Report - telegurm.mobi/k/

Report Overview

Visited public
2025-06-09 11:18:30
Tags
URL
telegurm.mobi/k/
Finishing URL
telegurm.mobi/k/
IP / ASN
172.67.182.40
#13335 CLOUDFLARENET
Title
Suspected phishing site | Cloudflare

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
telegurm.mobi	unknown	2024-12-11	2025-06-08	2025-06-08	2.0 kB	37 kB	172.67.182.40
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20	2025-06-04	6.4 kB	591 kB	104.18.95.41

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-06-09	medium	telegurm.mobi	Sinkholed
2025-06-09	medium	telegurm.mobi	Sinkholed
2025-06-09	medium	telegurm.mobi	Sinkholed
2025-06-09	medium	telegurm.mobi	Sinkholed
2025-06-09	medium	telegurm.mobi	Sinkholed

ThreatFox

No alerts detected

JavaScript (46)

	URL	From	Size	First Seen	Last Seen
	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	4 B	2023-03-07	2025-06-22
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 04:09 Times Seen383848 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	4 B	2023-03-07	2025-06-22
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 04:09 Times Seen383848 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.3 MB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash d28680c3c5c0c8f642c1b72b5028c434 7f75cb86712e388c658d536f847513db28e9faf9 1452b04ff4f24bb15a26ec822cbe22ff285cb9e0c73c335ccb8d5745100bd6b5 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.3 MB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash c4589f12c35a2fa8790685c8302c00ba b970c1c11ae6499d4ff62db16a724ef2da8699b4 f4ec56f68f3796e8d25ac8e8e29bf221f21633e94d7edf29ae532cbeaf8a0afe Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.3 MB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash c8a1dfe2839194bf41c270568975879a e48c6a587da8b975272d3176cd10f988e39482ee eaaca9783c2a88aa576534f66138c648460205fa212657008970b7018bade0b0 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	4 B	2023-03-07	2025-06-22
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 04:09 Times Seen383848 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	4 B	2023-03-07	2025-06-22
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 04:09 Times Seen383848 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.3 MB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash 80fd1c642bd9ab015d606f21856e0885 6db5debadc6d8d8fae99b008c4ca0eab3d579d7d eb8a1ca704ead9dcc1d293b4a33a1bb851bd1df6b240554082d1de94798df32e Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	4 B	2023-03-07	2025-06-22
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 04:09 Times Seen383848 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	4 B	2023-03-07	2025-06-22
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 04:09 Times Seen383848 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.3 MB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash 8293bb0d8ff9a91c1614acfec6b4eef7 b7e656c804913079e7eb74a71c998439f770fc03 503a4c7b8cfdab4bf59cef18a144ee3696ade0a144ba5905c5848e67f8358521 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	4 B	2023-03-07	2025-06-22
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 04:09 Times Seen383848 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.3 MB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash a12808dab20e3f656090f5c29e5669e4 5c27ce917dc4baa1b0dd68d1fb8a10cc0f1070d9 cb50a3ce774cb1e2ea0d0808e82cc5a74492aaac8d7ff737a99f29739f3f3585 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.3 MB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash b831e46c7414c6b38f42aaf6b1b3388d da721f7cc5150cee94b7972274752a5ef04859cc 88c3242493486a7bf3c294eb2cd63bd7ce47632cfdbafed6e6a626bb92f6c9a6 Loading...

	telegurm.mobi/k/	ScriptElement	210 B	2023-03-07	2025-06-22
Pretty URL telegurm.mobi/k/ IP 172.67.182.40 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 04:09 Times Seen119532 Hash ab1ac4cf0f484cc9f859c0a7983353e0 2da142b1135bd10cdbed4a7353e4483acc30ebe9 50e878a18b2b5be7071dc7c10297381bcfcb55f17c27760ee857af9e31133324 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	4 B	2023-03-07	2025-06-22
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 04:09 Times Seen383848 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	4 B	2023-03-07	2025-06-22
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 04:09 Times Seen383848 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.3 MB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash fffdbf67e497ab03bd243bd67f154e45 b6e925144934d2196cdf039d74aaaea7fe79fe08 fb785f0d47fbc4d45b5abeb86f39ab1ca859251f5785f3b7cf7a8f9505639a90 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.3 MB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash 028dc9644685840ddc1b977f2d4bad1e 976fd3341fa2f42cfd18d7fae84d8cc7c526df2d 8a5b2cf3e8e4f43df67a28537e8b0f979274c4fa6497d283fd325d1d065b1a0b Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	4 B	2023-03-07	2025-06-22
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 04:09 Times Seen383848 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.3 MB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash 1cf97e8c4ffb8042634090f6f03dcfa8 69395e2562c9d513c92eac76dc830d4c34494da0 0a1445009bb7ce8582ba6be6f3fe81a4be8712a75250dd3ca4fad29113956fba Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	4 B	2023-03-07	2025-06-22
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 04:09 Times Seen383848 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.0 kB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash 1e7a071e4ddea2f026519d5e284242f0 ef744af9a861bfbbb8ba2009b3dfacb5691c3561 22bab409eb47ff6d6c54eb6dc5d1ac6f8efac44f7ed2dfb2b495abc2c5b61b77 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.3 MB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash c0a1e3f606822ec805a082bbaf4aefe1 233405448005c0a5c826166e0c6f3941bebf244f ac8bef1c34bc9d239d8995c97f794e8b9048806214ac439b2a01823653e4a656 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	4 B	2023-03-07	2025-06-22
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 04:09 Times Seen383848 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	4 B	2023-03-07	2025-06-22
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 04:09 Times Seen383848 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.3 MB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash 39ef3e42ea9c9bd7c66f8a0bc1b3fbec 51a4114e20c25da363607e4e9a887086c0e22b17 a9cbb3b865c77850d1c3e390fb96018baace26cb2f0251eb6d6be8436ce23a96 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	4 B	2023-03-07	2025-06-22
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 04:09 Times Seen383848 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.0 kB	2025-03-02	2025-06-22
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-03-02 18:12 Last Seen2025-06-22 04:09 Times Seen14293 Hash 6934d9d33cd2d0c005994e7d96d2e0d9 96d89030c1473585f16ec7a52050b410e44dd332 08c9b52f61fadf1eff6fb89169f1735fbae7bb583b23cb119d0e1a0151bac952 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.3 MB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash d6db945bc6e57408767eac24830a660b b61c2d8373c17943afe0c617e50b60f3117bf1b0 631fde5d65997f663a614d9a2525e329cbd101f35351bc927a278916a185d87c Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.3 MB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash 0d944ff2735d6ed3692fa570cb5fd580 a083fb627939976fe0d75cb38233101eeab88b41 a9060a14d8d6ba1862fe084b723f93b6c3a0e0414b8e5677794eaf5018c1a013 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.3 MB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash 99746e95fcd19d38d34a6dafd60aafd6 4937835c0f13850a65873f0cc42b56709996acad 221153da15f28d903f5d7af0ed852e0745003e3a40e35052cde7a13e9861361a Loading...

	telegurm.mobi/k/	ScriptElement	115 B	2025-04-28	2025-06-22
Pretty URL telegurm.mobi/k/ IP 172.67.182.40 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-28 14:01 Last Seen2025-06-22 04:09 Times Seen2100 Hash 34df99ef0602560c811e58e4711c99e3 88dea8841635da3e1130ce19e3718ceb17a95a35 18a52fd2cc16c86bcba28796b0e231144f219cc87e049c41d9d378b880a42fba Loading...

	telegurm.mobi/k/	ScriptElement	375 B	2023-03-07	2025-06-22
Pretty URL telegurm.mobi/k/ IP 172.67.182.40 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 04:09 Times Seen123111 Hash 56df91490fa1984fa82b297dcb23c22d 2050f127b73f50d21eb9b0a2a3f2aea7d4372ba9 275407540ae2d5516300e4027ce994e1c97f958d464e137d0fff116d7acf0f24 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	ScriptElement	4.2 kB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash 063f05146bc84cfbcc62203c189399b7 342bf42fb051f8ba48fa4ab3d320844592ca87ad 9196f8f519b5478d81aea27966b798186c5ce98928a081d45a4f181ce477069d Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	4 B	2023-03-07	2025-06-22
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 04:09 Times Seen383848 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.3 MB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash 3bf62cd7fbad576de5578cac0fc055e6 c02a5db69475541a027412bb1e68f00e3a5a28b1 39ee7144dd0a673bddbf29263c2761b2f32a59dcd2681a8f51652e1116ce5ab3 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.3 MB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash b79024f64c3c5859c8582a8a196ac046 b142bdef5b5a606024e72366db5268e201ef92ed 9e0ac6f207a9801897f5ebf7f5342437ac5cfc24fec8a6110673d24623f44b79 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.3 MB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash a1d95f43f666d57283b7998e9516943b 1f0b17002790fc1f5e0bc8195c45a5ea8e2499f7 7ca5d56ce177bc4388183614d75e648807251647f1293e060b04c45af1747082 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	4 B	2023-03-07	2025-06-22
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 04:09 Times Seen383848 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	4 B	2023-03-07	2025-06-22
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 04:09 Times Seen383848 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/	Eval	1.3 MB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash 39901fb68aa6c3de9f6bc16fba0aa05c db67128f42701c0f8207e4a03797d608f1c6295d 0796f7b748662147a0738b729210f924c7fd6cb730da5bbe855b97a465150e57 Loading...

	telegurm.mobi/k/	ScriptElement	46 B	2025-03-04	2025-06-22
Pretty URL telegurm.mobi/k/ IP 172.67.182.40 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-04 09:24 Last Seen2025-06-22 04:09 Times Seen2938 Hash 16f6161217e242dffadf4241d174abcc 304832d02caf7b8a45ea29c321993d7eba48be67 390eefa5af21228aaab4bb7eb68043b2468a645b3c861aaba17b226cc8c05d95 Loading...

	challenges.cloudflare.com/turnstile/v0/api.js	ScriptElement	49 kB	2025-06-06	2025-06-17
Pretty URL challenges.cloudflare.com/turnstile/v0/api.js IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-06 21:03 Last Seen2025-06-17 16:17 Times Seen8499 Hash 07d7e441d19f6cd2a3e35a26fa189ea1 b8556ae8944c4a1ca014a9da02757e2766873395 ce9705a34c906e586c84cc609659751ffb55f8e2ba3d087e69c5591662a226a0 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=94d039dc1b560b55&lang=auto	ScriptElement	141 kB	2025-06-09	2025-06-09
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=94d039dc1b560b55&lang=auto IP 104.18.95.41 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-09 11:18 Last Seen2025-06-09 11:18 Times Seen1 Hash 012f0cb667415b2a4e1b4d4499d3d32e 95f1dcb3f682d0bc4ffa0c296048dbfa29629468 e36a9b804eedda243816b242358bb3aeb0fd058fe16a802d55c6372628bd2250 Loading...

		Size	First Seen	Last Seen
	#1 Write - 086707e4369f60afedcafb16050a7618	39 B	2023-03-07 01:03	2025-06-22 04:09
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 04:09 Times Seen72625 Hash 086707e4369f60afedcafb16050a7618 8216b0cc6876cbd44f01c158e7dff3833ceccd41 a7fe83ec64bb23eb28090598db3d166ed98e52e39d1afbbfd74c579553f93e4e Loading...

HTTP Transactions (14)

URL IP Response Size

GET telegurm.mobi/k/

172.67.182.40

403 Forbidden

5.0 kB

URL User Request GET
telegurm.mobi/k/
IP
172.67.182.40:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjecttelegurm.mobi
Fingerprint6F:5D:C6:E7:41:93:14:69:1B:57:04:DF:66:AE:8A:90:10:1C:26:F1
ValidityFri, 06 Jun 2025 08:50:41 GMT - Thu, 04 Sep 2025 09:47:57 GMT

File type
HTML document, ASCII text, with very long lines (396)
Size
5.0 kB (4987 bytes)
Hash
0621cb47f945bc1b4dc5e548531c9e6d
bcb7234d49f90e91819a6ee973431da10eee20bc
198ed48f58ec69d633bca3b78028b6382c4636fbcc11c366d38db18856ba604e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /k/ HTTP/1.1
Host: telegurm.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
date: Mon, 09 Jun 2025 11:18:02 GMT
content-type: text/html; charset=utf-8
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=XyMXK%2BhbgrtOYQVPG8Ha9AnLvWjeqIj4WLCMoWFBesUJsj69dG%2Fs%2FdIfWMB0QLlvcg51NCCm%2BiGAK40jH%2F%2BCYpW%2FI5QY0dxjp9tL"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
content-encoding: br
server: cloudflare
cf-ray: 94d039d848db56c6-OSL
X-Firefox-Spdy: h2

POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/138384821:1749464253:7sDLlJHSPMY-rVYOR3qt_5r5I4-2qV6ouqUkzvL2ly0/94d039dc1b560b55/d.b_aHDa2FxnrH0XpVeMRY5wKp1SIMzbuc7JcbiwTU0-1749467882-1.2.1.1-bBzo2.3G7pOD3p_rtuEODCTgL1oj92o9YH7kpi8LJuh.ztfpTY4iZOlpaDUecQp.

104.18.95.41

200 OK

284 kB

URL POST
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/138384821:1749464253:7sDLlJHSPMY-rVYOR3qt_5r5I4-2qV6ouqUkzvL2ly0/94d039dc1b560b55/d.b_aHDa2FxnrH0XpVeMRY5wKp1SIMzbuc7JcbiwTU0-1749467882-1.2.1.1-bBzo2.3G7pOD3p_rtuEODCTgL1oj92o9YH7kpi8LJuh.ztfpTY4iZOlpaDUecQp.
IP
104.18.95.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/
Certificate
IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
284 kB (283724 bytes)
Hash
6457fb44f042b3fe87b5398ba790c47a
5f43fad7d8fa8fa3201a840e3dbf4a7373ca7197
85efee98654c3538dd107e6024b657479f43118b7dc84bd6c8427c45f6d92915

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/138384821:1749464253:7sDLlJHSPMY-rVYOR3qt_5r5I4-2qV6ouqUkzvL2ly0/94d039dc1b560b55/d.b_aHDa2FxnrH0XpVeMRY5wKp1SIMzbuc7JcbiwTU0-1749467882-1.2.1.1-bBzo2.3G7pOD3p_rtuEODCTgL1oj92o9YH7kpi8LJuh.ztfpTY4iZOlpaDUecQp. HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/
cf-chl: d.b_aHDa2FxnrH0XpVeMRY5wKp1SIMzbuc7JcbiwTU0-1749467882-1.2.1.1-bBzo2.3G7pOD3p_rtuEODCTgL1oj92o9YH7kpi8LJuh.ztfpTY4iZOlpaDUecQp.
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 3125
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 09 Jun 2025 11:18:03 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: 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$VlFKRvETXnjzmvnf2HUVXA==
priority: u=3,i=?0
server: cloudflare
cf-ray: 94d039decdb70b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

104.18.95.41

200 OK

30 kB

URL POST
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/138384821:1749464253:7sDLlJHSPMY-rVYOR3qt_5r5I4-2qV6ouqUkzvL2ly0/94d039dc1b560b55/d.b_aHDa2FxnrH0XpVeMRY5wKp1SIMzbuc7JcbiwTU0-1749467882-1.2.1.1-bBzo2.3G7pOD3p_rtuEODCTgL1oj92o9YH7kpi8LJuh.ztfpTY4iZOlpaDUecQp.
IP
104.18.95.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/
Certificate
IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT

File type
ASCII text, with very long lines (29488), with no line terminators
Size
30 kB (29488 bytes)
Hash
2791b7f130ecd703d0942b101abfce41
7731c2793ecde9d6af66dc95c05b81fdd217fc13
1b7e593114721e7273bb4f33316152caa9b9ee8dd5e9303942242761ada36ee7

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/138384821:1749464253:7sDLlJHSPMY-rVYOR3qt_5r5I4-2qV6ouqUkzvL2ly0/94d039dc1b560b55/d.b_aHDa2FxnrH0XpVeMRY5wKp1SIMzbuc7JcbiwTU0-1749467882-1.2.1.1-bBzo2.3G7pOD3p_rtuEODCTgL1oj92o9YH7kpi8LJuh.ztfpTY4iZOlpaDUecQp. HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/
cf-chl: d.b_aHDa2FxnrH0XpVeMRY5wKp1SIMzbuc7JcbiwTU0-1749467882-1.2.1.1-bBzo2.3G7pOD3p_rtuEODCTgL1oj92o9YH7kpi8LJuh.ztfpTY4iZOlpaDUecQp.
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 33976
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 09 Jun 2025 11:18:11 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: QGNm72LL6UCE9Ds5f5qXfZ0i4YU8v/xLYXlLH7BqD/aNjIgcPN/PO4Y9VUevAwgJ$vFPNrUubE7gJjoU8K0RBJQ==
priority: u=3,i=?0
server: cloudflare
cf-ray: 94d03a0ffc720b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET challenges.cloudflare.com/turnstile/v0/api.js

104.18.95.41

302 Found

49 kB

URL GET
challenges.cloudflare.com/turnstile/v0/api.js
IP
104.18.95.41:443
ASN
#13335 CLOUDFLARENET

Requested by
http://telegurm.mobi/k/
Certificate
IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT

File type

Size
49 kB (48828 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://telegurm.mobi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Mon, 09 Jun 2025 11:18:02 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=300, public
cross-origin-resource-policy: cross-origin
location: /turnstile/v0/b/f9574c83b4d7/api.js
vary: Accept-Encoding
server: cloudflare
cf-ray: 94d039da193756ba-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET challenges.cloudflare.com/turnstile/v0/b/f9574c83b4d7/api.js

104.18.95.41

200 OK

49 kB

URL GET
challenges.cloudflare.com/turnstile/v0/b/f9574c83b4d7/api.js
IP
104.18.95.41:443
ASN
#13335 CLOUDFLARENET

Requested by
http://telegurm.mobi/k/
Certificate
IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT

File type
JavaScript source, ASCII text, with very long lines (48827)
Size
49 kB (48828 bytes)
Hash
07d7e441d19f6cd2a3e35a26fa189ea1
b8556ae8944c4a1ca014a9da02757e2766873395
ce9705a34c906e586c84cc609659751ffb55f8e2ba3d087e69c5591662a226a0

HTTP Headers

GET /turnstile/v0/b/f9574c83b4d7/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://telegurm.mobi/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 09 Jun 2025 11:18:02 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Fri, 06 Jun 2025 13:42:22 GMT
cache-control: max-age=31536000, stale-if-error=10800, stale-while-revalidate=31536000, public
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 94d039dafa2e0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

104.18.95.41

200 OK

4.7 kB

URL POST
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/138384821:1749464253:7sDLlJHSPMY-rVYOR3qt_5r5I4-2qV6ouqUkzvL2ly0/94d039dc1b560b55/d.b_aHDa2FxnrH0XpVeMRY5wKp1SIMzbuc7JcbiwTU0-1749467882-1.2.1.1-bBzo2.3G7pOD3p_rtuEODCTgL1oj92o9YH7kpi8LJuh.ztfpTY4iZOlpaDUecQp.
IP
104.18.95.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/
Certificate
IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT

File type
ASCII text, with very long lines (4716), with no line terminators
Size
4.7 kB (4716 bytes)
Hash
faad11809842975141485e0433f67bd8
a1ab3e9546ddfb95bea0f90be1fd702f82881b08
183c86220f5c4a402b264fcf7d300a53ffcf8bb974c3d0c502477077305d4aef

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/138384821:1749464253:7sDLlJHSPMY-rVYOR3qt_5r5I4-2qV6ouqUkzvL2ly0/94d039dc1b560b55/d.b_aHDa2FxnrH0XpVeMRY5wKp1SIMzbuc7JcbiwTU0-1749467882-1.2.1.1-bBzo2.3G7pOD3p_rtuEODCTgL1oj92o9YH7kpi8LJuh.ztfpTY4iZOlpaDUecQp. HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/
cf-chl: d.b_aHDa2FxnrH0XpVeMRY5wKp1SIMzbuc7JcbiwTU0-1749467882-1.2.1.1-bBzo2.3G7pOD3p_rtuEODCTgL1oj92o9YH7kpi8LJuh.ztfpTY4iZOlpaDUecQp.
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 45446
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 09 Jun 2025 11:18:19 GMT
content-type: text/html; charset=UTF-8
cf-chl-out-s: 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$7CIL1v0CIuElJ2ie83tVNw==
cf-chl-out: wyie4HFHO28cKQfm+iN7GQHYpnBRQQcyCp45rKCQwXOfR6f54ReT/GXvtOSUxM7iS0VGKG5sUUbgc9Unp3wi9w==$LCkZCzB+eNhbz2COL+YTvA==
priority: u=3,i=?0
server: cloudflare
cf-ray: 94d03a46aa790b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET telegurm.mobi/cdn-cgi/styles/cf.errors.css

172.67.182.40

200 OK

24 kB

URL GET
telegurm.mobi/cdn-cgi/styles/cf.errors.css
IP
172.67.182.40:80
ASN
#13335 CLOUDFLARENET

Requested by
http://telegurm.mobi/k/

File type
ASCII text, with very long lines (24050)
Size
24 kB (24051 bytes)
Hash
5e8c69a459a691b5d1b9be442332c87d
f24dd1ad7c9080575d92a9a9a2c42620725ef836
84e3c77025ace5af143972b4a40fc834dcdfd4e449d4b36a57e62326f16b3091

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/styles/cf.errors.css HTTP/1.1
Host: telegurm.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://telegurm.mobi/k/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 09 Jun 2025 11:18:02 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=mE2bKIiwVu5BJoEmFnhHLsr1b7IgSACIK707fkHIbaoZelGgdss5Z83Bd21tbzaU1TUQFVYlVUlZvNx6cwSQF3NR%2F3gtbaEYUSLN"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Content-Encoding: gzip
Server: cloudflare
CF-RAY: 94d039d9fa0156c9-OSL

GET telegurm.mobi/favicon.ico

172.67.182.40

404 Not Found

150 B

URL GET
telegurm.mobi/favicon.ico
IP
172.67.182.40:80
ASN
#13335 CLOUDFLARENET

Requested by
http://telegurm.mobi/k/

File type
HTML document, ASCII text, with CRLF line terminators
Size
150 B (150 bytes)
Hash
597ba0d4396e9c906225140ce907092c
28ae2ba65ccdb583d79f85b8cc9509fae697493b
ee1a27178227546d3dcc49e611a6d72e4f1c30080ee4493ae4085b58a49e28e6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: telegurm.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://telegurm.mobi/k/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Mon, 09 Jun 2025 11:18:03 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Server: cloudflare
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Cache-Control: max-age=14400
Cf-Cache-Status: EXPIRED
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=3HDPL%2FITd1KSdsecDcqlakFkSONdBrW6wFk2UqfQVKN9yh1Ps421XNyj0D1Z1%2FBv%2FX9aofVUyPH5Ssh3Nikckr4fL00n50EJlDht"}]}
Content-Encoding: gzip
CF-RAY: 94d039dbccb756c9-OSL
alt-svc: h2=":443"; ma=60

GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/

104.18.95.41

200 OK

28 kB

URL GET
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/
IP
104.18.95.41:443
ASN
#13335 CLOUDFLARENET

Requested by
http://telegurm.mobi/k/
Certificate
IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT

File type
HTML document, ASCII text, with very long lines (22244)
Size
28 kB (27553 bytes)
Hash
e78eaa4447a7e7b819cb02746b47d1c1
f661e47f79ae2916e056e7a6ced5919f46f19aeb
0fc4ae04b13039504386e0f93adff98cb514afc7ef4fa2432d787c7c311adbcf

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://telegurm.mobi/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 09 Jun 2025 11:18:02 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
content-security-policy: default-src 'none'; script-src 'nonce-4cB0ucxFfUa9Pxfp' 'unsafe-eval'; script-src-attr 'none'; worker-src blob:; style-src 'unsafe-inline'; img-src 'self'; connect-src 'self'; frame-src 'self' blob:; child-src 'self' blob:; form-action 'none'; base-uri 'self'; sandbox allow-same-origin allow-scripts allow-popups allow-forms
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
origin-agent-cluster: ?1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
referrer-policy: same-origin
document-policy: js-profiling
priority: u=4,i=?0
server: cloudflare
cf-ray: 94d039dc1b560b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/d/94d039dc1b560b55/1749467883351/0duZYUyxGl2RAf_

104.18.95.41

200 OK

169 B

URL GET
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/d/94d039dc1b560b55/1749467883351/0duZYUyxGl2RAf_
IP
104.18.95.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/
Certificate
IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT

File type
PNG image data, 65 x 12, 8-bit/color RGBA, non-interlaced
Size
169 B (169 bytes)
Hash
089aeb9d0eabbe1dfaa11f621e751427
299c3dd89001cd14bd1ceb3bacd5cd346d205dc7
1cbfa527f77211579895b8b6b21bf49799cf9cf8b015fe2a2c4bbd4ce3b715b7

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/d/94d039dc1b560b55/1749467883351/0duZYUyxGl2RAf_ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 09 Jun 2025 11:18:07 GMT
content-type: image/png
content-length: 169
priority: u=4,i=?0
server: cloudflare
cf-ray: 94d039fa5fda0b55-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET telegurm.mobi/k/

172.67.182.40

403 Forbidden

5.0 kB

URL User Request GET
telegurm.mobi/k/
IP
172.67.182.40:80
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (396)
Size
5.0 kB (4987 bytes)
Hash
490fae93109138ea3f9aef08b45e84df
870cbc6b7bb20a84fb9208549fe30cfcfea118fa
e330328c1a1d94078443f2880101aab4b5fdfbd9d269f3e77a15c7a40c7198ba

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /k/ HTTP/1.1
Host: telegurm.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Date: Mon, 09 Jun 2025 11:18:02 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=E4%2Fr2Czbz6V8jxcCrXNS4yUiucgH6fJ65g4O8TSJDeey0PQI6mke2QR5Yc38iIT7Xa5uBCbGeSOUvPmU2JfrE8JQwwSXNVHRHXLw"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Content-Encoding: gzip
Server: cloudflare
CF-RAY: 94d039d9290e56c9-OSL
alt-svc: h2=":443"; ma=60

GET telegurm.mobi/cdn-cgi/images/icon-exclamation.png?1376755637

172.67.182.40

200 OK

452 B

URL GET
telegurm.mobi/cdn-cgi/images/icon-exclamation.png?1376755637
IP
172.67.182.40:80
ASN
#13335 CLOUDFLARENET

Requested by
http://telegurm.mobi/k/

File type
PNG image data, 54 x 54, 8-bit colormap, non-interlaced
Size
452 B (452 bytes)
Hash
c33de66281e933259772399d10a6afe8
b9f9d500f8814381451011d4dcf59cd2d90ad94f
f1591a5221136c49438642155691ae6c68e25b7241f3d7ebe975b09a77662016

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/images/icon-exclamation.png?1376755637 HTTP/1.1
Host: telegurm.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://telegurm.mobi/cdn-cgi/styles/cf.errors.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 09 Jun 2025 11:18:02 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=oLnzkUK6I96SlVOXz9uxyxifPAPvII9gxE9WMFn6EZjtv6XsIVotGApFrNCTofUP9VzzsNfr14q8rpu7vt0IhDbm2PsTrL2FCoMp"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 94d039da5a6e56c9-OSL

GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1

104.18.95.41

200 OK

86 B

URL GET
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1
IP
104.18.95.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/
Certificate
IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT

File type
PNG image data, 2 x 2, 8-bit/color RGBA, non-interlaced
Size
86 B (86 bytes)
Hash
70c202196187ab3c11b4e094c20c6de1
9c52b959e74aee9d79cbc9f35d1f9f65a3b8c863
6255b9231d09ebe6aa1ac19ba46bdd81f3df58989c9ef2e11d6cd6e2e7b21643

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 09 Jun 2025 11:18:02 GMT
content-type: image/png
content-length: 86
priority: u=4,i=?0
server: cloudflare
cf-ray: 94d039dcabbd0b55-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=94d039dc1b560b55&lang=auto

104.18.95.41

200 OK

141 kB

URL GET
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=94d039dc1b560b55&lang=auto
IP
104.18.95.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/
Certificate
IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
141 kB (140807 bytes)
Hash
012f0cb667415b2a4e1b4d4499d3d32e
95f1dcb3f682d0bc4ffa0c296048dbfa29629468
e36a9b804eedda243816b242358bb3aeb0fd058fe16a802d55c6372628bd2250

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=94d039dc1b560b55&lang=auto HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/4i3n2/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 09 Jun 2025 11:18:03 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
priority: u=3,i=?0
server: cloudflare
cf-ray: 94d039dccbd00b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (46)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML