Report - favefreeporn.com/tube/hot-babe-gina-gerson-public-sex-in-train

Report Overview

Visitedpublic

2024-09-04 07:54:11

Tags

Submit Tags

URL

favefreeporn.com/tube/hot-babe-gina-gerson-public-sex-in-train

Finishing URL

t.me/wcoin_tapbot?start=NTczMTUzNjY2OA==abratb

IP / ASN

The Netherlands

194.187.99.227

#35415 Webzilla B.V.

Title

Telegram: Contact @wcoin_tapbot

Detections

urlquery

0

Network Intrusion Detection

1

Threat Detection Systems

0

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
o.pki.goog	unknown	2016-06-13	2024-04-24 13:44:57	2024-09-03 18:13:19	662 B	1.4 kB	142.250.74.67
cdn5.cdn-telegram.org	unknown	2023-11-04	2023-11-04 23:07:09	2024-09-03 19:51:45	771 B	11 kB	34.111.108.175
telegram.org	5408	2003-12-15	2013-12-18 14:14:30	2024-09-03 19:51:33	4.0 kB	434 kB	149.154.167.99
r11.o.lencr.org	unknown	2020-06-29	2024-06-07 07:43:57	2024-09-03 18:12:05	981 B	2.7 kB	23.36.77.32
t.me	6552	2010-05-20	2015-06-29 21:03:15	2024-09-03 19:51:44	502 B	12 kB	149.154.167.99
favefreeporn.com	unknown	2014-06-16	2017-01-21 07:23:37	2023-10-29 02:05:24	518 B	12 kB	194.187.99.227
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-09-03 18:12:24	1.6 kB	4.4 kB	23.33.119.57
bratsorry.com	unknown	2022-07-07	2022-07-07 12:55:23	2024-05-28 21:17:16	575 B	4.9 kB	172.67.142.12

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-09-04 07:53:46	low	Client IP	149.154.167.99	ET INFO Observed Telegram Domain (t .me in TLS SNI)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (4)

	URL	From	Size	First Seen	Last Seen
	t.me/wcoin_tapbot?start=NTczMTUzNjY2OA==abratb	ScriptElement	240 B	2024-09-04	2024-09-19
URL t.me/wcoin_tapbot?start=NTczMTUzNjY2OA==abratb IP / ASN 149.154.167.99 #62041 Telegram Messenger Inc Introduced by ScriptElement Embedded true Resource Info First Seen 2024-09-04 Last Seen 2024-09-19 Times Seen 3 Size 240 B (240 bytes) MD5 be706aab99de327606aa1366c62a16d9 SHA1 330c5d98299e714d574f618968b318e2ffef33f3 SHA256 b16e10e6e307579551dd208e038b989314b4cd4914d605442d5c263c19569a7b Format Code Loading...

	t.me/wcoin_tapbot?start=NTczMTUzNjY2OA==abratb	ScriptElement	193 B	2023-03-07	2025-08-01
URL t.me/wcoin_tapbot?start=NTczMTUzNjY2OA==abratb IP / ASN 149.154.167.99 #62041 Telegram Messenger Inc Introduced by ScriptElement Embedded true Resource Info First Seen 2023-03-07 Last Seen 2025-08-01 Times Seen 54588 Size 193 B (193 bytes) MD5 9c629a0c52a2afad699d260f673481fd SHA1 a4fd0ed3e5daa31480eb6de0faa5d442f015cbf6 SHA256 ea0d804370930ee958af535ce56cddf1dda419bdc676315ae8af0fbb4c733471 Format Code Loading...

	t.me/wcoin_tapbot?start=NTczMTUzNjY2OA==abratb	ScriptElement	1.3 kB	2024-09-04	2024-09-19
URL t.me/wcoin_tapbot?start=NTczMTUzNjY2OA==abratb IP / ASN 149.154.167.99 #62041 Telegram Messenger Inc Introduced by ScriptElement Embedded true Resource Info First Seen 2024-09-04 Last Seen 2024-09-19 Times Seen 3 Size 1.3 kB (1337 bytes) MD5 0c6dcc0951fe2386aae8cc10255bbe4b SHA1 29c2d2cc0fe45428fb1701514a43464df09ebfa8 SHA256 9b6cc7cf5e824aae1fc78b0f65fe19e12af24c61b5589ad2e25fe4daa813d735 Format Code Loading...

	telegram.org/js/tgwallpaper.min.js?3	ScriptElement	3.0 kB	2023-03-07	2025-08-01
URL telegram.org/js/tgwallpaper.min.js?3 IP / ASN 149.154.167.99 #62041 Telegram Messenger Inc Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-01 Times Seen 58733 Size 3.0 kB (2979 bytes) MD5 2b89d34702716a8ad2cc3977718f53a3 SHA1 04406ebd6a9e2ce79dbac5e5048cfe1384e4574a SHA256 2031e418ee10af8110729b3f327b968462fc0a9d8d1da095387bb472ccd0dee6 Format Code Loading...

HTTP Transactions (23)

	URL	IP	Response	Size
	r10.o.lencr.org/	23.33.119.57		504 B
URL r10.o.lencr.org/ IP / ASN 23.33.119.57 #20940 Akamai International B.V. Requested byN/A Resource Info File typedata First Seen2024-09-03 Last Seen2024-09-19 Times Seen28107 Size504 B (504 bytes) MD58d2e6150f7d0845dc26f5bd5cd6f28dd SHA16aad5091620585a5f76065c1888456ee70b88257 SHA256ed538ea400323f4c987f91c0b0afc79a8526b62f7aa317dd62bd107cb37850a2 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "ED538EA400323F4C987F91C0B0AFC79A8526B62F7AA317DD62BD107CB37850A2" Last-Modified: Tue, 03 Sep 2024 09:19:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13717 Expires: Wed, 04 Sep 2024 11:42:22 GMT Date: Wed, 04 Sep 2024 07:53:45 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.33.119.57		504 B
URL r10.o.lencr.org/ IP / ASN 23.33.119.57 #20940 Akamai International B.V. Requested byN/A Resource Info File typedata First Seen2024-09-02 Last Seen2024-09-19 Times Seen35846 Size504 B (504 bytes) MD566fbf7f95cb55f388373a20d4b1a736e SHA1afc34259758a563362367848629ff7639982e1fb SHA25641c00088afc20571f6a0c6998324d9517346256ac33696dc706192ec606fe7a7 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "41C00088AFC20571F6A0C6998324D9517346256AC33696DC706192EC606FE7A7" Last-Modified: Mon, 02 Sep 2024 12:20:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9991 Expires: Wed, 04 Sep 2024 10:40:16 GMT Date: Wed, 04 Sep 2024 07:53:45 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.33.119.57		504 B
URL r10.o.lencr.org/ IP / ASN 23.33.119.57 #20940 Akamai International B.V. Requested byN/A Resource Info File typedata First Seen2024-09-03 Last Seen2024-09-19 Times Seen17078 Size504 B (504 bytes) MD51f0091b166a0138433eabf08a4530e4a SHA1769d1eeaefb4987198c821ea98e06ea8ba0de215 SHA2562eff28e3e6829bf2cfcbc417fd76313d5b5e8ba8a3f0f0de6a5b5cdc2888e7e5 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "2EFF28E3E6829BF2CFCBC417FD76313D5B5E8BA8A3F0F0DE6A5B5CDC2888E7E5" Last-Modified: Mon, 02 Sep 2024 14:34:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7902 Expires: Wed, 04 Sep 2024 10:05:27 GMT Date: Wed, 04 Sep 2024 07:53:45 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.33.119.57		504 B
URL r10.o.lencr.org/ IP / ASN 23.33.119.57 #20940 Akamai International B.V. Requested byN/A Resource Info File typedata First Seen2024-09-02 Last Seen2024-09-19 Times Seen22244 Size504 B (504 bytes) MD5cabaaa7c3e6a621cc5836be05eee4924 SHA1c4bc6288aed0597ff7ae2dbc5aea340b6c9636b8 SHA2562b2a41201a3881bd029ab7161be291b23128d5952e5959092607b98c951fa18c HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "2B2A41201A3881BD029AB7161BE291B23128D5952E5959092607B98C951FA18C" Last-Modified: Mon, 02 Sep 2024 14:33:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9465 Expires: Wed, 04 Sep 2024 10:31:30 GMT Date: Wed, 04 Sep 2024 07:53:45 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.33.119.27		504 B
URL r10.o.lencr.org/ IP / ASN 23.33.119.27 #20940 Akamai International B.V. Requested byN/A Resource Info File typedata First Seen2024-09-19 Last Seen2024-09-19 Times Seen2 Size504 B (504 bytes) MD5159f8e9efa009b023a46e0f8399c4275 SHA1f41b6b8056cbb72383e4e4c43a664bec882a14c4 SHA256a278ca614af05a91c78e0709b4d1e9a43ff8762a2e398a8b491abbc6b29df623 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "A278CA614AF05A91C78E0709B4D1E9A43FF8762A2E398A8B491ABBC6B29DF623" Last-Modified: Mon, 02 Sep 2024 17:05:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21600 Expires: Wed, 04 Sep 2024 13:53:45 GMT Date: Wed, 04 Sep 2024 07:53:45 GMT Connection: keep-alive`

	GET bratsorry.com/b/?h=ZmF2ZWZyZWVwb3JuLmNvbQ%3D%3D&r=&u=L3R1YmUvaG90LWJhYmUtZ2luYS1nZXJzb24tcHVibGljLXNleC1pbi10cmFpbg%3D%3D	172.67.142.12	302 Found	4.2 kB
URL bratsorry.com/b/?h=ZmF2ZWZyZWVwb3JuLmNvbQ%3D%3D&r=&u=L3R1YmUvaG90LWJhYmUtZ2luYS1nZXJzb24tcHVibGljLXNleC1pbi10cmFpbg%3D%3D IP / ASN 172.67.142.12 #13335 CLOUDFLARENET Requested byN/A Resource Info File typegzip compressed data, from Unix First Seen2024-09-19 Last Seen2024-09-19 Times Seen1 Size4.2 kB (4224 bytes) MD5a170f6a694641162676ffd0c8270055d SHA134114e7bcf3db07881de26bf9384a055b1dc574b SHA256de91b0aa5a8f693eefddf5dec76c56039e8783b26b59c5c861588f8cc1d43ed3 Certificate Info IssuerGoogle Trust Services Subjectbratsorry.com FingerprintB3:4F:F8:E6:15:5D:EA:DF:FD:EA:80:C9:B8:25:C4:30:89:40:AE:B5 ValidityFri, 16 Aug 2024 21:22:31 GMT - Thu, 14 Nov 2024 21:22:30 GMT HTTP Headers GET /b/?h=ZmF2ZWZyZWVwb3JuLmNvbQ%3D%3D&r=&u=L3R1YmUvaG90LWJhYmUtZ2luYS1nZXJzb24tcHVibGljLXNleC1pbi10cmFpbg%3D%3D HTTP/1.1 Host: bratsorry.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found date: Wed, 04 Sep 2024 07:53:46 GMT content-type: text/html; charset=UTF-8 location: https://t.me/wcoin_tapbot?start=NTczMTUzNjY2OA==abratb set-cookie: ads=true; expires=Tue, 19-Jan-2038 03:14:07 GMT; Max-Age=422047221 cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6w3rvh59CmV736Nf001d%2FYF5gmD5hTVsSkmnKxqZ1qsB04K8vP2APZOm4AAHhx8WyZy2Kgqg6Kxzx0CdMoPh5WrXvIvSaKo%2FkFUlCzqk0qE6DoaC%2BE8TYuDs8rLA4zOW"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8bdc685f189e569d-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	o.pki.goog/s/wr3/KO8	142.250.74.67		471 B
URL o.pki.goog/s/wr3/KO8 IP / ASN 142.250.74.67 #15169 GOOGLE Requested byN/A Resource Info File typedata First Seen2024-09-03 Last Seen2024-09-19 Times Seen9 Size471 B (471 bytes) MD5b9e83817df63a74621d51ec9e70fb87b SHA18cce49d191135858c8a5d7ab7d58fbe1c76a778b SHA25628aa140f7dfafbe42618451dca7371fd9e0d15cb9d08c460611093000a8e46be HTTP Headers `POST /s/wr3/KO8 HTTP/1.1 Host: o.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 04 Sep 2024 07:53:46 GMT Cache-Control: public, max-age=14400 Server: scaffolding on HTTPServer2 Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	GET cdn5.cdn-telegram.org/file/if2BuLBYDhVCufh1Su2vVTK8R9lMaTaAZwN_GQVoM5X8pA8VQ3DAXJfOrxOHfm0kkoAKvPU5XclF1w5Z-a3DTvmifcnjcmeMOtO34pMbRXOr_2hT2wh4C0-xTo8gFHPwXHcSQ0n8FkeZ7IGugPyfbUOmzgUnDIhqApOvmL8-lka4_hc4u8RGsbOMSg2zixuHmhgiOKilap5FkUu8thD21gYZcu69cpEv338t4c45t1qr4aK-oFYgvw9lCQ27kedk4q2sCPr8-WixDmDIGJf7WUunZ_fgXcByZUKWS3Iv6tCvuWPUNZ7gT5kWvL4xkkZOKiKJZNGxxTA7iBU8r3jtgA.jpg	34.111.108.175	200 OK	10 kB
URL cdn5.cdn-telegram.org/file/if2BuLBYDhVCufh1Su2vVTK8R9lMaTaAZwN_GQVoM5X8pA8VQ3DAXJfOrxOHfm0kkoAKvPU5XclF1w5Z-a3DTvmifcnjcmeMOtO34pMbRXOr_2hT2wh4C0-xTo8gFHPwXHcSQ0n8FkeZ7IGugPyfbUOmzgUnDIhqApOvmL8-lka4_hc4u8RGsbOMSg2zixuHmhgiOKilap5FkUu8thD21gYZcu69cpEv338t4c45t1qr4aK-oFYgvw9lCQ27kedk4q2sCPr8-WixDmDIGJf7WUunZ_fgXcByZUKWS3Iv6tCvuWPUNZ7gT5kWvL4xkkZOKiKJZNGxxTA7iBU8r3jtgA.jpg IP / ASN 34.111.108.175 #396982 GOOGLE-CLOUD-PLATFORM Requested byhttps://t.me/wcoin_tapbot?start=NTczMTUzNjY2OA==abratb Resource Info File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x320, components 3 First Seen2024-06-16 Last Seen2024-10-20 Times Seen8 Size10 kB (9981 bytes) MD54fedbd2e10431b8aaf4ac653cc8e4d8e SHA10c2e0172d381506ef9a24b0e5957f339f77aa9c6 SHA256e1a0b30de047b40f3e66cb26ca0c3ea5469408a695d9e79528a26975371bd631 Certificate Info IssuerGoogle Trust Services Subjectcdn1.cdn-telegram.org Fingerprint09:8D:C5:88:5C:51:C9:57:87:D1:8D:86:7E:67:FA:2B:6B:4A:10:03 ValidityWed, 21 Aug 2024 10:39:42 GMT - Tue, 19 Nov 2024 11:30:55 GMT HTTP Headers GET /file/if2BuLBYDhVCufh1Su2vVTK8R9lMaTaAZwN_GQVoM5X8pA8VQ3DAXJfOrxOHfm0kkoAKvPU5XclF1w5Z-a3DTvmifcnjcmeMOtO34pMbRXOr_2hT2wh4C0-xTo8gFHPwXHcSQ0n8FkeZ7IGugPyfbUOmzgUnDIhqApOvmL8-lka4_hc4u8RGsbOMSg2zixuHmhgiOKilap5FkUu8thD21gYZcu69cpEv338t4c45t1qr4aK-oFYgvw9lCQ27kedk4q2sCPr8-WixDmDIGJf7WUunZ_fgXcByZUKWS3Iv6tCvuWPUNZ7gT5kWvL4xkkZOKiKJZNGxxTA7iBU8r3jtgA.jpg HTTP/1.1 Host: cdn5.cdn-telegram.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://t.me/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx/1.18.0 content-length: 9981 access-control-allow-origin: * x-content-type-options: nosniff content-security-policy: default-src 'none'; sandbox x-frame-options: DENY x-xss-protection: 1; mode=block access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length accept-ranges: bytes, bytes strict-transport-security: max-age=31536000; includeSubDomains; preload via: 1.1 google date: Wed, 04 Sep 2024 06:50:46 GMT etag: "f330a5de1be5f9dd6dadd5eb260ec885dbf0cabb" content-type: image/jpeg age: 3780 cache-control: max-age=3600,public alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	o.pki.goog/s/wr3/KO8	142.250.74.67		471 B
URL o.pki.goog/s/wr3/KO8 IP / ASN 142.250.74.67 #15169 GOOGLE Requested byN/A Resource Info File typedata First Seen2024-09-03 Last Seen2024-09-19 Times Seen9 Size471 B (471 bytes) MD5b9e83817df63a74621d51ec9e70fb87b SHA18cce49d191135858c8a5d7ab7d58fbe1c76a778b SHA25628aa140f7dfafbe42618451dca7371fd9e0d15cb9d08c460611093000a8e46be HTTP Headers `POST /s/wr3/KO8 HTTP/1.1 Host: o.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 04 Sep 2024 07:53:46 GMT Cache-Control: public, max-age=14400 Server: scaffolding on HTTPServer2 Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	GET telegram.org/fonts/Roboto/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2	149.154.167.99	200 OK	11 kB
URL telegram.org/fonts/Roboto/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 IP / ASN 149.154.167.99 #62041 Telegram Messenger Inc Requested byhttps://t.me/wcoin_tapbot?start=NTczMTUzNjY2OA==abratb Resource Info File typeWeb Open Font Format (Version 2), TrueType, length 11028, version 1.0 First Seen2023-04-05 Last Seen2025-08-02 Times Seen63313 Size11 kB (11028 bytes) MD51f6d3cf6d38f25d83d95f5a800b8cac3 SHA1279f300ca2cbbdf9f5036ef2f438607fbf377daa SHA256796de064b8d80eba7ccacb8ba67d77fdbcdf4b385c844645d452c24537b3108f Certificate Info IssuerGoDaddy.com, Inc. Subject.telegram.org FingerprintC8:B7:84:85:FF:8F:0B:CA:9A:D6:E7:3E:81:F1:1E:94:39:D1:11:0A ValiditySat, 10 Aug 2024 13:33:14 GMT - Thu, 11 Sep 2025 13:33:14 GMT HTTP Headers `GET /fonts/Roboto/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1 Host: telegram.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://t.me DNT: 1 Connection: keep-alive Referer: https://telegram.org/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 date: Wed, 04 Sep 2024 07:53:46 GMT content-type: application/octet-stream content-length: 11028 last-modified: Thu, 20 Oct 2022 11:05:33 GMT etag: "63512b7d-2b14" expires: Sun, 08 Sep 2024 07:53:46 GMT cache-control: max-age=345600 access-control-allow-origin: accept-ranges: bytes X-Firefox-Spdy: h2`

	GET telegram.org/fonts/Roboto/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2	149.154.167.99	200 OK	11 kB
URL telegram.org/fonts/Roboto/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2 IP / ASN 149.154.167.99 #62041 Telegram Messenger Inc Requested byhttps://t.me/wcoin_tapbot?start=NTczMTUzNjY2OA==abratb Resource Info File typeWeb Open Font Format (Version 2), TrueType, length 11040, version 1.0 First Seen2023-04-05 Last Seen2025-08-02 Times Seen58395 Size11 kB (11040 bytes) MD55e22a46c04d947a36ea0cad07afcc9e1 SHA16091d981c2a4ee975c7f6b56186ee698040bb804 SHA2560f53e8b0a717ca4ce313eec62b90d41db62c2f4946259a65c93bf8e84c5b0c44 Certificate Info IssuerGoDaddy.com, Inc. Subject.telegram.org FingerprintC8:B7:84:85:FF:8F:0B:CA:9A:D6:E7:3E:81:F1:1E:94:39:D1:11:0A ValiditySat, 10 Aug 2024 13:33:14 GMT - Thu, 11 Sep 2025 13:33:14 GMT HTTP Headers GET /fonts/Roboto/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2 HTTP/1.1 Host: telegram.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://t.me DNT: 1 Connection: keep-alive Referer: https://telegram.org/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 date: Wed, 04 Sep 2024 07:53:46 GMT content-type: application/octet-stream content-length: 11040 last-modified: Thu, 20 Oct 2022 11:05:33 GMT etag: "63512b7d-2b20" expires: Sun, 08 Sep 2024 07:53:46 GMT cache-control: max-age=345600 access-control-allow-origin: accept-ranges: bytes X-Firefox-Spdy: h2`

	GET telegram.org/img/apple-touch-icon.png	149.154.167.99	200 OK	5.6 kB
URL telegram.org/img/apple-touch-icon.png IP / ASN 149.154.167.99 #62041 Telegram Messenger Inc Requested byhttps://t.me/wcoin_tapbot?start=NTczMTUzNjY2OA==abratb Resource Info File typePNG image data, 180 x 180, 8-bit/color RGB, non-interlaced First Seen2023-05-02 Last Seen2025-08-01 Times Seen60330 Size5.6 kB (5644 bytes) MD5295ccdb03006b8dfef45090dafbd46ac SHA1491ab660270e47cbac6a5731c51cca71c1c1b2b1 SHA256a51d667d4262047c23e3a2a8aac3b46dc8a58c686cc013f2354011c07bf22cf3 Certificate Info IssuerGoDaddy.com, Inc. Subject.telegram.org FingerprintC8:B7:84:85:FF:8F:0B:CA:9A:D6:E7:3E:81:F1:1E:94:39:D1:11:0A ValiditySat, 10 Aug 2024 13:33:14 GMT - Thu, 11 Sep 2025 13:33:14 GMT HTTP Headers `GET /img/apple-touch-icon.png HTTP/1.1 Host: telegram.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://t.me/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 date: Wed, 04 Sep 2024 07:53:47 GMT content-type: image/png content-length: 5644 last-modified: Thu, 21 Apr 2022 13:47:47 GMT etag: "62616083-160c" expires: Sun, 08 Sep 2024 07:53:47 GMT cache-control: max-age=345600 access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2`

	r11.o.lencr.org/	23.36.77.32		504 B
URL r11.o.lencr.org/ IP / ASN 23.36.77.32 #20940 Akamai International B.V. Requested byN/A Resource Info File typedata First Seen2024-09-02 Last Seen2024-09-19 Times Seen21388 Size504 B (504 bytes) MD5c96a4972e341191f93e963880196f8e1 SHA18318aa6dcbdababe8728023ec9ef3aaac10917a9 SHA256dd8f73d55d492ad4e3fc3915c05ecfc6883f124c050dded51f4e43292e6b8c2a HTTP Headers `POST / HTTP/1.1 Host: r11.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "DD8F73D55D492AD4E3FC3915C05ECFC6883F124C050DDED51F4E43292E6B8C2A" Last-Modified: Mon, 02 Sep 2024 14:38:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19653 Expires: Wed, 04 Sep 2024 13:21:20 GMT Date: Wed, 04 Sep 2024 07:53:47 GMT Connection: keep-alive`

	r11.o.lencr.org/	23.36.77.32		504 B
URL r11.o.lencr.org/ IP / ASN 23.36.77.32 #20940 Akamai International B.V. Requested byN/A Resource Info File typedata First Seen2024-09-02 Last Seen2024-09-19 Times Seen21388 Size504 B (504 bytes) MD5c96a4972e341191f93e963880196f8e1 SHA18318aa6dcbdababe8728023ec9ef3aaac10917a9 SHA256dd8f73d55d492ad4e3fc3915c05ecfc6883f124c050dded51f4e43292e6b8c2a HTTP Headers `POST / HTTP/1.1 Host: r11.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "DD8F73D55D492AD4E3FC3915C05ECFC6883F124C050DDED51F4E43292E6B8C2A" Last-Modified: Mon, 02 Sep 2024 14:38:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19653 Expires: Wed, 04 Sep 2024 13:21:20 GMT Date: Wed, 04 Sep 2024 07:53:47 GMT Connection: keep-alive`

	r11.o.lencr.org/	23.36.77.32		504 B
URL r11.o.lencr.org/ IP / ASN 23.36.77.32 #20940 Akamai International B.V. Requested byN/A Resource Info File typedata First Seen2024-09-02 Last Seen2024-09-19 Times Seen21388 Size504 B (504 bytes) MD5c96a4972e341191f93e963880196f8e1 SHA18318aa6dcbdababe8728023ec9ef3aaac10917a9 SHA256dd8f73d55d492ad4e3fc3915c05ecfc6883f124c050dded51f4e43292e6b8c2a HTTP Headers `POST / HTTP/1.1 Host: r11.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "DD8F73D55D492AD4E3FC3915C05ECFC6883F124C050DDED51F4E43292E6B8C2A" Last-Modified: Mon, 02 Sep 2024 14:38:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19653 Expires: Wed, 04 Sep 2024 13:21:20 GMT Date: Wed, 04 Sep 2024 07:53:47 GMT Connection: keep-alive`

	GET telegram.org/img/website_icon.svg?4	149.154.167.99	200 OK	4.9 kB
URL telegram.org/img/website_icon.svg?4 IP / ASN 149.154.167.99 #62041 Telegram Messenger Inc Requested byhttps://t.me/wcoin_tapbot?start=NTczMTUzNjY2OA==abratb Resource Info File typegzip compressed data, max speed, from Unix First Seen2024-09-19 Last Seen2024-09-19 Times Seen1 Size4.9 kB (4935 bytes) MD58863bdd0a63734b18cf603b8362f2e72 SHA1e679f1de334125d0ddc1102f653161b28f12edbe SHA2565fb06cd152a0b2b8c138ab4ce7a8a6b22ba52695f46963aa8a3bc00a27c52915 Certificate Info IssuerGoDaddy.com, Inc. Subject.telegram.org FingerprintC8:B7:84:85:FF:8F:0B:CA:9A:D6:E7:3E:81:F1:1E:94:39:D1:11:0A ValiditySat, 10 Aug 2024 13:33:14 GMT - Thu, 11 Sep 2025 13:33:14 GMT HTTP Headers `GET /img/website_icon.svg?4 HTTP/1.1 Host: telegram.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://t.me/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 date: Wed, 04 Sep 2024 07:53:47 GMT content-type: image/svg+xml last-modified: Mon, 20 Jul 2020 20:41:37 GMT etag: W/"5f160181-768" expires: Sun, 08 Sep 2024 07:53:47 GMT cache-control: max-age=345600 access-control-allow-origin: * content-encoding: gzip X-Firefox-Spdy: h2`

	GET t.me/wcoin_tapbot?start=NTczMTUzNjY2OA==abratb	149.154.167.99	200 OK	12 kB
URL t.me/wcoin_tapbot?start=NTczMTUzNjY2OA==abratb IP / ASN 149.154.167.99 #62041 Telegram Messenger Inc Requested byN/A Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5606025 Size12 kB (11455 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerGoDaddy.com, Inc. Subject.t.me FingerprintD7:CC:2A:92:7B:DC:AE:6A:D7:92:51:20:49:AD:3B:AC:F9:27:F8:16 ValidityFri, 06 Oct 2023 19:50:31 GMT - Wed, 06 Nov 2024 19:50:31 GMT HTTP Headers `GET /wcoin_tapbot?start=NTczMTUzNjY2OA==abratb HTTP/1.1 Host: t.me User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx/1.18.0 date: Wed, 04 Sep 2024 07:53:46 GMT content-type: text/html; charset=utf-8 content-length: 4224 set-cookie: stel_ssid=89d1a551be0a55450a_13189400473347707288; expires=Thu, 05 Sep 2024 07:53:46 GMT; path=/; samesite=None; secure; HttpOnly pragma: no-cache cache-control: no-store x-frame-options: ALLOW-FROM https://web.telegram.org content-security-policy: frame-ancestors https://web.telegram.org content-encoding: gzip strict-transport-security: max-age=35768000 X-Firefox-Spdy: h2

	GET telegram.org/css/telegram.css?240	149.154.167.99	200 OK	115 kB
URL telegram.org/css/telegram.css?240 IP / ASN 149.154.167.99 #62041 Telegram Messenger Inc Requested byhttps://t.me/wcoin_tapbot?start=NTczMTUzNjY2OA==abratb Resource Info File typeASCII text, with very long lines (1267) First Seen2024-08-02 Last Seen2024-09-28 Times Seen1071 Size115 kB (115173 bytes) MD5ac847f644cf61a35e802b48b4c8537ac SHA1637f9d85f21897e1b4854edda5d6b0d46864825d SHA25683b8f4380fd44f4f399db9be9b3dffec7957bd250fd26855eb4975f26df93946 Certificate Info IssuerGoDaddy.com, Inc. Subject.telegram.org FingerprintC8:B7:84:85:FF:8F:0B:CA:9A:D6:E7:3E:81:F1:1E:94:39:D1:11:0A ValiditySat, 10 Aug 2024 13:33:14 GMT - Thu, 11 Sep 2025 13:33:14 GMT HTTP Headers `GET /css/telegram.css?240 HTTP/1.1 Host: telegram.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://t.me/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx/1.18.0 date: Wed, 04 Sep 2024 07:53:46 GMT content-type: text/css last-modified: Fri, 02 Aug 2024 00:39:02 GMT etag: W/"66ac2aa6-1c1e5" expires: Sun, 08 Sep 2024 07:53:46 GMT cache-control: max-age=345600 strict-transport-security: max-age=31536000; includeSubDomains; preload content-encoding: gzip X-Firefox-Spdy: h2`

	GET telegram.org/js/tgwallpaper.min.js?3	149.154.167.99	200 OK	3.0 kB
URL telegram.org/js/tgwallpaper.min.js?3 IP / ASN 149.154.167.99 #62041 Telegram Messenger Inc Requested byhttps://t.me/wcoin_tapbot?start=NTczMTUzNjY2OA==abratb Resource Info File typeASCII text, with very long lines (2998), with no line terminators First Seen2023-04-05 Last Seen2025-04-06 Times Seen46726 Size3.0 kB (2979 bytes) MD5f03422dc797fd26a3834b1ec041128ed SHA1a6e88f4fe48b749c2b7360e8e004f64b6cfffb1a SHA256046ec6b7909d0ca5cc6ef271a1b57b2f2be0bd88e3495fd8c496f1524e8ffaac Certificate Info IssuerGoDaddy.com, Inc. Subject.telegram.org FingerprintC8:B7:84:85:FF:8F:0B:CA:9A:D6:E7:3E:81:F1:1E:94:39:D1:11:0A ValiditySat, 10 Aug 2024 13:33:14 GMT - Thu, 11 Sep 2025 13:33:14 GMT HTTP Headers `GET /js/tgwallpaper.min.js?3 HTTP/1.1 Host: telegram.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://t.me/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx/1.18.0 date: Wed, 04 Sep 2024 07:53:46 GMT content-type: application/javascript last-modified: Thu, 03 Mar 2022 19:57:25 GMT etag: W/"62211da5-ba3" expires: Sun, 08 Sep 2024 07:53:46 GMT cache-control: max-age=345600 strict-transport-security: max-age=31536000; includeSubDomains; preload content-encoding: gzip X-Firefox-Spdy: h2`

	GET favefreeporn.com/tube/hot-babe-gina-gerson-public-sex-in-train	194.187.99.227	302 Moved Temporarily	12 kB
URL favefreeporn.com/tube/hot-babe-gina-gerson-public-sex-in-train IP / ASN 194.187.99.227 #35415 Webzilla B.V. Requested byN/A Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5606025 Size12 kB (11455 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerLet's Encrypt Subjectfavefreeporn.com Fingerprint16:D2:92:F0:C8:DA:7F:4D:7C:17:34:5A:F8:9C:29:39:FB:80:5F:BB ValiditySat, 27 Jul 2024 04:55:40 GMT - Fri, 25 Oct 2024 04:55:39 GMT HTTP Headers GET /tube/hot-babe-gina-gerson-public-sex-in-train HTTP/1.1 Host: favefreeporn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 302 Moved Temporarily Server: nginx Date: Wed, 04 Sep 2024 07:53:46 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Set-Cookie: pageold=true; expires=Tue, 19-Jan-2038 03:14:07 GMT; Max-Age=422047221 Location: https://bratsorry.com/b/?h=ZmF2ZWZyZWVwb3JuLmNvbQ%3D%3D&r=&u=L3R1YmUvaG90LWJhYmUtZ2luYS1nZXJzb24tcHVibGljLXNleC1pbi10cmFpbg%3D%3D`

	GET telegram.org/css/font-roboto.css?1	149.154.167.99	200 OK	6.2 kB
URL telegram.org/css/font-roboto.css?1 IP / ASN 149.154.167.99 #62041 Telegram Messenger Inc Requested byhttps://t.me/wcoin_tapbot?start=NTczMTUzNjY2OA==abratb Resource Info File typeASCII text, with very long lines (6354), with no line terminators First Seen0001-01-01 Last Seen2025-04-06 Times Seen44551 Size6.2 kB (6166 bytes) MD5c06318a1f377e388b69b104b4cefa1a6 SHA1151f067aae997487880e573876f96b8d598e64db SHA2561a53363e667fffef8a82588191989d36e680b4d341c6b557e62bf207311a3d70 Certificate Info IssuerGoDaddy.com, Inc. Subject.telegram.org FingerprintC8:B7:84:85:FF:8F:0B:CA:9A:D6:E7:3E:81:F1:1E:94:39:D1:11:0A ValiditySat, 10 Aug 2024 13:33:14 GMT - Thu, 11 Sep 2025 13:33:14 GMT HTTP Headers `GET /css/font-roboto.css?1 HTTP/1.1 Host: telegram.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://t.me/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx/1.18.0 date: Wed, 04 Sep 2024 07:53:46 GMT content-type: text/css last-modified: Thu, 20 Oct 2022 11:05:33 GMT etag: W/"63512b7d-1816" expires: Sun, 08 Sep 2024 07:53:46 GMT cache-control: max-age=345600 strict-transport-security: max-age=31536000; includeSubDomains; preload content-encoding: gzip X-Firefox-Spdy: h2`

	GET telegram.org/css/bootstrap.min.css?3	149.154.167.99	200 OK	42 kB
URL telegram.org/css/bootstrap.min.css?3 IP / ASN 149.154.167.99 #62041 Telegram Messenger Inc Requested byhttps://t.me/wcoin_tapbot?start=NTczMTUzNjY2OA==abratb Resource Info File typeASCII text, with very long lines (42164) First Seen2023-04-07 Last Seen2025-08-01 Times Seen59691 Size42 kB (42523 bytes) MD5c2656e265ef58a9cc9f4b70b15da5fb9 SHA185c5ebdb89d4574d72688c2650d4b84b9b09770a SHA256f1d083ffaa644c708f11db29707aa57c19246e6d32643b03fee3f82c17b224b3 Certificate Info IssuerGoDaddy.com, Inc. Subject.telegram.org FingerprintC8:B7:84:85:FF:8F:0B:CA:9A:D6:E7:3E:81:F1:1E:94:39:D1:11:0A ValiditySat, 10 Aug 2024 13:33:14 GMT - Thu, 11 Sep 2025 13:33:14 GMT HTTP Headers `GET /css/bootstrap.min.css?3 HTTP/1.1 Host: telegram.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://t.me/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx/1.18.0 date: Wed, 04 Sep 2024 07:53:46 GMT content-type: text/css last-modified: Fri, 10 Nov 2017 17:54:14 GMT etag: W/"5a05e7c6-a61b" expires: Sun, 08 Sep 2024 07:53:46 GMT cache-control: max-age=345600 strict-transport-security: max-age=31536000; includeSubDomains; preload content-encoding: gzip X-Firefox-Spdy: h2`

	GET telegram.org/img/tgme/pattern.svg?1	149.154.167.99	200 OK	232 kB
URL telegram.org/img/tgme/pattern.svg?1 IP / ASN 149.154.167.99 #62041 Telegram Messenger Inc Requested byhttps://t.me/wcoin_tapbot?start=NTczMTUzNjY2OA==abratb Resource Info File typeSVG Scalable Vector Graphics image First Seen0001-01-01 Last Seen2025-08-01 Times Seen56167 Size232 kB (231706 bytes) MD5d0c22c6a97023d85ba6e644a41c44a5d SHA14284efb616c182da4450c123174ce0e81a322845 SHA256118add53487c02aaf5b5ab9f69380fa06717deb10492e14aaa487e3c62806ad4 Certificate Info IssuerGoDaddy.com, Inc. Subject.telegram.org FingerprintC8:B7:84:85:FF:8F:0B:CA:9A:D6:E7:3E:81:F1:1E:94:39:D1:11:0A ValiditySat, 10 Aug 2024 13:33:14 GMT - Thu, 11 Sep 2025 13:33:14 GMT HTTP Headers `GET /img/tgme/pattern.svg?1 HTTP/1.1 Host: telegram.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://telegram.org/css/telegram.css?240 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx/1.18.0 date: Wed, 04 Sep 2024 07:53:46 GMT content-type: image/svg+xml last-modified: Thu, 05 Jan 2023 17:52:04 GMT etag: W/"63b70e44-3891a" expires: Sun, 08 Sep 2024 07:53:46 GMT cache-control: max-age=345600 access-control-allow-origin: * content-encoding: gzip X-Firefox-Spdy: h2`