hd29.lordsfilm.cfd/templates/lordfilm-light/images/logo.png
104.21.28.116 2.2 kB URL hd29.lordsfilm.cfd/templates/lordfilm-light/images/logo.png
IP 104.21.28.116:0
File type PNG image data, 180 x 70, 8-bit/color RGBA, non-interlaced
Hash a2d0424581996b0fed6c5ec46b8203e9
8549cd580eccfa7681991236c2d505279e5937bd
ba9e3cfadf4d80cb473b39ccadfa7a6952ad6e2f382a74c59caafa6cdc30e408
GET /templates/lordfilm-light/images/logo.png HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/png
content-length: 2158
last-modified: Thu, 18 Jan 2024 22:01:41 GMT
etag: "65a99fc5-86e"
expires: Sat, 11 May 2024 16:07:06 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 8778
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g8ZGz%2FJNQE7ab7%2Brdm9OgGjozQN5EejRo3P3nc63Fuu2qONSSOb2G%2BRxz1hlN6RdApvC5wqBdI7HAzVRMUGu76KhXZDrxoC3yVDPmwHp2XoEjv6zIp82LcLiXBLnSDHzThZzjSM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c0476d86d569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689343276-760611906.jpg
104.21.28.116200 OK 15 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2023-07/1689343276-760611906.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 1c2dee86d723acf691737bdb5418cf50
4dc6ae5f0354a2d2dbdd80e8f47fb6521fd66587
358de62803126aaa54597ca72b798bdc3a575141e53a5d973d16a7aafe0a15c5
GET /uploads/posts/2023-07/1689343276-760611906.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 14916
last-modified: Thu, 18 Jan 2024 22:00:02 GMT
etag: "65a99f62-3a44"
expires: Sat, 11 May 2024 18:31:18 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZYZyEsHWkjrRu32h1o5TkTAGSOSevzEj8NesXrX%2BlMfhDectLjvKoPKxZ852c4vzMfRHpe3nb4oRzR0%2BM4snRnXMhiwSCXN08l7kqkbfyVNczAiKL7C2NfMHPqYxrS8MCjpl4Dw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c0476d872569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689378258-1549649245.jpg
104.21.28.116200 OK 12 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2023-07/1689378258-1549649245.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 89ca58a6b4b16835772b13ff47ced613
3f783c55a21d2b58a5d47c45979a0deb1654b2f0
66af62b4077df95e0c93c525ac0810f4cfe2911cdf8517c7e0fe3646973a816c
GET /uploads/posts/2023-07/1689378258-1549649245.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 12175
last-modified: Thu, 18 Jan 2024 21:56:35 GMT
etag: "65a99e93-2f8f"
expires: Sat, 11 May 2024 18:31:18 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KSXjqdFSUKtV5LQo1Xyef%2BMoPvLSxUsswN9Vadqv%2BM2a7Y0ylH%2Ba2zvggG8%2BlTk917VEdt4Eq58WV1vRMC0dDeY9nyQWc0UlSOdl5iCj4Fr8jW%2FxQPzE5cbZPPENOW2kZSjl%2FJI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c0476d880569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689411169-1587397303.jpg
104.21.28.116200 OK 10 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2023-07/1689411169-1587397303.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 9780c69254b89adeb335257d7ffdedf1
dad3bbc98bfab7d58179842c8c8cdac1ca713120
d4d2e9b54ffc59275977e67446e45f65333a1f219e25983ebc572600f1a182a9
GET /uploads/posts/2023-07/1689411169-1587397303.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 10538
last-modified: Thu, 18 Jan 2024 21:58:09 GMT
etag: "65a99ef1-292a"
expires: Sat, 11 May 2024 18:31:18 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Cf08%2BY552ivx4NMGyScaQSzQUbt40gwzDCg0eCpDt9xPzc%2BLljVtSkcmrt4Eoi%2BHtk315b9QR%2BrZWYA4kDY%2FjnRakSKVUn26%2FH6JwBy2Al03Hnpgdyr%2Ft2hc9St0231snw%2BYaKY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c0476d882569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689342211-2094863106.jpg
104.21.28.116200 OK 8.6 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2023-07/1689342211-2094863106.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 6f4e0feec70a85c5abc2354482a7f8f6
48db7f428a0724900dbdd59ae372ccf750d2d7a5
2f5b8b05633dce1e8bd7f200ae9daa5a0a0d3178dd40bf159adbcaf5b487fa9f
GET /uploads/posts/2023-07/1689342211-2094863106.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 8611
last-modified: Thu, 18 Jan 2024 21:59:53 GMT
etag: "65a99f59-21a3"
expires: Sat, 11 May 2024 18:31:18 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K0SYB0obYe7WSKhc2BorOaV6UmO2CYq7DGKnewto9tWOcdEhAtDRyWF3N8uhC8qhamJdQQbVSLlIYFq13ez9NgQ2pD%2FdmXEUn1oEea0AWyATo9RfDj58CP9MootMiwuwz8GIDgk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c0476e887569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689349167-1655381658.jpg
104.21.28.116 10 kB URL hd29.lordsfilm.cfd/uploads/posts/2023-07/1689349167-1655381658.jpg
IP 104.21.28.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 63c9648db28b246c1ef05856f48223a8
5cf6140657449fadde9018273df119f0efc3fdee
213ce87d27fc678134fdeb19713cba9fc6766d349441222ed9beedcf5b87086a
GET /uploads/posts/2023-07/1689349167-1655381658.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 10289
last-modified: Thu, 18 Jan 2024 22:00:15 GMT
etag: "65a99f6f-2831"
expires: Sat, 11 May 2024 18:31:18 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eHGdtwkYbOl54%2FFsUSgoroMqaingBT%2BBAcR9E2hgCjrnUnA7%2Bt0maxUw2sElbsqgPAmvfSAHKVfqjMih4UCwUVlzuWij3jQqDJwiRjEUOUKT4hXltT2Ez5KgczQYZeXf0UtND0Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c0476e888569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689387581-750804151.jpg
104.21.28.116200 OK 9.7 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2023-07/1689387581-750804151.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash d3a64bbfba18f88a036b4b61e25880aa
ce8d3d085646b910969eb33f75541e7f37148548
2e0bdbed737c0865ec67d1f26cb91cd21a2d8149aa158923d379166cb9ead7f4
GET /uploads/posts/2023-07/1689387581-750804151.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 9730
last-modified: Thu, 18 Jan 2024 21:55:04 GMT
etag: "65a99e38-2602"
expires: Sat, 11 May 2024 18:05:29 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 1675
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9MR2k%2F2kjKV0%2FcvA9kaOfBdeR2qRh5%2F%2BXhcNmHrNABf3PNmjbI5FO%2FoPGHSSM%2FsEx8zfxDyqygu3WNO%2F3WQFerq%2FyC9%2Busb4jAK7An5QmczrVmIQhOeUBS1J5WBAacGEFmpuvUY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047718d9569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689440963-412546459.jpg
104.21.28.116200 OK 12 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2023-07/1689440963-412546459.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 0eabee43ac56cd3042fa6c23170343d4
9dbab87dc739836852f9f0b7418fe66ed6d27a4c
4fe5ff4fce6ad891e6178ac6f02a0b61e1e026a5c1f2c8ed2b649ec01474ff3f
GET /uploads/posts/2023-07/1689440963-412546459.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 11607
last-modified: Thu, 18 Jan 2024 21:59:25 GMT
etag: "65a99f3d-2d57"
expires: Sat, 11 May 2024 17:20:22 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 4382
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n3TGQGp3WYoODwx%2Fm9ebqka2uZGuoiDMzUC9TEe7QL3NJIqBDhVmzU%2FIWsL4fAw4%2BBjAvVraM0nQAJOu6s1BZ1k3wZE7x5H7Ry8ZJ7aP6dmFfQ8IOmPEfcnMGd7uPau8YpnAb3E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047718d0569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-10/1697932231-1721708577.jpg
104.21.28.116 11 kB URL hd29.lordsfilm.cfd/uploads/posts/2023-10/1697932231-1721708577.jpg
IP 104.21.28.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash f0c8bca3dbf97441cc752f43fff00a30
8dc0446cdc56af091fd5778feeb300b77d3a1dc1
b5138792fd2a8dffb41ab4ea3f1595dcc4bb9c8529051a52d37b0ebc28a3632c
GET /uploads/posts/2023-10/1697932231-1721708577.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 11067
last-modified: Thu, 18 Jan 2024 21:54:02 GMT
etag: "65a99dfa-2b3b"
expires: Sat, 11 May 2024 18:31:18 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xYGmTSgZrekC965eebMii0hI2cbG4P8GVD%2FtiL7XwSyOIjLegFzoV8IiVV2TVhNfzCSQM8ZhyAyBaYDH5T%2BlFiQnsrs0UYYhQyT7qaxyJMrM9PYpRzzUUzIMVK%2Bp6bRRXksSiko%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047718d3569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689444036-1331688175.jpg
104.21.28.116 6.7 kB URL hd29.lordsfilm.cfd/uploads/posts/2023-07/1689444036-1331688175.jpg
IP 104.21.28.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash f6e06928151d28da440da17d61275c12
d186b6932f83a15933edbca7c6dda70da0c4bab9
33fc2fedcae4b971896e2088a146b667fa124adb6b0dea256d558539c081bd6a
GET /uploads/posts/2023-07/1689444036-1331688175.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 6655
last-modified: Thu, 18 Jan 2024 21:58:22 GMT
etag: "65a99efe-19ff"
expires: Sat, 11 May 2024 18:31:18 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hR2%2BnF6Tj7Kwx7qoeK8mv%2FaeBD4er%2BM%2BXxNLk89zLpDkJGNeRmBnSzWImht8q%2F0Qi8VXGV5OhXXadm%2BCgLxY5gX6dFXFq6Cxz%2FUXpjBtqTsUwb4azmJj8hufjCm3kzhkb4Lc6es%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047718d5569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2024-05/1714849880-1782484105.jpg
104.21.28.116200 OK 8.8 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2024-05/1714849880-1782484105.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 9919aaa360832d738485773dc3ec68de
51c086ae28d16c2a40ff6311be17712976360fe4
25cfdd8daee477ab8eb87c62c7201d823c16e33f0faa22d7947a696712f6dfa4
GET /uploads/posts/2024-05/1714849880-1782484105.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 8817
last-modified: Sat, 04 May 2024 19:10:46 GMT
etag: "66368836-2271"
expires: Sat, 11 May 2024 18:31:18 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Qp2zLtVdO733PKhL3IWs0V9Xfw1Lb%2F6HgpuWZ5u8UNCd9rC7MqpmyelhyIk2FsC7EmKDXMoFXepBRN7Zcrf9YYCLS2orZpy3C3WBbaWH2GVAI7tffRPgBp0CoJFp5e21S6p05mU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047718d8569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-11/1701022024-588670138.jpg
104.21.28.116200 OK 9.4 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2023-11/1701022024-588670138.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash bab7b68c360207957cf4c5b3e36d0e43
cfd04aaa2747ddcc1f8a8919be6ad7985205ef59
12f67119026566620409d3b17a43d2c653b48767370b1744ce46be283155b8f3
GET /uploads/posts/2023-11/1701022024-588670138.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 9359
last-modified: Thu, 18 Jan 2024 21:54:29 GMT
etag: "65a99e15-248f"
expires: Sat, 11 May 2024 18:24:00 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 564
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1lLbTYUPQPkcseFKCUIg970QYD7akOeHSGdGUw2lK3iFDq42WApFmkoJb51Y%2FqH5SKOWTc5P4PsN4IGSjKyOO6ZHlWtKjUm77ZoGltp175ai1WnchotS7guTVpOLzBkl0%2BpVby8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047718db569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-09/1695767784-1555787723.jpg
104.21.28.116 8.3 kB URL hd29.lordsfilm.cfd/uploads/posts/2023-09/1695767784-1555787723.jpg
IP 104.21.28.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash fe77a68b02a0b09326e6ec14404a9199
2d8b8a2d302b940b89e870be71cd4ed7f5a38a95
7907e2e75b86170e002211e6e4f1c88d99635111f780b2779a28372bb71bb392
GET /uploads/posts/2023-09/1695767784-1555787723.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 8286
last-modified: Thu, 18 Jan 2024 22:01:17 GMT
etag: "65a99fad-205e"
expires: Sat, 11 May 2024 14:32:51 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 14433
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=auZOjccImDlWmEHdyjftEuYECS7urmiq5rWexOMx%2Bg2KGXOlkCOvlvye1mKfiMSE3651hpbbcC9MZU2cwKJCGQWWYQFl2QMObdQtxgDn1gKnbwJC5E4WF3HmLds6SjcOzd%2FcYxM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047718dc569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-11/1699629719-1860500530.jpg
104.21.28.116 8.4 kB URL hd29.lordsfilm.cfd/uploads/posts/2023-11/1699629719-1860500530.jpg
IP 104.21.28.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash ce169282bd46cfa32c1277d29e59d064
b8b2dff76f744fd198db04933e3350fc5d5fd53e
bd772ef2cf53c8fc26cc96a1b7d9e7dd6d2455e0fccdf566960b35ce0c6092ac
GET /uploads/posts/2023-11/1699629719-1860500530.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 8442
last-modified: Thu, 18 Jan 2024 21:54:22 GMT
etag: "65a99e0e-20fa"
expires: Sat, 11 May 2024 18:31:18 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zlxx4Yn7smHfEEn3hbbIEyhXynvsTh83upaav9aE0BM4asiHSNqohn6kjBO2dhEwFPtfoSJahf7q32a1A75yRdShCJd2NkpOi3KaGuMfA08oU%2FvzLnVw0iKm98EUMnY2EC3C9ak%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047728e5569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689411866-948473882.jpg
104.21.28.116200 OK 12 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2023-07/1689411866-948473882.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash aa9028db4d6f3481e8c9f9aa8e4d62a0
9d86d417c7a235b5e3bbc262f180eb0521e29d4e
2fb66f8036aa14455dcec6ad9a6322818e56ed85434902e136718540724a2c4d
GET /uploads/posts/2023-07/1689411866-948473882.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 12405
last-modified: Thu, 18 Jan 2024 21:58:42 GMT
etag: "65a99f12-3075"
expires: Sat, 11 May 2024 18:31:18 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BGaYyxKrEKHaQD%2FV7EkYgqeT6Ine8oole2gKHx4ivkoAvtUnz3hGb8K50VEaBxxPvX2R1zZNMloc%2FB5GS2yo9McfnmV6JRg7%2Br%2Fa3g4QymvpkG9MHNNr%2Fr19AXbDZ8yUHkIVnH0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047728e8569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689314107-1456561237.jpg
104.21.28.116200 OK 7.6 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2023-07/1689314107-1456561237.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 2b83b7100f54d318c6d4b3ad7c4a4a43
6ce99510a2a0312bd24bf23f82267c75fa86cdaa
320fcf2941da986068304a94688df349b4ef9268713baf323d0bdfb810447f37
GET /uploads/posts/2023-07/1689314107-1456561237.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 7573
last-modified: Thu, 18 Jan 2024 21:55:05 GMT
etag: "65a99e39-1d95"
expires: Sat, 11 May 2024 15:54:05 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 9559
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ytE4C0afkTXwgyInPGOJc3QcvVahbSwzo%2FEUuwqbpQ2TJCpmdc1LMLaljyUiMirRa6BFHgf73AtEVJfk%2BCbZGszKBckZGl2tx6TJd%2FyeSb27v%2Fi7WpV7uLX3JxDgA42dU%2F0lFlo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047728ea569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689353388-1871805060.jpg
104.21.28.116200 OK 5.7 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2023-07/1689353388-1871805060.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 15a4681a96c6108d1355d4ee89642a2e
6bbcdb7562e28d21ad309d9e50329bb95854eebc
a9c65da8bd6154cd3a3d3d8090451dc64286f08e66bfdb62ee4e32245fab32f8
GET /uploads/posts/2023-07/1689353388-1871805060.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 5743
last-modified: Thu, 18 Jan 2024 21:59:36 GMT
etag: "65a99f48-166f"
expires: Sat, 11 May 2024 18:31:18 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=94jEZuUu%2Ftc7k12EUs84tFL9Ose8kyTNHO5UyTnif3skJWv0yZnCViM79coKuCoefCdyeImnsepLRLBcCAt7Wz92Kl3uCu7bpIAHWH5PrdHzQ7mxP5MeuQZDsT%2BNqsmmRaS54Ac%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047728ed569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2024-03/1710530415-1164310705.jpg
104.21.28.116 7.0 kB URL hd29.lordsfilm.cfd/uploads/posts/2024-03/1710530415-1164310705.jpg
IP 104.21.28.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 0a54f94ae8133940813e60087edbd8dc
6d485848131db91ada83e5574193f02b36b77c25
6ad59f98926885e76a70559ec08e450255b5777e6b18436feb48f85420303137
GET /uploads/posts/2024-03/1710530415-1164310705.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 7034
last-modified: Fri, 15 Mar 2024 19:19:08 GMT
etag: "65f49f2c-1b7a"
expires: Sat, 11 May 2024 18:31:18 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XfSfQQnuWnn1F6HZR34h1iddT5b6XVDoeunBROnjieWBvqqNQyxEHb6sSIAGv9nfaKzkUIL5Im%2B36llQ%2FUJfAErXLKJCMINR3FlsHcjunNxXXTWWMHhBLjbCNGxc1I4PA3DvnT8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047728ef569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2024-04/1713907795-1646789411.jpg
104.21.28.116 10 kB URL hd29.lordsfilm.cfd/uploads/posts/2024-04/1713907795-1646789411.jpg
IP 104.21.28.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 27888f79fcc2747b35f19624f9fa6da0
9df3b069d2c490371b7b565cfb9fdb7a67b333a7
3735c75621147d7deb4b7ee6b37a2e8676b8073a3f3dec99666ee56e90d6436e
GET /uploads/posts/2024-04/1713907795-1646789411.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 10467
last-modified: Tue, 23 Apr 2024 21:29:49 GMT
etag: "6628284d-28e3"
expires: Sat, 11 May 2024 16:36:07 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 7037
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P8GoO03r0if6Jz48m13q3SY4hqtPHxMltG55OCr4UOkS9N0rpbhBMsCJ3oPnW25x1jYX14Lj7HyWazW974Zg6rj18JwgkXsDaM8mpdIp9A1r4s2PWRONHSUgUk1Oxm8M3TXIijk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047728f0569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689800888-1849707359.jpg
104.21.28.116 7.4 kB URL hd29.lordsfilm.cfd/uploads/posts/2023-07/1689800888-1849707359.jpg
IP 104.21.28.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 4022c2d55bec3b8d3566ef4a5faabd24
60be190d05739f453efcaed11fda9198d2ec9d21
aba1f84967471b0ebfa56856320ff5e4dc3f611785bcec6e95cdcb5c989dfc31
GET /uploads/posts/2023-07/1689800888-1849707359.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 7436
last-modified: Thu, 18 Jan 2024 21:56:51 GMT
etag: "65a99ea3-1d0c"
expires: Sat, 11 May 2024 15:37:14 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 10570
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GCKGciNlvgkTZRphIchz9I5Dya1Y9GSYQt3ajLQmSt3cIoNPwdjKaJ3QbFWFLSY9yADhh6M%2Fo8hyR9tPEObbfG1Gab6eDZkx%2FRcPhd0j1Ows9MLGWnjjPlFMyGsR9UYeL%2B9Yqc0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047728f2569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689302668-285803748.jpg
104.21.28.116 12 kB URL hd29.lordsfilm.cfd/uploads/posts/2023-07/1689302668-285803748.jpg
IP 104.21.28.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash bf4ae98e0add93deedf4bc68c6e7cdda
0a2d54a3cfe5aaebb54b2c90e5de1053059692b8
1c2c88ff8f355167efc0245e311f74ea82fa5a2d967cfa5e303bd5e0db85340a
GET /uploads/posts/2023-07/1689302668-285803748.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 12049
last-modified: Thu, 18 Jan 2024 21:59:49 GMT
etag: "65a99f55-2f11"
expires: Sat, 11 May 2024 16:03:46 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 8978
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uprd0%2BAZtStjdKqPmmwD751vARJeMrXduHNvh70ML2E%2BGxBJ0f3fHIDzrWjyy2iez%2BcOS3pRxc2bzbCSUHKG6lJxiNXBsJQAUtWFLKWBQ69hcU%2BHcPMWspU88Y47BL%2Ba5p29xtw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047728f4569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689308773-998073361.jpg
104.21.28.116200 OK 8.8 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2023-07/1689308773-998073361.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash fcb10ace7204aa27ee256ba85db6aff0
60245e64f50cd685758f71b8f30a0bbd84b4d060
f7fd58951defe2979f041883a9fe09deaedaddd8d4c502a44bb45705664ce50f
GET /uploads/posts/2023-07/1689308773-998073361.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 8755
last-modified: Thu, 18 Jan 2024 21:55:02 GMT
etag: "65a99e36-2233"
expires: Fri, 10 May 2024 18:53:12 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 85212
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7TgqLX0%2FjfJUqZX5w7vSfAt9Yrohs%2F3UYeJk7uZ2NtWPGqqGQxkFCArjY%2Bh4MxhqNLK6jXoLs2KYoue2Hs29HW3TyqkWe2UdeiO8vY8xhF4ajhLEclhvdCYxSTeiDxy7wCzxWpA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047728f6569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2024-03/1710530571-41172671.jpg
104.21.28.116 13 kB URL hd29.lordsfilm.cfd/uploads/posts/2024-03/1710530571-41172671.jpg
IP 104.21.28.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 02e235e7de5ffdfc1accd4321f2241ad
f3ae60850a28375fc81f2fe09e48903c6c89dc48
8a8befc7381dd227204202d30601b74d9c786f290bf6d3f6ee4d66f228b32234
GET /uploads/posts/2024-03/1710530571-41172671.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 12848
last-modified: Fri, 15 Mar 2024 19:22:08 GMT
etag: "65f49fe0-3230"
expires: Sat, 11 May 2024 18:31:18 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tFeGZoKHV6ZffOLmHZcqUt6t2X%2FljO6HsgbnbDx%2FCiAC8xvWdHmNXQDvrZr1fQp1d1TITdpQ2GciI0kW%2BBHl8IR%2BYbH3buQ3KWdnQBh224sC4V09AS%2Fk5hFDH5EnvsVzn%2Fy3KLg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047728f8569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689434898-141459306.jpg
104.21.28.116200 OK 6.2 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2023-07/1689434898-141459306.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash cf5f8c4ab1b26bb9541ecf46cb12454f
24f997b0a2276a4f911e6180770533698a0b2743
7ca2cbf15100a9066165e7c773509b5ad4f19f4de9dd2ef81c88db1822f48ea0
GET /uploads/posts/2023-07/1689434898-141459306.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 6224
last-modified: Thu, 18 Jan 2024 21:58:47 GMT
etag: "65a99f17-1850"
expires: Sat, 11 May 2024 15:37:14 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 10570
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MVEGH0LnYUYmfZM12PYF6OXYAbD07P%2BRwKrAYAldfFs0Ps8hr%2BkKrez6R%2F3fdjjE9L6ucfmghxftbviCEUs0XPKXRI4HKpMe7tBpVeRD9yteIiAGBBBSuCEs1nsSxk9tHq%2BWPMQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047728f9569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-11/1701027447-739098164.jpg
104.21.28.116200 OK 12 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2023-11/1701027447-739098164.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash abef2458bb705439313e1a3254e70005
2eca207f79ae8a53448c4f7d22e65b56f551e613
f2caf2c965ee67d689066a1960ccfd80dcc92a00b6f652c05f13ef9148152ae5
GET /uploads/posts/2023-11/1701027447-739098164.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 12189
last-modified: Thu, 18 Jan 2024 21:54:32 GMT
etag: "65a99e18-2f9d"
expires: Fri, 10 May 2024 20:08:13 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 80711
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZxrIO7AYIA9CdfDlGp%2BxTa5Wc22XFOUSaUCd50HYeXbqzswjDBtSqR5VyzC5emqwnk9%2FpHKJT2p93wtoPOn3YMU5lof8cRgoItJ0wxIdeEJj5yaY365G666cZF3lJbZ4DOd6Y8s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047728fb569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2024-05/1714850934-1478892069.jpg
104.21.28.116200 OK 11 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2024-05/1714850934-1478892069.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 465874b566fd7b4159c79d2422e82f2e
588217948572209458cfdda950f1852446de7e16
8f301a939233faec6083fc718d9132a93193d62c8215f827d4f30eced81dffb3
GET /uploads/posts/2024-05/1714850934-1478892069.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 11130
last-modified: Sat, 04 May 2024 19:28:01 GMT
etag: "66368c41-2b7a"
expires: Sat, 11 May 2024 18:31:18 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9kcaXBPy%2BrX2VyWZ4wYQaZ%2FTaKGwWB0XolDfQmYM5P25dCzoLnuw%2B8g2dnD8zcjJ4wrTTVTSbxV2PUZAZxRV9ih26hunidKlTOEp8jJyGTTmaXnPa59BbGs6Zgy95tR%2FtVa1apc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047728fd569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-11/1701009188-1206715792.jpg
104.21.28.116200 OK 8.4 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2023-11/1701009188-1206715792.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 81e52e36660e7bcd3c7d98266df7a679
1e45b7cfd3afc9dcf4eeb1ddf60bdd21afe9b262
01616e8b9ac73393e6b0399eea5440da310584060120ea67f4aff8d76822eca9
GET /uploads/posts/2023-11/1701009188-1206715792.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 8386
last-modified: Thu, 18 Jan 2024 21:54:28 GMT
etag: "65a99e14-20c2"
expires: Sat, 11 May 2024 07:15:35 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 40669
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RbhfbyhY1pR3oJ5EeFo4KgzWe18BJCiy%2F7h94HfvqjtgEjN%2BN7ifemSVTbMSkFa6PWNx4c49y6qOt5cl43Szq3szLGTt0H3vAxKtEeFBXOSZfvpMFA%2FW3mFI5Snmgtp%2F8Ombq3M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047728ff569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689311214-432687127.jpg
104.21.28.116 14 kB URL hd29.lordsfilm.cfd/uploads/posts/2023-07/1689311214-432687127.jpg
IP 104.21.28.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash b8d279c2efc5f954377d4ada643cf2c5
71d31f914c1e5fa0b4121080e0eaf5e10f4f7585
b362ca2f7192343f695601a0783e756251360f746b121d6bf994ea57072ed27c
GET /uploads/posts/2023-07/1689311214-432687127.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 13567
last-modified: Thu, 18 Jan 2024 21:55:21 GMT
etag: "65a99e49-34ff"
expires: Fri, 10 May 2024 21:12:35 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 76849
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=brrNh2Zq15fHqgmQgK4jaTsMHijDddATpoePo3u6gMmW6b6t%2BZeF79BOVfz1fTL%2FYYdx%2BcCdzf7UECCrDdsVi2OwAzOrlpYbymf8shjjtBxnSFSa7eUSVk2Lr578fOgF5IyJKBM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c04772900569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2024-03/1710529621-2057081562.jpg
104.21.28.116 14 kB URL hd29.lordsfilm.cfd/uploads/posts/2024-03/1710529621-2057081562.jpg
IP 104.21.28.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 594a8ff505a306a778d8b5219e9df59d
a6a5b8b9672414f9e3e07bd089424d0598da3956
f78a74de7da7b8ea6a83f3c2506922e8a17533078fd341d77f785e65be8bc9dd
GET /uploads/posts/2024-03/1710529621-2057081562.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 13524
last-modified: Fri, 15 Mar 2024 19:06:36 GMT
etag: "65f49c3c-34d4"
expires: Sat, 11 May 2024 16:03:46 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 8978
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fxSpD7B0aRA1vs%2BXavap%2Bv5davNtY%2BeoeYqnAi0v3q82IlIMb5hL8qt7AnfKCQZ77vvb5W175axI9VzeINAWY8yzTAPKHxirfgRYePBUrZNPcL1GXJ2c7c%2B%2Bt57Twiwt5oABbCo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c04772901569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-09/1695766263-2105049279.jpg
104.21.28.116200 OK 8.6 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2023-09/1695766263-2105049279.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 2418731d95607d2104374504b0fc99c6
e95ae4f66fae37265db9f356d00b2a650c4096e0
ff0a2b914becb721a1d41b9b1bd4e8fca6bb846644d2d60fb5f7ebda2094f0ef
GET /uploads/posts/2023-09/1695766263-2105049279.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 8588
last-modified: Thu, 18 Jan 2024 22:01:25 GMT
etag: "65a99fb5-218c"
expires: Sat, 11 May 2024 17:16:54 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 4590
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=slPxUcPetVLvQ27aHEpqz45z8moko52SlXPgPNZrttaNvf%2BJXeTgoQA%2F6Jld%2BXEyiHmD2RFvra77qKIQlIer90YG6qIMU67MXJnt92B99hvqZAa%2FOttqDCknLrQju2AjfmNvkX8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c04772903569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689365257-991239866.jpg
104.21.28.116200 OK 11 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2023-07/1689365257-991239866.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 9f2ed1dfe3b35a351540a786e47a9123
96543434258a3cf87c9783f5ae368f0d0b507061
e88855803b43b6aff1184cd62c3430a50e2b8825fec939192b829d78f782209d
GET /uploads/posts/2023-07/1689365257-991239866.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 10612
last-modified: Thu, 18 Jan 2024 21:58:07 GMT
etag: "65a99eef-2974"
expires: Sat, 11 May 2024 17:26:25 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 4019
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=glbBPgC%2FvBz9bDcerFVuweGER5DXCRCV%2F2AG1pN2hM7f97VlRVosiJAd8DQGnBCGUtY%2B2sgERl9KAPs964TEFh7Cg%2F0TgblBrCwp2qplOVpSFhraUSKl1EjWPBjt5BjzR6EPh4Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c04772905569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689800620-2094769737.jpg
104.21.28.116200 OK 9.0 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2023-07/1689800620-2094769737.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash a20acc9586f614c4a5b7abc29d6b0eec
cee4e1e48c656d4bf1c38921079a0a2ae8b20c75
6b50f7be5525621c2ea87be92c8ad8b630365df8f054ab30e746f79b47b38c77
GET /uploads/posts/2023-07/1689800620-2094769737.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 9003
last-modified: Thu, 18 Jan 2024 21:59:19 GMT
etag: "65a99f37-232b"
expires: Sat, 11 May 2024 10:01:11 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 30733
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y1%2FhpsTTMFqbDZcD%2F2kukIufRkJveEXzuGrKQrlIxHjt7n%2B3yDH1cgV%2FV1sA3vAAJ5TcIJE%2BBxzTFBWTAWQwQ0pd1yQjeLb%2Fk2PpdeIgfvH5FsCHGkLmG8agONPUotpN0cnkL1U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c04772906569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689314596-1787171328.jpg
104.21.28.116 11 kB URL hd29.lordsfilm.cfd/uploads/posts/2023-07/1689314596-1787171328.jpg
IP 104.21.28.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 18a067b96555c354dbbadc0dd92ff342
9ff2e321ba23b520b72cd2df80c87a8586621680
e136cd60a4b2b4addbc13b52427815a6c70ee703fe638fbb6e642ad20bc19ad1
GET /uploads/posts/2023-07/1689314596-1787171328.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 10730
last-modified: Thu, 18 Jan 2024 21:57:18 GMT
etag: "65a99ebe-29ea"
expires: Sat, 11 May 2024 18:15:29 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 1075
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L6vBTbdGrb0HzUAANWS5RdsSR5Hs8%2BX4VFJq6KLt9ZlgkyXMRjVZ2o5y%2BrdTeskIa1022kRmrKy7yZXfDRQiil%2BVJ4CFIicBjF2qtM7jwy%2Fj3gFmX0rYi9d7MnJcKYVR8JNkbng%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c04772908569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689374667-200827444.jpg
104.21.28.116200 OK 6.6 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2023-07/1689374667-200827444.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 5310602857e7306c97fd1d112bfd9360
51eab739a817eac4e123406a152ea83f195eac6f
80782597b037e0f707599a60051cf145683abf66060376dac11926d04193cc87
GET /uploads/posts/2023-07/1689374667-200827444.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 6566
last-modified: Thu, 18 Jan 2024 21:55:11 GMT
etag: "65a99e3f-19a6"
expires: Sat, 11 May 2024 14:50:49 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 13355
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=07MgEsPMK5oulVb7%2BhyY0MGbHJx5hvsDyn0LVv3ykDPHDioyc%2FwsoBJggvYuoFyjdKaCnFnGFk7f12QoW6203j3zY1rPCnkeGO3Y5nxiq002lytjD1gqCEGwOTVQaZhSWpFFoVI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c0477290b569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689416960-1283710544.jpg
104.21.28.116200 OK 11 kB URL GET HTTP/3 hd29.lordsfilm.cfd/uploads/posts/2023-07/1689416960-1283710544.jpg
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash f5e826bd9cbe45cfb990458f0c4b6f71
85a657e4527a80803f4a9d7724a18cb9082a565a
401a7b5bb59c3718d707d7e3a1a912c811b8ee0d644175b97ba50c268e8cd73b
GET /uploads/posts/2023-07/1689416960-1283710544.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 10897
last-modified: Thu, 18 Jan 2024 21:57:21 GMT
etag: "65a99ec1-2a91"
expires: Sat, 11 May 2024 18:33:02 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 22
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AuKflZLtSSntXtWAiebRDV0BkurD%2B3nGCrjgEm41sNHkhUaNUn%2BZ2Iz3O07H7RmMEMoALgU1ooD3ykgSPKjxmQeIL9ykGdKsVNLgBvYsawoEb1RFTW5t9UDtR8B4TitRK%2FRj%2FEo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c0477594a569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/uploads/posts/2023-07/1689358992-1694875916.jpg
104.21.28.116 11 kB URL hd29.lordsfilm.cfd/uploads/posts/2023-07/1689358992-1694875916.jpg
IP 104.21.28.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 55", baseline, precision 8, 200x296, components 3
Hash 5faac2549e3a2f744e36732d6ab9dfce
8c62deaba52ab47d5c2461f3660afa2188af7700
b78b4383c62dedaaf4f2bc0b1930d97d5270603a9d49bc57042c5fdcaf20fe57
GET /uploads/posts/2023-07/1689358992-1694875916.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
content-length: 11180
last-modified: Thu, 18 Jan 2024 21:56:55 GMT
etag: "65a99ea7-2bac"
expires: Sat, 11 May 2024 18:33:02 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 22
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=07KETq9o5nUMSRHF84Ps3BaBVG0Fi2%2FNvmy1yNtHokP1OuVL%2FO0bEtzFE2CJy4jH49cqnUc1iNKRJw9WP%2Bcvj3OwKQhiHPXX6VdmuvC7PvCcrMuiKJdU%2FxJD0qTIoL4wtVQsLWI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c0477594b569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/engine/classes/min/index.php?f=engine/editor/jscripts/froala/fonts/font-awesome.css,engine/editor/jscripts/froala/css/editor.css&v=c04dd
104.21.28.116 27 kB URL hd29.lordsfilm.cfd/engine/classes/min/index.php?f=engine/editor/jscripts/froala/fonts/font-awesome.css,engine/editor/jscripts/froala/css/editor.css&v=c04dd
IP 104.21.28.116:0
File type ASCII text, with very long lines (37900)
Hash 4a1c4d7dce6068d872fcca9ab861c0b5
869ec74e8b0918bb6fd444b8f07422831433c01e
270ca414d7a8edc6c38a123ec69aef32ef1de5968e50b0f467279865276ed39a
GET /engine/classes/min/index.php?f=engine/editor/jscripts/froala/fonts/font-awesome.css,engine/editor/jscripts/froala/css/editor.css&v=c04dd HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: text/css; charset=utf-8
content-length: 27321
x-powered-by: PHP/7.4.33
expires: Sat, 10 May 2025 18:33:24 GMT
vary: Accept-Encoding
cache-control: max-age=31536000
content-encoding: gzip
last-modified: Thu, 18 Jan 2024 21:53:46 GMT
etag: "pub1705614826;gz"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8%2FOyBHuM6Ftf08H0Ksr1Dh0Q%2BJS6wK5tKS%2Fk%2FQIekoZcSVv3JqZgTGCOAbfZND5Yj5keQW3N9keTX8r9PABt4z5lzQXaJbK95%2BLrzgUYp9m24vSKHIqk2zZb%2FPUCoTDUSuOhS84%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c0477594f569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/engine/classes/min/index.php?g=general&v=c04dd
104.21.28.116 30 kB URL hd29.lordsfilm.cfd/engine/classes/min/index.php?g=general&v=c04dd
IP 104.21.28.116:0
File type JavaScript source, ASCII text, with very long lines (32065)
Hash 2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /engine/classes/min/index.php?g=general&v=c04dd HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: application/x-javascript; charset=utf-8
content-length: 29771
x-powered-by: PHP/7.4.33
expires: Sat, 10 May 2025 18:33:24 GMT
vary: Accept-Encoding
cache-control: max-age=31536000
content-encoding: gzip
last-modified: Thu, 18 Jan 2024 21:53:44 GMT
etag: "pub1705614824;gz"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yQuZiPZKNTUe%2FcBPQPMuChOUBn1GO4a6IyenTrnyfE9mtJj7OWrZz2T3O3Zh6B1pUBwVkTxIPpDih%2Fzrs7owrLQ21MhcfNmZr3i6Sv4cvp4ygeSbxjGmzEtOvAl6oGhQfveh9M0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c04775950569f-OSL
alt-svc: h3=":443"; ma=86400
allohatv.github.io/replace.min.js
185.199.110.153200 OK 475 B URL GET HTTP/2 allohatv.github.io/replace.min.js
IP 185.199.110.153:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT
Hash 3b47789cb1cdccd92e294903fabc0e07
95a813bdb318d72ca8f921e89711ac9d3fcb8865
76a160f37a5641828691cb82afa7387c5875f428624a5a2c3ab1a0da990fa786
GET /replace.min.js HTTP/1.1
Host: allohatv.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
last-modified: Sun, 05 May 2024 08:52:20 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: W/"663748c4-309"
expires: Sun, 05 May 2024 09:02:22 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: 401A:3781B3:2285247:2392F0A:6637497B
accept-ranges: bytes
date: Fri, 10 May 2024 18:33:24 GMT
via: 1.1 varnish
age: 555
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 189
x-timer: S1715366005.563796,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: d9da005a34f30cc49f8ad5e0120f1f88b4211f82
content-length: 475
X-Firefox-Spdy: h2
hdvb-player.github.io/actualize.js
185.199.108.153200 OK 1.1 kB URL GET HTTP/2 hdvb-player.github.io/actualize.js
IP 185.199.108.153:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (728)
Hash 493e13c1928615177f0c34afc527e576
d4b1beaa2d55111b1b744b34fed36f497fed0f59
4dfc8c4cd8cd8e8c31c68b1f951e666d70ec403c7a7cd0d0debd0cb1cf61c2b2
GET /actualize.js HTTP/1.1
Host: hdvb-player.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
last-modified: Sun, 05 May 2024 15:18:34 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: W/"6637a34a-9ca"
expires: Sun, 05 May 2024 15:28:36 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: 0CB4:38D071:469EDA9:4893C8B:6637A400
accept-ranges: bytes
date: Fri, 10 May 2024 18:33:24 GMT
via: 1.1 varnish
age: 540
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 193
x-timer: S1715366005.582890,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 460dfa196e107b363de5b7c0a38c20363842f235
content-length: 1098
X-Firefox-Spdy: h2
hd29.lordsfilm.cfd/engine/classes/min/index.php?f=engine/classes/js/jqueryui.js,engine/classes/js/dle_js.js,engine/classes/masha/masha.js,engine/skins/codemirror/js/code.js,engine/editor/jscripts/froala/editor.js,engine/editor/jscripts/froala/languages/ru.js&v=c04dd
104.21.28.116 283 kB URL hd29.lordsfilm.cfd/engine/classes/min/index.php?f=engine/classes/js/jqueryui.js,engine/classes/js/dle_js.js,engine/classes/masha/masha.js,engine/skins/codemirror/js/code.js,engine/editor/jscripts/froala/editor.js,engine/editor/jscripts/froala/languages/ru.js&v=c04dd
IP 104.21.28.116:0
File type JavaScript source, ASCII text, with very long lines (18446)
Size 283 kB (283122 bytes)
Hash db801791e2a9018200d544463657d489
e423ef95714668fbf65b1a4c56e98f2ce837f4c1
147fb970da89d14ad7e13d62424fceeb4769781349e350b1a53777ea63b59f55
GET /engine/classes/min/index.php?f=engine/classes/js/jqueryui.js,engine/classes/js/dle_js.js,engine/classes/masha/masha.js,engine/skins/codemirror/js/code.js,engine/editor/jscripts/froala/editor.js,engine/editor/jscripts/froala/languages/ru.js&v=c04dd HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: application/x-javascript; charset=utf-8
content-length: 283122
x-powered-by: PHP/7.4.33
expires: Sat, 10 May 2025 18:33:24 GMT
vary: Accept-Encoding
cache-control: max-age=31536000
content-encoding: gzip
last-modified: Thu, 18 Jan 2024 21:53:47 GMT
etag: "pub1705614827;gz"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AXZURzOcGE1PHHMWfAEctP297x5Ue%2BFOy3G%2FOKBgYcomlBumrHEfsAJ5rmGdVn363Rktm%2BvVbtuFLPPLk81JEVX0x%2FuoH%2BP8bh1dRuJsyMXx3a5JMuSpwb5vHGOZMwU7cULXYn0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c04775951569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/engine/modules/antibot/antibot.php
104.21.28.116 5.6 kB URL hd29.lordsfilm.cfd/engine/modules/antibot/antibot.php
IP 104.21.28.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 160x80, components 3
Hash d1bcfe3556dc21456fcd14e9f72685a9
6a126ffbfd2166781117735a1cb3e0413078024e
f391c2dd57f6f6e4bfdc4fa0b749bc217987ac0c890f2f301eff76c674e8c5b2
GET /engine/modules/antibot/antibot.php HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: image/jpeg
x-powered-by: PHP/7.4.33
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DRLqBB3ft07kyI7PnXwnGCnPcVhTAXL8uVIj7PTcU6gUbInGOxNTIy55RbD9shkDwVQ4Y%2BWa%2FAa2K7vsanvmmZgWjYzfz6OGLitYQapJer7na4Rf0%2BWRmF4rdaxCSayzRCZ7phI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c04772907569f-OSL
alt-svc: h3=":443"; ma=86400
zerossl.ocsp.sectigo.com/
104.18.38.233 727 B URL zerossl.ocsp.sectigo.com/
IP 104.18.38.233:0
Hash fe9248692f231717719af2dc0ea7dd3c
cab522708d8cd1b2fb47d5d49d2d8745f8dc65a2
76ca521632f449829d1e2c9750f52a5ca16bf3cdafbf00272228c76da4077fc3
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 18:33:24 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Tue, 07 May 2024 14:15:29 GMT
Expires: Tue, 14 May 2024 14:15:28 GMT
Etag: "cab522708d8cd1b2fb47d5d49d2d8745f8dc65a2"
Cache-Control: max-age=329523,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 881c047a2f840b06-OSL
threwawaythetv.com/services/?id=165133
193.200.64.24 1.6 kB URL threwawaythetv.com/services/?id=165133
IP 193.200.64.24:0
ASN #6681 Giveme Cloud Sp Z O O
File type JavaScript source, ASCII text, with very long lines (1592), with no line terminators
Hash 2cfc4403b0343ccf7e44f8bc429b9d36
d41219a91d3eba43177a209217c1af74014a7ec9
44469ae73dbbe54ec2a73a8385de54ac80fc6542b294bcb4ad2fe6b9ab991dce
GET /services/?id=165133 HTTP/1.1
Host: threwawaythetv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:24 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1592
Connection: keep-alive
aj1907.online/63c0d7d8.js
23.88.0.239 37 kB URL aj1907.online/63c0d7d8.js
IP 23.88.0.239:0
ASN #24940 Hetzner Online GmbH
File type JavaScript source, ASCII text, with very long lines (37123), with no line terminators
Hash 0bb4b424655836a903d947644852f16f
018368e6f1800e849bb7ac7fba9a158f1608522b
9eadf7aaf973f264fb606cb48b88b95be14d1a106e02a633549aaa05d320a4a1
GET /63c0d7d8.js HTTP/1.1
Host: aj1907.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
accept-ranges: bytes
etag: "00bb4b424655836a903d947644852f16f"
content-type: text/javascript
content-length: 37123
date: Fri, 10 May 2024 18:33:23 GMT
hd29.lordsfilm.cfd/templates/lordfilm-light/images/bg.jpg
104.21.28.116 101 kB URL hd29.lordsfilm.cfd/templates/lordfilm-light/images/bg.jpg
IP 104.21.28.116:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1400x488, components 3
Size 101 kB (100557 bytes)
Hash db8512103ba98cc5bf335184be2ce18e
5a6aba30cc34efd1a6340ab6041cb83195cd5667
f5568e0a84aa68803783c72e0a3858efa1396c8e67ba80350f24401ac1f800ce
GET /templates/lordfilm-light/images/bg.jpg HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/templates/lordfilm-light/style/styles.css
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:25 GMT
content-type: image/jpeg
content-length: 100557
last-modified: Thu, 18 Jan 2024 22:01:41 GMT
etag: "65a99fc5-188cd"
expires: Sat, 11 May 2024 16:07:06 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 8779
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UQVnHp1Sa2R7qVbUM1IJ%2BVYk1yeeehnRI9g9it0oW3wC%2BYMQologw3g88Hb3dcsrnedZ3ILamYxl0jBJXWyfvbTfOSjy6i35zk0f82Le1c3LO1LnrUBgmm6DdoP2KuSy72K0juA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047b4f5d569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/templates/lordfilm-light/js/filter-xf.js
104.21.28.116200 OK 93 kB URL GET HTTP/3 hd29.lordsfilm.cfd/templates/lordfilm-light/js/filter-xf.js
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type gzip compressed data, from Unix
Hash 204116f7ad9e4e35a465f90cfa40e5c4
6de0b5bc281a1e17369cb74f972657ad1388a863
c463b6586121aa5b767baa1e2f605592e7a08da13f26b857f2f08be0a44f978f
GET /templates/lordfilm-light/js/filter-xf.js HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: application/javascript
last-modified: Thu, 18 Jan 2024 22:01:41 GMT
etag: W/"65a99fc5-10b7d"
expires: Sat, 11 May 2024 16:07:05 GMT
cache-control: max-age=86400
content-encoding: gzip
cf-cache-status: HIT
age: 8778
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FzG2tR4VugNYG9DAAH5kQWIqoCBHaz48iGS3Nn%2BChiHZW9A3oosArD9J%2B1og53IB0zwsk2kEbY8P7j6UDJXhkgKffFW5XoDqHqTuVpDxwrVGYjPj%2Bh77oyaK71yAZfzSAh136B0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c04777995569f-OSL
alt-svc: h3=":443"; ma=86400
cdn.trafficbass.com/libs/e.js
62.212.82.77200 OK 3.4 kB URL GET HTTP/1.1 cdn.trafficbass.com/libs/e.js
IP 62.212.82.77:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint57:6F:20:E6:B0:40:1C:C7:13:E8:48:0C:11:F9:28:1A:C5:9E:24:49
ValidityThu, 07 Mar 2024 08:49:35 GMT - Mon, 07 Apr 2025 11:37:26 GMT
File type JavaScript source, ASCII text
Hash 298983aca8fdb305836136f285867212
dc7ecf476f2c28961b008d9ce6917d5cf852dd2f
0637427601544bf4dc9e3e0385f502bce87ce1e31a061c46748355f82bc89f75
GET /libs/e.js HTTP/1.1
Host: cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:25 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Mon, 11 Dec 2023 15:07:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"657725a4-19a8"
Expires: Sat, 11 May 2024 18:33:25 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Content-Encoding: gzip
hd29.lordsfilm.cfd/templates/lordfilm-light/style/engine.css
104.21.28.116200 OK 31 kB URL GET HTTP/3 hd29.lordsfilm.cfd/templates/lordfilm-light/style/engine.css
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type gzip compressed data, from Unix
Hash 1c40180c14515a303c55d1f45260c872
dca322a1a0403b8b87ee2f6f00ea42968961f0d8
1535e8531031ae9faf24d593b1fe9d231b80f6f92fcddecae9d847df23d876f3
GET /templates/lordfilm-light/style/engine.css HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: text/css
last-modified: Thu, 18 Jan 2024 22:01:40 GMT
etag: W/"65a99fc4-171ec"
expires: Sat, 11 May 2024 16:07:05 GMT
cache-control: max-age=86400
content-encoding: gzip
cf-cache-status: HIT
age: 8779
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q3YynNapLKtYM19aIX1A0gvgGUyyTefTPL50jeNqq6yWl6FYz1ByjDbRFmomm%2FRW4XnmdDmbYjn34EoeDWZZmnc9j%2BWVP4BpgjtHghf7FHiYuppt3h8gtOQZB5CarbK6q%2BvwmOc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c0476b84f569f-OSL
alt-svc: h3=":443"; ma=86400
cdn.trafficbass.com/libs/e.js
62.212.82.77200 OK 3.4 kB URL GET HTTP/1.1 cdn.trafficbass.com/libs/e.js
IP 62.212.82.77:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint57:6F:20:E6:B0:40:1C:C7:13:E8:48:0C:11:F9:28:1A:C5:9E:24:49
ValidityThu, 07 Mar 2024 08:49:35 GMT - Mon, 07 Apr 2025 11:37:26 GMT
File type JavaScript source, ASCII text
Hash 298983aca8fdb305836136f285867212
dc7ecf476f2c28961b008d9ce6917d5cf852dd2f
0637427601544bf4dc9e3e0385f502bce87ce1e31a061c46748355f82bc89f75
GET /libs/e.js HTTP/1.1
Host: cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:25 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Mon, 11 Dec 2023 15:07:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"657725a4-19a8"
Expires: Sat, 11 May 2024 18:33:25 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Content-Encoding: gzip
hd29.lordsfilm.cfd/templates/lordfilm-light/lazydev/dle_filter/assets/dle_filter.css
104.21.28.116200 OK 8.1 kB URL GET HTTP/3 hd29.lordsfilm.cfd/templates/lordfilm-light/lazydev/dle_filter/assets/dle_filter.css
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type gzip compressed data, from Unix
Hash 6e852e3c3d3a5e25a2a7a1473f7f5aff
4c691c00bbc1dff934959a6eb340758648c8cbe4
d5b5abc0a3c622cedad28aa6088aef57a957f79b6409f5a759391e0c3392a075
GET /templates/lordfilm-light/lazydev/dle_filter/assets/dle_filter.css HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: text/css
last-modified: Thu, 18 Jan 2024 22:01:41 GMT
etag: W/"65a99fc5-a775"
expires: Sat, 11 May 2024 16:07:05 GMT
cache-control: max-age=86400
content-encoding: gzip
cf-cache-status: HIT
age: 8779
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ByH5j2HaniZudoGGSjW0iiDTrfv3Ca1z%2BczyYfZ5d0WYE6HiOB1osDGqEYWpVhzJgNAt7yfGQZiSgsHCY%2B0sAfS9rXSHASCbsFs%2FG3qtKR2ifjXYnTO3jH7w2RwxxnGqXJ%2Fwvnc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c0476c864569f-OSL
alt-svc: h3=":443"; ma=86400
aprt.playjusting.com/?token=c85d03829d7e88fcf62e7dcba521fb
50.7.239.229 48 kB URL GET aprt.playjusting.com/?token=c85d03829d7e88fcf62e7dcba521fb
IP 50.7.239.229:0
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerZeroSSL
Subjectplayjusting.com
Fingerprint3B:08:85:31:7B:7A:F5:D6:D5:60:5E:BB:26:30:48:E2:BB:B2:67:EC
ValidityFri, 22 Mar 2024 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type gzip compressed data, from Unix
Hash fb0ed206ce0682dc40ff7b3a3c00f66a
2041eb7126839a4999d3f8ee4b65bf29d9b02bac
af48793dab2100c6089c627e506b840940af06c8c572092f351024be3b4bb41d
GET /?token=c85d03829d7e88fcf62e7dcba521fb HTTP/1.1
Host: aprt.playjusting.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:25 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000;
content-encoding: gzip
be: main_site_ssl
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2
216.58.207.227200 OK 27 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2
IP 216.58.207.227:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 26736, version 1.0
Hash 8404cfed82d322c1be8e149fd9f40eb8
3e3657246db3b889e68d520904ac294a230db56d
8f76526e440538ec1300aa89f671acd1b746925833f7160f6c0e29443008f97f
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26736
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 01:08:58 GMT
expires: Sat, 10 May 2025 01:08:58 GMT
cache-control: public, max-age=31536000
age: 62667
last-modified: Thu, 14 Dec 2023 02:00:28 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUJiZTaR.woff2
216.58.207.227 6.7 kB URL fonts.gstatic.com/s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUJiZTaR.woff2
IP 216.58.207.227:0
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 6736, version 1.0
Hash 2fe2bd8e70cf6542717a6589df6f581e
d6edccbe0e5d83ab0ca3dac7befefb1218fd2991
5c8f202d4a7e30d4345ec3b768e8b5076933d3c8abcac956b3fa6c6ee4b994bf
GET /s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUJiZTaR.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6736
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 09:28:42 GMT
expires: Sun, 04 May 2025 09:28:42 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Aug 2023 18:39:07 GMT
content-type: font/woff2
age: 551083
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2
216.58.207.227 13 kB URL fonts.gstatic.com/s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2
IP 216.58.207.227:0
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 12648, version 1.0
Hash 5e79fc3b5fbdec47c02942523ae2bdbd
fdb96db25dc07b7c0573bf5a66966d12dfbb41bd
6ecd2a103a7260474c3239da5f32a2f7cb999765d9ab12161f3e4abe3906316f
GET /s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12648
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 May 2024 09:25:43 GMT
expires: Mon, 05 May 2025 09:25:43 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Aug 2023 18:38:40 GMT
content-type: font/woff2
age: 464862
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn77.aj1907.online/63c0d7d8.js
185.76.9.23200 OK 62 kB URL GET HTTP/2 cdn77.aj1907.online/63c0d7d8.js
IP 185.76.9.23:443
ASN #60068 Datacamp Limited
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject1689002058.rsc.cdn77.org
Fingerprint64:40:8F:2C:CD:E5:6F:83:A9:2C:54:4C:69:73:25:FB:0F:55:2A:20
ValidityMon, 22 Apr 2024 14:32:43 GMT - Sun, 21 Jul 2024 14:32:42 GMT
File type gzip compressed data, from Unix
Hash 827103575181bf3b91397e86313395ce
6f90452cddcece58152929815edc7f3e024b53a7
15c4fec77aec8d3711adf8e658d5ffc6dd9034c44c8e455eaf5fc259dcacc11e
GET /63c0d7d8.js HTTP/1.1
Host: cdn77.aj1907.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: text/javascript
vary: Accept-Encoding
etag: W/"07535c0ef551a01cbecdc61042aca2b3b"
x-77-nzt: EwwBuUwJFAH3TIoAAAgBuUwKCQFhCAElE8I0AaE
x-77-nzt-ray: af585630b003931b74683e6629818221
x-accel-expires: @1716367400
x-77-cache: HIT
content-encoding: gzip
server: CDN77-Turbo
x-accel-date: 1715330600
x-cache: HIT
x-age: 35404
x-77-pop: stockholmSE
x-77-age: 35404
X-Firefox-Spdy: h2
hd29.lordsfilm.cfd/templates/lordfilm-light/images/ft-logo.png
104.21.28.116200 OK 1.6 kB URL GET HTTP/3 hd29.lordsfilm.cfd/templates/lordfilm-light/images/ft-logo.png
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type PNG image data, 180 x 70, 8-bit/color RGBA, non-interlaced
Hash 572941a7f6711c15fe7a23a5c3ca4900
6291062649330f68fd65df8eab1caa924212cf27
4c7dbbe19f4ad6c3712a18ee1abd580bdea73d92bc813aec7996f047d1532d8f
GET /templates/lordfilm-light/images/ft-logo.png HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/templates/lordfilm-light/style/styles.css
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:25 GMT
content-type: image/png
content-length: 1635
last-modified: Thu, 18 Jan 2024 22:01:41 GMT
etag: "65a99fc5-663"
expires: Sat, 11 May 2024 16:07:09 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 8776
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T2zTJyPg3YwjscF9y3nM3WZBZ%2BC4aN2b7DnKTQks3i3Q%2BXMACubUaMm4yW1NpKwh9lg%2FJsyar6%2FXyRCNyjSao9VQMW52Lp3ALbTyvB4QfVmz2eUX%2FJJ8F96EFOVi73G3RorCzXE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047e1ba0569f-OSL
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2
216.58.207.227200 OK 27 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2
IP 216.58.207.227:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 26736, version 1.0
Hash 8404cfed82d322c1be8e149fd9f40eb8
3e3657246db3b889e68d520904ac294a230db56d
8f76526e440538ec1300aa89f671acd1b746925833f7160f6c0e29443008f97f
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26736
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 01:08:58 GMT
expires: Sat, 10 May 2025 01:08:58 GMT
cache-control: public, max-age=31536000
age: 62667
last-modified: Thu, 14 Dec 2023 02:00:28 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
hd29.lordsfilm.cfd/engine/editor/jscripts/froala/fonts/fontawesome-webfont.woff2?v=4.5.0
104.21.28.116 67 kB URL hd29.lordsfilm.cfd/engine/editor/jscripts/froala/fonts/fontawesome-webfont.woff2?v=4.5.0
IP 104.21.28.116:0
File type Web Open Font Format (Version 2), TrueType, length 66624, version 4.262
Hash db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995
GET /engine/editor/jscripts/froala/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/engine/classes/min/index.php?f=engine/editor/jscripts/froala/fonts/font-awesome.css,engine/editor/jscripts/froala/css/editor.css&v=c04dd
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:25 GMT
content-type: application/octet-stream
content-length: 66624
last-modified: Thu, 18 Jan 2024 21:53:46 GMT
etag: "65a99dea-10440"
expires: Sat, 11 May 2024 16:29:12 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 7453
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gzZhoxx9Xe7YQdevaoxD3%2BI9sHAJ1Qc2sBrui%2FfmENyq3L4rLw9dfSzvQTo3ufRTokfxwWuN6foUAR5N%2F%2BSudP5TZb20vtlhGOMppTOSp2YORWDE4AsL%2FPO3iXLvLxXEllVeUAs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047e4bd9569f-OSL
alt-svc: h3=":443"; ma=86400
cdnmovies.net/storage/iframe.js
89.208.104.6 630 B URL cdnmovies.net/storage/iframe.js
IP 89.208.104.6:0
ASN #210644 Aeza International Ltd
File type JavaScript source, ASCII text, with very long lines (1000)
Hash 9d568f6c7e7ea9c4aa7b7f93a797bc83
10dfff60c138b479c6fc60bbd923ceb8916816b3
72bf31640eb3751f893de0e09ddc744956d6adb929798d72074a5d107e730594
GET /storage/iframe.js HTTP/1.1
Host: cdnmovies.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:25 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 07 Apr 2024 14:48:26 GMT
Vary: Accept-Encoding
ETag: W/"6612b23a-3e9"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: ALLOWALL
Content-Encoding: br
s.myangular.life/player?cat=actual&hit=script&sub=actualize&host=hd29.lordsfilm.cfd&v=24-05-10-01
138.201.37.241200 OK 0 B URL GET HTTP/1.1 s.myangular.life/player?cat=actual&hit=script&sub=actualize&host=hd29.lordsfilm.cfd&v=24-05-10-01
IP 138.201.37.241:443
ASN #24940 Hetzner Online GmbH
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint49:29:7B:E4:AA:2F:8B:1B:40:C9:EB:26:F2:8A:38:C0:BB:63:42:42
ValidityFri, 05 Apr 2024 00:00:00 GMT - Tue, 06 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?cat=actual&hit=script&sub=actualize&host=hd29.lordsfilm.cfd&v=24-05-10-01 HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:25 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
api.kinogram.best/embed/movie/39760?host=hd29.lordsfilm.cfd
162.19.98.135200 OK 7.3 kB URL GET HTTP/1.1 api.kinogram.best/embed/movie/39760?host=hd29.lordsfilm.cfd
IP 162.19.98.135:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subject*.kinogram.best
FingerprintA5:F2:6B:FD:6B:CF:67:F2:AF:AF:D9:95:D3:A0:03:9A:E3:B5:50:4C
ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (3235)
Hash 7faeb8e8567de40f8b51b407d73ea6de
f717595c80decbff57452cd75d8d78b36001ee26
69cdb17bf78b9f1223d6e760ef3b1fe784e37c2e9d437b208770fe7f016dbc43
GET /embed/movie/39760?host=hd29.lordsfilm.cfd HTTP/1.1
Host: api.kinogram.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:25 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://hd29.lordsfilm.cfd
Cache-Control: no-cache, no-store, must-revalidate
Expires: 1970-01-01 00:00:00
Pragma: no-cache
Set-Cookie: _uid=8708dfaa-8f02-4f1e-a00b-21b2681138dd; Path=/; Domain=kinogram.best; Max-Age=31104000; Secure
Vary: *
Content-Encoding: gzip
api.linktodo.ws/embed/movie/39760?host=hd29.lordsfilm.cfd
79.124.78.184 7.3 kB URL api.linktodo.ws/embed/movie/39760?host=hd29.lordsfilm.cfd
IP 79.124.78.184:0
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (3235)
Hash abedf0b5d589468304aadc329c939b93
9b7be80115629e6aac6807c190dae4adb74494a0
d45b042eac52ad03bddba756d55c3023be88ca61f63531b929945c8b2195c429
GET /embed/movie/39760?host=hd29.lordsfilm.cfd HTTP/1.1
Host: api.linktodo.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:25 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate
Expires: 1970-01-01 00:00:00
Pragma: no-cache
Set-Cookie: _uid=ef220ae0-bcf8-48b1-9b50-1f427a3d4785; Path=/; Domain=linktodo.ws; Max-Age=31104000; Secure
Vary: *
Content-Encoding: gzip
z.cdn.trafficbass.com/load?z=1689410914&div=comvk6fh1so&cw=1280&ch=1024&sr=1280x1024&bh=2&tl=1776&pl=5&mi=2&hc=48&n=1715366005362&v=true&i=true&url=hd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&vc=0&ti=%D0%A1%D0%B5%D1%80%D0%B8%D0%B0%D0%BB%20%D0%90%D0%B2%D0%B0%D0%BD%D0%BF%D0%BE%D1%81%D1%82%20(2020)%20%D1%81%D0%BC%D0%BE%D1%82%D1%80%D0%B5%D1%82%D1%8C%20%D0%BE%D0%BD%D0%BB%D0%B0%D0%B9%D0%BD%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%B2%20%D1%85%D0%BE%D1%80%D0%BE%D1%88%D0%B5%D0%BC%20%D0%BA%D0%B0%D1%87%D0%B5%D1%81%D1%82%D0%B2%D0%B5&zyx=3658774264
213.227.149.183 5.3 kB URL z.cdn.trafficbass.com/load?z=1689410914&div=comvk6fh1so&cw=1280&ch=1024&sr=1280x1024&bh=2&tl=1776&pl=5&mi=2&hc=48&n=1715366005362&v=true&i=true&url=hd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&vc=0&ti=%D0%A1%D0%B5%D1%80%D0%B8%D0%B0%D0%BB%20%D0%90%D0%B2%D0%B0%D0%BD%D0%BF%D0%BE%D1%81%D1%82%20(2020)%20%D1%81%D0%BC%D0%BE%D1%82%D1%80%D0%B5%D1%82%D1%8C%20%D0%BE%D0%BD%D0%BB%D0%B0%D0%B9%D0%BD%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%B2%20%D1%85%D0%BE%D1%80%D0%BE%D1%88%D0%B5%D0%BC%20%D0%BA%D0%B0%D1%87%D0%B5%D1%81%D1%82%D0%B2%D0%B5&zyx=3658774264
IP 213.227.149.183:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JavaScript source, ASCII text, with very long lines (570)
Hash cb44b531b0e5cdbe98128d0077a3361c
6631122681366936ad645e8a25597196541d19f0
a6435478487cb144a0682976b84e0c88a2dc382cf9fb676680d17c56ca1f572d
GET /load?z=1689410914&div=comvk6fh1so&cw=1280&ch=1024&sr=1280x1024&bh=2&tl=1776&pl=5&mi=2&hc=48&n=1715366005362&v=true&i=true&url=hd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&vc=0&ti=%D0%A1%D0%B5%D1%80%D0%B8%D0%B0%D0%BB%20%D0%90%D0%B2%D0%B0%D0%BD%D0%BF%D0%BE%D1%81%D1%82%20(2020)%20%D1%81%D0%BC%D0%BE%D1%82%D1%80%D0%B5%D1%82%D1%8C%20%D0%BE%D0%BD%D0%BB%D0%B0%D0%B9%D0%BD%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%B2%20%D1%85%D0%BE%D1%80%D0%BE%D1%88%D0%B5%D0%BC%20%D0%BA%D0%B0%D1%87%D0%B5%D1%81%D1%82%D0%B2%D0%B5&zyx=3658774264 HTTP/1.1
Host: z.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:25 GMT
content-type: application/javascript; charset=utf-8
content-length: 5258
content-encoding: br
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: -1
p3p: policyref="/p3p.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
vary: Accept-Encoding
set-cookie: AU=9f61b35154f7c779; Expires=Fri, 09 May 2036 21:00:09 GMT; Path=/; HttpOnly; SameSite=None; Secure
X-Firefox-Spdy: h2
aj1907.online/zOZzCMrj2extZ3Ine05KpmMwv5bZB4vqeK_fEX7wwqnpYxv3F64C8kus0KvmdpK0FbcT1LFGeiORkT6P0ujdlyAAsTghuvDb-XPX-6Wy5BhRNwa9CtJu20Wblv1np0bu60zK_bEc7dpOP7NEkp6njTO06KMW28jb-PvAk-ch4Zo5Ai91tbTs1LTIsXmn2-PAcSOlN92nePLIxK9Rf3AraHYOYzI3ZrH8Ma_xaIREfIPNS6NzfwHwu0grCo7OxaA3Dv7lCEmVk_JuKpbxjY9iY_CWkKwl4kIJW19aOHmz-bRkZdXxI0U_gG7Ztw6ZFtg1VVxO3ALByObSpcKFnRb8BYVHXiVA3dO52Kfr-XWoCp8lUjJin8cq9o1n5EKr2SVnsbTdMVWdu2K08ap4lVvU9OS_2JpFwAnQo6VrETDY1lioV_Kaihe_EBUPZVwFttVm7T9exqBFbSIdIDMkDyFXzrVSPAqXfp8I5k7HeJZdkzJgdF7fJU2rCwOrlSjFZN37L6x6jEu-Va6eVQD1MKEUAIdkFrjPw9nluJwBabm1cD3nd?
23.88.0.239200 11 kB URL POST HTTP/1.1 aj1907.online/zOZzCMrj2extZ3Ine05KpmMwv5bZB4vqeK_fEX7wwqnpYxv3F64C8kus0KvmdpK0FbcT1LFGeiORkT6P0ujdlyAAsTghuvDb-XPX-6Wy5BhRNwa9CtJu20Wblv1np0bu60zK_bEc7dpOP7NEkp6njTO06KMW28jb-PvAk-ch4Zo5Ai91tbTs1LTIsXmn2-PAcSOlN92nePLIxK9Rf3AraHYOYzI3ZrH8Ma_xaIREfIPNS6NzfwHwu0grCo7OxaA3Dv7lCEmVk_JuKpbxjY9iY_CWkKwl4kIJW19aOHmz-bRkZdXxI0U_gG7Ztw6ZFtg1VVxO3ALByObSpcKFnRb8BYVHXiVA3dO52Kfr-XWoCp8lUjJin8cq9o1n5EKr2SVnsbTdMVWdu2K08ap4lVvU9OS_2JpFwAnQo6VrETDY1lioV_Kaihe_EBUPZVwFttVm7T9exqBFbSIdIDMkDyFXzrVSPAqXfp8I5k7HeJZdkzJgdF7fJU2rCwOrlSjFZN37L6x6jEu-Va6eVQD1MKEUAIdkFrjPw9nluJwBabm1cD3nd?
IP 23.88.0.239:443
ASN #24940 Hetzner Online GmbH
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectaj1907.online
Fingerprint3A:40:A4:8F:A4:3F:CA:83:C4:F2:07:5F:5C:BD:26:67:E3:96:0F:02
ValidityTue, 09 Apr 2024 08:08:28 GMT - Mon, 08 Jul 2024 08:08:27 GMT
Hash 03d1f149fe7687005a7e81040370ab85
e2634c80e2e708ea4a586ad3165fd3acb412ead1
75d807caf4010776c725af022518a89a0ad8432b8feeac2e1b2c044605881e5d
POST /zOZzCMrj2extZ3Ine05KpmMwv5bZB4vqeK_fEX7wwqnpYxv3F64C8kus0KvmdpK0FbcT1LFGeiORkT6P0ujdlyAAsTghuvDb-XPX-6Wy5BhRNwa9CtJu20Wblv1np0bu60zK_bEc7dpOP7NEkp6njTO06KMW28jb-PvAk-ch4Zo5Ai91tbTs1LTIsXmn2-PAcSOlN92nePLIxK9Rf3AraHYOYzI3ZrH8Ma_xaIREfIPNS6NzfwHwu0grCo7OxaA3Dv7lCEmVk_JuKpbxjY9iY_CWkKwl4kIJW19aOHmz-bRkZdXxI0U_gG7Ztw6ZFtg1VVxO3ALByObSpcKFnRb8BYVHXiVA3dO52Kfr-XWoCp8lUjJin8cq9o1n5EKr2SVnsbTdMVWdu2K08ap4lVvU9OS_2JpFwAnQo6VrETDY1lioV_Kaihe_EBUPZVwFttVm7T9exqBFbSIdIDMkDyFXzrVSPAqXfp8I5k7HeJZdkzJgdF7fJU2rCwOrlSjFZN37L6x6jEu-Va6eVQD1MKEUAIdkFrjPw9nluJwBabm1cD3nd? HTTP/1.1
Host: aj1907.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/1.1 200
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
permissions-policy: *
p3p: CP="CAO PSA OUR"
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
set-cookie: UUID=a5422175-f779-5bdd-9035-7ae658bf7920; Domain=aj1907.online; Expires=Sat, 14 Jun 2025 18:33:25 GMT; Path=/; Secure; SameSite=None
vary: accept-encoding
content-encoding: gzip
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Fri, 10 May 2024 18:33:24 GMT
z.cdn.trafficbass.com/load?z=1475353534&div=zone_1475353534&cw=1280&ch=1024&sr=1280x1024&bh=2&tl=1776&pl=5&mi=2&hc=48&n=1715366005362&v=true&i=true&url=hd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&vc=0&ti=%D0%A1%D0%B5%D1%80%D0%B8%D0%B0%D0%BB%20%D0%90%D0%B2%D0%B0%D0%BD%D0%BF%D0%BE%D1%81%D1%82%20(2020)%20%D1%81%D0%BC%D0%BE%D1%82%D1%80%D0%B5%D1%82%D1%8C%20%D0%BE%D0%BD%D0%BB%D0%B0%D0%B9%D0%BD%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%B2%20%D1%85%D0%BE%D1%80%D0%BE%D1%88%D0%B5%D0%BC%20%D0%BA%D0%B0%D1%87%D0%B5%D1%81%D1%82%D0%B2%D0%B5&zyx=3658774264
213.227.149.183 2.0 kB URL z.cdn.trafficbass.com/load?z=1475353534&div=zone_1475353534&cw=1280&ch=1024&sr=1280x1024&bh=2&tl=1776&pl=5&mi=2&hc=48&n=1715366005362&v=true&i=true&url=hd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&vc=0&ti=%D0%A1%D0%B5%D1%80%D0%B8%D0%B0%D0%BB%20%D0%90%D0%B2%D0%B0%D0%BD%D0%BF%D0%BE%D1%81%D1%82%20(2020)%20%D1%81%D0%BC%D0%BE%D1%82%D1%80%D0%B5%D1%82%D1%8C%20%D0%BE%D0%BD%D0%BB%D0%B0%D0%B9%D0%BD%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%B2%20%D1%85%D0%BE%D1%80%D0%BE%D1%88%D0%B5%D0%BC%20%D0%BA%D0%B0%D1%87%D0%B5%D1%81%D1%82%D0%B2%D0%B5&zyx=3658774264
IP 213.227.149.183:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JavaScript source, ASCII text, with very long lines (576)
Hash ddd3b2ae283ec600c39deb808b165fc4
e7a867cbf3e741714b2c8ac045786535343473dd
8cb291fd00861bdbc662d6d2b6166c394002fb4d6757095809901c7e2effaf28
GET /load?z=1475353534&div=zone_1475353534&cw=1280&ch=1024&sr=1280x1024&bh=2&tl=1776&pl=5&mi=2&hc=48&n=1715366005362&v=true&i=true&url=hd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&vc=0&ti=%D0%A1%D0%B5%D1%80%D0%B8%D0%B0%D0%BB%20%D0%90%D0%B2%D0%B0%D0%BD%D0%BF%D0%BE%D1%81%D1%82%20(2020)%20%D1%81%D0%BC%D0%BE%D1%82%D1%80%D0%B5%D1%82%D1%8C%20%D0%BE%D0%BD%D0%BB%D0%B0%D0%B9%D0%BD%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%B2%20%D1%85%D0%BE%D1%80%D0%BE%D1%88%D0%B5%D0%BC%20%D0%BA%D0%B0%D1%87%D0%B5%D1%81%D1%82%D0%B2%D0%B5&zyx=3658774264 HTTP/1.1
Host: z.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:25 GMT
content-type: application/javascript; charset=utf-8
content-length: 2001
content-encoding: br
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: -1
p3p: policyref="/p3p.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
vary: Accept-Encoding
set-cookie: AU=9f61b35154f7c779; Expires=Fri, 09 May 2036 21:00:09 GMT; Path=/; HttpOnly; SameSite=None; Secure
sC=1; expires=Sun, 12 May 2024 21:00:12 GMT; path=/;
X-Firefox-Spdy: h2
aj1907.online/zGaS0T10-jLrimzHS2hMO7bP9TgC6OnrbTyT470GpbTTz1nEElVTPJn6kCpcrIpjFm6qAiQvfSqjxa7dUejCek347NF2mUTJ9VbzwR2u-F9d7R5AJHgj0GO6w5hgrTXh_IM0JTErZ3REdtbKvO6Wy8BB5ljZA3ko0J_jdw_rs0GeiRx18yDxf8okGhJ9j-7BEA3D6s7pxOOCZUunk3P4vDEaLD2XI4nCluagc9h5x-0qgHGBqN98wb6qMaRP1wyRY7CD89rU1OL9IMbI1TNxNela95whYJDLemg9tT5ztzu4pVaLuS2XcOZzrNNcGmTgYAAXAYvHiITuZU3cGUMv3sgUfS96Vas6o7y5etOFEezI1e7R7-ZI1PSfvKuK7RLLv3hOoyWj_13Sdrj5XrhI9zH1gKmFn7qv-pmxA4JfvH7fxkMd1SnzzJ2o4C3_T2iIlxZRQz9gJo74tukddMlk5DUQi1bun2IY81u194YykmYlRr5LBiJuUa3XVeK3aUkLCePeOgJtZ-dzS2scAyFe_GrqiAd1-tVPvzLG7VAlrP1hSLtg?
23.88.0.239 1.6 kB URL aj1907.online/zGaS0T10-jLrimzHS2hMO7bP9TgC6OnrbTyT470GpbTTz1nEElVTPJn6kCpcrIpjFm6qAiQvfSqjxa7dUejCek347NF2mUTJ9VbzwR2u-F9d7R5AJHgj0GO6w5hgrTXh_IM0JTErZ3REdtbKvO6Wy8BB5ljZA3ko0J_jdw_rs0GeiRx18yDxf8okGhJ9j-7BEA3D6s7pxOOCZUunk3P4vDEaLD2XI4nCluagc9h5x-0qgHGBqN98wb6qMaRP1wyRY7CD89rU1OL9IMbI1TNxNela95whYJDLemg9tT5ztzu4pVaLuS2XcOZzrNNcGmTgYAAXAYvHiITuZU3cGUMv3sgUfS96Vas6o7y5etOFEezI1e7R7-ZI1PSfvKuK7RLLv3hOoyWj_13Sdrj5XrhI9zH1gKmFn7qv-pmxA4JfvH7fxkMd1SnzzJ2o4C3_T2iIlxZRQz9gJo74tukddMlk5DUQi1bun2IY81u194YykmYlRr5LBiJuUa3XVeK3aUkLCePeOgJtZ-dzS2scAyFe_GrqiAd1-tVPvzLG7VAlrP1hSLtg?
IP 23.88.0.239:0
ASN #24940 Hetzner Online GmbH
Hash 75d2293badc92f9fb6c758e873cb27a3
81b33f46a7e00dfd6d857d8202be8acd0e66ea0f
c6bcb4924321a07e447a2d31fdee85a0cf2640157607ce52de61b8fc82f04754
POST /zGaS0T10-jLrimzHS2hMO7bP9TgC6OnrbTyT470GpbTTz1nEElVTPJn6kCpcrIpjFm6qAiQvfSqjxa7dUejCek347NF2mUTJ9VbzwR2u-F9d7R5AJHgj0GO6w5hgrTXh_IM0JTErZ3REdtbKvO6Wy8BB5ljZA3ko0J_jdw_rs0GeiRx18yDxf8okGhJ9j-7BEA3D6s7pxOOCZUunk3P4vDEaLD2XI4nCluagc9h5x-0qgHGBqN98wb6qMaRP1wyRY7CD89rU1OL9IMbI1TNxNela95whYJDLemg9tT5ztzu4pVaLuS2XcOZzrNNcGmTgYAAXAYvHiITuZU3cGUMv3sgUfS96Vas6o7y5etOFEezI1e7R7-ZI1PSfvKuK7RLLv3hOoyWj_13Sdrj5XrhI9zH1gKmFn7qv-pmxA4JfvH7fxkMd1SnzzJ2o4C3_T2iIlxZRQz9gJo74tukddMlk5DUQi1bun2IY81u194YykmYlRr5LBiJuUa3XVeK3aUkLCePeOgJtZ-dzS2scAyFe_GrqiAd1-tVPvzLG7VAlrP1hSLtg? HTTP/1.1
Host: aj1907.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/1.1 200
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
permissions-policy: *
p3p: CP="CAO PSA OUR"
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
set-cookie: UUID=a5422175-f779-5bdd-9035-7ae658bf7920; Domain=aj1907.online; Expires=Sat, 14 Jun 2025 18:33:25 GMT; Path=/; Secure; SameSite=None
vary: accept-encoding
content-encoding: gzip
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Fri, 10 May 2024 18:33:24 GMT
s2517.com/z9XrvQoWZlpOtXPqTzduz8mMkkA0fQEDkk6UYOFdNUlzkysblUshSiAGOTb57H93bHw744PIvZdnrxbl2jqU-lmoYQBQoo77rBM15nNiTlqbYZ_MTqhWNjq0kROAwHGWiNraEWlClzaphNcpsbkom7QUgF77FNU7kFLH2X17a_7st6V2jVULvVEylQ8KjSU5WinaStghr4mZzzt3NSaYQyUW997dJADQQs62_furd0rp3LYMZEF2ZOgE_PCZZANhD6dQlhrGA-HvaF1mBJtPul2b-AvRMPEhlTE_Clx9z06bsiRubfBij9L4sfnHzipI7HU-QQ5ajQCYJ0ZAgh_eM7rDAoVdKLB8SDosCW07dLe94agXMspsEOR03Ha3Yak8DIaC5EPrx9-2wDkuYBrvxYMJGdi7ApXJ8xfKqXhGXp9I-A3pDxrAB4Fe8b1kFeB6pn9Ene-je7UYJclBEhFxsedZZYEJ4pJMM1AR2orDpMQHew11f25sH6f4Yofdm3NA?
65.21.89.92200 608 B URL POST HTTP/1.1 s2517.com/z9XrvQoWZlpOtXPqTzduz8mMkkA0fQEDkk6UYOFdNUlzkysblUshSiAGOTb57H93bHw744PIvZdnrxbl2jqU-lmoYQBQoo77rBM15nNiTlqbYZ_MTqhWNjq0kROAwHGWiNraEWlClzaphNcpsbkom7QUgF77FNU7kFLH2X17a_7st6V2jVULvVEylQ8KjSU5WinaStghr4mZzzt3NSaYQyUW997dJADQQs62_furd0rp3LYMZEF2ZOgE_PCZZANhD6dQlhrGA-HvaF1mBJtPul2b-AvRMPEhlTE_Clx9z06bsiRubfBij9L4sfnHzipI7HU-QQ5ajQCYJ0ZAgh_eM7rDAoVdKLB8SDosCW07dLe94agXMspsEOR03Ha3Yak8DIaC5EPrx9-2wDkuYBrvxYMJGdi7ApXJ8xfKqXhGXp9I-A3pDxrAB4Fe8b1kFeB6pn9Ene-je7UYJclBEhFxsedZZYEJ4pJMM1AR2orDpMQHew11f25sH6f4Yofdm3NA?
IP 65.21.89.92:443
ASN #24940 Hetzner Online GmbH
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjects2517.com
Fingerprint6C:9B:1B:6F:54:1C:05:6A:9A:E1:1E:80:BE:17:2B:2B:C5:9E:29:17
ValiditySun, 17 Mar 2024 08:09:13 GMT - Sat, 15 Jun 2024 08:09:12 GMT
Hash 2b44ce2a8eae130e6f64b7977d7e3cda
dfd0c707a64288a03262dceb8297ecbcbeeca11b
1834b397ad24d9d03f27d267977d3fed6a99ed7eb97b5ff3fa36068991692d00
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /z9XrvQoWZlpOtXPqTzduz8mMkkA0fQEDkk6UYOFdNUlzkysblUshSiAGOTb57H93bHw744PIvZdnrxbl2jqU-lmoYQBQoo77rBM15nNiTlqbYZ_MTqhWNjq0kROAwHGWiNraEWlClzaphNcpsbkom7QUgF77FNU7kFLH2X17a_7st6V2jVULvVEylQ8KjSU5WinaStghr4mZzzt3NSaYQyUW997dJADQQs62_furd0rp3LYMZEF2ZOgE_PCZZANhD6dQlhrGA-HvaF1mBJtPul2b-AvRMPEhlTE_Clx9z06bsiRubfBij9L4sfnHzipI7HU-QQ5ajQCYJ0ZAgh_eM7rDAoVdKLB8SDosCW07dLe94agXMspsEOR03Ha3Yak8DIaC5EPrx9-2wDkuYBrvxYMJGdi7ApXJ8xfKqXhGXp9I-A3pDxrAB4Fe8b1kFeB6pn9Ene-je7UYJclBEhFxsedZZYEJ4pJMM1AR2orDpMQHew11f25sH6f4Yofdm3NA? HTTP/1.1
Host: s2517.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/1.1 200
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
permissions-policy: *
p3p: CP="CAO PSA OUR"
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
set-cookie: UUID=a5422175-f779-5bdd-9035-7ae658bf7920; Domain=s2517.com; Expires=Sat, 14 Jun 2025 18:33:26 GMT; Path=/; Secure; SameSite=None
content-type: application/json;charset=UTF-8
content-length: 608
date: Fri, 10 May 2024 18:33:25 GMT
test.takedwn.ws/ping
141.95.45.147 0 B IP 141.95.45.147:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /ping HTTP/1.1
Host: test.takedwn.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hd29.lordsfilm.cfd/
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:26 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
aj1907.online/zHdguWMen1vnQL18kGfkWvkYG4fv3QRyUP0Ybsg8sfPlCrAGO90hgMvEs5ScdR2h3MTvZ8AY7PI59QPC2FZZAKXyMyWaXCVx7p7hBjhULmqAul5XTioLRYVmYHVs8kyjZYiqJf0Z2moI1ad1w2nigd8ffMjXuGiKRDjFQR1lfxdWH8MUPL7okFyqizL1NYYM-Uu0gKyBwxYy9YPWDC_DKYXkcIkt86D4LRBWuTD1j3nYdAdlNc2FNfKOZoTjsZtzuGMKmlRigh8AL_aYHI7U6q3PiEK51m2QCyBfx59RyAg__b_kk3B6hLZvazHctaCEQvsOcje4veZhGbEXyUbmokb2_s67nSs-O3OIZ-2izxQOpNemkOhMs2bg1QSCm9scj37UGy6_yQHi4AQ8eWLoDkgkNYMLv0g0BZxrtsbvzpTuRYdKhwqXAh17_51DFTrfFZCxbpAt3Iv4EHhoxT7PhyYcrVcjnsG--kGM3VPPEWGud3yx_Xi0bZQZiG2_XxmFQESgPm8qWt375gbgOzLAC6XOex4mMFmJUNSUtBg4_P1oCL9w?
148.251.134.111 658 B URL aj1907.online/zHdguWMen1vnQL18kGfkWvkYG4fv3QRyUP0Ybsg8sfPlCrAGO90hgMvEs5ScdR2h3MTvZ8AY7PI59QPC2FZZAKXyMyWaXCVx7p7hBjhULmqAul5XTioLRYVmYHVs8kyjZYiqJf0Z2moI1ad1w2nigd8ffMjXuGiKRDjFQR1lfxdWH8MUPL7okFyqizL1NYYM-Uu0gKyBwxYy9YPWDC_DKYXkcIkt86D4LRBWuTD1j3nYdAdlNc2FNfKOZoTjsZtzuGMKmlRigh8AL_aYHI7U6q3PiEK51m2QCyBfx59RyAg__b_kk3B6hLZvazHctaCEQvsOcje4veZhGbEXyUbmokb2_s67nSs-O3OIZ-2izxQOpNemkOhMs2bg1QSCm9scj37UGy6_yQHi4AQ8eWLoDkgkNYMLv0g0BZxrtsbvzpTuRYdKhwqXAh17_51DFTrfFZCxbpAt3Iv4EHhoxT7PhyYcrVcjnsG--kGM3VPPEWGud3yx_Xi0bZQZiG2_XxmFQESgPm8qWt375gbgOzLAC6XOex4mMFmJUNSUtBg4_P1oCL9w?
IP 148.251.134.111:0
ASN #24940 Hetzner Online GmbH
Hash 5cb75ccf9d9428c143391620876aa73d
788971ea6421e5303d58de4e7e2592cf9be6ee86
2f24ec8a331f3cad5f4f4ecf748035bad28a1ae71802994393d20153f0d916bf
POST /zHdguWMen1vnQL18kGfkWvkYG4fv3QRyUP0Ybsg8sfPlCrAGO90hgMvEs5ScdR2h3MTvZ8AY7PI59QPC2FZZAKXyMyWaXCVx7p7hBjhULmqAul5XTioLRYVmYHVs8kyjZYiqJf0Z2moI1ad1w2nigd8ffMjXuGiKRDjFQR1lfxdWH8MUPL7okFyqizL1NYYM-Uu0gKyBwxYy9YPWDC_DKYXkcIkt86D4LRBWuTD1j3nYdAdlNc2FNfKOZoTjsZtzuGMKmlRigh8AL_aYHI7U6q3PiEK51m2QCyBfx59RyAg__b_kk3B6hLZvazHctaCEQvsOcje4veZhGbEXyUbmokb2_s67nSs-O3OIZ-2izxQOpNemkOhMs2bg1QSCm9scj37UGy6_yQHi4AQ8eWLoDkgkNYMLv0g0BZxrtsbvzpTuRYdKhwqXAh17_51DFTrfFZCxbpAt3Iv4EHhoxT7PhyYcrVcjnsG--kGM3VPPEWGud3yx_Xi0bZQZiG2_XxmFQESgPm8qWt375gbgOzLAC6XOex4mMFmJUNSUtBg4_P1oCL9w? HTTP/1.1
Host: aj1907.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/1.1 200
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
permissions-policy: *
p3p: CP="CAO PSA OUR"
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
set-cookie: UUID=a5422175-f779-5bdd-9035-7ae658bf7920; Domain=aj1907.online; Expires=Sat, 14 Jun 2025 18:33:26 GMT; Path=/; Secure; SameSite=None
content-type: application/json;charset=UTF-8
content-length: 658
date: Fri, 10 May 2024 18:33:25 GMT
s2517.com/z6Ey8m-qt-PUBKay-F6gDTizo8g0XgwfwK3VG3-JSc33MTkzWqgX2pWXqdQhtaDk1rBQaK3GfAfDgi8iApN4lKnneq5g_QjXnGQdWiLgoaX5R_yb3lfXSoZanObKH00Kg50UzXx97haMuoG5ZukBB7x0KLdPif7ZZB4Ej4NFXzrrYUh4bWUfJnl1moBFqcgIBHwRbrjh4-5O7rRG8awogF6eqdtKtO8_ffgoQAFWylp9SbzW3VQRdoJmuRanloQdoRDhIjXink9F_tU2dJLWCWiXFMs-RS7Jr3MSrzalpih5UR2yrjVZGFZj_ilFeNyEC73PqNOnS0VRbXXZYIk-3JquaHRfkygUpt3nth8K-AyxmRbV7OnYlmH_EEMRoNTi3raOwDR3aJOPiBQre7_95fs8mKHJl44qZp_bkzUUwzOk1whNxOEpPIxmOWYxBdAvv37vZD1k77JGJ4fQsmJrv7B3qv9QbungD6edYqgPTCT2SVzZd5VBQ76lMp_Q2jdA?
65.21.89.92200 608 B URL POST HTTP/1.1 s2517.com/z6Ey8m-qt-PUBKay-F6gDTizo8g0XgwfwK3VG3-JSc33MTkzWqgX2pWXqdQhtaDk1rBQaK3GfAfDgi8iApN4lKnneq5g_QjXnGQdWiLgoaX5R_yb3lfXSoZanObKH00Kg50UzXx97haMuoG5ZukBB7x0KLdPif7ZZB4Ej4NFXzrrYUh4bWUfJnl1moBFqcgIBHwRbrjh4-5O7rRG8awogF6eqdtKtO8_ffgoQAFWylp9SbzW3VQRdoJmuRanloQdoRDhIjXink9F_tU2dJLWCWiXFMs-RS7Jr3MSrzalpih5UR2yrjVZGFZj_ilFeNyEC73PqNOnS0VRbXXZYIk-3JquaHRfkygUpt3nth8K-AyxmRbV7OnYlmH_EEMRoNTi3raOwDR3aJOPiBQre7_95fs8mKHJl44qZp_bkzUUwzOk1whNxOEpPIxmOWYxBdAvv37vZD1k77JGJ4fQsmJrv7B3qv9QbungD6edYqgPTCT2SVzZd5VBQ76lMp_Q2jdA?
IP 65.21.89.92:443
ASN #24940 Hetzner Online GmbH
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjects2517.com
Fingerprint6C:9B:1B:6F:54:1C:05:6A:9A:E1:1E:80:BE:17:2B:2B:C5:9E:29:17
ValiditySun, 17 Mar 2024 08:09:13 GMT - Sat, 15 Jun 2024 08:09:12 GMT
Hash d133f69d16868db6f201c28ec9d4afcc
6267cc290ce79a6fa074b44c8740583804bc8962
5ae703c3f460aefea65b0f9815705095bbd653d33c07b180ba37ecce585e7182
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /z6Ey8m-qt-PUBKay-F6gDTizo8g0XgwfwK3VG3-JSc33MTkzWqgX2pWXqdQhtaDk1rBQaK3GfAfDgi8iApN4lKnneq5g_QjXnGQdWiLgoaX5R_yb3lfXSoZanObKH00Kg50UzXx97haMuoG5ZukBB7x0KLdPif7ZZB4Ej4NFXzrrYUh4bWUfJnl1moBFqcgIBHwRbrjh4-5O7rRG8awogF6eqdtKtO8_ffgoQAFWylp9SbzW3VQRdoJmuRanloQdoRDhIjXink9F_tU2dJLWCWiXFMs-RS7Jr3MSrzalpih5UR2yrjVZGFZj_ilFeNyEC73PqNOnS0VRbXXZYIk-3JquaHRfkygUpt3nth8K-AyxmRbV7OnYlmH_EEMRoNTi3raOwDR3aJOPiBQre7_95fs8mKHJl44qZp_bkzUUwzOk1whNxOEpPIxmOWYxBdAvv37vZD1k77JGJ4fQsmJrv7B3qv9QbungD6edYqgPTCT2SVzZd5VBQ76lMp_Q2jdA? HTTP/1.1
Host: s2517.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/1.1 200
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
permissions-policy: *
p3p: CP="CAO PSA OUR"
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
set-cookie: UUID=a5422175-f779-5bdd-9035-7ae658bf7920; Domain=s2517.com; Expires=Sat, 14 Jun 2025 18:33:26 GMT; Path=/; Secure; SameSite=None
content-type: application/json;charset=UTF-8
content-length: 608
date: Fri, 10 May 2024 18:33:25 GMT
tzpeachcod.com/picture/cross.js?27518&u=null&a=0.9885174727063119
193.200.65.68200 OK 10 kB URL GET HTTP/1.1 tzpeachcod.com/picture/cross.js?27518&u=null&a=0.9885174727063119
IP 193.200.65.68:443
ASN #6681 Giveme Cloud Sp Z O O
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjecttzpeachcod.com
Fingerprint42:5C:76:E9:99:DE:D1:A8:3D:52:61:37:79:01:DB:3A:56:99:49:D1
ValidityWed, 17 Apr 2024 11:33:05 GMT - Tue, 16 Jul 2024 11:33:04 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (429)
Hash fa566e46ccef194187a6895584a0e407
ea6482392f406d99da5d056396fa72221b1e87fa
02d143323cd7a7e2e80c38d15dd3e45104f782e4dccc1d5fce92f31ce515b97b
GET /picture/cross.js?27518&u=null&a=0.9885174727063119 HTTP/1.1
Host: tzpeachcod.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:26 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NON DSP COR CURa TIA"
Set-Cookie: uuid=17153660063052333171; expires=Sun, 10-May-2026 18:33:26 GMT; Max-Age=63072000; path=/; samesite=None; domain=.tzpeachcod.com; secure
cdn.jsdelivr.net/npm/p2p-media-loader-hlsjs@0.6.2/build/p2p-media-loader-hlsjs.min.js
151.101.193.229200 OK 8.1 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/p2p-media-loader-hlsjs@0.6.2/build/p2p-media-loader-hlsjs.min.js
IP 151.101.193.229:443
Requested by https://30830.svetacdn.in/XOpThZNRVeQY/tv-series/9124
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type JavaScript source, ASCII text, with very long lines (26814)
Hash 835f1f7feab838f171c6334abc3d14da
68b97b433d37600647338e57f4344e5e1faf6246
189334d0a898e2aa16794cdd1ea47a0e7c1750578173b25033049fafdf55f2a4
GET /npm/p2p-media-loader-hlsjs@0.6.2/build/p2p-media-loader-hlsjs.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://30830.svetacdn.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.6.2
x-jsd-version-type: version
etag: W/"68bf-aLl7Qz03YAZHM45X9DROXh+vYkY"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 18:33:26 GMT
age: 2771428
x-served-by: cache-fra-eddf8230057-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 8149
X-Firefox-Spdy: h2
z.cdn.trafficbass.com/event?z=1475353534&m=1695559591&n=984446785295897226&u=9f61b35154f7c779&t=
213.227.149.183 35 B URL z.cdn.trafficbass.com/event?z=1475353534&m=1695559591&n=984446785295897226&u=9f61b35154f7c779&t=
IP 213.227.149.183:0
ASN #60781 LeaseWeb Netherlands B.V.
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /event?z=1475353534&m=1695559591&n=984446785295897226&u=9f61b35154f7c779&t= HTTP/1.1
Host: z.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: AU=9f61b35154f7c779
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 400 Bad Request
server: nginx
date: Fri, 10 May 2024 18:33:26 GMT
content-type: image/gif
content-length: 35
X-Firefox-Spdy: h2
api.cdnmovies.net/iframe
89.208.104.6200 OK 1 B IP 89.208.104.6:443
ASN #210644 Aeza International Ltd
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectcdnmovies.net
Fingerprint32:09:B4:20:BD:01:37:84:05:3D:AF:93:AE:9E:FC:68:89:CF:E0:24
ValidityFri, 29 Mar 2024 15:59:47 GMT - Thu, 27 Jun 2024 15:59:46 GMT
File type very short file (no magic)
Hash e4da3b7fbbce2345d7772b0674a318d5
ac3478d69a3c81fa62e60f5c3696165a4e5e6ac4
ef2d127de37b942baad06145e54b0c619a1f22327b2ebbcfbec78f5564afe39d
OPTIONS /iframe HTTP/1.1
Host: api.cdnmovies.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://hd29.lordsfilm.cfd/
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:26 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/8.3.6
Allow: GET,HEAD
Cache-Control: private, must-revalidate
pragma: no-cache
expires: -1
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: ALLOWALL
Content-Encoding: br
cdn.jsdelivr.net/npm/venom-player@latest
151.101.193.229200 OK 199 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/venom-player@latest
IP 151.101.193.229:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65248)
Size 199 kB (198957 bytes)
Hash 5d1a9ce2533ca57d7f64ea63c60fd280
9de3fa4582dc421950827258f1e4ee211471370d
ca268d7567665c6b8a3d51a933e2ee884814fe00b1dcfd7f3bfbdb93700e73dd
GET /npm/venom-player@latest HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.2.88
x-jsd-version-type: version
etag: W/"b0f02-neP6RYLcQhlQgnJY8eTuIRRxNw0"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 18:33:26 GMT
age: 15262
x-served-by: cache-fra-etou8220118-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 198957
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/p2p-media-loader-core@latest/build/p2p-media-loader-core.min.js
151.101.193.229200 OK 42 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/p2p-media-loader-core@latest/build/p2p-media-loader-core.min.js
IP 151.101.193.229:443
Requested by https://30830.svetacdn.in/XOpThZNRVeQY/tv-series/9124
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash c9a8b05945fce050129e32f96c4c9344
732e594daaae33e3141c4401eeb00e24d6255489
6169aae21cd0ef9813b6bda9ec902dee165c4c70202c37af6eb0bc45ced0a872
GET /npm/p2p-media-loader-core@latest/build/p2p-media-loader-core.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://30830.svetacdn.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.6.2
x-jsd-version-type: version
etag: W/"23187-cy5ZTaquM+MUHEQB7rAOJNYlVIk"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 18:33:26 GMT
age: 8883
x-served-by: cache-fra-etou8220152-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 41840
X-Firefox-Spdy: h2
n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1475353534&m=1695559591&c=1271236793&p0=2094476254&p1=2031305422&p2=1870598794&u=9f61b35154f7c779&t=1715366005
82.192.95.133 478 B URL n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1475353534&m=1695559591&c=1271236793&p0=2094476254&p1=2031305422&p2=1870598794&u=9f61b35154f7c779&t=1715366005
IP 82.192.95.133:0
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document, ASCII text, with CRLF, LF line terminators
Hash d876b4021985ffa4d8f002e1fa9daa1f
8109b55caa9ae77b3a46007dd2317b8f2aa30145
16ea6844c39569c1be4eb3516b7489c1c29ab176d3f1aad5c9c2208dadb47b91
GET /uploads/media/3/5/62353/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1475353534&m=1695559591&c=1271236793&p0=2094476254&p1=2031305422&p2=1870598794&u=9f61b35154f7c779&t=1715366005 HTTP/1.1
Host: n3.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:26 GMT
Content-Type: text/html; charset=utf-8
Last-Modified: Mon, 24 Apr 2023 18:13:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6446c6c0-4aa"
Expires: Sat, 11 May 2024 18:33:26 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Content-Encoding: gzip
cdn.trafficbass.com/libs/vast/ima/player/index.html
62.212.82.77 5.2 kB URL cdn.trafficbass.com/libs/vast/ima/player/index.html
IP 62.212.82.77:0
ASN #60781 LeaseWeb Netherlands B.V.
Certificate IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint57:6F:20:E6:B0:40:1C:C7:13:E8:48:0C:11:F9:28:1A:C5:9E:24:49
ValidityThu, 07 Mar 2024 08:49:35 GMT - Mon, 07 Apr 2025 11:37:26 GMT
File type HTML document, ASCII text, with very long lines (1534)
Hash c317240dfd9f2d4a0ca8470386d2885f
32923426c4eeb421e2139da6239b39afd68764cd
3a7a8dfaa54e076ae2df6f4b89925afaf8dea867ce676dbf950856885e92ec85
GET /libs/vast/ima/player/index.html HTTP/1.1
Host: cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:26 GMT
Content-Type: text/html; charset=utf-8
Last-Modified: Tue, 14 Mar 2023 10:16:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"64104974-3cc4"
Expires: Sat, 11 May 2024 18:33:26 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Content-Encoding: gzip
hd29.lordsfilm.cfd/templates/lordfilm-light/dleimages/marker.png
104.21.28.116200 OK 1.9 kB URL GET HTTP/3 hd29.lordsfilm.cfd/templates/lordfilm-light/dleimages/marker.png
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type PNG image data, 32 x 64, 8-bit/color RGBA, non-interlaced
Hash 004417a6a98320b4f11641d6c2441105
222d969222cb52fa16eb621e5930e8978995b79a
e393ab33da5f5e3cb8a5fd7beece758d61ae71f7646f9dd100dc562aa667b723
GET /templates/lordfilm-light/dleimages/marker.png HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/templates/lordfilm-light/style/engine.css
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673; _ma=88d15f87-d2b9-4930-8d6f-a1aa01b97324
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:27 GMT
content-type: image/png
content-length: 1883
last-modified: Thu, 18 Jan 2024 22:01:40 GMT
etag: "65a99fc4-75b"
expires: Sat, 11 May 2024 16:07:11 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 8776
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q5msHKSib5VbYXAZvHVBzoArO17N8k9oGd5TCFmwR0QHi%2Fv14IarBOYDHz4TGpes5%2BrI4OFdk8V8CRkEvaIZWD5lTtGdp70AfWjRL72bkQZ2qiT4Qn9acSS7dLVF6D18Swv43UY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c0487db93569f-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/cdn-cgi/challenge-platform/scripts/jsd/main.js
104.21.28.116 0 B URL hd29.lordsfilm.cfd/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP 104.21.28.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673; _ma=88d15f87-d2b9-4930-8d6f-a1aa01b97324
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 10 May 2024 18:33:27 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rIhiOrUVXVQOXYglmKpZ8wcpkvmWUHFfnLxi%2B88A2DnopIXzIgxwA9YPI2%2BlGJ8G%2FMe8G3NUSjEXsoN7t8G1tabPgv1BNCcTlcngjPlq9hBefOnLZVTRsqqXNp4OZHyb3QUFZVc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c0487db84569f-OSL
alt-svc: h3=":443"; ma=86400
rtb.cdn.adtarget.market/smc?s=4&u=9f61b35154f7c779
81.171.9.38 0 B URL rtb.cdn.adtarget.market/smc?s=4&u=9f61b35154f7c779
IP 81.171.9.38:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /smc?s=4&u=9f61b35154f7c779 HTTP/1.1
Host: rtb.cdn.adtarget.market
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx
date: Fri, 10 May 2024 18:35:17 GMT
X-Firefox-Spdy: h2
www.youtube.com/s/player/17fd9675/www-player.css
142.250.74.14200 OK 48 kB URL GET HTTP/3 www.youtube.com/s/player/17fd9675/www-player.css
IP 142.250.74.14:443
Requested by https://www.youtube.com/embed/8KS5HqEiwLc
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 69c6c2a25cfac2a8ab7182b8a91325da
76d6c2b5a85fd1cedf7ab5022084cc982ef6f11c
e4ea3085c10ebdcee3f4b16dd370f467847e40aba7fcae77d60eed0024155864
GET /s/player/17fd9675/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/8KS5HqEiwLc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 47612
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 14:45:19 GMT
expires: Sat, 10 May 2025 14:45:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 May 2024 04:20:16 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 13688
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/17fd9675/player_ias.vflset/en_US/embed.js
142.250.74.14 20 kB URL www.youtube.com/s/player/17fd9675/player_ias.vflset/en_US/embed.js
IP 142.250.74.14:0
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File type JavaScript source, ASCII text, with very long lines (3391)
Hash a10bbcb280cd85678f7fa91f5987a1b4
d03518f518678e57318f383add3c26eb4c891d96
dcd6057e903309b4cd9d73dbeb9ebb179dd625facd8d04c5578bec9e44f54e0e
GET /s/player/17fd9675/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/8KS5HqEiwLc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 19819
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 08 May 2024 07:44:00 GMT
expires: Thu, 08 May 2025 07:44:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 May 2024 04:20:16 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 211767
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
api.linktodo.ws/cdn.js
79.124.78.184 4.6 kB IP 79.124.78.184:0
File type JavaScript source, ASCII text, with very long lines (14026), with no line terminators
Hash a81f8cb9127ebc541cfe5d8fa444dadb
be16ea0d77bd967771b6668970b9f66bb45daa21
71a2a5087e0df99887785f7890f0320446e336aa298211b5cf6ee5a151ef5091
GET /cdn.js HTTP/1.1
Host: api.linktodo.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.linktodo.ws/embed/movie/39760?host=hd29.lordsfilm.cfd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=3600
Last-Modified: Tue, 16 May 2023 12:42:04 GMT
Content-Encoding: gzip
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227 15 kB URL fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 16:31:04 GMT
expires: Sat, 10 May 2025 16:31:04 GMT
cache-control: public, max-age=31536000
age: 7343
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/venom-player@0.2.88
151.101.193.229200 OK 199 kB URL GET HTTP/3 cdn.jsdelivr.net/npm/venom-player@0.2.88
IP 151.101.193.229:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65248)
Size 199 kB (198957 bytes)
Hash 5d1a9ce2533ca57d7f64ea63c60fd280
9de3fa4582dc421950827258f1e4ee211471370d
ca268d7567665c6b8a3d51a933e2ee884814fe00b1dcfd7f3bfbdb93700e73dd
GET /npm/venom-player@0.2.88 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://api.linktodo.ws
DNT: 1
Connection: keep-alive
Referer: https://api.linktodo.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.2.88
x-jsd-version-type: version
etag: W/"b0f02-neP6RYLcQhlQgnJY8eTuIRRxNw0"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 18:33:27 GMT
age: 3337332
x-served-by: cache-fra-eddf8230145-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 198957
X-Firefox-Spdy: h2
z.cdn.adtarget.market/smc?s=176&u=9f61b35154f7c779
89.149.222.107204 No Content 0 B URL GET HTTP/2 z.cdn.adtarget.market/smc?s=176&u=9f61b35154f7c779
IP 89.149.222.107:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectadtarget.market
Fingerprint83:56:43:B6:77:E9:A6:14:0B:15:4E:AF:CF:9B:F8:A8:4D:31:65:F2
ValidityWed, 08 May 2024 01:12:07 GMT - Tue, 06 Aug 2024 01:12:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /smc?s=176&u=9f61b35154f7c779 HTTP/1.1
Host: z.cdn.adtarget.market
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx
date: Fri, 10 May 2024 18:33:27 GMT
X-Firefox-Spdy: h2
api.linktodo.ws/js/listen-player.js
79.124.78.184 852 B URL api.linktodo.ws/js/listen-player.js
IP 79.124.78.184:0
File type JavaScript source, ASCII text
Hash 0c0c3ebb01863cdbdf9e28b04ea6dbf1
ed4ec6ff3f636ec975ffef955f9aca9dd748bb1d
897015208642232bd542da553dadd5104e30f4a106a3e7bfb522d85569575155
GET /js/listen-player.js HTTP/1.1
Host: api.linktodo.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.linktodo.ws/embed/movie/39760?host=hd29.lordsfilm.cfd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:27 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate
Expires: 1970-01-01 00:00:00
Last-Modified: Mon, 19 Feb 2024 07:54:03 GMT
Pragma: no-cache
Vary: *
Content-Encoding: gzip
30830.svetacdn.in/XOpThZNRVeQY/tv-series/9124
188.114.97.1200 OK 310 kB URL GET HTTP/2 30830.svetacdn.in/XOpThZNRVeQY/tv-series/9124
IP 188.114.97.1:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGoogle Trust Services LLC
Subjectsvetacdn.in
Fingerprint45:66:21:17:9B:C2:70:55:CF:90:41:C7:2F:A6:89:B2:5C:5A:35:3F
ValiditySat, 30 Mar 2024 00:19:23 GMT - Fri, 28 Jun 2024 00:19:22 GMT
File type HTML document, ASCII text, with very long lines (23095)
Size 310 kB (310293 bytes)
Hash 08064bedb8b73805620b00a63166a332
668e1631ee9c93a913a1e5b09a39554028cabb67
e69df8b21954922895eebc8beb90ceee29d42914fc95d4c05043b5b1cd16c876
GET /XOpThZNRVeQY/tv-series/9124 HTTP/1.1
Host: 30830.svetacdn.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 18:33:25 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: x-csrf-token
last-modified: Friday, 10-May-2024 18:33:25 GMT
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6CWB8mFdhvYtazDe2UxE5idpou4CsOmFeazsXrrP3iwn2updM%2FhMRaT3AJ7gYhN9Gur4YXCP%2BOJPZFlUxykh52XMusSLaxuSk0r2kYJN6vJK6ET2j3%2B4tUbT1rUk5CZuiodq%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c047d9fa4b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
s.myangular.life/player?cat=support&hit=wasm&description=wasm%20dc
144.76.194.2 0 B URL s.myangular.life/player?cat=support&hit=wasm&description=wasm%20dc
IP 144.76.194.2:0
ASN #24940 Hetzner Online GmbH
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint49:29:7B:E4:AA:2F:8B:1B:40:C9:EB:26:F2:8A:38:C0:BB:63:42:42
ValidityFri, 05 Apr 2024 00:00:00 GMT - Tue, 06 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?cat=support&hit=wasm&description=wasm%20dc HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.linktodo.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:27 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
hd29.lordsfilm.cfd/templates/lordfilm-light/style/filter-xf.css
104.21.28.116 3.1 kB URL hd29.lordsfilm.cfd/templates/lordfilm-light/style/filter-xf.css
IP 104.21.28.116:0
File type troff or preprocessor input, ASCII text
Hash c3cf86fbbd851bacc1ce3adc2be95d1b
7ce715ce7763dc7d00fa55d6c2e27deec1bbf89a
2162b13542871281e126cc1daecc28351cba58bd60f1152994973515fb24f9d6
GET /templates/lordfilm-light/style/filter-xf.css HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: text/css
last-modified: Thu, 18 Jan 2024 22:01:40 GMT
etag: W/"65a99fc4-36a0"
expires: Sat, 11 May 2024 16:07:05 GMT
cache-control: max-age=86400
content-encoding: gzip
cf-cache-status: HIT
age: 8779
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TBqDWG%2FGKhuWnRU%2FFCruuOLpWSGEDpGwh9KdVBqW0xMixdbBXeN0e9e2ur4pVD0Jj1irUOjvlpCchJFm0SEnSIP4%2F%2FYsia7ip0ArEDOartgtGHUOYPGlNgKqQYId%2FHWDJ3thQms%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c0476c861569f-OSL
alt-svc: h3=":443"; ma=86400
logger.moviead55.ru/logger.php?t=target_country_load&c=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&a=&m=%7B%22browser%22%3A%22%7B%5C%22name%5C%22%3A%5C%22firefox%5C%22%2C%5C%22version%5C%22%3A%5C%2296%5C%22%7D%22%2C%22isMobile%22%3Afalse%2C%22format%22%3A%22new%22%7D&v=16ee33f0a2b397c4a1f1ab6636599ac9&o=undefined
193.200.65.146200 OK 814 kB URL GET HTTP/2 logger.moviead55.ru/logger.php?t=target_country_load&c=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&a=&m=%7B%22browser%22%3A%22%7B%5C%22name%5C%22%3A%5C%22firefox%5C%22%2C%5C%22version%5C%22%3A%5C%2296%5C%22%7D%22%2C%22isMobile%22%3Afalse%2C%22format%22%3A%22new%22%7D&v=16ee33f0a2b397c4a1f1ab6636599ac9&o=undefined
IP 193.200.65.146:443
ASN #6681 Giveme Cloud Sp Z O O
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9
ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Size 814 kB (813959 bytes)
Hash 9782feb2346597c07f609d0839a82684
532b5d9191953dd5337a7e57493f5ee33150a28a
8d63b6e42cc378fa2fecabe3ce905e9720e63bd8a475fd3e53f81180bb651ae6
GET /logger.php?t=target_country_load&c=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&a=&m=%7B%22browser%22%3A%22%7B%5C%22name%5C%22%3A%5C%22firefox%5C%22%2C%5C%22version%5C%22%3A%5C%2296%5C%22%7D%22%2C%22isMobile%22%3Afalse%2C%22format%22%3A%22new%22%7D&v=16ee33f0a2b397c4a1f1ab6636599ac9&o=undefined HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:26 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
s.myangular.life/player?cat=support&hit=async&description=yes
144.76.194.2200 OK 0 B URL GET HTTP/1.1 s.myangular.life/player?cat=support&hit=async&description=yes
IP 144.76.194.2:443
ASN #24940 Hetzner Online GmbH
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint49:29:7B:E4:AA:2F:8B:1B:40:C9:EB:26:F2:8A:38:C0:BB:63:42:42
ValidityFri, 05 Apr 2024 00:00:00 GMT - Tue, 06 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?cat=support&hit=async&description=yes HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.linktodo.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:27 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
cdn.jsdelivr.net/npm/hls.js@0.14.17
151.101.193.229200 OK 0 B URL GET HTTP/2 cdn.jsdelivr.net/npm/hls.js@0.14.17
IP 151.101.193.229:443
Requested by https://30830.svetacdn.in/XOpThZNRVeQY/tv-series/9124
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /npm/hls.js@0.14.17 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://30830.svetacdn.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.14.17
x-jsd-version-type: version
etag: W/"3ab62-0tMQz48mqu56W8Djvl7H6kr8/tw"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 18:33:26 GMT
age: 4987156
x-served-by: cache-fra-eddf8230057-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 74306
X-Firefox-Spdy: h2
30830.svetacdn.in/Assets/pj.js?v=1715366005
188.114.97.1200 OK 40 kB URL GET HTTP/3 30830.svetacdn.in/Assets/pj.js?v=1715366005
IP 188.114.97.1:443
Requested by https://30830.svetacdn.in/XOpThZNRVeQY/tv-series/9124
Certificate IssuerGoogle Trust Services LLC
Subjectsvetacdn.in
Fingerprint45:66:21:17:9B:C2:70:55:CF:90:41:C7:2F:A6:89:B2:5C:5A:35:3F
ValiditySat, 30 Mar 2024 00:19:23 GMT - Fri, 28 Jun 2024 00:19:22 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (534)
Hash 0abe5314069c9b25a3f8eb246e2b4542
cb4e49a767a536a203636d228384ed02299ec117
fb0549e45148fa5d478dbee087681ac5151b704caba82636dab15a635a788774
GET /Assets/pj.js?v=1715366005 HTTP/1.1
Host: 30830.svetacdn.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://30830.svetacdn.in/XOpThZNRVeQY/tv-series/9124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:26 GMT
content-type: application/javascript; charset=utf8
last-modified: Friday, 10-May-2024 18:33:26 GMT
vary: Accept-Encoding
etag: W/"6637aaa7-2d234"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: x-csrf-token
content-encoding: gzip
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KmnYu6OKe6PaPEazTcrxAkPFRZXKmWPjWRATzK2cjxZ2nLDIKdt0lejGWthhQNhOrbIpmC2FGCwSmGKLu5ADzxaz8dbAzCqX4WJPJbWvphAz6x3kM2hIQZa%2FHRwxF5n8ApDCmg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c048419635696-OSL
alt-svc: h3=":443"; ma=86400
30830.svetacdn.in/cdn-cgi/challenge-platform/scripts/jsd/main.js
188.114.97.1 0 B URL 30830.svetacdn.in/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP 188.114.97.1:0
Certificate IssuerGoogle Trust Services LLC
Subjectsvetacdn.in
Fingerprint45:66:21:17:9B:C2:70:55:CF:90:41:C7:2F:A6:89:B2:5C:5A:35:3F
ValiditySat, 30 Mar 2024 00:19:23 GMT - Fri, 28 Jun 2024 00:19:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: 30830.svetacdn.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 10 May 2024 18:33:28 GMT
content-length: 0
access-control-allow-origin: *
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js
cache-control: max-age=300, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zfardhhDQ3pm1tv6af1kDBY1n1ptpagw8mEelzi%2FlVLC8UW9tua%2FvHhENUFYEJRYarCXXdcqlo5aFaMIp8Yboe3DdRI0ELDyJU6UPG61QPo2MmUA5heUdXvJLRxk5vhyi8tbtg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c048f5b395696-OSL
alt-svc: h3=":443"; ma=86400
hd29.lordsfilm.cfd/favicon.png
104.21.28.116 565 B URL hd29.lordsfilm.cfd/favicon.png
IP 104.21.28.116:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced
Hash f7566a25f17d3098011ae838e44c92bd
d5e1328d47322c99ca5962c6fa7f7aa7e8ac4832
4eafa0f551ff23dea3afe81e0eb59203780f226f85c4ebd75aa4e7d8df2ed574
GET /favicon.png HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673; _ma=88d15f87-d2b9-4930-8d6f-a1aa01b97324
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:28 GMT
content-type: image/png
content-length: 565
last-modified: Thu, 18 Jan 2024 21:53:42 GMT
etag: "65a99de6-235"
expires: Sat, 11 May 2024 16:08:27 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 8701
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UYm%2F9xJi7I95DHxwavF31vAEU4HUMkaBAPYXr0UnCB3nH1xlSk7OhNFX8N3IzlJ3NNwiLbwsTL69eAKeRq17BAYkQ8LIOSxGUMBdmIsLx3M5U38s3YDsU5WSXTthtTUMDpSx00c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c048f5df7569f-OSL
alt-svc: h3=":443"; ma=86400
n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/css/styles.css
82.192.95.133200 OK 1.9 kB URL GET HTTP/1.1 n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/css/styles.css
IP 82.192.95.133:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1475353534&m=1695559591&c=1271236793&p0=2094476254&p1=2031305422&p2=1870598794&u=9f61b35154f7c779&t=1715366005
Certificate IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint57:6F:20:E6:B0:40:1C:C7:13:E8:48:0C:11:F9:28:1A:C5:9E:24:49
ValidityThu, 07 Mar 2024 08:49:35 GMT - Mon, 07 Apr 2025 11:37:26 GMT
File type ASCII text, with CRLF line terminators
Hash 7d722ee5071e9374e4379620478bfdd3
cb950d569bd11c49dcf67e4c820c865482de147a
fbd8e4740b6738ae47ac2beb9881a043d07a4db9c6a4d2acdc06674c72589eb6
GET /uploads/media/3/5/62353/v2/css/styles.css HTTP/1.1
Host: n3.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1475353534&m=1695559591&c=1271236793&p0=2094476254&p1=2031305422&p2=1870598794&u=9f61b35154f7c779&t=1715366005
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:28 GMT
Content-Type: text/css
Last-Modified: Mon, 24 Apr 2023 18:13:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6446c6c0-1f20"
Expires: Sat, 11 May 2024 18:33:28 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Content-Encoding: gzip
code.moviead55.ru/go/cinit?cn=btwcookie&rnd=1715366007
193.200.65.144 0 B URL code.moviead55.ru/go/cinit?cn=btwcookie&rnd=1715366007
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=btwcookie&rnd=1715366007 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 10 May 2024 18:33:28 GMT
content-length: 0
location: https://ads.betweendigital.com/match?bidder_id=34348&callback_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbtwcookie%26bid%3D%24%7BUSER_ID%7D
set-cookie: sky_uuid=56e036ff-2453-7353-785d-16c0f947def0; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=otmbid&rnd=1715366007
193.200.65.144 0 B URL code.moviead55.ru/go/cinit?cn=otmbid&rnd=1715366007
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=otmbid&rnd=1715366007 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 10 May 2024 18:33:28 GMT
content-length: 0
location: https://sync.dmp.otm-r.com/match/skyadvert
set-cookie: sky_uuid=669c362b-8b8a-c5ec-a7c9-a725bb0bd089; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
s.myangular.life/player?cat=frame&hit=embed&sub=embed&type=diff&label=other&host=lordsfilm.cfd
144.76.194.2 0 B URL s.myangular.life/player?cat=frame&hit=embed&sub=embed&type=diff&label=other&host=lordsfilm.cfd
IP 144.76.194.2:0
ASN #24940 Hetzner Online GmbH
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint49:29:7B:E4:AA:2F:8B:1B:40:C9:EB:26:F2:8A:38:C0:BB:63:42:42
ValidityFri, 05 Apr 2024 00:00:00 GMT - Tue, 06 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?cat=frame&hit=embed&sub=embed&type=diff&label=other&host=lordsfilm.cfd HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.linktodo.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:28 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
n3.cdn.trafficbass.com/libs/banner_html5.js
82.192.95.133 884 B URL n3.cdn.trafficbass.com/libs/banner_html5.js
IP 82.192.95.133:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JavaScript source, ASCII text
Hash e8af3a70f128e696da5fb7db91e20b83
5b27789477ee963047725f223cc0b45e913ce132
af5a7eae2f66dba439abe5f6f118adda224cfccab9ca2fff974cd675a602d4de
GET /libs/banner_html5.js HTTP/1.1
Host: n3.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1475353534&m=1695559591&c=1271236793&p0=2094476254&p1=2031305422&p2=1870598794&u=9f61b35154f7c779&t=1715366005
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:28 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 03 Mar 2022 13:55:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6220c8ce-8da"
Expires: Sat, 11 May 2024 18:33:28 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Content-Encoding: gzip
code.moviead55.ru/go/cinit?cn=hbrdcookie2&rnd=1715366007
193.200.65.144 0 B URL code.moviead55.ru/go/cinit?cn=hbrdcookie2&rnd=1715366007
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=hbrdcookie2&rnd=1715366007 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 10 May 2024 18:33:28 GMT
content-length: 0
location: https://dm-eu.hybrid.ai/match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D
set-cookie: sky_uuid=c44f0752-84f1-cd7c-39e8-92fb38e5a5ff; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=bzcookie&rnd=1715366007
193.200.65.144 0 B URL code.moviead55.ru/go/cinit?cn=bzcookie&rnd=1715366007
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=bzcookie&rnd=1715366007 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 10 May 2024 18:33:28 GMT
content-length: 0
location: https://exchange.buzzoola.com/cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D
set-cookie: sky_uuid=1d206cb2-22d6-ded1-4b51-07d62f733824; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=solta&rnd=1715366007
193.200.65.144301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=solta&rnd=1715366007
IP 193.200.65.144:443
ASN #6681 Giveme Cloud Sp Z O O
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9
ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=solta&rnd=1715366007 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 10 May 2024 18:33:28 GMT
content-length: 0
location: https://kimberlite.io/rtb/sync/skyadvert?u=7f11965c-0146-2d43-cf5f-e87ad7186a60
set-cookie: sky_uuid=7f11965c-0146-2d43-cf5f-e87ad7186a60; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=ohmybid&rnd=1715366007
193.200.65.144301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=ohmybid&rnd=1715366007
IP 193.200.65.144:443
ASN #6681 Giveme Cloud Sp Z O O
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9
ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=ohmybid&rnd=1715366007 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 10 May 2024 18:33:28 GMT
content-length: 0
location: https://match.ohmy.bid/cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%24%7BUUID%7D
set-cookie: sky_uuid=9b70b5aa-b415-f029-bc88-d14cc129264e; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=gtnt&rnd=1715366007
193.200.65.144 0 B URL code.moviead55.ru/go/cinit?cn=gtnt&rnd=1715366007
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=gtnt&rnd=1715366007 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 10 May 2024 18:33:28 GMT
content-length: 0
location: https://px.adhigh.net/p/cm/skyadvert?u=6fc69852-2ea8-be69-fca4-57d7237481a5
set-cookie: sky_uuid=6fc69852-2ea8-be69-fca4-57d7237481a5; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=otclkbid&rnd=1715366007
193.200.65.144 0 B URL code.moviead55.ru/go/cinit?cn=otclkbid&rnd=1715366007
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=otclkbid&rnd=1715366007 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 10 May 2024 18:33:28 GMT
content-length: 0
location: https://otclick-adv.ru/core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D
set-cookie: sky_uuid=8d1e8f7e-92bc-b09a-ff34-1f45834a5816; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=dgm2&rnd=1715366007
193.200.65.144301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=dgm2&rnd=1715366007
IP 193.200.65.144:443
ASN #6681 Giveme Cloud Sp Z O O
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9
ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=dgm2&rnd=1715366007 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 10 May 2024 18:33:28 GMT
content-length: 0
location: https://sync.opendsp.ru/match/MovieAds?id=b387b7b3-bcf2-d936-6472-ec6dcfe14193
set-cookie: sky_uuid=b387b7b3-bcf2-d936-6472-ec6dcfe14193; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=sapecookie&rnd=1715366007
193.200.65.144301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=sapecookie&rnd=1715366007
IP 193.200.65.144:443
ASN #6681 Giveme Cloud Sp Z O O
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9
ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=sapecookie&rnd=1715366007 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 10 May 2024 18:33:28 GMT
content-length: 0
location: https://www.acint.net/rmatch?dp=167&euid=cae5a5bf-ff1e-3ecd-3582-3cdc8b2a2123&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D
set-cookie: sky_uuid=cae5a5bf-ff1e-3ecd-3582-3cdc8b2a2123; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=gonetbid&rnd=1715366007
193.200.65.144301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=gonetbid&rnd=1715366007
IP 193.200.65.144:443
ASN #6681 Giveme Cloud Sp Z O O
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9
ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=gonetbid&rnd=1715366007 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 10 May 2024 18:33:28 GMT
content-length: 0
location: https://sync.gonet-ads.com/match/SkyAdvert?id=db9ba236-c350-1fc9-7056-779fe5c218f8
set-cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227 12 kB URL fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
Hash 9499187b871558af336e6fa8c02ae819
0efc6a86e079da44d560dd4ec3dc51315db3e54d
b984b5fe1c0dc82a7bfe7bfb0e8222c08ffdc0115698850c09ab4fa09ad29b30
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 01:50:52 GMT
expires: Fri, 09 May 2025 01:50:52 GMT
cache-control: public, max-age=31536000
age: 146555
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/cv/js/sender/v1/cast_sender.js?loadCastFramework=1
142.250.74.35 2.0 kB URL www.gstatic.com/cv/js/sender/v1/cast_sender.js?loadCastFramework=1
IP 142.250.74.35:0
File type JavaScript source, ASCII text, with very long lines (1143)
Hash b427175fa1078775eb792756e7b6d1e7
4c55c0233d3d9002b3449c025f97821f8bb8900d
ee147e859ad0f09aa50367974e38ab53e7c7054c4a51d400a7f45b0eb251454f
GET /cv/js/sender/v1/cast_sender.js?loadCastFramework=1 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://30830.svetacdn.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/cloudview
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="cloudview"
report-to: {"group":"cloudview","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/cloudview"}]}
content-length: 2007
date: Fri, 10 May 2024 18:33:28 GMT
expires: Fri, 10 May 2024 18:33:28 GMT
cache-control: private, max-age=3000
last-modified: Tue, 16 Feb 2021 23:57:06 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
imasdk.googleapis.com/cekh8i
142.250.74.74404 Not Found 0 B URL HEAD HTTP/2 imasdk.googleapis.com/cekh8i
IP 142.250.74.74:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /cekh8i HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Fri, 10 May 2024 18:33:28 GMT
server: sffe
content-length: 1567
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
t1.zcvh.net/v1/ws
116.202.112.210 0 B IP 116.202.112.210:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/ws HTTP/1.1
Host: t1.zcvh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://api.linktodo.ws
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Vv/bGV7W9S57nknR2TK8eQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 10 May 2024 18:33:28 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7LvzxeTRl3RXz9r4+p29FKvERco=
s.myangular.life/ws?cdn
144.76.194.2 0 B IP 144.76.194.2:0
ASN #24940 Hetzner Online GmbH
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint49:29:7B:E4:AA:2F:8B:1B:40:C9:EB:26:F2:8A:38:C0:BB:63:42:42
ValidityFri, 05 Apr 2024 00:00:00 GMT - Tue, 06 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws?cdn HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://api.linktodo.ws
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2lCLrJJewXKYSpTRqer0qw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 10 May 2024 18:33:28 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: so8v+m53+1a4NVb6FLzp5h8BmM4=
imasdk.googleapis.com/js/sdkloader/ima3.js
142.250.74.74 141 kB URL imasdk.googleapis.com/js/sdkloader/ima3.js
IP 142.250.74.74:0
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File type JavaScript source, ASCII text, with very long lines (2055)
Size 141 kB (141363 bytes)
Hash cbf464a0111159755a8498aebd25332a
41a1056841eb5d8a95718e95365106c79a83047d
1237eea381e09229fc6e7d78cdc35e4a3003328fc591f7937491b5dd31844c89
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.trafficbass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 141363
date: Fri, 10 May 2024 18:33:28 GMT
expires: Fri, 10 May 2024 18:33:28 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.moviead55.ru/mp_dist/protect_trackmaster.js?v1715366007488
172.67.156.18 887 B URL static.moviead55.ru/mp_dist/protect_trackmaster.js?v1715366007488
IP 172.67.156.18:0
File type gzip compressed data, from Unix
Hash 50f38390b5c1191b27b8499087a2d220
f1378ca9491928dd4b9e242d31a5c33b2bd04e96
d63932d91657890c09bcc7f5bf979cd693977ce74466a8f6dd6e53fa1486535a
GET /mp_dist/protect_trackmaster.js?v1715366007488 HTTP/1.1
Host: static.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 18:33:28 GMT
content-type: application/javascript
last-modified: Fri, 03 May 2024 13:20:31 GMT
vary: Accept-Encoding
etag: W/"6634e49f-2ea"
x-movieads-country: RU
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-max-age: 1728000
content-encoding: gzip
cache-control: max-age=7200
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IAuVoGOGHKKTj8al4BaE0HYotU%2F9bHcCb7z2PBLqT%2FNSzfsgcHdjzQgM%2F0wwSUDBBbAEvJl%2FxwOcmban9pJIWQKR9k6ImYjGuahZxdgEQ5nBx39gCtWWXZTTl5kjEFm0gWzrKQR%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c04900e85b518-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cloud.cdnland.in/a187eb52545de8906e6ad566ca0fb0dd:2024051117/tvseries/9c69635cd3b30c5aae573db1f8ed3947e4d48d73/thumb001.jpg
176.58.48.48302 Found 0 B URL GET HTTP/1.1 cloud.cdnland.in/a187eb52545de8906e6ad566ca0fb0dd:2024051117/tvseries/9c69635cd3b30c5aae573db1f8ed3947e4d48d73/thumb001.jpg
IP 176.58.48.48:443
Requested by https://30830.svetacdn.in/XOpThZNRVeQY/tv-series/9124
Certificate IssuerLet's Encrypt
Subjectcloud.cdnland.in
FingerprintE0:A6:30:CD:33:CF:9A:AA:85:FD:61:85:99:45:55:11:37:80:D9:C9
ValiditySun, 17 Mar 2024 17:00:37 GMT - Sat, 15 Jun 2024 17:00:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /a187eb52545de8906e6ad566ca0fb0dd:2024051117/tvseries/9c69635cd3b30c5aae573db1f8ed3947e4d48d73/thumb001.jpg HTTP/1.1
Host: cloud.cdnland.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://30830.svetacdn.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.18.0
Date: Fri, 10 May 2024 18:33:28 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: https://maxima.cloud.cdnland.in/a187eb52545de8906e6ad566ca0fb0dd:2024051117/tvseries/9c69635cd3b30c5aae573db1f8ed3947e4d48d73/thumb001.jpg
X-Routing: sh
api.stiven-king.com/storage.html
5.183.209.191 426 B URL api.stiven-king.com/storage.html
IP 5.183.209.191:0
ASN #206264 Amarutu Technology Ltd
File type HTML document, ASCII text
Hash 6f0af5eceb02df06d9771a821c7f1c03
e3fadc9c79be329c255348417a56bc438ad27810
0a92085060d2e4bffd6140b5f99fcec79ec0f82eaf5a41d16873d9c19ce00b7b
GET /storage.html HTTP/1.1
Host: api.stiven-king.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.linktodo.ws/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 13 Sep 2023 09:52:22 GMT
ETag: W/"65018656-369"
Content-Encoding: gzip
logger.moviead55.ru/logger.php?t=player_frame_loaded_new&c=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&a=&m=0&v=16ee33f0a2b397c4a1f1ab6636599ac9&o=
193.200.65.146 1.0 kB URL logger.moviead55.ru/logger.php?t=player_frame_loaded_new&c=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&a=&m=0&v=16ee33f0a2b397c4a1f1ab6636599ac9&o=
IP 193.200.65.146:0
ASN #6681 Giveme Cloud Sp Z O O
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9
ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
File type gzip compressed data, from Unix
Hash 352b58c86fa2f2e83cfe3a62449e1ff1
4bc686d1c731285619d8742cd225373f3f3c4ffc
1cc0215cadcdb87fbd52eaeadbbaf49f2bf3224c56c05cd354d131cce941a260
GET /logger.php?t=player_frame_loaded_new&c=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&a=&m=0&v=16ee33f0a2b397c4a1f1ab6636599ac9&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:28 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74 0 B URL jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 10 May 2024 18:33:28 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/venom-player@0.2.88/dist/189.js
151.101.193.229200 OK 143 kB URL GET HTTP/3 cdn.jsdelivr.net/npm/venom-player@0.2.88/dist/189.js
IP 151.101.193.229:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 143 kB (142555 bytes)
Hash ea5b3848f4922f116f42e286c2a09ea2
8e3950a1b871be2027f3f9f5b4fe0fa30fe97f47
5b812741df3698efa4c953adc84499a05a572f7a6f2ab7731c8c7774aa51e57c
GET /npm/venom-player@0.2.88/dist/189.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://api.linktodo.ws
DNT: 1
Connection: keep-alive
Referer: https://api.linktodo.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 142555
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.2.88
x-jsd-version-type: version
etag: W/"7f90d-jjlQobhxviAn8/n1tP4Pow/pf0c"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 18:33:28 GMT
age: 6818542
x-served-by: cache-fra-etou8220035-FRA, cache-hel1410023-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn.jsdelivr.net/npm/venom-player@0.2.88/dist/dash.js
151.101.193.229 84 B URL cdn.jsdelivr.net/npm/venom-player@0.2.88/dist/dash.js
IP 151.101.193.229:0
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type ASCII text, with no line terminators
Hash 84eee3ca3b339eebee1fa872f1ece64a
ac28843b7fcdc5023f65c747e51f009562b1c478
94a1443f69cfc9942e6a9d2ed2fc644702e271683b2e703f9adf65113a430ed5
GET /npm/venom-player@0.2.88/dist/dash.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://api.linktodo.ws
DNT: 1
Connection: keep-alive
Referer: https://api.linktodo.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 84
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.2.88
x-jsd-version-type: version
etag: W/"71-rCiEO3/NxQI/ZcdH5R8AlWKxxHg"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 18:33:28 GMT
age: 6818542
x-served-by: cache-fra-eddf8230126-FRA, cache-hel1410023-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
www.acint.net/mc/?dp=167
193.3.184.16302 Found 154 B IP 193.3.184.16:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1
ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /mc/?dp=167 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: openresty
date: Fri, 10 May 2024 18:33:28 GMT
content-type: text/html
content-length: 154
location: /mc/?dp=167&tc=1
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Fri, 10-May-24 18:43:28 GMT
aid=fwAABWY+aHhGPzezJOQ3AuTuz7Kg+w6TTePt23RwlN9gAJ0S; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/img/s2-1.png
82.192.95.133200 OK 9.9 kB URL GET HTTP/1.1 n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/img/s2-1.png
IP 82.192.95.133:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1475353534&m=1695559591&c=1271236793&p0=2094476254&p1=2031305422&p2=1870598794&u=9f61b35154f7c779&t=1715366005
Certificate IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint57:6F:20:E6:B0:40:1C:C7:13:E8:48:0C:11:F9:28:1A:C5:9E:24:49
ValidityThu, 07 Mar 2024 08:49:35 GMT - Mon, 07 Apr 2025 11:37:26 GMT
File type PNG image data, 194 x 129, 8-bit colormap, non-interlaced
Hash cd7405e50cbb2c0f95718b12a3f64122
27fa393bfb57ee424838cf603dfd8b0e6244f0e7
c9770415e6cc5ae19ea479a2c9d5ffc207d6e93269cd30afd47d185461c20d4a
GET /uploads/media/3/5/62353/v2/img/s2-1.png HTTP/1.1
Host: n3.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/css/styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:28 GMT
Content-Type: image/png
Content-Length: 9896
Last-Modified: Mon, 24 Apr 2023 18:13:20 GMT
Connection: keep-alive
ETag: "6446c6c0-26a8"
Expires: Sat, 11 May 2024 18:33:28 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Accept-Ranges: bytes
hd29.lordsfilm.cfd/cdn-cgi/challenge-platform/h/g/jsd/r/881c0472c88956b5
104.21.28.116 0 B URL hd29.lordsfilm.cfd/cdn-cgi/challenge-platform/h/g/jsd/r/881c0472c88956b5
IP 104.21.28.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/g/jsd/r/881c0472c88956b5 HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12214
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673; _ma=88d15f87-d2b9-4930-8d6f-a1aa01b97324; _ohmybid_cmf=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:28 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=army.xsPcsMhXDRYAgJPYnuw14pr.aJge150hWkF7r8-1715366008-1.0.1.1-rTAsFlhI1xaV_vIV0sO3fWYJvXh8IYYgVaKAP_oFIN5oSZUjG7uDqOS7FP.TwRkKIRmWoCXBXf8T1QBd1JUJfQ; Path=/; Expires=Sat, 10-May-25 18:33:28 GMT; Domain=.lordsfilm.cfd; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sEzpw7wNAx96Ds%2BfFX5oZh5JB9OarRn88nnTwq8dW%2FJv%2F5TGbFMMaFQ70cLS1CTJij71tBytEy5XiUhOlvZxMHA5YqxfY19EfpRdjW4xPkXjYCvAUG2gyZuEX6siuoRCQb2CMvs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c04925af1569f-OSL
alt-svc: h3=":443"; ma=86400
n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/img/s1-1.png
82.192.95.133200 OK 15 kB URL GET HTTP/1.1 n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/img/s1-1.png
IP 82.192.95.133:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1475353534&m=1695559591&c=1271236793&p0=2094476254&p1=2031305422&p2=1870598794&u=9f61b35154f7c779&t=1715366005
Certificate IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint57:6F:20:E6:B0:40:1C:C7:13:E8:48:0C:11:F9:28:1A:C5:9E:24:49
ValidityThu, 07 Mar 2024 08:49:35 GMT - Mon, 07 Apr 2025 11:37:26 GMT
File type PNG image data, 148 x 248, 8-bit colormap, non-interlaced
Hash b78ad5f8fad4a36c4949b90ffd8cecf2
81d0ba441dfa69fcadbbea1554f76d1aa81a782d
911c5edc35f5fa1b0520ad56b240d94e159ade157571f8996af33348e6187cb2
GET /uploads/media/3/5/62353/v2/img/s1-1.png HTTP/1.1
Host: n3.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/css/styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:28 GMT
Content-Type: image/png
Content-Length: 15022
Last-Modified: Mon, 24 Apr 2023 18:13:20 GMT
Connection: keep-alive
ETag: "6446c6c0-3aae"
Expires: Sat, 11 May 2024 18:33:28 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Accept-Ranges: bytes
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
216.58.207.227 16 kB URL fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 216.58.207.227:0
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://n3.cdn.trafficbass.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 02:03:55 GMT
expires: Fri, 09 May 2025 02:03:55 GMT
cache-control: public, max-age=31536000
age: 145773
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74 42 kB URL jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:0
Hash 6a46e43b93c14cf683a3631ea97e7752
e7ef03ab56f559803349064aaa7838004ad83679
3dcc57416952bbca34ce1bd12105743c656e4afce6337116e0add4b58f85eba4
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 10 May 2024 18:33:28 GMT
server: ESF
cache-control: private
content-length: 42327
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotoflex/v26/NaN4epOXO_NexZs0b5QrzlOHb8wCikXpYqmZsWI-__OGbt8jZktqc2V3Zs0KvDLdBP8SBZtOs2IifRuUZQMsPJtUsR4DEK6cULNeUx9XgTnH37Ha_FIAp4Fm0PP1hw45DntW2x0wZGzhPmr1YNMYKYn9_1IQXGwJAiUJVUMdN5YUW4O8HtSoXjC1z3QSabshNFVe3e0O5j3ZjrZCu23Qd4G0EBysQNK-QKavMl12JoUc.woff2
216.58.207.227200 OK 34 kB URL GET HTTP/3 fonts.gstatic.com/s/robotoflex/v26/NaN4epOXO_NexZs0b5QrzlOHb8wCikXpYqmZsWI-__OGbt8jZktqc2V3Zs0KvDLdBP8SBZtOs2IifRuUZQMsPJtUsR4DEK6cULNeUx9XgTnH37Ha_FIAp4Fm0PP1hw45DntW2x0wZGzhPmr1YNMYKYn9_1IQXGwJAiUJVUMdN5YUW4O8HtSoXjC1z3QSabshNFVe3e0O5j3ZjrZCu23Qd4G0EBysQNK-QKavMl12JoUc.woff2
IP 216.58.207.227:443
Requested by https://n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1475353534&m=1695559591&c=1271236793&p0=2094476254&p1=2031305422&p2=1870598794&u=9f61b35154f7c779&t=1715366005
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 34412, version 1.0
Hash e7b0208e631098c25e9b5c60e2cea7e3
a268ddcf4c0ececd81410358c3a7d09f8f2a352e
e83ccfcb4abd303def09571658c6ecbae57f7df1a7f8d5ff0c609bc3f6cd8729
GET /s/robotoflex/v26/NaN4epOXO_NexZs0b5QrzlOHb8wCikXpYqmZsWI-__OGbt8jZktqc2V3Zs0KvDLdBP8SBZtOs2IifRuUZQMsPJtUsR4DEK6cULNeUx9XgTnH37Ha_FIAp4Fm0PP1hw45DntW2x0wZGzhPmr1YNMYKYn9_1IQXGwJAiUJVUMdN5YUW4O8HtSoXjC1z3QSabshNFVe3e0O5j3ZjrZCu23Qd4G0EBysQNK-QKavMl12JoUc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://n3.cdn.trafficbass.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 23:24:47 GMT
expires: Fri, 09 May 2025 23:24:47 GMT
cache-control: public, max-age=31536000
age: 68921
last-modified: Wed, 28 Feb 2024 18:00:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/img/logo.svg
82.192.95.133200 OK 721 B URL GET HTTP/1.1 n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/img/logo.svg
IP 82.192.95.133:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1475353534&m=1695559591&c=1271236793&p0=2094476254&p1=2031305422&p2=1870598794&u=9f61b35154f7c779&t=1715366005
Certificate IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint57:6F:20:E6:B0:40:1C:C7:13:E8:48:0C:11:F9:28:1A:C5:9E:24:49
ValidityThu, 07 Mar 2024 08:49:35 GMT - Mon, 07 Apr 2025 11:37:26 GMT
File type SVG Scalable Vector Graphics image
Hash e54565c805fe9bc40f5210ece543fb3f
5293964638f02f4b66c5180b0d757555d61a0437
34772d006cecd87f2c605c220fbc53510c9462061d23ba30ecac081e8f50beb5
GET /uploads/media/3/5/62353/v2/img/logo.svg HTTP/1.1
Host: n3.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/css/styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:28 GMT
Content-Type: image/svg+xml
Last-Modified: Mon, 24 Apr 2023 18:13:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6446c6c0-4f3"
Expires: Sat, 11 May 2024 18:33:28 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Content-Encoding: gzip
www.youtube.com/s/player/17fd9675/player_ias.vflset/en_US/remote.js
142.250.74.14 34 kB URL www.youtube.com/s/player/17fd9675/player_ias.vflset/en_US/remote.js
IP 142.250.74.14:0
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File type JavaScript source, ASCII text, with very long lines (543)
Hash 5d9fee2f792a3411c469f5c831f69c29
4ef01de4bdd9fbaf204c53a5d03f1b3d042d4716
8f3915b4b2a22688c994c9428621f46b2f3051a315708e138f33ac3b1131b61b
GET /s/player/17fd9675/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/8KS5HqEiwLc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33695
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 08 May 2024 07:44:00 GMT
expires: Thu, 08 May 2025 07:44:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 May 2024 04:20:16 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 211768
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
user91471.clients-cdnnow.ru/yasdk/vw.js?v3
185.40.155.13 1.5 kB URL user91471.clients-cdnnow.ru/yasdk/vw.js?v3
IP 185.40.155.13:0
File type gzip compressed data, from Unix
Hash fe7e1824aaeafe972299154c151f8a64
f0129a2f3dc8c7fff8d740232dfd759cf0266a24
d0a500c0126b42f820c706a805f129196db5a159af85273ae039034c12d75f93
GET /yasdk/vw.js?v3 HTTP/1.1
Host: user91471.clients-cdnnow.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:07 GMT
content-type: application/javascript
last-modified: Fri, 21 Jul 2023 13:34:19 GMT
vary: Accept-Encoding
etag: W/"64ba895b-12fc"
x-movieads-country: RU
content-encoding: gzip
x-edge-cache: HIT
x-edge-ip: 172.19.32.5
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/venom-player@0.2.88
151.101.193.229200 OK 199 kB URL GET HTTP/3 cdn.jsdelivr.net/npm/venom-player@0.2.88
IP 151.101.193.229:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65248)
Size 199 kB (198957 bytes)
Hash 5d1a9ce2533ca57d7f64ea63c60fd280
9de3fa4582dc421950827258f1e4ee211471370d
ca268d7567665c6b8a3d51a933e2ee884814fe00b1dcfd7f3bfbdb93700e73dd
GET /npm/venom-player@0.2.88 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 198957
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.2.88
x-jsd-version-type: version
etag: W/"b0f02-neP6RYLcQhlQgnJY8eTuIRRxNw0"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 18:33:28 GMT
age: 3337334
x-served-by: cache-fra-eddf8230145-FRA, cache-hel1410023-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
sp.ohmy.bid/cmf?0.42209072953347815
167.235.14.51 0 B URL sp.ohmy.bid/cmf?0.42209072953347815
IP 167.235.14.51:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cmf?0.42209072953347815 HTTP/1.1
Host: sp.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx
date: Fri, 10 May 2024 18:33:28 GMT
bidder: bid-24 1.1542.871fc768
set-cookie: uid=00ce8c7e-9c95-4334-8987-6e1e2e3d723b.663e6878.8069d57059418449; domain=.ohmy.bid; path=/; expires=Sun, 09-Jun-2024 18:33:28 GMT; SameSite=None; Secure;
access-control-allow-credentials: true
X-Firefox-Spdy: h2
s.myangular.life/player?cat=support&hit=u8&description=yes
144.76.194.2 0 B URL s.myangular.life/player?cat=support&hit=u8&description=yes
IP 144.76.194.2:0
ASN #24940 Hetzner Online GmbH
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint49:29:7B:E4:AA:2F:8B:1B:40:C9:EB:26:F2:8A:38:C0:BB:63:42:42
ValidityFri, 05 Apr 2024 00:00:00 GMT - Tue, 06 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?cat=support&hit=u8&description=yes HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:28 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
s2517.com/z1hUbTr3tdgO4qhyMB7xaS8ShP6TEJA8mZf-Haj-na9o3_OcITo7Hptyg0Qojw20fKP5J0jBrj-Ezh9z7p-no4v6oYpxuFzvudsc8YtI-HvOY_YvReR-GfAGM3ET-R9LPbf6DIYSCTtC4ct8FKin13nDCx2XN3IVYrkiLe_VxWgoYDdayF2Tw7a-EzmLqaYWclQDN3SjP9RfGlk5Q0DhGXc670c_Ezxy_LJYIPK-x5V7W4z7NminJFYu_fwTiSXxpiuLxuYjUmynbKugYZj0zMonT7V0-chCMZocHKZ6Ll9Wxeno3GQsVNF9y0WpbOAQZ0Wvvgg5nVnmMKSYnwT33IV0-5KA7qraEUz1Hs_jyT9CRvYHXM3BRMWLK-9U-VMy8pt1695bkUQ?DC=HZFI
65.21.89.92 49 B URL s2517.com/z1hUbTr3tdgO4qhyMB7xaS8ShP6TEJA8mZf-Haj-na9o3_OcITo7Hptyg0Qojw20fKP5J0jBrj-Ezh9z7p-no4v6oYpxuFzvudsc8YtI-HvOY_YvReR-GfAGM3ET-R9LPbf6DIYSCTtC4ct8FKin13nDCx2XN3IVYrkiLe_VxWgoYDdayF2Tw7a-EzmLqaYWclQDN3SjP9RfGlk5Q0DhGXc670c_Ezxy_LJYIPK-x5V7W4z7NminJFYu_fwTiSXxpiuLxuYjUmynbKugYZj0zMonT7V0-chCMZocHKZ6Ll9Wxeno3GQsVNF9y0WpbOAQZ0Wvvgg5nVnmMKSYnwT33IV0-5KA7qraEUz1Hs_jyT9CRvYHXM3BRMWLK-9U-VMy8pt1695bkUQ?DC=HZFI
IP 65.21.89.92:0
ASN #24940 Hetzner Online GmbH
Certificate IssuerLet's Encrypt
Subjects2517.com
Fingerprint6C:9B:1B:6F:54:1C:05:6A:9A:E1:1E:80:BE:17:2B:2B:C5:9E:29:17
ValiditySun, 17 Mar 2024 08:09:13 GMT - Sat, 15 Jun 2024 08:09:12 GMT
File type GIF image data, version 89a, 1 x 1
Hash 56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /z1hUbTr3tdgO4qhyMB7xaS8ShP6TEJA8mZf-Haj-na9o3_OcITo7Hptyg0Qojw20fKP5J0jBrj-Ezh9z7p-no4v6oYpxuFzvudsc8YtI-HvOY_YvReR-GfAGM3ET-R9LPbf6DIYSCTtC4ct8FKin13nDCx2XN3IVYrkiLe_VxWgoYDdayF2Tw7a-EzmLqaYWclQDN3SjP9RfGlk5Q0DhGXc670c_Ezxy_LJYIPK-x5V7W4z7NminJFYu_fwTiSXxpiuLxuYjUmynbKugYZj0zMonT7V0-chCMZocHKZ6Ll9Wxeno3GQsVNF9y0WpbOAQZ0Wvvgg5nVnmMKSYnwT33IV0-5KA7qraEUz1Hs_jyT9CRvYHXM3BRMWLK-9U-VMy8pt1695bkUQ?DC=HZFI HTTP/1.1
Host: s2517.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: UUID=a5422175-f779-5bdd-9035-7ae658bf7920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
access-control-allow-origin: *
access-control-allow-methods: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
permissions-policy: *
p3p: CP="CAO PSA OUR"
accept-ranges: bytes
etag: W/"49-1715327066000"
last-modified: Fri, 10 May 2024 07:44:26 GMT
content-type: image/gif
content-length: 49
date: Fri, 10 May 2024 18:33:28 GMT
s.myangular.life/player?cat=actual&hit=load&sub=ok&time=3397&host=hd29.lordsfilm.cfd&v=24-05-10-01
144.76.194.2200 OK 0 B URL GET HTTP/1.1 s.myangular.life/player?cat=actual&hit=load&sub=ok&time=3397&host=hd29.lordsfilm.cfd&v=24-05-10-01
IP 144.76.194.2:443
ASN #24940 Hetzner Online GmbH
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint49:29:7B:E4:AA:2F:8B:1B:40:C9:EB:26:F2:8A:38:C0:BB:63:42:42
ValidityFri, 05 Apr 2024 00:00:00 GMT - Tue, 06 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?cat=actual&hit=load&sub=ok&time=3397&host=hd29.lordsfilm.cfd&v=24-05-10-01 HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:28 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
s.myangular.life/player?cat=support&hit=wasm&description=wasm%20dc
144.76.194.2 0 B URL s.myangular.life/player?cat=support&hit=wasm&description=wasm%20dc
IP 144.76.194.2:0
ASN #24940 Hetzner Online GmbH
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint49:29:7B:E4:AA:2F:8B:1B:40:C9:EB:26:F2:8A:38:C0:BB:63:42:42
ValidityFri, 05 Apr 2024 00:00:00 GMT - Tue, 06 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?cat=support&hit=wasm&description=wasm%20dc HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:28 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
s.myangular.life/player?cat=support&hit=find&description=yes
144.76.194.2 0 B URL s.myangular.life/player?cat=support&hit=find&description=yes
IP 144.76.194.2:0
ASN #24940 Hetzner Online GmbH
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint49:29:7B:E4:AA:2F:8B:1B:40:C9:EB:26:F2:8A:38:C0:BB:63:42:42
ValidityFri, 05 Apr 2024 00:00:00 GMT - Tue, 06 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?cat=support&hit=find&description=yes HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:28 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
s.myangular.life/player?cat=support&hit=opus&description=MS_true
144.76.194.2 0 B URL s.myangular.life/player?cat=support&hit=opus&description=MS_true
IP 144.76.194.2:0
ASN #24940 Hetzner Online GmbH
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint49:29:7B:E4:AA:2F:8B:1B:40:C9:EB:26:F2:8A:38:C0:BB:63:42:42
ValidityFri, 05 Apr 2024 00:00:00 GMT - Tue, 06 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?cat=support&hit=opus&description=MS_true HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:28 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
s2517.com/zj0fQyPOSlxoY7HBS78GSzaAdw19DvPmve1Ioq_LyS0A3Opz96WcNvRZ3n5ypRulZBEQhyjkPs1Cw6tY96LhbmE8olGXY8z7Ub-6MS4bhQfkOQu0hQRCY7oYeYDbShxj4HOpkoAG37MOvw0-19hkOu_B0ceHo35GGq8xgDIZ_rNUjPVXsddSElMjpU3Ebg_gZ2UArYVE_BmnVuzeYqj4f1UYm11zvrHmlPzsQ2r1Wcsq1ebVIJdNJwxBFvMF4JrugtgR69WXwmOjg8FIW-C442w2eqDSNos-00fz9TyxmNJUJ6_Rh0bFcdnXSP4nP27me7uAveS1QhETIlT6V-m2e6WTuDal0c_R9YmgvYPTCoJP2h4wcNHj0HEzF8giNp0kbVCo7yheE-w?DC=HZFI
65.21.89.92 49 B URL s2517.com/zj0fQyPOSlxoY7HBS78GSzaAdw19DvPmve1Ioq_LyS0A3Opz96WcNvRZ3n5ypRulZBEQhyjkPs1Cw6tY96LhbmE8olGXY8z7Ub-6MS4bhQfkOQu0hQRCY7oYeYDbShxj4HOpkoAG37MOvw0-19hkOu_B0ceHo35GGq8xgDIZ_rNUjPVXsddSElMjpU3Ebg_gZ2UArYVE_BmnVuzeYqj4f1UYm11zvrHmlPzsQ2r1Wcsq1ebVIJdNJwxBFvMF4JrugtgR69WXwmOjg8FIW-C442w2eqDSNos-00fz9TyxmNJUJ6_Rh0bFcdnXSP4nP27me7uAveS1QhETIlT6V-m2e6WTuDal0c_R9YmgvYPTCoJP2h4wcNHj0HEzF8giNp0kbVCo7yheE-w?DC=HZFI
IP 65.21.89.92:0
ASN #24940 Hetzner Online GmbH
Certificate IssuerLet's Encrypt
Subjects2517.com
Fingerprint6C:9B:1B:6F:54:1C:05:6A:9A:E1:1E:80:BE:17:2B:2B:C5:9E:29:17
ValiditySun, 17 Mar 2024 08:09:13 GMT - Sat, 15 Jun 2024 08:09:12 GMT
File type GIF image data, version 89a, 1 x 1
Hash 56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /zj0fQyPOSlxoY7HBS78GSzaAdw19DvPmve1Ioq_LyS0A3Opz96WcNvRZ3n5ypRulZBEQhyjkPs1Cw6tY96LhbmE8olGXY8z7Ub-6MS4bhQfkOQu0hQRCY7oYeYDbShxj4HOpkoAG37MOvw0-19hkOu_B0ceHo35GGq8xgDIZ_rNUjPVXsddSElMjpU3Ebg_gZ2UArYVE_BmnVuzeYqj4f1UYm11zvrHmlPzsQ2r1Wcsq1ebVIJdNJwxBFvMF4JrugtgR69WXwmOjg8FIW-C442w2eqDSNos-00fz9TyxmNJUJ6_Rh0bFcdnXSP4nP27me7uAveS1QhETIlT6V-m2e6WTuDal0c_R9YmgvYPTCoJP2h4wcNHj0HEzF8giNp0kbVCo7yheE-w?DC=HZFI HTTP/1.1
Host: s2517.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: UUID=a5422175-f779-5bdd-9035-7ae658bf7920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
access-control-allow-origin: *
access-control-allow-methods: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
permissions-policy: *
p3p: CP="CAO PSA OUR"
accept-ranges: bytes
etag: W/"49-1715327066000"
last-modified: Fri, 10 May 2024 07:44:26 GMT
content-type: image/gif
content-length: 49
date: Fri, 10 May 2024 18:33:28 GMT
yandex.ru/ads/system/context.js
5.255.255.77200 OK 103 kB URL GET HTTP/2 yandex.ru/ads/system/context.js
IP 5.255.255.77:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.xn--d1acpjx3f.xn--p1ai
Fingerprint17:FB:0C:B6:3F:7F:A5:4C:41:AD:D0:5C:6B:9A:96:47:FE:AF:C8:5C
ValidityMon, 04 Mar 2024 10:29:07 GMT - Sun, 01 Sep 2024 20:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65491)
Size 103 kB (102819 bytes)
Hash 356af96c094882e879bebded1d229de1
36c019bcf9347dce26944d10c8ae0cd397b03c48
41df7d080addf4f3c6fc6a96e85a7e9748a4b49984e3e91c9fc718144b80994e
GET /ads/system/context.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
timing-allow-origin: *
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: *
set-cookie: i=z3cMEWYnR0HJyeoRJesSxP9SR50vUxPdonKqC/Nmsd8GSzac5SUEBgi4tTon6zwBs1XhP3GrJ9ayDbD4woPhGxxPfv4=; Expires=Sun, 10-May-2026 18:33:28 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=1696704221715366008; Expires=Sun, 10-May-2026 18:33:28 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yashr=4746531651715366008; Path=/; Domain=.yandex.ru; Expires=Sat, 10 May 2025 18:33:28 GMT; SameSite=None; Secure; HttpOnly
receive-cookie-deprecation=1; Path=/; Domain=.yandex.ru; Expires=Sat, 10 May 2025 18:33:28 GMT; SameSite=None; Secure; HttpOnly; Partitioned
etag: "f3b0a28b5859a7b10a34394f282b7bbf-1021761"
expires: Fri, 10 May 2024 19:33:28 GMT
x-yandex-req-id: 1715366008644803-3325517022669670422-balancer-l7leveler-kubr-yp-vla-17-BAL
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
X-Firefox-Spdy: h2
dm-eu.hybrid.ai/match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D
37.230.131.22 0 B URL dm-eu.hybrid.ai/match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D
IP 37.230.131.22:0
ASN #200197 Hybrid Adtech Sp.z.o.o.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 10 May 2024 18:33:28 GMT
content-length: 0
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
location: https://code.moviead55.ru/go/csync?cn=hbrdcookie2&bid=24b66973447526a89442
set-cookie: vid=24b66973447526a89442; Expires=Sat, 10 May 2025 18:33:27 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 581
x-xss-protection: 1; mode=block
access-control-allow-origin: https://hd29.lordsfilm.cfd
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
i.ytimg.com/vi_webp/8KS5HqEiwLc/default.webp
142.250.74.150200 OK 2.4 kB URL GET HTTP/2 i.ytimg.com/vi_webp/8KS5HqEiwLc/default.webp
IP 142.250.74.150:443
Requested by https://www.youtube.com/embed/8KS5HqEiwLc
Certificate IssuerGoogle Trust Services LLC
Subjectedgestatic.com
FingerprintD2:2C:3D:05:38:12:27:20:C9:64:22:58:3A:99:D5:43:6E:BD:3B:D2
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 120x90, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 4f99eb1a334e13c938cefe5255351627
d44b231df22476ae2f31594f049e2864a71d6d1a
94b6ad0f2d7dd0758c92c4887319adbcc737e8584c664b902a30bbc3f042b0a4
GET /vi_webp/8KS5HqEiwLc/default.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2362
date: Fri, 10 May 2024 18:33:28 GMT
expires: Fri, 10 May 2024 20:33:28 GMT
cache-control: public, max-age=7200
etag: "1603731399"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
30830.svetacdn.in/cdn-cgi/challenge-platform/h/g/jsd/r/881c047d9fa4b4ff
188.114.97.1200 OK 0 B URL POST HTTP/3 30830.svetacdn.in/cdn-cgi/challenge-platform/h/g/jsd/r/881c047d9fa4b4ff
IP 188.114.97.1:443
Requested by https://30830.svetacdn.in/XOpThZNRVeQY/tv-series/9124
Certificate IssuerGoogle Trust Services LLC
Subjectsvetacdn.in
Fingerprint45:66:21:17:9B:C2:70:55:CF:90:41:C7:2F:A6:89:B2:5C:5A:35:3F
ValiditySat, 30 Mar 2024 00:19:23 GMT - Fri, 28 Jun 2024 00:19:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/g/jsd/r/881c047d9fa4b4ff HTTP/1.1
Host: 30830.svetacdn.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12201
Origin: https://30830.svetacdn.in
DNT: 1
Connection: keep-alive
Referer: https://30830.svetacdn.in/XOpThZNRVeQY/tv-series/9124
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:29 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=Zcc1Ed0szqytfFCefatYPMVgR533u5_ik6JjHY20rlA-1715366009-1.0.1.1-i52tXTiWeqWWMx_YtojisEJ3u0TBoQFNgfNwuw60ozcZOoh4pmaxuhwroQplPlHYr8mXTSNvRHOrFL5lviW9HQ; Path=/; Expires=Sat, 10-May-25 18:33:29 GMT; Domain=.svetacdn.in; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GEIarLtjZ0FWaO7XM%2Bc1URWBl%2FP19x7t7Zz0UiCqY872d58kDo0OtolcVl1TWdxWGiv7hnGejgiQ1rFvPYWkyZtmvQs79xkv83dddQtbhMCtCt76oxaVTNo4jjmHYIFXtbCHow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c0494bc495696-OSL
alt-svc: h3=":443"; ma=86400
otclick-adv.ru/core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D
139.45.228.135 124 B URL otclick-adv.ru/core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D
IP 139.45.228.135:0
File type HTML document, ASCII text, with CRLF line terminators
Hash c73e35f73ed5c795c70cf66e99088b7c
63a9ffe5d0e5b4070819b95ef564a58d8a3a3a1c
80034a9712f07e6b0577c7e5bf6d5d718736593e7d21c81dd1a3cbdb4eb860de
GET /core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D HTTP/1.1
Host: otclick-adv.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.24.0
date: Fri, 10 May 2024 18:33:29 GMT
content-length: 124
location: https://code.moviead55.ru/go/csync?cn=otclkbid&bid=VU0cO9fZFTbYzyf
p3p: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
cache-control: no-cache, max-age=0, must-revalidate, no-store
pragma: no-cache
expires: Thursday, 01-Jan-1970 00:00:00 GMT
set-cookie: idntfy=VU0cO9fZFTbYzyf; expires=Mon, 08-May-2034 18:33:29 GMT; domain=otclick-adv.ru; path=/core; SameSite=None; Secure
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.acint.net/rmatch?r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D$%7BUSER_ID%7D&dp=167&tc=1&euid=cae5a5bf-ff1e-3ecd-3582-3cdc8b2a2123
193.3.184.16302 Found 154 B URL GET HTTP/2 www.acint.net/rmatch?r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D$%7BUSER_ID%7D&dp=167&tc=1&euid=cae5a5bf-ff1e-3ecd-3582-3cdc8b2a2123
IP 193.3.184.16:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1
ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D$%7BUSER_ID%7D&dp=167&tc=1&euid=cae5a5bf-ff1e-3ecd-3582-3cdc8b2a2123 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Fri, 10 May 2024 18:33:29 GMT
content-type: text/html
content-length: 154
location: https://ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcode.moviead55.ru%252Fgo%252Fcsync%253Fcn%253Dsapecookie%2526bid%253D$%257BUSER_ID%257D&dp=14
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
set-cookie: cSyncDp14v4=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
match.ohmy.bid/cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%24%7BUUID%7D
167.235.14.51302 Found 0 B URL GET HTTP/2 match.ohmy.bid/cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%24%7BUUID%7D
IP 167.235.14.51:443
ASN #24940 Hetzner Online GmbH
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectmatch.ohmy.bid
Fingerprint93:CC:18:6B:4E:10:D1:20:7F:8C:75:21:78:30:60:00:A2:B6:B0:39
ValiditySat, 23 Mar 2024 20:09:13 GMT - Fri, 21 Jun 2024 20:09:12 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%24%7BUUID%7D HTTP/1.1
Host: match.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Fri, 10 May 2024 18:33:29 GMT
content-length: 0
bidder: bid-01 1.1542.871fc76
location: https://code.moviead55.ru/go/csync?cn=ohmybid&bid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0
set-cookie: uid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0.663e6879.c275143e5c083195; domain=.ohmy.bid; path=/; expires=Sun, 09-Jun-2024 18:33:29 GMT; SameSite=None; Secure;
access-control-allow-credentials: true
X-Firefox-Spdy: h2
api.kinogram.best/js/listen-player.js
162.19.98.135 852 B URL api.kinogram.best/js/listen-player.js
IP 162.19.98.135:0
Certificate IssuerSectigo Limited
Subject*.kinogram.best
FingerprintA5:F2:6B:FD:6B:CF:67:F2:AF:AF:D9:95:D3:A0:03:9A:E3:B5:50:4C
ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type JavaScript source, ASCII text
Hash 0c0c3ebb01863cdbdf9e28b04ea6dbf1
ed4ec6ff3f636ec975ffef955f9aca9dd748bb1d
897015208642232bd542da553dadd5104e30f4a106a3e7bfb522d85569575155
GET /js/listen-player.js HTTP/1.1
Host: api.kinogram.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:29 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://hd29.lordsfilm.cfd
Cache-Control: no-cache, no-store, must-revalidate
Expires: 1970-01-01 00:00:00
Last-Modified: Mon, 19 Feb 2024 07:54:04 GMT
Pragma: no-cache
Vary: *
Content-Encoding: gzip
naos.ink/p.gif?advertiser=BitzAllGeo*PageBanners&advertiser_id=546&banner=pagebanner_BitzAllGeo&banner_id=46483&cp_host=XOpThZNRVeQY%7C2%7C&rand=1730063778&country_origin=Norway&event_type=1
188.114.97.1 42 B URL naos.ink/p.gif?advertiser=BitzAllGeo*PageBanners&advertiser_id=546&banner=pagebanner_BitzAllGeo&banner_id=46483&cp_host=XOpThZNRVeQY%7C2%7C&rand=1730063778&country_origin=Norway&event_type=1
IP 188.114.97.1:0
File type GIF image data, version 89a, 1 x 1
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /p.gif?advertiser=BitzAllGeo*PageBanners&advertiser_id=546&banner=pagebanner_BitzAllGeo&banner_id=46483&cp_host=XOpThZNRVeQY%7C2%7C&rand=1730063778&country_origin=Norway&event_type=1 HTTP/1.1
Host: naos.ink
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 18:33:29 GMT
content-type: image/gif
content-length: 42
cache-control: no-cache,must-revalidate
cf-cache-status: BYPASS
set-cookie: unq-uid=qomfYflINsaLLnlWtEuB; Path=/; Domain=naos.ink; Max-Age=31536000; HttpOnly; Secure; SameSite=None
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aRByYJ14WM7jA8IsCRBFqK44NzElnjAkS6wWNoZQhwUxwY8SLsSSVg1V0yprjoZOmdMm4WMoFV4bieHqv5OUZMhbfF8pQYrfEnvolIq%2F5wpa6pOQVo5yIApcyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c04956edc56ca-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
api.kinogram.best/cdn.js
162.19.98.135200 OK 4.6 kB IP 162.19.98.135:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subject*.kinogram.best
FingerprintA5:F2:6B:FD:6B:CF:67:F2:AF:AF:D9:95:D3:A0:03:9A:E3:B5:50:4C
ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (14026), with no line terminators
Hash a81f8cb9127ebc541cfe5d8fa444dadb
be16ea0d77bd967771b6668970b9f66bb45daa21
71a2a5087e0df99887785f7890f0320446e336aa298211b5cf6ee5a151ef5091
GET /cdn.js HTTP/1.1
Host: api.kinogram.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:29 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://hd29.lordsfilm.cfd
Cache-Control: max-age=3600
Last-Modified: Tue, 16 May 2023 12:42:04 GMT
Content-Encoding: gzip
s.myangular.life/player?cat=support&hit=weak-ref&description=yes
138.201.37.241 0 B URL s.myangular.life/player?cat=support&hit=weak-ref&description=yes
IP 138.201.37.241:0
ASN #24940 Hetzner Online GmbH
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint49:29:7B:E4:AA:2F:8B:1B:40:C9:EB:26:F2:8A:38:C0:BB:63:42:42
ValidityFri, 05 Apr 2024 00:00:00 GMT - Tue, 06 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?cat=support&hit=weak-ref&description=yes HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:29 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
www.google.com/js/th/4FCBsbVWt5jZVKm36Bs_QtpgBkunTUSSklJnPgMburg.js
216.58.211.4200 OK 21 kB URL GET HTTP/2 www.google.com/js/th/4FCBsbVWt5jZVKm36Bs_QtpgBkunTUSSklJnPgMburg.js
IP 216.58.211.4:443
Requested by https://www.youtube.com/embed/8KS5HqEiwLc
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99
ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT
File type JavaScript source, ASCII text, with very long lines (52315)
Hash a9cea36ea530078693c45ab72afdefc4
4905b6c427473195367a2e7663453b93e6543e18
e05081b1b556b798d954a9b7e81b3f42da60064ba74d44929252673e031bbab8
GET /js/th/4FCBsbVWt5jZVKm36Bs_QtpgBkunTUSSklJnPgMburg.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 20579
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 08:30:42 GMT
expires: Sat, 10 May 2025 08:30:42 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Apr 2024 11:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 36167
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sync.gonet-ads.com/match/SkyAdvert?id=db9ba236-c350-1fc9-7056-779fe5c218f8
188.42.105.236 43 B URL sync.gonet-ads.com/match/SkyAdvert?id=db9ba236-c350-1fc9-7056-779fe5c218f8
IP 188.42.105.236:0
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/SkyAdvert?id=db9ba236-c350-1fc9-7056-779fe5c218f8 HTTP/1.1
Host: sync.gonet-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:29 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
naos.ink/p.gif?advertiser=BitzAllGeo*BrendingBanners&advertiser_id=551&banner=player-brend-desktop_BitzAllGeo&banner_id=46479&cp_host=XOpThZNRVeQY%7C1%7C&rand=1626831025&country_origin=Norway&event_type=1
188.114.97.1 42 B URL naos.ink/p.gif?advertiser=BitzAllGeo*BrendingBanners&advertiser_id=551&banner=player-brend-desktop_BitzAllGeo&banner_id=46479&cp_host=XOpThZNRVeQY%7C1%7C&rand=1626831025&country_origin=Norway&event_type=1
IP 188.114.97.1:0
File type GIF image data, version 89a, 1 x 1
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /p.gif?advertiser=BitzAllGeo*BrendingBanners&advertiser_id=551&banner=player-brend-desktop_BitzAllGeo&banner_id=46479&cp_host=XOpThZNRVeQY%7C1%7C&rand=1626831025&country_origin=Norway&event_type=1 HTTP/1.1
Host: naos.ink
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 18:33:29 GMT
content-type: image/gif
content-length: 42
cache-control: no-cache,must-revalidate
cf-cache-status: BYPASS
set-cookie: unq-uid=ZZUopsimNRPVfqBcXmuB; Path=/; Domain=naos.ink; Max-Age=31536000; HttpOnly; Secure; SameSite=None
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4Z%2FF8fiyMUyrDhOSILZUO%2FYaVvjp14txy53TUT62pwpbcOx12mZh0VkbCcSp2UBVMjyxq%2FH8xqCIkX76c1y%2B0Ve9KkyF4Jh%2BBzeyn7nDAVOfw48U1ltYRZYb0A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c0495df8356ca-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
exchange.buzzoola.com/cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D
167.235.33.115 114 B URL exchange.buzzoola.com/cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D
IP 167.235.33.115:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text
Hash b018324e9c5a7046422e7cb6dce73ec7
f95b8c3e8fcf4519e3a4c92bd3373111bc0f57b2
8f7546fdc64a7253d541749bb6ea454fdea67a72bb4c744267f15f302ceb29be
GET /cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Fri, 10 May 2024 18:33:24 GMT
content-type: text/html; charset=utf-8
content-length: 114
location: https://code.moviead55.ru/go/csync?cn=bzcookie&bid=2c2c08ce-a0bc-471c-7f40-2a2ad1719ee4
serverid: TODO
X-Firefox-Spdy: h2
s.myangular.life/player?cat=support&hit=async&description=yes
144.76.194.2200 OK 0 B URL GET HTTP/1.1 s.myangular.life/player?cat=support&hit=async&description=yes
IP 144.76.194.2:443
ASN #24940 Hetzner Online GmbH
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint49:29:7B:E4:AA:2F:8B:1B:40:C9:EB:26:F2:8A:38:C0:BB:63:42:42
ValidityFri, 05 Apr 2024 00:00:00 GMT - Tue, 06 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?cat=support&hit=async&description=yes HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:29 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
sync.opendsp.ru/match/MovieAds?id=b387b7b3-bcf2-d936-6472-ec6dcfe14193
82.148.20.186200 OK 43 B URL GET HTTP/2 sync.opendsp.ru/match/MovieAds?id=b387b7b3-bcf2-d936-6472-ec6dcfe14193
IP 82.148.20.186:443
ASN #50340 OOO Network of data-centers Selectel
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectsync.opendsp.ru
Fingerprint61:B4:DA:9F:EB:AB:9D:73:4C:76:FB:7C:3B:0B:80:A4:0F:14:18:28
ValidityThu, 04 Apr 2024 10:36:13 GMT - Wed, 03 Jul 2024 10:36:12 GMT
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/MovieAds?id=b387b7b3-bcf2-d936-6472-ec6dcfe14193 HTTP/1.1
Host: sync.opendsp.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:29 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
code.moviead55.ru/go/csync?cn=hbrdcookie2&bid=24b66973447526a89442
193.200.65.144 0 B URL code.moviead55.ru/go/csync?cn=hbrdcookie2&bid=24b66973447526a89442
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=hbrdcookie2&bid=24b66973447526a89442 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:29 GMT
content-type: image/jpeg
content-length: 0
set-cookie: hbrdcookie2=24b66973447526a89442; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
kimberlite.io/rtb/sync/skyadvert?u=7f11965c-0146-2d43-cf5f-e87ad7186a60
217.199.220.43 0 B URL kimberlite.io/rtb/sync/skyadvert?u=7f11965c-0146-2d43-cf5f-e87ad7186a60
IP 217.199.220.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/skyadvert?u=7f11965c-0146-2d43-cf5f-e87ad7186a60 HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Fri, 10 May 2024 18:33:29 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: u=Zj5oefMz_HY~v1jAy_97mqpmUNiDU2GPAY4H0zg; path=/; max-age=7776000; samesite=none; httponly; secure
as=hPJ_CGY-aHk; max-age=604800; samesite=none; httponly; secure
f=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsolta%26bid%3DZj5oefMz_HY; max-age=30; samesite=none; httponly; secure
n=1; max-age=30; samesite=none; httponly; secure
location: https://sync.dsp.solta.io/match/kimberlite?id=Zj5oefMz_HY
referrer-policy: no-referrer
server-timing: app;srv=9;dur=0.0002
yastatic.net/partner-code-bundles/1021761/7458a4287a4f8c651ed5.js
178.154.131.215200 OK 3.6 kB URL GET HTTP/2 yastatic.net/partner-code-bundles/1021761/7458a4287a4f8c651ed5.js
IP 178.154.131.215:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07
ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (9175)
Hash b3bd5b753b7859a7f84ad2abf0e459c1
a25491dc6ea2f62f49bbbf433266374b72f9b576
9c23598b04f87e330013720af86fe99949c8f1967663a8ec9608037ead468cfa
GET /partner-code-bundles/1021761/7458a4287a4f8c651ed5.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 10 May 2024 18:33:29 GMT
content-type: text/javascript; charset=utf-8
content-length: 3557
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "545402f457cb3dccd5b58149de05a265"
expires: Mon, 11 May 2054 01:06:27 GMT
last-modified: Tue, 07 May 2024 14:36:49 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/safeframe-bundles/0.83/host.js
178.154.131.215200 OK 8.9 kB URL GET HTTP/2 yastatic.net/safeframe-bundles/0.83/host.js
IP 178.154.131.215:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07
ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (33703), with no line terminators
Hash 2435549eac66915d7464ee7b9efce038
e390598fb192583622a8ea079d5c96dffdb34fb5
34806ef573086241dd1a596a860b0295b51c24f1c37eab36eb9d0665683abb55
GET /safeframe-bundles/0.83/host.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 10 May 2024 18:33:29 GMT
content-type: text/javascript; charset=utf-8
content-length: 8878
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "f80882bf67cf261aa08d636da095149a"
expires: Mon, 11 May 2054 01:07:52 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/1021761/f2723e29b4038d60b67c.js
178.154.131.215 25 kB URL yastatic.net/partner-code-bundles/1021761/f2723e29b4038d60b67c.js
IP 178.154.131.215:0
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07
ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65493)
Hash cd259451fee0c10213068b0d634e6f44
2aba8125565610dba24eff3c1b4d2a67ccd05428
57dc7ac619ae7bb0960eb432a29aa263ddc21ce4d57bdef569bcd786730c67b4
GET /partner-code-bundles/1021761/f2723e29b4038d60b67c.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 10 May 2024 18:33:29 GMT
content-type: text/javascript; charset=utf-8
content-length: 24639
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "bb734a39dc2e8831e4ff608cca465ffd"
expires: Mon, 11 May 2054 01:04:57 GMT
last-modified: Tue, 07 May 2024 14:36:50 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
sync.dmp.otm-r.com/match/skyadvert
195.201.106.117 61 B URL sync.dmp.otm-r.com/match/skyadvert
IP 195.201.106.117:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text
Hash b02662ed627608496e08e40fe30a9ce9
a7fa21a952fc2a89da9538142304ab84db8d1523
8db10d72e4868e2820b62f780cca1c490596531247cf9552a6499c4af9799c5d
GET /match/skyadvert HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.15.9
date: Fri, 10 May 2024 18:33:29 GMT
content-type: text/html; charset=utf-8
content-length: 61
access-control-allow-origin: *
location: /match/skyadvert?otcm_check=1715366009
set-cookie: mpid=NjYzZTY4NzkwZDBmNGE1Nw==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/1021761/5940aeb43fa99637a05d.js
178.154.131.215 113 kB URL yastatic.net/partner-code-bundles/1021761/5940aeb43fa99637a05d.js
IP 178.154.131.215:0
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07
ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65496)
Size 113 kB (113046 bytes)
Hash bb13bbd7846e635b69d0b07b76295158
007b5e57419e4aa3cdbbe47c6dd08612c30077bc
fed5e2dc50beff56ee6a30a79fd25111d584413423cd33e4b6a6729f91696bf9
GET /partner-code-bundles/1021761/5940aeb43fa99637a05d.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 10 May 2024 18:33:29 GMT
content-type: text/javascript; charset=utf-8
content-length: 113046
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "8b97c2fa208ad8358f2b19c0cbc8dd52"
expires: Mon, 11 May 2054 01:09:29 GMT
last-modified: Tue, 07 May 2024 14:36:49 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2
178.154.131.215 26 kB URL yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2
IP 178.154.131.215:0
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07
ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 26004, version 1.0
Hash 7f0cdaf91230f9789ca4162aedff612e
965de571aa794dab64076c3cc64dc8894b843f23
033696b7f1ac04d1dcc102be84550e146236ceffc25a6cabc12aa51a6ee410b9
GET /s3/home/fonts/ys/3/text-variable-full.woff2 HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hd29.lordsfilm.cfd/
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 10 May 2024 18:33:29 GMT
content-type: font/woff2
content-length: 26004
access-control-allow-origin: *
cache-control: public, max-age=31556952
etag: "7f0cdaf91230f9789ca4162aedff612e"
expires: Sun, 11 May 2025 00:20:54 GMT
last-modified: Mon, 25 Apr 2022 14:02:39 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-amz-meta-owner: {"role":"admin","login":"4eb0da"}
x-nginx-request-id: eff537758bb15e2d
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
216.58.207.227 9.8 kB URL fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
IP 216.58.207.227:0
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 9832, version 1.0
Hash efe937997e08e15b056a3643e2734636
d02decbf472a0928b054cc8e4b13684539a913db
53f2931d978bf9b24d43b5d556ecf315a6b3f089699c5ba3a954c4dde8663361
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9832
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 May 2024 09:25:36 GMT
expires: Mon, 05 May 2025 09:25:36 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:49 GMT
content-type: font/woff2
age: 464873
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
yastatic.net/partner-code-bundles/1021761/7df3e67bceda654a4fc3.js
178.154.131.215 8.8 kB URL yastatic.net/partner-code-bundles/1021761/7df3e67bceda654a4fc3.js
IP 178.154.131.215:0
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07
ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (29798)
Hash 6c56ee610943e207bd673fe958843dbc
773b2fd8ad591e481d446e3ab852f4a96100ac63
fc674a1d5e86d24c5ae828326c7ac9e3fd88a7558d663fc7ab1e27b3b67ee916
GET /partner-code-bundles/1021761/7df3e67bceda654a4fc3.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 10 May 2024 18:33:29 GMT
content-type: text/javascript; charset=utf-8
content-length: 8751
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "3931c272faddbf078e8951ae0e23da11"
expires: Mon, 11 May 2054 01:06:39 GMT
last-modified: Tue, 07 May 2024 14:36:49 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
code.moviead55.ru/go/bn?key=16ee33f0a2b397c4a1f1ab6636599ac9&cp.adsource=Infin_inf_br&vt=100&w=300&h=250&cp.referer=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&fid=92acad539c96759d&cp.tanc=
193.200.65.144 526 B URL code.moviead55.ru/go/bn?key=16ee33f0a2b397c4a1f1ab6636599ac9&cp.adsource=Infin_inf_br&vt=100&w=300&h=250&cp.referer=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&fid=92acad539c96759d&cp.tanc=
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
File type HTML document, ASCII text
Hash fcc195e57ae09d2f215d0c672f4aac7a
c1555e27731bf71276d7541d4c432b7ae8841004
110bebe936d63b440045020bc0326379304038921d654e2a38ae0718fe12331d
GET /go/bn?key=16ee33f0a2b397c4a1f1ab6636599ac9&cp.adsource=Infin_inf_br&vt=100&w=300&h=250&cp.referer=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&fid=92acad539c96759d&cp.tanc= HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:29 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
x-movieads-path: /
x-movieads-referrer: https://hd29.lordsfilm.cfd/
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
x-movieads-udata: cache,parsed,201649
x-cache-source: Rist
x-movieads-mrc: no
x-movieads-ref: {"Scheme":"https","Opaque":"","User":null,"Host":"hd29.lordsfilm.cfd","Path":"/","RawPath":"","OmitHost":false,"ForceQuery":false,"RawQuery":"","Fragment":"","RawFragment":""}
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/1021761/e691583d5b2972bb652e.js
178.154.131.215200 OK 7.9 kB URL GET HTTP/2 yastatic.net/partner-code-bundles/1021761/e691583d5b2972bb652e.js
IP 178.154.131.215:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07
ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (24511)
Hash a73315d5617e80428a5c3d0c167a4ae9
c10b94147b66e32f08292ab5b19b2ee4ee76ae31
2cfaeb65214e5203a26be0e322c697ab08f9727d27fe6bac9d94a5793aaaaece
GET /partner-code-bundles/1021761/e691583d5b2972bb652e.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 10 May 2024 18:33:30 GMT
content-type: text/javascript; charset=utf-8
content-length: 7947
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "c1a902da41731ae3cd6cc80360ad6d0d"
expires: Mon, 11 May 2054 01:07:52 GMT
last-modified: Tue, 07 May 2024 14:36:50 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/1021761/41ac30a528a3ba0d08d9.js
178.154.131.215200 OK 13 kB URL GET HTTP/2 yastatic.net/partner-code-bundles/1021761/41ac30a528a3ba0d08d9.js
IP 178.154.131.215:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07
ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (47638)
Hash 37e6c9689fb7ca2b8711c821bbf58db2
152099d3adac2ca44efbd4a6dfdec1a7b69233db
3f9437f881cb2c4e992366a813669b30c960d17e9bb7eb6835d10a66da148cdd
GET /partner-code-bundles/1021761/41ac30a528a3ba0d08d9.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 10 May 2024 18:33:30 GMT
content-type: text/javascript; charset=utf-8
content-length: 13046
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "235fe560e9101c74f1b2e7d6aa60e4c0"
expires: Mon, 11 May 2054 01:07:52 GMT
last-modified: Tue, 07 May 2024 14:36:49 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
dm-eu.hybrid.ai/match?id=106&vid=0A00007F78683E66A3377A430294F148
37.230.131.22 0 B URL dm-eu.hybrid.ai/match?id=106&vid=0A00007F78683E66A3377A430294F148
IP 37.230.131.22:0
ASN #200197 Hybrid Adtech Sp.z.o.o.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=106&vid=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: vid=24b66973447526a89442
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Fri, 10 May 2024 18:33:30 GMT
content-length: 0
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
location: https://dm.hybrid.ai/yandexdmp-match
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 574
x-xss-protection: 1; mode=block
access-control-allow-origin: https://www.acint.net
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
sync.gonet-ads.com/match/sape.js?id=0A00007F78683E66A3377A430294F148
188.42.105.236 43 B URL sync.gonet-ads.com/match/sape.js?id=0A00007F78683E66A3377A430294F148
IP 188.42.105.236:0
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape.js?id=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: sync.gonet-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:30 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
exchange.buzzoola.com/cookiesync/dsp/sape-banner?uid=0A00007F78683E66A3377A430294F148&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126
167.235.33.115307 Temporary Redirect 269 B URL GET HTTP/2 exchange.buzzoola.com/cookiesync/dsp/sape-banner?uid=0A00007F78683E66A3377A430294F148&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126
IP 167.235.33.115:443
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type HTML document, ASCII text
Hash 2788cff930e8457c7a446cc187ded6b6
bf986f37915e4e68cad2be440a0049b565b4f2db
0e62673501055de3de02bb3ddc17cda7dfbf901c0fa9f9d55b3fe67525d1f4e4
GET /cookiesync/dsp/sape-banner?uid=0A00007F78683E66A3377A430294F148&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126 HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 307 Temporary Redirect
server: nginx
date: Fri, 10 May 2024 18:33:18 GMT
content-type: text/html; charset=utf-8
content-length: 269
location: /cookiesync/dsp/sape-banner?set_buzzoola_cookie=t&uid=0A00007F78683E66A3377A430294F148&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126
set-cookie: uuid=4006181c-206d-4f95-5d62-b093d7d4ae2f; Path=/; Domain=buzzoola.com; Expires=Sun, 09 Jun 2024 18:33:18 GMT; Max-Age=2592000; Secure; SameSite=None
serverid: TODO
X-Firefox-Spdy: h2
yandex.ru/ads/system/header-bidding.js
5.255.255.77200 OK 46 kB URL GET HTTP/2 yandex.ru/ads/system/header-bidding.js
IP 5.255.255.77:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.xn--d1acpjx3f.xn--p1ai
Fingerprint17:FB:0C:B6:3F:7F:A5:4C:41:AD:D0:5C:6B:9A:96:47:FE:AF:C8:5C
ValidityMon, 04 Mar 2024 10:29:07 GMT - Sun, 01 Sep 2024 20:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65478)
Hash 471bf8df487014d1082a1b520bd7bc12
189bb1fec0f8b39665d8cf1219534201632deb2e
74795e1ac347edf40e1ba00e8c63f7c0c82dda52f62a72aee0ea7572d5891c82
GET /ads/system/header-bidding.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
timing-allow-origin: *
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: *
set-cookie: i=XJYmEt2m3krFhdIWbszV7v1C1cxzcMoqobzO3vSK7visKXqDXVIsCNSBoK6rC9ImguEpBlqSAQhMTiaAESWRIcPOcoo=; Expires=Sun, 10-May-2026 18:33:28 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=7035566001715366008; Expires=Sun, 10-May-2026 18:33:28 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yashr=3253081131715366008; Path=/; Domain=.yandex.ru; Expires=Sat, 10 May 2025 18:33:28 GMT; SameSite=None; Secure; HttpOnly
receive-cookie-deprecation=1; Path=/; Domain=.yandex.ru; Expires=Sat, 10 May 2025 18:33:28 GMT; SameSite=None; Secure; HttpOnly; Partitioned
etag: "96918cb39073f692ee4cfabc7fd9944b-1021761"
expires: Fri, 10 May 2024 19:33:28 GMT
x-yandex-req-id: 1715366008642388-5833251071703556600-balancer-l7leveler-kubr-yp-vla-17-BAL
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
X-Firefox-Spdy: h2
match.ohmy.bid/cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D
167.235.14.51 0 B URL match.ohmy.bid/cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D
IP 167.235.14.51:0
ASN #24940 Hetzner Online GmbH
Certificate IssuerLet's Encrypt
Subjectmatch.ohmy.bid
Fingerprint93:CC:18:6B:4E:10:D1:20:7F:8C:75:21:78:30:60:00:A2:B6:B0:39
ValiditySat, 23 Mar 2024 20:09:13 GMT - Fri, 21 Jun 2024 20:09:12 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D HTTP/1.1
Host: match.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: uid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0.663e6879.c275143e5c083195
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 10 May 2024 18:33:30 GMT
content-length: 0
bidder: bid-12 1.1542.871fc768
location: https://mc.acint.net/match?dp=217&euid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0
access-control-allow-credentials: true
X-Firefox-Spdy: h2
code.moviead55.ru/go/csync?cn=otclkbid&bid=VU0cO9fZFTbYzyf
193.200.65.144 0 B URL code.moviead55.ru/go/csync?cn=otclkbid&bid=VU0cO9fZFTbYzyf
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=otclkbid&bid=VU0cO9fZFTbYzyf HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8; hbrdcookie2=24b66973447526a89442
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:30 GMT
content-type: image/jpeg
content-length: 0
set-cookie: otclkbid=VU0cO9fZFTbYzyf; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
sync.opendsp.ru/match/sape_ex?id=0A00007F78683E66A3377A430294F148
82.148.20.186 43 B URL sync.opendsp.ru/match/sape_ex?id=0A00007F78683E66A3377A430294F148
IP 82.148.20.186:0
ASN #50340 OOO Network of data-centers Selectel
Certificate IssuerLet's Encrypt
Subjectsync.opendsp.ru
Fingerprint61:B4:DA:9F:EB:AB:9D:73:4C:76:FB:7C:3B:0B:80:A4:0F:14:18:28
ValidityThu, 04 Apr 2024 10:36:13 GMT - Wed, 03 Jul 2024 10:36:12 GMT
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape_ex?id=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: sync.opendsp.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:30 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/venom-player@0.2.88/dist/theme-modern.js
151.101.193.229200 OK 12 kB URL GET HTTP/3 cdn.jsdelivr.net/npm/venom-player@0.2.88/dist/theme-modern.js
IP 151.101.193.229:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type JavaScript source, ASCII text, with very long lines (35649), with no line terminators
Hash e12d49c3670cfc32e0a5208b8ddc07f0
902d328f6408571bbcf52d10449728ea4fe536b3
b2b53c16e63670b66dc9545791e9fa09998ff2a084002a1762b722079800afa2
GET /npm/venom-player@0.2.88/dist/theme-modern.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 11480
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.2.88
x-jsd-version-type: version
etag: W/"8b41-kC0yj2QIVxu89S0QRJco6k/lNrM"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 18:33:30 GMT
age: 3059227
x-served-by: cache-fra-eddf8230118-FRA, cache-hel1410023-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
kimberlite.io/rtb/sync/sape2?u=0A00007F78683E66A3377A430294F148
217.199.220.43 0 B URL kimberlite.io/rtb/sync/sape2?u=0A00007F78683E66A3377A430294F148
IP 217.199.220.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/sape2?u=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: as=hPJ_CGY-aHk; f=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsolta%26bid%3DZj5oefMz_HY; n=1; u=Zj5oefMz_HY~v1jAy_97mqpmUNiDU2GPAY4H0zg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Fri, 10 May 2024 18:33:30 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: as=hPJ_CGY-aHn5atR4Zj5oeg; max-age=604800; samesite=none; httponly; secure
n=2; max-age=30; samesite=none; httponly; secure
location: https://solta-sync.rutarget.ru/sync
referrer-policy: no-referrer
server-timing: app;srv=8;dur=0.0002
code.moviead55.ru/go/csync?cn=ohmybid&bid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0
193.200.65.144 0 B URL code.moviead55.ru/go/csync?cn=ohmybid&bid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=ohmybid&bid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8; hbrdcookie2=24b66973447526a89442
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:30 GMT
content-type: image/jpeg
content-length: 0
set-cookie: ohmybid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
a.utraff.com/sync?ssp=8&id=0A00007F78683E66A3377A430294F148
104.26.7.189204 No Content 0 B URL GET HTTP/2 a.utraff.com/sync?ssp=8&id=0A00007F78683E66A3377A430294F148
IP 104.26.7.189:443
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerGoogle Trust Services LLC
Subjectutraff.com
Fingerprint33:5E:E6:D1:25:D0:06:4F:AC:56:7F:BD:6C:A7:DD:31:72:25:35:57
ValiditySat, 06 Apr 2024 06:57:44 GMT - Fri, 05 Jul 2024 06:57:43 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=8&id=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Fri, 10 May 2024 18:33:30 GMT
content-type: text/plain
set-cookie: preutid=1; Expires=Sun, 09 Jun 2024 21:33:30 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Expires=Sun, 09 Jun 2024 21:33:30 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UEw8Bb0QiPxpwOnR%2Fz2t0mGvoks%2Bdo%2Fi1pwytCT46%2BnikDbmLattddfoLm9gXoFVYTGBa8nG%2B%2Fbv%2FuuYKBgEKT6PJpbsE5Ot%2FDugk3yZd13WO0jx0sMUmCfrz44Wow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c049cd9f25696-OSL
X-Firefox-Spdy: h2
code.moviead55.ru/go/csync?cn=bzcookie&bid=2c2c08ce-a0bc-471c-7f40-2a2ad1719ee4
193.200.65.144200 OK 0 B URL GET HTTP/2 code.moviead55.ru/go/csync?cn=bzcookie&bid=2c2c08ce-a0bc-471c-7f40-2a2ad1719ee4
IP 193.200.65.144:443
ASN #6681 Giveme Cloud Sp Z O O
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9
ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=bzcookie&bid=2c2c08ce-a0bc-471c-7f40-2a2ad1719ee4 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8; hbrdcookie2=24b66973447526a89442
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:30 GMT
content-type: image/jpeg
content-length: 0
set-cookie: bzcookie=2c2c08ce-a0bc-471c-7f40-2a2ad1719ee4; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
s.myangular.life/player?cat=frame&hit=embed&sub=embed&type=same&label=other&host=lordsfilm.cfd
144.76.194.2200 OK 0 B URL GET HTTP/1.1 s.myangular.life/player?cat=frame&hit=embed&sub=embed&type=same&label=other&host=lordsfilm.cfd
IP 144.76.194.2:443
ASN #24940 Hetzner Online GmbH
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint49:29:7B:E4:AA:2F:8B:1B:40:C9:EB:26:F2:8A:38:C0:BB:63:42:42
ValidityFri, 05 Apr 2024 00:00:00 GMT - Tue, 06 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?cat=frame&hit=embed&sub=embed&type=same&label=other&host=lordsfilm.cfd HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:30 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
sync.dmp.otm-r.com/match/sape?id=0A00007F78683E66A3377A430294F148
195.201.106.117 94 B URL sync.dmp.otm-r.com/match/sape?id=0A00007F78683E66A3377A430294F148
IP 195.201.106.117:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text
Hash dd717c20db4e8ab553850b50bafae281
d5d88947b4ada83fbfb38569a409827d0b079f65
0dba2e865b43cf4177d270c3dd6f3ae4445d5f3c23648df50ad679789c61db86
GET /match/sape?id=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: mpid=NjYzZTY4NzkwZDBmNGE1Nw==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.15.9
date: Fri, 10 May 2024 18:33:30 GMT
content-type: text/html; charset=utf-8
content-length: 94
access-control-allow-origin: *
location: https://www.acint.net/match?dp=68&euid=NjYzZTY4NzkwZDBmNGE1Nw%3D%3D
set-cookie: mpid=NjYzZTY4NzkwZDBmNGE1Nw==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.106200 OK 0 B URL OPTIONS HTTP/3 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.106:443
Requested by https://www.youtube.com/embed/8KS5HqEiwLc
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 10 May 2024 18:33:30 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
code.moviead55.ru/go/jmap?v=16ee33f0a2b397c4a1f1ab6636599ac9&sid=ap&cp.referer=https%253A%252F%252Fhd29.lordsfilm.cfd%252Fserialy%252F22494-avanpost-2020-25-3-21.html&it=1&tq=2&cp.cb=1c0f5eae-921f-24ac-0270-9c4b4c04efae&session=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&position=pre&vt=100&ostream=true&isp=0&suri=https%253A%252F%252Fhd29.lordsfilm.cfd%252Fserialy%252F22494-avanpost-2020-25-3-21.html&rnd=1715366009564&raw=yes&ma=88d15f87-d2b9-4930-8d6f-a1aa01b97324
193.200.65.144200 OK 2.3 kB URL GET HTTP/2 code.moviead55.ru/go/jmap?v=16ee33f0a2b397c4a1f1ab6636599ac9&sid=ap&cp.referer=https%253A%252F%252Fhd29.lordsfilm.cfd%252Fserialy%252F22494-avanpost-2020-25-3-21.html&it=1&tq=2&cp.cb=1c0f5eae-921f-24ac-0270-9c4b4c04efae&session=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&position=pre&vt=100&ostream=true&isp=0&suri=https%253A%252F%252Fhd29.lordsfilm.cfd%252Fserialy%252F22494-avanpost-2020-25-3-21.html&rnd=1715366009564&raw=yes&ma=88d15f87-d2b9-4930-8d6f-a1aa01b97324
IP 193.200.65.144:443
ASN #6681 Giveme Cloud Sp Z O O
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9
ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
File type gzip compressed data, from Unix
Hash b8f6a51705d8fef060b2409e4293c75d
b173b2c893d8c55c3f57164527aa36f67c905439
326cc400a8999d3a03e8deb8667ca543f3ca35c1c5678960d6098007c105d71f
GET /go/jmap?v=16ee33f0a2b397c4a1f1ab6636599ac9&sid=ap&cp.referer=https%253A%252F%252Fhd29.lordsfilm.cfd%252Fserialy%252F22494-avanpost-2020-25-3-21.html&it=1&tq=2&cp.cb=1c0f5eae-921f-24ac-0270-9c4b4c04efae&session=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&position=pre&vt=100&ostream=true&isp=0&suri=https%253A%252F%252Fhd29.lordsfilm.cfd%252Fserialy%252F22494-avanpost-2020-25-3-21.html&rnd=1715366009564&raw=yes&ma=88d15f87-d2b9-4930-8d6f-a1aa01b97324 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8; hbrdcookie2=24b66973447526a89442
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:30 GMT
content-type: application/json;charset=UTF-8
vary: Accept-Encoding
x-movieads-cors-qex: Referer
x-movieads-path: /
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
x-go-country: NO
x-movieads-udata: cache,parsed,201651
x-movieads-plc: 0
x-movieads-ark: true
x-movieads-qmc: NO
x-movieads-rdb: 0
x-movieads-alc: 5
x-movieads-ctvs: 5
server-timing: buildTagsQueue;dur=0.0000, range_links;dur=0.0000, validations_776;dur=0.0000, validations_703;dur=0.0000, keyValidation;dur=0.0000, initBuilder;dur=0.0000, attachTracking;dur=0.0000, optProc;dur=0.0000, qManager;dur=0.0000, queueSort;dur=0.0000, queuesMerge;dur=0.0000, corsParams;dur=0.0000, wmData;dur=0.0000, uData;dur=0.0000, getAnyQueue;dur=0.0000, getLinks;dur=0.0000, getJson;dur=0.0000, jmapParams;dur=0.0000
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.106200 OK 114 B URL OPTIONS HTTP/3 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.106:443
Requested by https://www.youtube.com/embed/8KS5HqEiwLc
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hash 87cdc00525a5e3494f0a913a288ec428
4afe7006d1b8e2d4e8c835314c963b88744db689
83ec11e043fb0f464a0e7109ec89b728f342b7d2253c2e1896038919f1eb4789
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1039
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 10 May 2024 18:33:30 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/generate_204?rK1QLQ
142.250.74.14204 No Content 0 B URL GET HTTP/3 www.youtube.com/generate_204?rK1QLQ
IP 142.250.74.14:443
Requested by https://www.youtube.com/embed/8KS5HqEiwLc
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?rK1QLQ HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/8KS5HqEiwLc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Fri, 10 May 2024 18:33:30 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
193.3.184.217 142 B URL ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
IP 193.3.184.217:0
File type HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Fri, 10 May 2024 18:33:30 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/match?dp=14&euid=3203420A7A683E662100EE1C029AD3F4
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=CkIDMmY+aHoc7gAh9NOaApXIz39qhV8fkwpnfnfhtGgZ8wri; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None
yt3.ggpht.com/IckVOp3T8_Piw3SepV6rztrEn9uJ5EIudDOdYrKtERxJ3isEi4xgj7Szrs0zpyceSae1jfX1uw=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 1.0 kB URL GET HTTP/2 yt3.ggpht.com/IckVOp3T8_Piw3SepV6rztrEn9uJ5EIudDOdYrKtERxJ3isEi4xgj7Szrs0zpyceSae1jfX1uw=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:443
Requested by https://www.youtube.com/embed/8KS5HqEiwLc
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint7B:64:D0:4F:29:87:0A:A8:90:15:F1:9F:B6:8F:FB:D6:AC:D2:76:56
ValidityTue, 16 Apr 2024 04:13:47 GMT - Tue, 09 Jul 2024 04:13:46 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3
Hash 01a57a1d236a6d31d9e2adaa833add0b
264631b292e3bcfb270c6b06b72d9ec733fe68c6
d0a86388c1f76cf682025b1ea827b38427f46a389a8c2287cf6362901832b169
GET /IckVOp3T8_Piw3SepV6rztrEn9uJ5EIudDOdYrKtERxJ3isEi4xgj7Szrs0zpyceSae1jfX1uw=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
server: fife
content-length: 1018
x-xss-protection: 0
date: Fri, 10 May 2024 18:10:55 GMT
expires: Sat, 11 May 2024 18:10:55 GMT
cache-control: public, max-age=86400, no-transform
age: 1355
etag: "v1"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sync.bumlam.com/?src=sap1&uid=0A00007F78683E66A3377A430294F148
31.172.81.160 0 B URL sync.bumlam.com/?src=sap1&uid=0A00007F78683E66A3377A430294F148
IP 31.172.81.160:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&uid=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Fri, 10 May 2024 18:33:30 GMT
Content-Length: 0
Connection: close
Set-Cookie: suuid3=IiRjY2Q3NzVmZS0wZWZiLTExZWYtOWI3Yi0wMDI1OTBjODI0MzY*; Path=/; Expires=Thu, 05 May 2044 18:33:30 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARj60PmxBmIgMEEwMDAwN0Y3ODY4M0U2NkEzMzc3QTQzMDI5NEYxNDiiARDM13X-DvsR75t7ACWQyCQ2
ETag: ccd775fe-0efb-11ef-9b7b-002590c82436
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
nr.bidderstack.com/sape/cm?user_id=0A00007F78683E66A3377A430294F148
167.235.186.124 0 B URL nr.bidderstack.com/sape/cm?user_id=0A00007F78683E66A3377A430294F148
IP 167.235.186.124:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/cm?user_id=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 10 May 2024 18:33:30 GMT
Content-Length: 0
Connection: keep-alive
Location: /sape/cm?user_id=0A00007F78683E66A3377A430294F148&pupa=1
Set-Cookie: pupa=187da8a4-5e7b-8768-ed39-68cc113f0aec; domain=.bidderstack.com; path=/; expires=Sat, 10-May-2025 18:33:30 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
sync.upravel.com/sape/sync
195.201.194.16 0 B URL sync.upravel.com/sape/sync
IP 195.201.194.16:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Fri, 10 May 2024 18:33:30 GMT
content-type: image/png
content-length: 0
location: https://sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
set-cookie: session_tptc=1715366010832;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
session_tptc-legacy=1715366010832;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
s.uuidksinc.net/match/396/?remote_uid=0A00007F78683E66A3377A430294F148
185.98.54.153 0 B URL s.uuidksinc.net/match/396/?remote_uid=0A00007F78683E66A3377A430294F148
IP 185.98.54.153:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/396/?remote_uid=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.23.2
date: Fri, 10 May 2024 18:33:30 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=ty2aRwsG1WRK40YuCfkg
set-cookie: jcsuuid=ty2aRwsG1WRK40YuCfkg; expires=Sat, 10 May 2025 18:33:30 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
pix.bumlam.com/sync/sape/check?sspuid=0A00007F78683E66A3377A430294F148
31.172.81.159302 Found 0 B URL GET HTTP/1.1 pix.bumlam.com/sync/sape/check?sspuid=0A00007F78683E66A3377A430294F148
IP 31.172.81.159:443
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint9F:E0:4A:B3:57:B0:3C:3E:13:7F:9F:FF:82:A2:91:87:45:9F:A4:7F
ValidityThu, 28 Mar 2024 09:09:43 GMT - Wed, 26 Jun 2024 09:09:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/check?sspuid=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 10 May 2024 18:33:30 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://sync.bumlam.com/?src=sape
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
142.250.74.14200 OK 31 B URL POST HTTP/3 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP 142.250.74.14:443
Requested by https://www.youtube.com/embed/8KS5HqEiwLc
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1715366010422
Content-Type: application/json
X-Goog-Visitor-Id: Cgt2cW9TM21yaS1Tayj10PmxBjIOCgJOTxIIEgQSAgsMIG0%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240507.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1715366007417&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C0%2C0%2C0%2C0&vis=1&wgl=true&ca_type=image
Content-Length: 9576
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/8KS5HqEiwLc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Fri, 10 May 2024 18:33:30 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
dm.hybrid.ai/yandexdmp-match
37.230.131.22 0 B URL dm.hybrid.ai/yandexdmp-match
IP 37.230.131.22:0
ASN #200197 Hybrid Adtech Sp.z.o.o.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /yandexdmp-match HTTP/1.1
Host: dm.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: vid=24b66973447526a89442
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Fri, 10 May 2024 18:33:31 GMT
content-length: 0
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
location: https://an.yandex.ru/mapuid/dmphybridai/24b66973447526a89442?sign=1370158419
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 557
x-xss-protection: 1; mode=block
access-control-allow-origin: *
server: Hybrid Web Server
X-Firefox-Spdy: h2
ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcode.moviead55.ru%252Fgo%252Fcsync%253Fcn%253Dsapecookie%2526bid%253D$%257BUSER_ID%257D&dp=14
193.3.184.215302 Moved Temporarily 142 B URL GET HTTP/1.1 ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcode.moviead55.ru%252Fgo%252Fcsync%253Fcn%253Dsapecookie%2526bid%253D$%257BUSER_ID%257D&dp=14
IP 193.3.184.215:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.sape.ru
Fingerprint73:95:22:E3:B6:12:3E:90:3A:10:10:DC:38:ED:28:2D:82:7B:EB:E2
ValidityWed, 10 Apr 2024 03:20:28 GMT - Tue, 09 Jul 2024 03:20:27 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcode.moviead55.ru%252Fgo%252Fcsync%253Fcn%253Dsapecookie%2526bid%253D$%257BUSER_ID%257D&dp=14 HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Fri, 10 May 2024 18:33:31 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/rmatch?dp=14&euid=3C03420A7B683E662000E7AE0281EF4D&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D$%7BUSER_ID%7D
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=CkIDPGY+aHuu5wAgTe+BAgv+8GblufTFQAJWU010RUk+eA0N; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None
exchange.buzzoola.com/cookiesync/dsp/sape-banner?set_buzzoola_cookie=t&uid=0A00007F78683E66A3377A430294F148&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126
167.235.33.115302 Found 156 B URL GET HTTP/2 exchange.buzzoola.com/cookiesync/dsp/sape-banner?set_buzzoola_cookie=t&uid=0A00007F78683E66A3377A430294F148&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126
IP 167.235.33.115:443
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type HTML document, ASCII text
Hash d13ef132320e0be3033066571522664f
d9f92a1591f1187e079b64c36fbd4f3523129523
88f77f7c5cfba65d844f6371031d3dd6cc06aa58317af1c783800bcfdd165eed
GET /cookiesync/dsp/sape-banner?set_buzzoola_cookie=t&uid=0A00007F78683E66A3377A430294F148&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126 HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: uuid=4006181c-206d-4f95-5d62-b093d7d4ae2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/html; charset=utf-8
content-length: 156
location: https://mc.acint.net/rmatch?dp=126&euid=4006181c-206d-4f95-5d62-b093d7d4ae2f&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126
serverid: TODO
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/1021761/afd10241961de2e01612.js
178.154.131.215200 OK 12 kB URL GET HTTP/2 yastatic.net/partner-code-bundles/1021761/afd10241961de2e01612.js
IP 178.154.131.215:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07
ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (43471)
Hash fa4e3c0028f91452e89eb1928e4f4f37
08cea01a3887f4449c2f23675f9cdcec5885b50d
121e7d4a0c188c5cd26e8fa51b4447fbc6c748a252139a3aea2e715c2aea822e
GET /partner-code-bundles/1021761/afd10241961de2e01612.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/javascript; charset=utf-8
content-length: 12383
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "9fe63136ddc491ed91269381d3c391b1"
expires: Mon, 11 May 2054 01:08:10 GMT
last-modified: Tue, 07 May 2024 14:36:49 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/1021761/7f8631c7bc43182f0a2e.js
178.154.131.215 49 kB URL yastatic.net/partner-code-bundles/1021761/7f8631c7bc43182f0a2e.js
IP 178.154.131.215:0
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07
ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65483)
Hash 7c2be3dbc4a0e302d1dff190983f0f1f
b3116b89d9fef937019612cdbc33661e20468b71
ebc0c2f2e106c0fa29bc5898082271bea2f38ce60a72aac28e20f6d236c4bb5c
GET /partner-code-bundles/1021761/7f8631c7bc43182f0a2e.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/javascript; charset=utf-8
content-length: 49141
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "9d9b1aa7a78532f47769a67fe14fb63b"
expires: Mon, 11 May 2054 01:06:40 GMT
last-modified: Tue, 07 May 2024 14:36:49 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
mc.acint.net/match?dp=217&euid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0
193.3.184.16 43 B URL mc.acint.net/match?dp=217&euid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0
IP 193.3.184.16:0
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=217&euid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 10 May 2024 18:33:31 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/venom-player@0.2.88/dist/189.js
151.101.193.229200 OK 143 kB URL GET HTTP/3 cdn.jsdelivr.net/npm/venom-player@0.2.88/dist/189.js
IP 151.101.193.229:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 143 kB (142555 bytes)
Hash ea5b3848f4922f116f42e286c2a09ea2
8e3950a1b871be2027f3f9f5b4fe0fa30fe97f47
5b812741df3698efa4c953adc84499a05a572f7a6f2ab7731c8c7774aa51e57c
GET /npm/venom-player@0.2.88/dist/189.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 142555
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.2.88
x-jsd-version-type: version
etag: W/"7f90d-jjlQobhxviAn8/n1tP4Pow/pf0c"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 18:33:31 GMT
age: 6818544
x-served-by: cache-fra-etou8220035-FRA, cache-hel1410023-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
match.new-programmatic.com/userbind?src=sape&id=0A00007F78683E66A3377A430294F148
217.65.2.150204 No Content 0 B URL GET HTTP/1.1 match.new-programmatic.com/userbind?src=sape&id=0A00007F78683E66A3377A430294F148
IP 217.65.2.150:443
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subjectnew-programmatic.com
FingerprintDC:66:9C:C9:66:1A:E4:EF:2D:CF:20:88:F1:EB:C8:72:0E:CE:CD:2D
ValidityThu, 04 Apr 2024 19:59:41 GMT - Wed, 03 Jul 2024 19:59:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Fri, 10 May 2024 18:33:31 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D95%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D95%26euid%3D
83.222.96.170302 Found 126 B URL GET HTTP/2 ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D95%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D95%26euid%3D
IP 83.222.96.170:443
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.bestssp.com
Fingerprint25:15:42:2E:1C:54:0F:74:CF:89:02:5A:5E:AC:98:DA:1C:34:B3:B3
ValidityMon, 24 Jul 2023 17:15:54 GMT - Sat, 24 Aug 2024 17:15:53 GMT
File type HTML document, ASCII text
Hash 438fe9093125bb169ad5e75ebce4952c
125ae9cacc7030fc5945ae6fdeefa9cca118ef2b
8a9649f6ebc051ec9febf31da49ae8c5441bee098fdc86670fd980373d6774a6
GET /sspmatch?url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D95%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D95%26euid%3D HTTP/1.1
Host: ssp.bestssp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.22.0
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/html; charset=utf-8
content-length: 126
location: https://mc.acint.net/rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=FVSBEXNX
set-cookie: uid=FVSBEXNX; Expires=Mon, 08 May 2034 18:33:31 GMT
X-Firefox-Spdy: h2
cs.agency2.ru/p?ssp=sp&uid=0A00007F78683E66A3377A430294F148
23.111.107.44301 Moved Permanently 0 B URL GET HTTP/1.1 cs.agency2.ru/p?ssp=sp&uid=0A00007F78683E66A3377A430294F148
IP 23.111.107.44:443
ASN #39134 Edinaya Set Limited Liability Company
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subjectapi.agency2.ru
Fingerprint02:6A:FB:9D:0A:83:4C:93:CA:FA:19:3D:E7:2F:70:6A:A8:40:97:BE
ValiditySun, 14 Apr 2024 23:34:36 GMT - Sat, 13 Jul 2024 23:34:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sp&uid=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Fri, 10 May 2024 18:33:31 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.acint.net/match?dp=186&euid=a6315e40-c43e-4c37-b5f9-230b77e69ad6
Set-Cookie: uuid=a6315e40-c43e-4c37-b5f9-230b77e69ad6; expires=Thu, 01 May 2025 18:33:31 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44
ssp.al-adtech.com/api/sync/sape
45.139.25.122 0 B URL ssp.al-adtech.com/api/sync/sape
IP 45.139.25.122:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync/sape HTTP/1.1
Host: ssp.al-adtech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.20.1
Date: Fri, 10 May 2024 18:33:31 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin:
Access-Control-Allow-Credentials: true
Location: https://mc.acint.net/rmatch?dp=261&euid=53554c26-8043-4e65-be79-a6572b385504&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261
Set-Cookie: afp_cookie=gAAAAABmPmh741yaqnw3QMPZhP8pFuwutadlFY900LbSJA1fg535B0VV12FOb4qdyNWTDBSNHc-Ii4Y1T8P6-D28Qjp84BDnj7NS7mLub4eVXOk1cjh3V2Adqa4bl04mSCBO5NZSab5bvSfJvUPqdnogpwjrlUn_oVHkn0gASTm6qs2CBv6PsL012Iez1Xv1mUromSoxw7ec_-GmnkLYb4ALMFJbOTfWNg==$; expires=Mon, 10 Jun 2024 18:33:31 GMT; path=/; secure; SameSite=None
www.acint.net/match?dp=68&euid=NjYzZTY4NzkwZDBmNGE1Nw%3D%3D
193.3.184.16200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=68&euid=NjYzZTY4NzkwZDBmNGE1Nw%3D%3D
IP 193.3.184.16:443
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1
ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=68&euid=NjYzZTY4NzkwZDBmNGE1Nw%3D%3D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 10 May 2024 18:33:31 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/venom-player@0.2.88/dist/dash.js
151.101.193.229 84 B URL cdn.jsdelivr.net/npm/venom-player@0.2.88/dist/dash.js
IP 151.101.193.229:0
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type ASCII text, with no line terminators
Hash 84eee3ca3b339eebee1fa872f1ece64a
ac28843b7fcdc5023f65c747e51f009562b1c478
94a1443f69cfc9942e6a9d2ed2fc644702e271683b2e703f9adf65113a430ed5
GET /npm/venom-player@0.2.88/dist/dash.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 84
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.2.88
x-jsd-version-type: version
etag: W/"71-rCiEO3/NxQI/ZcdH5R8AlWKxxHg"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 18:33:31 GMT
age: 6818544
x-served-by: cache-fra-eddf8230126-FRA, cache-hel1410023-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
sync.dmp.otm-r.com/match/skyadvert?otcm_check=1715366009
195.201.106.117302 Found 104 B URL GET HTTP/2 sync.dmp.otm-r.com/match/skyadvert?otcm_check=1715366009
IP 195.201.106.117:443
ASN #24940 Hetzner Online GmbH
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.dmp.otm-r.com
FingerprintC6:A2:9D:82:0D:D1:C1:2D:A4:ED:7F:05:13:52:5B:94:6B:10:58:D6
ValidityMon, 19 Jun 2023 10:50:51 GMT - Sat, 20 Jul 2024 10:50:50 GMT
File type HTML document, ASCII text
Hash 1189ca39ac27a67f610e97249713906a
068a550532a7d5a0985210f0539ed052f34a530a
a06e5af0879135ea573bf5c24646b50411217eefb66046ac3583fc8421dbf3d7
GET /match/skyadvert?otcm_check=1715366009 HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: mpid=NjYzZTY4NzkwZDBmNGE1Nw==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.15.9
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/html; charset=utf-8
content-length: 104
access-control-allow-origin: *
location: https://code.moviead55.ru/go/csync?cn=otmbid&bid=NjYzZTY4NzkwZDBmNGE1Nw%3D%3D
set-cookie: mpid=NjYzZTY4NzkwZDBmNGE1Nw==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
cdn77-fs.aj1907.online/551/3077/46479/160/2008/bitz1911/media/b_1366x1080.webp
185.76.9.14 22 kB URL cdn77-fs.aj1907.online/551/3077/46479/160/2008/bitz1911/media/b_1366x1080.webp
IP 185.76.9.14:0
ASN #60068 Datacamp Limited
File type RIFF (little-endian) data, Web/P image
Hash 80924150e0d62d17b3c6b0e4a75f9688
b48970041cc44060a43baee7ed017de0637cb59e
d863e3ba40ddff87872ea12bb1081cd16767e9c465c1c7b864e2fbf43c084f1d
GET /551/3077/46479/160/2008/bitz1911/media/b_1366x1080.webp HTTP/1.1
Host: cdn77-fs.aj1907.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn77-fs.aj1907.online/551/3077/46479/160/2008/bitz1911/index.html
Cookie: UUID=a5422175-f779-5bdd-9035-7ae658bf7920; ucv=3077-NO-1715452408982-24--
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 18:33:31 GMT
content-type: application/octet-stream
content-length: 21876
x-amz-id-2: mtTNqa/LMSdRW6IUFHXIbK8iz84nsKdeZVKhkX+kFbNiRN0jflaUeklgB3pXiUAHywF8vqfguKA=
x-amz-request-id: BEHAFDSK0P8BNV8B
last-modified: Wed, 13 Dec 2023 11:52:18 GMT
etag: "80924150e0d62d17b3c6b0e4a75f9688"
x-amz-server-side-encryption: AES256
x-amz-meta-contenttype: application/octet-stream
x-amz-meta-original_zip_file_uid: f7da2e05-e2db-4dca-a146-434935efe419
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
access-control-max-age: 3000
via: 1.1 78059242182c195ff7f26013772da09a.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA6-C1
x-amz-cf-id: PiotgKjyCx1fM7u4UNEyS05eB2HeYorI3FnT0Ohoe8awX5NNbbbFEw==
x-77-nzt: EwwBuUwJDQH3fT4EAAwBuUwKCQH30RYAAAwBJRPCLgH3AQAAAA
x-77-nzt-ray: c0a4cc28e3fa35667b683e6655eac317
x-accel-expires: @1716124657
x-accel-date: 1715087870
x-77-cache: HIT
x-77-age: 278141
x-cache-lb: HIT
x-age-lb: 5841
server: CDN77-Turbo
x-cache: HIT
x-age: 278141
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2
sync.programmatica.com/match/01
158.160.128.78 43 B URL sync.programmatica.com/match/01
IP 158.160.128.78:0
ASN #200350 Yandex.Cloud LLC
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/01 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 18:33:31 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
cdn77-fs.aj1907.online/551/3077/46479/160/2008/bitz1911/media/t_1200x218.webp
185.76.9.14200 OK 59 kB URL GET HTTP/2 cdn77-fs.aj1907.online/551/3077/46479/160/2008/bitz1911/media/t_1200x218.webp
IP 185.76.9.14:443
ASN #60068 Datacamp Limited
Requested by https://cdn77-fs.aj1907.online/551/3077/46479/160/2008/bitz1911/index.html
Certificate IssuerLet's Encrypt
Subject1695510202.rsc.cdn77.org
FingerprintAB:42:6A:89:B1:41:EA:09:CE:BF:F7:EA:66:53:68:F8:19:F7:AC:A7
ValidityMon, 22 Apr 2024 14:30:46 GMT - Sun, 21 Jul 2024 14:30:45 GMT
File type RIFF (little-endian) data, Web/P image
Hash 3809396b0f0d50d06b7f3bf4e3812d8e
4d7504acc1902ed738e9c151cf524d491c8f2fc7
16e603d5b67129cedc8a549afff057fabc3064fe3c5ec3004b097bb87a6c76de
GET /551/3077/46479/160/2008/bitz1911/media/t_1200x218.webp HTTP/1.1
Host: cdn77-fs.aj1907.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn77-fs.aj1907.online/551/3077/46479/160/2008/bitz1911/index.html
Cookie: UUID=a5422175-f779-5bdd-9035-7ae658bf7920; ucv=3077-NO-1715452408982-24--
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 18:33:31 GMT
content-type: application/octet-stream
content-length: 59444
x-amz-id-2: IJp34FFdJiqvNckfhuvibxSw9YMlR4D8VmHkfKo5JVEtfItQ200yHr4BzUqYas0fxJEffuQ6DmI=
x-amz-request-id: BEHBRJ6492KM7ED9
last-modified: Wed, 13 Dec 2023 11:52:19 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-contenttype: application/octet-stream
x-amz-meta-original_zip_file_uid: f7da2e05-e2db-4dca-a146-434935efe419
etag: "3809396b0f0d50d06b7f3bf4e3812d8e"
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
access-control-max-age: 3000
via: 1.1 c1fb60e38be5022a78e4b52bedded7c2.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA6-C1
x-amz-cf-id: rT1MibUeau8QyHTr_KbeXu-nfkth-AqkBz0z0JtQVdGQIrLbsGeT1Q==
x-77-nzt: EwwBuUwJDQH33ogOAAwBuUwKCQH30RYAAAgB1GY4nAGB
x-77-nzt-ray: c0a4cc28e3fa35667b683e667f25c918
x-accel-expires: @1715450263
x-77-cache: HIT
x-accel-date: 1714413469
x-cache-lb: HIT
x-age-lb: 5841
x-77-age: 952542
server: CDN77-Turbo
x-cache: HIT
x-age: 952542
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2
sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
195.201.194.16 0 B URL sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
IP 195.201.194.16:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: session_tptc=1715366010832
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 10 May 2024 18:33:31 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=41258f9a-29ab-460a-a74b-7836a244d1ad;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=41258f9a-29ab-460a-a74b-7836a244d1ad;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://www.acint.net/rmatch?dp=71&euid=41258f9a-29ab-460a-a74b-7836a244d1ad&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
nr.bidderstack.com/sape/cm?user_id=0A00007F78683E66A3377A430294F148&pupa=1
167.235.186.124302 Found 0 B URL GET HTTP/1.1 nr.bidderstack.com/sape/cm?user_id=0A00007F78683E66A3377A430294F148&pupa=1
IP 167.235.186.124:443
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerGoDaddy.com, Inc.
Subject*.bidderstack.com
Fingerprint7A:83:29:BF:37:01:78:02:DF:C1:07:D8:A2:10:AB:0A:DD:11:66:B0
ValidityTue, 21 Nov 2023 08:57:57 GMT - Sun, 22 Dec 2024 08:57:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/cm?user_id=0A00007F78683E66A3377A430294F148&pupa=1 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 10 May 2024 18:33:31 GMT
Content-Length: 0
Connection: keep-alive
Location: https://www.acint.net/match?dp=251&euid=187da8a4-5e7b-8768-ed39-68cc113f0aec
Set-Cookie: pupa=187da8a4-5e7b-8768-ed39-68cc113f0aec; domain=.bidderstack.com; path=/; expires=Sat, 10-May-2025 18:33:31 GMT;
csorigin2=244; domain=.bidderstack.com; path=/; expires=Fri, 10-May-2024 18:38:31 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
www.acint.net/match?dp=127&euid=ty2aRwsG1WRK40YuCfkg
193.3.184.16200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=127&euid=ty2aRwsG1WRK40YuCfkg
IP 193.3.184.16:443
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1
ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=127&euid=ty2aRwsG1WRK40YuCfkg HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 10 May 2024 18:33:31 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
s.myangular.life/ws?cdn
144.76.194.2 0 B IP 144.76.194.2:0
ASN #24940 Hetzner Online GmbH
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint49:29:7B:E4:AA:2F:8B:1B:40:C9:EB:26:F2:8A:38:C0:BB:63:42:42
ValidityFri, 05 Apr 2024 00:00:00 GMT - Tue, 06 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws?cdn HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://hd29.lordsfilm.cfd
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KgwqUWcEgn25hTEzTckzHA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 10 May 2024 18:33:31 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2mvfSldSxYevU4slJgMkqbc/hZY=
mc.acint.net/rmatch?dp=110&euid=d9de241cd4994342922722cd60edc353&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D110
193.3.184.16 154 B URL mc.acint.net/rmatch?dp=110&euid=d9de241cd4994342922722cd60edc353&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D110
IP 193.3.184.16:0
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=110&euid=d9de241cd4994342922722cd60edc353&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D110 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=110
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
mc.acint.net/rmatch?dp=126&euid=4006181c-206d-4f95-5d62-b093d7d4ae2f&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126
193.3.184.16 154 B URL mc.acint.net/rmatch?dp=126&euid=4006181c-206d-4f95-5d62-b093d7d4ae2f&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126
IP 193.3.184.16:0
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=126&euid=4006181c-206d-4f95-5d62-b093d7d4ae2f&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=126
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
mc.acint.net/rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=FVSBEXNX
193.3.184.16 154 B URL mc.acint.net/rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=FVSBEXNX
IP 193.3.184.16:0
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=FVSBEXNX HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=95
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=186&euid=a6315e40-c43e-4c37-b5f9-230b77e69ad6
193.3.184.16 43 B URL www.acint.net/match?dp=186&euid=a6315e40-c43e-4c37-b5f9-230b77e69ad6
IP 193.3.184.16:0
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1
ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=186&euid=a6315e40-c43e-4c37-b5f9-230b77e69ad6 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 10 May 2024 18:33:31 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
acint.net/match?dp=14&euid=3203420A7A683E662100EE1C029AD3F4
193.3.184.16200 OK 43 B URL GET HTTP/2 acint.net/match?dp=14&euid=3203420A7A683E662100EE1C029AD3F4
IP 193.3.184.16:443
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1
ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=14&euid=3203420A7A683E662100EE1C029AD3F4 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 10 May 2024 18:33:31 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
t1.zcvh.net/v1/ws
116.202.112.210 0 B IP 116.202.112.210:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/ws HTTP/1.1
Host: t1.zcvh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://hd29.lordsfilm.cfd
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DNkDkaxg9z0xoJ3SkUE9uw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 10 May 2024 18:33:31 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: zzcB7hlBeGE/8smvS178MLNuEwo=
acint.net/rmatch?dp=14&euid=3C03420A7B683E662000E7AE0281EF4D&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D$%7BUSER_ID%7D
193.3.184.16302 Found 154 B URL GET HTTP/2 acint.net/rmatch?dp=14&euid=3C03420A7B683E662000E7AE0281EF4D&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D$%7BUSER_ID%7D
IP 193.3.184.16:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1
ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=14&euid=3C03420A7B683E662000E7AE0281EF4D&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D$%7BUSER_ID%7D HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/html
content-length: 154
location: https://code.moviead55.ru/go/csync?cn=sapecookie&bid=0A00007F78683E66A3377A430294F148
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.dsp.solta.io/match/sape?id=0A00007F78683E66A3377A430294F148
217.199.220.72200 OK 43 B URL GET HTTP/2 sync.dsp.solta.io/match/sape?id=0A00007F78683E66A3377A430294F148
IP 217.199.220.72:443
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.dsp.solta.io
Fingerprint6D:7F:91:92:30:E1:6A:A0:9B:86:49:7A:21:7F:5B:A4:23:8F:92:BC
ValidityWed, 02 Aug 2023 16:38:38 GMT - Mon, 02 Sep 2024 16:38:37 GMT
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape?id=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:31 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
pixel.dsp.onetarget.ru/sape/pixel?id=0A00007F78683E66A3377A430294F148
130.193.53.230302 Found 0 B URL GET HTTP/2 pixel.dsp.onetarget.ru/sape/pixel?id=0A00007F78683E66A3377A430294F148
IP 130.193.53.230:443
ASN #200350 Yandex.Cloud LLC
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subjectpixel.dsp.onetarget.ru
FingerprintC3:A5:98:2E:46:6A:1A:4F:85:6D:4A:FE:11:88:B1:D1:5F:AE:43:DD
ValidityFri, 15 Mar 2024 12:44:47 GMT - Thu, 13 Jun 2024 12:44:46 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/pixel?id=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: pixel.dsp.onetarget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 10 May 2024 18:33:31 GMT
content-length: 0
location: https://x01.aidata.io/0.gif?pid=5813217&id=19eb1ff1-2686-4470-93e0-ac5e182e390b
set-cookie: USER_ID=19eb1ff1-2686-4470-93e0-ac5e182e390b;max-age=2147483647;Secure;HttpOnly;SameSite=None
SAPE_USER_ID=0A00007F78683E66A3377A430294F148;max-age=30758400;Secure;HttpOnly;SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-max-age: 1728000
X-Firefox-Spdy: h2
sync.dsp.solta.io/match/kimberlite?id=Zj5oefMz_HY
217.199.220.72200 OK 43 B URL GET HTTP/2 sync.dsp.solta.io/match/kimberlite?id=Zj5oefMz_HY
IP 217.199.220.72:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.dsp.solta.io
Fingerprint6D:7F:91:92:30:E1:6A:A0:9B:86:49:7A:21:7F:5B:A4:23:8F:92:BC
ValidityWed, 02 Aug 2023 16:38:38 GMT - Mon, 02 Sep 2024 16:38:37 GMT
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/kimberlite?id=Zj5oefMz_HY HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:31 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
sync.bumlam.com/?src=sape
31.172.81.128 0 B URL sync.bumlam.com/?src=sape
IP 31.172.81.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRjY2Q3NzVmZS0wZWZiLTExZWYtOWI3Yi0wMDI1OTBjODI0MzY*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Fri, 10 May 2024 18:33:31 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: close
Set-Cookie: suuid3=IiRjY2Q3NzVmZS0wZWZiLTExZWYtOWI3Yi0wMDI1OTBjODI0MzY*; Path=/; Expires=Thu, 05 May 2044 18:33:31 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: https://pix.bumlam.com/sync/sape/sync_ok?guid=ccd775fe-0efb-11ef-9b7b-002590c82436
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
Access-Control-Allow-Origin: https://acint.net
Access-Control-Allow-Credentials: true
sync.bumlam.com/?src=sap1&s_data=CAIQARj60PmxBmIgMEEwMDAwN0Y3ODY4M0U2NkEzMzc3QTQzMDI5NEYxNDiiARDM13X-DvsR75t7ACWQyCQ2
31.172.81.128 0 B URL sync.bumlam.com/?src=sap1&s_data=CAIQARj60PmxBmIgMEEwMDAwN0Y3ODY4M0U2NkEzMzc3QTQzMDI5NEYxNDiiARDM13X-DvsR75t7ACWQyCQ2
IP 31.172.81.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&s_data=CAIQARj60PmxBmIgMEEwMDAwN0Y3ODY4M0U2NkEzMzc3QTQzMDI5NEYxNDiiARDM13X-DvsR75t7ACWQyCQ2 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRjY2Q3NzVmZS0wZWZiLTExZWYtOWI3Yi0wMDI1OTBjODI0MzY*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:31 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: close
Set-Cookie: suuid3=IiRjY2Q3NzVmZS0wZWZiLTExZWYtOWI3Yi0wMDI1OTBjODI0MzY*; Path=/; Expires=Thu, 05 May 2044 18:33:31 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
yandex.ru/ads/adfox/332443/getBulk/v2?pr=1091866324&pr1=2757690910&dl=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&prr=&extid_loader=&extid_tag_loader=hd29.lordsfilm.cfd&date=2024-05-10T18%3A33%3A30.678%2B00%3A00&pd=10&pw=5&pv=18&pdw=1280&pdh=1024&ylv=0.1021761&ybv=0.1021761&ytt=457946592968709&is-turbo=0&skip-token=&ad-session-id=4562571715366010582&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A1024%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1278%2C%22h%22%3A90%2C%22width%22%3A1278%2C%22height%22%3A90%2C%22visible%22%3A0%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A1%2C%22top%22%3A1055%2C%22req_no%22%3A2%2C%22ad_no%22%3A0%7D&pcode-version=1021761&yaru=true&p1=dadcm&p2=iqvg&slotNumber=1&bids=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%3D%3D&utf8=%E2%9C%93&pcode-test-ids=998294%2C0%2C15%3B1012360%2C0%2C96%3B1021001%2C0%2C35%3B1002305%2C0%2C36%3B1011143%2C0%2C60%3B1018247%2C0%2C82%3B1014348%2C0%2C49%3B1021298%2C0%2C45%3B1015041%2C0%2C27%3B1001217%2C0%2C32%3B997800%2C0%2C53%3B999587%2C0%2C56%3B1015254%2C0%2C18%3B1018696%2C0%2C64%3B1010989%2C0%2C72%3B1021761%2C0%2C76&pcode-flags-map=eJy1WF1z27YS%2FS96DlN%2Bk%2BgbRIISRiTAC4Cy1U4GQ1t06zt2cid22t5k8t%2FvAqRoiXKo27T1i0WQOFgszp7dxZfFFkst1%2FxK41yXeElKXXChKdNLzBgRix9%2F%2FrL4rX341C1%2BXCjRkMWbxXP39Ez38BzHQRAmi6%2Fv3ixyKvGyJDrjDVNakJwKkinAwXU9i5H4bhj6FsOY0kiiq6ZUVPCyBDSmzA8i9BVW2ZrkWtGKaF4Ukqh53MB3k2TEFUSJneZMM6KuuNhoIgSf310SxWGCLIJZlDdK14JYu14s3NKccD28P4HzXPg7wUMBStwLeMumKGC3pKrVTpe0olPQP424rTHN%2F34LiwZ%2Bfy8qg4P4uy39BuZfOp%2FXMf85D3zv6RuGrwRe6pKwlVqfTIL4So%2BnpW7qJuE4jTAbt0rgbAPekg0uez0wMkCuFREMRnI5H8Wp58fud4DaAYkLoguBK3J5jT6ihTDSIOEL0BhYUBn1qrGBAGxpUXGTU64zQbCiWyLnoUPX96LRfEACGcpKSkDLSrICWykruL5aUytxbEuEGqhlVr%2BAHblpeiRELIcjxkvDApwbJCphoBGlkacrsuSXbE3cEL0cO1E6a6Tild5WuD4QEuwqm1N%2FxhNWpnEUxIPy2q2A6KsVHvZVl43UtMIronMi6Yrpg8Qb58LQRvFTTnR%2F%2FOcY3nO9EEXROb6o6r8E%2BeJLqexs8KGknE1CxUO%2Bj05n%2By4KPTvbhlyf4XTDaEEhs1AG3ClwRuZMiFDqD2nFpKrlRkv6E%2BkZN%2B4y49WSz6HECQrdF5SSAH0BoZqdE6dh3FtvlEcCswmDqAfJ%2FD9cF6dx6AWH4GHkymTERjCNC9i14TpEqloL3qzW81nR8w70kxWGMPhXQxoCQV3rZWnCvaSnAfHz4rG9f3j78ROg%2FLd9v%2B%2F%2BgN8%2F3D%2B2v3RPJ0O%2FtI92ZP%2B5e99%2F3v52%2F%2Fyh%2F%2Fn49uhh%2F%2F5%2BGDXIIwIMfGw%2FP3z4%2FOvw%2BvPH%2Fv%2Bnj%2B3b993vT2cf%2FLv98Hhvp7472WIEhzyeTkGAHCAjmQKSyTknJ0EUuH1EQXkCx1Jg4BnICQQRa6rlpJyazo68YNDzGpuFTfEEM0EVliQDaYMB0FIKlL8Ak7h92EkQWJxXuuSrlY0Umhf4lQPah52XxO6N07Zd5ITdjee0N17idHvURdE%2BuPWiG1jibt%2BirutunO7Wv3XCFrlOmqI7Zx9E7c1tept4cQufeXddkHp3dw66cwMn3Ke3DrpNYgdFXnvne3sU7o0OufD69i5ETtB6sRN6yd5Bnhc4yT4MULxvE3ffnR5LGkWo988ORBdkPevPZlly4B3EAeizIq%2FsTzjU8UPkQSp0PFj6%2BNmfPAeT59A%2BY8ePIK0n%2FjAfO1FqwtHxvHEgBt4kZoF3J9kWxV7cR62Eg%2BCQ8uj13PmlURAMkcps6tLAPJNAjUBgZehgymLIoroirJmHCpHfe8xE%2FKpWGmSD1mp2ElTOKDxYPEjLqNTgYV1h0DhD6lkY5LkpOsAIcoVFbsr3XT07DUTbdV8UfuxDtJSmcpjVOOQH4ZAdxnbE6hr4q6DGedMscQYQBWkwBv4B5JBSbZbiWVOZsgCKD6zICnqKJaTv7XxoI98UAXNZowBqQFWQXzDP89BpQrWpRh8lBIMPwSEsUaxc0JKq0cxZ%2FMCN0p6r%2BU8HqA0pibrkNi%2F1e7sOkgfuAgcRXFkQXNqKz5L5yKTRheQ6K5scGj8BDcC8hZDFXuo0g73GLC9N0LPNcNq2%2BMtVwy5sNvEHstiay%2BgHeGxNZ4MDZgHHelYDB0Bf%2BxJpudPC0EtqLATezUKA1EXBVJ8PNZyU8xSP4mhgqDQZYQe7J9fAShOTsxMTN4nRuKpQS51haKj11h8K3dnZKDq2GRRMX1PMKwqBDflfqtm0aGbHwUlc8powYwO0QDXImMLQ%2BpSbCyDhUHjB5yu9hpppPuhAr9NoqJgwqEjOmUkWGCit4F%2B%2BIrYipfPpFApJkH00g3J5dk8zLHcs68ul4ylfFk%2Fds8lSR%2B%2Ft%2BeQY3FJy0IQ3p%2B%2BGDmI6PryYjJq28FsA31yCMpD5fgDnBb%2BevIYDE3SD%2B8uesxUzzjcUPjIXNpStxq%2FABb9%2BeHp%2BMnttHx4W776eOipN0EtbIxsQqx0YMshIxcFkNvQNJx4vcCnJKVPSQwIzSCUHG0x5WpRAG%2BhCmzK3ymFSoloTiCLbb89WvWCeH8QvzfbRPJBICrVvo5QRXCwonsTSmYFzYH2VCdmVkVJjBuqigG5QadvbATVV4jk7cS7zzTQxQRMEceFN%2BiI7dIhu2xsdAtsk%2B%2FICwz0vHDoLUnGQ%2BGxt%2BmfVN%2BTQ2IOsDWgXgFJ%2FuE0cm3tuGn1Zl3gHUge2CBN1gpiu%2BQTr9vlh2igG4VgKHC4luTC8v6K5aZq3%2FjyC7%2FloCNyl5GWjbEHQQ%2F1pCONXe09RkZximK%2FWpqIY70k5K3fnVwnnu4rcoYHFeQ7iySueQWBAqBp%2Fm6qMSzU58TMQoIg3XIw2bAViXGcKz0tvkrruWL3UeGcrIFsECiV13weeCelkYQQKng4C%2FnI9RGzyg9abm1IGaG%2FYPymDXnGDH4WjX%2BUG52y4crpEsBjFk3ngfuCs2EFSI2U%2Bm8eOAcZqZqjDbCNSYJbtXtOoV7ICGorj2hzga1GaxGdRmths9vV%2FgC3hhg%3D%3D&pcode-icookie=p88CHeBmQtocA4y2Mj45%2BLrsa2Kq2rMjUdsNrrdCcSX9pUjtnO8qDrK1wINRw1Aq4rGAsO8v9YisfOnPD2Gr7VE4A5Q%3D&top-ancestor=https%3A%2F%2Fhd29.lordsfilm.cfd&top-ancestor-undetermined=0&grab-orig-len=5120&grab=eyJncmFiX3ZlcnNpb24iOjJ9ChLjlLDkqAlQowYsqT355OyXu0KtaqKKWlGpJdAEhk94JzInucy8LYMcLr2pr_fLIqsW3NpkVeCUc_I50FsBfWaASxiOmMOwTLPfNCm3dk4YIcYIIwxFGCOEMaLTZKpST6epaq2eLlNnZaVPcVNJQpmKU3kq7CmMVPag-Sl6yksoEvIOeCOzkRn8nlCkgodN_uIkD0bUU96LFb4ojJTfU5yHRfEQP_yE_OV5PZX1BLSHnPIBwEwlqaCnopcjOXEvWpZK6FiGAzpVldVdWasqcK3aKtcVaupMrVBau06hzCplBq7Vc-rd2lPsv12aylnRPvGleMdfQrln8-dAt2t8x3Ww4Zt7itdfQnK8vhDJC-Ydi3ESslSakCUAWyYmJA85z3LgPUU_lvy6MJcNwpT3v3FTWUKQYv6NCQWQwD4PvFSYEJnNZitLcPtwK1iwFYU2DzMgFf0VZM-iZ9Vu_zgVs_qvfyCy238qSAh228ca8mUF77bKOkxv_PyhMSzRniRIJfMixV4uMf-AWzJFQrQwhDv_eydndV846y0DZ-chWxgxZBFD7vU_4j-He-q-fqH_XjiTTogT0P4MkoXoJ5cQHuOigyQpxgOBdsx7yMWs7ot5SMifS6wE_4CuAJwVPGdIvtv4L0CUSm4VLFP5tAotrK4r6zwH1wpmbtXTadVwYiCwi5raovvRV0VfEKparRzRU7oPo4kaoAEoBqZFreyhvzRgWAoF7AOsUmu1ZfUQU5UR1KpKSRWLzhQWlYL2JUq1nq7Wp5Bu1gnRT4eYjqUO8PpfK6VlIdGVVV3QqMHw_7HoFCX3Kd5tYV-zHOwHkEK5HtpSTcgQRHBezBekIShqYDK5wzS6wzS5w2T28LKjoNzGlKeC4P0_Cfl22ldSinVd7T_iBIP00El_vRjPTNED8giH_DV9yZ3UWQLS8JCQXv17XrNQlY7rmiViLSSUngvw_--W6bMc9FQ8ydn5dhASwi1B0U-F2CuF_48lX5wnIfZK4bUkeumC7w4J3kLCd94f9JcSPSsEJ_jKYnvSUdCW65aM-IuD2EW4E9Ogz2bdIQRpmX9pm8NioU4q3WmIXaWWDiafBLtHH3dYgUVynta-XmpO8ACu2YSeoW4KvXp2ZDII27XER01zXhmU5fjGQXiMudSaEHiF4m4SlBxV6fYad6l4yoTcvQ8oN2EIl-bznAaQ66JfhEca0nYL-SSbPU7uXsmgrmDJNZJ_SSyb1fxMjwNy5M6c8SqOKr8G9HGJmBEhbN4EwM2qyJpzkSNDI0cebxEm-g52Y8HnWIxU8jO3BkBHDGhd87eNCoDoINtWwM-BYoCw1A_adYNmfSLZCoexzq-gnQYEr3aIpi_RaiZ7tDjaARayhGlotxO7h2MLJNwe-feKTmM5n-O8ExPXP6FRFCpXUbSKq_72bcQO8LAo2kxpKRXw3jV4kB3MvAGPn2zYjHGsjh8P2JDxuz-EWxdUeVWGii8spYBdWnR1oQiK7gerVPw_7YLSFjW8mGQ9CB6_zjQWdVapXnAdgqvssNUPSFXncK1eASp4_QFYiiqntsCpiszqfsQLPLJDLzRLKGjVD4nvkv9K-hICb4s2AkneksgZwXf7VNRZlTdy7piVOXWt1CM00zN-Nl8QXMgiOcaAbAgswP-x5R58ZS_giEx5iJZ7rVSrvAzNq0Jd5Va9aZiMeYSyAW5rL2dIfe54fckFCa5-dxMm1G2CwWxEmTUhkX1CPZ_1sxG6vZWa2HWlwESEAPKEoKe4n1AE9kqE0WRyKhHEInHdAbQlDDjq4qm3fpjci9NP1p-awh5_5oHbHDl4iNtw3QYogwt9-OwX1SLoKTDNy9zZH4y-QS9FKrebvw0osQYksi_gNpDh9wd8kYvNXdKbjQwGxxzOZEbIruuC8lmH9JyQLQBiuwXAaDbRMznui5E9KUdQlnCa8srkAZ4_iX3l8EUAZfG8Hkg_LLZrHtl6tqT2GsfInl0FYkK4-ECywzRYnIbDq1mvZ2lL28tjNNMbjYhdNPsBqj8lJV_b9w-W-rigCWHzNg8Xwl5oxMCEGGy6-EFrWC5OMfpgYadSe_mHTdM-3tl6H8nnmnSPfbVoyTn5dhfIYDYgNpjrXqB_t4kWQ0Nur88MBocUZWDTsLQRgvFSrJiYyh5tCh57hldnFHrGnbyEZE08CfpakVPY8WQZzCbwnBrtaVTEnO9CtCTYMH_dqMOln6nz1lrMVnp_98locsjubEpR4o4J_OFyDzW5pB_yWYbdtkDIntET7ncd6VoIk9sjPvl1GumdkjximnddBf4ZqR-ulq3Ynk2py7OjwP4w4GwpmhXOWaJIL2riHyET5kaihx9GcvgzD3Jt2-3F8wYzPZsm_zX_PHyds_CQNiz5NYI4En2i94_knclejjca2JCAb0hTDhdZEDLV7wnBb0sYx0zmIRKVPgiyhlOMiiiJgZkRAuIlIZE1QF7TcVmsY32JPtIaR_2KECnXRrneSX2y_MVS5H2NMfl2DPQZmDgb6LNpOho95bHD4R81ivptASEohebPij7D4YdVUyWrB7tmMTAjLU2xvdCAwWwwsms7gqNQdnDUSnUHW1GWtVLbaAxUhGFsalKN1wgLRgttMK8kfZQQm2rd-F9EtuIyRicvli1xVc5A8J1dmwQuEHqtjmBh3ptK1n8_7bgYVkgjbg4bsLqBBguQgIAPGECDBaiI6cePqzifKrBPhKMajntzLnhdZGrds6QdRkNVll0NT6koqg-ky0qXBUZKw2V3BPfXFph2JF1WNNkYeDnJbLuv4JfTmPSOF-Squiz1HNRrnnErlI7l_wa4VedZ-DiuydBKN5uhWRAog7ctizG0UzmC4NjHoKXtLDZbGqiAXeV-8RJN_WwR-MaXgnzmIgnl0ZSRd5_KQjPxv8Pl6tlHL-vjl7d8czRT8DIzEIFNT7N0vwFonhUKJTx9rBJ6Dxpc35VQg-ohPAT-9wAHLDgW-GD5IXG9ri-YBbZaWwUHD2OT0xrDePYG4sdaopUjOgIrkDa4J2iaFqKUd6tm7WNhgn_L6ymkBP8yyKrOyLgSuE1DZDRN5PdUFs95DFpGIIzRLtntYfQU6HN0Am-hruTgra9tHPlqBPsfn80EfwjX1g5lrYxBfOCyWEHFx_xVqnkA6Cn61Ij0BUtC3MTxrOA8tutT0ZJ__bpvLFxm3bSw54BtjePD__p3-68hxwoE3KOd-wugo_HvHe82UmRJEfGdgO5ibDHn43C19915i1qZo60iky9Y9JtMhHL9puHIDiQv1brKkmnUp0ahMUZCcyraENlrMMuGdN1YezCvhkoSNUjBh_OmUY9cCNkPiv9BRP3dUOz3I8YfRsHfEUH9CIH6S1oUCcFzFkQD3xlx-345G0hg7-ozSwuhVO-GEL07-vKdizD8v3yO8GagDc-Tdw0AcitI9FTySwbu5dA3L8m4bBn-5H_0yWMuSb30lNr62i9f5SxuvOS5P24w95v8By5PCIcQjrXvLLHGix4O5asF-OJDCIXzliVrJUu2SNHH52-jnx7WtvDPT5oQ_z3A36HNAP7SMekEWzFT9tXS71xdqd5Cp_CbiL_4XrLdyaVSYXQ8Rt9NhxuBtY_GxzXgbmd5P1ZH6wyi4e6EiPs8bns4lfklUNpp3ljE0S7kezTZNdnW6w1_08swOzTg6ddPartYvD8a1Cl2LrnvUhIEfwv_T5PEY536bbwM_sGteDtfmBBeSmtNFv66nYg9WqXCrftGJhjDOdupM-qTxhpK0wnCZzPJJIreLKVuFVcBQQ2nGQBvh4qz5HWbycydbgKpT-8RaJeIa2LTizA-n9GoizyzukhYvIEitSK_KOckGxXj_kIN1y3pxOKpLyJgdo7BmD2udwgilTtEHjANk2tWAS6UoAAURIevbUZjeVOFeGYqnTo8-8WNcMCG3xmMzBYTMz2zWxLRMLl7qFlNe4gLZz_WTLsRw8E55b3B7-Hm3816fa8R9AVyPcwL_1ycmvAdIY7DjvRxzHL8sTQ-PBOkLmtYP52XyJt6aTBOyIrSFW3qkL96kJ3-agsfQgPUURXFur2-g3yxBDeMT6Fs2W807wanGx3lDQF5yFtcGHEA7m_AcAPB08x5S3e7C6ep4XT1-4qWq2s_82LtSusoLuDMAFvTxpitws0Gq-vmeLpOoaIug1yfT99I6lcbreVowLk6EcGh03Y4X1SKG9mDzNW0pVsd5Zq6qJrPoTF4y5dKuagPe-cYiocdkWwNRsloIaHat3I12v8Spb0P7XiTINbeZxDiRr8gu6GM_9LmL0yD_gJv6f7cEiJu1cPF5rvLpUMRT-bAGZq7EZwMlbCq48cn-vaybFk8PiB_glLfLZPlJRsLj-GifCmkFqJPzH_ZQbQBOndzo7Z9psenTbUB_irLLzspdj0boa-21cUPI5TX3PmPsB8mxrB4Fh2hIx9nU_Fk7FOX-nUfkqnNCniUp3-3sQc-815K90Y8gfphAoYz8RA7HVzpnL5U1Lm1RkOL5Npa2hI-qBuMpR1srG4nP-RWWzRFtDSZfyS9UXmzqaUP-WFsTAz3zmfti0cp2sBYsNiXI_berbcbY6WjT7wbjV4eL35XKDx6RdBsMwVHazQfY6kcynEfW63cIJ8K8lTP1qsVbULevNK9Q_QlofKjcHrylobyqS8fHcg8qwsfPVJUZT6kmJPGi5Y18XZ7JEvhCrnu1u7dV05B1xph53oCgcrhyGDLkYe6EBA_nWaJ2eSFqNZqR64rFZFQrwpPLNRy0oEPte6jaWqqzIvPHRCcVWD8DqvaozpES5VlCmUgXdAUlrywKJQlrLDlItZ2_nZelDxiaND6PRpx110yVEADZSNwkh21aKMfcpunQ2v5E-I-n-nOhNb8ZprOH7TX_X_9azkHZPQxOLFq9UQ3Xa1yomg9VsIg4RhXi4LD23N3N0982rL7P4o4UfxmmNu_Rx1LvP9DWglhMLSmDvygJRwn2Mil3JBLvPlLhIr5xAS4YpR5hBfRn-IWtx9q-kckEB6wnZcXlp6u_xJ6x14dCvG-lLp84zUxRO5ftLZ161IQRw5cQ-N8BUPMD9IN2I82JUb5u877bYGL-5EsXk_yX-oU&tga-with-creatives=1
5.255.255.77 1.3 kB URL yandex.ru/ads/adfox/332443/getBulk/v2?pr=1091866324&pr1=2757690910&dl=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&prr=&extid_loader=&extid_tag_loader=hd29.lordsfilm.cfd&date=2024-05-10T18%3A33%3A30.678%2B00%3A00&pd=10&pw=5&pv=18&pdw=1280&pdh=1024&ylv=0.1021761&ybv=0.1021761&ytt=457946592968709&is-turbo=0&skip-token=&ad-session-id=4562571715366010582&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A1024%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1278%2C%22h%22%3A90%2C%22width%22%3A1278%2C%22height%22%3A90%2C%22visible%22%3A0%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A1%2C%22top%22%3A1055%2C%22req_no%22%3A2%2C%22ad_no%22%3A0%7D&pcode-version=1021761&yaru=true&p1=dadcm&p2=iqvg&slotNumber=1&bids=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%3D%3D&utf8=%E2%9C%93&pcode-test-ids=998294%2C0%2C15%3B1012360%2C0%2C96%3B1021001%2C0%2C35%3B1002305%2C0%2C36%3B1011143%2C0%2C60%3B1018247%2C0%2C82%3B1014348%2C0%2C49%3B1021298%2C0%2C45%3B1015041%2C0%2C27%3B1001217%2C0%2C32%3B997800%2C0%2C53%3B999587%2C0%2C56%3B1015254%2C0%2C18%3B1018696%2C0%2C64%3B1010989%2C0%2C72%3B1021761%2C0%2C76&pcode-flags-map=eJy1WF1z27YS%2FS96DlN%2Bk%2BgbRIISRiTAC4Cy1U4GQ1t06zt2cid22t5k8t%2FvAqRoiXKo27T1i0WQOFgszp7dxZfFFkst1%2FxK41yXeElKXXChKdNLzBgRix9%2F%2FrL4rX341C1%2BXCjRkMWbxXP39Ez38BzHQRAmi6%2Fv3ixyKvGyJDrjDVNakJwKkinAwXU9i5H4bhj6FsOY0kiiq6ZUVPCyBDSmzA8i9BVW2ZrkWtGKaF4Ukqh53MB3k2TEFUSJneZMM6KuuNhoIgSf310SxWGCLIJZlDdK14JYu14s3NKccD28P4HzXPg7wUMBStwLeMumKGC3pKrVTpe0olPQP424rTHN%2F34LiwZ%2Bfy8qg4P4uy39BuZfOp%2FXMf85D3zv6RuGrwRe6pKwlVqfTIL4So%2BnpW7qJuE4jTAbt0rgbAPekg0uez0wMkCuFREMRnI5H8Wp58fud4DaAYkLoguBK3J5jT6ihTDSIOEL0BhYUBn1qrGBAGxpUXGTU64zQbCiWyLnoUPX96LRfEACGcpKSkDLSrICWykruL5aUytxbEuEGqhlVr%2BAHblpeiRELIcjxkvDApwbJCphoBGlkacrsuSXbE3cEL0cO1E6a6Tild5WuD4QEuwqm1N%2FxhNWpnEUxIPy2q2A6KsVHvZVl43UtMIronMi6Yrpg8Qb58LQRvFTTnR%2F%2FOcY3nO9EEXROb6o6r8E%2BeJLqexs8KGknE1CxUO%2Bj05n%2By4KPTvbhlyf4XTDaEEhs1AG3ClwRuZMiFDqD2nFpKrlRkv6E%2BkZN%2B4y49WSz6HECQrdF5SSAH0BoZqdE6dh3FtvlEcCswmDqAfJ%2FD9cF6dx6AWH4GHkymTERjCNC9i14TpEqloL3qzW81nR8w70kxWGMPhXQxoCQV3rZWnCvaSnAfHz4rG9f3j78ROg%2FLd9v%2B%2F%2BgN8%2F3D%2B2v3RPJ0O%2FtI92ZP%2B5e99%2F3v52%2F%2Fyh%2F%2Fn49uhh%2F%2F5%2BGDXIIwIMfGw%2FP3z4%2FOvw%2BvPH%2Fv%2Bnj%2B3b993vT2cf%2FLv98Hhvp7472WIEhzyeTkGAHCAjmQKSyTknJ0EUuH1EQXkCx1Jg4BnICQQRa6rlpJyazo68YNDzGpuFTfEEM0EVliQDaYMB0FIKlL8Ak7h92EkQWJxXuuSrlY0Umhf4lQPah52XxO6N07Zd5ITdjee0N17idHvURdE%2BuPWiG1jibt%2BirutunO7Wv3XCFrlOmqI7Zx9E7c1tept4cQufeXddkHp3dw66cwMn3Ke3DrpNYgdFXnvne3sU7o0OufD69i5ETtB6sRN6yd5Bnhc4yT4MULxvE3ffnR5LGkWo988ORBdkPevPZlly4B3EAeizIq%2FsTzjU8UPkQSp0PFj6%2BNmfPAeT59A%2BY8ePIK0n%2FjAfO1FqwtHxvHEgBt4kZoF3J9kWxV7cR62Eg%2BCQ8uj13PmlURAMkcps6tLAPJNAjUBgZehgymLIoroirJmHCpHfe8xE%2FKpWGmSD1mp2ElTOKDxYPEjLqNTgYV1h0DhD6lkY5LkpOsAIcoVFbsr3XT07DUTbdV8UfuxDtJSmcpjVOOQH4ZAdxnbE6hr4q6DGedMscQYQBWkwBv4B5JBSbZbiWVOZsgCKD6zICnqKJaTv7XxoI98UAXNZowBqQFWQXzDP89BpQrWpRh8lBIMPwSEsUaxc0JKq0cxZ%2FMCN0p6r%2BU8HqA0pibrkNi%2F1e7sOkgfuAgcRXFkQXNqKz5L5yKTRheQ6K5scGj8BDcC8hZDFXuo0g73GLC9N0LPNcNq2%2BMtVwy5sNvEHstiay%2BgHeGxNZ4MDZgHHelYDB0Bf%2BxJpudPC0EtqLATezUKA1EXBVJ8PNZyU8xSP4mhgqDQZYQe7J9fAShOTsxMTN4nRuKpQS51haKj11h8K3dnZKDq2GRRMX1PMKwqBDflfqtm0aGbHwUlc8powYwO0QDXImMLQ%2BpSbCyDhUHjB5yu9hpppPuhAr9NoqJgwqEjOmUkWGCit4F%2B%2BIrYipfPpFApJkH00g3J5dk8zLHcs68ul4ylfFk%2Fds8lSR%2B%2Ft%2BeQY3FJy0IQ3p%2B%2BGDmI6PryYjJq28FsA31yCMpD5fgDnBb%2BevIYDE3SD%2B8uesxUzzjcUPjIXNpStxq%2FABb9%2BeHp%2BMnttHx4W776eOipN0EtbIxsQqx0YMshIxcFkNvQNJx4vcCnJKVPSQwIzSCUHG0x5WpRAG%2BhCmzK3ymFSoloTiCLbb89WvWCeH8QvzfbRPJBICrVvo5QRXCwonsTSmYFzYH2VCdmVkVJjBuqigG5QadvbATVV4jk7cS7zzTQxQRMEceFN%2BiI7dIhu2xsdAtsk%2B%2FICwz0vHDoLUnGQ%2BGxt%2BmfVN%2BTQ2IOsDWgXgFJ%2FuE0cm3tuGn1Zl3gHUge2CBN1gpiu%2BQTr9vlh2igG4VgKHC4luTC8v6K5aZq3%2FjyC7%2FloCNyl5GWjbEHQQ%2F1pCONXe09RkZximK%2FWpqIY70k5K3fnVwnnu4rcoYHFeQ7iySueQWBAqBp%2Fm6qMSzU58TMQoIg3XIw2bAViXGcKz0tvkrruWL3UeGcrIFsECiV13weeCelkYQQKng4C%2FnI9RGzyg9abm1IGaG%2FYPymDXnGDH4WjX%2BUG52y4crpEsBjFk3ngfuCs2EFSI2U%2Bm8eOAcZqZqjDbCNSYJbtXtOoV7ICGorj2hzga1GaxGdRmths9vV%2FgC3hhg%3D%3D&pcode-icookie=p88CHeBmQtocA4y2Mj45%2BLrsa2Kq2rMjUdsNrrdCcSX9pUjtnO8qDrK1wINRw1Aq4rGAsO8v9YisfOnPD2Gr7VE4A5Q%3D&top-ancestor=https%3A%2F%2Fhd29.lordsfilm.cfd&top-ancestor-undetermined=0&grab-orig-len=5120&grab=eyJncmFiX3ZlcnNpb24iOjJ9ChLjlLDkqAlQowYsqT355OyXu0KtaqKKWlGpJdAEhk94JzInucy8LYMcLr2pr_fLIqsW3NpkVeCUc_I50FsBfWaASxiOmMOwTLPfNCm3dk4YIcYIIwxFGCOEMaLTZKpST6epaq2eLlNnZaVPcVNJQpmKU3kq7CmMVPag-Sl6yksoEvIOeCOzkRn8nlCkgodN_uIkD0bUU96LFb4ojJTfU5yHRfEQP_yE_OV5PZX1BLSHnPIBwEwlqaCnopcjOXEvWpZK6FiGAzpVldVdWasqcK3aKtcVaupMrVBau06hzCplBq7Vc-rd2lPsv12aylnRPvGleMdfQrln8-dAt2t8x3Ww4Zt7itdfQnK8vhDJC-Ydi3ESslSakCUAWyYmJA85z3LgPUU_lvy6MJcNwpT3v3FTWUKQYv6NCQWQwD4PvFSYEJnNZitLcPtwK1iwFYU2DzMgFf0VZM-iZ9Vu_zgVs_qvfyCy238qSAh228ca8mUF77bKOkxv_PyhMSzRniRIJfMixV4uMf-AWzJFQrQwhDv_eydndV846y0DZ-chWxgxZBFD7vU_4j-He-q-fqH_XjiTTogT0P4MkoXoJ5cQHuOigyQpxgOBdsx7yMWs7ot5SMifS6wE_4CuAJwVPGdIvtv4L0CUSm4VLFP5tAotrK4r6zwH1wpmbtXTadVwYiCwi5raovvRV0VfEKparRzRU7oPo4kaoAEoBqZFreyhvzRgWAoF7AOsUmu1ZfUQU5UR1KpKSRWLzhQWlYL2JUq1nq7Wp5Bu1gnRT4eYjqUO8PpfK6VlIdGVVV3QqMHw_7HoFCX3Kd5tYV-zHOwHkEK5HtpSTcgQRHBezBekIShqYDK5wzS6wzS5w2T28LKjoNzGlKeC4P0_Cfl22ldSinVd7T_iBIP00El_vRjPTNED8giH_DV9yZ3UWQLS8JCQXv17XrNQlY7rmiViLSSUngvw_--W6bMc9FQ8ydn5dhASwi1B0U-F2CuF_48lX5wnIfZK4bUkeumC7w4J3kLCd94f9JcSPSsEJ_jKYnvSUdCW65aM-IuD2EW4E9Ogz2bdIQRpmX9pm8NioU4q3WmIXaWWDiafBLtHH3dYgUVynta-XmpO8ACu2YSeoW4KvXp2ZDII27XER01zXhmU5fjGQXiMudSaEHiF4m4SlBxV6fYad6l4yoTcvQ8oN2EIl-bznAaQ66JfhEca0nYL-SSbPU7uXsmgrmDJNZJ_SSyb1fxMjwNy5M6c8SqOKr8G9HGJmBEhbN4EwM2qyJpzkSNDI0cebxEm-g52Y8HnWIxU8jO3BkBHDGhd87eNCoDoINtWwM-BYoCw1A_adYNmfSLZCoexzq-gnQYEr3aIpi_RaiZ7tDjaARayhGlotxO7h2MLJNwe-feKTmM5n-O8ExPXP6FRFCpXUbSKq_72bcQO8LAo2kxpKRXw3jV4kB3MvAGPn2zYjHGsjh8P2JDxuz-EWxdUeVWGii8spYBdWnR1oQiK7gerVPw_7YLSFjW8mGQ9CB6_zjQWdVapXnAdgqvssNUPSFXncK1eASp4_QFYiiqntsCpiszqfsQLPLJDLzRLKGjVD4nvkv9K-hICb4s2AkneksgZwXf7VNRZlTdy7piVOXWt1CM00zN-Nl8QXMgiOcaAbAgswP-x5R58ZS_giEx5iJZ7rVSrvAzNq0Jd5Va9aZiMeYSyAW5rL2dIfe54fckFCa5-dxMm1G2CwWxEmTUhkX1CPZ_1sxG6vZWa2HWlwESEAPKEoKe4n1AE9kqE0WRyKhHEInHdAbQlDDjq4qm3fpjci9NP1p-awh5_5oHbHDl4iNtw3QYogwt9-OwX1SLoKTDNy9zZH4y-QS9FKrebvw0osQYksi_gNpDh9wd8kYvNXdKbjQwGxxzOZEbIruuC8lmH9JyQLQBiuwXAaDbRMznui5E9KUdQlnCa8srkAZ4_iX3l8EUAZfG8Hkg_LLZrHtl6tqT2GsfInl0FYkK4-ECywzRYnIbDq1mvZ2lL28tjNNMbjYhdNPsBqj8lJV_b9w-W-rigCWHzNg8Xwl5oxMCEGGy6-EFrWC5OMfpgYadSe_mHTdM-3tl6H8nnmnSPfbVoyTn5dhfIYDYgNpjrXqB_t4kWQ0Nur88MBocUZWDTsLQRgvFSrJiYyh5tCh57hldnFHrGnbyEZE08CfpakVPY8WQZzCbwnBrtaVTEnO9CtCTYMH_dqMOln6nz1lrMVnp_98locsjubEpR4o4J_OFyDzW5pB_yWYbdtkDIntET7ncd6VoIk9sjPvl1GumdkjximnddBf4ZqR-ulq3Ynk2py7OjwP4w4GwpmhXOWaJIL2riHyET5kaihx9GcvgzD3Jt2-3F8wYzPZsm_zX_PHyds_CQNiz5NYI4En2i94_knclejjca2JCAb0hTDhdZEDLV7wnBb0sYx0zmIRKVPgiyhlOMiiiJgZkRAuIlIZE1QF7TcVmsY32JPtIaR_2KECnXRrneSX2y_MVS5H2NMfl2DPQZmDgb6LNpOho95bHD4R81ivptASEohebPij7D4YdVUyWrB7tmMTAjLU2xvdCAwWwwsms7gqNQdnDUSnUHW1GWtVLbaAxUhGFsalKN1wgLRgttMK8kfZQQm2rd-F9EtuIyRicvli1xVc5A8J1dmwQuEHqtjmBh3ptK1n8_7bgYVkgjbg4bsLqBBguQgIAPGECDBaiI6cePqzifKrBPhKMajntzLnhdZGrds6QdRkNVll0NT6koqg-ky0qXBUZKw2V3BPfXFph2JF1WNNkYeDnJbLuv4JfTmPSOF-Squiz1HNRrnnErlI7l_wa4VedZ-DiuydBKN5uhWRAog7ctizG0UzmC4NjHoKXtLDZbGqiAXeV-8RJN_WwR-MaXgnzmIgnl0ZSRd5_KQjPxv8Pl6tlHL-vjl7d8czRT8DIzEIFNT7N0vwFonhUKJTx9rBJ6Dxpc35VQg-ohPAT-9wAHLDgW-GD5IXG9ri-YBbZaWwUHD2OT0xrDePYG4sdaopUjOgIrkDa4J2iaFqKUd6tm7WNhgn_L6ymkBP8yyKrOyLgSuE1DZDRN5PdUFs95DFpGIIzRLtntYfQU6HN0Am-hruTgra9tHPlqBPsfn80EfwjX1g5lrYxBfOCyWEHFx_xVqnkA6Cn61Ij0BUtC3MTxrOA8tutT0ZJ__bpvLFxm3bSw54BtjePD__p3-68hxwoE3KOd-wugo_HvHe82UmRJEfGdgO5ibDHn43C19915i1qZo60iky9Y9JtMhHL9puHIDiQv1brKkmnUp0ahMUZCcyraENlrMMuGdN1YezCvhkoSNUjBh_OmUY9cCNkPiv9BRP3dUOz3I8YfRsHfEUH9CIH6S1oUCcFzFkQD3xlx-345G0hg7-ozSwuhVO-GEL07-vKdizD8v3yO8GagDc-Tdw0AcitI9FTySwbu5dA3L8m4bBn-5H_0yWMuSb30lNr62i9f5SxuvOS5P24w95v8By5PCIcQjrXvLLHGix4O5asF-OJDCIXzliVrJUu2SNHH52-jnx7WtvDPT5oQ_z3A36HNAP7SMekEWzFT9tXS71xdqd5Cp_CbiL_4XrLdyaVSYXQ8Rt9NhxuBtY_GxzXgbmd5P1ZH6wyi4e6EiPs8bns4lfklUNpp3ljE0S7kezTZNdnW6w1_08swOzTg6ddPartYvD8a1Cl2LrnvUhIEfwv_T5PEY536bbwM_sGteDtfmBBeSmtNFv66nYg9WqXCrftGJhjDOdupM-qTxhpK0wnCZzPJJIreLKVuFVcBQQ2nGQBvh4qz5HWbycydbgKpT-8RaJeIa2LTizA-n9GoizyzukhYvIEitSK_KOckGxXj_kIN1y3pxOKpLyJgdo7BmD2udwgilTtEHjANk2tWAS6UoAAURIevbUZjeVOFeGYqnTo8-8WNcMCG3xmMzBYTMz2zWxLRMLl7qFlNe4gLZz_WTLsRw8E55b3B7-Hm3816fa8R9AVyPcwL_1ycmvAdIY7DjvRxzHL8sTQ-PBOkLmtYP52XyJt6aTBOyIrSFW3qkL96kJ3-agsfQgPUURXFur2-g3yxBDeMT6Fs2W807wanGx3lDQF5yFtcGHEA7m_AcAPB08x5S3e7C6ep4XT1-4qWq2s_82LtSusoLuDMAFvTxpitws0Gq-vmeLpOoaIug1yfT99I6lcbreVowLk6EcGh03Y4X1SKG9mDzNW0pVsd5Zq6qJrPoTF4y5dKuagPe-cYiocdkWwNRsloIaHat3I12v8Spb0P7XiTINbeZxDiRr8gu6GM_9LmL0yD_gJv6f7cEiJu1cPF5rvLpUMRT-bAGZq7EZwMlbCq48cn-vaybFk8PiB_glLfLZPlJRsLj-GifCmkFqJPzH_ZQbQBOndzo7Z9psenTbUB_irLLzspdj0boa-21cUPI5TX3PmPsB8mxrB4Fh2hIx9nU_Fk7FOX-nUfkqnNCniUp3-3sQc-815K90Y8gfphAoYz8RA7HVzpnL5U1Lm1RkOL5Npa2hI-qBuMpR1srG4nP-RWWzRFtDSZfyS9UXmzqaUP-WFsTAz3zmfti0cp2sBYsNiXI_berbcbY6WjT7wbjV4eL35XKDx6RdBsMwVHazQfY6kcynEfW63cIJ8K8lTP1qsVbULevNK9Q_QlofKjcHrylobyqS8fHcg8qwsfPVJUZT6kmJPGi5Y18XZ7JEvhCrnu1u7dV05B1xph53oCgcrhyGDLkYe6EBA_nWaJ2eSFqNZqR64rFZFQrwpPLNRy0oEPte6jaWqqzIvPHRCcVWD8DqvaozpES5VlCmUgXdAUlrywKJQlrLDlItZ2_nZelDxiaND6PRpx110yVEADZSNwkh21aKMfcpunQ2v5E-I-n-nOhNb8ZprOH7TX_X_9azkHZPQxOLFq9UQ3Xa1yomg9VsIg4RhXi4LD23N3N0982rL7P4o4UfxmmNu_Rx1LvP9DWglhMLSmDvygJRwn2Mil3JBLvPlLhIr5xAS4YpR5hBfRn-IWtx9q-kckEB6wnZcXlp6u_xJ6x14dCvG-lLp84zUxRO5ftLZ161IQRw5cQ-N8BUPMD9IN2I82JUb5u877bYGL-5EsXk_yX-oU&tga-with-creatives=1
IP 5.255.255.77:0
Certificate IssuerGlobalSign nv-sa
Subject*.xn--d1acpjx3f.xn--p1ai
Fingerprint17:FB:0C:B6:3F:7F:A5:4C:41:AD:D0:5C:6B:9A:96:47:FE:AF:C8:5C
ValidityMon, 04 Mar 2024 10:29:07 GMT - Sun, 01 Sep 2024 20:59:59 GMT
File type gzip compressed data, from Unix
Hash 822fe345dd0c44777fe93d1567c78223
b2121b3131b1b8a0717a2f372e2568f129b50d44
3fca09d6ec55a04eb7d7a556635211f8ac263eb37dd594de311e4966b4b64d75
GET /ads/adfox/332443/getBulk/v2?pr=1091866324&pr1=2757690910&dl=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&prr=&extid_loader=&extid_tag_loader=hd29.lordsfilm.cfd&date=2024-05-10T18%3A33%3A30.678%2B00%3A00&pd=10&pw=5&pv=18&pdw=1280&pdh=1024&ylv=0.1021761&ybv=0.1021761&ytt=457946592968709&is-turbo=0&skip-token=&ad-session-id=4562571715366010582&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A1024%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1278%2C%22h%22%3A90%2C%22width%22%3A1278%2C%22height%22%3A90%2C%22visible%22%3A0%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A1%2C%22top%22%3A1055%2C%22req_no%22%3A2%2C%22ad_no%22%3A0%7D&pcode-version=1021761&yaru=true&p1=dadcm&p2=iqvg&slotNumber=1&bids=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%3D%3D&utf8=%E2%9C%93&pcode-test-ids=998294%2C0%2C15%3B1012360%2C0%2C96%3B1021001%2C0%2C35%3B1002305%2C0%2C36%3B1011143%2C0%2C60%3B1018247%2C0%2C82%3B1014348%2C0%2C49%3B1021298%2C0%2C45%3B1015041%2C0%2C27%3B1001217%2C0%2C32%3B997800%2C0%2C53%3B999587%2C0%2C56%3B1015254%2C0%2C18%3B1018696%2C0%2C64%3B1010989%2C0%2C72%3B1021761%2C0%2C76&pcode-flags-map=eJy1WF1z27YS%2FS96DlN%2Bk%2BgbRIISRiTAC4Cy1U4GQ1t06zt2cid22t5k8t%2FvAqRoiXKo27T1i0WQOFgszp7dxZfFFkst1%2FxK41yXeElKXXChKdNLzBgRix9%2F%2FrL4rX341C1%2BXCjRkMWbxXP39Ez38BzHQRAmi6%2Fv3ixyKvGyJDrjDVNakJwKkinAwXU9i5H4bhj6FsOY0kiiq6ZUVPCyBDSmzA8i9BVW2ZrkWtGKaF4Ukqh53MB3k2TEFUSJneZMM6KuuNhoIgSf310SxWGCLIJZlDdK14JYu14s3NKccD28P4HzXPg7wUMBStwLeMumKGC3pKrVTpe0olPQP424rTHN%2F34LiwZ%2Bfy8qg4P4uy39BuZfOp%2FXMf85D3zv6RuGrwRe6pKwlVqfTIL4So%2BnpW7qJuE4jTAbt0rgbAPekg0uez0wMkCuFREMRnI5H8Wp58fud4DaAYkLoguBK3J5jT6ihTDSIOEL0BhYUBn1qrGBAGxpUXGTU64zQbCiWyLnoUPX96LRfEACGcpKSkDLSrICWykruL5aUytxbEuEGqhlVr%2BAHblpeiRELIcjxkvDApwbJCphoBGlkacrsuSXbE3cEL0cO1E6a6Tild5WuD4QEuwqm1N%2FxhNWpnEUxIPy2q2A6KsVHvZVl43UtMIronMi6Yrpg8Qb58LQRvFTTnR%2F%2FOcY3nO9EEXROb6o6r8E%2BeJLqexs8KGknE1CxUO%2Bj05n%2By4KPTvbhlyf4XTDaEEhs1AG3ClwRuZMiFDqD2nFpKrlRkv6E%2BkZN%2B4y49WSz6HECQrdF5SSAH0BoZqdE6dh3FtvlEcCswmDqAfJ%2FD9cF6dx6AWH4GHkymTERjCNC9i14TpEqloL3qzW81nR8w70kxWGMPhXQxoCQV3rZWnCvaSnAfHz4rG9f3j78ROg%2FLd9v%2B%2F%2BgN8%2F3D%2B2v3RPJ0O%2FtI92ZP%2B5e99%2F3v52%2F%2Fyh%2F%2Fn49uhh%2F%2F5%2BGDXIIwIMfGw%2FP3z4%2FOvw%2BvPH%2Fv%2Bnj%2B3b993vT2cf%2FLv98Hhvp7472WIEhzyeTkGAHCAjmQKSyTknJ0EUuH1EQXkCx1Jg4BnICQQRa6rlpJyazo68YNDzGpuFTfEEM0EVliQDaYMB0FIKlL8Ak7h92EkQWJxXuuSrlY0Umhf4lQPah52XxO6N07Zd5ITdjee0N17idHvURdE%2BuPWiG1jibt%2BirutunO7Wv3XCFrlOmqI7Zx9E7c1tept4cQufeXddkHp3dw66cwMn3Ke3DrpNYgdFXnvne3sU7o0OufD69i5ETtB6sRN6yd5Bnhc4yT4MULxvE3ffnR5LGkWo988ORBdkPevPZlly4B3EAeizIq%2FsTzjU8UPkQSp0PFj6%2BNmfPAeT59A%2BY8ePIK0n%2FjAfO1FqwtHxvHEgBt4kZoF3J9kWxV7cR62Eg%2BCQ8uj13PmlURAMkcps6tLAPJNAjUBgZehgymLIoroirJmHCpHfe8xE%2FKpWGmSD1mp2ElTOKDxYPEjLqNTgYV1h0DhD6lkY5LkpOsAIcoVFbsr3XT07DUTbdV8UfuxDtJSmcpjVOOQH4ZAdxnbE6hr4q6DGedMscQYQBWkwBv4B5JBSbZbiWVOZsgCKD6zICnqKJaTv7XxoI98UAXNZowBqQFWQXzDP89BpQrWpRh8lBIMPwSEsUaxc0JKq0cxZ%2FMCN0p6r%2BU8HqA0pibrkNi%2F1e7sOkgfuAgcRXFkQXNqKz5L5yKTRheQ6K5scGj8BDcC8hZDFXuo0g73GLC9N0LPNcNq2%2BMtVwy5sNvEHstiay%2BgHeGxNZ4MDZgHHelYDB0Bf%2BxJpudPC0EtqLATezUKA1EXBVJ8PNZyU8xSP4mhgqDQZYQe7J9fAShOTsxMTN4nRuKpQS51haKj11h8K3dnZKDq2GRRMX1PMKwqBDflfqtm0aGbHwUlc8powYwO0QDXImMLQ%2BpSbCyDhUHjB5yu9hpppPuhAr9NoqJgwqEjOmUkWGCit4F%2B%2BIrYipfPpFApJkH00g3J5dk8zLHcs68ul4ylfFk%2Fds8lSR%2B%2Ft%2BeQY3FJy0IQ3p%2B%2BGDmI6PryYjJq28FsA31yCMpD5fgDnBb%2BevIYDE3SD%2B8uesxUzzjcUPjIXNpStxq%2FABb9%2BeHp%2BMnttHx4W776eOipN0EtbIxsQqx0YMshIxcFkNvQNJx4vcCnJKVPSQwIzSCUHG0x5WpRAG%2BhCmzK3ymFSoloTiCLbb89WvWCeH8QvzfbRPJBICrVvo5QRXCwonsTSmYFzYH2VCdmVkVJjBuqigG5QadvbATVV4jk7cS7zzTQxQRMEceFN%2BiI7dIhu2xsdAtsk%2B%2FICwz0vHDoLUnGQ%2BGxt%2BmfVN%2BTQ2IOsDWgXgFJ%2FuE0cm3tuGn1Zl3gHUge2CBN1gpiu%2BQTr9vlh2igG4VgKHC4luTC8v6K5aZq3%2FjyC7%2FloCNyl5GWjbEHQQ%2F1pCONXe09RkZximK%2FWpqIY70k5K3fnVwnnu4rcoYHFeQ7iySueQWBAqBp%2Fm6qMSzU58TMQoIg3XIw2bAViXGcKz0tvkrruWL3UeGcrIFsECiV13weeCelkYQQKng4C%2FnI9RGzyg9abm1IGaG%2FYPymDXnGDH4WjX%2BUG52y4crpEsBjFk3ngfuCs2EFSI2U%2Bm8eOAcZqZqjDbCNSYJbtXtOoV7ICGorj2hzga1GaxGdRmths9vV%2FgC3hhg%3D%3D&pcode-icookie=p88CHeBmQtocA4y2Mj45%2BLrsa2Kq2rMjUdsNrrdCcSX9pUjtnO8qDrK1wINRw1Aq4rGAsO8v9YisfOnPD2Gr7VE4A5Q%3D&top-ancestor=https%3A%2F%2Fhd29.lordsfilm.cfd&top-ancestor-undetermined=0&grab-orig-len=5120&grab=eyJncmFiX3ZlcnNpb24iOjJ9ChLjlLDkqAlQowYsqT355OyXu0KtaqKKWlGpJdAEhk94JzInucy8LYMcLr2pr_fLIqsW3NpkVeCUc_I50FsBfWaASxiOmMOwTLPfNCm3dk4YIcYIIwxFGCOEMaLTZKpST6epaq2eLlNnZaVPcVNJQpmKU3kq7CmMVPag-Sl6yksoEvIOeCOzkRn8nlCkgodN_uIkD0bUU96LFb4ojJTfU5yHRfEQP_yE_OV5PZX1BLSHnPIBwEwlqaCnopcjOXEvWpZK6FiGAzpVldVdWasqcK3aKtcVaupMrVBau06hzCplBq7Vc-rd2lPsv12aylnRPvGleMdfQrln8-dAt2t8x3Ww4Zt7itdfQnK8vhDJC-Ydi3ESslSakCUAWyYmJA85z3LgPUU_lvy6MJcNwpT3v3FTWUKQYv6NCQWQwD4PvFSYEJnNZitLcPtwK1iwFYU2DzMgFf0VZM-iZ9Vu_zgVs_qvfyCy238qSAh228ca8mUF77bKOkxv_PyhMSzRniRIJfMixV4uMf-AWzJFQrQwhDv_eydndV846y0DZ-chWxgxZBFD7vU_4j-He-q-fqH_XjiTTogT0P4MkoXoJ5cQHuOigyQpxgOBdsx7yMWs7ot5SMifS6wE_4CuAJwVPGdIvtv4L0CUSm4VLFP5tAotrK4r6zwH1wpmbtXTadVwYiCwi5raovvRV0VfEKparRzRU7oPo4kaoAEoBqZFreyhvzRgWAoF7AOsUmu1ZfUQU5UR1KpKSRWLzhQWlYL2JUq1nq7Wp5Bu1gnRT4eYjqUO8PpfK6VlIdGVVV3QqMHw_7HoFCX3Kd5tYV-zHOwHkEK5HtpSTcgQRHBezBekIShqYDK5wzS6wzS5w2T28LKjoNzGlKeC4P0_Cfl22ldSinVd7T_iBIP00El_vRjPTNED8giH_DV9yZ3UWQLS8JCQXv17XrNQlY7rmiViLSSUngvw_--W6bMc9FQ8ydn5dhASwi1B0U-F2CuF_48lX5wnIfZK4bUkeumC7w4J3kLCd94f9JcSPSsEJ_jKYnvSUdCW65aM-IuD2EW4E9Ogz2bdIQRpmX9pm8NioU4q3WmIXaWWDiafBLtHH3dYgUVynta-XmpO8ACu2YSeoW4KvXp2ZDII27XER01zXhmU5fjGQXiMudSaEHiF4m4SlBxV6fYad6l4yoTcvQ8oN2EIl-bznAaQ66JfhEca0nYL-SSbPU7uXsmgrmDJNZJ_SSyb1fxMjwNy5M6c8SqOKr8G9HGJmBEhbN4EwM2qyJpzkSNDI0cebxEm-g52Y8HnWIxU8jO3BkBHDGhd87eNCoDoINtWwM-BYoCw1A_adYNmfSLZCoexzq-gnQYEr3aIpi_RaiZ7tDjaARayhGlotxO7h2MLJNwe-feKTmM5n-O8ExPXP6FRFCpXUbSKq_72bcQO8LAo2kxpKRXw3jV4kB3MvAGPn2zYjHGsjh8P2JDxuz-EWxdUeVWGii8spYBdWnR1oQiK7gerVPw_7YLSFjW8mGQ9CB6_zjQWdVapXnAdgqvssNUPSFXncK1eASp4_QFYiiqntsCpiszqfsQLPLJDLzRLKGjVD4nvkv9K-hICb4s2AkneksgZwXf7VNRZlTdy7piVOXWt1CM00zN-Nl8QXMgiOcaAbAgswP-x5R58ZS_giEx5iJZ7rVSrvAzNq0Jd5Va9aZiMeYSyAW5rL2dIfe54fckFCa5-dxMm1G2CwWxEmTUhkX1CPZ_1sxG6vZWa2HWlwESEAPKEoKe4n1AE9kqE0WRyKhHEInHdAbQlDDjq4qm3fpjci9NP1p-awh5_5oHbHDl4iNtw3QYogwt9-OwX1SLoKTDNy9zZH4y-QS9FKrebvw0osQYksi_gNpDh9wd8kYvNXdKbjQwGxxzOZEbIruuC8lmH9JyQLQBiuwXAaDbRMznui5E9KUdQlnCa8srkAZ4_iX3l8EUAZfG8Hkg_LLZrHtl6tqT2GsfInl0FYkK4-ECywzRYnIbDq1mvZ2lL28tjNNMbjYhdNPsBqj8lJV_b9w-W-rigCWHzNg8Xwl5oxMCEGGy6-EFrWC5OMfpgYadSe_mHTdM-3tl6H8nnmnSPfbVoyTn5dhfIYDYgNpjrXqB_t4kWQ0Nur88MBocUZWDTsLQRgvFSrJiYyh5tCh57hldnFHrGnbyEZE08CfpakVPY8WQZzCbwnBrtaVTEnO9CtCTYMH_dqMOln6nz1lrMVnp_98locsjubEpR4o4J_OFyDzW5pB_yWYbdtkDIntET7ncd6VoIk9sjPvl1GumdkjximnddBf4ZqR-ulq3Ynk2py7OjwP4w4GwpmhXOWaJIL2riHyET5kaihx9GcvgzD3Jt2-3F8wYzPZsm_zX_PHyds_CQNiz5NYI4En2i94_knclejjca2JCAb0hTDhdZEDLV7wnBb0sYx0zmIRKVPgiyhlOMiiiJgZkRAuIlIZE1QF7TcVmsY32JPtIaR_2KECnXRrneSX2y_MVS5H2NMfl2DPQZmDgb6LNpOho95bHD4R81ivptASEohebPij7D4YdVUyWrB7tmMTAjLU2xvdCAwWwwsms7gqNQdnDUSnUHW1GWtVLbaAxUhGFsalKN1wgLRgttMK8kfZQQm2rd-F9EtuIyRicvli1xVc5A8J1dmwQuEHqtjmBh3ptK1n8_7bgYVkgjbg4bsLqBBguQgIAPGECDBaiI6cePqzifKrBPhKMajntzLnhdZGrds6QdRkNVll0NT6koqg-ky0qXBUZKw2V3BPfXFph2JF1WNNkYeDnJbLuv4JfTmPSOF-Squiz1HNRrnnErlI7l_wa4VedZ-DiuydBKN5uhWRAog7ctizG0UzmC4NjHoKXtLDZbGqiAXeV-8RJN_WwR-MaXgnzmIgnl0ZSRd5_KQjPxv8Pl6tlHL-vjl7d8czRT8DIzEIFNT7N0vwFonhUKJTx9rBJ6Dxpc35VQg-ohPAT-9wAHLDgW-GD5IXG9ri-YBbZaWwUHD2OT0xrDePYG4sdaopUjOgIrkDa4J2iaFqKUd6tm7WNhgn_L6ymkBP8yyKrOyLgSuE1DZDRN5PdUFs95DFpGIIzRLtntYfQU6HN0Am-hruTgra9tHPlqBPsfn80EfwjX1g5lrYxBfOCyWEHFx_xVqnkA6Cn61Ij0BUtC3MTxrOA8tutT0ZJ__bpvLFxm3bSw54BtjePD__p3-68hxwoE3KOd-wugo_HvHe82UmRJEfGdgO5ibDHn43C19915i1qZo60iky9Y9JtMhHL9puHIDiQv1brKkmnUp0ahMUZCcyraENlrMMuGdN1YezCvhkoSNUjBh_OmUY9cCNkPiv9BRP3dUOz3I8YfRsHfEUH9CIH6S1oUCcFzFkQD3xlx-345G0hg7-ozSwuhVO-GEL07-vKdizD8v3yO8GagDc-Tdw0AcitI9FTySwbu5dA3L8m4bBn-5H_0yWMuSb30lNr62i9f5SxuvOS5P24w95v8By5PCIcQjrXvLLHGix4O5asF-OJDCIXzliVrJUu2SNHH52-jnx7WtvDPT5oQ_z3A36HNAP7SMekEWzFT9tXS71xdqd5Cp_CbiL_4XrLdyaVSYXQ8Rt9NhxuBtY_GxzXgbmd5P1ZH6wyi4e6EiPs8bns4lfklUNpp3ljE0S7kezTZNdnW6w1_08swOzTg6ddPartYvD8a1Cl2LrnvUhIEfwv_T5PEY536bbwM_sGteDtfmBBeSmtNFv66nYg9WqXCrftGJhjDOdupM-qTxhpK0wnCZzPJJIreLKVuFVcBQQ2nGQBvh4qz5HWbycydbgKpT-8RaJeIa2LTizA-n9GoizyzukhYvIEitSK_KOckGxXj_kIN1y3pxOKpLyJgdo7BmD2udwgilTtEHjANk2tWAS6UoAAURIevbUZjeVOFeGYqnTo8-8WNcMCG3xmMzBYTMz2zWxLRMLl7qFlNe4gLZz_WTLsRw8E55b3B7-Hm3816fa8R9AVyPcwL_1ycmvAdIY7DjvRxzHL8sTQ-PBOkLmtYP52XyJt6aTBOyIrSFW3qkL96kJ3-agsfQgPUURXFur2-g3yxBDeMT6Fs2W807wanGx3lDQF5yFtcGHEA7m_AcAPB08x5S3e7C6ep4XT1-4qWq2s_82LtSusoLuDMAFvTxpitws0Gq-vmeLpOoaIug1yfT99I6lcbreVowLk6EcGh03Y4X1SKG9mDzNW0pVsd5Zq6qJrPoTF4y5dKuagPe-cYiocdkWwNRsloIaHat3I12v8Spb0P7XiTINbeZxDiRr8gu6GM_9LmL0yD_gJv6f7cEiJu1cPF5rvLpUMRT-bAGZq7EZwMlbCq48cn-vaybFk8PiB_glLfLZPlJRsLj-GifCmkFqJPzH_ZQbQBOndzo7Z9psenTbUB_irLLzspdj0boa-21cUPI5TX3PmPsB8mxrB4Fh2hIx9nU_Fk7FOX-nUfkqnNCniUp3-3sQc-815K90Y8gfphAoYz8RA7HVzpnL5U1Lm1RkOL5Npa2hI-qBuMpR1srG4nP-RWWzRFtDSZfyS9UXmzqaUP-WFsTAz3zmfti0cp2sBYsNiXI_berbcbY6WjT7wbjV4eL35XKDx6RdBsMwVHazQfY6kcynEfW63cIJ8K8lTP1qsVbULevNK9Q_QlofKjcHrylobyqS8fHcg8qwsfPVJUZT6kmJPGi5Y18XZ7JEvhCrnu1u7dV05B1xph53oCgcrhyGDLkYe6EBA_nWaJ2eSFqNZqR64rFZFQrwpPLNRy0oEPte6jaWqqzIvPHRCcVWD8DqvaozpES5VlCmUgXdAUlrywKJQlrLDlItZ2_nZelDxiaND6PRpx110yVEADZSNwkh21aKMfcpunQ2v5E-I-n-nOhNb8ZprOH7TX_X_9azkHZPQxOLFq9UQ3Xa1yomg9VsIg4RhXi4LD23N3N0982rL7P4o4UfxmmNu_Rx1LvP9DWglhMLSmDvygJRwn2Mil3JBLvPlLhIr5xAS4YpR5hBfRn-IWtx9q-kckEB6wnZcXlp6u_xJ6x14dCvG-lLp84zUxRO5ftLZ161IQRw5cQ-N8BUPMD9IN2I82JUb5u877bYGL-5EsXk_yX-oU&tga-with-creatives=1 HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Fri, 10 May 2024 18:33:31 GMT
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: https://hd29.lordsfilm.cfd
set-cookie: i=bLcccqNth2YDidnJ0BoB0g9XitWSGO/jjgLkCU1TCCR9OSUIm+UN3up7dBQafYdXgzgRGfp0mGjt1TU6+f35PLcubq0=; Expires=Sun, 10-May-2026 18:33:31 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=2960929941715366011; Expires=Sun, 10-May-2026 18:33:31 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yashr=1700708391715366011; Path=/; Domain=.yandex.ru; Expires=Sat, 10 May 2025 18:33:31 GMT; SameSite=None; Secure; HttpOnly
receive-cookie-deprecation=1; Path=/; Domain=.yandex.ru; Expires=Sat, 10 May 2025 18:33:31 GMT; SameSite=None; Secure; HttpOnly; Partitioned
access-control-allow-credentials: true
pragma: no-cache
expires: Fri, 10 May 2024 18:33:31 GMT
x-xss-protection: 1; mode=block
x-yandex-req-id: 1715366011426027-18142868256496092994-balancer-l7leveler-kubr-yp-vla-17-BAL
last-modified: Fri, 10 May 2024 18:33:31 GMT
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
content-type: application/json
X-Firefox-Spdy: h2
gw-iad-bid.ymmobi.com/dsp/user/sync?dspid=c2FwZV9kc3A=&gdpr=0&gdpr_consent=0&us_privacy=0&callback=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D293%26euid%3D%7Bym_user_id%7D
47.253.61.56302 Found 0 B URL GET HTTP/2 gw-iad-bid.ymmobi.com/dsp/user/sync?dspid=c2FwZV9kc3A=&gdpr=0&gdpr_consent=0&us_privacy=0&callback=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D293%26euid%3D%7Bym_user_id%7D
IP 47.253.61.56:443
ASN #45102 Alibaba US Technology Co., Ltd.
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerDigiCert, Inc.
Subject*.ymmobi.com
FingerprintAA:CB:8B:48:C7:AB:0D:56:82:39:63:A5:E1:5E:34:8B:62:7B:6F:52
ValiditySun, 04 Feb 2024 00:00:00 GMT - Mon, 03 Feb 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dsp/user/sync?dspid=c2FwZV9kc3A=&gdpr=0&gdpr_consent=0&us_privacy=0&callback=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D293%26euid%3D%7Bym_user_id%7D HTTP/1.1
Host: gw-iad-bid.ymmobi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 10 May 2024 18:33:31 GMT
content-length: 0
location: https://mc.acint.net/match?dp=293&euid=ym_user_d0d29db9-9703-4d48-a7ee-7a360e38ff10
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token
access-control-allow-credentials: true
set-cookie: ym_user_cookie=ym_user_d0d29db9-9703-4d48-a7ee-7a360e38ff10; max-age=31104000; domain=ymmobi.com; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
adx.com.ru/sape-sync?uid=0A00007F78683E66A3377A430294F148
83.222.105.118 85 B URL adx.com.ru/sape-sync?uid=0A00007F78683E66A3377A430294F148
IP 83.222.105.118:0
File type HTML document, ASCII text
Hash 0e3dc0b9076c31784a7690eff757b277
f4afb9dadae5094fef6505b2da9cd5773dd5b5dc
32de01c24417bba0e47d3487c3cd7ab4eb5f51eabd100a5590fe29ba4f670ada
GET /sape-sync?uid=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: adx.com.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.26.0
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/html; charset=utf-8
content-length: 85
cache-control: max-age=0, no-cache, no-store, must-revalidate, proxy-revalidate
location: /sync?sspKey=25&sspUserID=0A00007F78683E66A3377A430294F148
p3p: CP="adx.com.ru does not have a P3P policy"
set-cookie: user=663e687b7011cb0001720626; Path=/; Domain=adx.com.ru; Max-Age=31536000; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
mc.acint.net/rmatch?dp=261&euid=53554c26-8043-4e65-be79-a6572b385504&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261
193.3.184.16 154 B URL mc.acint.net/rmatch?dp=261&euid=53554c26-8043-4e65-be79-a6572b385504&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261
IP 193.3.184.16:0
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=261&euid=53554c26-8043-4e65-be79-a6572b385504&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=261
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
code.moviead55.ru/go/csync?cn=otmbid&bid=NjYzZTY4NzkwZDBmNGE1Nw%3D%3D
193.200.65.144 0 B URL code.moviead55.ru/go/csync?cn=otmbid&bid=NjYzZTY4NzkwZDBmNGE1Nw%3D%3D
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=otmbid&bid=NjYzZTY4NzkwZDBmNGE1Nw%3D%3D HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8; hbrdcookie2=24b66973447526a89442; otclkbid=VU0cO9fZFTbYzyf; ohmybid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0; bzcookie=2c2c08ce-a0bc-471c-7f40-2a2ad1719ee4; 680rmads=1715366011
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:31 GMT
content-type: image/jpeg
content-length: 0
set-cookie: otmbid=NjYzZTY4NzkwZDBmNGE1Nw==; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
www.acint.net/rmatch?dp=71&euid=41258f9a-29ab-460a-a74b-7836a244d1ad&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71
193.3.184.16302 Found 154 B URL GET HTTP/2 www.acint.net/rmatch?dp=71&euid=41258f9a-29ab-460a-a74b-7836a244d1ad&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71
IP 193.3.184.16:443
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1
ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=71&euid=41258f9a-29ab-460a-a74b-7836a244d1ad&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/html
content-length: 154
location: https://acint.net/cmatch?dp=71
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=251&euid=187da8a4-5e7b-8768-ed39-68cc113f0aec
193.3.184.16 43 B URL www.acint.net/match?dp=251&euid=187da8a4-5e7b-8768-ed39-68cc113f0aec
IP 193.3.184.16:0
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1
ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=251&euid=187da8a4-5e7b-8768-ed39-68cc113f0aec HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 10 May 2024 18:33:31 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
mc.acint.net/cmatch?dp=110
193.3.184.16302 Found 154 B URL GET HTTP/2 mc.acint.net/cmatch?dp=110
IP 193.3.184.16:443
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1
ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=110 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/html
content-length: 154
location: https://ads.betweendigital.com/match?bidder_id=73&external_user_id=0A00007F78683E66A3377A430294F148
set-cookie: cSyncDp7v3=1715366011; expires=Sun, 09-Jun-24 18:33:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
mc.acint.net/cmatch?dp=126
193.3.184.16 154 B URL mc.acint.net/cmatch?dp=126
IP 193.3.184.16:0
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=126 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/html
content-length: 154
location: https://ads.betweendigital.com/match?bidder_id=73&external_user_id=0A00007F78683E66A3377A430294F148
set-cookie: cSyncDp7v3=1715366011; expires=Sun, 09-Jun-24 18:33:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
mc.acint.net/cmatch?dp=95
193.3.184.16302 Found 154 B URL GET HTTP/2 mc.acint.net/cmatch?dp=95
IP 193.3.184.16:443
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1
ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=95 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/html
content-length: 154
location: https://ads.betweendigital.com/match?bidder_id=73&external_user_id=0A00007F78683E66A3377A430294F148
set-cookie: cSyncDp7v3=1715366011; expires=Sun, 09-Jun-24 18:33:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
code.moviead55.ru/go/csync?cn=sapecookie&bid=0A00007F78683E66A3377A430294F148
193.200.65.144 0 B URL code.moviead55.ru/go/csync?cn=sapecookie&bid=0A00007F78683E66A3377A430294F148
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=sapecookie&bid=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8; hbrdcookie2=24b66973447526a89442; otclkbid=VU0cO9fZFTbYzyf; ohmybid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0; bzcookie=2c2c08ce-a0bc-471c-7f40-2a2ad1719ee4; 680rmads=1715366011; 754rmads=1715366011; otmbid=NjYzZTY4NzkwZDBmNGE1Nw==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:31 GMT
content-type: image/jpeg
content-length: 0
set-cookie: sapecookie=0A00007F78683E66A3377A430294F148; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
pix.bumlam.com/sync/sape/sync_ok?guid=ccd775fe-0efb-11ef-9b7b-002590c82436
31.172.81.159302 Found 0 B URL GET HTTP/1.1 pix.bumlam.com/sync/sape/sync_ok?guid=ccd775fe-0efb-11ef-9b7b-002590c82436
IP 31.172.81.159:443
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint9F:E0:4A:B3:57:B0:3C:3E:13:7F:9F:FF:82:A2:91:87:45:9F:A4:7F
ValidityThu, 28 Mar 2024 09:09:43 GMT - Wed, 26 Jun 2024 09:09:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/sync_ok?guid=ccd775fe-0efb-11ef-9b7b-002590c82436 HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRjY2Q3NzVmZS0wZWZiLTExZWYtOWI3Yi0wMDI1OTBjODI0MzY*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 10 May 2024 18:33:31 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://ccd775fe-0efb-11ef-9b7b-002590c82436.n2.sync.bumlam.com/?src=sape
hye1eaipby4w.otsdkstub.ws/x-en-x/khq2khwxYa8xRX8aRC8aka8xkC8GnyObB0eCyp82kvD3FhzuMWlw
80.251.153.204200 OK 2.8 kB URL GET HTTP/1.1 hye1eaipby4w.otsdkstub.ws/x-en-x/khq2khwxYa8xRX8aRC8aka8xkC8GnyObB0eCyp82kvD3FhzuMWlw
IP 80.251.153.204:443
ASN #206264 Amarutu Technology Ltd
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subject*.otsdkstub.ws
Fingerprint4D:C2:E8:95:B1:B7:B5:6D:D5:FD:F6:C7:72:0A:9D:58:6A:9A:79:CD
ValidityMon, 06 May 2024 00:00:00 GMT - Tue, 06 May 2025 23:59:59 GMT
File type XML 1.0 document, ASCII text
Hash acb4b809242c3690c86c88f2a12e6863
2b1c1834381ee76606c3d34f2e51ccf7f927a70b
356e236c6289d595515e059d862b13b469426f17f66979fef80fbec04aaae35a
GET /x-en-x/khq2khwxYa8xRX8aRC8aka8xkC8GnyObB0eCyp82kvD3FhzuMWlw HTTP/1.1
Host: hye1eaipby4w.otsdkstub.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hd29.lordsfilm.cfd/
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:31 GMT
Content-Type: application/dash+xml
Content-Length: 2848
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: *
Expires: 1970-01-01 00:00:00
Access-Control-Allow-Origin: https://hd29.lordsfilm.cfd
Access-Control-Allow-Headers: *
Accept-Ranges: bytes
mc.acint.net/match?dp=293&euid=ym_user_d0d29db9-9703-4d48-a7ee-7a360e38ff10
193.3.184.16200 OK 43 B URL GET HTTP/2 mc.acint.net/match?dp=293&euid=ym_user_d0d29db9-9703-4d48-a7ee-7a360e38ff10
IP 193.3.184.16:443
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1
ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=293&euid=ym_user_d0d29db9-9703-4d48-a7ee-7a360e38ff10 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009; cSyncDp7v3=1715366011
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 10 May 2024 18:33:31 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
mc.acint.net/cmatch?dp=261
193.3.184.16302 Found 154 B URL GET HTTP/2 mc.acint.net/cmatch?dp=261
IP 193.3.184.16:443
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1
ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=261 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009; cSyncDp7v3=1715366011
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/html
content-length: 154
location: https://match.qtarget.tech/userbind?src=sape&id=0A00007F78683E66A3377A430294F148
set-cookie: cSyncDp241v2=1715366011; expires=Sun, 09-Jun-24 18:33:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
acint.net/cmatch?dp=71
193.3.184.16 154 B IP 193.3.184.16:0
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1
ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=71 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009; cSyncDp7v3=1715366011
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/html
content-length: 154
location: https://match.qtarget.tech/userbind?src=sape&id=0A00007F78683E66A3377A430294F148
set-cookie: cSyncDp241v2=1715366011; expires=Sun, 09-Jun-24 18:33:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
adx.com.ru/sync?sspKey=25&sspUserID=0A00007F78683E66A3377A430294F148
83.222.105.118 231 B URL adx.com.ru/sync?sspKey=25&sspUserID=0A00007F78683E66A3377A430294F148
IP 83.222.105.118:0
File type HTML document, ASCII text
Hash 1921ff5f7c7e061411d242d8f521a2c4
8258048249a0581c05f08ff1aa08eca159e63dbd
0b81121a91fe91b219d0284296c818738912c6c91ed1bdeb2e2ecdd3486cae9d
GET /sync?sspKey=25&sspUserID=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: adx.com.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: user=663e687b7011cb0001720626
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.26.0
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/html; charset=utf-8
content-length: 231
cache-control: max-age=0, no-cache, no-store, must-revalidate, proxy-revalidate
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fadx.com.ru%2Fweborama-sync%3Furl%3Dhttps%253A%252F%252Fprodmp.ru%252Fyabbi.gif%253Fuid%253D663e687b7011cb0001720626%2526r%253D%26webouid%3D{WEBO_CID}
p3p: CP="adx.com.ru does not have a P3P policy"
X-Firefox-Spdy: h2
img.imgilall.me/movies/video/3/0/8/2/1/4/0/0/0/0/800x450_308214.jpg?t=1603802716
172.67.191.56 26 kB URL GET img.imgilall.me/movies/video/3/0/8/2/1/4/0/0/0/0/800x450_308214.jpg?t=1603802716
IP 172.67.191.56:0
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectimgilall.me
Fingerprint2D:FE:7F:0D:AF:20:3C:2D:8E:6B:2A:6B:27:12:D9:A5:42:DC:D8:17
ValiditySat, 13 Apr 2024 23:33:16 GMT - Fri, 12 Jul 2024 23:33:15 GMT
File type gzip compressed data, from Unix
Hash 45a65ca77e1e242c67a5de89f0d39724
9fcd201e5b84970633ca803a026e194732aec706
54856ca2f0112e026fb4525c2ed1e8224685c3b6468ce8051a8dd177a24471a5
GET /movies/video/3/0/8/2/1/4/0/0/0/0/800x450_308214.jpg?t=1603802716 HTTP/1.1
Host: img.imgilall.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 18:33:31 GMT
content-type: image/jpeg
last-modified: Sun, 17 Jul 2022 07:47:34 GMT
vary: Accept-Encoding
etag: W/"62d3be96-4eb6"
expires: Sun, 04 May 2025 09:26:04 GMT
cache-control: max-age=31104000
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 119247
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IywjPTJAbiUbRcxIgK9ZeOq9mYAlNRKs5VIfw4Io0hImnGHwYoe9GrAikciwe2wGdDGsKgY82Yok8x%2FjmSdw%2Fn%2Buyj2rk8DxUYFnefwtyHT0vP%2F9ThG11Piy5gT%2B2LQBA%2Bg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c04a44c5156c9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
avatars.mds.yandex.net/get-direct/5219238/zEMVAFuRejNCPyfyllWDRA/y180
87.250.247.183 11 kB URL avatars.mds.yandex.net/get-direct/5219238/zEMVAFuRejNCPyfyllWDRA/y180
IP 87.250.247.183:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x180, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 69b5330e93a643c6a583baf5fbd270f4
054db16a9d85b5769fecabdfcc22684b49e5aed3
fb9047775f2efb92ac910c742b7ade23409b6ffc60630b34623824a7f31c8f9b
GET /get-direct/5219238/zEMVAFuRejNCPyfyllWDRA/y180 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:32 GMT
content-type: image/webp
content-length: 10958
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Thu, 30 Nov 2023 08:30:25 GMT
cache-control: max-age=31536000,immutable
x-request-id: 7aa7d1d8871a370c
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=KLG"}]}
X-Firefox-Spdy: h2
code.moviead55.ru/vast2?key=16ee33f0a2b397c4a1f1ab6636599ac9&sid=autoplay&cp.adsource=Dhs_out_gam&cp.adtype=pre&vt=100&fp=[fp]&w=400&h=225&vid=&fpro=&suri=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&rdd1=true&cp.referer=https%253A%252F%252Fhd29.lordsfilm.cfd%252Fserialy%252F22494-avanpost-2020-25-3-21.html&cp.cb=1c0f5eae-921f-24ac-0270-9c4b4c04efae
193.200.65.144200 OK 539 B URL GET HTTP/2 code.moviead55.ru/vast2?key=16ee33f0a2b397c4a1f1ab6636599ac9&sid=autoplay&cp.adsource=Dhs_out_gam&cp.adtype=pre&vt=100&fp=[fp]&w=400&h=225&vid=&fpro=&suri=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&rdd1=true&cp.referer=https%253A%252F%252Fhd29.lordsfilm.cfd%252Fserialy%252F22494-avanpost-2020-25-3-21.html&cp.cb=1c0f5eae-921f-24ac-0270-9c4b4c04efae
IP 193.200.65.144:443
ASN #6681 Giveme Cloud Sp Z O O
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9
ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
File type gzip compressed data, from Unix
Hash 4f2f85c81ecfae10b3b798e09c04eeb3
c85b71ae95e779fdead91d0dd741a53adbe6955b
7b3f1048ad199a3af91c08cd7777f030e17ca6349b5111f5ecc079d23f8fd4df
GET /vast2?key=16ee33f0a2b397c4a1f1ab6636599ac9&sid=autoplay&cp.adsource=Dhs_out_gam&cp.adtype=pre&vt=100&fp=[fp]&w=400&h=225&vid=&fpro=&suri=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&rdd1=true&cp.referer=https%253A%252F%252Fhd29.lordsfilm.cfd%252Fserialy%252F22494-avanpost-2020-25-3-21.html&cp.cb=1c0f5eae-921f-24ac-0270-9c4b4c04efae HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8; hbrdcookie2=24b66973447526a89442; otclkbid=VU0cO9fZFTbYzyf; ohmybid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0; bzcookie=2c2c08ce-a0bc-471c-7f40-2a2ad1719ee4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/xml;charset=UTF-8
vary: Accept-Encoding
x-movieads-cors-qex: Referer
x-movieads-path: /
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
x-movieads-udata: cache,parsed,268042
x-movieads-referrer: https://hd29.lordsfilm.cfd/
x-cache-source: Rist
x-movieads-mrc: no
x-movieads-ref: {"Scheme":"https","Opaque":"","User":null,"Host":"hd29.lordsfilm.cfd","Path":"/","RawPath":"","OmitHost":false,"ForceQuery":false,"RawQuery":"","Fragment":"","RawFragment":""}
set-cookie: 680rmads=1715366011; max-age=31536000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.alfasense.net/lib/alfadart.lib.min.js
136.144.31.36200 OK 17 kB URL GET HTTP/2 cdn.alfasense.net/lib/alfadart.lib.min.js
IP 136.144.31.36:443
ASN #52000 MIRhosting B.V.
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.net
Fingerprint15:61:D7:BD:E9:E1:37:36:5F:FD:47:F7:69:F7:5E:53:CD:95:A9:59
ValidityWed, 22 Nov 2023 16:23:03 GMT - Mon, 23 Dec 2024 16:23:02 GMT
File type gzip compressed data, max speed, from Unix
Hash e2da4ed77882740077396912fee0a731
fdcad8f524de03896fe5a01b5a3a19290d223b07
796d5b5a50b83b297cafa99c8514b636b47b89cf3ff92fc6fb0a058a58d41869
GET /lib/alfadart.lib.min.js HTTP/1.1
Host: cdn.alfasense.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:32 GMT
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 10:46:13 GMT
etag: W/"6620f9f5-8dfa"
content-security-policy: frame-ancestors 'none';frame-src 'self';
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
permissions-policy: geolocation=(self), payment=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block;
cache-control: public, max-age=60
content-encoding: gzip
set-cookie: route=dd92c318b574e2af8018c0207c5098f9; Path=/
SRVGROUP=common; path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
avatars.mds.yandex.net/get-direct/5277145/khz1E7zm9-JQKDoutfIpVA/y180
87.250.247.183200 OK 12 kB URL GET HTTP/2 avatars.mds.yandex.net/get-direct/5277145/khz1E7zm9-JQKDoutfIpVA/y180
IP 87.250.247.183:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.avatars.mds.yandex.net
FingerprintBA:3A:F2:3D:C9:8F:4B:5C:E1:4D:48:8E:47:FD:3B:F8:C3:BE:0A:A2
ValidityWed, 20 Mar 2024 15:21:04 GMT - Sun, 20 Oct 2024 15:21:04 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x180, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 89c0527a883c0317b59971310fe707ec
22c7d648fdf374bf8c1daf7c102d78ba2413decd
a5c5ab5ede9c6ae1de5db1160290d7680643a9a309bf8c3a013de7c56be4bc7b
GET /get-direct/5277145/khz1E7zm9-JQKDoutfIpVA/y180 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:32 GMT
content-type: image/webp
content-length: 11838
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Mon, 27 Nov 2023 13:51:44 GMT
cache-control: max-age=31536000,immutable
x-request-id: 5d70bb72e0161c3f
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=KLG"}]}
X-Firefox-Spdy: h2
favicon.yandex.net/favicon/waterfront-property.abu-dhabi.realestate?size=32&stub=2
87.250.250.36200 Ok 892 B URL GET HTTP/1.1 favicon.yandex.net/favicon/waterfront-property.abu-dhabi.realestate?size=32&stub=2
IP 87.250.250.36:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subjectfavicon.yandex.net
Fingerprint69:4F:28:6E:6D:D5:C4:0F:E7:EE:1A:32:9B:08:6D:59:90:38:64:E0
ValidityWed, 06 Mar 2024 21:01:39 GMT - Mon, 05 Aug 2024 20:59:59 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Hash acb19740bfc8d59501df005c48f817c6
74f8b3c1d96f127224d81e71468499a6d47f3f49
97bf903d9dbf559ef5b9a4f9665b1c236db12754fb8b0c3cd8dffc31bf9c95fe
GET /favicon/waterfront-property.abu-dhabi.realestate?size=32&stub=2 HTTP/1.1
Host: favicon.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 Ok
Cache-Control: max-age=691200
Content-Type: image/png
Transfer-Encoding: chunked
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
access-control-allow-origin: *
favicon.yandex.net/favicon/ohana-villas.ae?size=32&stub=2
87.250.250.36200 Ok 892 B URL GET HTTP/1.1 favicon.yandex.net/favicon/ohana-villas.ae?size=32&stub=2
IP 87.250.250.36:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subjectfavicon.yandex.net
Fingerprint69:4F:28:6E:6D:D5:C4:0F:E7:EE:1A:32:9B:08:6D:59:90:38:64:E0
ValidityWed, 06 Mar 2024 21:01:39 GMT - Mon, 05 Aug 2024 20:59:59 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Hash acb19740bfc8d59501df005c48f817c6
74f8b3c1d96f127224d81e71468499a6d47f3f49
97bf903d9dbf559ef5b9a4f9665b1c236db12754fb8b0c3cd8dffc31bf9c95fe
GET /favicon/ohana-villas.ae?size=32&stub=2 HTTP/1.1
Host: favicon.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 Ok
Cache-Control: max-age=691200
Content-Type: image/png
Transfer-Encoding: chunked
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Yandex-Req-Id: 1715366012348647-413180860398299453100165-production-app-host-vla-favicon-17
access-control-allow-origin: *
s.myangular.life/ws?ref_id=13835
144.76.194.2 0 B URL s.myangular.life/ws?ref_id=13835
IP 144.76.194.2:0
ASN #24940 Hetzner Online GmbH
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint49:29:7B:E4:AA:2F:8B:1B:40:C9:EB:26:F2:8A:38:C0:BB:63:42:42
ValidityFri, 05 Apr 2024 00:00:00 GMT - Tue, 06 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws?ref_id=13835 HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://hd29.lordsfilm.cfd
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: X2nbqbv0rq+wSl/2UzLuwA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 10 May 2024 18:33:32 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: h/5qZgapgSYNNkMaS5tBrYroxfw=
avatars.mds.yandex.net/get-direct/3950780/HeaOy5FCOWAJgf6_rpKMcA/x180
87.250.247.183 7.1 kB URL avatars.mds.yandex.net/get-direct/3950780/HeaOy5FCOWAJgf6_rpKMcA/x180
IP 87.250.247.183:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 180x180, Scaling: [none]x[none], YUV color, decoders should clamp
Hash ac58871948cab154560dabcbbdaa16d5
76a7d917ed4d5b48909cb8d0920724e6d07db1ab
0fa544ce3e36c8b31752eff231cb58035617b8a2e0a766bd826f8ac9a19630ae
GET /get-direct/3950780/HeaOy5FCOWAJgf6_rpKMcA/x180 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:32 GMT
content-type: image/webp
content-length: 7102
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Wed, 24 Jan 2024 08:00:57 GMT
cache-control: max-age=31536000,immutable
x-request-id: 13c595927060be8b
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=KLG"}]}
X-Firefox-Spdy: h2
ccd775fe-0efb-11ef-9b7b-002590c82436.n2.sync.bumlam.com/?src=sape
94.141.105.125302 Found 0 B URL GET HTTP/2 ccd775fe-0efb-11ef-9b7b-002590c82436.n2.sync.bumlam.com/?src=sape
IP 94.141.105.125:443
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.n1.sync.bumlam.com
Fingerprint56:15:00:9D:2E:AA:5A:76:1C:B1:0B:D1:55:0B:30:25:EA:DA:C9:FA
ValidityTue, 12 Mar 2024 12:36:27 GMT - Mon, 10 Jun 2024 12:36:26 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: ccd775fe-0efb-11ef-9b7b-002590c82436.n2.sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRjY2Q3NzVmZS0wZWZiLTExZWYtOWI3Yi0wMDI1OTBjODI0MzY*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.25.3
date: Fri, 10 May 2024 18:33:32 GMT
content-length: 0
location: https://pix.bumlam.com/sync/sape/done
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
X-Firefox-Spdy: h2
favicon.yandex.net/favicon/xbanking.org?size=32&stub=2
87.250.250.36 1.4 kB URL favicon.yandex.net/favicon/xbanking.org?size=32&stub=2
IP 87.250.250.36:0
Certificate IssuerGlobalSign nv-sa
Subjectfavicon.yandex.net
Fingerprint69:4F:28:6E:6D:D5:C4:0F:E7:EE:1A:32:9B:08:6D:59:90:38:64:E0
ValidityWed, 06 Mar 2024 21:01:39 GMT - Mon, 05 Aug 2024 20:59:59 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Hash 69d888e470a8d895ef1c2b14ae5113e2
070e3db843bb389d19e2e6844f98c970a86cb09c
f4263e0c628eb2150349c60143fe71b257657e0c818862911f867aaa2be555f5
GET /favicon/xbanking.org?size=32&stub=2 HTTP/1.1
Host: favicon.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 Ok
Cache-Control: max-age=691200
Content-Type: image/png
Transfer-Encoding: chunked
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Yandex-Req-Id: 1715366012367079-1495919124653616099200165-production-app-host-vla-favicon-17
access-control-allow-origin: *
match.qtarget.tech/userbind?src=sape&id=0A00007F78683E66A3377A430294F148
95.163.92.180204 No Content 0 B URL GET HTTP/1.1 match.qtarget.tech/userbind?src=sape&id=0A00007F78683E66A3377A430294F148
IP 95.163.92.180:443
ASN #12695 LLC Digital Network
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subjectdsp.qtarget.tech
Fingerprint24:73:C6:BB:59:50:7A:E0:31:C6:8F:43:2D:DD:E3:63:4A:F7:F7:24
ValiditySun, 11 Feb 2024 18:29:31 GMT - Sat, 11 May 2024 18:29:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: match.qtarget.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Fri, 10 May 2024 18:33:32 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
match.qtarget.tech/userbind?src=sape&id=0A00007F78683E66A3377A430294F148
95.163.92.180204 No Content 0 B URL GET HTTP/1.1 match.qtarget.tech/userbind?src=sape&id=0A00007F78683E66A3377A430294F148
IP 95.163.92.180:443
ASN #12695 LLC Digital Network
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subjectdsp.qtarget.tech
Fingerprint24:73:C6:BB:59:50:7A:E0:31:C6:8F:43:2D:DD:E3:63:4A:F7:F7:24
ValiditySun, 11 Feb 2024 18:29:31 GMT - Sat, 11 May 2024 18:29:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: match.qtarget.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Fri, 10 May 2024 18:33:32 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
img.zcvh.net/660786/desktop/thumb-1.webp
162.55.240.45200 OK 150 kB URL GET HTTP/1.1 img.zcvh.net/660786/desktop/thumb-1.webp
IP 162.55.240.45:443
ASN #24940 Hetzner Online GmbH
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.zcvh.net
Fingerprint08:8E:52:FF:8C:DF:78:D6:DB:E3:17:03:8C:D8:2B:9D:C8:2B:51:EE
ValidityTue, 19 Mar 2024 05:01:53 GMT - Mon, 17 Jun 2024 05:01:52 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1600x900, Scaling: [none]x[none], YUV color, decoders should clamp
Size 150 kB (149550 bytes)
Hash 24e0c6ccc50e1518af1f84d52f046a23
3bd249d28f12da33ce4b972352f782908b96dd00
82b313c591c181275b1a210ef466386906f9f518abbc8b22887642c27565c52c
GET /660786/desktop/thumb-1.webp HTTP/1.1
Host: img.zcvh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:32 GMT
Content-Type: image/webp
Content-Length: 149550
Last-Modified: Mon, 05 Sep 2022 06:29:48 GMT
Connection: keep-alive
ETag: "6315975c-2482e"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
pix.bumlam.com/sync/sape/done
31.172.81.159 43 B URL pix.bumlam.com/sync/sape/done
IP 31.172.81.159:0
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint9F:E0:4A:B3:57:B0:3C:3E:13:7F:9F:FF:82:A2:91:87:45:9F:A4:7F
ValidityThu, 28 Mar 2024 09:09:43 GMT - Wed, 26 Jun 2024 09:09:42 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sync/sape/done HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRjY2Q3NzVmZS0wZWZiLTExZWYtOWI3Yi0wMDI1OTBjODI0MzY*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:32 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
endpoints.dochase.com/?seat=evxGM8Wybgk6hDa9lZoy&token=ggVl8a4pY8KlsunXQ24YAedeD25lKPrm&cb=1715366011.6917527&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&ip=192.168.110.144%3A2644&w=400&h=225&url=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&domain=hd29.lordsfilm.cfd&cat=324&ref=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&maxduration=40&minduration=1&playerwidth=400&playerheight=225&publisher_id=db9ba236-c350-1fc9-7056-779fe5c218f8
8.2.109.53 21 B URL endpoints.dochase.com/?seat=evxGM8Wybgk6hDa9lZoy&token=ggVl8a4pY8KlsunXQ24YAedeD25lKPrm&cb=1715366011.6917527&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&ip=192.168.110.144%3A2644&w=400&h=225&url=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&domain=hd29.lordsfilm.cfd&cat=324&ref=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&maxduration=40&minduration=1&playerwidth=400&playerheight=225&publisher_id=db9ba236-c350-1fc9-7056-779fe5c218f8
IP 8.2.109.53:0
File type ASCII text, with no line terminators
Hash 13ac7a47804f191f7cbe9b50641403d8
32f847ad3e7ef2388d22268a5164b46cae07e593
64a76d85490bf923477d715fb998da7a59c66988a645d080e2436f40cb3190f6
GET /?seat=evxGM8Wybgk6hDa9lZoy&token=ggVl8a4pY8KlsunXQ24YAedeD25lKPrm&cb=1715366011.6917527&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&ip=192.168.110.144%3A2644&w=400&h=225&url=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&domain=hd29.lordsfilm.cfd&cat=324&ref=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&maxduration=40&minduration=1&playerwidth=400&playerheight=225&publisher_id=db9ba236-c350-1fc9-7056-779fe5c218f8 HTTP/1.1
Host: endpoints.dochase.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:32 GMT
Content-Type: text/xml
Content-Length: 21
Connection: keep-alive
Access-Control-Allow-Origin: https://hd29.lordsfilm.cfd
Access-Control-Allow-Credentials: true
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
X-Frame-Options: DENY
code.moviead55.ru/vast2?key=16ee33f0a2b397c4a1f1ab6636599ac9&sid=autoplay&cp.adsource=Dhs_out_g3&cp.adtype=pre&vt=100&fp=[fp]&w=400&h=225&vid=&fpro=&suri=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&rdd1=true&cp.referer=https%253A%252F%252Fhd29.lordsfilm.cfd%252Fserialy%252F22494-avanpost-2020-25-3-21.html&cp.cb=1c0f5eae-921f-24ac-0270-9c4b4c04efae
193.200.65.144200 OK 11 kB URL GET HTTP/2 code.moviead55.ru/vast2?key=16ee33f0a2b397c4a1f1ab6636599ac9&sid=autoplay&cp.adsource=Dhs_out_g3&cp.adtype=pre&vt=100&fp=[fp]&w=400&h=225&vid=&fpro=&suri=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&rdd1=true&cp.referer=https%253A%252F%252Fhd29.lordsfilm.cfd%252Fserialy%252F22494-avanpost-2020-25-3-21.html&cp.cb=1c0f5eae-921f-24ac-0270-9c4b4c04efae
IP 193.200.65.144:443
ASN #6681 Giveme Cloud Sp Z O O
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9
ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
File type gzip compressed data, from Unix
Hash 3ded111df33727f3be75bc6295b83c70
113cd38c3dff78f041e9659a94d303249eafd880
6e86fe2dbb721a811c8b02d82c53e583f527badf5f1a05173a83fe42d55cb82c
GET /vast2?key=16ee33f0a2b397c4a1f1ab6636599ac9&sid=autoplay&cp.adsource=Dhs_out_g3&cp.adtype=pre&vt=100&fp=[fp]&w=400&h=225&vid=&fpro=&suri=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&rdd1=true&cp.referer=https%253A%252F%252Fhd29.lordsfilm.cfd%252Fserialy%252F22494-avanpost-2020-25-3-21.html&cp.cb=1c0f5eae-921f-24ac-0270-9c4b4c04efae HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8; hbrdcookie2=24b66973447526a89442; otclkbid=VU0cO9fZFTbYzyf; ohmybid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0; bzcookie=2c2c08ce-a0bc-471c-7f40-2a2ad1719ee4; 680rmads=1715366011
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/xml;charset=UTF-8
vary: Accept-Encoding
x-movieads-cors-qex: Referer
x-movieads-path: /
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
x-movieads-udata: cache,parsed,213814
x-movieads-referrer: https://hd29.lordsfilm.cfd/
x-cache-source: Rist
x-movieads-mrc: no
x-movieads-ref: {"Scheme":"https","Opaque":"","User":null,"Host":"hd29.lordsfilm.cfd","Path":"/","RawPath":"","OmitHost":false,"ForceQuery":false,"RawQuery":"","Fragment":"","RawFragment":""}
set-cookie: 754rmads=1715366011; max-age=31536000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
cs.alfasense.com/pixeljs
23.111.100.20 6.0 kB IP 23.111.100.20:0
ASN #39134 Edinaya Set Limited Liability Company
File type JavaScript source, ASCII text, with very long lines (5963), with no line terminators
Hash 16aabea10c93998048b92f19e475a5b4
4d2dfe7a5791135b44c273313ac3d60514d1bf6b
8daeba08708b82ffd1fd82276a117cf7bfcc69d759f91881dae6b56c4e06819c
GET /pixeljs HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Type: application/javascript
Content-Length: 5963
Connection: keep-alive
Server: fasthttp
Set-Cookie: uuid=14852013-189a-45f9-9b4a-01ed61020866; expires=Thu, 01 May 2025 18:33:33 GMT; domain=alfasense.com; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
ssp.al-adtech.com/api/sync/alfadart?skipme=14852013-189a-45f9-9b4a-01ed61020866
45.139.25.122 0 B URL ssp.al-adtech.com/api/sync/alfadart?skipme=14852013-189a-45f9-9b4a-01ed61020866
IP 45.139.25.122:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync/alfadart?skipme=14852013-189a-45f9-9b4a-01ed61020866 HTTP/1.1
Host: ssp.al-adtech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: afp_cookie=gAAAAABmPmh741yaqnw3QMPZhP8pFuwutadlFY900LbSJA1fg535B0VV12FOb4qdyNWTDBSNHc-Ii4Y1T8P6-D28Qjp84BDnj7NS7mLub4eVXOk1cjh3V2Adqa4bl04mSCBO5NZSab5bvSfJvUPqdnogpwjrlUn_oVHkn0gASTm6qs2CBv6PsL012Iez1Xv1mUromSoxw7ec_-GmnkLYb4ALMFJbOTfWNg==$
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.20.1
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin:
Access-Control-Allow-Credentials: true
Location: https://cs.alfasense.com/p?ssp=al&id=53554c26-8043-4e65-be79-a6572b385504
Set-Cookie: afp_cookie=gAAAAABmPmh9UN1T0Xagt6VxHamnKSTlsuLR-mpZb_QT_NMMnCC8F42dCDz5W80jtfuVMRAB9o2VRnmS7YoezaMM-7-wVJjApYA5ykSvhKvIiXg0xEh-mG1N_bxgEwLr508r5DIvtF_vjkjojP2zdnxcoy-MsqFKW9i1K4nqSjsvnekrS2jc4kIfy0gIYqEGqdmgY0iB1INFXQtrDKqsboB50J6txPbWrQqjGF3e6Mb2Z9-mRvxruIY=$; expires=Mon, 10 Jun 2024 18:33:33 GMT; path=/; secure; SameSite=None
exchange.buzzoola.com/cookiesync/redirect?skip2=14852013-189a-45f9-9b4a-01ed61020866&redirect_url=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dbz%26uid%3D%24%7BUUID%7D
167.235.33.115302 Found 101 B URL GET HTTP/2 exchange.buzzoola.com/cookiesync/redirect?skip2=14852013-189a-45f9-9b4a-01ed61020866&redirect_url=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dbz%26uid%3D%24%7BUUID%7D
IP 167.235.33.115:443
ASN #24940 Hetzner Online GmbH
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type HTML document, ASCII text
Hash 9e6c7ff5ba9c01942c839b8cf6e3166a
f655fd5e6a416ea2749f0c3a8ae9c6e282c13af7
e0785c634b418017bd7d7b77ee195d6fa417a0ba2631f3e11d46dee28c0f56e2
GET /cookiesync/redirect?skip2=14852013-189a-45f9-9b4a-01ed61020866&redirect_url=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dbz%26uid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: uuid=4006181c-206d-4f95-5d62-b093d7d4ae2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 10 May 2024 18:33:31 GMT
content-type: text/html; charset=utf-8
content-length: 101
location: https://cs.alfasense.com/p?ssp=bz&uid=4006181c-206d-4f95-5d62-b093d7d4ae2f
serverid: TODO
X-Firefox-Spdy: h2
sync.upravel.com/alfadart/sync?uid=14852013-189a-45f9-9b4a-01ed61020866
195.201.194.16 0 B URL sync.upravel.com/alfadart/sync?uid=14852013-189a-45f9-9b4a-01ed61020866
IP 195.201.194.16:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /alfadart/sync?uid=14852013-189a-45f9-9b4a-01ed61020866 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: session_tptc=1715366010832; user_id=41258f9a-29ab-460a-a74b-7836a244d1ad
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 10 May 2024 18:33:33 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=41258f9a-29ab-460a-a74b-7836a244d1ad;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=41258f9a-29ab-460a-a74b-7836a244d1ad;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://cs.alfasense.com/p?ssp=up&id=41258f9a-29ab-460a-a74b-7836a244d1ad
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
yandex.ru/ads/trace?pcodever=1021761
5.255.255.77 43 B URL yandex.ru/ads/trace?pcodever=1021761
IP 5.255.255.77:0
Certificate IssuerGlobalSign nv-sa
Subject*.xn--d1acpjx3f.xn--p1ai
Fingerprint17:FB:0C:B6:3F:7F:A5:4C:41:AD:D0:5C:6B:9A:96:47:FE:AF:C8:5C
ValidityMon, 04 Mar 2024 10:29:07 GMT - Sun, 01 Sep 2024 20:59:59 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
POST /ads/trace?pcodever=1021761 HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 238
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
access-control-allow-origin: *
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
x-yandex-req-id: 1715366012547056-5811035568896652814-balancer-l7leveler-kubr-yp-vla-17-BAL
set-cookie: i=d2dNYSY3f3JlcQKAcw1wLkYojclE47eukYGspszA0kCudlHIC8So33ye74svS24JuUf4dJS/DOk90ucUp8uxbShHiPA=; Expires=Sun, 10-May-2026 18:33:32 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=6966528141715366012; Expires=Sun, 10-May-2026 18:33:32 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yashr=508669071715366012; Path=/; Domain=.yandex.ru; Expires=Sat, 10 May 2025 18:33:32 GMT; SameSite=None; Secure; HttpOnly
receive-cookie-deprecation=1; Path=/; Domain=.yandex.ru; Expires=Sat, 10 May 2025 18:33:32 GMT; SameSite=None; Secure; HttpOnly; Partitioned
X-Firefox-Spdy: h2
sync.programmatica.com/match/Alfasense?id=14852013-189a-45f9-9b4a-01ed61020866
158.160.128.78 43 B URL sync.programmatica.com/match/Alfasense?id=14852013-189a-45f9-9b4a-01ed61020866
IP 158.160.128.78:0
ASN #200350 Yandex.Cloud LLC
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/Alfasense?id=14852013-189a-45f9-9b4a-01ed61020866 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 18:33:33 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
s.uuidksinc.net/match/1215/?remote_uid=14852013-189a-45f9-9b4a-01ed61020866
31.220.27.135 0 B URL s.uuidksinc.net/match/1215/?remote_uid=14852013-189a-45f9-9b4a-01ed61020866
IP 31.220.27.135:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/1215/?remote_uid=14852013-189a-45f9-9b4a-01ed61020866 HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: jcsuuid=ty2aRwsG1WRK40YuCfkg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.23.2
date: Fri, 10 May 2024 18:33:33 GMT
content-length: 0
location: https://cs.alfasense.com/p?ssp=kd&uid=ty2aRwsG1WRK40YuCfkg
set-cookie: jcsuuid=ty2aRwsG1WRK40YuCfkg; expires=Sat, 10 May 2025 18:33:33 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/rmatch?dp=185&euid=14852013-189a-45f9-9b4a-01ed61020866&r=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dsp%26uid%3D%24%7BUSER_ID%7D
193.3.184.16302 Found 154 B URL GET HTTP/2 www.acint.net/rmatch?dp=185&euid=14852013-189a-45f9-9b4a-01ed61020866&r=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dsp%26uid%3D%24%7BUSER_ID%7D
IP 193.3.184.16:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1
ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=185&euid=14852013-189a-45f9-9b4a-01ed61020866&r=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dsp%26uid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009; cSyncDp7v3=1715366011; cSyncDp241v2=1715366011
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Fri, 10 May 2024 18:33:33 GMT
content-type: text/html
content-length: 154
location: https://cs.alfasense.com/p?ssp=sp&uid=0A00007F78683E66A3377A430294F148
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.dmp.otm-r.com/match/alfasensor?id=14852013-189a-45f9-9b4a-01ed61020866
195.201.106.117302 Found 92 B URL GET HTTP/2 sync.dmp.otm-r.com/match/alfasensor?id=14852013-189a-45f9-9b4a-01ed61020866
IP 195.201.106.117:443
ASN #24940 Hetzner Online GmbH
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.dmp.otm-r.com
FingerprintC6:A2:9D:82:0D:D1:C1:2D:A4:ED:7F:05:13:52:5B:94:6B:10:58:D6
ValidityMon, 19 Jun 2023 10:50:51 GMT - Sat, 20 Jul 2024 10:50:50 GMT
File type HTML document, ASCII text
Hash 70737345431ffab1614d7e4bc93ab434
614499cb4b0ed73d24ead038f9c1eb582242a0bb
4b3e69596d603eb321e741bfbedc7472db7c71c6b099f4776c1b16145b921a24
GET /match/alfasensor?id=14852013-189a-45f9-9b4a-01ed61020866 HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: mpid=NjYzZTY4NzkwZDBmNGE1Nw==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.15.9
date: Fri, 10 May 2024 18:33:33 GMT
content-type: text/html; charset=utf-8
content-length: 92
access-control-allow-origin: *
location: https://cs.alfasense.com/p?ssp=ot&id=NjYzZTY4NzkwZDBmNGE1Nw%3D%3D
set-cookie: mpid=NjYzZTY4NzkwZDBmNGE1Nw==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
cs.agency2.ru/p?ssp=ai&skipme=14852013-189a-45f9-9b4a-01ed61020866
23.111.107.44301 Moved Permanently 0 B URL GET HTTP/1.1 cs.agency2.ru/p?ssp=ai&skipme=14852013-189a-45f9-9b4a-01ed61020866
IP 23.111.107.44:443
ASN #39134 Edinaya Set Limited Liability Company
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectapi.agency2.ru
Fingerprint02:6A:FB:9D:0A:83:4C:93:CA:FA:19:3D:E7:2F:70:6A:A8:40:97:BE
ValiditySun, 14 Apr 2024 23:34:36 GMT - Sat, 13 Jul 2024 23:34:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=ai&skipme=14852013-189a-45f9-9b4a-01ed61020866 HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: uuid=a6315e40-c43e-4c37-b5f9-230b77e69ad6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://x01.aidata.io/0.gif?pid=7140034&id=a6315e40-c43e-4c37-b5f9-230b77e69ad6
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44
match.qtarget.tech/userbind?src=alfasense&id=14852013-189a-45f9-9b4a-01ed61020866
95.163.92.180 0 B URL match.qtarget.tech/userbind?src=alfasense&id=14852013-189a-45f9-9b4a-01ed61020866
IP 95.163.92.180:0
ASN #12695 LLC Digital Network
Certificate IssuerLet's Encrypt
Subjectdsp.qtarget.tech
Fingerprint24:73:C6:BB:59:50:7A:E0:31:C6:8F:43:2D:DD:E3:63:4A:F7:F7:24
ValiditySun, 11 Feb 2024 18:29:31 GMT - Sat, 11 May 2024 18:29:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=alfasense&id=14852013-189a-45f9-9b4a-01ed61020866 HTTP/1.1
Host: match.qtarget.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
a.adiam.tech/sync?ssp=12&skip=14852013-189a-45f9-9b4a-01ed61020866
188.114.96.1 0 B URL a.adiam.tech/sync?ssp=12&skip=14852013-189a-45f9-9b4a-01ed61020866
IP 188.114.96.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=12&skip=14852013-189a-45f9-9b4a-01ed61020866 HTTP/1.1
Host: a.adiam.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Fri, 10 May 2024 18:33:33 GMT
content-type: text/plain
set-cookie: preadiam=1; Expires=Sun, 09 Jun 2024 20:33:33 GMT; Domain=.adiam.tech; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jfJOw1Nfbd8YiAVIMKbb%2FnlDeeY%2B%2FLsX%2FZjphYMfwYfBsDCIcNxglYSWwWzOnDDYfymehCYUB%2FVgI2ao9JKga2%2BX%2BQ%2FK%2FjwBasxEpOKhGVshH8UIqzi7vXQXCty7yG4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c04af996cb4f1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cs.agency2.ru/p?ssp=al&uid=14852013-189a-45f9-9b4a-01ed61020866
23.111.107.44301 Moved Permanently 0 B URL GET HTTP/1.1 cs.agency2.ru/p?ssp=al&uid=14852013-189a-45f9-9b4a-01ed61020866
IP 23.111.107.44:443
ASN #39134 Edinaya Set Limited Liability Company
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectapi.agency2.ru
Fingerprint02:6A:FB:9D:0A:83:4C:93:CA:FA:19:3D:E7:2F:70:6A:A8:40:97:BE
ValiditySun, 14 Apr 2024 23:34:36 GMT - Sat, 13 Jul 2024 23:34:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=al&uid=14852013-189a-45f9-9b4a-01ed61020866 HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: uuid=a6315e40-c43e-4c37-b5f9-230b77e69ad6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://cs.alfasense.com/p?ssp=a2&uid=a6315e40-c43e-4c37-b5f9-230b77e69ad6
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44
sync.bumlam.com/?src=asense&uid=14852013-189a-45f9-9b4a-01ed61020866
31.172.81.160 43 B URL sync.bumlam.com/?src=asense&uid=14852013-189a-45f9-9b4a-01ed61020866
IP 31.172.81.160:0
File type GIF image data, version 89a, 1 x 1
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /?src=asense&uid=14852013-189a-45f9-9b4a-01ed61020866 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: suuid3=IiRjY2Q3NzVmZS0wZWZiLTExZWYtOWI3Yi0wMDI1OTBjODI0MzY*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Type: image/gif
Content-Length: 43
Connection: close
Set-Cookie: suuid3=IiRjY2Q3NzVmZS0wZWZiLTExZWYtOWI3Yi0wMDI1OTBjODI0MzY*; Path=/; Expires=Thu, 05 May 2044 18:33:33 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
s.alfasrv.com/events/1x1.png?s=106178&e=r&t=p
130.193.42.23200 OK 95 B URL GET HTTP/2 s.alfasrv.com/events/1x1.png?s=106178&e=r&t=p
IP 130.193.42.23:443
ASN #200350 Yandex.Cloud LLC
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasrv.com
Fingerprint4B:8A:22:65:23:10:74:25:5D:40:3B:78:20:8D:F8:82:A4:50:44:90
ValidityTue, 10 Oct 2023 09:20:49 GMT - Sun, 10 Nov 2024 09:20:48 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /events/1x1.png?s=106178&e=r&t=p HTTP/1.1
Host: s.alfasrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 10 May 2024 18:33:33 GMT
content-type: image/png
content-length: 95
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,X-Original-Referer
access-control-allow-credentials: true
cache-control: no-cache,no-store
expires: Tue, 01 Jan 1980 1:00:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
const.uno/id.json?p=5
95.163.84.7200 OK 9 B IP 95.163.84.7:443
ASN #12695 LLC Digital Network
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectconst.uno
Fingerprint35:EC:06:80:32:96:F0:6A:FC:28:93:94:C9:5B:46:E0:84:21:7C:78
ValidityWed, 10 Apr 2024 08:16:01 GMT - Tue, 09 Jul 2024 08:16:00 GMT
Hash 7142df90fded5d00df2c0ba662f9b662
a6847802842e7c15d61b44aae555380a7e2f891e
72d427b7264997760074a94dcc1c9e54ae2c33b05276bfb3cfcd0f5d2d8bba3a
GET /id.json?p=5 HTTP/1.1
Host: const.uno
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Type: application/json
Content-Length: 9
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://hd29.lordsfilm.cfd
v.alfasrv.com/stats/2x2.png?s=106178&e=r&t=p
84.201.179.252200 OK 95 B URL GET HTTP/1.1 v.alfasrv.com/stats/2x2.png?s=106178&e=r&t=p
IP 84.201.179.252:443
ASN #200350 Yandex.Cloud LLC
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasrv.com
Fingerprint4B:8A:22:65:23:10:74:25:5D:40:3B:78:20:8D:F8:82:A4:50:44:90
ValidityTue, 10 Oct 2023 09:20:49 GMT - Sun, 10 Nov 2024 09:20:48 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /stats/2x2.png?s=106178&e=r&t=p HTTP/1.1
Host: v.alfasrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Type: image/png
Content-Length: 95
Connection: keep-alive
Last-Modified: Friday, 10-May-2024 18:33:33 GMT
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
Accept-Ranges: bytes
cdn.alfasense.net/js/ad_11167.js
136.144.31.36200 OK 3.7 kB URL GET HTTP/2 cdn.alfasense.net/js/ad_11167.js
IP 136.144.31.36:443
ASN #52000 MIRhosting B.V.
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.net
Fingerprint15:61:D7:BD:E9:E1:37:36:5F:FD:47:F7:69:F7:5E:53:CD:95:A9:59
ValidityWed, 22 Nov 2023 16:23:03 GMT - Mon, 23 Dec 2024 16:23:02 GMT
File type gzip compressed data, max speed, from Unix
Hash 0708ef4e0593058dc27d09514af6d209
7887d55e5051811973bb1c6a683113c19a16dbc2
0febcd15f8f8782cdfe03d3208ce5d1c82e222ff0e3a128bb5572dbf3f989341
GET /js/ad_11167.js HTTP/1.1
Host: cdn.alfasense.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:32 GMT
content-type: application/javascript
last-modified: Fri, 10 May 2024 04:26:23 GMT
etag: W/"663da1ef-c0d3"
content-security-policy: frame-ancestors 'none';frame-src 'self';
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
permissions-policy: geolocation=(self), payment=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block;
cache-control: public, max-age=60
content-encoding: gzip
set-cookie: route=dd92c318b574e2af8018c0207c5098f9; Path=/
SRVGROUP=common; path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
ads.digitalcaramel.com/css/lordsfilm.top.css
135.181.113.151 661 B URL ads.digitalcaramel.com/css/lordsfilm.top.css
IP 135.181.113.151:0
ASN #24940 Hetzner Online GmbH
File type gzip compressed data, from Unix
Hash aaed4e3e3fda3a3e8a75a076f4602d90
b57efafb919eb04d350a67b61b4238657db3ff37
7e8f292259aaec6a473273b917ce763ce273695b3b2b8a09a22a362d4dc2d6e6
GET /css/lordsfilm.top.css HTTP/1.1
Host: ads.digitalcaramel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 10 May 2024 18:33:25 GMT
content-type: text/css
last-modified: Mon, 01 Apr 2024 08:07:10 GMT
vary: Accept-Encoding
etag: W/"660a6b2e-562"
expires: Fri, 17 May 2024 18:33:25 GMT
cache-control: max-age=604800
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
X-Firefox-Spdy: h2
rtb.segmel.io/als/sync/?uid=14852013-189a-45f9-9b4a-01ed61020866
172.67.181.120204 No Content 0 B URL GET HTTP/2 rtb.segmel.io/als/sync/?uid=14852013-189a-45f9-9b4a-01ed61020866
IP 172.67.181.120:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGoogle Trust Services LLC
Subjectsegmel.io
FingerprintC5:9F:43:6B:5E:EF:D7:64:3C:5D:60:ED:50:F6:0B:8A:E3:E5:F5:E9
ValidityFri, 22 Mar 2024 15:49:08 GMT - Thu, 20 Jun 2024 15:49:07 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /als/sync/?uid=14852013-189a-45f9-9b4a-01ed61020866 HTTP/1.1
Host: rtb.segmel.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Fri, 10 May 2024 18:33:33 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
strict-transport-security: max-age=0; includeSubDomains; preload;
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6Lgdp%2FtNPuLNtxGN1a4%2FnoKfqzYtWHsEy69fuLLRF25x8Os7W6ocKykqwzc7WN1BT%2FEceQtU8gCAO%2Bzx7SOhv3TPxgqEhl8KBj3tuGG0Q6hB7NLkQFyYv8qqQNS%2FY%2FX9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c04b00a8956c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cs.alfasense.com/p?ssp=al&id=53554c26-8043-4e65-be79-a6572b385504
23.111.100.20 35 B URL cs.alfasense.com/p?ssp=al&id=53554c26-8043-4e65-be79-a6572b385504
IP 23.111.100.20:0
ASN #39134 Edinaya Set Limited Liability Company
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=al&id=53554c26-8043-4e65-be79-a6572b385504 HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: uuid=14852013-189a-45f9-9b4a-01ed61020866
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
cs.alfasense.com/p?ssp=up&id=41258f9a-29ab-460a-a74b-7836a244d1ad
23.111.100.20 35 B URL cs.alfasense.com/p?ssp=up&id=41258f9a-29ab-460a-a74b-7836a244d1ad
IP 23.111.100.20:0
ASN #39134 Edinaya Set Limited Liability Company
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=up&id=41258f9a-29ab-460a-a74b-7836a244d1ad HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: uuid=14852013-189a-45f9-9b4a-01ed61020866
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
match.new-programmatic.com/userbind?src=alfasense&id=14852013-189a-45f9-9b4a-01ed61020866
217.65.2.150 0 B URL match.new-programmatic.com/userbind?src=alfasense&id=14852013-189a-45f9-9b4a-01ed61020866
IP 217.65.2.150:0
Certificate IssuerLet's Encrypt
Subjectnew-programmatic.com
FingerprintDC:66:9C:C9:66:1A:E4:EF:2D:CF:20:88:F1:EB:C8:72:0E:CE:CD:2D
ValidityThu, 04 Apr 2024 19:59:41 GMT - Wed, 03 Jul 2024 19:59:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=alfasense&id=14852013-189a-45f9-9b4a-01ed61020866 HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.22.1
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
Location: https://cs.alfasense.com/p?ssp=tg&redir=0&id=
kimberlite.io/rtb/sync/alfasense?u=14852013-189a-45f9-9b4a-01ed61020866
217.199.220.43 0 B URL kimberlite.io/rtb/sync/alfasense?u=14852013-189a-45f9-9b4a-01ed61020866
IP 217.199.220.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/alfasense?u=14852013-189a-45f9-9b4a-01ed61020866 HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: as=hPJ_CGY-aHn5atR4Zj5oeg; f=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsolta%26bid%3DZj5oefMz_HY; n=2; u=Zj5oefMz_HY~v1jAy_97mqpmUNiDU2GPAY4H0zg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: as=hPJ_CGY-aHn5atR4Zj5oejhax-FmPmh9; max-age=604800; samesite=none; httponly; secure
n=3; max-age=30; samesite=none; httponly; secure
location: https://sm.rtb.mts.ru/p?ssp=toptraffic&id=Zj5oefMz_HY
referrer-policy: no-referrer
server-timing: app;srv=0;dur=0.0002
cs.alfasense.com/p?ssp=kd&uid=ty2aRwsG1WRK40YuCfkg
23.111.100.20 35 B URL cs.alfasense.com/p?ssp=kd&uid=ty2aRwsG1WRK40YuCfkg
IP 23.111.100.20:0
ASN #39134 Edinaya Set Limited Liability Company
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=kd&uid=ty2aRwsG1WRK40YuCfkg HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: uuid=14852013-189a-45f9-9b4a-01ed61020866
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
a.utraff.com/sync?ssp=716&skipme=14852013-189a-45f9-9b4a-01ed61020866
104.26.7.189302 Found 0 B URL GET HTTP/2 a.utraff.com/sync?ssp=716&skipme=14852013-189a-45f9-9b4a-01ed61020866
IP 104.26.7.189:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGoogle Trust Services LLC
Subjectutraff.com
Fingerprint33:5E:E6:D1:25:D0:06:4F:AC:56:7F:BD:6C:A7:DD:31:72:25:35:57
ValiditySat, 06 Apr 2024 06:57:44 GMT - Fri, 05 Jul 2024 06:57:43 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=716&skipme=14852013-189a-45f9-9b4a-01ed61020866 HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: preutid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Fri, 10 May 2024 18:33:33 GMT
content-type: text/plain
location: https://a.adsource.tech/sync?id=6f03b51c-b09e-47b8-9567-725c3ff4ffb9&ssp=AdSymphony
set-cookie: preutid=1; Max-Age=0; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Max-Age=0; Domain=.utraff.com; SameSite=None; Secure; Path=/
utid=HekfdpdaRWijdiBgzqINJ9-dOFpOEvppg-1Bfpsa4FGVHtCEaZlNiO6hreOyJB5Va8qChiLbslZjgmskzm2Zwg; Expires=Mon, 08 May 2034 21:33:33 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
utid=HekfdpdaRWijdiBgzqINJ9-dOFpOEvppg-1Bfpsa4FGVHtCEaZlNiO6hreOyJB5Va8qChiLbslZjgmskzm2Zwg; Expires=Mon, 08 May 2034 21:33:33 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PUgv012%2FxxXQdFfH2t%2BJksONatBqihWjLOZ%2FsDtCHzLdaydE5AAbP6YECYvKtCAohABIERTQOP8xigVUdut2U4ndOlDsZ1T6s1hLS4RYOJBw1zoqazGTL2f3gN3UJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c04af6f115696-OSL
X-Firefox-Spdy: h2
cs.alfasense.com/p?ssp=ot&id=NjYzZTY4NzkwZDBmNGE1Nw%3D%3D
23.111.100.20200 OK 35 B URL GET HTTP/1.1 cs.alfasense.com/p?ssp=ot&id=NjYzZTY4NzkwZDBmNGE1Nw%3D%3D
IP 23.111.100.20:443
ASN #39134 Edinaya Set Limited Liability Company
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
FingerprintCB:9E:EC:1E:29:96:7E:71:55:EA:3F:33:4D:45:A2:7D:8D:4B:D9:DE
ValidityWed, 27 Dec 2023 23:14:58 GMT - Mon, 27 Jan 2025 23:14:57 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=ot&id=NjYzZTY4NzkwZDBmNGE1Nw%3D%3D HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: uuid=14852013-189a-45f9-9b4a-01ed61020866
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
cs.alfasense.com/p?ssp=bz&uid=4006181c-206d-4f95-5d62-b093d7d4ae2f
23.111.100.20200 OK 35 B URL GET HTTP/1.1 cs.alfasense.com/p?ssp=bz&uid=4006181c-206d-4f95-5d62-b093d7d4ae2f
IP 23.111.100.20:443
ASN #39134 Edinaya Set Limited Liability Company
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
FingerprintCB:9E:EC:1E:29:96:7E:71:55:EA:3F:33:4D:45:A2:7D:8D:4B:D9:DE
ValidityWed, 27 Dec 2023 23:14:58 GMT - Mon, 27 Jan 2025 23:14:57 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=bz&uid=4006181c-206d-4f95-5d62-b093d7d4ae2f HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: uuid=14852013-189a-45f9-9b4a-01ed61020866
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
ssp-rtb.sape.ru/prebid
193.3.184.217204 No Content 0 B IP 193.3.184.217:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.sape.ru
Fingerprint73:95:22:E3:B6:12:3E:90:3A:10:10:DC:38:ED:28:2D:82:7B:EB:E2
ValidityWed, 10 Apr 2024 03:20:28 GMT - Tue, 09 Jul 2024 03:20:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 2220
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sspuid=CkIDPGY+aHuu5wAgTe+BAgv+8GblufTFQAJWU010RUk+eA0N
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: openresty
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Type: text/html
Connection: keep-alive
Access-Control-Allow-Origin: https://hd29.lordsfilm.cfd
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST
X-YaRequestId: 3d0172904b4640f0a19d89ae84a0973d
X-YaSpanId: 60c9d097cc143876
X-YaTraceId: 7c32b56d1e564f5090debb5d70868cc2
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
ssp-rtb.sape.ru/prebid
193.3.184.215204 No Content 0 B IP 193.3.184.215:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.sape.ru
Fingerprint73:95:22:E3:B6:12:3E:90:3A:10:10:DC:38:ED:28:2D:82:7B:EB:E2
ValidityWed, 10 Apr 2024 03:20:28 GMT - Tue, 09 Jul 2024 03:20:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 2207
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sspuid=CkIDPGY+aHuu5wAgTe+BAgv+8GblufTFQAJWU010RUk+eA0N
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: openresty
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Type: text/html
Connection: keep-alive
Access-Control-Allow-Origin: https://hd29.lordsfilm.cfd
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST
X-YaSpanId: 80116beedd43bc5c
X-YaRequestId: 74e762c0f9fe46b9955595682c28d69a
X-YaTraceId: c4c46121e4ee4ef196b721f78fccd3d9
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
ssp.hybrid.ai/auction/prebid
37.230.131.17204 No Content 0 B URL OPTIONS HTTP/2 ssp.hybrid.ai/auction/prebid
IP 37.230.131.17:443
ASN #200197 Hybrid Adtech Sp.z.o.o.
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /auction/prebid HTTP/1.1
Host: ssp.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://hd29.lordsfilm.cfd/
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Fri, 10 May 2024 18:33:33 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://hd29.lordsfilm.cfd
vary: Origin
p3p: CP='NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC'
server: Hybrid Web Server
X-Firefox-Spdy: h2
ssp.hybrid.ai/auction/prebid
37.230.131.17204 No Content 0 B URL OPTIONS HTTP/2 ssp.hybrid.ai/auction/prebid
IP 37.230.131.17:443
ASN #200197 Hybrid Adtech Sp.z.o.o.
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /auction/prebid HTTP/1.1
Host: ssp.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://hd29.lordsfilm.cfd/
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Fri, 10 May 2024 18:33:33 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://hd29.lordsfilm.cfd
vary: Origin
p3p: CP='NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC'
server: Hybrid Web Server
X-Firefox-Spdy: h2
cs.alfasense.com/p?ssp=a2&uid=a6315e40-c43e-4c37-b5f9-230b77e69ad6
23.111.100.20200 OK 35 B URL GET HTTP/1.1 cs.alfasense.com/p?ssp=a2&uid=a6315e40-c43e-4c37-b5f9-230b77e69ad6
IP 23.111.100.20:443
ASN #39134 Edinaya Set Limited Liability Company
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
FingerprintCB:9E:EC:1E:29:96:7E:71:55:EA:3F:33:4D:45:A2:7D:8D:4B:D9:DE
ValidityWed, 27 Dec 2023 23:14:58 GMT - Mon, 27 Jan 2025 23:14:57 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=a2&uid=a6315e40-c43e-4c37-b5f9-230b77e69ad6 HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: uuid=14852013-189a-45f9-9b4a-01ed61020866
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
cs.alfasense.com/p?ssp=sp&uid=0A00007F78683E66A3377A430294F148
23.111.100.20 35 B URL cs.alfasense.com/p?ssp=sp&uid=0A00007F78683E66A3377A430294F148
IP 23.111.100.20:0
ASN #39134 Edinaya Set Limited Liability Company
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=sp&uid=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: uuid=14852013-189a-45f9-9b4a-01ed61020866
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
ssp.hybrid.ai/auction/prebid
37.230.131.17204 No Content 0 B URL OPTIONS HTTP/2 ssp.hybrid.ai/auction/prebid
IP 37.230.131.17:443
ASN #200197 Hybrid Adtech Sp.z.o.o.
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /auction/prebid HTTP/1.1
Host: ssp.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 322
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: vid=24b66973447526a89442
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Fri, 10 May 2024 18:33:33 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
vary: Origin
p3p: CP='NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC'
server: Hybrid Web Server
X-Firefox-Spdy: h2
ssp.hybrid.ai/auction/prebid
37.230.131.17204 No Content 0 B URL OPTIONS HTTP/2 ssp.hybrid.ai/auction/prebid
IP 37.230.131.17:443
ASN #200197 Hybrid Adtech Sp.z.o.o.
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /auction/prebid HTTP/1.1
Host: ssp.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 320
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: vid=24b66973447526a89442
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Fri, 10 May 2024 18:33:33 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
vary: Origin
p3p: CP='NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC'
server: Hybrid Web Server
X-Firefox-Spdy: h2
v.alfasrv.com/stats/2x2.png?s=106181&e=r&t=p
84.201.179.252 95 B URL v.alfasrv.com/stats/2x2.png?s=106181&e=r&t=p
IP 84.201.179.252:0
ASN #200350 Yandex.Cloud LLC
Certificate IssuerGlobalSign nv-sa
Subject*.alfasrv.com
Fingerprint4B:8A:22:65:23:10:74:25:5D:40:3B:78:20:8D:F8:82:A4:50:44:90
ValidityTue, 10 Oct 2023 09:20:49 GMT - Sun, 10 Nov 2024 09:20:48 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /stats/2x2.png?s=106181&e=r&t=p HTTP/1.1
Host: v.alfasrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Type: image/png
Content-Length: 95
Connection: keep-alive
Last-Modified: Friday, 10-May-2024 18:33:33 GMT
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
Accept-Ranges: bytes
s.alfasrv.com/events/1x1.png?s=106181&e=r&t=p
130.193.42.23200 OK 95 B URL GET HTTP/2 s.alfasrv.com/events/1x1.png?s=106181&e=r&t=p
IP 130.193.42.23:443
ASN #200350 Yandex.Cloud LLC
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasrv.com
Fingerprint4B:8A:22:65:23:10:74:25:5D:40:3B:78:20:8D:F8:82:A4:50:44:90
ValidityTue, 10 Oct 2023 09:20:49 GMT - Sun, 10 Nov 2024 09:20:48 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /events/1x1.png?s=106181&e=r&t=p HTTP/1.1
Host: s.alfasrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 10 May 2024 18:33:33 GMT
content-type: image/png
content-length: 95
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,X-Original-Referer
access-control-allow-credentials: true
cache-control: no-cache,no-store
expires: Tue, 01 Jan 1980 1:00:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
cs.alfasense.com/p?ssp=tg&redir=0&id=
23.111.100.20 0 B URL cs.alfasense.com/p?ssp=tg&redir=0&id=
IP 23.111.100.20:0
ASN #39134 Edinaya Set Limited Liability Company
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=tg&redir=0&id= HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: uuid=14852013-189a-45f9-9b4a-01ed61020866
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://acint.net/cmatch/?dp=14&pi=1647232&skip_it=14852013-189a-45f9-9b4a-01ed61020866
Set-Cookie: wist_ps=; expires=Thu, 01 May 2025 18:33:33 GMT; domain=alfasense.com; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
ssp-rtb.sape.ru/prebid
193.3.184.217204 No Content 0 B IP 193.3.184.217:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.sape.ru
Fingerprint73:95:22:E3:B6:12:3E:90:3A:10:10:DC:38:ED:28:2D:82:7B:EB:E2
ValidityWed, 10 Apr 2024 03:20:28 GMT - Tue, 09 Jul 2024 03:20:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 2299
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sspuid=CkIDPGY+aHuu5wAgTe+BAgv+8GblufTFQAJWU010RUk+eA0N
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: openresty
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Type: text/html
Connection: keep-alive
Access-Control-Allow-Origin: https://hd29.lordsfilm.cfd
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST
X-YaRequestId: 1843595a411d413cb5e2d03b4f98f4a1
X-YaSpanId: c8bbbcf9ac375e6f
X-YaTraceId: 1c48dfaad9ef4377af1c79640054c032
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
ssp.hybrid.ai/auction/prebid
37.230.131.17204 No Content 0 B URL OPTIONS HTTP/2 ssp.hybrid.ai/auction/prebid
IP 37.230.131.17:443
ASN #200197 Hybrid Adtech Sp.z.o.o.
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /auction/prebid HTTP/1.1
Host: ssp.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://hd29.lordsfilm.cfd/
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Fri, 10 May 2024 18:33:33 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://hd29.lordsfilm.cfd
vary: Origin
p3p: CP='NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC'
server: Hybrid Web Server
X-Firefox-Spdy: h2
pbs.alfasense.com/yandex/auction
23.111.119.116204 No Content 0 B URL POST HTTP/1.1 pbs.alfasense.com/yandex/auction
IP 23.111.119.116:443
ASN #39134 Edinaya Set Limited Liability Company
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
FingerprintCB:9E:EC:1E:29:96:7E:71:55:EA:3F:33:4D:45:A2:7D:8D:4B:D9:DE
ValidityWed, 27 Dec 2023 23:14:58 GMT - Mon, 27 Jan 2025 23:14:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /yandex/auction HTTP/1.1
Host: pbs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 272
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: uuid=14852013-189a-45f9-9b4a-01ed61020866
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Date: Fri, 10 May 2024 18:33:33 GMT
Connection: keep-alive
server: adx
x-error: empty candidates
Access-Control-Allow-Origin: https://hd29.lordsfilm.cfd
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.119.116
Content-type: text/xml
pbs.alfasense.com/yandex/auction
23.111.119.116204 No Content 0 B URL POST HTTP/1.1 pbs.alfasense.com/yandex/auction
IP 23.111.119.116:443
ASN #39134 Edinaya Set Limited Liability Company
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
FingerprintCB:9E:EC:1E:29:96:7E:71:55:EA:3F:33:4D:45:A2:7D:8D:4B:D9:DE
ValidityWed, 27 Dec 2023 23:14:58 GMT - Mon, 27 Jan 2025 23:14:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /yandex/auction HTTP/1.1
Host: pbs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 274
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: uuid=14852013-189a-45f9-9b4a-01ed61020866
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Date: Fri, 10 May 2024 18:33:33 GMT
Connection: keep-alive
server: adx
x-error: empty bids
Access-Control-Allow-Origin: https://hd29.lordsfilm.cfd
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.119.116
Content-type: text/xml
ssp.hybrid.ai/auction/prebid
37.230.131.17204 No Content 0 B URL OPTIONS HTTP/2 ssp.hybrid.ai/auction/prebid
IP 37.230.131.17:443
ASN #200197 Hybrid Adtech Sp.z.o.o.
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /auction/prebid HTTP/1.1
Host: ssp.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 322
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: vid=24b66973447526a89442
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Fri, 10 May 2024 18:33:33 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
vary: Origin
p3p: CP='NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC'
server: Hybrid Web Server
X-Firefox-Spdy: h2
acint.net/cmatch/?dp=14&pi=1647232&skip_it=14852013-189a-45f9-9b4a-01ed61020866
193.3.184.16200 OK 43 B URL GET HTTP/2 acint.net/cmatch/?dp=14&pi=1647232&skip_it=14852013-189a-45f9-9b4a-01ed61020866
IP 193.3.184.16:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1
ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /cmatch/?dp=14&pi=1647232&skip_it=14852013-189a-45f9-9b4a-01ed61020866 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009; cSyncDp7v3=1715366011; cSyncDp241v2=1715366011
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 10 May 2024 18:33:34 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
kimberlite.io/rtb/bid/pbjs
217.199.220.43 0 B URL POST kimberlite.io/rtb/bid/pbjs
IP 217.199.220.43:0
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.kimberlite.io
Fingerprint27:9B:57:5F:3C:19:A5:31:A3:1B:E6:A4:8E:CF:2F:73:78:4E:46:C1
ValidityThu, 29 Feb 2024 12:20:14 GMT - Tue, 01 Apr 2025 12:20:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /rtb/bid/pbjs HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 996
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: u=Zj5oefMz_HY~v1jAy_97mqpmUNiDU2GPAY4H0zg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx
Date: Fri, 10 May 2024 18:33:34 GMT
Content-Length: 0
Connection: keep-alive
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
set-cookie: u=Zj5oefMz_HY~v1jAy_97mqpmUNiDU2GPAY4H0zg; path=/; max-age=7776000; samesite=none; httponly; secure
server-timing: app;srv=13;dur=0.3268
static.filmskino.site/hls/trailers/imvqYeRgxNI.mp4/index.m3u8
193.200.65.210 326 B URL static.filmskino.site/hls/trailers/imvqYeRgxNI.mp4/index.m3u8
IP 193.200.65.210:0
ASN #6681 Giveme Cloud Sp Z O O
Hash a462b2c959455a8e2836776142b10eb6
292cf27ff3343079abf527f32b10c459fae66729
2852d40fe2080602bd9726b4f7bab0358af3b0a105c32f5f9647da08a997f3c4
GET /hls/trailers/imvqYeRgxNI.mp4/index.m3u8 HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:34 GMT
Content-Type: application/vnd.apple.mpegurl
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"3a1794b0-f43"
Expires: Sun, 18 Aug 2024 18:33:34 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Content-Encoding: gzip
pbs.alfasense.com/yandex/auction
23.111.100.20204 No Content 0 B URL POST HTTP/1.1 pbs.alfasense.com/yandex/auction
IP 23.111.100.20:443
ASN #39134 Edinaya Set Limited Liability Company
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
FingerprintCB:9E:EC:1E:29:96:7E:71:55:EA:3F:33:4D:45:A2:7D:8D:4B:D9:DE
ValidityWed, 27 Dec 2023 23:14:58 GMT - Mon, 27 Jan 2025 23:14:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /yandex/auction HTTP/1.1
Host: pbs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 273
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: uuid=14852013-189a-45f9-9b4a-01ed61020866
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Date: Fri, 10 May 2024 18:33:34 GMT
Connection: keep-alive
server: adx
x-error: empty candidates
Access-Control-Allow-Origin: https://hd29.lordsfilm.cfd
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Content-type: text/xml
static.filmskino.site/hls/trailers/imvqYeRgxNI.mp4/seg-1-v1-a1.ts
193.200.65.210200 OK 181 kB URL GET HTTP/1.1 static.filmskino.site/hls/trailers/imvqYeRgxNI.mp4/seg-1-v1-a1.ts
IP 193.200.65.210:443
ASN #6681 Giveme Cloud Sp Z O O
Requested by https://videotoday.site/mp_dist/td/trhls.html?v6774352230
Certificate IssuerLet's Encrypt
Subjectstatic.filmskino.site
Fingerprint42:89:E3:B7:17:CB:25:42:1E:CA:AB:31:65:00:AB:EC:5E:99:19:D5
ValidityFri, 05 Apr 2024 07:32:34 GMT - Thu, 04 Jul 2024 07:32:33 GMT
File type MPEG transport stream data
Size 181 kB (180856 bytes)
Hash aa25bf4e641c7ced65a3c9093d8d0ad0
8bffeea040722477379f54ba783ab89a8ba23f8c
c84d8c1f812e74c24648c8b8e7181a81be0f20971997bc77c9ffa9f21deb4b8f
GET /hls/trailers/imvqYeRgxNI.mp4/seg-1-v1-a1.ts HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:34 GMT
Content-Type: video/MP2T
Content-Length: 180856
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Connection: keep-alive
ETag: "3a1794b0-2c278"
Expires: Sun, 18 Aug 2024 18:33:34 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
ssp.otm-r.com/adjson?tz=0&w=970&h=90&domain=hd29.lordsfilm.cfd&l=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&s=38014&cur=RUB&bidid=38bd2eb9a677f658&transactionid=&auctionid=&bidfloor=0
138.201.65.75 2 B URL ssp.otm-r.com/adjson?tz=0&w=970&h=90&domain=hd29.lordsfilm.cfd&l=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&s=38014&cur=RUB&bidid=38bd2eb9a677f658&transactionid=&auctionid=&bidfloor=0
IP 138.201.65.75:0
ASN #24940 Hetzner Online GmbH
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /adjson?tz=0&w=970&h=90&domain=hd29.lordsfilm.cfd&l=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&s=38014&cur=RUB&bidid=38bd2eb9a677f658&transactionid=&auctionid=&bidfloor=0 HTTP/1.1
Host: ssp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: mpid=NjYzZTY4NzkwZDBmNGE1Nw==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.7
date: Fri, 10 May 2024 18:33:34 GMT
content-type: application/javascript
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: mpid=NjYzZTY4NzkwZDBmNGE1Nw==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
vary: Origin
X-Firefox-Spdy: h2
kimberlite.io/rtb/bid/pbjs
217.199.220.44 0 B URL POST kimberlite.io/rtb/bid/pbjs
IP 217.199.220.44:0
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.kimberlite.io
Fingerprint27:9B:57:5F:3C:19:A5:31:A3:1B:E6:A4:8E:CF:2F:73:78:4E:46:C1
ValidityThu, 29 Feb 2024 12:20:14 GMT - Tue, 01 Apr 2025 12:20:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /rtb/bid/pbjs HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 997
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: u=Zj5oefMz_HY~v1jAy_97mqpmUNiDU2GPAY4H0zg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx
Date: Fri, 10 May 2024 18:33:34 GMT
Content-Length: 0
Connection: keep-alive
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
set-cookie: u=Zj5oefMz_HY~v1jAy_97mqpmUNiDU2GPAY4H0zg; path=/; max-age=7776000; samesite=none; httponly; secure
server-timing: app;srv=9;dur=0.2490
static.filmskino.site/hls/trailers/imvqYeRgxNI.mp4/seg-2-v1-a1.ts
193.200.65.210 193 kB URL static.filmskino.site/hls/trailers/imvqYeRgxNI.mp4/seg-2-v1-a1.ts
IP 193.200.65.210:0
ASN #6681 Giveme Cloud Sp Z O O
File type MPEG transport stream data
Size 193 kB (192888 bytes)
Hash f6fbaae987876dc08ef50ba8fa76a1fa
8d3fa5f9655a40e38abf4bff3504638f611d07ac
e00987e7de18798b078ed4ce146e8e93befedb0f00102812749288e5a8b7e73f
GET /hls/trailers/imvqYeRgxNI.mp4/seg-2-v1-a1.ts HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:34 GMT
Content-Type: video/MP2T
Content-Length: 192888
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Connection: keep-alive
ETag: "3a1794b0-2f178"
Expires: Sun, 18 Aug 2024 18:33:34 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
v.alfasrv.com/stats/2x2.png?s=106184&a=fallback&k1=1&k2=1&e=i&t=p&c=0
84.201.179.252 95 B URL v.alfasrv.com/stats/2x2.png?s=106184&a=fallback&k1=1&k2=1&e=i&t=p&c=0
IP 84.201.179.252:0
ASN #200350 Yandex.Cloud LLC
Certificate IssuerGlobalSign nv-sa
Subject*.alfasrv.com
Fingerprint4B:8A:22:65:23:10:74:25:5D:40:3B:78:20:8D:F8:82:A4:50:44:90
ValidityTue, 10 Oct 2023 09:20:49 GMT - Sun, 10 Nov 2024 09:20:48 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /stats/2x2.png?s=106184&a=fallback&k1=1&k2=1&e=i&t=p&c=0 HTTP/1.1
Host: v.alfasrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Fri, 10 May 2024 18:33:34 GMT
Content-Type: image/png
Content-Length: 95
Connection: keep-alive
Last-Modified: Friday, 10-May-2024 18:33:34 GMT
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
Accept-Ranges: bytes
s.alfasrv.com/events/1x1.png?s=106184&a=fallback&k1=1&k2=1&e=i&t=p&c=0
130.193.42.23200 OK 95 B URL GET HTTP/2 s.alfasrv.com/events/1x1.png?s=106184&a=fallback&k1=1&k2=1&e=i&t=p&c=0
IP 130.193.42.23:443
ASN #200350 Yandex.Cloud LLC
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasrv.com
Fingerprint4B:8A:22:65:23:10:74:25:5D:40:3B:78:20:8D:F8:82:A4:50:44:90
ValidityTue, 10 Oct 2023 09:20:49 GMT - Sun, 10 Nov 2024 09:20:48 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /events/1x1.png?s=106184&a=fallback&k1=1&k2=1&e=i&t=p&c=0 HTTP/1.1
Host: s.alfasrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 10 May 2024 18:33:34 GMT
content-type: image/png
content-length: 95
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,X-Original-Referer
access-control-allow-credentials: true
cache-control: no-cache,no-store
expires: Tue, 01 Jan 1980 1:00:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
s.alfasrv.com/events/1x1.png?s=106178&a=fallback&k1=1&k2=1&e=i&t=p&c=0
130.193.42.23200 OK 95 B URL GET HTTP/2 s.alfasrv.com/events/1x1.png?s=106178&a=fallback&k1=1&k2=1&e=i&t=p&c=0
IP 130.193.42.23:443
ASN #200350 Yandex.Cloud LLC
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasrv.com
Fingerprint4B:8A:22:65:23:10:74:25:5D:40:3B:78:20:8D:F8:82:A4:50:44:90
ValidityTue, 10 Oct 2023 09:20:49 GMT - Sun, 10 Nov 2024 09:20:48 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /events/1x1.png?s=106178&a=fallback&k1=1&k2=1&e=i&t=p&c=0 HTTP/1.1
Host: s.alfasrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 10 May 2024 18:33:34 GMT
content-type: image/png
content-length: 95
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,X-Original-Referer
access-control-allow-credentials: true
cache-control: no-cache,no-store
expires: Tue, 01 Jan 1980 1:00:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
v.alfasrv.com/stats/2x2.png?s=106178&a=fallback&k1=1&k2=1&e=i&t=p&c=0
84.201.179.252 95 B URL v.alfasrv.com/stats/2x2.png?s=106178&a=fallback&k1=1&k2=1&e=i&t=p&c=0
IP 84.201.179.252:0
ASN #200350 Yandex.Cloud LLC
Certificate IssuerGlobalSign nv-sa
Subject*.alfasrv.com
Fingerprint4B:8A:22:65:23:10:74:25:5D:40:3B:78:20:8D:F8:82:A4:50:44:90
ValidityTue, 10 Oct 2023 09:20:49 GMT - Sun, 10 Nov 2024 09:20:48 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /stats/2x2.png?s=106178&a=fallback&k1=1&k2=1&e=i&t=p&c=0 HTTP/1.1
Host: v.alfasrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Fri, 10 May 2024 18:33:34 GMT
Content-Type: image/png
Content-Length: 95
Connection: keep-alive
Last-Modified: Friday, 10-May-2024 18:33:34 GMT
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
Accept-Ranges: bytes
s.alfasrv.com/events/1x1.png?s=106181&a=fallback&k1=1&k2=1&e=i&t=p&c=0
130.193.42.23200 OK 95 B URL GET HTTP/2 s.alfasrv.com/events/1x1.png?s=106181&a=fallback&k1=1&k2=1&e=i&t=p&c=0
IP 130.193.42.23:443
ASN #200350 Yandex.Cloud LLC
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasrv.com
Fingerprint4B:8A:22:65:23:10:74:25:5D:40:3B:78:20:8D:F8:82:A4:50:44:90
ValidityTue, 10 Oct 2023 09:20:49 GMT - Sun, 10 Nov 2024 09:20:48 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /events/1x1.png?s=106181&a=fallback&k1=1&k2=1&e=i&t=p&c=0 HTTP/1.1
Host: s.alfasrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 10 May 2024 18:33:34 GMT
content-type: image/png
content-length: 95
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,X-Original-Referer
access-control-allow-credentials: true
cache-control: no-cache,no-store
expires: Tue, 01 Jan 1980 1:00:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
v.alfasrv.com/stats/2x2.png?s=106181&a=fallback&k1=1&k2=1&e=i&t=p&c=0
84.201.179.252200 OK 95 B URL GET HTTP/1.1 v.alfasrv.com/stats/2x2.png?s=106181&a=fallback&k1=1&k2=1&e=i&t=p&c=0
IP 84.201.179.252:443
ASN #200350 Yandex.Cloud LLC
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasrv.com
Fingerprint4B:8A:22:65:23:10:74:25:5D:40:3B:78:20:8D:F8:82:A4:50:44:90
ValidityTue, 10 Oct 2023 09:20:49 GMT - Sun, 10 Nov 2024 09:20:48 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /stats/2x2.png?s=106181&a=fallback&k1=1&k2=1&e=i&t=p&c=0 HTTP/1.1
Host: v.alfasrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Fri, 10 May 2024 18:33:34 GMT
Content-Type: image/png
Content-Length: 95
Connection: keep-alive
Last-Modified: Friday, 10-May-2024 18:33:34 GMT
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
Accept-Ranges: bytes
ssp.bidvol.com/usersync?dspcsid=135&redirect=1&id=14852013-189a-45f9-9b4a-01ed61020866
65.109.65.188302 Found 35 B URL GET HTTP/2 ssp.bidvol.com/usersync?dspcsid=135&redirect=1&id=14852013-189a-45f9-9b4a-01ed61020866
IP 65.109.65.188:443
ASN #24940 Hetzner Online GmbH
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectssp.bidvol.com
Fingerprint34:B1:B5:9C:6B:A0:B1:69:EE:36:11:6C:B8:F9:7A:93:54:67:DF:82
ValidityFri, 03 May 2024 12:01:30 GMT - Thu, 01 Aug 2024 12:01:29 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /usersync?dspcsid=135&redirect=1&id=14852013-189a-45f9-9b4a-01ed61020866 HTTP/1.1
Host: ssp.bidvol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.22.0
date: Fri, 10 May 2024 18:33:36 GMT
x-request-id: abab8ed0-4749-4651-bc9f-82d4c42a7aa5
vary: Origin
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
surrogate-control: no-store
set-cookie: bvuid=xu5he0g57s; Max-Age=2147483647; Domain=.bidvol.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None
bvuid2=xu5he0g57s; Max-Age=2147483647; Domain=.bidvol.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT
location: https://cs.alfasense.com/p?ssp=bv&uid=xu5he0g57s
X-Firefox-Spdy: h2
www.acint.net/match?dp=129&euid=grvd8pvocb
193.3.184.16 43 B URL www.acint.net/match?dp=129&euid=grvd8pvocb
IP 193.3.184.16:0
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1
ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=129&euid=grvd8pvocb HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009; cSyncDp7v3=1715366011; cSyncDp241v2=1715366011
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 10 May 2024 18:33:36 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
cdn.alfasense.net/lib_test/config.js
136.144.31.36 5.4 kB URL cdn.alfasense.net/lib_test/config.js
IP 136.144.31.36:0
ASN #52000 MIRhosting B.V.
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.net
Fingerprint15:61:D7:BD:E9:E1:37:36:5F:FD:47:F7:69:F7:5E:53:CD:95:A9:59
ValidityWed, 22 Nov 2023 16:23:03 GMT - Mon, 23 Dec 2024 16:23:02 GMT
File type gzip compressed data, max speed, from Unix
Hash 4121b7d23b157e27af5edae1ffd6ff96
69b53969d03a6a326231e3b70421179508713b94
9804b98a2081670dc07726f725d2865dba913b4bece37f62c2f3cf47c8ee6b5d
GET /lib_test/config.js HTTP/1.1
Host: cdn.alfasense.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:32 GMT
content-type: application/javascript
last-modified: Mon, 15 Apr 2024 11:58:49 GMT
etag: W/"661d1679-2d1"
content-security-policy: frame-ancestors 'none';frame-src 'self';
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
permissions-policy: geolocation=(self), payment=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block;
cache-control: public, max-age=60
content-encoding: gzip
set-cookie: route=dd92c318b574e2af8018c0207c5098f9; Path=/
SRVGROUP=common; path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
static.moviead55.ru/mp_dist/mstream2.js?v6774352230
172.67.156.18200 OK 55 kB URL GET HTTP/2 static.moviead55.ru/mp_dist/mstream2.js?v6774352230
IP 172.67.156.18:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGoogle Trust Services LLC
Subjectmoviead55.ru
Fingerprint70:2C:A9:4D:65:8C:20:4C:10:D9:25:7E:E1:56:35:6C:F3:D8:35:55
ValidityThu, 14 Mar 2024 18:33:22 GMT - Wed, 12 Jun 2024 18:33:21 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65085), with no line terminators
Hash 892946197b53d7c5441c6abeb862e6d7
549341072fbdb7861f2b4943c8633addee606b28
7900d81e9c6614df52975f0aaf112addd4a32b45a03722ccaaf12e8c15c1d648
GET /mp_dist/mstream2.js?v6774352230 HTTP/1.1
Host: static.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 18:33:28 GMT
content-type: application/javascript
last-modified: Fri, 03 May 2024 13:20:31 GMT
vary: Accept-Encoding
etag: W/"6634e49f-26e80"
x-movieads-country: NO
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-max-age: 1728000
content-encoding: gzip
cache-control: max-age=7200
cf-cache-status: HIT
age: 2578
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vCiIIM9jJpVj0%2FjSyoEDXGZqzMVDvxgAr%2BFyJLka0%2BO%2BavhEQ%2BZYyIj3UBSa02V4cZJfs5zjTI2XS%2BwhdeiSsf%2BRYof6GBttzm0h5bNe2qs3WZc4gzxhTN4reJ8PRCc8X9GoCr%2Fc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c04904f0db518-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=btwcookie&rnd=1715366029
193.200.65.144 0 B URL code.moviead55.ru/go/cinit?cn=btwcookie&rnd=1715366029
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=btwcookie&rnd=1715366029 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8; hbrdcookie2=24b66973447526a89442; otclkbid=VU0cO9fZFTbYzyf; ohmybid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0; bzcookie=2c2c08ce-a0bc-471c-7f40-2a2ad1719ee4; 680rmads=1715366011; 754rmads=1715366011; otmbid=NjYzZTY4NzkwZDBmNGE1Nw==; sapecookie=0A00007F78683E66A3377A430294F148
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 10 May 2024 18:33:49 GMT
content-length: 0
location: https://ads.betweendigital.com/match?bidder_id=34348&callback_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbtwcookie%26bid%3D%24%7BUSER_ID%7D
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=hbrdcookie2&rnd=1715366029
193.200.65.144 0 B URL code.moviead55.ru/go/cinit?cn=hbrdcookie2&rnd=1715366029
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=hbrdcookie2&rnd=1715366029 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8; hbrdcookie2=24b66973447526a89442; otclkbid=VU0cO9fZFTbYzyf; ohmybid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0; bzcookie=2c2c08ce-a0bc-471c-7f40-2a2ad1719ee4; 680rmads=1715366011; 754rmads=1715366011; otmbid=NjYzZTY4NzkwZDBmNGE1Nw==; sapecookie=0A00007F78683E66A3377A430294F148
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:49 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
cdn.alfasense.net/lib/prebid.js
136.144.31.36 85 kB URL cdn.alfasense.net/lib/prebid.js
IP 136.144.31.36:0
ASN #52000 MIRhosting B.V.
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.net
Fingerprint15:61:D7:BD:E9:E1:37:36:5F:FD:47:F7:69:F7:5E:53:CD:95:A9:59
ValidityWed, 22 Nov 2023 16:23:03 GMT - Mon, 23 Dec 2024 16:23:02 GMT
File type JavaScript source, ASCII text, with very long lines (64976)
Hash b3469b924d799a0c0050ebf829d9e826
2ae44417e48d5a925693cf9876e3653ae86dbeb4
7f408604ae1d507f1d29efd9f57e54d6485d03bf5443b56b20a4d8b55a6c2868
GET /lib/prebid.js HTTP/1.1
Host: cdn.alfasense.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:32 GMT
content-type: application/javascript
last-modified: Thu, 14 Mar 2024 10:57:02 GMT
etag: W/"65f2d7fe-37314"
content-security-policy: frame-ancestors 'none';frame-src 'self';
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
permissions-policy: geolocation=(self), payment=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block;
cache-control: public, max-age=60
content-encoding: gzip
set-cookie: route=e7a39e6e3385558e2f6a6a18cac7185b; Path=/
SRVGROUP=common; path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=otmbid&rnd=1715366029
193.200.65.144 0 B URL code.moviead55.ru/go/cinit?cn=otmbid&rnd=1715366029
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=otmbid&rnd=1715366029 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8; hbrdcookie2=24b66973447526a89442; otclkbid=VU0cO9fZFTbYzyf; ohmybid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0; bzcookie=2c2c08ce-a0bc-471c-7f40-2a2ad1719ee4; 680rmads=1715366011; 754rmads=1715366011; otmbid=NjYzZTY4NzkwZDBmNGE1Nw==; sapecookie=0A00007F78683E66A3377A430294F148
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:49 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=bzcookie&rnd=1715366029
193.200.65.144 0 B URL code.moviead55.ru/go/cinit?cn=bzcookie&rnd=1715366029
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=bzcookie&rnd=1715366029 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8; hbrdcookie2=24b66973447526a89442; otclkbid=VU0cO9fZFTbYzyf; ohmybid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0; bzcookie=2c2c08ce-a0bc-471c-7f40-2a2ad1719ee4; 680rmads=1715366011; 754rmads=1715366011; otmbid=NjYzZTY4NzkwZDBmNGE1Nw==; sapecookie=0A00007F78683E66A3377A430294F148
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:49 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
logger.moviead55.ru/logger.php?t=prev_session&c=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&a=&m=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&v=16ee33f0a2b397c4a1f1ab6636599ac9&o=
193.200.65.146 81 B URL logger.moviead55.ru/logger.php?t=prev_session&c=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&a=&m=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&v=16ee33f0a2b397c4a1f1ab6636599ac9&o=
IP 193.200.65.146:0
ASN #6681 Giveme Cloud Sp Z O O
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9
ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash b357a19c87624c7c4d131aeeb4ae677f
c7a9c45fd419815a5ab1998503a9f03514c0e229
497790947d4666760ce38f3c00e852c71fdb66cae849bae8e9ede352719e1581
GET /logger.php?t=prev_session&c=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&a=&m=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&v=16ee33f0a2b397c4a1f1ab6636599ac9&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:49 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=gtnt&rnd=1715366029
193.200.65.144 0 B URL code.moviead55.ru/go/cinit?cn=gtnt&rnd=1715366029
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=gtnt&rnd=1715366029 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8; hbrdcookie2=24b66973447526a89442; otclkbid=VU0cO9fZFTbYzyf; ohmybid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0; bzcookie=2c2c08ce-a0bc-471c-7f40-2a2ad1719ee4; 680rmads=1715366011; 754rmads=1715366011; otmbid=NjYzZTY4NzkwZDBmNGE1Nw==; sapecookie=0A00007F78683E66A3377A430294F148
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 10 May 2024 18:33:49 GMT
content-length: 0
location: https://px.adhigh.net/p/cm/skyadvert?u=db9ba236-c350-1fc9-7056-779fe5c218f8
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=dgm2&rnd=1715366029
193.200.65.144 0 B URL code.moviead55.ru/go/cinit?cn=dgm2&rnd=1715366029
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=dgm2&rnd=1715366029 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8; hbrdcookie2=24b66973447526a89442; otclkbid=VU0cO9fZFTbYzyf; ohmybid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0; bzcookie=2c2c08ce-a0bc-471c-7f40-2a2ad1719ee4; 680rmads=1715366011; 754rmads=1715366011; otmbid=NjYzZTY4NzkwZDBmNGE1Nw==; sapecookie=0A00007F78683E66A3377A430294F148
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 10 May 2024 18:33:49 GMT
content-length: 0
location: https://sync.opendsp.ru/match/MovieAds?id=db9ba236-c350-1fc9-7056-779fe5c218f8
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=otclkbid&rnd=1715366029
193.200.65.144 0 B URL code.moviead55.ru/go/cinit?cn=otclkbid&rnd=1715366029
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=otclkbid&rnd=1715366029 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8; hbrdcookie2=24b66973447526a89442; otclkbid=VU0cO9fZFTbYzyf; ohmybid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0; bzcookie=2c2c08ce-a0bc-471c-7f40-2a2ad1719ee4; 680rmads=1715366011; 754rmads=1715366011; otmbid=NjYzZTY4NzkwZDBmNGE1Nw==; sapecookie=0A00007F78683E66A3377A430294F148
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:49 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
user91471.clients-cdnnow.ru/yasdk/vw.js?v3
185.40.155.13 1.4 kB URL user91471.clients-cdnnow.ru/yasdk/vw.js?v3
IP 185.40.155.13:0
File type JavaScript source, ASCII text
Hash 9c70c316340d8c7c6c397d1e3344f9dc
a79cad66ca62f533d5792c65bac6fccd16a4b78c
26599212888d9e8ecbf08d3d8e896da191d9a2adedb63e9842fede94a6febf49
GET /yasdk/vw.js?v3 HTTP/1.1
Host: user91471.clients-cdnnow.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:23 GMT
content-type: application/javascript
last-modified: Fri, 21 Jul 2023 13:34:19 GMT
vary: Accept-Encoding
etag: W/"64ba895b-12fc"
x-movieads-country: RU
content-encoding: gzip
x-edge-cache: HIT
x-edge-ip: 172.19.32.5
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=gonetbid&rnd=1715366029
193.200.65.144 0 B URL code.moviead55.ru/go/cinit?cn=gonetbid&rnd=1715366029
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=gonetbid&rnd=1715366029 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8; hbrdcookie2=24b66973447526a89442; otclkbid=VU0cO9fZFTbYzyf; ohmybid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0; bzcookie=2c2c08ce-a0bc-471c-7f40-2a2ad1719ee4; 680rmads=1715366011; 754rmads=1715366011; otmbid=NjYzZTY4NzkwZDBmNGE1Nw==; sapecookie=0A00007F78683E66A3377A430294F148
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 10 May 2024 18:33:49 GMT
content-length: 0
location: https://sync.gonet-ads.com/match/SkyAdvert?id=db9ba236-c350-1fc9-7056-779fe5c218f8
x-movieads-country: NO
X-Firefox-Spdy: h2
sp.ohmy.bid/cmf?0.4887962375396686
167.235.14.51 0 B URL sp.ohmy.bid/cmf?0.4887962375396686
IP 167.235.14.51:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cmf?0.4887962375396686 HTTP/1.1
Host: sp.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: uid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0.663e6879.c275143e5c083195
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 10 May 2024 18:33:49 GMT
bidder: bid-16 1.1542.871fc768
access-control-allow-credentials: true
X-Firefox-Spdy: h2
videotoday.site/frndnp.php?ver=1&autoplay=1&v=16ee33f0a2b397c4a1f1ab6636599ac9&cb=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&fclose=false&jh=cpzse3jqpizzc4mfcf1dkpjqqj4o&sth=qp4gn7djcczg455spf1sn3bigwz8r7e&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=476&r=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&frnd=true&maid=88d15f87-d2b9-4930-8d6f-a1aa01b97324&rel=true&rnd=1715366029123&cnt=1
172.67.218.218 31 kB URL videotoday.site/frndnp.php?ver=1&autoplay=1&v=16ee33f0a2b397c4a1f1ab6636599ac9&cb=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&fclose=false&jh=cpzse3jqpizzc4mfcf1dkpjqqj4o&sth=qp4gn7djcczg455spf1sn3bigwz8r7e&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=476&r=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&frnd=true&maid=88d15f87-d2b9-4930-8d6f-a1aa01b97324&rel=true&rnd=1715366029123&cnt=1
IP 172.67.218.218:0
File type ASCII text, with very long lines (65518)
Hash 061b48cab6d315d622dba19d73e3a30e
8440eabf44ed9a68667212461ffa424852013250
4490dd7437af298f8b86a7807574366dd56d52b1c79d4ac06f2475c480d2ad1f
GET /frndnp.php?ver=1&autoplay=1&v=16ee33f0a2b397c4a1f1ab6636599ac9&cb=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&fclose=false&jh=cpzse3jqpizzc4mfcf1dkpjqqj4o&sth=qp4gn7djcczg455spf1sn3bigwz8r7e&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=476&r=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&frnd=true&maid=88d15f87-d2b9-4930-8d6f-a1aa01b97324&rel=true&rnd=1715366029123&cnt=1 HTTP/1.1
Host: videotoday.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:49 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-cache: Yac
x-movieads-country: NO
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ah8jKhG50P%2BGb5cwcl1Gbo0KP0tXjeadMQA6hyoJUGYeUsZ0AufGu0Izl0ocDlkjr%2FyN70QJORY6dxqxvuu61lcbfts6wPVmxjXeryNy9cqcDdIB85vHo9yg9NcU9VtULro%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c05138fae56c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
sync.gonet-ads.com/match/SkyAdvert?id=db9ba236-c350-1fc9-7056-779fe5c218f8
188.42.105.220 43 B URL sync.gonet-ads.com/match/SkyAdvert?id=db9ba236-c350-1fc9-7056-779fe5c218f8
IP 188.42.105.220:0
File type GIF image data, version 89a, 1 x 1
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/SkyAdvert?id=db9ba236-c350-1fc9-7056-779fe5c218f8 HTTP/1.1
Host: sync.gonet-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:49 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
kimberlite.io/rtb/sync/skyadvert?u=db9ba236-c350-1fc9-7056-779fe5c218f8
217.199.220.43 0 B URL kimberlite.io/rtb/sync/skyadvert?u=db9ba236-c350-1fc9-7056-779fe5c218f8
IP 217.199.220.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/skyadvert?u=db9ba236-c350-1fc9-7056-779fe5c218f8 HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: as=hPJ_CGY-aHn5atR4Zj5oejhax-FmPmh9; f=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsolta%26bid%3DZj5oefMz_HY; n=3; u=Zj5oefMz_HY~v1jAy_97mqpmUNiDU2GPAY4H0zg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Fri, 10 May 2024 18:33:50 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
location: https://www.acint.net/cmatch?dp=202&r=https%3A%2F%2Fkimberlite.io%2Frtb%2Fsync%2Fsape%3Fu%3D%24%7BUSER_ID%7D
set-cookie: as=hPJ_CGY-aHk4WsfhZj5ofcxUgDlmPmiN-WrUeGY-aHo; max-age=604800; samesite=none; httponly; secure
f=; max-age=0; samesite=none; httponly; secure
referrer-policy: no-referrer
server-timing: app;srv=9;dur=0.0003
www.acint.net/cmatch?dp=202&r=https%3A%2F%2Fkimberlite.io%2Frtb%2Fsync%2Fsape%3Fu%3D%24%7BUSER_ID%7D
193.3.184.16 43 B URL www.acint.net/cmatch?dp=202&r=https%3A%2F%2Fkimberlite.io%2Frtb%2Fsync%2Fsape%3Fu%3D%24%7BUSER_ID%7D
IP 193.3.184.16:0
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1
ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /cmatch?dp=202&r=https%3A%2F%2Fkimberlite.io%2Frtb%2Fsync%2Fsape%3Fu%3D%24%7BUSER_ID%7D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva; cSyncDp14v6=1715366009; cSyncDp17v2=1715366009; cSyncDp45v5=1715366009; cSyncDp53v5=1715366009; cSyncDp62v2=1715366009; cSyncDp67v3=1715366009; cSyncDp68v3=1715366009; cSyncDp71v2=1715366009; cSyncDp80v2=1715366009; cSyncDp85v2=1715366009; cSyncDp95v4=1715366009; cSyncDp98v3=1715366009; cSyncDp104v2=1715366009; cSyncDp107v2=1715366009; cSyncDp110v3=1715366009; cSyncDp125v4=1715366009; cSyncDp126v3=1715366009; cSyncDp127v2=1715366009; cSyncDp129v2=1715366009; cSyncDp136v3=1715366009; cSyncDp146v2=1715366009; cSyncDp148v2=1715366009; cSyncDp149v3=1715366009; cSyncDp151v2=1715366009; cSyncDp251v1=1715366009; cSyncDp186v2=1715366009; cSyncDp217v2=1715366009; cSyncDp235v2=1715366009; cSyncDp239v2=1715366009; cSyncDp243v2=1715366009; cSyncDp260v2=1715366009; cSyncDp244v2=1715366009; cSyncDp248v2=1715366009; cSyncDp261v1=1715366009; cSyncDp289v2=1715366009; cSyncDp293v1=1715366009; cSyncDp296v2=1715366009; cSyncDp312v1=1715366009; cSyncDp14v4=1715366009; cSyncDp7v3=1715366011; cSyncDp241v2=1715366011
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 10 May 2024 18:33:50 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
code.moviead55.ru/go/jmap?v=16ee33f0a2b397c4a1f1ab6636599ac9&sid=ap&cp.referer=https%253A%252F%252Fhd29.lordsfilm.cfd%252Fserialy%252F22494-avanpost-2020-25-3-21.html&it=1&tq=2&cp.cb=dd7fdfe1-4626-0482-012b-8da23cce21df&session=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&position=pre&vt=100&ostream=true&isp=0&suri=https%253A%252F%252Fhd29.lordsfilm.cfd%252Fserialy%252F22494-avanpost-2020-25-3-21.html&rnd=1715366030572&raw=yes&ma=88d15f87-d2b9-4930-8d6f-a1aa01b97324
193.200.65.144 1.8 kB URL code.moviead55.ru/go/jmap?v=16ee33f0a2b397c4a1f1ab6636599ac9&sid=ap&cp.referer=https%253A%252F%252Fhd29.lordsfilm.cfd%252Fserialy%252F22494-avanpost-2020-25-3-21.html&it=1&tq=2&cp.cb=dd7fdfe1-4626-0482-012b-8da23cce21df&session=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&position=pre&vt=100&ostream=true&isp=0&suri=https%253A%252F%252Fhd29.lordsfilm.cfd%252Fserialy%252F22494-avanpost-2020-25-3-21.html&rnd=1715366030572&raw=yes&ma=88d15f87-d2b9-4930-8d6f-a1aa01b97324
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
File type gzip compressed data, from Unix
Hash bd8bcc238162d9b75038d1f133528688
bd5ba28502fd4bd5c92b75b9166ac4007c03315d
73a68e5ba8351b00b09c9268158d330c0db0ea296257859a00a19dfdfb434a66
GET /go/jmap?v=16ee33f0a2b397c4a1f1ab6636599ac9&sid=ap&cp.referer=https%253A%252F%252Fhd29.lordsfilm.cfd%252Fserialy%252F22494-avanpost-2020-25-3-21.html&it=1&tq=2&cp.cb=dd7fdfe1-4626-0482-012b-8da23cce21df&session=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&position=pre&vt=100&ostream=true&isp=0&suri=https%253A%252F%252Fhd29.lordsfilm.cfd%252Fserialy%252F22494-avanpost-2020-25-3-21.html&rnd=1715366030572&raw=yes&ma=88d15f87-d2b9-4930-8d6f-a1aa01b97324 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8; hbrdcookie2=24b66973447526a89442; otclkbid=VU0cO9fZFTbYzyf; ohmybid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0; bzcookie=2c2c08ce-a0bc-471c-7f40-2a2ad1719ee4; 680rmads=1715366011; 754rmads=1715366011; otmbid=NjYzZTY4NzkwZDBmNGE1Nw==; sapecookie=0A00007F78683E66A3377A430294F148
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:50 GMT
content-type: application/json;charset=UTF-8
vary: Accept-Encoding
x-movieads-cors-qex: Referer
x-movieads-path: /
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
x-go-country: NO
x-movieads-udata: cache,parsed,346406
x-movieads-plc: 0
x-movieads-ark: true
x-movieads-qmc: NO
x-movieads-rdb: 0
x-movieads-alc: 5
x-movieads-ctvs: 5
server-timing: qManager;dur=1.0000, getAnyQueue;dur=0.0000, getJson;dur=0.0000, attachTracking;dur=0.0000, keyValidation;dur=0.0000, optProc;dur=0.0000, range_links;dur=0.0000, validations_776;dur=0.0000, queuesMerge;dur=0.0000, validations_703;dur=0.0000, queueSort;dur=0.0000, corsParams;dur=0.0000, initBuilder;dur=0.0000, buildTagsQueue;dur=1.0000, getLinks;dur=0.0000, jmapParams;dur=0.0000, wmData;dur=0.0000, uData;dur=0.0000
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
static.filmskino.site/hls/trailers/imvqYeRgxNI.mp4/index.m3u8
193.200.65.210 326 B URL static.filmskino.site/hls/trailers/imvqYeRgxNI.mp4/index.m3u8
IP 193.200.65.210:0
ASN #6681 Giveme Cloud Sp Z O O
Hash a462b2c959455a8e2836776142b10eb6
292cf27ff3343079abf527f32b10c459fae66729
2852d40fe2080602bd9726b4f7bab0358af3b0a105c32f5f9647da08a997f3c4
GET /hls/trailers/imvqYeRgxNI.mp4/index.m3u8 HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:52 GMT
Content-Type: application/vnd.apple.mpegurl
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"3a1794b0-f43"
Expires: Sun, 18 Aug 2024 18:33:52 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Content-Encoding: gzip
ads.alfasense.net/adserver/www/delivery/asyncjs.php
136.144.31.29200 OK 185 kB URL GET HTTP/2 ads.alfasense.net/adserver/www/delivery/asyncjs.php
IP 136.144.31.29:443
ASN #52000 MIRhosting B.V.
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.net
Fingerprint15:61:D7:BD:E9:E1:37:36:5F:FD:47:F7:69:F7:5E:53:CD:95:A9:59
ValidityWed, 22 Nov 2023 16:23:03 GMT - Mon, 23 Dec 2024 16:23:02 GMT
Size 185 kB (185307 bytes)
Hash 72d17f40601ed11c88821a441b8f3ade
10eaee4c36934dc10a36a25e46913d611a8daf38
abdbce5a79984266a9aa1cdc2b5b34e874892b8e1af9e2d27f24ed7982cef46a
GET /adserver/www/delivery/asyncjs.php HTTP/1.1
Host: ads.alfasense.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:34 GMT
content-type: text/javascript;charset=UTF-8
etag: 1079f85a6f7f7d83640b17a26d3394d5
expire: Fri, 10 May 2024 19:33:34 GMT
cache-control: private, max-age=3600
p3p: CP="CUR ADM OUR NOR STA NID"
content-security-policy: frame-ancestors 'self';frame-src 'self';
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
permissions-policy: geolocation=(self), payment=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block;
set-cookie: SRVGROUP=common; path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
static.filmskino.site/hls/trailers/imvqYeRgxNI.mp4/seg-2-v1-a1.ts
193.200.65.210 193 kB URL static.filmskino.site/hls/trailers/imvqYeRgxNI.mp4/seg-2-v1-a1.ts
IP 193.200.65.210:0
ASN #6681 Giveme Cloud Sp Z O O
File type MPEG transport stream data
Size 193 kB (192888 bytes)
Hash f6fbaae987876dc08ef50ba8fa76a1fa
8d3fa5f9655a40e38abf4bff3504638f611d07ac
e00987e7de18798b078ed4ce146e8e93befedb0f00102812749288e5a8b7e73f
GET /hls/trailers/imvqYeRgxNI.mp4/seg-2-v1-a1.ts HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:52 GMT
Content-Type: video/MP2T
Content-Length: 192888
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Connection: keep-alive
ETag: "3a1794b0-2f178"
Expires: Sun, 18 Aug 2024 18:33:52 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
ssp.hybrid.ai/auction/prebid
37.230.131.17204 No Content 0 B URL OPTIONS HTTP/2 ssp.hybrid.ai/auction/prebid
IP 37.230.131.17:443
ASN #200197 Hybrid Adtech Sp.z.o.o.
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /auction/prebid HTTP/1.1
Host: ssp.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://hd29.lordsfilm.cfd/
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Fri, 10 May 2024 18:33:53 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://hd29.lordsfilm.cfd
vary: Origin
p3p: CP='NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC'
server: Hybrid Web Server
X-Firefox-Spdy: h2
ssp.hybrid.ai/auction/prebid
37.230.131.17204 No Content 0 B URL OPTIONS HTTP/2 ssp.hybrid.ai/auction/prebid
IP 37.230.131.17:443
ASN #200197 Hybrid Adtech Sp.z.o.o.
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /auction/prebid HTTP/1.1
Host: ssp.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://hd29.lordsfilm.cfd/
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Fri, 10 May 2024 18:33:53 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://hd29.lordsfilm.cfd
vary: Origin
p3p: CP='NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC'
server: Hybrid Web Server
X-Firefox-Spdy: h2
ssp.hybrid.ai/auction/prebid
37.230.131.17204 No Content 0 B URL OPTIONS HTTP/2 ssp.hybrid.ai/auction/prebid
IP 37.230.131.17:443
ASN #200197 Hybrid Adtech Sp.z.o.o.
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /auction/prebid HTTP/1.1
Host: ssp.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 322
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: vid=24b66973447526a89442
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Fri, 10 May 2024 18:33:53 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
vary: Origin
p3p: CP='NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC'
server: Hybrid Web Server
X-Firefox-Spdy: h2
ssp.hybrid.ai/auction/prebid
37.230.131.17204 No Content 0 B URL OPTIONS HTTP/2 ssp.hybrid.ai/auction/prebid
IP 37.230.131.17:443
ASN #200197 Hybrid Adtech Sp.z.o.o.
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /auction/prebid HTTP/1.1
Host: ssp.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 323
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: vid=24b66973447526a89442
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Fri, 10 May 2024 18:33:53 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
vary: Origin
p3p: CP='NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC'
server: Hybrid Web Server
X-Firefox-Spdy: h2
ads-alloha.tv/js/rotator.js?v=1.2
45.95.201.20 0 B URL ads-alloha.tv/js/rotator.js?v=1.2
IP 45.95.201.20:0
ASN #205125 Network Management Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/rotator.js?v=1.2 HTTP/1.1
Host: ads-alloha.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:26 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 12:06:07 GMT
etag: W/"6628f5af-92d8"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
ssp.bidvol.com/usersync?dspcsid=8&redirect=1
65.109.65.188302 Found 0 B URL GET HTTP/2 ssp.bidvol.com/usersync?dspcsid=8&redirect=1
IP 65.109.65.188:443
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subjectssp.bidvol.com
Fingerprint34:B1:B5:9C:6B:A0:B1:69:EE:36:11:6C:B8:F9:7A:93:54:67:DF:82
ValidityFri, 03 May 2024 12:01:30 GMT - Thu, 01 Aug 2024 12:01:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usersync?dspcsid=8&redirect=1 HTTP/1.1
Host: ssp.bidvol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.22.0
date: Fri, 10 May 2024 18:33:36 GMT
x-request-id: 9f830d06-d90b-4aa4-a4bb-cd62584b0cf4
vary: Origin
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
surrogate-control: no-store
set-cookie: bvuid=grvd8pvocb; Max-Age=2147483647; Domain=.bidvol.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None
bvuid2=grvd8pvocb; Max-Age=2147483647; Domain=.bidvol.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT
location: https://www.acint.net/match?dp=129&euid=grvd8pvocb
X-Firefox-Spdy: h2
kimberlite.io/rtb/bid/pbjs
217.199.220.43 0 B URL POST kimberlite.io/rtb/bid/pbjs
IP 217.199.220.43:0
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.kimberlite.io
Fingerprint27:9B:57:5F:3C:19:A5:31:A3:1B:E6:A4:8E:CF:2F:73:78:4E:46:C1
ValidityThu, 29 Feb 2024 12:20:14 GMT - Tue, 01 Apr 2025 12:20:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /rtb/bid/pbjs HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 996
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: u=Zj5oefMz_HY~v1jAy_97mqpmUNiDU2GPAY4H0zg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx
Date: Fri, 10 May 2024 18:33:53 GMT
Content-Length: 0
Connection: keep-alive
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
set-cookie: u=Zj5oefMz_HY~v1jAy_97mqpmUNiDU2GPAY4H0zg; path=/; max-age=7776000; samesite=none; httponly; secure
server-timing: app;srv=8;dur=0.2228
ssp.otm-r.com/adjson?tz=0&w=970&h=90&domain=hd29.lordsfilm.cfd&l=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&s=38014&cur=RUB&bidid=50dfe6db47ca951&transactionid=&auctionid=&bidfloor=0
138.201.65.75 2 B URL ssp.otm-r.com/adjson?tz=0&w=970&h=90&domain=hd29.lordsfilm.cfd&l=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&s=38014&cur=RUB&bidid=50dfe6db47ca951&transactionid=&auctionid=&bidfloor=0
IP 138.201.65.75:0
ASN #24940 Hetzner Online GmbH
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /adjson?tz=0&w=970&h=90&domain=hd29.lordsfilm.cfd&l=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&s=38014&cur=RUB&bidid=50dfe6db47ca951&transactionid=&auctionid=&bidfloor=0 HTTP/1.1
Host: ssp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: mpid=NjYzZTY4NzkwZDBmNGE1Nw==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.7
date: Fri, 10 May 2024 18:33:54 GMT
content-type: application/javascript
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: mpid=NjYzZTY4NzkwZDBmNGE1Nw==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
vary: Origin
X-Firefox-Spdy: h2
vak345.com/s.js?v=16ee33f0a2b397c4a1f1ab6636599ac9
172.67.204.19 2.0 kB URL vak345.com/s.js?v=16ee33f0a2b397c4a1f1ab6636599ac9
IP 172.67.204.19:0
File type JavaScript source, ASCII text, with very long lines (3874)
Hash 994900b23575ab96847bec965f34a4e6
615881de226f04d1fdd6e9bd25092b9daa8084ae
1a22943dba380504d8cc20b9124a097c47554e8ea1652e3374688ed98d95425a
GET /s.js?v=16ee33f0a2b397c4a1f1ab6636599ac9 HTTP/1.1
Host: vak345.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-movieads-country: NO
content-encoding: gzip
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c24d923OBZnPLNta%2Bo4C7pDR%2Fx9DBa5apq%2BKmUL5ntz%2FcmpJkxREYkbkBGp81Ei5iBw6%2BTWqE8Zs4mzN1SWbTOsjecDAvgjjmJ8D4%2BL4L0PQFpi7wjpk5KtUsYoj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c0477cd65568d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ssp-rtb.sape.ru/prebid
193.3.184.217204 No Content 0 B IP 193.3.184.217:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.sape.ru
Fingerprint73:95:22:E3:B6:12:3E:90:3A:10:10:DC:38:ED:28:2D:82:7B:EB:E2
ValidityWed, 10 Apr 2024 03:20:28 GMT - Tue, 09 Jul 2024 03:20:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 2343
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sspuid=CkIDPGY+aHuu5wAgTe+BAgv+8GblufTFQAJWU010RUk+eA0N
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: openresty
Date: Fri, 10 May 2024 18:33:54 GMT
Content-Type: text/html
Connection: keep-alive
Access-Control-Allow-Origin: https://hd29.lordsfilm.cfd
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST
X-YaSpanId: 8f9d1672faf2588f
X-YaRequestId: d9bdd718a87746efad631abdc920dc18
X-YaTraceId: b781887a0d374b28a0b65fe65c0c5cb1
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
ssp.otm-r.com/adjson?tz=0&w=970&h=250&domain=hd29.lordsfilm.cfd&l=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&s=38014&cur=RUB&bidid=68a5fc1a10ee87f8&transactionid=&auctionid=&bidfloor=0
138.201.65.75 2 B URL ssp.otm-r.com/adjson?tz=0&w=970&h=250&domain=hd29.lordsfilm.cfd&l=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&s=38014&cur=RUB&bidid=68a5fc1a10ee87f8&transactionid=&auctionid=&bidfloor=0
IP 138.201.65.75:0
ASN #24940 Hetzner Online GmbH
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /adjson?tz=0&w=970&h=250&domain=hd29.lordsfilm.cfd&l=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&s=38014&cur=RUB&bidid=68a5fc1a10ee87f8&transactionid=&auctionid=&bidfloor=0 HTTP/1.1
Host: ssp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: mpid=NjYzZTY4NzkwZDBmNGE1Nw==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.7
date: Fri, 10 May 2024 18:33:54 GMT
content-type: application/javascript
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: mpid=NjYzZTY4NzkwZDBmNGE1Nw==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
vary: Origin
X-Firefox-Spdy: h2
ssp-rtb.sape.ru/prebid
193.3.184.215204 No Content 0 B IP 193.3.184.215:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.sape.ru
Fingerprint73:95:22:E3:B6:12:3E:90:3A:10:10:DC:38:ED:28:2D:82:7B:EB:E2
ValidityWed, 10 Apr 2024 03:20:28 GMT - Tue, 09 Jul 2024 03:20:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 2301
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sspuid=CkIDPGY+aHuu5wAgTe+BAgv+8GblufTFQAJWU010RUk+eA0N
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: openresty
Date: Fri, 10 May 2024 18:33:54 GMT
Content-Type: text/html
Connection: keep-alive
Access-Control-Allow-Origin: https://hd29.lordsfilm.cfd
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST
X-YaSpanId: f6f5187cf86b853c
X-YaRequestId: 576cba68d62b4f71918c133d215204b4
X-YaTraceId: 2510cddcfb5f4cc3992471f24cfe9b8c
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
ssp.hybrid.ai/auction/prebid
37.230.131.17204 No Content 0 B URL OPTIONS HTTP/2 ssp.hybrid.ai/auction/prebid
IP 37.230.131.17:443
ASN #200197 Hybrid Adtech Sp.z.o.o.
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /auction/prebid HTTP/1.1
Host: ssp.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://hd29.lordsfilm.cfd/
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Fri, 10 May 2024 18:33:54 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://hd29.lordsfilm.cfd
vary: Origin
p3p: CP='NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC'
server: Hybrid Web Server
X-Firefox-Spdy: h2
pbs.alfasense.com/yandex/auction
23.111.100.20204 No Content 0 B URL POST HTTP/1.1 pbs.alfasense.com/yandex/auction
IP 23.111.100.20:443
ASN #39134 Edinaya Set Limited Liability Company
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
FingerprintCB:9E:EC:1E:29:96:7E:71:55:EA:3F:33:4D:45:A2:7D:8D:4B:D9:DE
ValidityWed, 27 Dec 2023 23:14:58 GMT - Mon, 27 Jan 2025 23:14:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /yandex/auction HTTP/1.1
Host: pbs.alfasense.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 271
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: uuid=14852013-189a-45f9-9b4a-01ed61020866; wist_ps=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Date: Fri, 10 May 2024 18:33:54 GMT
Connection: keep-alive
server: adx
x-error: empty candidates
Access-Control-Allow-Origin: https://hd29.lordsfilm.cfd
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Content-type: text/xml
ssp.otm-r.com/adjson?tz=0&w=970&h=90&domain=hd29.lordsfilm.cfd&l=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&s=38014&cur=RUB&bidid=74f434d85bd674b8&transactionid=&auctionid=&bidfloor=0
138.201.65.75 2 B URL ssp.otm-r.com/adjson?tz=0&w=970&h=90&domain=hd29.lordsfilm.cfd&l=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&s=38014&cur=RUB&bidid=74f434d85bd674b8&transactionid=&auctionid=&bidfloor=0
IP 138.201.65.75:0
ASN #24940 Hetzner Online GmbH
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /adjson?tz=0&w=970&h=90&domain=hd29.lordsfilm.cfd&l=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&s=38014&cur=RUB&bidid=74f434d85bd674b8&transactionid=&auctionid=&bidfloor=0 HTTP/1.1
Host: ssp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: mpid=NjYzZTY4NzkwZDBmNGE1Nw==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.7
date: Fri, 10 May 2024 18:33:54 GMT
content-type: application/javascript
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: mpid=NjYzZTY4NzkwZDBmNGE1Nw==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
vary: Origin
X-Firefox-Spdy: h2
code.moviead55.ru/go/bn?key=16ee33f0a2b397c4a1f1ab6636599ac9&cp.adsource=Infin_inf_br&vt=100&w=300&h=250&cp.referer=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&fid=24b95a1b0a8ab4e6&cp.tanc=
193.200.65.144 54 kB URL code.moviead55.ru/go/bn?key=16ee33f0a2b397c4a1f1ab6636599ac9&cp.adsource=Infin_inf_br&vt=100&w=300&h=250&cp.referer=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&fid=24b95a1b0a8ab4e6&cp.tanc=
IP 193.200.65.144:0
ASN #6681 Giveme Cloud Sp Z O O
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65085), with no line terminators
Hash 350f80ecaa795b2f52c0927a47a8c2be
5967bd9eaacbc4401c2077b5cddf5325e43231ab
49f1306afd563b3ba2e3593c1ae7ecdfad93be5fad4ae46b617f30e6c8f9b08c
GET /go/bn?key=16ee33f0a2b397c4a1f1ab6636599ac9&cp.adsource=Infin_inf_br&vt=100&w=300&h=250&cp.referer=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&fid=24b95a1b0a8ab4e6&cp.tanc= HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: sky_uuid=db9ba236-c350-1fc9-7056-779fe5c218f8; hbrdcookie2=24b66973447526a89442; otclkbid=VU0cO9fZFTbYzyf; ohmybid=efcd69e4-0eb0-49c5-9427-a9d4f1f35df0; bzcookie=2c2c08ce-a0bc-471c-7f40-2a2ad1719ee4; 680rmads=1715366011; 754rmads=1715366011; otmbid=NjYzZTY4NzkwZDBmNGE1Nw==; sapecookie=0A00007F78683E66A3377A430294F148
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:44 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
x-movieads-path: /
x-movieads-referrer: https://hd29.lordsfilm.cfd/
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
x-movieads-udata: empty
x-cache-source: Rist
x-movieads-mrc: no
x-movieads-ref: {"Scheme":"https","Opaque":"","User":null,"Host":"hd29.lordsfilm.cfd","Path":"/","RawPath":"","OmitHost":false,"ForceQuery":false,"RawQuery":"","Fragment":"","RawFragment":""}
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
kimberlite.io/rtb/bid/pbjs
217.199.220.43 0 B URL POST kimberlite.io/rtb/bid/pbjs
IP 217.199.220.43:0
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.kimberlite.io
Fingerprint27:9B:57:5F:3C:19:A5:31:A3:1B:E6:A4:8E:CF:2F:73:78:4E:46:C1
ValidityThu, 29 Feb 2024 12:20:14 GMT - Tue, 01 Apr 2025 12:20:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /rtb/bid/pbjs HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 996
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: u=Zj5oefMz_HY~v1jAy_97mqpmUNiDU2GPAY4H0zg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx
Date: Fri, 10 May 2024 18:33:55 GMT
Content-Length: 0
Connection: keep-alive
access-control-allow-credentials: true
access-control-allow-origin: https://hd29.lordsfilm.cfd
set-cookie: u=Zj5oefMz_HY~v1jAy_97mqpmUNiDU2GPAY4H0zg; path=/; max-age=7776000; samesite=none; httponly; secure
server-timing: app;srv=0;dur=0.8284
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
142.250.74.14200 OK 31 B URL POST HTTP/3 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP 142.250.74.14:443
Requested by https://www.youtube.com/embed/8KS5HqEiwLc
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1715366038230
Content-Type: application/json
X-Goog-Visitor-Id: Cgt2cW9TM21yaS1Tayj10PmxBjIOCgJOTxIIEgQSAgsMIG0%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240507.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1715366007417&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C0%2C0%2C0%2C0&vis=1&wgl=true&ca_type=image
Content-Length: 1069
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/8KS5HqEiwLc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Fri, 10 May 2024 18:33:58 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
play.google.com/log?format=json&hasfast=true&authuser=0
142.250.74.14 0 B URL play.google.com/log?format=json&hasfast=true&authuser=0
IP 142.250.74.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Fri, 10 May 2024 18:33:58 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
play.google.com/log?format=json&hasfast=true&authuser=0
142.250.74.14 131 B URL play.google.com/log?format=json&hasfast=true&authuser=0
IP 142.250.74.14:0
Hash ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 1100
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Fri, 10 May 2024 18:33:58 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ssp-rtb.sape.ru/adfoxhb
0.0.0.0 0 B IP 0.0.0.0:0
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /adfoxhb HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1243
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
hd29.lordsfilm.cfd/templates/lordfilm-light/fonts/fontawesome-webfont.woff2?v=4.7.0
104.21.28.116200 OK 77 kB URL GET HTTP/3 hd29.lordsfilm.cfd/templates/lordfilm-light/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /templates/lordfilm-light/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/templates/lordfilm-light/style/engine.css
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:25 GMT
content-type: application/octet-stream
content-length: 77160
last-modified: Thu, 18 Jan 2024 22:01:41 GMT
etag: "65a99fc5-12d68"
expires: Sat, 11 May 2024 16:29:10 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 7455
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PQJROM9Y%2FIKnKxpD0YEBjcJQ29QYxqQTsRCYp%2BFvPvInfQd6KLwumXWmA54yGEf1j4x9BudI3WT1jIzqntPyDS2SEpT2F62DAed7cskKaE5zDVoWsn4v3sErTFSOQQhH2zYC%2B4s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c047c38fd569f-OSL
alt-svc: h3=":443"; ma=86400
ssp.otm-r.com/adjson?tz=0&w=970&h=250&domain=hd29.lordsfilm.cfd&l=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&s=38014&cur=RUB&bidid=24392cc8b835f048&transactionid=&auctionid=&bidfloor=0
0.0.0.0 0 B URL GET ssp.otm-r.com/adjson?tz=0&w=970&h=250&domain=hd29.lordsfilm.cfd&l=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&s=38014&cur=RUB&bidid=24392cc8b835f048&transactionid=&auctionid=&bidfloor=0
IP 0.0.0.0:0
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.otm-r.com
FingerprintDE:D2:E7:8E:11:AC:D8:80:39:F5:5D:C2:86:9D:33:3F:95:71:FA:58
ValidityMon, 19 Jun 2023 10:49:55 GMT - Sat, 20 Jul 2024 10:49:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /adjson?tz=0&w=970&h=250&domain=hd29.lordsfilm.cfd&l=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&s=38014&cur=RUB&bidid=24392cc8b835f048&transactionid=&auctionid=&bidfloor=0 HTTP/1.1
Host: ssp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: mpid=NjYzZTY4NzkwZDBmNGE1Nw==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
www.youtube.com/s/player/17fd9675/www-embed-player.vflset/www-embed-player.js
142.250.74.14200 OK 327 kB URL GET HTTP/3 www.youtube.com/s/player/17fd9675/www-embed-player.vflset/www-embed-player.js
IP 142.250.74.14:443
Requested by https://www.youtube.com/embed/8KS5HqEiwLc
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File type JavaScript source, ASCII text, with very long lines (829)
Size 327 kB (326840 bytes)
Hash aafc3991a4c65c32f11e3e55af0c0acb
c77a8d5a8933d5f4189581f6b9671ff6ec91a2b4
cf3a4809b702abf801ac1d61beea76a0307884338c26c1f970e3cb6bfc0870c6
GET /s/player/17fd9675/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/8KS5HqEiwLc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97304
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 08 May 2024 07:36:21 GMT
expires: Thu, 08 May 2025 07:36:21 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 May 2024 04:20:16 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 212226
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
exchange.buzzoola.com/ssp/adfox
0.0.0.0 0 B URL POST exchange.buzzoola.com/ssp/adfox
IP 0.0.0.0:0
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ssp/adfox HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1250
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: uuid=4006181c-206d-4f95-5d62-b093d7d4ae2f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
hd29.lordsfilm.cfd/e3b4fed480.js?0.9378028725923762
104.21.28.116200 OK 37 kB URL GET HTTP/3 hd29.lordsfilm.cfd/e3b4fed480.js?0.9378028725923762
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JavaScript source, ASCII text
Hash f6a0c55207e4dcbcca131495f696ee87
8e9d3a597ead7982801a9b4a0b809548fd212324
165c15fc8af5ed4b334b966e3f9efc017a84c6d121e0a309019e49839e2455af
GET /e3b4fed480.js?0.9378028725923762 HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:26 GMT
content-type: application/javascript
last-modified: Tue, 30 Jan 2024 16:24:06 GMT
etag: W/"65b922a6-916a"
expires: Sat, 11 May 2024 18:33:26 GMT
cache-control: max-age=86400
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LYmlAV2HGCrwUMn%2FlJHExAB7e32cruwkhoBJGWPsix9%2Bk3Z6NgTFlI98kDAV2Y63cAgXxy8YFPRdEMN2kwOheB9SzwiJteu8uJtnX5T1VO1Qd5wCypDPke%2BcTYd9q35WqZBe0kU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c04821a8e569f-OSL
alt-svc: h3=":443"; ma=86400
vak345.com/cs/202405102133.js?v=16ee33f0a2b397c4a1f1ab6636599ac9&_t=1715366005134.134
172.67.204.19200 OK 89 kB URL GET HTTP/3 vak345.com/cs/202405102133.js?v=16ee33f0a2b397c4a1f1ab6636599ac9&_t=1715366005134.134
IP 172.67.204.19:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGoogle Trust Services LLC
Subjectvak345.com
Fingerprint24:4A:87:25:20:E4:20:04:34:86:6B:9B:53:2A:57:5F:39:1D:94:22
ValiditySun, 07 Apr 2024 00:32:34 GMT - Sat, 06 Jul 2024 00:32:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cs/202405102133.js?v=16ee33f0a2b397c4a1f1ab6636599ac9&_t=1715366005134.134 HTTP/1.1
Host: vak345.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:25 GMT
content-type: application/javascript;charset=UTF-8
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-movieads-udata: cache
x-yac-source: Yac
x-movieads-setup: combo
x-movieads-country: NO
content-encoding: gzip
cf-cache-status: BYPASS
set-cookie: sky_uuid=d529ffed-ba0a-49d7-ac0d-3d5de88d63dd; expires=Sat, 10-May-2025 18:33:25 GMT; Max-Age=31536000; path=/; SameSite=None;Secure
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fwZ3vAkyaSceqH1wlB3OOj6S3aCyvY%2Bs9opXu23OObPfz7cISiXAbYtTKeO24za4VougDYChqFQtdGgI%2FkxxhI%2B4BOXfyEBw3LW6LhLHqjOO5TYmChnfDuc6VGM0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c047c8c13b500-OSL
alt-svc: h3=":443"; ma=86400
videotoday.site/frndnp.php?ver=1&autoplay=1&v=16ee33f0a2b397c4a1f1ab6636599ac9&cb=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&fclose=false&jh=cpzse3jqpizzc4mfcf1dkpjqqj4o&sth=qp4gn7djcczg455spf1sn3bigwz8r7e&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=431&r=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&frnd=true&maid=88d15f87-d2b9-4930-8d6f-a1aa01b97324
0.0.0.0 0 B URL GET videotoday.site/frndnp.php?ver=1&autoplay=1&v=16ee33f0a2b397c4a1f1ab6636599ac9&cb=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&fclose=false&jh=cpzse3jqpizzc4mfcf1dkpjqqj4o&sth=qp4gn7djcczg455spf1sn3bigwz8r7e&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=431&r=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&frnd=true&maid=88d15f87-d2b9-4930-8d6f-a1aa01b97324
IP 0.0.0.0:0
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGoogle Trust Services LLC
Subjectvideotoday.site
Fingerprint2E:82:77:4A:04:B4:6A:BB:CF:BD:C2:A4:DE:A0:9C:DE:43:BB:6C:B4
ValiditySun, 31 Mar 2024 03:52:08 GMT - Sat, 29 Jun 2024 03:52:07 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /frndnp.php?ver=1&autoplay=1&v=16ee33f0a2b397c4a1f1ab6636599ac9&cb=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&fclose=false&jh=cpzse3jqpizzc4mfcf1dkpjqqj4o&sth=qp4gn7djcczg455spf1sn3bigwz8r7e&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=431&r=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&frnd=true&maid=88d15f87-d2b9-4930-8d6f-a1aa01b97324 HTTP/1.1
Host: videotoday.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 18:33:27 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-cache: Yac
x-movieads-country: NO
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=moebQ1UXjQj2k0NXdW24zYUi73qMWA4z4hXUA5%2BFCNkImcsSlWfVC1BlYaNOgIUhdTeq0lcKhG%2B5Bw6arlJOXrUeNUHspjXU2cqGqJjj1NugJ4zMjzTudt%2Bw9Tbhgpgr2c4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c048a1a8ab527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
hd29.lordsfilm.cfd/templates/lordfilm-light/js/libs.js
104.21.28.116200 OK 58 kB URL GET HTTP/3 hd29.lordsfilm.cfd/templates/lordfilm-light/js/libs.js
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /templates/lordfilm-light/js/libs.js HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: application/javascript
last-modified: Thu, 18 Jan 2024 22:01:41 GMT
etag: W/"65a99fc5-e4a8"
expires: Sat, 11 May 2024 16:07:05 GMT
cache-control: max-age=86400
content-encoding: gzip
cf-cache-status: HIT
age: 8778
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NXRznYZq7APEXpVQ8QWxSgZvxMRcbG863mdgyCEK0gZai5e5oRvmFaOeROXQHHR0uzOscs8KqkpiGuVsyaQFpQvDW%2BqKQr8bbpeEABj133aRmt6amzDPDDTrMvfHnrm0%2FHDINxA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c04777993569f-OSL
alt-svc: h3=":443"; ma=86400
yandex.ru/ads/adfox/332443/getBulk/v2?pr=1091866324&pr1=1121565796&dl=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&prr=&extid_loader=&extid_tag_loader=hd29.lordsfilm.cfd&date=2024-05-10T18%3A33%3A34.879%2B00%3A00&pd=10&pw=5&pv=18&pdw=1280&pdh=1024&ylv=0.1021761&ybv=0.1021761&ytt=457946592968709&is-turbo=0&skip-token=yabs.NzIwNTc2MDk1MTE0ODgxMDYKNzIwNTc2MDk3NjQxMzgxMTUKNzIwNTc2MDk1MTE0OTAyMzE%3D&ad-session-id=4562571715366010582&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A1024%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1280%2C%22h%22%3A0%2C%22width%22%3A0%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A640%2C%22top%22%3A552%2C%22req_no%22%3A4%2C%22ad_no%22%3A6%7D&pcode-version=1021761&yaru=true&p1=cvvfe&p2=gxmx&slotNumber=8&bids=W10%3D&utf8=%E2%9C%93&pcode-test-ids=998294%2C0%2C15%3B1012360%2C0%2C96%3B1021001%2C0%2C35%3B1002305%2C0%2C36%3B1011143%2C0%2C60%3B1018247%2C0%2C82%3B1014348%2C0%2C49%3B1021298%2C0%2C45%3B1015041%2C0%2C27%3B1001217%2C0%2C32%3B997800%2C0%2C53%3B999587%2C0%2C56%3B1015254%2C0%2C18%3B1018696%2C0%2C64%3B1010989%2C0%2C72%3B1021761%2C0%2C76&pcode-flags-map=eJy1WF1z27YS%2FS96DlN%2Bk%2BgbRIISRiTAC4Cy1U4GQ1t06zt2cid22t5k8t%2FvAqRoiXKo27T1i0WQOFgszp7dxZfFFkst1%2FxK41yXeElKXXChKdNLzBgRix9%2F%2FrL4rX341C1%2BXCjRkMWbxXP39Ez38BzHQRAmi6%2Fv3ixyKvGyJDrjDVNakJwKkinAwXU9i5H4bhj6FsOY0kiiq6ZUVPCyBDSmzA8i9BVW2ZrkWtGKaF4Ukqh53MB3k2TEFUSJneZMM6KuuNhoIgSf310SxWGCLIJZlDdK14JYu14s3NKccD28P4HzXPg7wUMBStwLeMumKGC3pKrVTpe0olPQP424rTHN%2F34LiwZ%2Bfy8qg4P4uy39BuZfOp%2FXMf85D3zv6RuGrwRe6pKwlVqfTIL4So%2BnpW7qJuE4jTAbt0rgbAPekg0uez0wMkCuFREMRnI5H8Wp58fud4DaAYkLoguBK3J5jT6ihTDSIOEL0BhYUBn1qrGBAGxpUXGTU64zQbCiWyLnoUPX96LRfEACGcpKSkDLSrICWykruL5aUytxbEuEGqhlVr%2BAHblpeiRELIcjxkvDApwbJCphoBGlkacrsuSXbE3cEL0cO1E6a6Tild5WuD4QEuwqm1N%2FxhNWpnEUxIPy2q2A6KsVHvZVl43UtMIronMi6Yrpg8Qb58LQRvFTTnR%2F%2FOcY3nO9EEXROb6o6r8E%2BeJLqexs8KGknE1CxUO%2Bj05n%2By4KPTvbhlyf4XTDaEEhs1AG3ClwRuZMiFDqD2nFpKrlRkv6E%2BkZN%2B4y49WSz6HECQrdF5SSAH0BoZqdE6dh3FtvlEcCswmDqAfJ%2FD9cF6dx6AWH4GHkymTERjCNC9i14TpEqloL3qzW81nR8w70kxWGMPhXQxoCQV3rZWnCvaSnAfHz4rG9f3j78ROg%2FLd9v%2B%2F%2BgN8%2F3D%2B2v3RPJ0O%2FtI92ZP%2B5e99%2F3v52%2F%2Fyh%2F%2Fn49uhh%2F%2F5%2BGDXIIwIMfGw%2FP3z4%2FOvw%2BvPH%2Fv%2Bnj%2B3b993vT2cf%2FLv98Hhvp7472WIEhzyeTkGAHCAjmQKSyTknJ0EUuH1EQXkCx1Jg4BnICQQRa6rlpJyazo68YNDzGpuFTfEEM0EVliQDaYMB0FIKlL8Ak7h92EkQWJxXuuSrlY0Umhf4lQPah52XxO6N07Zd5ITdjee0N17idHvURdE%2BuPWiG1jibt%2BirutunO7Wv3XCFrlOmqI7Zx9E7c1tept4cQufeXddkHp3dw66cwMn3Ke3DrpNYgdFXnvne3sU7o0OufD69i5ETtB6sRN6yd5Bnhc4yT4MULxvE3ffnR5LGkWo988ORBdkPevPZlly4B3EAeizIq%2FsTzjU8UPkQSp0PFj6%2BNmfPAeT59A%2BY8ePIK0n%2FjAfO1FqwtHxvHEgBt4kZoF3J9kWxV7cR62Eg%2BCQ8uj13PmlURAMkcps6tLAPJNAjUBgZehgymLIoroirJmHCpHfe8xE%2FKpWGmSD1mp2ElTOKDxYPEjLqNTgYV1h0DhD6lkY5LkpOsAIcoVFbsr3XT07DUTbdV8UfuxDtJSmcpjVOOQH4ZAdxnbE6hr4q6DGedMscQYQBWkwBv4B5JBSbZbiWVOZsgCKD6zICnqKJaTv7XxoI98UAXNZowBqQFWQXzDP89BpQrWpRh8lBIMPwSEsUaxc0JKq0cxZ%2FMCN0p6r%2BU8HqA0pibrkNi%2F1e7sOkgfuAgcRXFkQXNqKz5L5yKTRheQ6K5scGj8BDcC8hZDFXuo0g73GLC9N0LPNcNq2%2BMtVwy5sNvEHstiay%2BgHeGxNZ4MDZgHHelYDB0Bf%2BxJpudPC0EtqLATezUKA1EXBVJ8PNZyU8xSP4mhgqDQZYQe7J9fAShOTsxMTN4nRuKpQS51haKj11h8K3dnZKDq2GRRMX1PMKwqBDflfqtm0aGbHwUlc8powYwO0QDXImMLQ%2BpSbCyDhUHjB5yu9hpppPuhAr9NoqJgwqEjOmUkWGCit4F%2B%2BIrYipfPpFApJkH00g3J5dk8zLHcs68ul4ylfFk%2Fds8lSR%2B%2Ft%2BeQY3FJy0IQ3p%2B%2BGDmI6PryYjJq28FsA31yCMpD5fgDnBb%2BevIYDE3SD%2B8uesxUzzjcUPjIXNpStxq%2FABb9%2BeHp%2BMnttHx4W776eOipN0EtbIxsQqx0YMshIxcFkNvQNJx4vcCnJKVPSQwIzSCUHG0x5WpRAG%2BhCmzK3ymFSoloTiCLbb89WvWCeH8QvzfbRPJBICrVvo5QRXCwonsTSmYFzYH2VCdmVkVJjBuqigG5QadvbATVV4jk7cS7zzTQxQRMEceFN%2BiI7dIhu2xsdAtsk%2B%2FICwz0vHDoLUnGQ%2BGxt%2BmfVN%2BTQ2IOsDWgXgFJ%2FuE0cm3tuGn1Zl3gHUge2CBN1gpiu%2BQTr9vlh2igG4VgKHC4luTC8v6K5aZq3%2FjyC7%2FloCNyl5GWjbEHQQ%2F1pCONXe09RkZximK%2FWpqIY70k5K3fnVwnnu4rcoYHFeQ7iySueQWBAqBp%2Fm6qMSzU58TMQoIg3XIw2bAViXGcKz0tvkrruWL3UeGcrIFsECiV13weeCelkYQQKng4C%2FnI9RGzyg9abm1IGaG%2FYPymDXnGDH4WjX%2BUG52y4crpEsBjFk3ngfuCs2EFSI2U%2Bm8eOAcZqZqjDbCNSYJbtXtOoV7ICGorj2hzga1GaxGdRmths9vV%2FgC3hhg%3D%3D&pcode-icookie=p88CHeBmQtocA4y2Mj45%2BLrsa2Kq2rMjUdsNrrdCcSX9pUjtnO8qDrK1wINRw1Aq4rGAsO8v9YisfOnPD2Gr7VE4A5Q%3D&top-ancestor=https%3A%2F%2Fhd29.lordsfilm.cfd&top-ancestor-undetermined=0&grab-orig-len=5120&grab=eyJncmFiX3ZlcnNpb24iOjJ9ChLjlLDkqAlQowYsqT355OyXu0KtaqKKWlGpJdAEhk94JzInucy8LYMcLr2pr_fLIqsW3NpkVeCUc_I50FsBfWaASxiOmMOwTLPfNCm3dk4YIcYIIwxFGCOEMaLTZKpST6epaq2eLlNnZaVPcVNJQpmKU3kq7CmMVPag-Sl6yksoEvIOeCOzkRn8nlCkgodN_uIkD0bUU96LFb4ojJTfU5yHRfEQP_yE_OV5PZX1BLSHnPIBwEwlqaCnopcjOXEvWpZK6FiGAzpVldVdWasqcK3aKtcVaupMrVBau06hzCplBq7Vc-rd2lPsv12aylnRPvGleMdfQrln8-dAt2t8x3Ww4Zt7itdfQnK8vhDJC-Ydi3ESslSakCUAWyYmJA85z3LgPUU_lvy6MJcNwpT3v3FTWUKQYv6NCQWQwD4PvFSYEJnNZitLcPtwK1iwFYU2DzMgFf0VZM-iZ9Vu_zgVs_qvfyCy238qSAh228ca8mUF77bKOkxv_PyhMSzRniRIJfMixV4uMf-AWzJFQrQwhDv_eydndV846y0DZ-chWxgxZBFD7vU_4j-He-q-fqH_XjiTTogT0P4MkoXoJ5cQHuOigyQpxgOBdsx7yMWs7ot5SMifS6wE_4CuAJwVPGdIvtv4L0CUSm4VLFP5tAotrK4r6zwH1wpmbtXTadVwYiCwi5raovvRV0VfEKparRzRU7oPo4kaoAEoBqZFreyhvzRgWAoF7AOsUmu1ZfUQU5UR1KpKSRWLzhQWlYL2JUq1nq7Wp5Bu1gnRT4eYjqUO8PpfK6VlIdGVVV3QqMHw_7HoFCX3Kd5tYV-zHOwHkEK5HtpSTcgQRHBezBekIShqYDK5wzS6wzS5w2T28LKjoNzGlKeC4P0_Cfl22ldSinVd7T_iBIP00El_vRjPTNED8giH_DV9yZ3UWQLS8JCQXv17XrNQlY7rmiViLSSUngvw_--W6bMc9FQ8ydn5dhASwi1B0U-F2CuF_48lX5wnIfZK4bUkeumC7w4J3kLCd94f9JcSPSsEJ_jKYnvSUdCW65aM-IuD2EW4E9Ogz2bdIQRpmX9pm8NioU4q3WmIXaWWDiafBLtHH3dYgUVynta-XmpO8ACu2YSeoW4KvXp2ZDII27XER01zXhmU5fjGQXiMudSaEHiF4m4SlBxV6fYad6l4yoTcvQ8oN2EIl-bznAaQ66JfhEca0nYL-SSbPU7uXsmgrmDJNZJ_SSyb1fxMjwNy5M6c8SqOKr8G9HGJmBEhbN4EwM2qyJpzkSNDI0cebxEm-g52Y8HnWIxU8jO3BkBHDGhd87eNCoDoINtWwM-BYoCw1A_adYNmfSLZCoexzq-gnQYEr3aIpi_RaiZ7tDjaARayhGlotxO7h2MLJNwe-feKTmM5n-O8ExPXP6FRFCpXUbSKq_72bcQO8LAo2kxpKRXw3jV4kB3MvAGPn2zYjHGsjh8P2JDxuz-EWxdUeVWGii8spYBdWnR1oQiK7gerVPw_7YLSFjW8mGQ9CB6_zjQWdVapXnAdgqvssNUPSFXncK1eASp4_QFYiiqntsCpiszqfsQLPLJDLzRLKGjVD4nvkv9K-hICb4s2AkneksgZwXf7VNRZlTdy7piVOXWt1CM00zN-Nl8QXMgiOcaAbAgswP-x5R58ZS_giEx5iJZ7rVSrvAzNq0Jd5Va9aZiMeYSyAW5rL2dIfe54fckFCa5-dxMm1G2CwWxEmTUhkX1CPZ_1sxG6vZWa2HWlwESEAPKEoKe4n1AE9kqE0WRyKhHEInHdAbQlDDjq4qm3fpjci9NP1p-awh5_5oHbHDl4iNtw3QYogwt9-OwX1SLoKTDNy9zZH4y-QS9FKrebvw0osQYksi_gNpDh9wd8kYvNXdKbjQwGxxzOZEbIruuC8lmH9JyQLQBiuwXAaDbRMznui5E9KUdQlnCa8srkAZ4_iX3l8EUAZfG8Hkg_LLZrHtl6tqT2GsfInl0FYkK4-ECywzRYnIbDq1mvZ2lL28tjNNMbjYhdNPsBqj8lJV_b9w-W-rigCWHzNg8Xwl5oxMCEGGy6-EFrWC5OMfpgYadSe_mHTdM-3tl6H8nnmnSPfbVoyTn5dhfIYDYgNpjrXqB_t4kWQ0Nur88MBocUZWDTsLQRgvFSrJiYyh5tCh57hldnFHrGnbyEZE08CfpakVPY8WQZzCbwnBrtaVTEnO9CtCTYMH_dqMOln6nz1lrMVnp_98locsjubEpR4o4J_OFyDzW5pB_yWYbdtkDIntET7ncd6VoIk9sjPvl1GumdkjximnddBf4ZqR-ulq3Ynk2py7OjwP4w4GwpmhXOWaJIL2riHyET5kaihx9GcvgzD3Jt2-3F8wYzPZsm_zX_PHyds_CQNiz5NYI4En2i94_knclejjca2JCAb0hTDhdZEDLV7wnBb0sYx0zmIRKVPgiyhlOMiiiJgZkRAuIlIZE1QF7TcVmsY32JPtIaR_2KECnXRrneSX2y_MVS5H2NMfl2DPQZmDgb6LNpOho95bHD4R81ivptASEohebPij7D4YdVUyWrB7tmMTAjLU2xvdCAwWwwsms7gqNQdnDUSnUHW1GWtVLbaAxUhGFsalKN1wgLRgttMK8kfZQQm2rd-F9EtuIyRicvli1xVc5A8J1dmwQuEHqtjmBh3ptK1n8_7bgYVkgjbg4bsLqBBguQgIAPGECDBaiI6cePqzifKrBPhKMajntzLnhdZGrds6QdRkNVll0NT6koqg-ky0qXBUZKw2V3BPfXFph2JF1WNNkYeDnJbLuv4JfTmPSOF-Squiz1HNRrnnErlI7l_wa4VedZ-DiuydBKN5uhWRAog7ctizG0UzmC4NjHoKXtLDZbGqiAXeV-8RJN_WwR-MaXgnzmIgnl0ZSRd5_KQjPxv8Pl6tlHL-vjl7d8czRT8DIzEIFNT7N0vwFonhUKJTx9rBJ6Dxpc35VQg-ohPAT-9wAHLDgW-GD5IXG9ri-YBbZaWwUHD2OT0xrDePYG4sdaopUjOgIrkDa4J2iaFqKUd6tm7WNhgn_L6ymkBP8yyKrOyLgSuE1DZDRN5PdUFs95DFpGIIzRLtntYfQU6HN0Am-hruTgra9tHPlqBPsfn80EfwjX1g5lrYxBfOCyWEHFx_xVqnkA6Cn61Ij0BUtC3MTxrOA8tutT0ZJ__bpvLFxm3bSw54BtjePD__p3-68hxwoE3KOd-wugo_HvHe82UmRJEfGdgO5ibDHn43C19915i1qZo60iky9Y9JtMhHL9puHIDiQv1brKkmnUp0ahMUZCcyraENlrMMuGdN1YezCvhkoSNUjBh_OmUY9cCNkPiv9BRP3dUOz3I8YfRsHfEUH9CIH6S1oUCcFzFkQD3xlx-345G0hg7-ozSwuhVO-GEL07-vKdizD8v3yO8GagDc-Tdw0AcitI9FTySwbu5dA3L8m4bBn-5H_0yWMuSb30lNr62i9f5SxuvOS5P24w95v8By5PCIcQjrXvLLHGix4O5asF-OJDCIXzliVrJUu2SNHH52-jnx7WtvDPT5oQ_z3A36HNAP7SMekEWzFT9tXS71xdqd5Cp_CbiL_4XrLdyaVSYXQ8Rt9NhxuBtY_GxzXgbmd5P1ZH6wyi4e6EiPs8bns4lfklUNpp3ljE0S7kezTZNdnW6w1_08swOzTg6ddPartYvD8a1Cl2LrnvUhIEfwv_T5PEY536bbwM_sGteDtfmBBeSmtNFv66nYg9WqXCrftGJhjDOdupM-qTxhpK0wnCZzPJJIreLKVuFVcBQQ2nGQBvh4qz5HWbycydbgKpT-8RaJeIa2LTizA-n9GoizyzukhYvIEitSK_KOckGxXj_kIN1y3pxOKpLyJgdo7BmD2udwgilTtEHjANk2tWAS6UoAAURIevbUZjeVOFeGYqnTo8-8WNcMCG3xmMzBYTMz2zWxLRMLl7qFlNe4gLZz_WTLsRw8E55b3B7-Hm3816fa8R9AVyPcwL_1ycmvAdIY7DjvRxzHL8sTQ-PBOkLmtYP52XyJt6aTBOyIrSFW3qkL96kJ3-agsfQgPUURXFur2-g3yxBDeMT6Fs2W807wanGx3lDQF5yFtcGHEA7m_AcAPB08x5S3e7C6ep4XT1-4qWq2s_82LtSusoLuDMAFvTxpitws0Gq-vmeLpOoaIug1yfT99I6lcbreVowLk6EcGh03Y4X1SKG9mDzNW0pVsd5Zq6qJrPoTF4y5dKuagPe-cYiocdkWwNRsloIaHat3I12v8Spb0P7XiTINbeZxDiRr8gu6GM_9LmL0yD_gJv6f7cEiJu1cPF5rvLpUMRT-bAGZq7EZwMlbCq48cn-vaybFk8PiB_glLfLZPlJRsLj-GifCmkFqJPzH_ZQbQBOndzo7Z9psenTbUB_irLLzspdj0boa-21cUPI5TX3PmPsB8mxrB4Fh2hIx9nU_Fk7FOX-nUfkqnNCniUp3-3sQc-815K90Y8gfphAoYz8RA7HVzpnL5U1Lm1RkOL5Npa2hI-qBuMpR1srG4nP-RWWzRFtDSZfyS9UXmzqaUP-WFsTAz3zmfti0cp2sBYsNiXI_berbcbY6WjT7wbjV4eL35XKDx6RdBsMwVHazQfY6kcynEfW63cIJ8K8lTP1qsVbULevNK9Q_QlofKjcHrylobyqS8fHcg8qwsfPVJUZT6kmJPGi5Y18XZ7JEvhCrnu1u7dV05B1xph53oCgcrhyGDLkYe6EBA_nWaJ2eSFqNZqR64rFZFQrwpPLNRy0oEPte6jaWqqzIvPHRCcVWD8DqvaozpES5VlCmUgXdAUlrywKJQlrLDlItZ2_nZelDxiaND6PRpx110yVEADZSNwkh21aKMfcpunQ2v5E-I-n-nOhNb8ZprOH7TX_X_9azkHZPQxOLFq9UQ3Xa1yomg9VsIg4RhXi4LD23N3N0982rL7P4o4UfxmmNu_Rx1LvP9DWglhMLSmDvygJRwn2Mil3JBLvPlLhIr5xAS4YpR5hBfRn-IWtx9q-kckEB6wnZcXlp6u_xJ6x14dCvG-lLp84zUxRO5ftLZ161IQRw5cQ-N8BUPMD9IN2I82JUb5u877bYGL-5EsXk_yX-oU&tga-with-creatives=1
5.255.255.77200 OK 211 B URL GET HTTP/2 yandex.ru/ads/adfox/332443/getBulk/v2?pr=1091866324&pr1=1121565796&dl=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&prr=&extid_loader=&extid_tag_loader=hd29.lordsfilm.cfd&date=2024-05-10T18%3A33%3A34.879%2B00%3A00&pd=10&pw=5&pv=18&pdw=1280&pdh=1024&ylv=0.1021761&ybv=0.1021761&ytt=457946592968709&is-turbo=0&skip-token=yabs.NzIwNTc2MDk1MTE0ODgxMDYKNzIwNTc2MDk3NjQxMzgxMTUKNzIwNTc2MDk1MTE0OTAyMzE%3D&ad-session-id=4562571715366010582&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A1024%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1280%2C%22h%22%3A0%2C%22width%22%3A0%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A640%2C%22top%22%3A552%2C%22req_no%22%3A4%2C%22ad_no%22%3A6%7D&pcode-version=1021761&yaru=true&p1=cvvfe&p2=gxmx&slotNumber=8&bids=W10%3D&utf8=%E2%9C%93&pcode-test-ids=998294%2C0%2C15%3B1012360%2C0%2C96%3B1021001%2C0%2C35%3B1002305%2C0%2C36%3B1011143%2C0%2C60%3B1018247%2C0%2C82%3B1014348%2C0%2C49%3B1021298%2C0%2C45%3B1015041%2C0%2C27%3B1001217%2C0%2C32%3B997800%2C0%2C53%3B999587%2C0%2C56%3B1015254%2C0%2C18%3B1018696%2C0%2C64%3B1010989%2C0%2C72%3B1021761%2C0%2C76&pcode-flags-map=eJy1WF1z27YS%2FS96DlN%2Bk%2BgbRIISRiTAC4Cy1U4GQ1t06zt2cid22t5k8t%2FvAqRoiXKo27T1i0WQOFgszp7dxZfFFkst1%2FxK41yXeElKXXChKdNLzBgRix9%2F%2FrL4rX341C1%2BXCjRkMWbxXP39Ez38BzHQRAmi6%2Fv3ixyKvGyJDrjDVNakJwKkinAwXU9i5H4bhj6FsOY0kiiq6ZUVPCyBDSmzA8i9BVW2ZrkWtGKaF4Ukqh53MB3k2TEFUSJneZMM6KuuNhoIgSf310SxWGCLIJZlDdK14JYu14s3NKccD28P4HzXPg7wUMBStwLeMumKGC3pKrVTpe0olPQP424rTHN%2F34LiwZ%2Bfy8qg4P4uy39BuZfOp%2FXMf85D3zv6RuGrwRe6pKwlVqfTIL4So%2BnpW7qJuE4jTAbt0rgbAPekg0uez0wMkCuFREMRnI5H8Wp58fud4DaAYkLoguBK3J5jT6ihTDSIOEL0BhYUBn1qrGBAGxpUXGTU64zQbCiWyLnoUPX96LRfEACGcpKSkDLSrICWykruL5aUytxbEuEGqhlVr%2BAHblpeiRELIcjxkvDApwbJCphoBGlkacrsuSXbE3cEL0cO1E6a6Tild5WuD4QEuwqm1N%2FxhNWpnEUxIPy2q2A6KsVHvZVl43UtMIronMi6Yrpg8Qb58LQRvFTTnR%2F%2FOcY3nO9EEXROb6o6r8E%2BeJLqexs8KGknE1CxUO%2Bj05n%2By4KPTvbhlyf4XTDaEEhs1AG3ClwRuZMiFDqD2nFpKrlRkv6E%2BkZN%2B4y49WSz6HECQrdF5SSAH0BoZqdE6dh3FtvlEcCswmDqAfJ%2FD9cF6dx6AWH4GHkymTERjCNC9i14TpEqloL3qzW81nR8w70kxWGMPhXQxoCQV3rZWnCvaSnAfHz4rG9f3j78ROg%2FLd9v%2B%2F%2BgN8%2F3D%2B2v3RPJ0O%2FtI92ZP%2B5e99%2F3v52%2F%2Fyh%2F%2Fn49uhh%2F%2F5%2BGDXIIwIMfGw%2FP3z4%2FOvw%2BvPH%2Fv%2Bnj%2B3b993vT2cf%2FLv98Hhvp7472WIEhzyeTkGAHCAjmQKSyTknJ0EUuH1EQXkCx1Jg4BnICQQRa6rlpJyazo68YNDzGpuFTfEEM0EVliQDaYMB0FIKlL8Ak7h92EkQWJxXuuSrlY0Umhf4lQPah52XxO6N07Zd5ITdjee0N17idHvURdE%2BuPWiG1jibt%2BirutunO7Wv3XCFrlOmqI7Zx9E7c1tept4cQufeXddkHp3dw66cwMn3Ke3DrpNYgdFXnvne3sU7o0OufD69i5ETtB6sRN6yd5Bnhc4yT4MULxvE3ffnR5LGkWo988ORBdkPevPZlly4B3EAeizIq%2FsTzjU8UPkQSp0PFj6%2BNmfPAeT59A%2BY8ePIK0n%2FjAfO1FqwtHxvHEgBt4kZoF3J9kWxV7cR62Eg%2BCQ8uj13PmlURAMkcps6tLAPJNAjUBgZehgymLIoroirJmHCpHfe8xE%2FKpWGmSD1mp2ElTOKDxYPEjLqNTgYV1h0DhD6lkY5LkpOsAIcoVFbsr3XT07DUTbdV8UfuxDtJSmcpjVOOQH4ZAdxnbE6hr4q6DGedMscQYQBWkwBv4B5JBSbZbiWVOZsgCKD6zICnqKJaTv7XxoI98UAXNZowBqQFWQXzDP89BpQrWpRh8lBIMPwSEsUaxc0JKq0cxZ%2FMCN0p6r%2BU8HqA0pibrkNi%2F1e7sOkgfuAgcRXFkQXNqKz5L5yKTRheQ6K5scGj8BDcC8hZDFXuo0g73GLC9N0LPNcNq2%2BMtVwy5sNvEHstiay%2BgHeGxNZ4MDZgHHelYDB0Bf%2BxJpudPC0EtqLATezUKA1EXBVJ8PNZyU8xSP4mhgqDQZYQe7J9fAShOTsxMTN4nRuKpQS51haKj11h8K3dnZKDq2GRRMX1PMKwqBDflfqtm0aGbHwUlc8powYwO0QDXImMLQ%2BpSbCyDhUHjB5yu9hpppPuhAr9NoqJgwqEjOmUkWGCit4F%2B%2BIrYipfPpFApJkH00g3J5dk8zLHcs68ul4ylfFk%2Fds8lSR%2B%2Ft%2BeQY3FJy0IQ3p%2B%2BGDmI6PryYjJq28FsA31yCMpD5fgDnBb%2BevIYDE3SD%2B8uesxUzzjcUPjIXNpStxq%2FABb9%2BeHp%2BMnttHx4W776eOipN0EtbIxsQqx0YMshIxcFkNvQNJx4vcCnJKVPSQwIzSCUHG0x5WpRAG%2BhCmzK3ymFSoloTiCLbb89WvWCeH8QvzfbRPJBICrVvo5QRXCwonsTSmYFzYH2VCdmVkVJjBuqigG5QadvbATVV4jk7cS7zzTQxQRMEceFN%2BiI7dIhu2xsdAtsk%2B%2FICwz0vHDoLUnGQ%2BGxt%2BmfVN%2BTQ2IOsDWgXgFJ%2FuE0cm3tuGn1Zl3gHUge2CBN1gpiu%2BQTr9vlh2igG4VgKHC4luTC8v6K5aZq3%2FjyC7%2FloCNyl5GWjbEHQQ%2F1pCONXe09RkZximK%2FWpqIY70k5K3fnVwnnu4rcoYHFeQ7iySueQWBAqBp%2Fm6qMSzU58TMQoIg3XIw2bAViXGcKz0tvkrruWL3UeGcrIFsECiV13weeCelkYQQKng4C%2FnI9RGzyg9abm1IGaG%2FYPymDXnGDH4WjX%2BUG52y4crpEsBjFk3ngfuCs2EFSI2U%2Bm8eOAcZqZqjDbCNSYJbtXtOoV7ICGorj2hzga1GaxGdRmths9vV%2FgC3hhg%3D%3D&pcode-icookie=p88CHeBmQtocA4y2Mj45%2BLrsa2Kq2rMjUdsNrrdCcSX9pUjtnO8qDrK1wINRw1Aq4rGAsO8v9YisfOnPD2Gr7VE4A5Q%3D&top-ancestor=https%3A%2F%2Fhd29.lordsfilm.cfd&top-ancestor-undetermined=0&grab-orig-len=5120&grab=eyJncmFiX3ZlcnNpb24iOjJ9ChLjlLDkqAlQowYsqT355OyXu0KtaqKKWlGpJdAEhk94JzInucy8LYMcLr2pr_fLIqsW3NpkVeCUc_I50FsBfWaASxiOmMOwTLPfNCm3dk4YIcYIIwxFGCOEMaLTZKpST6epaq2eLlNnZaVPcVNJQpmKU3kq7CmMVPag-Sl6yksoEvIOeCOzkRn8nlCkgodN_uIkD0bUU96LFb4ojJTfU5yHRfEQP_yE_OV5PZX1BLSHnPIBwEwlqaCnopcjOXEvWpZK6FiGAzpVldVdWasqcK3aKtcVaupMrVBau06hzCplBq7Vc-rd2lPsv12aylnRPvGleMdfQrln8-dAt2t8x3Ww4Zt7itdfQnK8vhDJC-Ydi3ESslSakCUAWyYmJA85z3LgPUU_lvy6MJcNwpT3v3FTWUKQYv6NCQWQwD4PvFSYEJnNZitLcPtwK1iwFYU2DzMgFf0VZM-iZ9Vu_zgVs_qvfyCy238qSAh228ca8mUF77bKOkxv_PyhMSzRniRIJfMixV4uMf-AWzJFQrQwhDv_eydndV846y0DZ-chWxgxZBFD7vU_4j-He-q-fqH_XjiTTogT0P4MkoXoJ5cQHuOigyQpxgOBdsx7yMWs7ot5SMifS6wE_4CuAJwVPGdIvtv4L0CUSm4VLFP5tAotrK4r6zwH1wpmbtXTadVwYiCwi5raovvRV0VfEKparRzRU7oPo4kaoAEoBqZFreyhvzRgWAoF7AOsUmu1ZfUQU5UR1KpKSRWLzhQWlYL2JUq1nq7Wp5Bu1gnRT4eYjqUO8PpfK6VlIdGVVV3QqMHw_7HoFCX3Kd5tYV-zHOwHkEK5HtpSTcgQRHBezBekIShqYDK5wzS6wzS5w2T28LKjoNzGlKeC4P0_Cfl22ldSinVd7T_iBIP00El_vRjPTNED8giH_DV9yZ3UWQLS8JCQXv17XrNQlY7rmiViLSSUngvw_--W6bMc9FQ8ydn5dhASwi1B0U-F2CuF_48lX5wnIfZK4bUkeumC7w4J3kLCd94f9JcSPSsEJ_jKYnvSUdCW65aM-IuD2EW4E9Ogz2bdIQRpmX9pm8NioU4q3WmIXaWWDiafBLtHH3dYgUVynta-XmpO8ACu2YSeoW4KvXp2ZDII27XER01zXhmU5fjGQXiMudSaEHiF4m4SlBxV6fYad6l4yoTcvQ8oN2EIl-bznAaQ66JfhEca0nYL-SSbPU7uXsmgrmDJNZJ_SSyb1fxMjwNy5M6c8SqOKr8G9HGJmBEhbN4EwM2qyJpzkSNDI0cebxEm-g52Y8HnWIxU8jO3BkBHDGhd87eNCoDoINtWwM-BYoCw1A_adYNmfSLZCoexzq-gnQYEr3aIpi_RaiZ7tDjaARayhGlotxO7h2MLJNwe-feKTmM5n-O8ExPXP6FRFCpXUbSKq_72bcQO8LAo2kxpKRXw3jV4kB3MvAGPn2zYjHGsjh8P2JDxuz-EWxdUeVWGii8spYBdWnR1oQiK7gerVPw_7YLSFjW8mGQ9CB6_zjQWdVapXnAdgqvssNUPSFXncK1eASp4_QFYiiqntsCpiszqfsQLPLJDLzRLKGjVD4nvkv9K-hICb4s2AkneksgZwXf7VNRZlTdy7piVOXWt1CM00zN-Nl8QXMgiOcaAbAgswP-x5R58ZS_giEx5iJZ7rVSrvAzNq0Jd5Va9aZiMeYSyAW5rL2dIfe54fckFCa5-dxMm1G2CwWxEmTUhkX1CPZ_1sxG6vZWa2HWlwESEAPKEoKe4n1AE9kqE0WRyKhHEInHdAbQlDDjq4qm3fpjci9NP1p-awh5_5oHbHDl4iNtw3QYogwt9-OwX1SLoKTDNy9zZH4y-QS9FKrebvw0osQYksi_gNpDh9wd8kYvNXdKbjQwGxxzOZEbIruuC8lmH9JyQLQBiuwXAaDbRMznui5E9KUdQlnCa8srkAZ4_iX3l8EUAZfG8Hkg_LLZrHtl6tqT2GsfInl0FYkK4-ECywzRYnIbDq1mvZ2lL28tjNNMbjYhdNPsBqj8lJV_b9w-W-rigCWHzNg8Xwl5oxMCEGGy6-EFrWC5OMfpgYadSe_mHTdM-3tl6H8nnmnSPfbVoyTn5dhfIYDYgNpjrXqB_t4kWQ0Nur88MBocUZWDTsLQRgvFSrJiYyh5tCh57hldnFHrGnbyEZE08CfpakVPY8WQZzCbwnBrtaVTEnO9CtCTYMH_dqMOln6nz1lrMVnp_98locsjubEpR4o4J_OFyDzW5pB_yWYbdtkDIntET7ncd6VoIk9sjPvl1GumdkjximnddBf4ZqR-ulq3Ynk2py7OjwP4w4GwpmhXOWaJIL2riHyET5kaihx9GcvgzD3Jt2-3F8wYzPZsm_zX_PHyds_CQNiz5NYI4En2i94_knclejjca2JCAb0hTDhdZEDLV7wnBb0sYx0zmIRKVPgiyhlOMiiiJgZkRAuIlIZE1QF7TcVmsY32JPtIaR_2KECnXRrneSX2y_MVS5H2NMfl2DPQZmDgb6LNpOho95bHD4R81ivptASEohebPij7D4YdVUyWrB7tmMTAjLU2xvdCAwWwwsms7gqNQdnDUSnUHW1GWtVLbaAxUhGFsalKN1wgLRgttMK8kfZQQm2rd-F9EtuIyRicvli1xVc5A8J1dmwQuEHqtjmBh3ptK1n8_7bgYVkgjbg4bsLqBBguQgIAPGECDBaiI6cePqzifKrBPhKMajntzLnhdZGrds6QdRkNVll0NT6koqg-ky0qXBUZKw2V3BPfXFph2JF1WNNkYeDnJbLuv4JfTmPSOF-Squiz1HNRrnnErlI7l_wa4VedZ-DiuydBKN5uhWRAog7ctizG0UzmC4NjHoKXtLDZbGqiAXeV-8RJN_WwR-MaXgnzmIgnl0ZSRd5_KQjPxv8Pl6tlHL-vjl7d8czRT8DIzEIFNT7N0vwFonhUKJTx9rBJ6Dxpc35VQg-ohPAT-9wAHLDgW-GD5IXG9ri-YBbZaWwUHD2OT0xrDePYG4sdaopUjOgIrkDa4J2iaFqKUd6tm7WNhgn_L6ymkBP8yyKrOyLgSuE1DZDRN5PdUFs95DFpGIIzRLtntYfQU6HN0Am-hruTgra9tHPlqBPsfn80EfwjX1g5lrYxBfOCyWEHFx_xVqnkA6Cn61Ij0BUtC3MTxrOA8tutT0ZJ__bpvLFxm3bSw54BtjePD__p3-68hxwoE3KOd-wugo_HvHe82UmRJEfGdgO5ibDHn43C19915i1qZo60iky9Y9JtMhHL9puHIDiQv1brKkmnUp0ahMUZCcyraENlrMMuGdN1YezCvhkoSNUjBh_OmUY9cCNkPiv9BRP3dUOz3I8YfRsHfEUH9CIH6S1oUCcFzFkQD3xlx-345G0hg7-ozSwuhVO-GEL07-vKdizD8v3yO8GagDc-Tdw0AcitI9FTySwbu5dA3L8m4bBn-5H_0yWMuSb30lNr62i9f5SxuvOS5P24w95v8By5PCIcQjrXvLLHGix4O5asF-OJDCIXzliVrJUu2SNHH52-jnx7WtvDPT5oQ_z3A36HNAP7SMekEWzFT9tXS71xdqd5Cp_CbiL_4XrLdyaVSYXQ8Rt9NhxuBtY_GxzXgbmd5P1ZH6wyi4e6EiPs8bns4lfklUNpp3ljE0S7kezTZNdnW6w1_08swOzTg6ddPartYvD8a1Cl2LrnvUhIEfwv_T5PEY536bbwM_sGteDtfmBBeSmtNFv66nYg9WqXCrftGJhjDOdupM-qTxhpK0wnCZzPJJIreLKVuFVcBQQ2nGQBvh4qz5HWbycydbgKpT-8RaJeIa2LTizA-n9GoizyzukhYvIEitSK_KOckGxXj_kIN1y3pxOKpLyJgdo7BmD2udwgilTtEHjANk2tWAS6UoAAURIevbUZjeVOFeGYqnTo8-8WNcMCG3xmMzBYTMz2zWxLRMLl7qFlNe4gLZz_WTLsRw8E55b3B7-Hm3816fa8R9AVyPcwL_1ycmvAdIY7DjvRxzHL8sTQ-PBOkLmtYP52XyJt6aTBOyIrSFW3qkL96kJ3-agsfQgPUURXFur2-g3yxBDeMT6Fs2W807wanGx3lDQF5yFtcGHEA7m_AcAPB08x5S3e7C6ep4XT1-4qWq2s_82LtSusoLuDMAFvTxpitws0Gq-vmeLpOoaIug1yfT99I6lcbreVowLk6EcGh03Y4X1SKG9mDzNW0pVsd5Zq6qJrPoTF4y5dKuagPe-cYiocdkWwNRsloIaHat3I12v8Spb0P7XiTINbeZxDiRr8gu6GM_9LmL0yD_gJv6f7cEiJu1cPF5rvLpUMRT-bAGZq7EZwMlbCq48cn-vaybFk8PiB_glLfLZPlJRsLj-GifCmkFqJPzH_ZQbQBOndzo7Z9psenTbUB_irLLzspdj0boa-21cUPI5TX3PmPsB8mxrB4Fh2hIx9nU_Fk7FOX-nUfkqnNCniUp3-3sQc-815K90Y8gfphAoYz8RA7HVzpnL5U1Lm1RkOL5Npa2hI-qBuMpR1srG4nP-RWWzRFtDSZfyS9UXmzqaUP-WFsTAz3zmfti0cp2sBYsNiXI_berbcbY6WjT7wbjV4eL35XKDx6RdBsMwVHazQfY6kcynEfW63cIJ8K8lTP1qsVbULevNK9Q_QlofKjcHrylobyqS8fHcg8qwsfPVJUZT6kmJPGi5Y18XZ7JEvhCrnu1u7dV05B1xph53oCgcrhyGDLkYe6EBA_nWaJ2eSFqNZqR64rFZFQrwpPLNRy0oEPte6jaWqqzIvPHRCcVWD8DqvaozpES5VlCmUgXdAUlrywKJQlrLDlItZ2_nZelDxiaND6PRpx110yVEADZSNwkh21aKMfcpunQ2v5E-I-n-nOhNb8ZprOH7TX_X_9azkHZPQxOLFq9UQ3Xa1yomg9VsIg4RhXi4LD23N3N0982rL7P4o4UfxmmNu_Rx1LvP9DWglhMLSmDvygJRwn2Mil3JBLvPlLhIr5xAS4YpR5hBfRn-IWtx9q-kckEB6wnZcXlp6u_xJ6x14dCvG-lLp84zUxRO5ftLZ161IQRw5cQ-N8BUPMD9IN2I82JUb5u877bYGL-5EsXk_yX-oU&tga-with-creatives=1
IP 5.255.255.77:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.xn--d1acpjx3f.xn--p1ai
Fingerprint17:FB:0C:B6:3F:7F:A5:4C:41:AD:D0:5C:6B:9A:96:47:FE:AF:C8:5C
ValidityMon, 04 Mar 2024 10:29:07 GMT - Sun, 01 Sep 2024 20:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash e69e1455603b83aef489eed425a1f75e
725a53545dc6d14404f95edc08870d1d33de3f6d
bb755db30668d34c2389227653aae3943639e8c9a810036a1d74c7e7ed605114
GET /ads/adfox/332443/getBulk/v2?pr=1091866324&pr1=1121565796&dl=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&prr=&extid_loader=&extid_tag_loader=hd29.lordsfilm.cfd&date=2024-05-10T18%3A33%3A34.879%2B00%3A00&pd=10&pw=5&pv=18&pdw=1280&pdh=1024&ylv=0.1021761&ybv=0.1021761&ytt=457946592968709&is-turbo=0&skip-token=yabs.NzIwNTc2MDk1MTE0ODgxMDYKNzIwNTc2MDk3NjQxMzgxMTUKNzIwNTc2MDk1MTE0OTAyMzE%3D&ad-session-id=4562571715366010582&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A1024%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1280%2C%22h%22%3A0%2C%22width%22%3A0%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A640%2C%22top%22%3A552%2C%22req_no%22%3A4%2C%22ad_no%22%3A6%7D&pcode-version=1021761&yaru=true&p1=cvvfe&p2=gxmx&slotNumber=8&bids=W10%3D&utf8=%E2%9C%93&pcode-test-ids=998294%2C0%2C15%3B1012360%2C0%2C96%3B1021001%2C0%2C35%3B1002305%2C0%2C36%3B1011143%2C0%2C60%3B1018247%2C0%2C82%3B1014348%2C0%2C49%3B1021298%2C0%2C45%3B1015041%2C0%2C27%3B1001217%2C0%2C32%3B997800%2C0%2C53%3B999587%2C0%2C56%3B1015254%2C0%2C18%3B1018696%2C0%2C64%3B1010989%2C0%2C72%3B1021761%2C0%2C76&pcode-flags-map=eJy1WF1z27YS%2FS96DlN%2Bk%2BgbRIISRiTAC4Cy1U4GQ1t06zt2cid22t5k8t%2FvAqRoiXKo27T1i0WQOFgszp7dxZfFFkst1%2FxK41yXeElKXXChKdNLzBgRix9%2F%2FrL4rX341C1%2BXCjRkMWbxXP39Ez38BzHQRAmi6%2Fv3ixyKvGyJDrjDVNakJwKkinAwXU9i5H4bhj6FsOY0kiiq6ZUVPCyBDSmzA8i9BVW2ZrkWtGKaF4Ukqh53MB3k2TEFUSJneZMM6KuuNhoIgSf310SxWGCLIJZlDdK14JYu14s3NKccD28P4HzXPg7wUMBStwLeMumKGC3pKrVTpe0olPQP424rTHN%2F34LiwZ%2Bfy8qg4P4uy39BuZfOp%2FXMf85D3zv6RuGrwRe6pKwlVqfTIL4So%2BnpW7qJuE4jTAbt0rgbAPekg0uez0wMkCuFREMRnI5H8Wp58fud4DaAYkLoguBK3J5jT6ihTDSIOEL0BhYUBn1qrGBAGxpUXGTU64zQbCiWyLnoUPX96LRfEACGcpKSkDLSrICWykruL5aUytxbEuEGqhlVr%2BAHblpeiRELIcjxkvDApwbJCphoBGlkacrsuSXbE3cEL0cO1E6a6Tild5WuD4QEuwqm1N%2FxhNWpnEUxIPy2q2A6KsVHvZVl43UtMIronMi6Yrpg8Qb58LQRvFTTnR%2F%2FOcY3nO9EEXROb6o6r8E%2BeJLqexs8KGknE1CxUO%2Bj05n%2By4KPTvbhlyf4XTDaEEhs1AG3ClwRuZMiFDqD2nFpKrlRkv6E%2BkZN%2B4y49WSz6HECQrdF5SSAH0BoZqdE6dh3FtvlEcCswmDqAfJ%2FD9cF6dx6AWH4GHkymTERjCNC9i14TpEqloL3qzW81nR8w70kxWGMPhXQxoCQV3rZWnCvaSnAfHz4rG9f3j78ROg%2FLd9v%2B%2F%2BgN8%2F3D%2B2v3RPJ0O%2FtI92ZP%2B5e99%2F3v52%2F%2Fyh%2F%2Fn49uhh%2F%2F5%2BGDXIIwIMfGw%2FP3z4%2FOvw%2BvPH%2Fv%2Bnj%2B3b993vT2cf%2FLv98Hhvp7472WIEhzyeTkGAHCAjmQKSyTknJ0EUuH1EQXkCx1Jg4BnICQQRa6rlpJyazo68YNDzGpuFTfEEM0EVliQDaYMB0FIKlL8Ak7h92EkQWJxXuuSrlY0Umhf4lQPah52XxO6N07Zd5ITdjee0N17idHvURdE%2BuPWiG1jibt%2BirutunO7Wv3XCFrlOmqI7Zx9E7c1tept4cQufeXddkHp3dw66cwMn3Ke3DrpNYgdFXnvne3sU7o0OufD69i5ETtB6sRN6yd5Bnhc4yT4MULxvE3ffnR5LGkWo988ORBdkPevPZlly4B3EAeizIq%2FsTzjU8UPkQSp0PFj6%2BNmfPAeT59A%2BY8ePIK0n%2FjAfO1FqwtHxvHEgBt4kZoF3J9kWxV7cR62Eg%2BCQ8uj13PmlURAMkcps6tLAPJNAjUBgZehgymLIoroirJmHCpHfe8xE%2FKpWGmSD1mp2ElTOKDxYPEjLqNTgYV1h0DhD6lkY5LkpOsAIcoVFbsr3XT07DUTbdV8UfuxDtJSmcpjVOOQH4ZAdxnbE6hr4q6DGedMscQYQBWkwBv4B5JBSbZbiWVOZsgCKD6zICnqKJaTv7XxoI98UAXNZowBqQFWQXzDP89BpQrWpRh8lBIMPwSEsUaxc0JKq0cxZ%2FMCN0p6r%2BU8HqA0pibrkNi%2F1e7sOkgfuAgcRXFkQXNqKz5L5yKTRheQ6K5scGj8BDcC8hZDFXuo0g73GLC9N0LPNcNq2%2BMtVwy5sNvEHstiay%2BgHeGxNZ4MDZgHHelYDB0Bf%2BxJpudPC0EtqLATezUKA1EXBVJ8PNZyU8xSP4mhgqDQZYQe7J9fAShOTsxMTN4nRuKpQS51haKj11h8K3dnZKDq2GRRMX1PMKwqBDflfqtm0aGbHwUlc8powYwO0QDXImMLQ%2BpSbCyDhUHjB5yu9hpppPuhAr9NoqJgwqEjOmUkWGCit4F%2B%2BIrYipfPpFApJkH00g3J5dk8zLHcs68ul4ylfFk%2Fds8lSR%2B%2Ft%2BeQY3FJy0IQ3p%2B%2BGDmI6PryYjJq28FsA31yCMpD5fgDnBb%2BevIYDE3SD%2B8uesxUzzjcUPjIXNpStxq%2FABb9%2BeHp%2BMnttHx4W776eOipN0EtbIxsQqx0YMshIxcFkNvQNJx4vcCnJKVPSQwIzSCUHG0x5WpRAG%2BhCmzK3ymFSoloTiCLbb89WvWCeH8QvzfbRPJBICrVvo5QRXCwonsTSmYFzYH2VCdmVkVJjBuqigG5QadvbATVV4jk7cS7zzTQxQRMEceFN%2BiI7dIhu2xsdAtsk%2B%2FICwz0vHDoLUnGQ%2BGxt%2BmfVN%2BTQ2IOsDWgXgFJ%2FuE0cm3tuGn1Zl3gHUge2CBN1gpiu%2BQTr9vlh2igG4VgKHC4luTC8v6K5aZq3%2FjyC7%2FloCNyl5GWjbEHQQ%2F1pCONXe09RkZximK%2FWpqIY70k5K3fnVwnnu4rcoYHFeQ7iySueQWBAqBp%2Fm6qMSzU58TMQoIg3XIw2bAViXGcKz0tvkrruWL3UeGcrIFsECiV13weeCelkYQQKng4C%2FnI9RGzyg9abm1IGaG%2FYPymDXnGDH4WjX%2BUG52y4crpEsBjFk3ngfuCs2EFSI2U%2Bm8eOAcZqZqjDbCNSYJbtXtOoV7ICGorj2hzga1GaxGdRmths9vV%2FgC3hhg%3D%3D&pcode-icookie=p88CHeBmQtocA4y2Mj45%2BLrsa2Kq2rMjUdsNrrdCcSX9pUjtnO8qDrK1wINRw1Aq4rGAsO8v9YisfOnPD2Gr7VE4A5Q%3D&top-ancestor=https%3A%2F%2Fhd29.lordsfilm.cfd&top-ancestor-undetermined=0&grab-orig-len=5120&grab=eyJncmFiX3ZlcnNpb24iOjJ9ChLjlLDkqAlQowYsqT355OyXu0KtaqKKWlGpJdAEhk94JzInucy8LYMcLr2pr_fLIqsW3NpkVeCUc_I50FsBfWaASxiOmMOwTLPfNCm3dk4YIcYIIwxFGCOEMaLTZKpST6epaq2eLlNnZaVPcVNJQpmKU3kq7CmMVPag-Sl6yksoEvIOeCOzkRn8nlCkgodN_uIkD0bUU96LFb4ojJTfU5yHRfEQP_yE_OV5PZX1BLSHnPIBwEwlqaCnopcjOXEvWpZK6FiGAzpVldVdWasqcK3aKtcVaupMrVBau06hzCplBq7Vc-rd2lPsv12aylnRPvGleMdfQrln8-dAt2t8x3Ww4Zt7itdfQnK8vhDJC-Ydi3ESslSakCUAWyYmJA85z3LgPUU_lvy6MJcNwpT3v3FTWUKQYv6NCQWQwD4PvFSYEJnNZitLcPtwK1iwFYU2DzMgFf0VZM-iZ9Vu_zgVs_qvfyCy238qSAh228ca8mUF77bKOkxv_PyhMSzRniRIJfMixV4uMf-AWzJFQrQwhDv_eydndV846y0DZ-chWxgxZBFD7vU_4j-He-q-fqH_XjiTTogT0P4MkoXoJ5cQHuOigyQpxgOBdsx7yMWs7ot5SMifS6wE_4CuAJwVPGdIvtv4L0CUSm4VLFP5tAotrK4r6zwH1wpmbtXTadVwYiCwi5raovvRV0VfEKparRzRU7oPo4kaoAEoBqZFreyhvzRgWAoF7AOsUmu1ZfUQU5UR1KpKSRWLzhQWlYL2JUq1nq7Wp5Bu1gnRT4eYjqUO8PpfK6VlIdGVVV3QqMHw_7HoFCX3Kd5tYV-zHOwHkEK5HtpSTcgQRHBezBekIShqYDK5wzS6wzS5w2T28LKjoNzGlKeC4P0_Cfl22ldSinVd7T_iBIP00El_vRjPTNED8giH_DV9yZ3UWQLS8JCQXv17XrNQlY7rmiViLSSUngvw_--W6bMc9FQ8ydn5dhASwi1B0U-F2CuF_48lX5wnIfZK4bUkeumC7w4J3kLCd94f9JcSPSsEJ_jKYnvSUdCW65aM-IuD2EW4E9Ogz2bdIQRpmX9pm8NioU4q3WmIXaWWDiafBLtHH3dYgUVynta-XmpO8ACu2YSeoW4KvXp2ZDII27XER01zXhmU5fjGQXiMudSaEHiF4m4SlBxV6fYad6l4yoTcvQ8oN2EIl-bznAaQ66JfhEca0nYL-SSbPU7uXsmgrmDJNZJ_SSyb1fxMjwNy5M6c8SqOKr8G9HGJmBEhbN4EwM2qyJpzkSNDI0cebxEm-g52Y8HnWIxU8jO3BkBHDGhd87eNCoDoINtWwM-BYoCw1A_adYNmfSLZCoexzq-gnQYEr3aIpi_RaiZ7tDjaARayhGlotxO7h2MLJNwe-feKTmM5n-O8ExPXP6FRFCpXUbSKq_72bcQO8LAo2kxpKRXw3jV4kB3MvAGPn2zYjHGsjh8P2JDxuz-EWxdUeVWGii8spYBdWnR1oQiK7gerVPw_7YLSFjW8mGQ9CB6_zjQWdVapXnAdgqvssNUPSFXncK1eASp4_QFYiiqntsCpiszqfsQLPLJDLzRLKGjVD4nvkv9K-hICb4s2AkneksgZwXf7VNRZlTdy7piVOXWt1CM00zN-Nl8QXMgiOcaAbAgswP-x5R58ZS_giEx5iJZ7rVSrvAzNq0Jd5Va9aZiMeYSyAW5rL2dIfe54fckFCa5-dxMm1G2CwWxEmTUhkX1CPZ_1sxG6vZWa2HWlwESEAPKEoKe4n1AE9kqE0WRyKhHEInHdAbQlDDjq4qm3fpjci9NP1p-awh5_5oHbHDl4iNtw3QYogwt9-OwX1SLoKTDNy9zZH4y-QS9FKrebvw0osQYksi_gNpDh9wd8kYvNXdKbjQwGxxzOZEbIruuC8lmH9JyQLQBiuwXAaDbRMznui5E9KUdQlnCa8srkAZ4_iX3l8EUAZfG8Hkg_LLZrHtl6tqT2GsfInl0FYkK4-ECywzRYnIbDq1mvZ2lL28tjNNMbjYhdNPsBqj8lJV_b9w-W-rigCWHzNg8Xwl5oxMCEGGy6-EFrWC5OMfpgYadSe_mHTdM-3tl6H8nnmnSPfbVoyTn5dhfIYDYgNpjrXqB_t4kWQ0Nur88MBocUZWDTsLQRgvFSrJiYyh5tCh57hldnFHrGnbyEZE08CfpakVPY8WQZzCbwnBrtaVTEnO9CtCTYMH_dqMOln6nz1lrMVnp_98locsjubEpR4o4J_OFyDzW5pB_yWYbdtkDIntET7ncd6VoIk9sjPvl1GumdkjximnddBf4ZqR-ulq3Ynk2py7OjwP4w4GwpmhXOWaJIL2riHyET5kaihx9GcvgzD3Jt2-3F8wYzPZsm_zX_PHyds_CQNiz5NYI4En2i94_knclejjca2JCAb0hTDhdZEDLV7wnBb0sYx0zmIRKVPgiyhlOMiiiJgZkRAuIlIZE1QF7TcVmsY32JPtIaR_2KECnXRrneSX2y_MVS5H2NMfl2DPQZmDgb6LNpOho95bHD4R81ivptASEohebPij7D4YdVUyWrB7tmMTAjLU2xvdCAwWwwsms7gqNQdnDUSnUHW1GWtVLbaAxUhGFsalKN1wgLRgttMK8kfZQQm2rd-F9EtuIyRicvli1xVc5A8J1dmwQuEHqtjmBh3ptK1n8_7bgYVkgjbg4bsLqBBguQgIAPGECDBaiI6cePqzifKrBPhKMajntzLnhdZGrds6QdRkNVll0NT6koqg-ky0qXBUZKw2V3BPfXFph2JF1WNNkYeDnJbLuv4JfTmPSOF-Squiz1HNRrnnErlI7l_wa4VedZ-DiuydBKN5uhWRAog7ctizG0UzmC4NjHoKXtLDZbGqiAXeV-8RJN_WwR-MaXgnzmIgnl0ZSRd5_KQjPxv8Pl6tlHL-vjl7d8czRT8DIzEIFNT7N0vwFonhUKJTx9rBJ6Dxpc35VQg-ohPAT-9wAHLDgW-GD5IXG9ri-YBbZaWwUHD2OT0xrDePYG4sdaopUjOgIrkDa4J2iaFqKUd6tm7WNhgn_L6ymkBP8yyKrOyLgSuE1DZDRN5PdUFs95DFpGIIzRLtntYfQU6HN0Am-hruTgra9tHPlqBPsfn80EfwjX1g5lrYxBfOCyWEHFx_xVqnkA6Cn61Ij0BUtC3MTxrOA8tutT0ZJ__bpvLFxm3bSw54BtjePD__p3-68hxwoE3KOd-wugo_HvHe82UmRJEfGdgO5ibDHn43C19915i1qZo60iky9Y9JtMhHL9puHIDiQv1brKkmnUp0ahMUZCcyraENlrMMuGdN1YezCvhkoSNUjBh_OmUY9cCNkPiv9BRP3dUOz3I8YfRsHfEUH9CIH6S1oUCcFzFkQD3xlx-345G0hg7-ozSwuhVO-GEL07-vKdizD8v3yO8GagDc-Tdw0AcitI9FTySwbu5dA3L8m4bBn-5H_0yWMuSb30lNr62i9f5SxuvOS5P24w95v8By5PCIcQjrXvLLHGix4O5asF-OJDCIXzliVrJUu2SNHH52-jnx7WtvDPT5oQ_z3A36HNAP7SMekEWzFT9tXS71xdqd5Cp_CbiL_4XrLdyaVSYXQ8Rt9NhxuBtY_GxzXgbmd5P1ZH6wyi4e6EiPs8bns4lfklUNpp3ljE0S7kezTZNdnW6w1_08swOzTg6ddPartYvD8a1Cl2LrnvUhIEfwv_T5PEY536bbwM_sGteDtfmBBeSmtNFv66nYg9WqXCrftGJhjDOdupM-qTxhpK0wnCZzPJJIreLKVuFVcBQQ2nGQBvh4qz5HWbycydbgKpT-8RaJeIa2LTizA-n9GoizyzukhYvIEitSK_KOckGxXj_kIN1y3pxOKpLyJgdo7BmD2udwgilTtEHjANk2tWAS6UoAAURIevbUZjeVOFeGYqnTo8-8WNcMCG3xmMzBYTMz2zWxLRMLl7qFlNe4gLZz_WTLsRw8E55b3B7-Hm3816fa8R9AVyPcwL_1ycmvAdIY7DjvRxzHL8sTQ-PBOkLmtYP52XyJt6aTBOyIrSFW3qkL96kJ3-agsfQgPUURXFur2-g3yxBDeMT6Fs2W807wanGx3lDQF5yFtcGHEA7m_AcAPB08x5S3e7C6ep4XT1-4qWq2s_82LtSusoLuDMAFvTxpitws0Gq-vmeLpOoaIug1yfT99I6lcbreVowLk6EcGh03Y4X1SKG9mDzNW0pVsd5Zq6qJrPoTF4y5dKuagPe-cYiocdkWwNRsloIaHat3I12v8Spb0P7XiTINbeZxDiRr8gu6GM_9LmL0yD_gJv6f7cEiJu1cPF5rvLpUMRT-bAGZq7EZwMlbCq48cn-vaybFk8PiB_glLfLZPlJRsLj-GifCmkFqJPzH_ZQbQBOndzo7Z9psenTbUB_irLLzspdj0boa-21cUPI5TX3PmPsB8mxrB4Fh2hIx9nU_Fk7FOX-nUfkqnNCniUp3-3sQc-815K90Y8gfphAoYz8RA7HVzpnL5U1Lm1RkOL5Npa2hI-qBuMpR1srG4nP-RWWzRFtDSZfyS9UXmzqaUP-WFsTAz3zmfti0cp2sBYsNiXI_berbcbY6WjT7wbjV4eL35XKDx6RdBsMwVHazQfY6kcynEfW63cIJ8K8lTP1qsVbULevNK9Q_QlofKjcHrylobyqS8fHcg8qwsfPVJUZT6kmJPGi5Y18XZ7JEvhCrnu1u7dV05B1xph53oCgcrhyGDLkYe6EBA_nWaJ2eSFqNZqR64rFZFQrwpPLNRy0oEPte6jaWqqzIvPHRCcVWD8DqvaozpES5VlCmUgXdAUlrywKJQlrLDlItZ2_nZelDxiaND6PRpx110yVEADZSNwkh21aKMfcpunQ2v5E-I-n-nOhNb8ZprOH7TX_X_9azkHZPQxOLFq9UQ3Xa1yomg9VsIg4RhXi4LD23N3N0982rL7P4o4UfxmmNu_Rx1LvP9DWglhMLSmDvygJRwn2Mil3JBLvPlLhIr5xAS4YpR5hBfRn-IWtx9q-kckEB6wnZcXlp6u_xJ6x14dCvG-lLp84zUxRO5ftLZ161IQRw5cQ-N8BUPMD9IN2I82JUb5u877bYGL-5EsXk_yX-oU&tga-with-creatives=1 HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
timing-allow-origin: *
date: Fri, 10 May 2024 18:33:35 GMT
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: https://hd29.lordsfilm.cfd
set-cookie: i=kBQlHeS0JQQjft+Cu8j4bJyYlRInKXYsUAYl3tnvxtyoFP7I1GK2Sb4chSK6EYcPopUTfpgoShFMfGzrWiRu/fdhAjM=; Expires=Sun, 10-May-2026 18:33:35 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=5457227581715366015; Expires=Sun, 10-May-2026 18:33:35 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yashr=8477858081715366015; Path=/; Domain=.yandex.ru; Expires=Sat, 10 May 2025 18:33:35 GMT; SameSite=None; Secure; HttpOnly
receive-cookie-deprecation=1; Path=/; Domain=.yandex.ru; Expires=Sat, 10 May 2025 18:33:35 GMT; SameSite=None; Secure; HttpOnly; Partitioned
access-control-allow-credentials: true
pragma: no-cache
expires: Fri, 10 May 2024 18:33:35 GMT
x-xss-protection: 1; mode=block
x-yandex-req-id: 1715366015344818-3103668190345722758-balancer-l7leveler-kubr-yp-vla-17-BAL
last-modified: Fri, 10 May 2024 18:33:35 GMT
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
content-type: application/json
X-Firefox-Spdy: h2
www.acint.net/mc/?dp=167&tc=1
193.3.184.16200 OK 6.5 kB URL GET HTTP/2 www.acint.net/mc/?dp=167&tc=1
IP 193.3.184.16:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1
ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File type HTML document, ASCII text, with very long lines (6765), with no line terminators
Hash 4d9deef0b093545acb8e658e731afec7
719ec3ef184cf38d82b7ffe437a229f35a37d53b
61d6d0d9bb81f3229f4a628e8009c419b309212408f98175cb7a3087d15065fd
GET /mc/?dp=167&tc=1 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hd29.lordsfilm.cfd/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmY+aHhDejejSPGUAkcfOw//+h6bVYg9D2okdkVEVGva
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Fri, 10 May 2024 18:33:29 GMT
content-type: text/html
set-cookie: cSyncDp14v6=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp17v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp45v5=1715366009; expires=Sat, 11-May-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp53v5=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp62v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp67v3=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp68v3=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp71v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp80v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp85v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp95v4=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp98v3=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp104v2=1715366009; expires=Fri, 24-May-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp107v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp110v3=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp125v4=1715366009; expires=Sat, 25-May-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp126v3=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp127v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp129v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp136v3=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp146v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp148v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp149v3=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp151v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp251v1=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp186v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp217v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp235v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp239v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp243v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp260v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp244v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp248v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp261v1=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp289v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp293v1=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp296v2=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp312v1=1715366009; expires=Sun, 09-Jun-24 18:33:29 GMT; path=/; Secure; SameSite=None; domain=.acint.net
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
content-encoding: gzip
X-Firefox-Spdy: h2
logger.moviead55.ru/logger.php?v=16ee33f0a2b397c4a1f1ab6636599ac9&c=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&t=player_loaded&a=&m=%7B%22sub_id%22%3A%22ap%22%2C%22loadTime%22%3A0.885%2C%22version%22%3A%221714742420985%22%2C%22vt%22%3A100%2C%22dv%22%3Atrue%2C%22l%22%3A%22https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html%22%2C%22scr%22%3A%7B%22w%22%3A1280%2C%22h%22%3A1024%2C%22c%22%3A24%2C%22iw%22%3A400%2C%22ih%22%3A225%7D%7D&o=
193.200.65.146200 OK 70 B URL GET HTTP/2 logger.moviead55.ru/logger.php?v=16ee33f0a2b397c4a1f1ab6636599ac9&c=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&t=player_loaded&a=&m=%7B%22sub_id%22%3A%22ap%22%2C%22loadTime%22%3A0.885%2C%22version%22%3A%221714742420985%22%2C%22vt%22%3A100%2C%22dv%22%3Atrue%2C%22l%22%3A%22https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html%22%2C%22scr%22%3A%7B%22w%22%3A1280%2C%22h%22%3A1024%2C%22c%22%3A24%2C%22iw%22%3A400%2C%22ih%22%3A225%7D%7D&o=
IP 193.200.65.146:443
ASN #6681 Giveme Cloud Sp Z O O
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9
ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash b357a19c87624c7c4d131aeeb4ae677f
c7a9c45fd419815a5ab1998503a9f03514c0e229
497790947d4666760ce38f3c00e852c71fdb66cae849bae8e9ede352719e1581
GET /logger.php?v=16ee33f0a2b397c4a1f1ab6636599ac9&c=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&t=player_loaded&a=&m=%7B%22sub_id%22%3A%22ap%22%2C%22loadTime%22%3A0.885%2C%22version%22%3A%221714742420985%22%2C%22vt%22%3A100%2C%22dv%22%3Atrue%2C%22l%22%3A%22https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html%22%2C%22scr%22%3A%7B%22w%22%3A1280%2C%22h%22%3A1024%2C%22c%22%3A24%2C%22iw%22%3A400%2C%22ih%22%3A225%7D%7D&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:29 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
v.alfasrv.com/stats/2x2.png?s=106184&e=r&t=p
84.201.179.252200 OK 95 B URL GET HTTP/1.1 v.alfasrv.com/stats/2x2.png?s=106184&e=r&t=p
IP 84.201.179.252:443
ASN #200350 Yandex.Cloud LLC
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasrv.com
Fingerprint4B:8A:22:65:23:10:74:25:5D:40:3B:78:20:8D:F8:82:A4:50:44:90
ValidityTue, 10 Oct 2023 09:20:49 GMT - Sun, 10 Nov 2024 09:20:48 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /stats/2x2.png?s=106184&e=r&t=p HTTP/1.1
Host: v.alfasrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Fri, 10 May 2024 18:33:33 GMT
Content-Type: image/png
Content-Length: 95
Connection: keep-alive
Last-Modified: Friday, 10-May-2024 18:33:33 GMT
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
Accept-Ranges: bytes
yastatic.net/q/set/s/rsya-tag-users/bundle.js
178.154.131.215200 OK 104 kB URL GET HTTP/2 yastatic.net/q/set/s/rsya-tag-users/bundle.js
IP 178.154.131.215:443
Requested by https://yastatic.net/safeframe-bundles/0.83/1-1-0/render.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07
ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 104 kB (104498 bytes)
Hash fad15dadf56fc1d71be6b240cc30b915
ba1e0470b10f258c83b81650520198579a7e5dfe
6faf9b3930c127b8bf7d97f22a50832b6cf0ac678e16ba6fa412e0a5ec06dc2b
GET /q/set/s/rsya-tag-users/bundle.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yastatic.net/safeframe-bundles/0.83/1-1-0/render.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 10 May 2024 18:33:33 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=31556952
content-encoding: br
etag: W/"fad15dadf56fc1d71be6b240cc30b915"
expires: Mon, 13 May 2024 06:30:29 GMT
last-modified: Tue, 18 Jul 2023 19:47:42 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-nginx-request-id: 04b4ac0226e079f7
X-Firefox-Spdy: h2
s.alfasrv.com/events/1x1.png?s=106184&e=r&t=p
130.193.42.23200 OK 95 B URL GET HTTP/2 s.alfasrv.com/events/1x1.png?s=106184&e=r&t=p
IP 130.193.42.23:443
ASN #200350 Yandex.Cloud LLC
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasrv.com
Fingerprint4B:8A:22:65:23:10:74:25:5D:40:3B:78:20:8D:F8:82:A4:50:44:90
ValidityTue, 10 Oct 2023 09:20:49 GMT - Sun, 10 Nov 2024 09:20:48 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /events/1x1.png?s=106184&e=r&t=p HTTP/1.1
Host: s.alfasrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 10 May 2024 18:33:33 GMT
content-type: image/png
content-length: 95
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,X-Original-Referer
access-control-allow-credentials: true
cache-control: no-cache,no-store
expires: Tue, 01 Jan 1980 1:00:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn77-fs.aj1907.online/551/3077/46479/160/2008/bitz1911/index.html
185.76.9.14200 OK 1.2 kB URL GET HTTP/2 cdn77-fs.aj1907.online/551/3077/46479/160/2008/bitz1911/index.html
IP 185.76.9.14:443
ASN #60068 Datacamp Limited
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject1695510202.rsc.cdn77.org
FingerprintAB:42:6A:89:B1:41:EA:09:CE:BF:F7:EA:66:53:68:F8:19:F7:AC:A7
ValidityMon, 22 Apr 2024 14:30:46 GMT - Sun, 21 Jul 2024 14:30:45 GMT
File type HTML document, ASCII text, with very long lines (1226), with no line terminators
Hash 0fa75071f545b330a417e0860e7408d7
4c8bb549b88a7e172cda441e6debb886dd7a921f
2a62fa722bcc3faf71be2665cbea60900a503fa0d02081a8f61a780053d603b9
GET /551/3077/46479/160/2008/bitz1911/index.html HTTP/1.1
Host: cdn77-fs.aj1907.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: UUID=a5422175-f779-5bdd-9035-7ae658bf7920
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 18:33:29 GMT
content-type: text/html
vary: Accept-Encoding
x-amz-id-2: 3RbmLRLwveJiWgXiSD2zFMsh+rBUoAJFXFlsYAVvBncAG91Cn2g7ElUyL2gCzjNivwLe92G2CszlCcjn44b0lpSVQ/C5rJ5+
x-amz-request-id: 2DAJ1G9K0FSX7QNZ
last-modified: Wed, 13 Dec 2023 11:52:10 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-contenttype: text/html
x-amz-meta-original_zip_file_uid: f7da2e05-e2db-4dca-a146-434935efe419
etag: W/"967e0d5934c7d0ad7d629d9b86817d28"
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
access-control-max-age: 3000
via: 1.1 21da0a66bafe2c8de8be4a4d8039346a.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA6-C1
x-amz-cf-id: PeeNTIdijXi-cT8Xp3wU8RWvcKIeSxkW9SRzQARlnNYRTU_dd-HofA==
x-77-nzt: EwwBuUwJDQH3rRwMAAwBuUwKAQH3zRYAAAwBJRPCKAH3AAAAAA
x-77-nzt-ray: c0a4cc28e3fa356679683e66e879220e
x-accel-expires: @1715609033
x-accel-date: 1714572236
x-77-cache: HIT
x-77-age: 793773
content-encoding: gzip
x-cache-lb: HIT
x-age-lb: 5837
server: CDN77-Turbo
x-cache: HIT
x-age: 793773
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
www.youtube.com/embed/8KS5HqEiwLc
142.250.74.14200 OK 93 kB URL GET HTTP/2 www.youtube.com/embed/8KS5HqEiwLc
IP 142.250.74.14:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/8KS5HqEiwLc HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 10 May 2024 18:33:25 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=jnuUdrS9X78; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=vqoS3mri-Sk; Domain=.youtube.com; Expires=Wed, 06-Nov-2024 18:33:25 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMIG0%3D; Domain=.youtube.com; Expires=Wed, 06-Nov-2024 18:33:25 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
hd29.lordsfilm.cfd/cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js
104.21.28.116200 OK 7.9 kB URL GET HTTP/3 hd29.lordsfilm.cfd/cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
File type JavaScript source, ASCII text, with very long lines (7928), with no line terminators
Hash f12e217fd3e293df13c438f3928b8b16
acadc8a2fef006ffe79903f9e4a6a8bdc1ccf69d
0c38645e0f7c0490859f048737c8e6338881f7be22553ca3945e900f5e31dd4b
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673; _ma=88d15f87-d2b9-4930-8d6f-a1aa01b97324
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9dqHYkIy208rGfseCanNqDDfgdthBammQGdziInJfGIbqFeFiD6ndAAt6orMafpHTULYq5BHKa8HcNLxG2s1PMS7s0eESIGHd3v79b6Dn29xaiUPCMJipx7WHJ3wS%2BvSV0tq0yM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c048f5df3569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1475353534&m=1695559591&c=1271236793&p0=2094476254&p1=2031305422&p2=1870598794&u=9f61b35154f7c779&t=1715366005
82.192.95.133200 OK 1.2 kB URL GET HTTP/1.1 n3.cdn.trafficbass.com/uploads/media/3/5/62353/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1475353534&m=1695559591&c=1271236793&p0=2094476254&p1=2031305422&p2=1870598794&u=9f61b35154f7c779&t=1715366005
IP 82.192.95.133:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint57:6F:20:E6:B0:40:1C:C7:13:E8:48:0C:11:F9:28:1A:C5:9E:24:49
ValidityThu, 07 Mar 2024 08:49:35 GMT - Mon, 07 Apr 2025 11:37:26 GMT
File type HTML document, ASCII text, with very long lines (1327), with no line terminators
Hash 09332acb264b475f1d1c20ddcba5ab44
5ad12ee658139103bdf4d9fc48c3a73ef6d9b660
39eb2d8d2ffb38bc3220dbd0abf57d15316ea259392d08ff0f3549efac8ede43
GET /uploads/media/3/5/62353/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1475353534&m=1695559591&c=1271236793&p0=2094476254&p1=2031305422&p2=1870598794&u=9f61b35154f7c779&t=1715366005 HTTP/1.1
Host: n3.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:26 GMT
Content-Type: text/html; charset=utf-8
Last-Modified: Mon, 24 Apr 2023 18:13:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6446c6c0-4aa"
Expires: Sat, 11 May 2024 18:33:26 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Content-Encoding: gzip
cs09.tzpeachcod.com/content/59561/3319024.webp
193.200.65.11200 OK 4.9 kB URL GET HTTP/1.1 cs09.tzpeachcod.com/content/59561/3319024.webp
IP 193.200.65.11:443
ASN #6681 Giveme Cloud Sp Z O O
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjecttzpeachcod.com
Fingerprint42:5C:76:E9:99:DE:D1:A8:3D:52:61:37:79:01:DB:3A:56:99:49:D1
ValidityWed, 17 Apr 2024 11:33:05 GMT - Tue, 16 Jul 2024 11:33:04 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 59d8ff3f14fd8422c693b219e77ed799
253ba95670ee73f99178b4821ce4b68888b828e1
2c34a71e177aa657faea81d599a4f0bbeea566f176da109a2f046c8575bdf6a3
GET /content/59561/3319024.webp HTTP/1.1
Host: cs09.tzpeachcod.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: uuid=17153660063052333171
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 18:33:27 GMT
Content-Type: image/webp
Content-Length: 4896
Last-Modified: Wed, 10 Apr 2024 12:49:11 GMT
Connection: keep-alive
Cache-Control: public, max-age=28800
ETag: "66168ac7-1320"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: OPTIONS, POST, GET
Access-Control-Allow-Headers: Content-Type
Accept-Ranges: bytes
yastatic.net/safeframe-bundles/0.83/1-1-0/render.html
178.154.131.215200 OK 24 kB URL GET HTTP/2 yastatic.net/safeframe-bundles/0.83/1-1-0/render.html
IP 178.154.131.215:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
Fingerprint5D:F0:EF:78:7A:C0:B9:2D:D6:43:F1:59:2C:AD:DB:D4:02:6B:F9:07
ValidityWed, 13 Dec 2023 10:50:36 GMT - Tue, 11 Jun 2024 20:59:59 GMT
File type HTML document, ASCII text, with very long lines (23297)
Hash 68ddd6a1df957888c4f3709393c1a7d5
8400def22d72366cf8749423d4c9d846176db821
9c911ab93cf6099aeeddb19cb1903d0ef838329443c3a0549c754da47f90a70a
GET /safeframe-bundles/0.83/1-1-0/render.html HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 10 May 2024 18:33:32 GMT
content-type: text/html
content-length: 6262
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "eb77de48712912aadc9aa8171ac75ede"
expires: Mon, 11 May 2054 01:06:40 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
code.moviead55.ru/madstyle.css
193.200.65.144200 OK 209 B URL GET HTTP/2 code.moviead55.ru/madstyle.css
IP 193.200.65.144:443
ASN #6681 Giveme Cloud Sp Z O O
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9
ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
File type ASCII text, with no line terminators
Hash 3687598d90b4ae66974b8037d6b8fb48
85671484cb761d28e0fb9e4fa34ab7dafc6f13a4
e5b095a01ca179849c3494f2a2a635452b2725767527bc09e11212079f5e8cb1
GET /madstyle.css HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:26 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
access-control-allow-origin: *
access-control-expose-headers: *
access-control-max-age: 86400
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin, Access-Control-Request-Headers, Access-Control-Request-Method
etag: W/"28021-7Ba9Gb9K6bwuIzasQJpQO7varK0"
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
sync.adspend.space/sape?uid=0A00007F78683E66A3377A430294F148
0.0.0.0 0 B URL GET sync.adspend.space/sape?uid=0A00007F78683E66A3377A430294F148
IP 0.0.0.0:0
Requested by https://www.acint.net/mc/?dp=167&tc=1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape?uid=0A00007F78683E66A3377A430294F148 HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
cdn77-fs.aj1907.online/551/3077/46479/160/2008/bitz1911/static/js/main.57bd202a.js
185.76.9.14200 OK 221 kB URL GET HTTP/2 cdn77-fs.aj1907.online/551/3077/46479/160/2008/bitz1911/static/js/main.57bd202a.js
IP 185.76.9.14:443
ASN #60068 Datacamp Limited
Requested by https://cdn77-fs.aj1907.online/551/3077/46479/160/2008/bitz1911/index.html
Certificate IssuerLet's Encrypt
Subject1695510202.rsc.cdn77.org
FingerprintAB:42:6A:89:B1:41:EA:09:CE:BF:F7:EA:66:53:68:F8:19:F7:AC:A7
ValidityMon, 22 Apr 2024 14:30:46 GMT - Sun, 21 Jul 2024 14:30:45 GMT
File type JavaScript source, ASCII text, with very long lines (65465)
Size 221 kB (221406 bytes)
Hash ce50b7b9cf703cc539c2826a03a25238
cb806f7f572a990d2876c3ab4c47919b17b4c4c1
429b1e48a6bcad25b6b03278dec4d32de1412bbe031d3343d91fa8fdfddfe6f9
GET /551/3077/46479/160/2008/bitz1911/static/js/main.57bd202a.js HTTP/1.1
Host: cdn77-fs.aj1907.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn77-fs.aj1907.online/551/3077/46479/160/2008/bitz1911/index.html
Cookie: UUID=a5422175-f779-5bdd-9035-7ae658bf7920; ucv=3077-NO-1715452408982-24--
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 18:33:30 GMT
content-type: application/javascript
vary: Accept-Encoding
x-amz-id-2: 0g16SwugZDJbRZ1KixcZMIfakiZK3yMF2nAwUOGugC6aSmRYGH/rCq0VUsFu6QVJ3YrWIeRrzjY=
x-amz-request-id: 2DAXQVSS921CMWEJ
last-modified: Wed, 13 Dec 2023 11:52:26 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-contenttype: application/javascript
x-amz-meta-original_zip_file_uid: f7da2e05-e2db-4dca-a146-434935efe419
etag: W/"ce50b7b9cf703cc539c2826a03a25238"
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
access-control-max-age: 3000
via: 1.1 f0a97a8c56cd2bb79a1739863489ed4c.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA6-C1
x-amz-cf-id: _-coZFqZRUQC9jWyxqtqmFdOd-vfCjiSoKjjO_j-vBELZO-Dd6ZFwQ==
x-77-nzt: EwwBuUwJDQH3Ji8BAAwBuUwKCQH3zRYAAAgBJRPCLgFh
x-77-nzt-ray: c0a4cc28e3fa35667a683e66413b4a21
x-77-cache: HIT
content-encoding: gzip
x-accel-expires: @1716325201
x-accel-date: 1715288404
x-cache-lb: HIT
x-age-lb: 5837
x-77-age: 77606
server: CDN77-Turbo
x-cache: HIT
x-age: 77606
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
30830.svetacdn.in/Assets/iframe.css
188.114.97.1200 OK 7.5 kB URL GET HTTP/3 30830.svetacdn.in/Assets/iframe.css
IP 188.114.97.1:443
Requested by https://30830.svetacdn.in/XOpThZNRVeQY/tv-series/9124
Certificate IssuerGoogle Trust Services LLC
Subjectsvetacdn.in
Fingerprint45:66:21:17:9B:C2:70:55:CF:90:41:C7:2F:A6:89:B2:5C:5A:35:3F
ValiditySat, 30 Mar 2024 00:19:23 GMT - Fri, 28 Jun 2024 00:19:22 GMT
File type ASCII text, with very long lines (7478), with no line terminators
Hash 166ff65cdf6cea38224c886d066b23b5
b7da480545c25221e3fc9e4397905c921f0d3b27
3df14d710d222f227c825c3832e2f908160bbc829e1c191d259052934d99d7cc
GET /Assets/iframe.css HTTP/1.1
Host: 30830.svetacdn.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://30830.svetacdn.in/XOpThZNRVeQY/tv-series/9124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:26 GMT
content-type: text/css
last-modified: Friday, 10-May-2024 18:33:26 GMT
vary: Accept-Encoding
etag: W/"63f96222-1d34"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: x-csrf-token
content-encoding: gzip
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=giOKUUdS%2Fma8MvvDk3haLMU5nelOsRfeeHOMNFrUpj%2BnDFu9t6HtvQbVqCccjAnf%2BVgYdoKw9ZBLsXlRv%2B22dsaBrTGY2%2F7nEQ0mSnAvco4bIAiGLx7fOdu7ByEqHuyNFtrgJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c048409345696-OSL
alt-svc: h3=":443"; ma=86400
s.myangular.life/ws?cdn
144.76.194.2101 Switching Protocols 0 B IP 144.76.194.2:443
ASN #24940 Hetzner Online GmbH
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint49:29:7B:E4:AA:2F:8B:1B:40:C9:EB:26:F2:8A:38:C0:BB:63:42:42
ValidityFri, 05 Apr 2024 00:00:00 GMT - Tue, 06 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws?cdn HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://hd29.lordsfilm.cfd
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KgwqUWcEgn25hTEzTckzHA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 10 May 2024 18:33:31 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2mvfSldSxYevU4slJgMkqbc/hZY=
yandex.ru/ads/adfox/332443/getBulk/v2?pr=1091866324&pr1=1935486407&dl=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&prr=&extid_loader=&extid_tag_loader=hd29.lordsfilm.cfd&date=2024-05-10T18%3A33%3A34.985%2B00%3A00&pd=10&pw=5&pv=18&pdw=1280&pdh=1024&ylv=0.1021761&ybv=0.1021761&ytt=457946592968709&is-turbo=0&skip-token=yabs.NzIwNTc2MDk1MTE0ODgxMDYKNzIwNTc2MDk3NjQxMzgxMTUKNzIwNTc2MDk1MTE0OTAyMzE%3D&ad-session-id=4562571715366010582&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A1024%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1200%2C%22h%22%3A0%2C%22width%22%3A1200%2C%22height%22%3A0%2C%22visible%22%3A0%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A40%2C%22top%22%3A2110%2C%22req_no%22%3A5%2C%22ad_no%22%3A6%7D&pcode-version=1021761&yaru=true&p1=cvvfd&p2=gxnc&slotNumber=9&bids=W10%3D&utf8=%E2%9C%93&pcode-test-ids=998294%2C0%2C15%3B1012360%2C0%2C96%3B1021001%2C0%2C35%3B1002305%2C0%2C36%3B1011143%2C0%2C60%3B1018247%2C0%2C82%3B1014348%2C0%2C49%3B1021298%2C0%2C45%3B1015041%2C0%2C27%3B1001217%2C0%2C32%3B997800%2C0%2C53%3B999587%2C0%2C56%3B1015254%2C0%2C18%3B1018696%2C0%2C64%3B1010989%2C0%2C72%3B1021761%2C0%2C76&pcode-flags-map=eJy1WF1z27YS%2FS96DlN%2Bk%2BgbRIISRiTAC4Cy1U4GQ1t06zt2cid22t5k8t%2FvAqRoiXKo27T1i0WQOFgszp7dxZfFFkst1%2FxK41yXeElKXXChKdNLzBgRix9%2F%2FrL4rX341C1%2BXCjRkMWbxXP39Ez38BzHQRAmi6%2Fv3ixyKvGyJDrjDVNakJwKkinAwXU9i5H4bhj6FsOY0kiiq6ZUVPCyBDSmzA8i9BVW2ZrkWtGKaF4Ukqh53MB3k2TEFUSJneZMM6KuuNhoIgSf310SxWGCLIJZlDdK14JYu14s3NKccD28P4HzXPg7wUMBStwLeMumKGC3pKrVTpe0olPQP424rTHN%2F34LiwZ%2Bfy8qg4P4uy39BuZfOp%2FXMf85D3zv6RuGrwRe6pKwlVqfTIL4So%2BnpW7qJuE4jTAbt0rgbAPekg0uez0wMkCuFREMRnI5H8Wp58fud4DaAYkLoguBK3J5jT6ihTDSIOEL0BhYUBn1qrGBAGxpUXGTU64zQbCiWyLnoUPX96LRfEACGcpKSkDLSrICWykruL5aUytxbEuEGqhlVr%2BAHblpeiRELIcjxkvDApwbJCphoBGlkacrsuSXbE3cEL0cO1E6a6Tild5WuD4QEuwqm1N%2FxhNWpnEUxIPy2q2A6KsVHvZVl43UtMIronMi6Yrpg8Qb58LQRvFTTnR%2F%2FOcY3nO9EEXROb6o6r8E%2BeJLqexs8KGknE1CxUO%2Bj05n%2By4KPTvbhlyf4XTDaEEhs1AG3ClwRuZMiFDqD2nFpKrlRkv6E%2BkZN%2B4y49WSz6HECQrdF5SSAH0BoZqdE6dh3FtvlEcCswmDqAfJ%2FD9cF6dx6AWH4GHkymTERjCNC9i14TpEqloL3qzW81nR8w70kxWGMPhXQxoCQV3rZWnCvaSnAfHz4rG9f3j78ROg%2FLd9v%2B%2F%2BgN8%2F3D%2B2v3RPJ0O%2FtI92ZP%2B5e99%2F3v52%2F%2Fyh%2F%2Fn49uhh%2F%2F5%2BGDXIIwIMfGw%2FP3z4%2FOvw%2BvPH%2Fv%2Bnj%2B3b993vT2cf%2FLv98Hhvp7472WIEhzyeTkGAHCAjmQKSyTknJ0EUuH1EQXkCx1Jg4BnICQQRa6rlpJyazo68YNDzGpuFTfEEM0EVliQDaYMB0FIKlL8Ak7h92EkQWJxXuuSrlY0Umhf4lQPah52XxO6N07Zd5ITdjee0N17idHvURdE%2BuPWiG1jibt%2BirutunO7Wv3XCFrlOmqI7Zx9E7c1tept4cQufeXddkHp3dw66cwMn3Ke3DrpNYgdFXnvne3sU7o0OufD69i5ETtB6sRN6yd5Bnhc4yT4MULxvE3ffnR5LGkWo988ORBdkPevPZlly4B3EAeizIq%2FsTzjU8UPkQSp0PFj6%2BNmfPAeT59A%2BY8ePIK0n%2FjAfO1FqwtHxvHEgBt4kZoF3J9kWxV7cR62Eg%2BCQ8uj13PmlURAMkcps6tLAPJNAjUBgZehgymLIoroirJmHCpHfe8xE%2FKpWGmSD1mp2ElTOKDxYPEjLqNTgYV1h0DhD6lkY5LkpOsAIcoVFbsr3XT07DUTbdV8UfuxDtJSmcpjVOOQH4ZAdxnbE6hr4q6DGedMscQYQBWkwBv4B5JBSbZbiWVOZsgCKD6zICnqKJaTv7XxoI98UAXNZowBqQFWQXzDP89BpQrWpRh8lBIMPwSEsUaxc0JKq0cxZ%2FMCN0p6r%2BU8HqA0pibrkNi%2F1e7sOkgfuAgcRXFkQXNqKz5L5yKTRheQ6K5scGj8BDcC8hZDFXuo0g73GLC9N0LPNcNq2%2BMtVwy5sNvEHstiay%2BgHeGxNZ4MDZgHHelYDB0Bf%2BxJpudPC0EtqLATezUKA1EXBVJ8PNZyU8xSP4mhgqDQZYQe7J9fAShOTsxMTN4nRuKpQS51haKj11h8K3dnZKDq2GRRMX1PMKwqBDflfqtm0aGbHwUlc8powYwO0QDXImMLQ%2BpSbCyDhUHjB5yu9hpppPuhAr9NoqJgwqEjOmUkWGCit4F%2B%2BIrYipfPpFApJkH00g3J5dk8zLHcs68ul4ylfFk%2Fds8lSR%2B%2Ft%2BeQY3FJy0IQ3p%2B%2BGDmI6PryYjJq28FsA31yCMpD5fgDnBb%2BevIYDE3SD%2B8uesxUzzjcUPjIXNpStxq%2FABb9%2BeHp%2BMnttHx4W776eOipN0EtbIxsQqx0YMshIxcFkNvQNJx4vcCnJKVPSQwIzSCUHG0x5WpRAG%2BhCmzK3ymFSoloTiCLbb89WvWCeH8QvzfbRPJBICrVvo5QRXCwonsTSmYFzYH2VCdmVkVJjBuqigG5QadvbATVV4jk7cS7zzTQxQRMEceFN%2BiI7dIhu2xsdAtsk%2B%2FICwz0vHDoLUnGQ%2BGxt%2BmfVN%2BTQ2IOsDWgXgFJ%2FuE0cm3tuGn1Zl3gHUge2CBN1gpiu%2BQTr9vlh2igG4VgKHC4luTC8v6K5aZq3%2FjyC7%2FloCNyl5GWjbEHQQ%2F1pCONXe09RkZximK%2FWpqIY70k5K3fnVwnnu4rcoYHFeQ7iySueQWBAqBp%2Fm6qMSzU58TMQoIg3XIw2bAViXGcKz0tvkrruWL3UeGcrIFsECiV13weeCelkYQQKng4C%2FnI9RGzyg9abm1IGaG%2FYPymDXnGDH4WjX%2BUG52y4crpEsBjFk3ngfuCs2EFSI2U%2Bm8eOAcZqZqjDbCNSYJbtXtOoV7ICGorj2hzga1GaxGdRmths9vV%2FgC3hhg%3D%3D&pcode-icookie=p88CHeBmQtocA4y2Mj45%2BLrsa2Kq2rMjUdsNrrdCcSX9pUjtnO8qDrK1wINRw1Aq4rGAsO8v9YisfOnPD2Gr7VE4A5Q%3D&top-ancestor=https%3A%2F%2Fhd29.lordsfilm.cfd&top-ancestor-undetermined=0&grab-orig-len=5120&grab=eyJncmFiX3ZlcnNpb24iOjJ9ChLjlLDkqAlQowYsqT355OyXu0KtaqKKWlGpJdAEhk94JzInucy8LYMcLr2pr_fLIqsW3NpkVeCUc_I50FsBfWaASxiOmMOwTLPfNCm3dk4YIcYIIwxFGCOEMaLTZKpST6epaq2eLlNnZaVPcVNJQpmKU3kq7CmMVPag-Sl6yksoEvIOeCOzkRn8nlCkgodN_uIkD0bUU96LFb4ojJTfU5yHRfEQP_yE_OV5PZX1BLSHnPIBwEwlqaCnopcjOXEvWpZK6FiGAzpVldVdWasqcK3aKtcVaupMrVBau06hzCplBq7Vc-rd2lPsv12aylnRPvGleMdfQrln8-dAt2t8x3Ww4Zt7itdfQnK8vhDJC-Ydi3ESslSakCUAWyYmJA85z3LgPUU_lvy6MJcNwpT3v3FTWUKQYv6NCQWQwD4PvFSYEJnNZitLcPtwK1iwFYU2DzMgFf0VZM-iZ9Vu_zgVs_qvfyCy238qSAh228ca8mUF77bKOkxv_PyhMSzRniRIJfMixV4uMf-AWzJFQrQwhDv_eydndV846y0DZ-chWxgxZBFD7vU_4j-He-q-fqH_XjiTTogT0P4MkoXoJ5cQHuOigyQpxgOBdsx7yMWs7ot5SMifS6wE_4CuAJwVPGdIvtv4L0CUSm4VLFP5tAotrK4r6zwH1wpmbtXTadVwYiCwi5raovvRV0VfEKparRzRU7oPo4kaoAEoBqZFreyhvzRgWAoF7AOsUmu1ZfUQU5UR1KpKSRWLzhQWlYL2JUq1nq7Wp5Bu1gnRT4eYjqUO8PpfK6VlIdGVVV3QqMHw_7HoFCX3Kd5tYV-zHOwHkEK5HtpSTcgQRHBezBekIShqYDK5wzS6wzS5w2T28LKjoNzGlKeC4P0_Cfl22ldSinVd7T_iBIP00El_vRjPTNED8giH_DV9yZ3UWQLS8JCQXv17XrNQlY7rmiViLSSUngvw_--W6bMc9FQ8ydn5dhASwi1B0U-F2CuF_48lX5wnIfZK4bUkeumC7w4J3kLCd94f9JcSPSsEJ_jKYnvSUdCW65aM-IuD2EW4E9Ogz2bdIQRpmX9pm8NioU4q3WmIXaWWDiafBLtHH3dYgUVynta-XmpO8ACu2YSeoW4KvXp2ZDII27XER01zXhmU5fjGQXiMudSaEHiF4m4SlBxV6fYad6l4yoTcvQ8oN2EIl-bznAaQ66JfhEca0nYL-SSbPU7uXsmgrmDJNZJ_SSyb1fxMjwNy5M6c8SqOKr8G9HGJmBEhbN4EwM2qyJpzkSNDI0cebxEm-g52Y8HnWIxU8jO3BkBHDGhd87eNCoDoINtWwM-BYoCw1A_adYNmfSLZCoexzq-gnQYEr3aIpi_RaiZ7tDjaARayhGlotxO7h2MLJNwe-feKTmM5n-O8ExPXP6FRFCpXUbSKq_72bcQO8LAo2kxpKRXw3jV4kB3MvAGPn2zYjHGsjh8P2JDxuz-EWxdUeVWGii8spYBdWnR1oQiK7gerVPw_7YLSFjW8mGQ9CB6_zjQWdVapXnAdgqvssNUPSFXncK1eASp4_QFYiiqntsCpiszqfsQLPLJDLzRLKGjVD4nvkv9K-hICb4s2AkneksgZwXf7VNRZlTdy7piVOXWt1CM00zN-Nl8QXMgiOcaAbAgswP-x5R58ZS_giEx5iJZ7rVSrvAzNq0Jd5Va9aZiMeYSyAW5rL2dIfe54fckFCa5-dxMm1G2CwWxEmTUhkX1CPZ_1sxG6vZWa2HWlwESEAPKEoKe4n1AE9kqE0WRyKhHEInHdAbQlDDjq4qm3fpjci9NP1p-awh5_5oHbHDl4iNtw3QYogwt9-OwX1SLoKTDNy9zZH4y-QS9FKrebvw0osQYksi_gNpDh9wd8kYvNXdKbjQwGxxzOZEbIruuC8lmH9JyQLQBiuwXAaDbRMznui5E9KUdQlnCa8srkAZ4_iX3l8EUAZfG8Hkg_LLZrHtl6tqT2GsfInl0FYkK4-ECywzRYnIbDq1mvZ2lL28tjNNMbjYhdNPsBqj8lJV_b9w-W-rigCWHzNg8Xwl5oxMCEGGy6-EFrWC5OMfpgYadSe_mHTdM-3tl6H8nnmnSPfbVoyTn5dhfIYDYgNpjrXqB_t4kWQ0Nur88MBocUZWDTsLQRgvFSrJiYyh5tCh57hldnFHrGnbyEZE08CfpakVPY8WQZzCbwnBrtaVTEnO9CtCTYMH_dqMOln6nz1lrMVnp_98locsjubEpR4o4J_OFyDzW5pB_yWYbdtkDIntET7ncd6VoIk9sjPvl1GumdkjximnddBf4ZqR-ulq3Ynk2py7OjwP4w4GwpmhXOWaJIL2riHyET5kaihx9GcvgzD3Jt2-3F8wYzPZsm_zX_PHyds_CQNiz5NYI4En2i94_knclejjca2JCAb0hTDhdZEDLV7wnBb0sYx0zmIRKVPgiyhlOMiiiJgZkRAuIlIZE1QF7TcVmsY32JPtIaR_2KECnXRrneSX2y_MVS5H2NMfl2DPQZmDgb6LNpOho95bHD4R81ivptASEohebPij7D4YdVUyWrB7tmMTAjLU2xvdCAwWwwsms7gqNQdnDUSnUHW1GWtVLbaAxUhGFsalKN1wgLRgttMK8kfZQQm2rd-F9EtuIyRicvli1xVc5A8J1dmwQuEHqtjmBh3ptK1n8_7bgYVkgjbg4bsLqBBguQgIAPGECDBaiI6cePqzifKrBPhKMajntzLnhdZGrds6QdRkNVll0NT6koqg-ky0qXBUZKw2V3BPfXFph2JF1WNNkYeDnJbLuv4JfTmPSOF-Squiz1HNRrnnErlI7l_wa4VedZ-DiuydBKN5uhWRAog7ctizG0UzmC4NjHoKXtLDZbGqiAXeV-8RJN_WwR-MaXgnzmIgnl0ZSRd5_KQjPxv8Pl6tlHL-vjl7d8czRT8DIzEIFNT7N0vwFonhUKJTx9rBJ6Dxpc35VQg-ohPAT-9wAHLDgW-GD5IXG9ri-YBbZaWwUHD2OT0xrDePYG4sdaopUjOgIrkDa4J2iaFqKUd6tm7WNhgn_L6ymkBP8yyKrOyLgSuE1DZDRN5PdUFs95DFpGIIzRLtntYfQU6HN0Am-hruTgra9tHPlqBPsfn80EfwjX1g5lrYxBfOCyWEHFx_xVqnkA6Cn61Ij0BUtC3MTxrOA8tutT0ZJ__bpvLFxm3bSw54BtjePD__p3-68hxwoE3KOd-wugo_HvHe82UmRJEfGdgO5ibDHn43C19915i1qZo60iky9Y9JtMhHL9puHIDiQv1brKkmnUp0ahMUZCcyraENlrMMuGdN1YezCvhkoSNUjBh_OmUY9cCNkPiv9BRP3dUOz3I8YfRsHfEUH9CIH6S1oUCcFzFkQD3xlx-345G0hg7-ozSwuhVO-GEL07-vKdizD8v3yO8GagDc-Tdw0AcitI9FTySwbu5dA3L8m4bBn-5H_0yWMuSb30lNr62i9f5SxuvOS5P24w95v8By5PCIcQjrXvLLHGix4O5asF-OJDCIXzliVrJUu2SNHH52-jnx7WtvDPT5oQ_z3A36HNAP7SMekEWzFT9tXS71xdqd5Cp_CbiL_4XrLdyaVSYXQ8Rt9NhxuBtY_GxzXgbmd5P1ZH6wyi4e6EiPs8bns4lfklUNpp3ljE0S7kezTZNdnW6w1_08swOzTg6ddPartYvD8a1Cl2LrnvUhIEfwv_T5PEY536bbwM_sGteDtfmBBeSmtNFv66nYg9WqXCrftGJhjDOdupM-qTxhpK0wnCZzPJJIreLKVuFVcBQQ2nGQBvh4qz5HWbycydbgKpT-8RaJeIa2LTizA-n9GoizyzukhYvIEitSK_KOckGxXj_kIN1y3pxOKpLyJgdo7BmD2udwgilTtEHjANk2tWAS6UoAAURIevbUZjeVOFeGYqnTo8-8WNcMCG3xmMzBYTMz2zWxLRMLl7qFlNe4gLZz_WTLsRw8E55b3B7-Hm3816fa8R9AVyPcwL_1ycmvAdIY7DjvRxzHL8sTQ-PBOkLmtYP52XyJt6aTBOyIrSFW3qkL96kJ3-agsfQgPUURXFur2-g3yxBDeMT6Fs2W807wanGx3lDQF5yFtcGHEA7m_AcAPB08x5S3e7C6ep4XT1-4qWq2s_82LtSusoLuDMAFvTxpitws0Gq-vmeLpOoaIug1yfT99I6lcbreVowLk6EcGh03Y4X1SKG9mDzNW0pVsd5Zq6qJrPoTF4y5dKuagPe-cYiocdkWwNRsloIaHat3I12v8Spb0P7XiTINbeZxDiRr8gu6GM_9LmL0yD_gJv6f7cEiJu1cPF5rvLpUMRT-bAGZq7EZwMlbCq48cn-vaybFk8PiB_glLfLZPlJRsLj-GifCmkFqJPzH_ZQbQBOndzo7Z9psenTbUB_irLLzspdj0boa-21cUPI5TX3PmPsB8mxrB4Fh2hIx9nU_Fk7FOX-nUfkqnNCniUp3-3sQc-815K90Y8gfphAoYz8RA7HVzpnL5U1Lm1RkOL5Npa2hI-qBuMpR1srG4nP-RWWzRFtDSZfyS9UXmzqaUP-WFsTAz3zmfti0cp2sBYsNiXI_berbcbY6WjT7wbjV4eL35XKDx6RdBsMwVHazQfY6kcynEfW63cIJ8K8lTP1qsVbULevNK9Q_QlofKjcHrylobyqS8fHcg8qwsfPVJUZT6kmJPGi5Y18XZ7JEvhCrnu1u7dV05B1xph53oCgcrhyGDLkYe6EBA_nWaJ2eSFqNZqR64rFZFQrwpPLNRy0oEPte6jaWqqzIvPHRCcVWD8DqvaozpES5VlCmUgXdAUlrywKJQlrLDlItZ2_nZelDxiaND6PRpx110yVEADZSNwkh21aKMfcpunQ2v5E-I-n-nOhNb8ZprOH7TX_X_9azkHZPQxOLFq9UQ3Xa1yomg9VsIg4RhXi4LD23N3N0982rL7P4o4UfxmmNu_Rx1LvP9DWglhMLSmDvygJRwn2Mil3JBLvPlLhIr5xAS4YpR5hBfRn-IWtx9q-kckEB6wnZcXlp6u_xJ6x14dCvG-lLp84zUxRO5ftLZ161IQRw5cQ-N8BUPMD9IN2I82JUb5u877bYGL-5EsXk_yX-oU&tga-with-creatives=1
5.255.255.77200 OK 211 B URL GET HTTP/2 yandex.ru/ads/adfox/332443/getBulk/v2?pr=1091866324&pr1=1935486407&dl=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&prr=&extid_loader=&extid_tag_loader=hd29.lordsfilm.cfd&date=2024-05-10T18%3A33%3A34.985%2B00%3A00&pd=10&pw=5&pv=18&pdw=1280&pdh=1024&ylv=0.1021761&ybv=0.1021761&ytt=457946592968709&is-turbo=0&skip-token=yabs.NzIwNTc2MDk1MTE0ODgxMDYKNzIwNTc2MDk3NjQxMzgxMTUKNzIwNTc2MDk1MTE0OTAyMzE%3D&ad-session-id=4562571715366010582&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A1024%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1200%2C%22h%22%3A0%2C%22width%22%3A1200%2C%22height%22%3A0%2C%22visible%22%3A0%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A40%2C%22top%22%3A2110%2C%22req_no%22%3A5%2C%22ad_no%22%3A6%7D&pcode-version=1021761&yaru=true&p1=cvvfd&p2=gxnc&slotNumber=9&bids=W10%3D&utf8=%E2%9C%93&pcode-test-ids=998294%2C0%2C15%3B1012360%2C0%2C96%3B1021001%2C0%2C35%3B1002305%2C0%2C36%3B1011143%2C0%2C60%3B1018247%2C0%2C82%3B1014348%2C0%2C49%3B1021298%2C0%2C45%3B1015041%2C0%2C27%3B1001217%2C0%2C32%3B997800%2C0%2C53%3B999587%2C0%2C56%3B1015254%2C0%2C18%3B1018696%2C0%2C64%3B1010989%2C0%2C72%3B1021761%2C0%2C76&pcode-flags-map=eJy1WF1z27YS%2FS96DlN%2Bk%2BgbRIISRiTAC4Cy1U4GQ1t06zt2cid22t5k8t%2FvAqRoiXKo27T1i0WQOFgszp7dxZfFFkst1%2FxK41yXeElKXXChKdNLzBgRix9%2F%2FrL4rX341C1%2BXCjRkMWbxXP39Ez38BzHQRAmi6%2Fv3ixyKvGyJDrjDVNakJwKkinAwXU9i5H4bhj6FsOY0kiiq6ZUVPCyBDSmzA8i9BVW2ZrkWtGKaF4Ukqh53MB3k2TEFUSJneZMM6KuuNhoIgSf310SxWGCLIJZlDdK14JYu14s3NKccD28P4HzXPg7wUMBStwLeMumKGC3pKrVTpe0olPQP424rTHN%2F34LiwZ%2Bfy8qg4P4uy39BuZfOp%2FXMf85D3zv6RuGrwRe6pKwlVqfTIL4So%2BnpW7qJuE4jTAbt0rgbAPekg0uez0wMkCuFREMRnI5H8Wp58fud4DaAYkLoguBK3J5jT6ihTDSIOEL0BhYUBn1qrGBAGxpUXGTU64zQbCiWyLnoUPX96LRfEACGcpKSkDLSrICWykruL5aUytxbEuEGqhlVr%2BAHblpeiRELIcjxkvDApwbJCphoBGlkacrsuSXbE3cEL0cO1E6a6Tild5WuD4QEuwqm1N%2FxhNWpnEUxIPy2q2A6KsVHvZVl43UtMIronMi6Yrpg8Qb58LQRvFTTnR%2F%2FOcY3nO9EEXROb6o6r8E%2BeJLqexs8KGknE1CxUO%2Bj05n%2By4KPTvbhlyf4XTDaEEhs1AG3ClwRuZMiFDqD2nFpKrlRkv6E%2BkZN%2B4y49WSz6HECQrdF5SSAH0BoZqdE6dh3FtvlEcCswmDqAfJ%2FD9cF6dx6AWH4GHkymTERjCNC9i14TpEqloL3qzW81nR8w70kxWGMPhXQxoCQV3rZWnCvaSnAfHz4rG9f3j78ROg%2FLd9v%2B%2F%2BgN8%2F3D%2B2v3RPJ0O%2FtI92ZP%2B5e99%2F3v52%2F%2Fyh%2F%2Fn49uhh%2F%2F5%2BGDXIIwIMfGw%2FP3z4%2FOvw%2BvPH%2Fv%2Bnj%2B3b993vT2cf%2FLv98Hhvp7472WIEhzyeTkGAHCAjmQKSyTknJ0EUuH1EQXkCx1Jg4BnICQQRa6rlpJyazo68YNDzGpuFTfEEM0EVliQDaYMB0FIKlL8Ak7h92EkQWJxXuuSrlY0Umhf4lQPah52XxO6N07Zd5ITdjee0N17idHvURdE%2BuPWiG1jibt%2BirutunO7Wv3XCFrlOmqI7Zx9E7c1tept4cQufeXddkHp3dw66cwMn3Ke3DrpNYgdFXnvne3sU7o0OufD69i5ETtB6sRN6yd5Bnhc4yT4MULxvE3ffnR5LGkWo988ORBdkPevPZlly4B3EAeizIq%2FsTzjU8UPkQSp0PFj6%2BNmfPAeT59A%2BY8ePIK0n%2FjAfO1FqwtHxvHEgBt4kZoF3J9kWxV7cR62Eg%2BCQ8uj13PmlURAMkcps6tLAPJNAjUBgZehgymLIoroirJmHCpHfe8xE%2FKpWGmSD1mp2ElTOKDxYPEjLqNTgYV1h0DhD6lkY5LkpOsAIcoVFbsr3XT07DUTbdV8UfuxDtJSmcpjVOOQH4ZAdxnbE6hr4q6DGedMscQYQBWkwBv4B5JBSbZbiWVOZsgCKD6zICnqKJaTv7XxoI98UAXNZowBqQFWQXzDP89BpQrWpRh8lBIMPwSEsUaxc0JKq0cxZ%2FMCN0p6r%2BU8HqA0pibrkNi%2F1e7sOkgfuAgcRXFkQXNqKz5L5yKTRheQ6K5scGj8BDcC8hZDFXuo0g73GLC9N0LPNcNq2%2BMtVwy5sNvEHstiay%2BgHeGxNZ4MDZgHHelYDB0Bf%2BxJpudPC0EtqLATezUKA1EXBVJ8PNZyU8xSP4mhgqDQZYQe7J9fAShOTsxMTN4nRuKpQS51haKj11h8K3dnZKDq2GRRMX1PMKwqBDflfqtm0aGbHwUlc8powYwO0QDXImMLQ%2BpSbCyDhUHjB5yu9hpppPuhAr9NoqJgwqEjOmUkWGCit4F%2B%2BIrYipfPpFApJkH00g3J5dk8zLHcs68ul4ylfFk%2Fds8lSR%2B%2Ft%2BeQY3FJy0IQ3p%2B%2BGDmI6PryYjJq28FsA31yCMpD5fgDnBb%2BevIYDE3SD%2B8uesxUzzjcUPjIXNpStxq%2FABb9%2BeHp%2BMnttHx4W776eOipN0EtbIxsQqx0YMshIxcFkNvQNJx4vcCnJKVPSQwIzSCUHG0x5WpRAG%2BhCmzK3ymFSoloTiCLbb89WvWCeH8QvzfbRPJBICrVvo5QRXCwonsTSmYFzYH2VCdmVkVJjBuqigG5QadvbATVV4jk7cS7zzTQxQRMEceFN%2BiI7dIhu2xsdAtsk%2B%2FICwz0vHDoLUnGQ%2BGxt%2BmfVN%2BTQ2IOsDWgXgFJ%2FuE0cm3tuGn1Zl3gHUge2CBN1gpiu%2BQTr9vlh2igG4VgKHC4luTC8v6K5aZq3%2FjyC7%2FloCNyl5GWjbEHQQ%2F1pCONXe09RkZximK%2FWpqIY70k5K3fnVwnnu4rcoYHFeQ7iySueQWBAqBp%2Fm6qMSzU58TMQoIg3XIw2bAViXGcKz0tvkrruWL3UeGcrIFsECiV13weeCelkYQQKng4C%2FnI9RGzyg9abm1IGaG%2FYPymDXnGDH4WjX%2BUG52y4crpEsBjFk3ngfuCs2EFSI2U%2Bm8eOAcZqZqjDbCNSYJbtXtOoV7ICGorj2hzga1GaxGdRmths9vV%2FgC3hhg%3D%3D&pcode-icookie=p88CHeBmQtocA4y2Mj45%2BLrsa2Kq2rMjUdsNrrdCcSX9pUjtnO8qDrK1wINRw1Aq4rGAsO8v9YisfOnPD2Gr7VE4A5Q%3D&top-ancestor=https%3A%2F%2Fhd29.lordsfilm.cfd&top-ancestor-undetermined=0&grab-orig-len=5120&grab=eyJncmFiX3ZlcnNpb24iOjJ9ChLjlLDkqAlQowYsqT355OyXu0KtaqKKWlGpJdAEhk94JzInucy8LYMcLr2pr_fLIqsW3NpkVeCUc_I50FsBfWaASxiOmMOwTLPfNCm3dk4YIcYIIwxFGCOEMaLTZKpST6epaq2eLlNnZaVPcVNJQpmKU3kq7CmMVPag-Sl6yksoEvIOeCOzkRn8nlCkgodN_uIkD0bUU96LFb4ojJTfU5yHRfEQP_yE_OV5PZX1BLSHnPIBwEwlqaCnopcjOXEvWpZK6FiGAzpVldVdWasqcK3aKtcVaupMrVBau06hzCplBq7Vc-rd2lPsv12aylnRPvGleMdfQrln8-dAt2t8x3Ww4Zt7itdfQnK8vhDJC-Ydi3ESslSakCUAWyYmJA85z3LgPUU_lvy6MJcNwpT3v3FTWUKQYv6NCQWQwD4PvFSYEJnNZitLcPtwK1iwFYU2DzMgFf0VZM-iZ9Vu_zgVs_qvfyCy238qSAh228ca8mUF77bKOkxv_PyhMSzRniRIJfMixV4uMf-AWzJFQrQwhDv_eydndV846y0DZ-chWxgxZBFD7vU_4j-He-q-fqH_XjiTTogT0P4MkoXoJ5cQHuOigyQpxgOBdsx7yMWs7ot5SMifS6wE_4CuAJwVPGdIvtv4L0CUSm4VLFP5tAotrK4r6zwH1wpmbtXTadVwYiCwi5raovvRV0VfEKparRzRU7oPo4kaoAEoBqZFreyhvzRgWAoF7AOsUmu1ZfUQU5UR1KpKSRWLzhQWlYL2JUq1nq7Wp5Bu1gnRT4eYjqUO8PpfK6VlIdGVVV3QqMHw_7HoFCX3Kd5tYV-zHOwHkEK5HtpSTcgQRHBezBekIShqYDK5wzS6wzS5w2T28LKjoNzGlKeC4P0_Cfl22ldSinVd7T_iBIP00El_vRjPTNED8giH_DV9yZ3UWQLS8JCQXv17XrNQlY7rmiViLSSUngvw_--W6bMc9FQ8ydn5dhASwi1B0U-F2CuF_48lX5wnIfZK4bUkeumC7w4J3kLCd94f9JcSPSsEJ_jKYnvSUdCW65aM-IuD2EW4E9Ogz2bdIQRpmX9pm8NioU4q3WmIXaWWDiafBLtHH3dYgUVynta-XmpO8ACu2YSeoW4KvXp2ZDII27XER01zXhmU5fjGQXiMudSaEHiF4m4SlBxV6fYad6l4yoTcvQ8oN2EIl-bznAaQ66JfhEca0nYL-SSbPU7uXsmgrmDJNZJ_SSyb1fxMjwNy5M6c8SqOKr8G9HGJmBEhbN4EwM2qyJpzkSNDI0cebxEm-g52Y8HnWIxU8jO3BkBHDGhd87eNCoDoINtWwM-BYoCw1A_adYNmfSLZCoexzq-gnQYEr3aIpi_RaiZ7tDjaARayhGlotxO7h2MLJNwe-feKTmM5n-O8ExPXP6FRFCpXUbSKq_72bcQO8LAo2kxpKRXw3jV4kB3MvAGPn2zYjHGsjh8P2JDxuz-EWxdUeVWGii8spYBdWnR1oQiK7gerVPw_7YLSFjW8mGQ9CB6_zjQWdVapXnAdgqvssNUPSFXncK1eASp4_QFYiiqntsCpiszqfsQLPLJDLzRLKGjVD4nvkv9K-hICb4s2AkneksgZwXf7VNRZlTdy7piVOXWt1CM00zN-Nl8QXMgiOcaAbAgswP-x5R58ZS_giEx5iJZ7rVSrvAzNq0Jd5Va9aZiMeYSyAW5rL2dIfe54fckFCa5-dxMm1G2CwWxEmTUhkX1CPZ_1sxG6vZWa2HWlwESEAPKEoKe4n1AE9kqE0WRyKhHEInHdAbQlDDjq4qm3fpjci9NP1p-awh5_5oHbHDl4iNtw3QYogwt9-OwX1SLoKTDNy9zZH4y-QS9FKrebvw0osQYksi_gNpDh9wd8kYvNXdKbjQwGxxzOZEbIruuC8lmH9JyQLQBiuwXAaDbRMznui5E9KUdQlnCa8srkAZ4_iX3l8EUAZfG8Hkg_LLZrHtl6tqT2GsfInl0FYkK4-ECywzRYnIbDq1mvZ2lL28tjNNMbjYhdNPsBqj8lJV_b9w-W-rigCWHzNg8Xwl5oxMCEGGy6-EFrWC5OMfpgYadSe_mHTdM-3tl6H8nnmnSPfbVoyTn5dhfIYDYgNpjrXqB_t4kWQ0Nur88MBocUZWDTsLQRgvFSrJiYyh5tCh57hldnFHrGnbyEZE08CfpakVPY8WQZzCbwnBrtaVTEnO9CtCTYMH_dqMOln6nz1lrMVnp_98locsjubEpR4o4J_OFyDzW5pB_yWYbdtkDIntET7ncd6VoIk9sjPvl1GumdkjximnddBf4ZqR-ulq3Ynk2py7OjwP4w4GwpmhXOWaJIL2riHyET5kaihx9GcvgzD3Jt2-3F8wYzPZsm_zX_PHyds_CQNiz5NYI4En2i94_knclejjca2JCAb0hTDhdZEDLV7wnBb0sYx0zmIRKVPgiyhlOMiiiJgZkRAuIlIZE1QF7TcVmsY32JPtIaR_2KECnXRrneSX2y_MVS5H2NMfl2DPQZmDgb6LNpOho95bHD4R81ivptASEohebPij7D4YdVUyWrB7tmMTAjLU2xvdCAwWwwsms7gqNQdnDUSnUHW1GWtVLbaAxUhGFsalKN1wgLRgttMK8kfZQQm2rd-F9EtuIyRicvli1xVc5A8J1dmwQuEHqtjmBh3ptK1n8_7bgYVkgjbg4bsLqBBguQgIAPGECDBaiI6cePqzifKrBPhKMajntzLnhdZGrds6QdRkNVll0NT6koqg-ky0qXBUZKw2V3BPfXFph2JF1WNNkYeDnJbLuv4JfTmPSOF-Squiz1HNRrnnErlI7l_wa4VedZ-DiuydBKN5uhWRAog7ctizG0UzmC4NjHoKXtLDZbGqiAXeV-8RJN_WwR-MaXgnzmIgnl0ZSRd5_KQjPxv8Pl6tlHL-vjl7d8czRT8DIzEIFNT7N0vwFonhUKJTx9rBJ6Dxpc35VQg-ohPAT-9wAHLDgW-GD5IXG9ri-YBbZaWwUHD2OT0xrDePYG4sdaopUjOgIrkDa4J2iaFqKUd6tm7WNhgn_L6ymkBP8yyKrOyLgSuE1DZDRN5PdUFs95DFpGIIzRLtntYfQU6HN0Am-hruTgra9tHPlqBPsfn80EfwjX1g5lrYxBfOCyWEHFx_xVqnkA6Cn61Ij0BUtC3MTxrOA8tutT0ZJ__bpvLFxm3bSw54BtjePD__p3-68hxwoE3KOd-wugo_HvHe82UmRJEfGdgO5ibDHn43C19915i1qZo60iky9Y9JtMhHL9puHIDiQv1brKkmnUp0ahMUZCcyraENlrMMuGdN1YezCvhkoSNUjBh_OmUY9cCNkPiv9BRP3dUOz3I8YfRsHfEUH9CIH6S1oUCcFzFkQD3xlx-345G0hg7-ozSwuhVO-GEL07-vKdizD8v3yO8GagDc-Tdw0AcitI9FTySwbu5dA3L8m4bBn-5H_0yWMuSb30lNr62i9f5SxuvOS5P24w95v8By5PCIcQjrXvLLHGix4O5asF-OJDCIXzliVrJUu2SNHH52-jnx7WtvDPT5oQ_z3A36HNAP7SMekEWzFT9tXS71xdqd5Cp_CbiL_4XrLdyaVSYXQ8Rt9NhxuBtY_GxzXgbmd5P1ZH6wyi4e6EiPs8bns4lfklUNpp3ljE0S7kezTZNdnW6w1_08swOzTg6ddPartYvD8a1Cl2LrnvUhIEfwv_T5PEY536bbwM_sGteDtfmBBeSmtNFv66nYg9WqXCrftGJhjDOdupM-qTxhpK0wnCZzPJJIreLKVuFVcBQQ2nGQBvh4qz5HWbycydbgKpT-8RaJeIa2LTizA-n9GoizyzukhYvIEitSK_KOckGxXj_kIN1y3pxOKpLyJgdo7BmD2udwgilTtEHjANk2tWAS6UoAAURIevbUZjeVOFeGYqnTo8-8WNcMCG3xmMzBYTMz2zWxLRMLl7qFlNe4gLZz_WTLsRw8E55b3B7-Hm3816fa8R9AVyPcwL_1ycmvAdIY7DjvRxzHL8sTQ-PBOkLmtYP52XyJt6aTBOyIrSFW3qkL96kJ3-agsfQgPUURXFur2-g3yxBDeMT6Fs2W807wanGx3lDQF5yFtcGHEA7m_AcAPB08x5S3e7C6ep4XT1-4qWq2s_82LtSusoLuDMAFvTxpitws0Gq-vmeLpOoaIug1yfT99I6lcbreVowLk6EcGh03Y4X1SKG9mDzNW0pVsd5Zq6qJrPoTF4y5dKuagPe-cYiocdkWwNRsloIaHat3I12v8Spb0P7XiTINbeZxDiRr8gu6GM_9LmL0yD_gJv6f7cEiJu1cPF5rvLpUMRT-bAGZq7EZwMlbCq48cn-vaybFk8PiB_glLfLZPlJRsLj-GifCmkFqJPzH_ZQbQBOndzo7Z9psenTbUB_irLLzspdj0boa-21cUPI5TX3PmPsB8mxrB4Fh2hIx9nU_Fk7FOX-nUfkqnNCniUp3-3sQc-815K90Y8gfphAoYz8RA7HVzpnL5U1Lm1RkOL5Npa2hI-qBuMpR1srG4nP-RWWzRFtDSZfyS9UXmzqaUP-WFsTAz3zmfti0cp2sBYsNiXI_berbcbY6WjT7wbjV4eL35XKDx6RdBsMwVHazQfY6kcynEfW63cIJ8K8lTP1qsVbULevNK9Q_QlofKjcHrylobyqS8fHcg8qwsfPVJUZT6kmJPGi5Y18XZ7JEvhCrnu1u7dV05B1xph53oCgcrhyGDLkYe6EBA_nWaJ2eSFqNZqR64rFZFQrwpPLNRy0oEPte6jaWqqzIvPHRCcVWD8DqvaozpES5VlCmUgXdAUlrywKJQlrLDlItZ2_nZelDxiaND6PRpx110yVEADZSNwkh21aKMfcpunQ2v5E-I-n-nOhNb8ZprOH7TX_X_9azkHZPQxOLFq9UQ3Xa1yomg9VsIg4RhXi4LD23N3N0982rL7P4o4UfxmmNu_Rx1LvP9DWglhMLSmDvygJRwn2Mil3JBLvPlLhIr5xAS4YpR5hBfRn-IWtx9q-kckEB6wnZcXlp6u_xJ6x14dCvG-lLp84zUxRO5ftLZ161IQRw5cQ-N8BUPMD9IN2I82JUb5u877bYGL-5EsXk_yX-oU&tga-with-creatives=1
IP 5.255.255.77:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.xn--d1acpjx3f.xn--p1ai
Fingerprint17:FB:0C:B6:3F:7F:A5:4C:41:AD:D0:5C:6B:9A:96:47:FE:AF:C8:5C
ValidityMon, 04 Mar 2024 10:29:07 GMT - Sun, 01 Sep 2024 20:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 5a86219566975aefda22990cf92ea69c
89e72598a05b23c45319f29a313902d70ec2a39e
ab1d2d240af7cd971380f3c3fcb8ff5600eae8f3f65a5eafcf93aa49a97d0e3c
GET /ads/adfox/332443/getBulk/v2?pr=1091866324&pr1=1935486407&dl=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&prr=&extid_loader=&extid_tag_loader=hd29.lordsfilm.cfd&date=2024-05-10T18%3A33%3A34.985%2B00%3A00&pd=10&pw=5&pv=18&pdw=1280&pdh=1024&ylv=0.1021761&ybv=0.1021761&ytt=457946592968709&is-turbo=0&skip-token=yabs.NzIwNTc2MDk1MTE0ODgxMDYKNzIwNTc2MDk3NjQxMzgxMTUKNzIwNTc2MDk1MTE0OTAyMzE%3D&ad-session-id=4562571715366010582&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A1024%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1200%2C%22h%22%3A0%2C%22width%22%3A1200%2C%22height%22%3A0%2C%22visible%22%3A0%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A40%2C%22top%22%3A2110%2C%22req_no%22%3A5%2C%22ad_no%22%3A6%7D&pcode-version=1021761&yaru=true&p1=cvvfd&p2=gxnc&slotNumber=9&bids=W10%3D&utf8=%E2%9C%93&pcode-test-ids=998294%2C0%2C15%3B1012360%2C0%2C96%3B1021001%2C0%2C35%3B1002305%2C0%2C36%3B1011143%2C0%2C60%3B1018247%2C0%2C82%3B1014348%2C0%2C49%3B1021298%2C0%2C45%3B1015041%2C0%2C27%3B1001217%2C0%2C32%3B997800%2C0%2C53%3B999587%2C0%2C56%3B1015254%2C0%2C18%3B1018696%2C0%2C64%3B1010989%2C0%2C72%3B1021761%2C0%2C76&pcode-flags-map=eJy1WF1z27YS%2FS96DlN%2Bk%2BgbRIISRiTAC4Cy1U4GQ1t06zt2cid22t5k8t%2FvAqRoiXKo27T1i0WQOFgszp7dxZfFFkst1%2FxK41yXeElKXXChKdNLzBgRix9%2F%2FrL4rX341C1%2BXCjRkMWbxXP39Ez38BzHQRAmi6%2Fv3ixyKvGyJDrjDVNakJwKkinAwXU9i5H4bhj6FsOY0kiiq6ZUVPCyBDSmzA8i9BVW2ZrkWtGKaF4Ukqh53MB3k2TEFUSJneZMM6KuuNhoIgSf310SxWGCLIJZlDdK14JYu14s3NKccD28P4HzXPg7wUMBStwLeMumKGC3pKrVTpe0olPQP424rTHN%2F34LiwZ%2Bfy8qg4P4uy39BuZfOp%2FXMf85D3zv6RuGrwRe6pKwlVqfTIL4So%2BnpW7qJuE4jTAbt0rgbAPekg0uez0wMkCuFREMRnI5H8Wp58fud4DaAYkLoguBK3J5jT6ihTDSIOEL0BhYUBn1qrGBAGxpUXGTU64zQbCiWyLnoUPX96LRfEACGcpKSkDLSrICWykruL5aUytxbEuEGqhlVr%2BAHblpeiRELIcjxkvDApwbJCphoBGlkacrsuSXbE3cEL0cO1E6a6Tild5WuD4QEuwqm1N%2FxhNWpnEUxIPy2q2A6KsVHvZVl43UtMIronMi6Yrpg8Qb58LQRvFTTnR%2F%2FOcY3nO9EEXROb6o6r8E%2BeJLqexs8KGknE1CxUO%2Bj05n%2By4KPTvbhlyf4XTDaEEhs1AG3ClwRuZMiFDqD2nFpKrlRkv6E%2BkZN%2B4y49WSz6HECQrdF5SSAH0BoZqdE6dh3FtvlEcCswmDqAfJ%2FD9cF6dx6AWH4GHkymTERjCNC9i14TpEqloL3qzW81nR8w70kxWGMPhXQxoCQV3rZWnCvaSnAfHz4rG9f3j78ROg%2FLd9v%2B%2F%2BgN8%2F3D%2B2v3RPJ0O%2FtI92ZP%2B5e99%2F3v52%2F%2Fyh%2F%2Fn49uhh%2F%2F5%2BGDXIIwIMfGw%2FP3z4%2FOvw%2BvPH%2Fv%2Bnj%2B3b993vT2cf%2FLv98Hhvp7472WIEhzyeTkGAHCAjmQKSyTknJ0EUuH1EQXkCx1Jg4BnICQQRa6rlpJyazo68YNDzGpuFTfEEM0EVliQDaYMB0FIKlL8Ak7h92EkQWJxXuuSrlY0Umhf4lQPah52XxO6N07Zd5ITdjee0N17idHvURdE%2BuPWiG1jibt%2BirutunO7Wv3XCFrlOmqI7Zx9E7c1tept4cQufeXddkHp3dw66cwMn3Ke3DrpNYgdFXnvne3sU7o0OufD69i5ETtB6sRN6yd5Bnhc4yT4MULxvE3ffnR5LGkWo988ORBdkPevPZlly4B3EAeizIq%2FsTzjU8UPkQSp0PFj6%2BNmfPAeT59A%2BY8ePIK0n%2FjAfO1FqwtHxvHEgBt4kZoF3J9kWxV7cR62Eg%2BCQ8uj13PmlURAMkcps6tLAPJNAjUBgZehgymLIoroirJmHCpHfe8xE%2FKpWGmSD1mp2ElTOKDxYPEjLqNTgYV1h0DhD6lkY5LkpOsAIcoVFbsr3XT07DUTbdV8UfuxDtJSmcpjVOOQH4ZAdxnbE6hr4q6DGedMscQYQBWkwBv4B5JBSbZbiWVOZsgCKD6zICnqKJaTv7XxoI98UAXNZowBqQFWQXzDP89BpQrWpRh8lBIMPwSEsUaxc0JKq0cxZ%2FMCN0p6r%2BU8HqA0pibrkNi%2F1e7sOkgfuAgcRXFkQXNqKz5L5yKTRheQ6K5scGj8BDcC8hZDFXuo0g73GLC9N0LPNcNq2%2BMtVwy5sNvEHstiay%2BgHeGxNZ4MDZgHHelYDB0Bf%2BxJpudPC0EtqLATezUKA1EXBVJ8PNZyU8xSP4mhgqDQZYQe7J9fAShOTsxMTN4nRuKpQS51haKj11h8K3dnZKDq2GRRMX1PMKwqBDflfqtm0aGbHwUlc8powYwO0QDXImMLQ%2BpSbCyDhUHjB5yu9hpppPuhAr9NoqJgwqEjOmUkWGCit4F%2B%2BIrYipfPpFApJkH00g3J5dk8zLHcs68ul4ylfFk%2Fds8lSR%2B%2Ft%2BeQY3FJy0IQ3p%2B%2BGDmI6PryYjJq28FsA31yCMpD5fgDnBb%2BevIYDE3SD%2B8uesxUzzjcUPjIXNpStxq%2FABb9%2BeHp%2BMnttHx4W776eOipN0EtbIxsQqx0YMshIxcFkNvQNJx4vcCnJKVPSQwIzSCUHG0x5WpRAG%2BhCmzK3ymFSoloTiCLbb89WvWCeH8QvzfbRPJBICrVvo5QRXCwonsTSmYFzYH2VCdmVkVJjBuqigG5QadvbATVV4jk7cS7zzTQxQRMEceFN%2BiI7dIhu2xsdAtsk%2B%2FICwz0vHDoLUnGQ%2BGxt%2BmfVN%2BTQ2IOsDWgXgFJ%2FuE0cm3tuGn1Zl3gHUge2CBN1gpiu%2BQTr9vlh2igG4VgKHC4luTC8v6K5aZq3%2FjyC7%2FloCNyl5GWjbEHQQ%2F1pCONXe09RkZximK%2FWpqIY70k5K3fnVwnnu4rcoYHFeQ7iySueQWBAqBp%2Fm6qMSzU58TMQoIg3XIw2bAViXGcKz0tvkrruWL3UeGcrIFsECiV13weeCelkYQQKng4C%2FnI9RGzyg9abm1IGaG%2FYPymDXnGDH4WjX%2BUG52y4crpEsBjFk3ngfuCs2EFSI2U%2Bm8eOAcZqZqjDbCNSYJbtXtOoV7ICGorj2hzga1GaxGdRmths9vV%2FgC3hhg%3D%3D&pcode-icookie=p88CHeBmQtocA4y2Mj45%2BLrsa2Kq2rMjUdsNrrdCcSX9pUjtnO8qDrK1wINRw1Aq4rGAsO8v9YisfOnPD2Gr7VE4A5Q%3D&top-ancestor=https%3A%2F%2Fhd29.lordsfilm.cfd&top-ancestor-undetermined=0&grab-orig-len=5120&grab=eyJncmFiX3ZlcnNpb24iOjJ9ChLjlLDkqAlQowYsqT355OyXu0KtaqKKWlGpJdAEhk94JzInucy8LYMcLr2pr_fLIqsW3NpkVeCUc_I50FsBfWaASxiOmMOwTLPfNCm3dk4YIcYIIwxFGCOEMaLTZKpST6epaq2eLlNnZaVPcVNJQpmKU3kq7CmMVPag-Sl6yksoEvIOeCOzkRn8nlCkgodN_uIkD0bUU96LFb4ojJTfU5yHRfEQP_yE_OV5PZX1BLSHnPIBwEwlqaCnopcjOXEvWpZK6FiGAzpVldVdWasqcK3aKtcVaupMrVBau06hzCplBq7Vc-rd2lPsv12aylnRPvGleMdfQrln8-dAt2t8x3Ww4Zt7itdfQnK8vhDJC-Ydi3ESslSakCUAWyYmJA85z3LgPUU_lvy6MJcNwpT3v3FTWUKQYv6NCQWQwD4PvFSYEJnNZitLcPtwK1iwFYU2DzMgFf0VZM-iZ9Vu_zgVs_qvfyCy238qSAh228ca8mUF77bKOkxv_PyhMSzRniRIJfMixV4uMf-AWzJFQrQwhDv_eydndV846y0DZ-chWxgxZBFD7vU_4j-He-q-fqH_XjiTTogT0P4MkoXoJ5cQHuOigyQpxgOBdsx7yMWs7ot5SMifS6wE_4CuAJwVPGdIvtv4L0CUSm4VLFP5tAotrK4r6zwH1wpmbtXTadVwYiCwi5raovvRV0VfEKparRzRU7oPo4kaoAEoBqZFreyhvzRgWAoF7AOsUmu1ZfUQU5UR1KpKSRWLzhQWlYL2JUq1nq7Wp5Bu1gnRT4eYjqUO8PpfK6VlIdGVVV3QqMHw_7HoFCX3Kd5tYV-zHOwHkEK5HtpSTcgQRHBezBekIShqYDK5wzS6wzS5w2T28LKjoNzGlKeC4P0_Cfl22ldSinVd7T_iBIP00El_vRjPTNED8giH_DV9yZ3UWQLS8JCQXv17XrNQlY7rmiViLSSUngvw_--W6bMc9FQ8ydn5dhASwi1B0U-F2CuF_48lX5wnIfZK4bUkeumC7w4J3kLCd94f9JcSPSsEJ_jKYnvSUdCW65aM-IuD2EW4E9Ogz2bdIQRpmX9pm8NioU4q3WmIXaWWDiafBLtHH3dYgUVynta-XmpO8ACu2YSeoW4KvXp2ZDII27XER01zXhmU5fjGQXiMudSaEHiF4m4SlBxV6fYad6l4yoTcvQ8oN2EIl-bznAaQ66JfhEca0nYL-SSbPU7uXsmgrmDJNZJ_SSyb1fxMjwNy5M6c8SqOKr8G9HGJmBEhbN4EwM2qyJpzkSNDI0cebxEm-g52Y8HnWIxU8jO3BkBHDGhd87eNCoDoINtWwM-BYoCw1A_adYNmfSLZCoexzq-gnQYEr3aIpi_RaiZ7tDjaARayhGlotxO7h2MLJNwe-feKTmM5n-O8ExPXP6FRFCpXUbSKq_72bcQO8LAo2kxpKRXw3jV4kB3MvAGPn2zYjHGsjh8P2JDxuz-EWxdUeVWGii8spYBdWnR1oQiK7gerVPw_7YLSFjW8mGQ9CB6_zjQWdVapXnAdgqvssNUPSFXncK1eASp4_QFYiiqntsCpiszqfsQLPLJDLzRLKGjVD4nvkv9K-hICb4s2AkneksgZwXf7VNRZlTdy7piVOXWt1CM00zN-Nl8QXMgiOcaAbAgswP-x5R58ZS_giEx5iJZ7rVSrvAzNq0Jd5Va9aZiMeYSyAW5rL2dIfe54fckFCa5-dxMm1G2CwWxEmTUhkX1CPZ_1sxG6vZWa2HWlwESEAPKEoKe4n1AE9kqE0WRyKhHEInHdAbQlDDjq4qm3fpjci9NP1p-awh5_5oHbHDl4iNtw3QYogwt9-OwX1SLoKTDNy9zZH4y-QS9FKrebvw0osQYksi_gNpDh9wd8kYvNXdKbjQwGxxzOZEbIruuC8lmH9JyQLQBiuwXAaDbRMznui5E9KUdQlnCa8srkAZ4_iX3l8EUAZfG8Hkg_LLZrHtl6tqT2GsfInl0FYkK4-ECywzRYnIbDq1mvZ2lL28tjNNMbjYhdNPsBqj8lJV_b9w-W-rigCWHzNg8Xwl5oxMCEGGy6-EFrWC5OMfpgYadSe_mHTdM-3tl6H8nnmnSPfbVoyTn5dhfIYDYgNpjrXqB_t4kWQ0Nur88MBocUZWDTsLQRgvFSrJiYyh5tCh57hldnFHrGnbyEZE08CfpakVPY8WQZzCbwnBrtaVTEnO9CtCTYMH_dqMOln6nz1lrMVnp_98locsjubEpR4o4J_OFyDzW5pB_yWYbdtkDIntET7ncd6VoIk9sjPvl1GumdkjximnddBf4ZqR-ulq3Ynk2py7OjwP4w4GwpmhXOWaJIL2riHyET5kaihx9GcvgzD3Jt2-3F8wYzPZsm_zX_PHyds_CQNiz5NYI4En2i94_knclejjca2JCAb0hTDhdZEDLV7wnBb0sYx0zmIRKVPgiyhlOMiiiJgZkRAuIlIZE1QF7TcVmsY32JPtIaR_2KECnXRrneSX2y_MVS5H2NMfl2DPQZmDgb6LNpOho95bHD4R81ivptASEohebPij7D4YdVUyWrB7tmMTAjLU2xvdCAwWwwsms7gqNQdnDUSnUHW1GWtVLbaAxUhGFsalKN1wgLRgttMK8kfZQQm2rd-F9EtuIyRicvli1xVc5A8J1dmwQuEHqtjmBh3ptK1n8_7bgYVkgjbg4bsLqBBguQgIAPGECDBaiI6cePqzifKrBPhKMajntzLnhdZGrds6QdRkNVll0NT6koqg-ky0qXBUZKw2V3BPfXFph2JF1WNNkYeDnJbLuv4JfTmPSOF-Squiz1HNRrnnErlI7l_wa4VedZ-DiuydBKN5uhWRAog7ctizG0UzmC4NjHoKXtLDZbGqiAXeV-8RJN_WwR-MaXgnzmIgnl0ZSRd5_KQjPxv8Pl6tlHL-vjl7d8czRT8DIzEIFNT7N0vwFonhUKJTx9rBJ6Dxpc35VQg-ohPAT-9wAHLDgW-GD5IXG9ri-YBbZaWwUHD2OT0xrDePYG4sdaopUjOgIrkDa4J2iaFqKUd6tm7WNhgn_L6ymkBP8yyKrOyLgSuE1DZDRN5PdUFs95DFpGIIzRLtntYfQU6HN0Am-hruTgra9tHPlqBPsfn80EfwjX1g5lrYxBfOCyWEHFx_xVqnkA6Cn61Ij0BUtC3MTxrOA8tutT0ZJ__bpvLFxm3bSw54BtjePD__p3-68hxwoE3KOd-wugo_HvHe82UmRJEfGdgO5ibDHn43C19915i1qZo60iky9Y9JtMhHL9puHIDiQv1brKkmnUp0ahMUZCcyraENlrMMuGdN1YezCvhkoSNUjBh_OmUY9cCNkPiv9BRP3dUOz3I8YfRsHfEUH9CIH6S1oUCcFzFkQD3xlx-345G0hg7-ozSwuhVO-GEL07-vKdizD8v3yO8GagDc-Tdw0AcitI9FTySwbu5dA3L8m4bBn-5H_0yWMuSb30lNr62i9f5SxuvOS5P24w95v8By5PCIcQjrXvLLHGix4O5asF-OJDCIXzliVrJUu2SNHH52-jnx7WtvDPT5oQ_z3A36HNAP7SMekEWzFT9tXS71xdqd5Cp_CbiL_4XrLdyaVSYXQ8Rt9NhxuBtY_GxzXgbmd5P1ZH6wyi4e6EiPs8bns4lfklUNpp3ljE0S7kezTZNdnW6w1_08swOzTg6ddPartYvD8a1Cl2LrnvUhIEfwv_T5PEY536bbwM_sGteDtfmBBeSmtNFv66nYg9WqXCrftGJhjDOdupM-qTxhpK0wnCZzPJJIreLKVuFVcBQQ2nGQBvh4qz5HWbycydbgKpT-8RaJeIa2LTizA-n9GoizyzukhYvIEitSK_KOckGxXj_kIN1y3pxOKpLyJgdo7BmD2udwgilTtEHjANk2tWAS6UoAAURIevbUZjeVOFeGYqnTo8-8WNcMCG3xmMzBYTMz2zWxLRMLl7qFlNe4gLZz_WTLsRw8E55b3B7-Hm3816fa8R9AVyPcwL_1ycmvAdIY7DjvRxzHL8sTQ-PBOkLmtYP52XyJt6aTBOyIrSFW3qkL96kJ3-agsfQgPUURXFur2-g3yxBDeMT6Fs2W807wanGx3lDQF5yFtcGHEA7m_AcAPB08x5S3e7C6ep4XT1-4qWq2s_82LtSusoLuDMAFvTxpitws0Gq-vmeLpOoaIug1yfT99I6lcbreVowLk6EcGh03Y4X1SKG9mDzNW0pVsd5Zq6qJrPoTF4y5dKuagPe-cYiocdkWwNRsloIaHat3I12v8Spb0P7XiTINbeZxDiRr8gu6GM_9LmL0yD_gJv6f7cEiJu1cPF5rvLpUMRT-bAGZq7EZwMlbCq48cn-vaybFk8PiB_glLfLZPlJRsLj-GifCmkFqJPzH_ZQbQBOndzo7Z9psenTbUB_irLLzspdj0boa-21cUPI5TX3PmPsB8mxrB4Fh2hIx9nU_Fk7FOX-nUfkqnNCniUp3-3sQc-815K90Y8gfphAoYz8RA7HVzpnL5U1Lm1RkOL5Npa2hI-qBuMpR1srG4nP-RWWzRFtDSZfyS9UXmzqaUP-WFsTAz3zmfti0cp2sBYsNiXI_berbcbY6WjT7wbjV4eL35XKDx6RdBsMwVHazQfY6kcynEfW63cIJ8K8lTP1qsVbULevNK9Q_QlofKjcHrylobyqS8fHcg8qwsfPVJUZT6kmJPGi5Y18XZ7JEvhCrnu1u7dV05B1xph53oCgcrhyGDLkYe6EBA_nWaJ2eSFqNZqR64rFZFQrwpPLNRy0oEPte6jaWqqzIvPHRCcVWD8DqvaozpES5VlCmUgXdAUlrywKJQlrLDlItZ2_nZelDxiaND6PRpx110yVEADZSNwkh21aKMfcpunQ2v5E-I-n-nOhNb8ZprOH7TX_X_9azkHZPQxOLFq9UQ3Xa1yomg9VsIg4RhXi4LD23N3N0982rL7P4o4UfxmmNu_Rx1LvP9DWglhMLSmDvygJRwn2Mil3JBLvPlLhIr5xAS4YpR5hBfRn-IWtx9q-kckEB6wnZcXlp6u_xJ6x14dCvG-lLp84zUxRO5ftLZ161IQRw5cQ-N8BUPMD9IN2I82JUb5u877bYGL-5EsXk_yX-oU&tga-with-creatives=1 HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
timing-allow-origin: *
date: Fri, 10 May 2024 18:33:35 GMT
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: https://hd29.lordsfilm.cfd
set-cookie: i=mzp/j6gHFHsSDa3Elu4pTZjf67W6xP2Dbici6k0ONjWhgBw+czo831Vr66uS9R4YmwyaPXbKiVLJjxcYL1ELzg/yYrw=; Expires=Sun, 10-May-2026 18:33:35 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=6089785351715366015; Expires=Sun, 10-May-2026 18:33:35 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yashr=418192521715366015; Path=/; Domain=.yandex.ru; Expires=Sat, 10 May 2025 18:33:35 GMT; SameSite=None; Secure; HttpOnly
receive-cookie-deprecation=1; Path=/; Domain=.yandex.ru; Expires=Sat, 10 May 2025 18:33:35 GMT; SameSite=None; Secure; HttpOnly; Partitioned
access-control-allow-credentials: true
pragma: no-cache
expires: Fri, 10 May 2024 18:33:35 GMT
x-xss-protection: 1; mode=block
x-yandex-req-id: 1715366015390000-4225089386308978535-balancer-l7leveler-kubr-yp-vla-17-BAL
last-modified: Fri, 10 May 2024 18:33:35 GMT
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
content-type: application/json
X-Firefox-Spdy: h2
hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
104.21.28.116200 OK 73 kB URL User Request GET HTTP/2 hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
IP 104.21.28.116:443
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /serialy/22494-avanpost-2020-25-3-21.html HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 18:33:23 GMT
content-type: text/html; charset=utf-8
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673; path=/; domain=.lordsfilm.cfd; secure; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n%2FvusjUXVcx86qkmWGxcfx0gGvMcnWgSxguzL8HALF1Cko%2FxL5ZkfiZZEo1I4C%2BiCooWm1MNmd6ALxmqZ6mpiQHjlV6bXwwdWqtsq%2FRxj9HZLhO2CCgpFduKk0wceeHYwEuErsw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c0472c88956b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,600|Oswald:700&subset=cyrillic
142.250.74.106200 OK 13 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,600|Oswald:700&subset=cyrillic
IP 142.250.74.106:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File type ASCII text, with very long lines (1572)
Hash f53ddefdee1de9ff48bb9e5934996082
c064ed6b7338634e92ab0d0fb72a7f26a84cdf43
da0ebb773e167198d3edf8f464d751ce6680788dfb7705d107bd560f5403e6c9
GET /css?family=Open+Sans:400,600|Oswald:700&subset=cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 18:33:24 GMT
date: Fri, 10 May 2024 18:33:24 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
user91471.clients-cdnnow.ru/vp_dist/hls.js?v3
185.40.155.13200 OK 1.1 MB URL GET HTTP/2 user91471.clients-cdnnow.ru/vp_dist/hls.js?v3
IP 185.40.155.13:443
Requested by https://videotoday.site/mp_dist/td/trhls.html?v6774352230
Certificate IssuerLet's Encrypt
Subject*.clients-cdnnow.ru
Fingerprint87:A1:BF:A0:80:28:87:49:3F:56:5F:54:07:46:04:BE:B8:84:07:49
ValidityFri, 12 Apr 2024 18:02:24 GMT - Thu, 11 Jul 2024 18:02:23 GMT
Size 1.1 MB (1127126 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /vp_dist/hls.js?v3 HTTP/1.1
Host: user91471.clients-cdnnow.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:12 GMT
content-type: application/javascript
last-modified: Tue, 05 Mar 2024 14:56:11 GMT
vary: Accept-Encoding
etag: W/"65e7328b-1132d6"
x-movieads-country: RU
content-encoding: gzip
x-edge-cache: HIT
x-edge-ip: 172.19.32.5
X-Firefox-Spdy: h2
www.youtube.com/s/player/17fd9675/player_ias.vflset/en_US/base.js
142.250.74.14200 OK 2.6 MB URL GET HTTP/3 www.youtube.com/s/player/17fd9675/player_ias.vflset/en_US/base.js
IP 142.250.74.14:443
Requested by https://www.youtube.com/embed/8KS5HqEiwLc
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Size 2.6 MB (2561953 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/player/17fd9675/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/8KS5HqEiwLc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 813878
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 08 May 2024 07:42:23 GMT
expires: Thu, 08 May 2025 07:42:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 May 2024 04:20:16 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 211864
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ssp.otm-r.com/adjson?tz=0&w=970&h=90&domain=hd29.lordsfilm.cfd&l=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&s=38014&cur=RUB&bidid=86496efe1df5b5&transactionid=&auctionid=&bidfloor=0
0.0.0.0 0 B URL GET ssp.otm-r.com/adjson?tz=0&w=970&h=90&domain=hd29.lordsfilm.cfd&l=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&s=38014&cur=RUB&bidid=86496efe1df5b5&transactionid=&auctionid=&bidfloor=0
IP 0.0.0.0:0
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGlobalSign nv-sa
Subject*.otm-r.com
FingerprintDE:D2:E7:8E:11:AC:D8:80:39:F5:5D:C2:86:9D:33:3F:95:71:FA:58
ValidityMon, 19 Jun 2023 10:49:55 GMT - Sat, 20 Jul 2024 10:49:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /adjson?tz=0&w=970&h=90&domain=hd29.lordsfilm.cfd&l=https%3A%2F%2Fhd29.lordsfilm.cfd%2Fserialy%2F22494-avanpost-2020-25-3-21.html&s=38014&cur=RUB&bidid=86496efe1df5b5&transactionid=&auctionid=&bidfloor=0 HTTP/1.1
Host: ssp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: mpid=NjYzZTY4NzkwZDBmNGE1Nw==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
logger.moviead55.ru/logger.php?v=16ee33f0a2b397c4a1f1ab6636599ac9&c=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&t=player_init&a=&m=%7B%22vis%22%3A100%2C%22dv%22%3Atrue%2C%22jmap%22%3A2%2C%22blen%22%3A2%7D&o=
193.200.65.146200 OK 70 B URL GET HTTP/2 logger.moviead55.ru/logger.php?v=16ee33f0a2b397c4a1f1ab6636599ac9&c=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&t=player_init&a=&m=%7B%22vis%22%3A100%2C%22dv%22%3Atrue%2C%22jmap%22%3A2%2C%22blen%22%3A2%7D&o=
IP 193.200.65.146:443
ASN #6681 Giveme Cloud Sp Z O O
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9
ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash b357a19c87624c7c4d131aeeb4ae677f
c7a9c45fd419815a5ab1998503a9f03514c0e229
497790947d4666760ce38f3c00e852c71fdb66cae849bae8e9ede352719e1581
GET /logger.php?v=16ee33f0a2b397c4a1f1ab6636599ac9&c=61d356c1-bde4-4350-b42a-39aa1eb0a6f3&t=player_init&a=&m=%7B%22vis%22%3A100%2C%22dv%22%3Atrue%2C%22jmap%22%3A2%2C%22blen%22%3A2%7D&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:33:31 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
hd29.lordsfilm.cfd/templates/lordfilm-light/style/styles.css
104.21.28.116200 OK 33 kB URL GET HTTP/3 hd29.lordsfilm.cfd/templates/lordfilm-light/style/styles.css
IP 104.21.28.116:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectlordsfilm.cfd
FingerprintCB:6C:79:D2:F4:0B:F0:E9:BC:34:A9:44:29:33:62:D1:6A:F1:C6:0B
ValiditySun, 17 Mar 2024 19:07:07 GMT - Sat, 15 Jun 2024 19:07:06 GMT
Hash fb58774e609bde5b11f7a649531472fd
307c355a9069ff0b218d1bfa38d010c07c885a3f
d91c285b408957f5d4209a677282b2ca1141ec84d036698d989f9b89937b343e
GET /templates/lordfilm-light/style/styles.css HTTP/1.1
Host: hd29.lordsfilm.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Cookie: PHPSESSID=a07b55f467c8c37970b332dd6296e673
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 18:33:24 GMT
content-type: text/css
last-modified: Thu, 18 Jan 2024 22:01:40 GMT
etag: W/"65a99fc4-8083"
expires: Sat, 11 May 2024 16:07:05 GMT
cache-control: max-age=86400
content-encoding: gzip
cf-cache-status: HIT
age: 8779
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RiJpCLFu1v32EYldSn9bfFeKAnTllriTJz4rTAhXNL3cdXgDO3CaNIHhptXp%2BSrbClUQV0Oi6bRIrgh0HMdYygivDlkG1Yl%2FP7eaYKDjRND3MWKrUzcf03CnWNe%2F%2F2UkPM0w3D4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881c0476b84c569f-OSL
alt-svc: h3=":443"; ma=86400
aj1907.online/zKDzWUKHEP_eHvhOyZUjpbHJBUo07ntqtXSkozhhGdXHHx-DosObi7I8YIQZ3PUxAH1qlKQmytT7oN7QZEzRb_07yJPKoV3_nn3_yj6wwkP1dVzmIDcNCwX4r7ZsyAJ5ML-tfXmgTau-sbXdFeDexJAXsszzZUKif0dCTgWdIdi9llt9eX6r2euzH7P4deduAw-_7bw8KnaUb6OigUnGq6iTCMy5oyaUrGtgiiGKtJGwvJvmQ6lGue6yeFQMl8ybDaiJbN8q_-ffqGadTwdLYWNROPSdnG5yUcOBzoUQF4YwGdPJ1notE9zKT9IPNcapWUgLc5a5NCljroJZZO3Z1CIbHiMt1FFBEKKAG0Srz6YolEGECamyusOTcAjOZ0oo_5hUzC9ncNnKxGzZzaHsxYMM15Xm53ZTxbSYfIuGdO08nYlawCKesdxZ99g?DC=HZ
148.251.134.111200 49 B URL GET HTTP/1.1 aj1907.online/zKDzWUKHEP_eHvhOyZUjpbHJBUo07ntqtXSkozhhGdXHHx-DosObi7I8YIQZ3PUxAH1qlKQmytT7oN7QZEzRb_07yJPKoV3_nn3_yj6wwkP1dVzmIDcNCwX4r7ZsyAJ5ML-tfXmgTau-sbXdFeDexJAXsszzZUKif0dCTgWdIdi9llt9eX6r2euzH7P4deduAw-_7bw8KnaUb6OigUnGq6iTCMy5oyaUrGtgiiGKtJGwvJvmQ6lGue6yeFQMl8ybDaiJbN8q_-ffqGadTwdLYWNROPSdnG5yUcOBzoUQF4YwGdPJ1notE9zKT9IPNcapWUgLc5a5NCljroJZZO3Z1CIbHiMt1FFBEKKAG0Srz6YolEGECamyusOTcAjOZ0oo_5hUzC9ncNnKxGzZzaHsxYMM15Xm53ZTxbSYfIuGdO08nYlawCKesdxZ99g?DC=HZ
IP 148.251.134.111:443
ASN #24940 Hetzner Online GmbH
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectaj1907.online
Fingerprint3A:40:A4:8F:A4:3F:CA:83:C4:F2:07:5F:5C:BD:26:67:E3:96:0F:02
ValidityTue, 09 Apr 2024 08:08:28 GMT - Mon, 08 Jul 2024 08:08:27 GMT
File type GIF image data, version 89a, 1 x 1
Hash 56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef
GET /zKDzWUKHEP_eHvhOyZUjpbHJBUo07ntqtXSkozhhGdXHHx-DosObi7I8YIQZ3PUxAH1qlKQmytT7oN7QZEzRb_07yJPKoV3_nn3_yj6wwkP1dVzmIDcNCwX4r7ZsyAJ5ML-tfXmgTau-sbXdFeDexJAXsszzZUKif0dCTgWdIdi9llt9eX6r2euzH7P4deduAw-_7bw8KnaUb6OigUnGq6iTCMy5oyaUrGtgiiGKtJGwvJvmQ6lGue6yeFQMl8ybDaiJbN8q_-ffqGadTwdLYWNROPSdnG5yUcOBzoUQF4YwGdPJ1notE9zKT9IPNcapWUgLc5a5NCljroJZZO3Z1CIbHiMt1FFBEKKAG0Srz6YolEGECamyusOTcAjOZ0oo_5hUzC9ncNnKxGzZzaHsxYMM15Xm53ZTxbSYfIuGdO08nYlawCKesdxZ99g?DC=HZ HTTP/1.1
Host: aj1907.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: UUID=a5422175-f779-5bdd-9035-7ae658bf7920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
access-control-allow-origin: *
access-control-allow-methods: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
permissions-policy: *
p3p: CP="CAO PSA OUR"
accept-ranges: bytes
etag: W/"49-1715327090000"
last-modified: Fri, 10 May 2024 07:44:50 GMT
content-type: image/gif
content-length: 49
date: Fri, 10 May 2024 18:33:28 GMT
yhb.p.otm-r.com/yhb
0.0.0.0 0 B IP 0.0.0.0:0
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /yhb HTTP/1.1
Host: yhb.p.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1236
Origin: https://hd29.lordsfilm.cfd
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Cookie: mpid=NjYzZTY4NzkwZDBmNGE1Nw==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
ads.digitalcaramel.com/static/close.svg
135.181.113.151200 OK 324 B URL GET HTTP/2 ads.digitalcaramel.com/static/close.svg
IP 135.181.113.151:443
ASN #24940 Hetzner Online GmbH
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerLet's Encrypt
Subjectads.digitalcaramel.com
Fingerprint4A:F6:28:C0:29:BE:EF:0C:0B:79:6B:78:DB:F0:02:9C:41:EC:94:4A
ValidityWed, 03 Apr 2024 16:18:18 GMT - Tue, 02 Jul 2024 16:18:17 GMT
File type SVG Scalable Vector Graphics image
Hash 5379e41fef1b7fd4c2f61eb39712da5c
623fd2c6e39726cdcfbc02131b2b7b31bb74507e
df79456bde0a09c325b6b43bdc1fef8d7bb1aace11e18df0678ae23c234ce2b2
GET /static/close.svg HTTP/1.1
Host: ads.digitalcaramel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 10 May 2024 18:33:36 GMT
content-type: image/svg+xml
last-modified: Fri, 04 Feb 2022 12:11:32 GMT
vary: Accept-Encoding
etag: W/"61fd17f4-144"
expires: Fri, 17 May 2024 18:33:36 GMT
cache-control: max-age=604800
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
quiet-house.cdnmovies-stream.online/content/1345f6055631a890275b54e521160b0d/iframe
172.67.71.9500 Internal Server Error 163 B URL GET HTTP/2 quiet-house.cdnmovies-stream.online/content/1345f6055631a890275b54e521160b0d/iframe
IP 172.67.71.9:443
Requested by https://hd29.lordsfilm.cfd/serialy/22494-avanpost-2020-25-3-21.html
Certificate IssuerGoogle Trust Services LLC
Subjectcdnmovies-stream.online
Fingerprint08:62:C7:ED:77:C4:E1:B4:87:4D:82:07:72:8E:91:ED:D5:DC:A9:4C
ValidityFri, 03 May 2024 12:14:57 GMT - Thu, 01 Aug 2024 12:14:56 GMT
File type HTML document, ASCII text, with no line terminators
Hash db333d6ed4496df19c37e9c2c56ed0a7
019ed866197019b33e3381b08295ce948e55e81b
357dea2c2ed7a4b15893a23d2431c11c19fe75cf606954d4fe76e497eadddb4d
GET /content/1345f6055631a890275b54e521160b0d/iframe HTTP/1.1
Host: quiet-house.cdnmovies-stream.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd29.lordsfilm.cfd/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 500 Internal Server Error
date: Fri, 10 May 2024 18:33:25 GMT
content-type: text/html
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=mUn5KiUM6trxyRpg_v37Rx28BHDU8dnH2cfszgKOKhU-1715366005-1.0.1.1-Q6wrBm..sNVpjCJjG_D0H5x8mjan_QF2nEBayTUfR.6Ig485rXYd28QcFBn0JJ7C5AUBpQBbLbJWCkpgnR6iZQF17jAXY7zHgSOHFMchEcWbCqToK3p2QuWWGGLHGk8OL4HEHGnP5AF9ZPstnXgi4MxYlZnUwXWjUtq7oJeD.mUiAgjkH17fAASadpN_dwVB"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=mUn5KiUM6trxyRpg_v37Rx28BHDU8dnH2cfszgKOKhU-1715366005-1.0.1.1-Q6wrBm..sNVpjCJjG_D0H5x8mjan_QF2nEBayTUfR.6Ig485rXYd28QcFBn0JJ7C5AUBpQBbLbJWCkpgnR6iZQF17jAXY7zHgSOHFMchEcWbCqToK3p2QuWWGGLHGk8OL4HEHGnP5AF9ZPstnXgi4MxYlZnUwXWjUtq7oJeD.mUiAgjkH17fAASadpN_dwVB; report-to cf-csp-endpoint
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 881c047d7ee77128-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2