504 B IP
ASN #20940 Akamai International B.V.
Hash 1fc39f9a6ccc25867cc2924e625282d0
f859354fa7202cd2f2cbd279ad12ab0358c638d1
037bd31a93556f0a88d519cc4629ca3f8fcc94ffc357a71d34a133e5943c3b96
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "037BD31A93556F0A88D519CC4629CA3F8FCC94FFC357A71D34A133E5943C3B96"
Last-Modified: Thu, 01 Aug 2024 06:28:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16687
Expires: Sat, 03 Aug 2024 15:12:06 GMT
Date: Sat, 03 Aug 2024 10:33:59 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash 44e4b90088be23610d96d270d377406d
ce7ab232af453bb960a97435173b3ab09a376054
31567666bda7db348cd6e2ad94576da2c7240872f45e969fd6a52cf14440e95b
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "31567666BDA7DB348CD6E2AD94576DA2C7240872F45E969FD6A52CF14440E95B"
Last-Modified: Thu, 01 Aug 2024 06:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13065
Expires: Sat, 03 Aug 2024 14:11:44 GMT
Date: Sat, 03 Aug 2024 10:33:59 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash b84a2e6efef529bac3e0d5dd309babe7
b22b4d0e8f84859a83b85939ae4c77d16fde0c93
9ed1020ce84380273c514b5c14a8705879d8233acaae13b428063bc7b83a067b
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "9ED1020CE84380273C514B5C14A8705879D8233ACAAE13B428063BC7B83A067B"
Last-Modified: Thu, 01 Aug 2024 06:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13760
Expires: Sat, 03 Aug 2024 14:23:19 GMT
Date: Sat, 03 Aug 2024 10:33:59 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash 06f86a556a3bc0d04f36267a3081f07f
3ca01a6761c66a9434a2ee060e2cb4b685b0b9f8
e9d373f8bcb454c3fc0b4e4d3768e5104c7f4cad03145468f9d2c0ff89c08143
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "E9D373F8BCB454C3FC0B4E4D3768E5104C7F4CAD03145468F9D2C0FF89C08143"
Last-Modified: Thu, 01 Aug 2024 06:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14389
Expires: Sat, 03 Aug 2024 14:33:49 GMT
Date: Sat, 03 Aug 2024 10:34:00 GMT
Connection: keep-alive
GET uswr.hgwnru.top/d3dfd08/LyUqZ3w_b2Fjbn4/haSN0ciEjfEB-PSojQH5xKiR/leXhkZQ2
302 Found 814 B URL User Request GET HTTP/2 uswr.hgwnru.top/d3dfd08/LyUqZ3w_b2Fjbn4/haSN0ciEjfEB-PSojQH5xKiR/leXhkZQ2
IP
Certificate IssuerGoogle Trust Services
Subjecthgwnru.top
Fingerprint01:A3:D6:E9:81:A2:58:15:D1:B9:DD:7C:C4:73:2F:F5:C6:2E:E6:01
ValidityWed, 24 Jul 2024 18:38:14 GMT - Tue, 22 Oct 2024 18:38:13 GMT
Hash 1a50def5285069bd820444a0caad50ea
853080ce6185ae76e73799f2866bffc6a4a73c52
e067f83328ada3d1735afdbfe94d13088ef6be632e9f6155136f6420e1321f18
GET /d3dfd08/LyUqZ3w_b2Fjbn4/haSN0ciEjfEB-PSojQH5xKiR/leXhkZQ2 HTTP/1.1
Host: uswr.hgwnru.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ASP.NET_SessionId=2z354nuff3xdyqugxc4hdqji; RdStr=2z354nuff3xdyqugxc4hdqji
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Sat, 03 Aug 2024 10:34:00 GMT
content-type: text/html; charset=utf-8
cache-control: private
location: /
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2oif%2BF1rGnbD9Q0rtzsZ1wFlNsFyHXJmzWFbW7AButsnEN%2Bqh6%2FyZ1Lv0H1DrGwlmK%2BNoVT9B24gQbqfQk3ym0PRz9PBlWxFpt2HQDsHoWu7fOdxkUfON92NKHsh%2BPZD5nQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ad5a718ed5d5688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
504 B IP
ASN #20940 Akamai International B.V.
Hash 7b71bbce2c5e563fde3afb60497eb33b
ffe77143d7aae5b966b693211336919b872de46a
5d3fe5575b14f6f240e86c4c5065e8f3f79a6f20039efce544e7597166c1ae0f
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5D3FE5575B14F6F240E86C4C5065E8F3F79A6F20039EFCE544E7597166C1AE0F"
Last-Modified: Thu, 01 Aug 2024 06:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11182
Expires: Sat, 03 Aug 2024 13:40:23 GMT
Date: Sat, 03 Aug 2024 10:34:01 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash 7b71bbce2c5e563fde3afb60497eb33b
ffe77143d7aae5b966b693211336919b872de46a
5d3fe5575b14f6f240e86c4c5065e8f3f79a6f20039efce544e7597166c1ae0f
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5D3FE5575B14F6F240E86C4C5065E8F3F79A6F20039EFCE544E7597166C1AE0F"
Last-Modified: Thu, 01 Aug 2024 06:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11182
Expires: Sat, 03 Aug 2024 13:40:23 GMT
Date: Sat, 03 Aug 2024 10:34:01 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash 7b71bbce2c5e563fde3afb60497eb33b
ffe77143d7aae5b966b693211336919b872de46a
5d3fe5575b14f6f240e86c4c5065e8f3f79a6f20039efce544e7597166c1ae0f
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5D3FE5575B14F6F240E86C4C5065E8F3F79A6F20039EFCE544E7597166C1AE0F"
Last-Modified: Thu, 01 Aug 2024 06:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11182
Expires: Sat, 03 Aug 2024 13:40:23 GMT
Date: Sat, 03 Aug 2024 10:34:01 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash 7b71bbce2c5e563fde3afb60497eb33b
ffe77143d7aae5b966b693211336919b872de46a
5d3fe5575b14f6f240e86c4c5065e8f3f79a6f20039efce544e7597166c1ae0f
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5D3FE5575B14F6F240E86C4C5065E8F3F79A6F20039EFCE544E7597166C1AE0F"
Last-Modified: Thu, 01 Aug 2024 06:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11182
Expires: Sat, 03 Aug 2024 13:40:23 GMT
Date: Sat, 03 Aug 2024 10:34:01 GMT
Connection: keep-alive
GET uswr.hgwnru.top/favicon.ico
200 OK 15 kB URL GET HTTP/3 uswr.hgwnru.top/favicon.ico
IP
Certificate IssuerGoogle Trust Services
Subjecthgwnru.top
Fingerprint01:A3:D6:E9:81:A2:58:15:D1:B9:DD:7C:C4:73:2F:F5:C6:2E:E6:01
ValidityWed, 24 Jul 2024 18:38:14 GMT - Tue, 22 Oct 2024 18:38:13 GMT
File type MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Hash 3f0f72ed57a54b97cda500bcf0545efb
2f252619c18e729d98e16b96d37cd7cd567b38eb
67fbe8ef9020e5c776aadf6801a1fef8dc563e2e4dc9ddc740af8010c0c38943
GET /favicon.ico HTTP/1.1
Host: uswr.hgwnru.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uswr.hgwnru.top/
Cookie: ASP.NET_SessionId=2z354nuff3xdyqugxc4hdqji; RdStr=2z354nuff3xdyqugxc4hdqji
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 03 Aug 2024 10:34:01 GMT
content-type: image/x-icon
last-modified: Thu, 01 Aug 2024 10:57:54 GMT
etag: W/"f3c513a91e4da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ASTrfmIURjd3hjM9rDOP%2FsKA4jJQ%2FqmZ26a8dycUaqxa%2BLuzk4rKJtPOwayj6Os5nWy3SDjfKnxpzi3WU5A%2BlZProS5ZBtclmdsN47UpySUcjkb42JTKUYeeYGxetNydTSc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ad5a71ded31712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
404 Not Found 1.2 kB URL User Request GET HTTP/3 IP
Certificate IssuerGoogle Trust Services
Subjecthgwnru.top
Fingerprint01:A3:D6:E9:81:A2:58:15:D1:B9:DD:7C:C4:73:2F:F5:C6:2E:E6:01
ValidityWed, 24 Jul 2024 18:38:14 GMT - Tue, 22 Oct 2024 18:38:13 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (1241), with no line terminators
Hash 14fc8ed36d3358a2d4a9557d2b69f860
875918c5480201d7fd3a1c646600cc8e206d9afa
a5a5957109aeeeb74db86456a631d1a1d6667ccf5cc5744901c2210f8efacdd6
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET / HTTP/1.1
Host: uswr.hgwnru.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ASP.NET_SessionId=2z354nuff3xdyqugxc4hdqji; RdStr=2z354nuff3xdyqugxc4hdqji
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sat, 03 Aug 2024 10:34:00 GMT
content-type: text/html
cache-control: private
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=foz0yXahSklp2DciDsayFJ1JnSygYxmhFOOycZSmRMrRgnf6Wx2Y4P1G5uDugl%2FCFaNcIpAJVVspSx1KZbi4ActrmSVbBN%2BMZQ1Er%2F7Ech6vnRcDnZCJnjrDTPPDF2CqSk0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ad5a719f9d2712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
301 Moved Permanently 1.2 kB URL User Request GET HTTP/1.1 IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET / HTTP/1.1
Host: uswr.hgwnru.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: ASP.NET_SessionId=2z354nuff3xdyqugxc4hdqji; RdStr=2z354nuff3xdyqugxc4hdqji
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Aug 2024 10:34:00 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 03 Aug 2024 11:34:00 GMT
Location: https://uswr.hgwnru.top/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SGPgcGIYCJoOvUkQJGA0%2FmTxHV2lEbsE0s%2FhTfgoMk2eVR58SkWiNnI%2BMQMNLI39bZYtkaS4efAZ3NNPzdDvyK1egShLSjd0K%2BSl4E8%2Be8nak32HNP8ECTjk9AHZOctEMdg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8ad5a71c0a1956c0-OSL
alt-svc: h2=":443"; ma=60
404 Not Found 1.2 kB URL User Request GET HTTP/3 IP
Certificate IssuerGoogle Trust Services
Subjecthgwnru.top
Fingerprint01:A3:D6:E9:81:A2:58:15:D1:B9:DD:7C:C4:73:2F:F5:C6:2E:E6:01
ValidityWed, 24 Jul 2024 18:38:14 GMT - Tue, 22 Oct 2024 18:38:13 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (1241), with no line terminators
Hash 14fc8ed36d3358a2d4a9557d2b69f860
875918c5480201d7fd3a1c646600cc8e206d9afa
a5a5957109aeeeb74db86456a631d1a1d6667ccf5cc5744901c2210f8efacdd6
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET / HTTP/1.1
Host: uswr.hgwnru.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ASP.NET_SessionId=2z354nuff3xdyqugxc4hdqji; RdStr=2z354nuff3xdyqugxc4hdqji
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sat, 03 Aug 2024 10:34:01 GMT
content-type: text/html
cache-control: private
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aQY%2BvdhweU8CUzfdGnd0JrPuyXogoIRVKxKmDdrdE8jNB4pGB6m8tTVA795U%2F3jWvimtyQGYKCJzcrqbncYI8SL5kL64GIXmuKGjSYu%2FUQRsFNRaI9W0vTFgp1LaDoxu6qY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ad5a71c2bb0712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET uswr.hgwnru.top/?watch=3et2m&message=fa2be07cxm&meter=16&destination=53/552a7/i2uvix/wqi3rhawmjzcfvcn5ufnx5ct1ajxh/l/knwliua_zw2/17323c1ad/l2defi/nppypyesn-dd1xiw5axir4iw/nvxme/qjsnkqgukzq2/dd708/i24hyw/nxxmcl/firljhx4ew9lfl5kf/cu9kmkvjd8jxniqda2/abfa1/fml8y3/qqysqlknij...%20661%20...0ly3xnfcplfc9-esnacj/9ai29pyq2/7f9d423/YX5yJWNlJC9nIWUqXm/4jaSNAIXhkf/CQjdF5x/b34_eT1-JQ2/3744c/IXxAZGclfl5APz0heG/lxeWVldCojYyMvcm4k/JSFvfGEqfA2/ef4ad2/P3QqfG4leXhyXmk9JS/Rhb3FeJH5eZUAvKkB8/ISNjZ2VkJQ2
302 Found 1.2 kB URL User Request GET HTTP/2 uswr.hgwnru.top/?watch=3et2m&message=fa2be07cxm&meter=16&destination=53/552a7/i2uvix/wqi3rhawmjzcfvcn5ufnx5ct1ajxh/l/knwliua_zw2/17323c1ad/l2defi/nppypyesn-dd1xiw5axir4iw/nvxme/qjsnkqgukzq2/dd708/i24hyw/nxxmcl/firljhx4ew9lfl5kf/cu9kmkvjd8jxniqda2/abfa1/fml8y3/qqysqlknij...%20661%20...0ly3xnfcplfc9-esnacj/9ai29pyq2/7f9d423/YX5yJWNlJC9nIWUqXm/4jaSNAIXhkf/CQjdF5x/b34_eT1-JQ2/3744c/IXxAZGclfl5APz0heG/lxeWVldCojYyMvcm4k/JSFvfGEqfA2/ef4ad2/P3QqfG4leXhyXmk9JS/Rhb3FeJH5eZUAvKkB8/ISNjZ2VkJQ2
IP
Certificate IssuerGoogle Trust Services
Subjecthgwnru.top
Fingerprint01:A3:D6:E9:81:A2:58:15:D1:B9:DD:7C:C4:73:2F:F5:C6:2E:E6:01
ValidityWed, 24 Jul 2024 18:38:14 GMT - Tue, 22 Oct 2024 18:38:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?watch=3et2m&message=fa2be07cxm&meter=16&destination=53/552a7/i2uvix/wqi3rhawmjzcfvcn5ufnx5ct1ajxh/l/knwliua_zw2/17323c1ad/l2defi/nppypyesn-dd1xiw5axir4iw/nvxme/qjsnkqgukzq2/dd708/i24hyw/nxxmcl/firljhx4ew9lfl5kf/cu9kmkvjd8jxniqda2/abfa1/fml8y3/qqysqlknij...%20661%20...0ly3xnfcplfc9-esnacj/9ai29pyq2/7f9d423/YX5yJWNlJC9nIWUqXm/4jaSNAIXhkf/CQjdF5x/b34_eT1-JQ2/3744c/IXxAZGclfl5APz0heG/lxeWVldCojYyMvcm4k/JSFvfGEqfA2/ef4ad2/P3QqfG4leXhyXmk9JS/Rhb3FeJH5eZUAvKkB8/ISNjZ2VkJQ2 HTTP/1.1
Host: uswr.hgwnru.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 03 Aug 2024 10:34:00 GMT
content-type: text/html; charset=utf-8
cache-control: private
location: /d3dfd08/LyUqZ3w_b2Fjbn4/haSN0ciEjfEB-PSojQH5xKiR/leXhkZQ2
set-cookie: ASP.NET_SessionId=2z354nuff3xdyqugxc4hdqji; path=/; HttpOnly
RdStr=2z354nuff3xdyqugxc4hdqji; path=/
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dNU4VvO1prigxfKP0ZZICIHCv0Mo%2FDISE0fLbDgzHus2h%2BK7EAdD12IYwkiUif1JJF0nn1FPE8moKl6XCmdDiS4OG8dwZYQNStiIT0Fc2Dz%2FhLPH5Xdd7N7cHlssDy5OkyQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ad5a716fbab5688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
188.114.96.1
23.36.76.226