","tlshash":"87516294b1c5b4378bbb30a6808b2315d0b54c40508e985cbb7ef98cfc79a9a58339f9","first_seen":"2023-04-05T23:02:46Z","last_seen":"2025-04-06T17:47:28.542022Z","times_seen":3126,"resource_available":false,"data":null}},"time_used":98,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":98,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"telegra.ph/js/load-image.all.min.js?1","fqdn":"telegra.ph","domain":"telegra.ph","tld":"ph"},"ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://telegra.ph/Link-11-26-27","date":"2025-01-17T17:10:17.963Z","timestamp":1737133817963,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.telegra.ph","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 13 Sep 2024 13:00:16 GMT","end":"Wed, 15 Oct 2025 13:00:16 GMT"},"fingerprint":{"sha1":"11:72:FA:24:DC:C4:E4:21:BA:55:19:D1:7A:6C:53:14:D4:37:57:8B","sha256":"78:6F:F4:38:CD:9F:EB:C5:5F:E6:66:AF:1B:1A:DE:67:89:6E:6C:9D:CA:0B:30:03:66:0D:D3:5C:24:46:10:3A"}}},"request":{"raw":"GET /js/load-image.all.min.js?1 HTTP/1.1\r\nHost: telegra.ph\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://telegra.ph/Link-11-26-27\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.20.1\r\ndate: Fri, 17 Jan 2025 17:10:17 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 20 Dec 2016 17:17:36 GMT\r\netag: W/\"585967b0-4184\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":16772,"size_decoded":16772,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (16772), with no line terminators","md5":"f983dbf664d416edff89057d892e2bb5","sha1":"0f6eab722ffeda3a62e62151edeff15a07c3ced4","sha256":"24923cb2ac81afe909f228d38891f3ddbdb64b0374cc821585975d1ed1e20370","sha512":"ec6acfed6f81df0ec4db68115a10b9c56f5d6ee0932ba7525ab756cf870e50ab888701231d05e21c5a2a480f13a6d3f46a9b75fa24781ac534cfaa7f77f7cd34","ssdeep":"384:Cw8q18xsv4ka4rV0TB4y7DKOtg7znlC7Rmz:Cna8xsE7DNunsRmz","tlshash":"d7720a58b44374a046a340e2664f020ef078a711dd099da9eb94c2597878cefe2fb77d","first_seen":"2023-03-07T01:03:07Z","last_seen":"2026-05-04T02:07:31.94266Z","times_seen":4979,"resource_available":true,"data":null}},"time_used":97,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":97,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"telegra.ph/js/autosize.min.js","fqdn":"telegra.ph","domain":"telegra.ph","tld":"ph"},"ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://telegra.ph/Link-11-26-27","date":"2025-01-17T17:10:17.962Z","timestamp":1737133817962,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.telegra.ph","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 13 Sep 2024 13:00:16 GMT","end":"Wed, 15 Oct 2025 13:00:16 GMT"},"fingerprint":{"sha1":"11:72:FA:24:DC:C4:E4:21:BA:55:19:D1:7A:6C:53:14:D4:37:57:8B","sha256":"78:6F:F4:38:CD:9F:EB:C5:5F:E6:66:AF:1B:1A:DE:67:89:6E:6C:9D:CA:0B:30:03:66:0D:D3:5C:24:46:10:3A"}}},"request":{"raw":"GET /js/autosize.min.js HTTP/1.1\r\nHost: telegra.ph\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://telegra.ph/Link-11-26-27\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.20.1\r\ndate: Fri, 17 Jan 2025 17:10:17 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 18 Nov 2016 12:56:51 GMT\r\netag: W/\"582efa93-d5b\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3419,"size_decoded":3419,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3517), with no line terminators","md5":"4725e0f97018e6683b3ac9edd19e3cfe","sha1":"155499a5b872d24dcfe80ac9d7fdcd4c62abd0b0","sha256":"8cff2c8a0eced16dfbe8baebac6192416bf4f94053dc6e28bfd75c70195674c7","sha512":"08e05f6933063415e68c8149d849c1113d490c216d138baf772ba99fe0d8428506642e62e404b65720008c6a6d124dd1b95ab77033366ab4e47ba9c4a648ca94","ssdeep":"","tlshash":"5a71899b3a40b43052da9232221fb64fb21719df6799406062b4fcb46c74db43639fb8","first_seen":"2023-04-05T23:02:46Z","last_seen":"2025-04-06T17:47:28.542566Z","times_seen":3129,"resource_available":false,"data":null}},"time_used":97,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":97,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edit.telegra.ph/check","fqdn":"edit.telegra.ph","domain":"telegra.ph","tld":"ph"},"ip":{"addr":"149.154.164.13","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://telegra.ph/Link-11-26-27","date":"2025-01-17T17:10:18.265Z","timestamp":1737133818265,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.telegra.ph","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 13 Sep 2024 13:00:16 GMT","end":"Wed, 15 Oct 2025 13:00:16 GMT"},"fingerprint":{"sha1":"11:72:FA:24:DC:C4:E4:21:BA:55:19:D1:7A:6C:53:14:D4:37:57:8B","sha256":"78:6F:F4:38:CD:9F:EB:C5:5F:E6:66:AF:1B:1A:DE:67:89:6E:6C:9D:CA:0B:30:03:66:0D:D3:5C:24:46:10:3A"}}},"request":{"raw":"POST /check HTTP/1.1\r\nHost: edit.telegra.ph\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: application/json, text/javascript, */*; q=0.01\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nContent-Length: 29\r\nOrigin: https://telegra.ph\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://telegra.ph/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.20.1\r\ndate: Fri, 17 Jan 2025 17:10:18 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 132\r\naccess-control-allow-origin: https://telegra.ph\r\naccess-control-allow-credentials: true\r\nset-cookie: tph_uuid=bZ7ef8YOom5eXV0fMzgIZCyXCXl33JidGprWvnKTJN; expires=Mon, 12 Jan 2026 07:20:50 GMT; path=/; secure; HttpOnly\ntph_auth_alert=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; secure; HttpOnly\r\npragma: no-cache\r\ncache-control: no-store\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=35768000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":153,"size_decoded":153,"mime_type":"application/json; charset=utf-8","magic":"troff or preprocessor input, ASCII text, with no line terminators","md5":"3606dd5b55ba2a6f25b075d034a7dc4b","sha1":"9d47583e4e6a32fc437822a824762b663516ba27","sha256":"988efc89aaff984faf92e57c0f3a8288abd66ff89373b1510edf8d67ff823a40","sha512":"1eaacf65259d18a36a5b0bad85389f18d6d545bee9d6eb95b84fddd5cdf1cc54165c28d5ad2ecaed236d0331f2782b3903a256ba93e3da95970e9e4299774fd7","ssdeep":"","tlshash":"51c01245e114ccc2fa61081c6e392ca6828c2e63827f09448620e7a9086e0f0239a4c0","first_seen":"2025-01-17T17:10:42.855282Z","last_seen":"2025-01-17T17:10:42.855282Z","times_seen":1,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}