t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
301 Moved Permanently 169 B URL HTTP/1.1 t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd6987d71fad7058a993a9028dc40454
3ed872fa3a00837bb008ad9d201850e2ea57a79f
f0e759f444eb3a324b621f0548919424455e81441d42ea6bc6bcd2b24fce1b92
GET /film/Triller/poezdka-na-vihodnie.htm HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.16.1
Date: Sat, 04 Feb 2023 10:47:37 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e051e6e01b12b9ad6e0014603f93431a
ada9efe77054d8593f2687fb3a7eada8908ef7e8
c41be8ffe176ca674efb0588164fdfd237754c6b5b461f8f46387b96ae7d6090
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41BE8FFE176CA674EFB0588164FDFD237754C6B5B461F8F46387B96AE7D6090"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2716
Expires: Sat, 04 Feb 2023 11:32:53 GMT
Date: Sat, 04 Feb 2023 10:47:37 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 81713f952b51a865ad9764cde68e3fdb
278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a
c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2259
Expires: Sat, 04 Feb 2023 11:25:16 GMT
Date: Sat, 04 Feb 2023 10:47:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 10:43:37 GMT
content-type: application/json
age: 240
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11992
Expires: Sat, 04 Feb 2023 14:07:29 GMT
Date: Sat, 04 Feb 2023 10:47:37 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +ZXZ8UkSozkefTGNqxdB3etScbKZmKcBBCUrjOL79oVKQCaMIOQ8oRkQepZ0rykD3El38rXQfiA=
x-amz-request-id: 6P1HVP5MBTBTCT41
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 09:52:47 GMT
age: 3290
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d08e54b12d2c68be0ce5d882dcf7460d
57da13cba2b6b97e6fe5216c82a222e3815471f8
89648649c083fd46cf8b8a5053555e867e4131f26f1d2eedc49eb1557d13729b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89648649C083FD46CF8B8A5053555E867E4131F26F1D2EEDC49EB1557D13729B"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5048
Expires: Sat, 04 Feb 2023 12:11:45 GMT
Date: Sat, 04 Feb 2023 10:47:37 GMT
Connection: keep-alive
t.lafa.site/themes/TBDev/images/1_new2.png
200 OK 3.9 kB URL HTTP/2 t.lafa.site/themes/TBDev/images/1_new2.png
IP
File type PNG image data, 200 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 8fe5f9d2a0c6c71c0f65dcd6abeaaa4f
9a74bfc42d23768416833911877b685be11f38e8
e9a5426f0aa7aab76ab406565f6b0e0b13671cb5401bafaaf07dbb6210747ca6
GET /themes/TBDev/images/1_new2.png HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/png
content-length: 3886
last-modified: Sat, 09 May 2020 21:37:59 GMT
etag: "5eb722b7-f2e"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/themes/TBDev/images/2_new.png
200 OK 934 B URL HTTP/2 t.lafa.site/themes/TBDev/images/2_new.png
IP
File type PNG image data, 119 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash dec82b7562d7df1c2cf722359b1c613e
1ae5c9d94e6e7fdf7790baeb1f740ed5ad621222
87d027bf8706bac512391bec81a4805a3fa0dda8f0d435f5ef7eaa5153310d23
GET /themes/TBDev/images/2_new.png HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/png
content-length: 934
last-modified: Mon, 05 Apr 2021 10:52:38 GMT
etag: "606aebf6-3a6"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/themes/TBDev/images/4_new.png
200 OK 955 B URL HTTP/2 t.lafa.site/themes/TBDev/images/4_new.png
IP
File type PNG image data, 119 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash b1551fb0c73861dee4aa0c0d15b65da3
0972eb79bad02271e1295790f728433a55ff50a5
e1b6da7338bf1cc0710f1e196a6c65239e82c5a7220062e9e24d899dbad3e6d8
GET /themes/TBDev/images/4_new.png HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/png
content-length: 955
last-modified: Mon, 05 Apr 2021 11:05:03 GMT
etag: "606aeedf-3bb"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/themes/TBDev/images/3_new.png
200 OK 978 B URL HTTP/2 t.lafa.site/themes/TBDev/images/3_new.png
IP
File type PNG image data, 119 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 44fd0d37d2a29764943a37c01ce703a8
ab4c3bdd3790d7d9c08ccdbb291c208d8b96da45
51d81bbf12b957c256b51db45dcdc9fe9cca6671d228f1db34da1a50f6f7424b
GET /themes/TBDev/images/3_new.png HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/png
content-length: 978
last-modified: Mon, 05 Apr 2021 11:05:03 GMT
etag: "606aeedf-3d2"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/themes/TBDev/images/7_new.png
200 OK 1.1 kB URL HTTP/2 t.lafa.site/themes/TBDev/images/7_new.png
IP
File type PNG image data, 119 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash b86a8770b0b1d9e919405cc18370b9ad
f9b62a535b3ee514013f702c91d1a769f1d0119e
38250c7fe4359f380b49c0ff6f54c3b96ac4bd32aaf84e41d8cd41c1cb2caa91
GET /themes/TBDev/images/7_new.png HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/png
content-length: 1077
last-modified: Mon, 05 Apr 2021 10:50:52 GMT
etag: "606aeb8c-435"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/themes/TBDev/images/6_new.png
200 OK 3.1 kB URL HTTP/2 t.lafa.site/themes/TBDev/images/6_new.png
IP
File type PNG image data, 119 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 3c7302e44b0691138a303bcc55c8aad5
856258c5cf8e330dfa2ff0ca1470d5ca526b8aec
20a7f76bc67343355e98f5d701e843f394dff10acb65bb7533d0802dc3d27ef2
GET /themes/TBDev/images/6_new.png HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/png
content-length: 3128
last-modified: Wed, 04 Nov 2020 12:27:43 GMT
etag: "5fa29e3f-c38"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/pic/moon.png
200 OK 1.3 kB IP
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash de6d622faaaa3670cbf39395cd081828
74c6baf3fc6df1bfcff26ba6cf204fc738c46077
3308cb2dd17b2dbb411a0ef719c691d3a2b6bb24e990358581a1783951fdd452
GET /pic/moon.png HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/png
content-length: 1265
last-modified: Mon, 15 Feb 2021 16:11:45 GMT
etag: "602a9d41-4f1"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/image/2022-03/03/poster_87010.jpg
200 OK 9.1 kB URL HTTP/2 t.lafa.site/image/2022-03/03/poster_87010.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 180x252, components 3\012- data
Hash f2ee4c713ef9d92f39fdbed023a0c3ec
33485c3e0ea95d6468fdbefefd474ba30c544058
4a24571cb74f60bf7464950b2f8cfb769b6b165a49e929a77fc6ae4d36887381
GET /image/2022-03/03/poster_87010.jpg HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/jpeg
content-length: 9088
last-modified: Thu, 03 Mar 2022 16:22:02 GMT
etag: "6220eb2a-2380"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/pic/yabra.png
200 OK 23 kB URL HTTP/2 t.lafa.site/pic/yabra.png
IP
File type PNG image data, 720 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash ac5a7c8772164a938d17b5c910622de0
1047d32e7db37e110393658ba8c05cc6328ff142
cd2a274c852c7c78dc14adf2c48e20f14149058601024509460efe473e32f14b
GET /pic/yabra.png HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/png
content-length: 22944
last-modified: Thu, 22 Jul 2021 15:02:00 GMT
etag: "60f98868-59a0"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/pic/nc.gif
200 OK 673 B IP
File type GIF image data, version 89a, 16 x 16\012- data
Hash ee1dfa16c9e26c9cfe4a1880bf6f38da
c36f23a0d49cff1eb6cd37a5c53f49e1a53e0dcb
0d69da2860bcc42ebcd2d5fc48d10941c102982344d608f02f975638e776b9f3
GET /pic/nc.gif HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/gif
content-length: 673
last-modified: Sat, 09 May 2020 21:37:59 GMT
etag: "5eb722b7-2a1"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/pic/lazy_index_img.png
200 OK 2.4 kB URL HTTP/2 t.lafa.site/pic/lazy_index_img.png
IP
File type PNG image data, 180 x 108, 8-bit/color RGB, non-interlaced\012- data
Hash 9f399b24a191d69659d384fdeaacc270
2e24d966f3240a92eaa1c09710ca45e023e0a471
0c3d47c2ff9c9faee94e8031b5f5269fe4203f447985907169afed676050c039
GET /pic/lazy_index_img.png HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/png
content-length: 2395
last-modified: Sat, 09 May 2020 21:38:00 GMT
etag: "5eb722b8-95b"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/themes/TBDev/ublack.css?v=27
200 OK 2.2 kB URL HTTP/2 t.lafa.site/themes/TBDev/ublack.css?v=27
IP
Hash 06ce32ba1ecb54a4beae409ba4ac9a48
85e90c4d7815289aee9d7e827c54f639d9f7b448
008caa11d084d626b8c21ddd6037773f2cf7494b5d8bc5b0e4e950465e234c2d
GET /themes/TBDev/ublack.css?v=27 HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: text/css
last-modified: Sun, 04 Apr 2021 22:07:57 GMT
vary: Accept-Encoding
etag: W/"606a38bd-1ea7"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
content-encoding: gzip
X-Firefox-Spdy: h2
t.lafa.site/pic/smilies/yes.gif
200 OK 3.4 kB URL HTTP/2 t.lafa.site/pic/smilies/yes.gif
IP
File type GIF image data, version 89a, 20 x 24\012- data
Hash a9abd3e9f15d015d5ad6586c8feb6277
fb5fd15590e6ea12693b930e3f33cab1611aee14
7e2dd581c7cfc531b9472c49337950327ff0f993347c8aecf0595a894ccaceea
GET /pic/smilies/yes.gif HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/gif
content-length: 3385
last-modified: Wed, 03 Mar 2021 20:19:20 GMT
etag: "603fef48-d39"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/pic/smilies/thumbsup.gif
200 OK 3.2 kB URL HTTP/2 t.lafa.site/pic/smilies/thumbsup.gif
IP
File type GIF image data, version 89a, 26 x 23\012- data
Hash 3e8611215b0c8cb605429a0c3f4cfb43
f84c5acc11486ee4baba6dee6cf61dbd133abb18
657f7cbb66b759cf0e014581ff2e0841aa29928e370fcf60e67b66255e67be02
GET /pic/smilies/thumbsup.gif HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/gif
content-length: 3168
last-modified: Wed, 03 Mar 2021 20:38:17 GMT
etag: "603ff3b9-c60"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/pic/smilies/cool1.gif
200 OK 2.7 kB URL HTTP/2 t.lafa.site/pic/smilies/cool1.gif
IP
File type GIF image data, version 89a, 21 x 21\012- data
Hash 3c1c0c2dbcac0710a2bcceed81c15b36
c461db427146a442fbac59ada59cab036f485834
2de8de472988e1853daf2705cc88e6c01ece95691cce8be896021ee86537f576
GET /pic/smilies/cool1.gif HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/gif
content-length: 2675
last-modified: Wed, 03 Mar 2021 20:20:29 GMT
etag: "603fef8d-a73"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/pic/smilies/wink.gif
200 OK 1.4 kB URL HTTP/2 t.lafa.site/pic/smilies/wink.gif
IP
File type GIF image data, version 89a, 20 x 24\012- data
Hash ffd2677b82b36293f950122848cfc210
2965a69425df740e5fb039a32495ce1ec264256e
f3ec657f79df53a2a6cdaf5498ec3505b4a7deacb30f4a88f6c243728d34bac7
GET /pic/smilies/wink.gif HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/gif
content-length: 1426
last-modified: Wed, 03 Mar 2021 20:29:08 GMT
etag: "603ff194-592"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/pic/smilies/clap2.gif
200 OK 4.8 kB URL HTTP/2 t.lafa.site/pic/smilies/clap2.gif
IP
File type GIF image data, version 89a, 40 x 24\012- data
Hash 95eb6a0994ce31dab4553443298d4ee9
d33007756fcd44db9e9cab038ce498de7283aced
9a38e52d6cd451855d2bd25747ea6ec0129899221cc08c86bcb38c086c8bbe86
GET /pic/smilies/clap2.gif HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/gif
content-length: 4796
last-modified: Wed, 03 Mar 2021 20:40:02 GMT
etag: "603ff422-12bc"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/pic/smilies/smile1.gif
200 OK 814 B URL HTTP/2 t.lafa.site/pic/smilies/smile1.gif
IP
File type GIF image data, version 89a, 20 x 24\012- data
Hash 34472d3023e87a916791cd7c10953198
a3094de545b100c858047d145600dcb07fbc0fc4
88c0d47e446a0ac5483cf3c28dbdec36df729d1b5cc81ce56d2f5bb6c4296566
GET /pic/smilies/smile1.gif HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/gif
content-length: 814
last-modified: Wed, 03 Mar 2021 18:50:53 GMT
etag: "603fda8d-32e"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/pic/plus.gif
200 OK 50 B IP
File type GIF image data, version 89a, 9 x 9\012- data
Hash 2eedb607ca2d4e596e523faf3f6fa8b0
b370fafc824a59b9317b8a37e0db4ad76a35253f
4f4349e90be2c179c531d2ee17afd7c731403f7662e8d72742d1df334fa34ebe
GET /pic/plus.gif HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/gif
content-length: 50
last-modified: Sat, 09 May 2020 21:37:59 GMT
etag: "5eb722b7-32"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash df110ead47aadd186da8bc60d8f27047
f227c385cdd1b6243b3d5a7c272bf787dec6e0c2
d5158b9cb14085127f80fa4a094686563c813fd35430313499da78d57e101f93
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4133
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 10:47:37 GMT
Last-Modified: Sat, 04 Feb 2023 09:38:44 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
t.lafa.site/pic/captcha_placeholder.png
200 OK 343 B URL HTTP/2 t.lafa.site/pic/captcha_placeholder.png
IP
File type PNG image data, 100 x 40, 4-bit colormap, non-interlaced\012- data
Hash fa9c9a005ce1064ae8770e9517596b48
1a01105160ea56b5be6fe69a4d07c594efeeac08
5693ca07269857988cf8295f6dbb7bcb62aaeb67c48da0e6075f2affec22f92d
GET /pic/captcha_placeholder.png HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/png
content-length: 343
last-modified: Sat, 09 May 2020 21:37:59 GMT
etag: "5eb722b7-157"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 10:47:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 10:47:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gseccovsslca2018
200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 6eb96fd8be27df464548ac4abe45819a
48c3a4ccd16065dfce0057d5596f020566e77863
58ff4162caf208e05d96f637ebaaf99a69da2ac1a713cb3fe173bda7f8bc31e6
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 10:47:37 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Wed, 08 Feb 2023 08:45:51 GMT
ETag: "48c3a4ccd16065dfce0057d5596f020566e77863"
Last-Modified: Sat, 04 Feb 2023 08:45:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2750
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7942d44e4a7dfabc-OSL
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 49f1ab27692e68c8aa2bc15b76194d67
0654a4657001045c54ff8d1106959bf36fc0b798
37b372db10326f9b0e175b81b437e09930c87c06b700c23b341e822aac1b3ff6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "37B372DB10326F9B0E175B81B437E09930C87C06B700C23B341E822AAC1B3FF6"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10379
Expires: Sat, 04 Feb 2023 13:40:36 GMT
Date: Sat, 04 Feb 2023 10:47:37 GMT
Connection: keep-alive
ajax.googleapis.com/ajax/libs/jqueryui/1.10.3/jquery-ui.min.js
200 OK 60 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jqueryui/1.10.3/jquery-ui.min.js
IP
File type ASCII text, with very long lines (32389)
Hash 6d50451df0d9f8dcd462a9855265142f
0ffd13d9363a639c097d1a52c4be5432679813e7
fced51326b3edb5ec17118b26daa594999aea1d5430378fd489d70ea823faee2
GET /ajax/libs/jqueryui/1.10.3/jquery-ui.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 60529
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 18:06:33 GMT
expires: Sat, 03 Feb 2024 18:06:33 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 60064
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js
200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js
IP
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash d989f35706c62ce4a5c561586c55566e
d32e7958e5765609bf08dcdefd0b2c2a8714ce34
375dfe942a03ee024b5cc827b3efda5550d13df7530281f50862ce3b33fcb716
GET /ajax/libs/jquery/1.7.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33845
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:55:28 GMT
expires: Fri, 02 Feb 2024 00:55:28 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 208329
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
t.lafa.site/js/aljs.js?v=8
200 OK 3.8 kB URL HTTP/2 t.lafa.site/js/aljs.js?v=8
IP
Hash 36dfcef464e6a50446a794089e099c48
6c8f90aff30d1df6e3c9f0eb8c5aa0b82bcfbb2e
255bffa345bf8471942eff2a250fa0182c097105d76251d6c0822eb7c69cba2e
GET /js/aljs.js?v=8 HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: application/javascript
last-modified: Thu, 14 Oct 2021 07:38:35 GMT
vary: Accept-Encoding
etag: W/"6167de7b-2362"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
content-encoding: gzip
X-Firefox-Spdy: h2
yastatic.net/share2/share.js
200 OK 39 kB URL HTTP/2 yastatic.net/share2/share.js
IP
File type Unicode text, UTF-8 text, with very long lines (64803), with no line terminators
Hash 7b61d7f16db30eeae381065413e12f48
e0abbe0a155ab6c2ea138e665684090716de6a0a
9af31131fbce17984b4dab6bebaf0f1bdef22b2dba055c5bb48a2e2bc0aa2ce3
GET /share2/share.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=216009
content-encoding: br
etag: W/"d62795f125042b279514d9fb23f826fc"
expires: Mon, 06 Feb 2023 22:43:41 GMT
last-modified: Tue, 21 Jun 2022 14:09:09 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-content-type-options: nosniff
x-robots-tag: noindex, noarchive, nofollow
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
jsn.24smi.net/smi.js
200 OK 30 kB IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 810f419b7c6588d7430670679d6bba0d
f0840d97217ed94217f8f0abacae53d255ff247e
1d93508c4be102722f83b5564b4eba3680f164fe4efe53307d72eac5fb16e796
GET /smi.js HTTP/1.1
Host: jsn.24smi.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 14:32:34 GMT
etag: W/"63c6b182-17428"
cache-control: max-age=3600
vary: Accept-Encoding
expires: Sat, 04 Feb 2023 10:51:31 GMT
strict-transport-security: max-age=0
cf-cache-status: HIT
age: 23
access-control-allow-origin: *
server: cloudflare
cf-ray: 7942d44e3efb1bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash df110ead47aadd186da8bc60d8f27047
f227c385cdd1b6243b3d5a7c272bf787dec6e0c2
d5158b9cb14085127f80fa4a094686563c813fd35430313499da78d57e101f93
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4134
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 10:47:38 GMT
Last-Modified: Sat, 04 Feb 2023 09:38:44 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bbeae33da3db2a87ad83493769bc3263
68b2ed2eada831f9de7ec6a352df36c80e29a08c
e9d21e273eeb22257bd364235cdde47075922326e2eed5243522a6b978dea349
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E9D21E273EEB22257BD364235CDDE47075922326E2EED5243522A6B978DEA349"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17330
Expires: Sat, 04 Feb 2023 15:36:28 GMT
Date: Sat, 04 Feb 2023 10:47:38 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 10:07:19 GMT
age: 2419
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
garpbs.com/pw47l1/291vlim0p03yhq8/867uvq/786ykpql0.php
200 OK 27 kB URL HTTP/2 garpbs.com/pw47l1/291vlim0p03yhq8/867uvq/786ykpql0.php
IP
File type Unicode text, UTF-8 text, with very long lines (50460)
Hash bb6e7eb5c048ba526bee7025e3f74c33
4708f3d75617cc0bdd735ea033a73d2b2aa3649b
5312bbd15de2151ddf8382ddf2111134e465023cc736919ceb2ac4fb6c6b408b
GET /pw47l1/291vlim0p03yhq8/867uvq/786ykpql0.php HTTP/1.1
Host: garpbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.2
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: application/javascript; charset=utf-8
content-length: 26787
last-modified: Mon, 30 Jan 2023 13:15:10 GMT
etag: "63d7c2de-68a3"
content-encoding: gzip
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
t.lafa.site/themes/TBDev/images/t0.png
200 OK 102 B URL HTTP/2 t.lafa.site/themes/TBDev/images/t0.png
IP
File type PNG image data, 1 x 1, 8-bit grayscale, non-interlaced\012- data
Hash 14e00d705d72c3e74a67d42b5b6e889f
9bf007f577ccdfc1c31eb1e1bbf52688ca2cd9c8
f3375205720bb030f7f462b19649dab75f3759bd195556285ad63738f09f9159
GET /themes/TBDev/images/t0.png HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/png
content-length: 102
last-modified: Sat, 09 May 2020 21:37:59 GMT
etag: "5eb722b7-66"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
garpbs.com/2w17l1921/vlip0m30y/8qh/678vuq768/ypk43kvap.php
200 OK 27 kB URL HTTP/2 garpbs.com/2w17l1921/vlip0m30y/8qh/678vuq768/ypk43kvap.php
IP
File type Unicode text, UTF-8 text, with very long lines (50460)
Hash bb6e7eb5c048ba526bee7025e3f74c33
4708f3d75617cc0bdd735ea033a73d2b2aa3649b
5312bbd15de2151ddf8382ddf2111134e465023cc736919ceb2ac4fb6c6b408b
GET /2w17l1921/vlip0m30y/8qh/678vuq768/ypk43kvap.php HTTP/1.1
Host: garpbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.2
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: application/javascript; charset=utf-8
content-length: 26787
last-modified: Mon, 30 Jan 2023 13:15:10 GMT
etag: "63d7c2de-68a3"
content-encoding: gzip
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
t.lafa.site/themes/TBDev/images/shapka_new_ok2.webp
200 OK 29 kB URL HTTP/2 t.lafa.site/themes/TBDev/images/shapka_new_ok2.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 516c33314c163137bfcfb4c06a50a386
13951b9d6be1ac1b91dabdf953c2cbceeee3f616
e74aa6b57b55582ce487568ab46a8b895102be0d9b65f5e2f969101cbf3fe0b5
GET /themes/TBDev/images/shapka_new_ok2.webp HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/themes/TBDev/TBDev.css?v=69
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/webp
content-length: 28572
last-modified: Wed, 24 Feb 2021 17:25:54 GMT
etag: "60368c22-6f9c"
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/js/jquery.tablesorter.min.js
200 OK 5.4 kB URL HTTP/2 t.lafa.site/js/jquery.tablesorter.min.js
IP
Hash 3c0e3f455fc6274972566a551014b27a
b52126396fbc973862f66a1d9a1d00a8bbfbb9f5
c2b1ead6b71b92a95879ed1ee722d3c8cdfe96d6984aecdfe11bf121897c3f2e
GET /js/jquery.tablesorter.min.js HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: application/javascript
last-modified: Sat, 09 May 2020 21:37:58 GMT
vary: Accept-Encoding
etag: W/"5eb722b6-4088"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
content-encoding: gzip
X-Firefox-Spdy: h2
t.lafa.site/js/adaptive.js?v=5
200 OK 1.1 kB URL HTTP/2 t.lafa.site/js/adaptive.js?v=5
IP
Hash 1a69e85400bfc3ab4496585ff8f78a51
ff34977b7ab1c944e86e33cf40f38bcf6b8cb762
25d1cc1072a09bf08e5e7b7265bc709ace95e7378e95fb3b132095430a0a4854
GET /js/adaptive.js?v=5 HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: application/javascript
last-modified: Sat, 09 May 2020 21:37:58 GMT
vary: Accept-Encoding
etag: W/"5eb722b6-6ee"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14234
Expires: Sat, 04 Feb 2023 14:44:52 GMT
Date: Sat, 04 Feb 2023 10:47:38 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 448e5ab63724d9b01ece538a21e24eab
5d069cacaf336d1e8a3ce530d0c759d1494c3507
971f71063f089aa2ad51b11dc7db68b9222f1c73a55e9aa748d927f0bd4cdc2c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "971F71063F089AA2AD51B11DC7DB68B9222F1C73A55E9AA748D927F0BD4CDC2C"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11168
Expires: Sat, 04 Feb 2023 13:53:46 GMT
Date: Sat, 04 Feb 2023 10:47:38 GMT
Connection: keep-alive
t.lafa.site/themes/TBDev/images/ts/bg_black.svg
200 OK 777 B URL HTTP/2 t.lafa.site/themes/TBDev/images/ts/bg_black.svg
IP
Hash d8cf14029d80600848079a565d6e0532
841a5037741b1a9b2e45a4478cbd4a9021c5456a
290e0c7934b2b12f0fa244ca57492adf2787e6e894360aafab21c1d3cbff56fb
GET /themes/TBDev/images/ts/bg_black.svg HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/themes/TBDev/TBDev.css?v=69
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/svg+xml
last-modified: Thu, 25 Feb 2021 07:24:21 GMT
vary: Accept-Encoding
etag: W/"603750a5-186"
expires: Mon, 05 Feb 2024 10:47:38 GMT
cache-control: max-age=31622400, public, no-transform
content-encoding: gzip
X-Firefox-Spdy: h2
dominantroute.com/bens/vinos.js?24735&v=2&u=null&a=0.21892037069983628
200 OK 86 kB URL HTTP/1.1 dominantroute.com/bens/vinos.js?24735&v=2&u=null&a=0.21892037069983628
IP
ASN #6681 Rozetka Sp. z o.o.
File type ASCII text, with very long lines (703)
Hash 7f45278f0a60f8caefc3bcc5928f8346
50621675ad57c236c28d8cecdf624ed67fa7c531
a41480ddf9659cc248c83ef844f082dacd1f80ae3de2c73b46ece4548155d573
GET /bens/vinos.js?24735&v=2&u=null&a=0.21892037069983628 HTTP/1.1
Host: dominantroute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 10:47:38 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NON DSP COR CURa TIA"
Set-Cookie: uuid=16755075031532635802; expires=Mon, 03-Feb-2025 10:47:38 GMT; Max-Age=63072000; path=/; samesite=None; domain=.dominantroute.com; secure
www.acint.net/aci.js
200 OK 7.8 kB IP
File type ASCII text, with very long lines (1649)
Hash 777eef0db9280e74fe8d3e0e9561da9c
f8316623410b9735dd07b6e12a2f29352c0aa4cd
985dc8f4eb0a0b4629fa8e6d86f741ee8d22b7a0a1f64be2e9e9f2c96c9cf772
GET /aci.js HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: application/x-javascript
content-length: 7784
last-modified: Thu, 02 Feb 2023 13:54:08 GMT
etag: "63dbc080-1e68"
content-encoding: gzip
expires: Sat, 04 Feb 2023 22:47:38 GMT
cache-control: max-age=43200
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2d82dc5fa950c9ca58fe9d686903ad26
0966fd17f44755879ed107a6cdf5f11d22c25d78
3de5f933dd08422adf46a5cfaec79d20a9023d6706b9659087820054a84a31d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3DE5F933DD08422ADF46A5CFAEC79D20A9023D6706B9659087820054A84A31D5"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18111
Expires: Sat, 04 Feb 2023 15:49:29 GMT
Date: Sat, 04 Feb 2023 10:47:38 GMT
Connection: keep-alive
cdn-rtb.sape.ru/rtb-b/js/641/2/133641.js
200 OK 40 kB URL HTTP/2 cdn-rtb.sape.ru/rtb-b/js/641/2/133641.js
IP
Hash 812d125b0ea5d6c169e76ae012165c65
2ee2c4a45200a0c6d708a5f104867a9ac7c17b53
c969841a45a9216ca04e3e7f3fd37535268df7df429242d5424146d0268bfd23
GET /rtb-b/js/641/2/133641.js HTTP/1.1
Host: cdn-rtb.sape.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: application/javascript; charset=UTF-8
content-security-policy: block-all-mixed-content
etag: W/"1bfe0ff4c313d065032f6f1e0da7b736"
last-modified: Wed, 01 Feb 2023 02:09:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-request-id: 173F91D97970BD43
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
expires: Sat, 04 Feb 2023 11:47:38 GMT
cache-control: max-age=3600
x-cache-status: HIT
X-Firefox-Spdy: h2
www.acint.net/hit/?v=0.5.1&uid=6c4c40bf-18e2-4f63-a350-57f563f9d242&dp=14&tz=%2B00%3A00&nc=48881158&u=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=&rs=1280x1024&t=%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20(The%20Weekend%20Away)%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&oE=1&oP=1&dT=2023-02-04T10%3A48%3A13.736&fu=4a9ff6e2-ba1a-4313-91a5-cbb559302932
200 OK 43 B URL HTTP/2 www.acint.net/hit/?v=0.5.1&uid=6c4c40bf-18e2-4f63-a350-57f563f9d242&dp=14&tz=%2B00%3A00&nc=48881158&u=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=&rs=1280x1024&t=%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20(The%20Weekend%20Away)%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&oE=1&oP=1&dT=2023-02-04T10%3A48%3A13.736&fu=4a9ff6e2-ba1a-4313-91a5-cbb559302932
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hit/?v=0.5.1&uid=6c4c40bf-18e2-4f63-a350-57f563f9d242&dp=14&tz=%2B00%3A00&nc=48881158&u=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=&rs=1280x1024&t=%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20(The%20Weekend%20Away)%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&oE=1&oP=1&dT=2023-02-04T10%3A48%3A13.736&fu=4a9ff6e2-ba1a-4313-91a5-cbb559302932 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=CkIDFWPeN8qcjxRrzk5BAsZAs4ZkO5GfUr4nAol717zK9mVp; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A0%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A1191%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
200 OK 44 B URL HTTP/2 www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A0%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A1191%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
IP
Hash 26a6d86066ee6beeaed12c650dcda091
b4f59e5509b2f8a252f0f6a5b310cf9ca05ed652
f1d2067d20484c57c6c53cde58b55fbf8ab1ab5acfe701a0beb3fa09fafaf424
GET /rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A0%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A1191%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=CkIDE2PeN8p3CwqGKpbwAkl1cn8PhB5pJm3yy8DG2zPTlSRN; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A0%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
200 OK 43 B URL HTTP/2 www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A0%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A0%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=CkIDFWPeN8qcjxRrzk5QAjpAq4YLdsNWn7B3up9RcISzaAO3; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775746%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
200 OK 43 B URL HTTP/2 www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775746%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775746%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=CkIDFWPeN8qdNBR212ycAsXrNXPXJtJX9Q1Ur5bico/l15SH; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775746%2C%22ev%22%3A%22vis0%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
200 OK 43 B URL HTTP/2 www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775746%2C%22ev%22%3A%22vis0%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775746%2C%22ev%22%3A%22vis0%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=CkIDFWPeN8qcjxRrzk5UAg0UiCxliEooE0xoLz1nrqG7Skfi; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775749%2C%22ev%22%3A%22vis0%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
200 OK 43 B URL HTTP/2 www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775749%2C%22ev%22%3A%22vis0%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775749%2C%22ev%22%3A%22vis0%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=CkIDFWPeN8qdERRkh3TxAgcgrOXP0CHGHGr8J6gxMJ468tJR; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775749%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
200 OK 43 B URL HTTP/2 www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775749%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775749%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=CkIDE2PeN8p1pwp7ZmytAoEXIKjdNvEfvmB0/fiT2aB88dVv; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/pxl/1?dp=16&id=133641.775749.164792279.0.0.0&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
200 OK 43 B URL HTTP/2 www.acint.net/pxl/1?dp=16&id=133641.775749.164792279.0.0.0&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pxl/1?dp=16&id=133641.775749.164792279.0.0.0&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=CkIDFWPeN8qdERRkh3UGAhaOmbD9FdGd+IvEtKaC4Dcv9fNy; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775749%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
200 OK 43 B URL HTTP/2 www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775749%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775749%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=CkIDE2PeN8p2zAqFvtzYAoVacpJ6yndn2rYvWPO38+50mdYM; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775750%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
200 OK 43 B URL HTTP/2 www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775750%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775750%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=CkIDE2PeN8p3ngp3OiCyAjcIKa9d0oHYpJ3KU9j0HPOUD7tl; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/pxl/1?dp=16&id=133641.775750.164792294.0.0.0&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
200 OK 43 B URL HTTP/2 www.acint.net/pxl/1?dp=16&id=133641.775750.164792294.0.0.0&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pxl/1?dp=16&id=133641.775750.164792294.0.0.0&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=CkIDFWPeN8qdNBR212ziAixb/ZsZnMcLKYZyUPaf4eIqahNN; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 41qhBqgeD8BFzGX6ueQB1w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: B1WnVvbRhJnhhoHcvg854QWD4KA=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 90c9bc545cb67a624ab8f3764545d63c
709105e42e7f1a902d5116a9c2bfa1b114258686
2a12ca7c6ce96c05443b5f4c0a7cf2b741aa2446c2511fb37f4e0cc55d27e288
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A12CA7C6CE96C05443B5F4C0A7CF2B741AA2446C2511FB37F4E0CC55D27E288"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7063
Expires: Sat, 04 Feb 2023 12:45:21 GMT
Date: Sat, 04 Feb 2023 10:47:38 GMT
Connection: keep-alive
fonts.googleapis.com/css2?family=Ubuntu:wght@400;500;700&display=swap
200 OK 633 B URL HTTP/2 fonts.googleapis.com/css2?family=Ubuntu:wght@400;500;700&display=swap
IP
Hash 3a2afe66ceab93c2cb44ae69e6a58bb8
6216e6d46685b11b1e7e0f7743d75c2fe5b0be25
7f2f4b0a4242a44e68692a0e9dfc7cc0b175309572a9fc0eda47cc1e4b963ef8
GET /css2?family=Ubuntu:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 10:47:38 GMT
date: Sat, 04 Feb 2023 10:47:38 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
t.lafa.site/pic/star_fulled.svg
200 OK 803 B URL HTTP/2 t.lafa.site/pic/star_fulled.svg
IP
Hash 88c94c13fb0cb7d9fab887f889259339
7420ee307e3f28e7a8d84c7e22f97527272df8c9
a9ac9e90893e76406a0e81963060d0e8f45a7907d9cc184c7ec8d26928c1d798
GET /pic/star_fulled.svg HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/themes/TBDev/TBDev.css?v=69
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/svg+xml
last-modified: Mon, 22 Feb 2021 18:39:33 GMT
vary: Accept-Encoding
etag: W/"6033fa65-1da"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
content-encoding: gzip
X-Firefox-Spdy: h2
ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
302 Found 74 B URL HTTP/1.1 ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
IP
File type HTML document, ASCII text
Hash 91ae470e8727c964fbfa6e0fa2bb8e34
082afddf45810aa8d1a2d6708f0e24e36d908087
eaa6d6afaa307b4b22ac8bca294bab23b6a812bf5dd64a046494c00ebfa9725c
GET /sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D HTTP/1.1
Host: ssp.bestssp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 04 Feb 2023 10:47:38 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 74
Connection: keep-alive
Location: https://www.acint.net/match?dp=95&euid=ZLUIDIFX
Set-Cookie: uid=ZLUIDIFX; Expires=Tue, 01 Feb 2033 10:47:38 GMT
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 894948b5d268f1d2a21f7d915eb79138
5fe7d1a9c6301b317b73f4037b29856eac674931
cb23963aab51ebbb8c7626800a4b1df5222c068cecf4538511cb38dbbb0960d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CB23963AAB51EBBB8C7626800A4B1DF5222C068CECF4538511CB38DBBB0960D5"
Last-Modified: Thu, 02 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18507
Expires: Sat, 04 Feb 2023 15:56:05 GMT
Date: Sat, 04 Feb 2023 10:47:38 GMT
Connection: keep-alive
ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
302 Moved Temporarily 142 B URL HTTP/1.1 ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Sat, 04 Feb 2023 10:47:38 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/match?dp=14&euid=2B03420ACA37DE6349007F4702EF11E7
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=CkIDK2PeN8pHfwBJ5xHvAtaxHRD1E9rJshMRkz1iw6W6v5v6; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None
s.uuidksinc.net/match/396/?remote_uid=1303420ACA37DE63860A0B7702F0962A
302 Found 0 B URL HTTP/2 s.uuidksinc.net/match/396/?remote_uid=1303420ACA37DE63860A0B7702F0962A
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/396/?remote_uid=1303420ACA37DE63860A0B7702F0962A HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.19.0
date: Sat, 04 Feb 2023 10:47:38 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=Jf3exdjVOUqsWFU7rwiL
set-cookie: jcsuuid=Jf3exdjVOUqsWFU7rwiL; expires=Sun, 04 Feb 2024 10:47:38 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
dm-eu.hybrid.ai/match?id=106&vid=1303420ACA37DE63860A0B7702F0962A
204 No Content 0 B URL HTTP/2 dm-eu.hybrid.ai/match?id=106&vid=1303420ACA37DE63860A0B7702F0962A
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=106&vid=1303420ACA37DE63860A0B7702F0962A HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 10:47:38 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
set-cookie: vid=949307ea1980b0a99340; Expires=Sun, 04 Feb 2024 10:47:37 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 518
x-xss-protection: 1; mode=block
access-control-allow-origin: https://www.acint.net
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 72ffec6ce01ac59744b196bb43992736
a397aae61c3b04a23ddc2168d68443dd9ad117d9
c5c1e579a7e5de9bbbae02977984a225f1130dacc44daae1d54742bfcfa11d95
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5001
Cache-Control: max-age=108766
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 10:47:38 GMT
Etag: "63dd2a1f-117"
Expires: Sun, 05 Feb 2023 17:00:25 GMT
Last-Modified: Fri, 03 Feb 2023 15:37:03 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0a403f0ab86bb76fd16f918822e5c5d9
6c555909c0f0c77ff3af9eb3b6efe12fcee373d4
2ff1750652e1baa25426b855a63a8014b60b76c77b61ec6a90140f1fca4479ae
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2FF1750652E1BAA25426B855A63A8014B60B76C77B61EC6A90140F1FCA4479AE"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10020
Expires: Sat, 04 Feb 2023 13:34:38 GMT
Date: Sat, 04 Feb 2023 10:47:38 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 094a990c44b0349fb817383c2b78e2ce
de71da19ff90e1e45169b0ccdcad2d33bea418c3
61b0e6c401074ab6eaa79f479e311294161b91a68f89422bec8384547a444edc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61B0E6C401074AB6EAA79F479E311294161B91A68F89422BEC8384547A444EDC"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12854
Expires: Sat, 04 Feb 2023 14:21:52 GMT
Date: Sat, 04 Feb 2023 10:47:38 GMT
Connection: keep-alive
sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1303420ACA37DE63860A0B7702F0962A
200 OK 12 B URL HTTP/2 sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1303420ACA37DE63860A0B7702F0962A
IP
File type exported SGML document, ASCII text, with no line terminators
Hash d8932e1cb3ee147415fbf5591a7217ca
97da5b95fb7f60ecd8d9ed0e5a05d83ad5a9c070
c0327cbcde50f1ab8228334a550b947301123d6f6f7d625707cb6d08a1faec35
GET /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1303420ACA37DE63860A0B7702F0962A HTTP/1.1
Host: sync.1dmp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: text/html
content-length: 12
last-modified: Mon, 30 Jan 2023 18:57:34 GMT
etag: "63d8131e-c"
accept-ranges: bytes
server: elb
X-Firefox-Spdy: h2
sync.upravel.com/sape/sync
302 Found 0 B URL HTTP/2 sync.upravel.com/sape/sync
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/png
content-length: 0
location: https://sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
set-cookie: session_tptc=1675507658890;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
session_tptc-legacy=1675507658890;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 336d989b15c326fba5556187b190fa3e
6eff5c97600c211c8003f197fa3d40ad099f5bb6
39af20422c73a0469e59e24e992fb5afc4b0e25263b1365cc60f807316886676
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39AF20422C73A0469E59E24E992FB5AFC4B0E25263B1365CC60F807316886676"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3583
Expires: Sat, 04 Feb 2023 11:47:21 GMT
Date: Sat, 04 Feb 2023 10:47:38 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 336d989b15c326fba5556187b190fa3e
6eff5c97600c211c8003f197fa3d40ad099f5bb6
39af20422c73a0469e59e24e992fb5afc4b0e25263b1365cc60f807316886676
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39AF20422C73A0469E59E24E992FB5AFC4B0E25263B1365CC60F807316886676"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3583
Expires: Sat, 04 Feb 2023 11:47:21 GMT
Date: Sat, 04 Feb 2023 10:47:38 GMT
Connection: keep-alive
www.acint.net/match?dp=95&euid=ZLUIDIFX
200 OK 43 B URL HTTP/2 www.acint.net/match?dp=95&euid=ZLUIDIFX
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=95&euid=ZLUIDIFX HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWPeN8qdNBR212ziAixb/ZsZnMcLKYZyUPaf4eIqahNN; cSyncDp7v2=1675507658; cSyncDp14v3=1675507658; cSyncDp17=1675507658; cSyncDp32=1675507658; cSyncDp45v3=1675507658; cSyncDp53v2=1675507658; cSyncDp62=1675507658; cSyncDp67v2=1675507658; cSyncDp68=1675507658; cSyncDp71=1675507658; cSyncDp85=1675507658; cSyncDp95v3=1675507658; cSyncDp98v2=1675507658; cSyncDp101=1675507658; cSyncDp104v2=1675507658; cSyncDp107=1675507658; cSyncDp110=1675507658; cSyncDp125v3=1675507658; cSyncDp126=1675507658; cSyncDp127=1675507658; cSyncDp129=1675507658; cSyncDp136v2=1675507658; cSyncDp146=1675507658; cSyncDp148=1675507658; cSyncDp149v2=1675507658; cSyncDp151=1675507658; cSyncDp178=1675507658; cSyncDp186=1675507658; cSyncDp221=1675507658; cSyncDp235=1675507658
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.bumlam.com/?src=sap1&uid=1303420ACA37DE63860A0B7702F0962A
302 Moved Temporarily 0 B URL HTTP/1.1 sync.bumlam.com/?src=sap1&uid=1303420ACA37DE63860A0B7702F0962A
IP
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&uid=1303420ACA37DE63860A0B7702F0962A HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 04 Feb 2023 10:47:38 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQ1N2NjNmI0YS1hNDc5LTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Fri, 30 Jan 2043 10:47:38 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARjK7_ieBmIgMTMwMzQyMEFDQTM3REU2Mzg2MEEwQjc3MDJGMDk2MkGiARBXzGtKpHkR7aHEACWQyCQ3
ETag: 57cc6b4a-a479-11ed-a1c4-002590c82437
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
www.acint.net/match?dp=127&euid=Jf3exdjVOUqsWFU7rwiL
200 OK 43 B URL HTTP/2 www.acint.net/match?dp=127&euid=Jf3exdjVOUqsWFU7rwiL
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=127&euid=Jf3exdjVOUqsWFU7rwiL HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWPeN8qdNBR212ziAixb/ZsZnMcLKYZyUPaf4eIqahNN; cSyncDp7v2=1675507658; cSyncDp14v3=1675507658; cSyncDp17=1675507658; cSyncDp32=1675507658; cSyncDp45v3=1675507658; cSyncDp53v2=1675507658; cSyncDp62=1675507658; cSyncDp67v2=1675507658; cSyncDp68=1675507658; cSyncDp71=1675507658; cSyncDp85=1675507658; cSyncDp95v3=1675507658; cSyncDp98v2=1675507658; cSyncDp101=1675507658; cSyncDp104v2=1675507658; cSyncDp107=1675507658; cSyncDp110=1675507658; cSyncDp125v3=1675507658; cSyncDp126=1675507658; cSyncDp127=1675507658; cSyncDp129=1675507658; cSyncDp136v2=1675507658; cSyncDp146=1675507658; cSyncDp148=1675507658; cSyncDp149v2=1675507658; cSyncDp151=1675507658; cSyncDp178=1675507658; cSyncDp186=1675507658; cSyncDp221=1675507658; cSyncDp235=1675507658
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.globalsign.com/alphasslcasha256g4
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/alphasslcasha256g4
IP
Hash 46f620e078616886d150244899e1d886
73b5852ab6a434ac4d7d50fac174fbb301074969
4dc7ab92337cceae5dedac262c381df232e7139669fc87171580402ac528aa75
POST /alphasslcasha256g4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 10:47:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1437
Connection: keep-alive
Expires: Wed, 08 Feb 2023 08:46:25 GMT
ETag: "73b5852ab6a434ac4d7d50fac174fbb301074969"
Last-Modified: Sat, 04 Feb 2023 08:46:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2009
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7942d4546f97fabc-OSL
a.utraff.com/sync?ssp=Sape
204 No Content 0 B URL HTTP/2 a.utraff.com/sync?ssp=Sape
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=Sape HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: text/plain
set-cookie: preutid=1; Expires=Mon, 06 Mar 2023 13:47:38 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Expires=Mon, 06 Mar 2023 13:47:38 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1X7QYbKXciXmh7XrZc5BgDF3Wun%2BVZvRBRJ15Z%2BIMl%2FWp2rIP1CJsULuv8GrHMl7sDWeK2y%2BmATq3AhALPAJUG%2BUegVQCH8gvPEkl4bbx2xK5KmHnyyUhjr3k%2B79sg8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7942d4540af20b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
acint.net/match?dp=14&euid=2B03420ACA37DE6349007F4702EF11E7
200 OK 43 B URL HTTP/2 acint.net/match?dp=14&euid=2B03420ACA37DE6349007F4702EF11E7
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=14&euid=2B03420ACA37DE6349007F4702EF11E7 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWPeN8qdNBR212ziAixb/ZsZnMcLKYZyUPaf4eIqahNN; cSyncDp7v2=1675507658; cSyncDp14v3=1675507658; cSyncDp17=1675507658; cSyncDp32=1675507658; cSyncDp45v3=1675507658; cSyncDp53v2=1675507658; cSyncDp62=1675507658; cSyncDp67v2=1675507658; cSyncDp68=1675507658; cSyncDp71=1675507658; cSyncDp85=1675507658; cSyncDp95v3=1675507658; cSyncDp98v2=1675507658; cSyncDp101=1675507658; cSyncDp104v2=1675507658; cSyncDp107=1675507658; cSyncDp110=1675507658; cSyncDp125v3=1675507658; cSyncDp126=1675507658; cSyncDp127=1675507658; cSyncDp129=1675507658; cSyncDp136v2=1675507658; cSyncDp146=1675507658; cSyncDp148=1675507658; cSyncDp149v2=1675507658; cSyncDp151=1675507658; cSyncDp178=1675507658; cSyncDp186=1675507658; cSyncDp221=1675507658; cSyncDp235=1675507658
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
rocketme.top/vast.php?format=1&partner_id=9938928
200 OK 78 B URL HTTP/2 rocketme.top/vast.php?format=1&partner_id=9938928
IP
File type HTML document, ASCII text, with no line terminators
Hash dcf12d137afd78d6bf9cdb479a3d27d5
65f347e33646fdb1c022109b7c911213ae3c20b6
ccac1a367257b3a407f216e4af68b41514f69884d48007e0da35a51814552b94
POST /vast.php?format=1&partner_id=9938928 HTTP/1.1
Host: rocketme.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 0
Origin: https://t.lafa.site
Connection: keep-alive
Referer: https://t.lafa.site/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.0
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: https://t.lafa.site
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
pix.bumlam.com/sync/sape/check?sspuid=1303420ACA37DE63860A0B7702F0962A
302 Found 0 B URL HTTP/1.1 pix.bumlam.com/sync/sape/check?sspuid=1303420ACA37DE63860A0B7702F0962A
IP
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/check?sspuid=1303420ACA37DE63860A0B7702F0962A HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 04 Feb 2023 10:47:38 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://sync.bumlam.com/?src=sape
www.acint.net/match?dp=129&euid=vzzbrqg3z7
200 OK 43 B URL HTTP/2 www.acint.net/match?dp=129&euid=vzzbrqg3z7
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=129&euid=vzzbrqg3z7 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWPeN8qdNBR212ziAixb/ZsZnMcLKYZyUPaf4eIqahNN; cSyncDp7v2=1675507658; cSyncDp14v3=1675507658; cSyncDp17=1675507658; cSyncDp32=1675507658; cSyncDp45v3=1675507658; cSyncDp53v2=1675507658; cSyncDp62=1675507658; cSyncDp67v2=1675507658; cSyncDp68=1675507658; cSyncDp71=1675507658; cSyncDp85=1675507658; cSyncDp95v3=1675507658; cSyncDp98v2=1675507658; cSyncDp101=1675507658; cSyncDp104v2=1675507658; cSyncDp107=1675507658; cSyncDp110=1675507658; cSyncDp125v3=1675507658; cSyncDp126=1675507658; cSyncDp127=1675507658; cSyncDp129=1675507658; cSyncDp136v2=1675507658; cSyncDp146=1675507658; cSyncDp148=1675507658; cSyncDp149v2=1675507658; cSyncDp151=1675507658; cSyncDp178=1675507658; cSyncDp186=1675507658; cSyncDp221=1675507658; cSyncDp235=1675507658
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
302 Found 0 B URL HTTP/2 sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: session_tptc=1675507658890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=b04a482d-449b-4d8d-b8a2-e8f89c730753;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=b04a482d-449b-4d8d-b8a2-e8f89c730753;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://www.acint.net/match?dp=71&euid=b04a482d-449b-4d8d-b8a2-e8f89c730753
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
acint.net/match?dp=110&euid=f5c1aa35a70c47288eba5516a85bde23
200 OK 43 B URL HTTP/2 acint.net/match?dp=110&euid=f5c1aa35a70c47288eba5516a85bde23
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=110&euid=f5c1aa35a70c47288eba5516a85bde23 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWPeN8qdNBR212ziAixb/ZsZnMcLKYZyUPaf4eIqahNN; cSyncDp7v2=1675507658; cSyncDp14v3=1675507658; cSyncDp17=1675507658; cSyncDp32=1675507658; cSyncDp45v3=1675507658; cSyncDp53v2=1675507658; cSyncDp62=1675507658; cSyncDp67v2=1675507658; cSyncDp68=1675507658; cSyncDp71=1675507658; cSyncDp85=1675507658; cSyncDp95v3=1675507658; cSyncDp98v2=1675507658; cSyncDp101=1675507658; cSyncDp104v2=1675507658; cSyncDp107=1675507658; cSyncDp110=1675507658; cSyncDp125v3=1675507658; cSyncDp126=1675507658; cSyncDp127=1675507658; cSyncDp129=1675507658; cSyncDp136v2=1675507658; cSyncDp146=1675507658; cSyncDp148=1675507658; cSyncDp149v2=1675507658; cSyncDp151=1675507658; cSyncDp178=1675507658; cSyncDp186=1675507658; cSyncDp221=1675507658; cSyncDp235=1675507658
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
nr.bidderstack.com/sape/cm?user_id=1303420ACA37DE63860A0B7702F0962A
200 OK 44 B URL HTTP/1.1 nr.bidderstack.com/sape/cm?user_id=1303420ACA37DE63860A0B7702F0962A
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash f9d60352c70a2ba15616d1c9421f3844
e9abc8bea7721a4b6a50295850d13c515006a95c
82cb517a8f80c91dfcec543c6d140deb3baaf463ea9e77655475096eba7bc7d9
GET /sape/cm?user_id=1303420ACA37DE63860A0B7702F0962A HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 10:47:38 GMT
Content-Type: image/gif
Content-Length: 44
Connection: keep-alive
Access-Control-Allow-Credentials: true
sync.programmatica.com/match/RTBSape?id=1303420ACA37DE63860A0B7702F0962A
302 Found 0 B URL HTTP/2 sync.programmatica.com/match/RTBSape?id=1303420ACA37DE63860A0B7702F0962A
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/RTBSape?id=1303420ACA37DE63860A0B7702F0962A HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 10:47:38 GMT
content-length: 0
location: https://sync.programmatica.com/match/RTBSape?id=1303420ACA37DE63860A0B7702F0962A&chk=1
set-cookie: chk=1; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
sync.bumlam.com/?src=sape
302 Moved Temporarily 0 B URL HTTP/1.1 sync.bumlam.com/?src=sape
IP
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQ1N2NjNmI0YS1hNDc5LTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 04 Feb 2023 10:47:38 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQ1N2NjNmI0YS1hNDc5LTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Fri, 30 Jan 2043 10:47:38 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: https://pix.bumlam.com/sync/sape/sync_ok?guid=57cc6b4a-a479-11ed-a1c4-002590c82437
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
Access-Control-Allow-Origin: https://acint.net
Access-Control-Allow-Credentials: true
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 56cd55cfc2d7435dc7c660ede4b5760a
8ca1cd8e8e8ffbe70873ab11102faa1be989e41f
16733e4841348e969cdf71a2188ed095a170270025deb0d0c9cefa1a7cc85a89
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "16733E4841348E969CDF71A2188ED095A170270025DEB0D0C9CEFA1A7CC85A89"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20857
Expires: Sat, 04 Feb 2023 16:35:15 GMT
Date: Sat, 04 Feb 2023 10:47:38 GMT
Connection: keep-alive
ocsp.sectigo.com/
200 OK 471 B IP
Hash 1afd3517ebc844038700db8c82d69ae3
1327e511903b229cd36c1647fdb71c17d4ce7bdd
ff3430f1affa22881cd632c75d9f51cb97deb53a2cd76f3ee3be5e4b0518192a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 23:26:49 GMT
Expires: Wed, 08 Feb 2023 23:26:48 GMT
Etag: "1327e511903b229cd36c1647fdb71c17d4ce7bdd"
Cache-Control: max-age=390549,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7942d45479a9b4f3-OSL
sync.bumlam.com/?src=sap1&s_data=CAIQARjK7_ieBmIgMTMwMzQyMEFDQTM3REU2Mzg2MEEwQjc3MDJGMDk2MkGiARBXzGtKpHkR7aHEACWQyCQ3
200 OK 0 B URL HTTP/1.1 sync.bumlam.com/?src=sap1&s_data=CAIQARjK7_ieBmIgMTMwMzQyMEFDQTM3REU2Mzg2MEEwQjc3MDJGMDk2MkGiARBXzGtKpHkR7aHEACWQyCQ3
IP
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&s_data=CAIQARjK7_ieBmIgMTMwMzQyMEFDQTM3REU2Mzg2MEEwQjc3MDJGMDk2MkGiARBXzGtKpHkR7aHEACWQyCQ3 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQ1N2NjNmI0YS1hNDc5LTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQ1N2NjNmI0YS1hNDc5LTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Fri, 30 Jan 2043 10:47:39 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
www.acint.net/match?dp=71&euid=b04a482d-449b-4d8d-b8a2-e8f89c730753
200 OK 43 B URL HTTP/2 www.acint.net/match?dp=71&euid=b04a482d-449b-4d8d-b8a2-e8f89c730753
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=71&euid=b04a482d-449b-4d8d-b8a2-e8f89c730753 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWPeN8qdNBR212ziAixb/ZsZnMcLKYZyUPaf4eIqahNN; cSyncDp7v2=1675507658; cSyncDp14v3=1675507658; cSyncDp17=1675507658; cSyncDp32=1675507658; cSyncDp45v3=1675507658; cSyncDp53v2=1675507658; cSyncDp62=1675507658; cSyncDp67v2=1675507658; cSyncDp68=1675507658; cSyncDp71=1675507658; cSyncDp85=1675507658; cSyncDp95v3=1675507658; cSyncDp98v2=1675507658; cSyncDp101=1675507658; cSyncDp104v2=1675507658; cSyncDp107=1675507658; cSyncDp110=1675507658; cSyncDp125v3=1675507658; cSyncDp126=1675507658; cSyncDp127=1675507658; cSyncDp129=1675507658; cSyncDp136v2=1675507658; cSyncDp146=1675507658; cSyncDp148=1675507658; cSyncDp149v2=1675507658; cSyncDp151=1675507658; cSyncDp178=1675507658; cSyncDp186=1675507658; cSyncDp221=1675507658; cSyncDp235=1675507658
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash 4000c397ff92021739725f6e9313035b
80c46a1ea7e7712b9c3cc17b6728ee31b79605b8
b388bb223de252af4f1b0fb0d0920b2bb5d12f27aa31a1397bcffc4630586213
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Wed, 08 Feb 2023 08:47:13 GMT
ETag: "80c46a1ea7e7712b9c3cc17b6728ee31b79605b8"
Last-Modified: Sat, 04 Feb 2023 08:47:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7942d453bf7ab4f4-OSL
ocsp.sectigo.com/
200 OK 471 B IP
Hash dbb3fe4d8642c214cf6c1f4523abff84
595c46af4c12a911a209b5d4c6f12b5834b4cbc1
2193d8508d4538173a02bca99856f53dc4b1e4ad0c2bbd057b20d76349f25435
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 03:41:04 GMT
Expires: Sat, 11 Feb 2023 03:41:03 GMT
Etag: "595c46af4c12a911a209b5d4c6f12b5834b4cbc1"
Cache-Control: max-age=578604,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7942d453bc49b515-OSL
t.lafa.site/favicon-120x120.png
200 OK 8.1 kB URL HTTP/2 t.lafa.site/favicon-120x120.png
IP
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 71ad4a01b6c5ce3b94368de04f81601b
d52df4a63d382905ddc20c84c075cb0d7ed9f186
f990aff693aef964beaf3059f07b22f1f26563847179399769dc90ff986927d2
GET /favicon-120x120.png HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657; surfer_uuid=6cde4cbe-f9c5-4165-9ca9-a6e63a064c49; la_page_depth=%7B%22last%22%3A%22https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm%22%2C%22depth%22%3A1%7D; page_load_uuid=c0e08fe8-0147-4eec-8924-81ed721a1e3b; u_count=%5B0%2C0%5D; fid=4a9ff6e2-ba1a-4313-91a5-cbb559302932; chash=fwWVMFTKlS
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/png
content-length: 8127
last-modified: Tue, 20 Oct 2020 10:23:23 GMT
etag: "5f8eba9b-1fbf"
expires: Mon, 05 Feb 2024 10:47:38 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/favicon-16x16.png
200 OK 684 B URL HTTP/2 t.lafa.site/favicon-16x16.png
IP
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash baa53a9f4f4e13f377f1951de7b1f79c
ee99575a96d5fb6794df621776006b6f13db56f1
23a37b013e550e2b77522cec1eced8faa9f9a961eff1348658f648b132d7a635
GET /favicon-16x16.png HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657; surfer_uuid=6cde4cbe-f9c5-4165-9ca9-a6e63a064c49; la_page_depth=%7B%22last%22%3A%22https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm%22%2C%22depth%22%3A1%7D; page_load_uuid=c0e08fe8-0147-4eec-8924-81ed721a1e3b; u_count=%5B0%2C0%5D; fid=4a9ff6e2-ba1a-4313-91a5-cbb559302932; chash=fwWVMFTKlS
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/png
content-length: 684
last-modified: Sat, 31 Oct 2020 21:10:00 GMT
etag: "5f9dd2a8-2ac"
expires: Mon, 05 Feb 2024 10:47:38 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
sync.programmatica.com/match/RTBSape?id=1303420ACA37DE63860A0B7702F0962A&chk=1
200 OK 43 B URL HTTP/2 sync.programmatica.com/match/RTBSape?id=1303420ACA37DE63860A0B7702F0962A&chk=1
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/RTBSape?id=1303420ACA37DE63860A0B7702F0962A&chk=1 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: chk=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:39 GMT
content-type: image/gif
content-length: 43
set-cookie: pid=NTRlMTdjYmE1YzI5NzM2YQ; expires=Sun, 04 Aug 2024 10:47:39 GMT; domain=.programmatica.com; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
dmp.gotechnology.io/match/sape?id=1303420ACA37DE63860A0B7702F0962A
302 Found 0 B URL HTTP/2 dmp.gotechnology.io/match/sape?id=1303420ACA37DE63860A0B7702F0962A
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=1303420ACA37DE63860A0B7702F0962A HTTP/1.1
Host: dmp.gotechnology.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 10:47:39 GMT
content-length: 0
location: https://dmp.gotechnology.io/match/sape?id=1303420ACA37DE63860A0B7702F0962A&chk=1
set-cookie: chk=1; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f40784a0e2467199e3012dee04916680
78b43252538fb0e48af502c9b5a2d48d7f31c90d
7b503effcaf13c7084d6b3faa30242517a76de201d8228e0b86f1ccd37b9d923
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7B503EFFCAF13C7084D6B3FAA30242517A76DE201D8228E0B86F1CCD37B9D923"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10674
Expires: Sat, 04 Feb 2023 13:45:33 GMT
Date: Sat, 04 Feb 2023 10:47:39 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 279 B IP
Hash 72ffec6ce01ac59744b196bb43992736
a397aae61c3b04a23ddc2168d68443dd9ad117d9
c5c1e579a7e5de9bbbae02977984a225f1130dacc44daae1d54742bfcfa11d95
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5002
Cache-Control: max-age=108766
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 10:47:39 GMT
Etag: "63dd2a1f-117"
Expires: Sun, 05 Feb 2023 17:00:26 GMT
Last-Modified: Fri, 03 Feb 2023 15:37:03 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
www.acint.net/mc/?dp=14&tc=1
200 OK 1.3 kB URL HTTP/2 www.acint.net/mc/?dp=14&tc=1
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 474e9b3e2a943192eb42b51d809eb2dd
706b81b7273e1abd49354f91ced5e1f331af5074
b9f4ef76aabdfb0b52e526804407ad2003bb12a32dea612006597f65c3f612f5
GET /mc/?dp=14&tc=1 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://t.lafa.site/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeN8p3CwqGKpbwAkl1cn8PhB5pJm3yy8DG2zPTlSRN
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: text/html
set-cookie: cSyncDp7v2=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp14v3=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp17=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp32=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp45v3=1675507658; expires=Sun, 05-Feb-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp53v2=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp62=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp67v2=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp68=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp71=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp85=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp95v3=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp98v2=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp101=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp104v2=1675507658; expires=Sat, 18-Feb-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp107=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp110=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp125v3=1675507658; expires=Sun, 19-Feb-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp126=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp127=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp129=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp136v2=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp146=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp148=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp149v2=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp151=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp178=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp186=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp221=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp235=1675507658; expires=Mon, 06-Mar-23 10:47:38 GMT; path=/; Secure; SameSite=None; domain=.acint.net
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
content-encoding: gzip
X-Firefox-Spdy: h2
sync.adspend.space/sape?uid=1303420ACA37DE63860A0B7702F0962A
302 Found 149 B URL HTTP/2 sync.adspend.space/sape?uid=1303420ACA37DE63860A0B7702F0962A
IP
File type HTML document, ASCII text
Hash e4fd049eb15cb137806ec6da97c2e144
2f512c9291217392a04c33241711b3c9ca5201b4
c625928c0a7743b2e198093bc96b1fd2266390bf95f267ca6c830bfa7c35f9e6
GET /sape?uid=1303420ACA37DE63860A0B7702F0962A HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 10:47:39 GMT
content-type: text/html; charset=utf-8
content-length: 149
location: https://sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Db286638b-44aa-4399-adca-c4e22a4fb416
set-cookie: as-user=b286638b-44aa-4399-adca-c4e22a4fb416; Path=/; Max-Age=31536000; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
301 Moved Permanently 115 B URL HTTP/2 exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
IP
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text
Hash 81dc928bf4ffdaef6c0963aec8f3a657
8729eff6da4e1be7dcb6966fa8b73608e9d65476
c57c567c0b89e2cee7a6c1c1b63cdc84e1abc0716efe542681b9912034df2a97
GET /cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 04 Feb 2023 10:47:39 GMT
content-type: text/html; charset=utf-8
content-length: 115
location: https://www.acint.net/match?dp=126&euid=99029412-7365-452d-49d7-56cb06a70c8c
serverid: TODO
X-Firefox-Spdy: h2
pix.bumlam.com/sync/sape/sync_ok?guid=57cc6b4a-a479-11ed-a1c4-002590c82437
302 Found 0 B URL HTTP/1.1 pix.bumlam.com/sync/sape/sync_ok?guid=57cc6b4a-a479-11ed-a1c4-002590c82437
IP
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/sync_ok?guid=57cc6b4a-a479-11ed-a1c4-002590c82437 HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQ1N2NjNmI0YS1hNDc5LTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://57cc6b4a-a479-11ed-a1c4-002590c82437.n1.sync.bumlam.com/?src=sape
ssp.bidvol.com/usersync?dspcsid=8&redirect=1
302 Found 1.4 kB URL HTTP/2 ssp.bidvol.com/usersync?dspcsid=8&redirect=1
IP
ASN #24940 Hetzner Online GmbH
Hash e1b63886667a18abfff4143c22151238
eba2c42332f968b47a165fc6463030521952be8d
657514d52865f048c3bf1cdc1aa20af3b20de77b53278f47fc3cdbe3394ed24c
GET /usersync?dspcsid=8&redirect=1 HTTP/1.1
Host: ssp.bidvol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.23.0
date: Sat, 04 Feb 2023 10:47:38 GMT
x-request-id: eff63b99-3465-44f6-80e2-98c714152f8f
set-cookie: bvuid=vzzbrqg3z7; Max-Age=2147483647; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None
bvuid2=vzzbrqg3z7; Max-Age=2147483647; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
surrogate-control: no-store
location: https://www.acint.net/match?dp=129&euid=vzzbrqg3z7
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 4179e6782e70c5c689405ac6b35604d1
2d9049077caa1b4d939224f82d932ff77aa9fe88
4392ce090c13bd1dc31b4921730e28cde910e8f4ed4e99fb46f85bf9b7ada02e
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Wed, 08 Feb 2023 06:13:47 GMT
ETag: "2d9049077caa1b4d939224f82d932ff77aa9fe88"
Last-Modified: Sat, 04 Feb 2023 06:13:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2171
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7942d455882cfabc-OSL
www.acint.net/pxl/3?dp=16&id=133641.775750.164792294.0.0.0&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
200 OK 43 B URL HTTP/2 www.acint.net/pxl/3?dp=16&id=133641.775750.164792294.0.0.0&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pxl/3?dp=16&id=133641.775750.164792294.0.0.0&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507694 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Cookie: test_cookie=CheckForPermission; aid=CkIDFWPeN8qdNBR212ziAixb/ZsZnMcLKYZyUPaf4eIqahNN; cSyncDp7v2=1675507658; cSyncDp14v3=1675507658; cSyncDp17=1675507658; cSyncDp32=1675507658; cSyncDp45v3=1675507658; cSyncDp53v2=1675507658; cSyncDp62=1675507658; cSyncDp67v2=1675507658; cSyncDp68=1675507658; cSyncDp71=1675507658; cSyncDp85=1675507658; cSyncDp95v3=1675507658; cSyncDp98v2=1675507658; cSyncDp101=1675507658; cSyncDp104v2=1675507658; cSyncDp107=1675507658; cSyncDp110=1675507658; cSyncDp125v3=1675507658; cSyncDp126=1675507658; cSyncDp127=1675507658; cSyncDp129=1675507658; cSyncDp136v2=1675507658; cSyncDp146=1675507658; cSyncDp148=1675507658; cSyncDp149v2=1675507658; cSyncDp151=1675507658; cSyncDp178=1675507658; cSyncDp186=1675507658; cSyncDp221=1675507658; cSyncDp235=1675507658
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:39 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 4179e6782e70c5c689405ac6b35604d1
2d9049077caa1b4d939224f82d932ff77aa9fe88
4392ce090c13bd1dc31b4921730e28cde910e8f4ed4e99fb46f85bf9b7ada02e
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Wed, 08 Feb 2023 06:13:47 GMT
ETag: "2d9049077caa1b4d939224f82d932ff77aa9fe88"
Last-Modified: Sat, 04 Feb 2023 06:13:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2171
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7942d455983afabc-OSL
www.acint.net/oci/?v=0.5.1&uid=6c4c40bf-18e2-4f63-a350-57f563f9d242&dp=14&tz=%2B00%3A00&nc=85214662&oid=39e8192718f4ed5a678fc273d654392b
200 OK 43 B URL HTTP/2 www.acint.net/oci/?v=0.5.1&uid=6c4c40bf-18e2-4f63-a350-57f563f9d242&dp=14&tz=%2B00%3A00&nc=85214662&oid=39e8192718f4ed5a678fc273d654392b
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /oci/?v=0.5.1&uid=6c4c40bf-18e2-4f63-a350-57f563f9d242&dp=14&tz=%2B00%3A00&nc=85214662&oid=39e8192718f4ed5a678fc273d654392b HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Cookie: test_cookie=CheckForPermission; aid=CkIDFWPeN8qdNBR212ziAixb/ZsZnMcLKYZyUPaf4eIqahNN; cSyncDp7v2=1675507658; cSyncDp14v3=1675507658; cSyncDp17=1675507658; cSyncDp32=1675507658; cSyncDp45v3=1675507658; cSyncDp53v2=1675507658; cSyncDp62=1675507658; cSyncDp67v2=1675507658; cSyncDp68=1675507658; cSyncDp71=1675507658; cSyncDp85=1675507658; cSyncDp95v3=1675507658; cSyncDp98v2=1675507658; cSyncDp101=1675507658; cSyncDp104v2=1675507658; cSyncDp107=1675507658; cSyncDp110=1675507658; cSyncDp125v3=1675507658; cSyncDp126=1675507658; cSyncDp127=1675507658; cSyncDp129=1675507658; cSyncDp136v2=1675507658; cSyncDp146=1675507658; cSyncDp148=1675507658; cSyncDp149v2=1675507658; cSyncDp151=1675507658; cSyncDp178=1675507658; cSyncDp186=1675507658; cSyncDp221=1675507658; cSyncDp235=1675507658
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:39 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 4179e6782e70c5c689405ac6b35604d1
2d9049077caa1b4d939224f82d932ff77aa9fe88
4392ce090c13bd1dc31b4921730e28cde910e8f4ed4e99fb46f85bf9b7ada02e
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Wed, 08 Feb 2023 06:13:47 GMT
ETag: "2d9049077caa1b4d939224f82d932ff77aa9fe88"
Last-Modified: Sat, 04 Feb 2023 06:13:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2171
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7942d455a849fabc-OSL
counter.yadro.ru/hit?t44.6;r;s1280*1024*24;uhttps%3A//t.lafa.site/film/Triller/poezdka-na-vihodnie.htm;0.817090783670091
200 OK 132 B URL HTTP/1.1 counter.yadro.ru/hit?t44.6;r;s1280*1024*24;uhttps%3A//t.lafa.site/film/Triller/poezdka-na-vihodnie.htm;0.817090783670091
IP
ASN #39134 United Network LLC
File type GIF image data, version 87a, 31 x 31\012- data
Hash 0223d80a320a983871bfa82aa6d698ea
f4e06fe8e83c662bb565f175d7de22f51c1e7c9d
fa523f248a332cb89ae3ad8cf51d840153e0f96bcc2a4c8db736e02a340dab48
GET /hit?t44.6;r;s1280*1024*24;uhttps%3A//t.lafa.site/film/Triller/poezdka-na-vihodnie.htm;0.817090783670091 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: image/gif
Content-Length: 132
Connection: keep-alive
Expires: Thu, 03 Feb 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
cs.agency2.ru/p?ssp=sp&uid=1303420ACA37DE63860A0B7702F0962A
301 Moved Permanently 0 B URL HTTP/1.1 cs.agency2.ru/p?ssp=sp&uid=1303420ACA37DE63860A0B7702F0962A
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sp&uid=1303420ACA37DE63860A0B7702F0962A HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.acint.net/match?dp=186&euid=ffc932df-769d-49bc-8235-2ec78310aeb6
Set-Cookie: uuid=ffc932df-769d-49bc-8235-2ec78310aeb6; expires=Fri, 26 Jan 2024 10:47:39 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44
dmp.gotechnology.io/match/sape?id=1303420ACA37DE63860A0B7702F0962A&chk=1
302 Found 0 B URL HTTP/2 dmp.gotechnology.io/match/sape?id=1303420ACA37DE63860A0B7702F0962A&chk=1
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=1303420ACA37DE63860A0B7702F0962A&chk=1 HTTP/1.1
Host: dmp.gotechnology.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: chk=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 10:47:39 GMT
content-length: 0
location: https://an.yandex.ru/mapuid/gonetdspis/MWM2ODE5ZGMyMTk5YzllZA
set-cookie: pid=MWM2ODE5ZGMyMTk5YzllZA; expires=Sun, 04 Feb 2024 10:47:39 GMT; domain=.gotechnology.io; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
ssp.24smi.net/rtb/v2/ad?psw=1280&psh=1024&pow=1280&poh=1024&pdpr=1&pdt=1675507693&ptz=0&pl=en-US&object=25495&template_id=16154&num=4&ref=&output=json&chash=fwWVMFTKlS&extids=&page=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&callback=__smiCb1675507693186
200 OK 1.6 kB URL HTTP/2 ssp.24smi.net/rtb/v2/ad?psw=1280&psh=1024&pow=1280&poh=1024&pdpr=1&pdt=1675507693&ptz=0&pl=en-US&object=25495&template_id=16154&num=4&ref=&output=json&chash=fwWVMFTKlS&extids=&page=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&callback=__smiCb1675507693186
IP
File type Unicode text, UTF-8 text, with very long lines (2846), with no line terminators
Hash a68274b97f34f5836e464d85ef648b4c
5a6f5a043deebe49eade5ea78fb978c6452e0123
0da891f5cc63b68efce9a451503f4a39f0b1c47a2b7c28ffbdd0f13cbfbdd5f3
GET /rtb/v2/ad?psw=1280&psh=1024&pow=1280&poh=1024&pdpr=1&pdt=1675507693&ptz=0&pl=en-US&object=25495&template_id=16154&num=4&ref=&output=json&chash=fwWVMFTKlS&extids=&page=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&callback=__smiCb1675507693186 HTTP/1.1
Host: ssp.24smi.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Cookie: smi_uid=0kWEIJ2e-
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 10:47:39 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store
strict-transport-security: max-age=0
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7942d4534c9f1bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 10:47:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.acint.net/match?dp=126&euid=99029412-7365-452d-49d7-56cb06a70c8c
200 OK 43 B URL HTTP/2 www.acint.net/match?dp=126&euid=99029412-7365-452d-49d7-56cb06a70c8c
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=126&euid=99029412-7365-452d-49d7-56cb06a70c8c HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWPeN8qdNBR212ziAixb/ZsZnMcLKYZyUPaf4eIqahNN; cSyncDp7v2=1675507658; cSyncDp14v3=1675507658; cSyncDp17=1675507658; cSyncDp32=1675507658; cSyncDp45v3=1675507658; cSyncDp53v2=1675507658; cSyncDp62=1675507658; cSyncDp67v2=1675507658; cSyncDp68=1675507658; cSyncDp71=1675507658; cSyncDp85=1675507658; cSyncDp95v3=1675507658; cSyncDp98v2=1675507658; cSyncDp101=1675507658; cSyncDp104v2=1675507658; cSyncDp107=1675507658; cSyncDp110=1675507658; cSyncDp125v3=1675507658; cSyncDp126=1675507658; cSyncDp127=1675507658; cSyncDp129=1675507658; cSyncDp136v2=1675507658; cSyncDp146=1675507658; cSyncDp148=1675507658; cSyncDp149v2=1675507658; cSyncDp151=1675507658; cSyncDp178=1675507658; cSyncDp186=1675507658; cSyncDp221=1675507658; cSyncDp235=1675507658
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:39 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ssp6.24smi.net/rtb/v2/bn?id=e0cef8a9-8836-47c4-b927-9c1dec398428
200 OK 0 B URL HTTP/2 ssp6.24smi.net/rtb/v2/bn?id=e0cef8a9-8836-47c4-b927-9c1dec398428
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/v2/bn?id=e0cef8a9-8836-47c4-b927-9c1dec398428 HTTP/1.1
Host: ssp6.24smi.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Cookie: smi_uid=0kWEIJ2e-
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 10:47:39 GMT
content-length: 0
strict-transport-security: max-age=0
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7942d4550e831bfa-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 10:47:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
302 Found 16 kB URL HTTP/2 ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
IP
ASN #48096 Enterprise Cloud Ltd.
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://acint.net/match?dp=110&euid=f5c1aa35a70c47288eba5516a85bde23
server: Microsoft-IIS/10.0
set-cookie: adlm_userId=f5c1aa35a70c47288eba5516a85bde23; expires=Sat, 03 Feb 2024 21:00:00 GMT; path=/; SameSite=None; secure; samesite=lax
date: Sat, 04 Feb 2023 10:47:38 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2
200 OK 9.8 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 9840, version 1.0\012- data
Hash 7b08b9e11fc6b8a8a1398b357e874144
4b5fb5790fae1c96655aaa7a426b697f5ab986d0
3728fbdd191d75bad5b83a838dfe2fc15f84c2aaa36ffa573321275847db31a9
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://t.lafa.site
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 01:03:44 GMT
expires: Fri, 02 Feb 2024 01:03:44 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:39 GMT
content-type: font/woff2
age: 207835
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://t.lafa.site
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 07:51:59 GMT
expires: Thu, 01 Feb 2024 07:51:59 GMT
cache-control: public, max-age=31536000
age: 269740
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Db286638b-44aa-4399-adca-c4e22a4fb416
302 Found 102 B URL HTTP/2 sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Db286638b-44aa-4399-adca-c4e22a4fb416
IP
File type HTML document, ASCII text
Hash e06e48da0f4475181ae0fdff97ff3e31
65e2aefab974fa8b265f98ad663d2c411eaf71c9
05f07bdbcc21466f17f4f392fb98f020fd71149fab2ada1e1a8ceb0fd6b94d95
GET /check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Db286638b-44aa-4399-adca-c4e22a4fb416 HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: as-user=b286638b-44aa-4399-adca-c4e22a4fb416
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 04 Feb 2023 10:47:39 GMT
content-type: text/html; charset=utf-8
content-length: 102
location: https://www.acint.net/match?dp=98&euid=b286638b-44aa-4399-adca-c4e22a4fb416
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
www.acint.net/match?dp=186&euid=ffc932df-769d-49bc-8235-2ec78310aeb6
200 OK 43 B URL HTTP/2 www.acint.net/match?dp=186&euid=ffc932df-769d-49bc-8235-2ec78310aeb6
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=186&euid=ffc932df-769d-49bc-8235-2ec78310aeb6 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWPeN8qdNBR212ziAixb/ZsZnMcLKYZyUPaf4eIqahNN; cSyncDp7v2=1675507658; cSyncDp14v3=1675507658; cSyncDp17=1675507658; cSyncDp32=1675507658; cSyncDp45v3=1675507658; cSyncDp53v2=1675507658; cSyncDp62=1675507658; cSyncDp67v2=1675507658; cSyncDp68=1675507658; cSyncDp71=1675507658; cSyncDp85=1675507658; cSyncDp95v3=1675507658; cSyncDp98v2=1675507658; cSyncDp101=1675507658; cSyncDp104v2=1675507658; cSyncDp107=1675507658; cSyncDp110=1675507658; cSyncDp125v3=1675507658; cSyncDp126=1675507658; cSyncDp127=1675507658; cSyncDp129=1675507658; cSyncDp136v2=1675507658; cSyncDp146=1675507658; cSyncDp148=1675507658; cSyncDp149v2=1675507658; cSyncDp151=1675507658; cSyncDp178=1675507658; cSyncDp186=1675507658; cSyncDp221=1675507658; cSyncDp235=1675507658
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:39 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 10:47:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.yandex.ru/metrika/watch.js
200 OK 58 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (554)
Hash 315a601116a9b3b0fbc85feb58375ba4
5d283ed923d0b3beb8a2ec4e80c2958d1d132fbf
251ba0fc04953e3615e7c19a9a10c5d6a4f25cc03bef190f8a5e7c6cd72a991a
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 58140
date: Sat, 04 Feb 2023 10:47:39 GMT
access-control-allow-origin: *
etag: "63c93a4b-e31c"
expires: Sat, 04 Feb 2023 11:47:39 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/tag.js
200 OK 74 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Hash a236c7014c1f1a1e52d356f59e5d665a
b66c638eb2346287364c37725819bbab1f409d66
ad2d57579e453af0eac49156840bcd1dcfbd802a82135af98f41f714d7e698f2
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73769
date: Sat, 04 Feb 2023 10:47:39 GMT
access-control-allow-origin: *
etag: "63c93a4b-12029"
expires: Sat, 04 Feb 2023 11:47:39 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
57cc6b4a-a479-11ed-a1c4-002590c82437.n1.sync.bumlam.com/?src=sape
302 Found 0 B URL HTTP/2 57cc6b4a-a479-11ed-a1c4-002590c82437.n1.sync.bumlam.com/?src=sape
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: 57cc6b4a-a479-11ed-a1c4-002590c82437.n1.sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQ1N2NjNmI0YS1hNDc5LTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.22.1
date: Sat, 04 Feb 2023 10:47:39 GMT
content-length: 0
location: https://pix.bumlam.com/sync/sape/done
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d132fc3241a2d974e0951cca93d9e828
74c9eb6072fc07ccf0eec7d78c30b58052b05dd8
28d6d764a99953f0d39d62c688594d0a0e8969d8d87a5fbe13917b90e23071ca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28D6D764A99953F0D39D62C688594D0A0E8969D8D87A5FBE13917B90E23071CA"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16437
Expires: Sat, 04 Feb 2023 15:21:36 GMT
Date: Sat, 04 Feb 2023 10:47:39 GMT
Connection: keep-alive
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash 85b3245ec36bd27337896a3533d590b6
c194a1a10de1803604a646cd2053d1c54f7c5cdf
cb356f0fc3bf194bb6f957515f33fa993c684678994f833b371412f57f2af680
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 08 Feb 2023 09:32:00 GMT
ETag: "c194a1a10de1803604a646cd2053d1c54f7c5cdf"
Last-Modified: Sat, 04 Feb 2023 09:32:01 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 557
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7942d4574964fabc-OSL
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash 85b3245ec36bd27337896a3533d590b6
c194a1a10de1803604a646cd2053d1c54f7c5cdf
cb356f0fc3bf194bb6f957515f33fa993c684678994f833b371412f57f2af680
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 08 Feb 2023 09:32:00 GMT
ETag: "c194a1a10de1803604a646cd2053d1c54f7c5cdf"
Last-Modified: Sat, 04 Feb 2023 09:32:01 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 557
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7942d457697afabc-OSL
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691
302 Moved Temporarily 0 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, max-age=0, must-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
Set-Cookie: cid=-4444087316; expires=Mon, 03 Feb 2025 10:47:39 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
Location: /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-4444087316
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
dmg.digitaltarget.ru/1/7483/i/i?a=1022&e=0kWEIJ2e-&i=977816343
307 Temporary Redirect 0 B URL HTTP/1.1 dmg.digitaltarget.ru/1/7483/i/i?a=1022&e=0kWEIJ2e-&i=977816343
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/7483/i/i?a=1022&e=0kWEIJ2e-&i=977816343 HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/7483/i/i?call_source=awg&ts=1675507659421&a=1022&e=0kWEIJ2e-&i=977816343
Set-Cookie: viuserid=s2Tnzr3L.KTAcy.7hj5b; Max-Age=93312000; Expires=Mon, 19 Jan 2026 10:47:39 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 1
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=1303420ACA37DE63860A0B7702F0962A
200 OK 42 B URL HTTP/1.1 ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=1303420ACA37DE63860A0B7702F0962A
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cgi-bin/sync.cgi?dsp_id=153&external_id=1303420ACA37DE63860A0B7702F0962A HTTP/1.1
Host: ssp.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ocsp.globalsign.com/gseccovsslca2018
200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 5d2d6a345c5e7ac410fa97b8d9f583d1
180ef34ef83b84f91c07f1cc1f34acab83d16ca7
6163263c4dfb4256b4712c4a6174a6dae979a2617c9811ce4597d30578011796
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Wed, 08 Feb 2023 09:04:26 GMT
ETag: "180ef34ef83b84f91c07f1cc1f34acab83d16ca7"
Last-Modified: Sat, 04 Feb 2023 09:04:27 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1053
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7942d4579993fabc-OSL
ocsp.globalsign.com/alphasslcasha256g4
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/alphasslcasha256g4
IP
Hash e943c0c9610c159ee2ec3fd8f4f08cac
7c47abbffb25ff2935ffb869832e6f19ce391231
37068eacd5578e5d36dda3e7d5c68b236bf246287523844e14ae3f39574df3e5
POST /alphasslcasha256g4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1437
Connection: keep-alive
Expires: Wed, 08 Feb 2023 09:09:37 GMT
ETag: "7c47abbffb25ff2935ffb869832e6f19ce391231"
Last-Modified: Sat, 04 Feb 2023 09:09:38 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1031
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7942d457aa52b517-OSL
ocsp.sectigo.com/
200 OK 471 B IP
Hash 2f59b9826b587ec88c538c4e0fdda68f
a9569ad568776c896099e2e7b4291dbe7101cb9b
76812d4ae48f41904eb3722fb49c463d4287d81fa7a9ea5d28687ddb3a546931
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 02:03:25 GMT
Expires: Wed, 08 Feb 2023 02:03:24 GMT
Etag: "a9569ad568776c896099e2e7b4291dbe7101cb9b"
Cache-Control: max-age=313544,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7942d4578d95b4f3-OSL
sync.adkernel.com/user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D
400 Bad Request 22 B URL HTTP/1.1 sync.adkernel.com/user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D
IP
ASN #36057 WEBAIR-INTERNET-MTL
File type ASCII text, with no line terminators
Hash b0b11e1c78b526b61477f8e9ee540be0
d5e73002987ff54626542b116d98a8f4aa9ee2eb
4ca18c247df52dd22650bd7f72f71d7c98102243b0ec474f683c6a279ad3a668
GET /user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D HTTP/1.1
Host: sync.adkernel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 400 Bad Request
Server: nginx
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Length: 22
Connection: close
Cache-Control: no-store
Age: 0
Pragma: no-cache
fast.rocketme.top/public/rocketme_brand.js
200 OK 3.6 kB URL HTTP/2 fast.rocketme.top/public/rocketme_brand.js
IP
Hash 0b9efd417aec24ccd80e12ac1c2c70b0
a2268ef96398e2032f649ef738410ba0193df29b
58096686e55b74921d593e9e5db5f92e90ef8194977b15656d96a8a1d6d550fa
GET /public/rocketme_brand.js HTTP/1.1
Host: fast.rocketme.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.0
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: application/javascript
last-modified: Sun, 18 Dec 2022 20:35:57 GMT
vary: Accept-Encoding
etag: W/"639f79ad-39f2"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
img.24smi.net/200_200/5/7/5728484a2a7a46253166de09705b120d.jpeg
200 OK 16 kB URL HTTP/2 img.24smi.net/200_200/5/7/5728484a2a7a46253166de09705b120d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 200x200, components 3\012- data
Hash 5aff8fa76105d1aacbefaf2b337cd70b
17c5ad32c191ab7e155d03c262f14b4c712f0d87
c46c00c92b12e8410b862f8dd63fb9d8d56f945f8a032c3cd050bc47186e8067
GET /200_200/5/7/5728484a2a7a46253166de09705b120d.jpeg HTTP/1.1
Host: img.24smi.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Cookie: smi_uid=0kWEIJ2e-
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 10:47:39 GMT
content-type: image/jpeg
content-length: 16062
cache-control: max-age=25920000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16192, status=webp_bigger
etag: W/"63d94515-17c15"
expires: Wed, 29 Nov 2023 14:48:36 GMT
last-modified: Tue, 31 Jan 2023 16:43:01 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
age: 158334
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 7942d457f9a81bfa-OSL
X-Firefox-Spdy: h2
mc.yandex.ru/watch/71281900/1?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&site-info=%7B%22site_id%22%3A133641%7D&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A245029418705%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A122717266%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20%28The%20Weekend%20Away%29%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
200 OK 400 B URL HTTP/2 mc.yandex.ru/watch/71281900/1?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&site-info=%7B%22site_id%22%3A133641%7D&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A245029418705%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A122717266%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20%28The%20Weekend%20Away%29%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP
File type JSON data\012- , ASCII text, with very long lines (400), with no line terminators
Hash ba56a879de5a3bcb210b000f292e6ed0
11c0bddb957ee278c478af1e1be6fdcf48720fa6
99a327b1c83a9d79d52ae1e703c90f746ec49ab272620b36f895aa426b136edb
GET /watch/71281900/1?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&site-info=%7B%22site_id%22%3A133641%7D&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A245029418705%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A122717266%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20%28The%20Weekend%20Away%29%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://t.lafa.site
Referer: https://t.lafa.site/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 400
date: Sat, 04 Feb 2023 10:47:39 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://t.lafa.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 10:47:39 GMT
last-modified: Sat, 04-Feb-2023 10:47:39 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ads.betweendigital.com/match?bidder_id=73&external_user_id=1303420ACA37DE63860A0B7702F0962A
302 Found 0 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=73&external_user_id=1303420ACA37DE63860A0B7702F0962A
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder_id=73&external_user_id=1303420ACA37DE63860A0B7702F0962A HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /match?bidder_id=73&external_user_id=1303420ACA37DE63860A0B7702F0962A&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 04 Feb 2024 10:47:39 GMT; Path=/; Domain=.betweendigital.com
tuuid=4982749f-578a-5223-9721-af40f4ff988b; Max-Age=31536000; Expires=Sun, 04 Feb 2024 10:47:39 GMT; Path=/; Domain=.betweendigital.com
ut=Y943ywAHuJAtkPqI113IyBshjM-Nf08UMQbtlg==; Max-Age=31536000; Expires=Sun, 04 Feb 2024 10:47:39 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2
mc.yandex.ru/watch/71281900?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&site-info=%7B%22site_id%22%3A133641%7D&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A245029418705%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A122717266%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20(The%20Weekend%20Away)%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
302 Found 43 B URL HTTP/2 mc.yandex.ru/watch/71281900?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&site-info=%7B%22site_id%22%3A133641%7D&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A245029418705%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A122717266%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20(The%20Weekend%20Away)%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /watch/71281900?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&site-info=%7B%22site_id%22%3A133641%7D&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A245029418705%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A122717266%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20(The%20Weekend%20Away)%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://t.lafa.site
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/71281900/1?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&site-info=%7B%22site_id%22%3A133641%7D&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A245029418705%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A122717266%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20%28The%20Weekend%20Away%29%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Sat, 04 Feb 2023 10:47:39 GMT
access-control-allow-origin: https://t.lafa.site
set-cookie: yabs-sid=1302157131675507659; Path=/; SameSite=None; Secure
i=FyGHMqa88oQDd6bjLNrECJ0OrQrgqgh92GDoCgLRX4860yMH5GfOqvDPnsRboX977TPddOgQUjvz7BISJmc59LLbUfg=; Expires=Tue, 01-Feb-2033 10:47:38 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=2971730441675507659; Expires=Sun, 04-Feb-2024 10:47:39 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=2971730441675507659; Expires=Sun, 04-Feb-2024 10:47:39 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1707043659.yc.1675507659#1707043659.yrts.1675507659#1707043659.yrtsi.1675507659; Expires=Sun, 04-Feb-2024 10:47:39 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 10:47:39 GMT
last-modified: Sat, 04-Feb-2023 10:47:39 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 0d9f6361d88f78dec3c8b4b43713ef3e
d7fe3e9809499d1608e5ff16856274a19952bea3
9a9545749a6384e26ce58b56103df2ffcd5b208bfcdd2fb6089ab499b8566e29
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Wed, 08 Feb 2023 07:40:43 GMT
ETag: "d7fe3e9809499d1608e5ff16856274a19952bea3"
Last-Modified: Sat, 04 Feb 2023 07:40:44 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3360
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7942d4582a04fabc-OSL
mc.yandex.ru/metrika/advert.gif
200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Feb 2023 10:47:39 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Sat, 04 Feb 2023 11:47:39 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/26812653/1?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&site-info=%7B%22shareVersion%22%3A2%2C%22strategy%22%3A%22a%2Ff%2Ft%22%7D&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A4%3Adp%3A0%3Als%3A270865316550%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A436774934%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20%28The%20Weekend%20Away%29%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
200 OK 407 B URL HTTP/2 mc.yandex.ru/watch/26812653/1?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&site-info=%7B%22shareVersion%22%3A2%2C%22strategy%22%3A%22a%2Ff%2Ft%22%7D&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A4%3Adp%3A0%3Als%3A270865316550%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A436774934%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20%28The%20Weekend%20Away%29%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP
File type JSON data\012- , ASCII text, with very long lines (407), with no line terminators
Hash 1e489e59c758b58447e32146eb31e4de
7e0836e69c6fb50965bb2cad75f26149a52bfb8c
2f6d1564d31996a0e9352c5cc3b9d12f6f87a243a547bfd150e395345c9b9dc9
GET /watch/26812653/1?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&site-info=%7B%22shareVersion%22%3A2%2C%22strategy%22%3A%22a%2Ff%2Ft%22%7D&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A4%3Adp%3A0%3Als%3A270865316550%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A436774934%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20%28The%20Weekend%20Away%29%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://t.lafa.site
Referer: https://t.lafa.site/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 407
date: Sat, 04 Feb 2023 10:47:39 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://t.lafa.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 10:47:39 GMT
last-modified: Sat, 04-Feb-2023 10:47:39 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/66757348/1?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A3%3Adp%3A0%3Als%3A1298451141073%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A461769158%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20%28The%20Weekend%20Away%29%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
200 OK 400 B URL HTTP/2 mc.yandex.ru/watch/66757348/1?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A3%3Adp%3A0%3Als%3A1298451141073%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A461769158%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20%28The%20Weekend%20Away%29%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP
File type JSON data\012- , ASCII text, with very long lines (400), with no line terminators
Hash 973465113b5e20cfa3d371076babfac0
8e525ca4579d54c19d88d475b5407c94375b8152
dcacbaf4bdfe4de29213ee31794c054f1641088161b6fde293528dfc9b3871ec
GET /watch/66757348/1?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A3%3Adp%3A0%3Als%3A1298451141073%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A461769158%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20%28The%20Weekend%20Away%29%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://t.lafa.site
Referer: https://t.lafa.site/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 400
date: Sat, 04 Feb 2023 10:47:39 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://t.lafa.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 10:47:39 GMT
last-modified: Sat, 04-Feb-2023 10:47:39 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.usertrust.com/
200 OK 472 B IP
Hash 51ab5a8626b70c7594e57366f659f93d
b306da2759928ddd7895083be1196fae9f634197
2eb603282049d073ffcd2928301736eb6d72e02c0ea9e4a884e103c73debd5de
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 16:18:21 GMT
Expires: Thu, 09 Feb 2023 16:18:20 GMT
Etag: "b306da2759928ddd7895083be1196fae9f634197"
Cache-Control: max-age=604041,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 287
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7942d4583c49b503-OSL
dmg.digitaltarget.ru/awg/custom/7483/i/i?call_source=awg&ts=1675507659421&a=1022&e=0kWEIJ2e-&i=977816343
200 OK 64 B URL HTTP/1.1 dmg.digitaltarget.ru/awg/custom/7483/i/i?call_source=awg&ts=1675507659421&a=1022&e=0kWEIJ2e-&i=977816343
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8
GET /awg/custom/7483/i/i?call_source=awg&ts=1675507659421&a=1022&e=0kWEIJ2e-&i=977816343 HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://t.lafa.site/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 1
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
mc.yandex.ru/watch/66757348?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A3%3Adp%3A0%3Als%3A1298451141073%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A461769158%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20(The%20Weekend%20Away)%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
302 Found 1.4 kB URL HTTP/2 mc.yandex.ru/watch/66757348?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A3%3Adp%3A0%3Als%3A1298451141073%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A461769158%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20(The%20Weekend%20Away)%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP
Hash 159b4ac39359654d8977875d48b740b0
8a45b5ee87d8302e8394605e5518d8d30fbb07d3
f72cc35dc6efffba06184a37323ad82ef557fa2bba1f5ffe7a9cfbf6f61f867d
GET /watch/66757348?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A3%3Adp%3A0%3Als%3A1298451141073%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A461769158%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20(The%20Weekend%20Away)%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://t.lafa.site
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/66757348/1?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A3%3Adp%3A0%3Als%3A1298451141073%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A461769158%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20%28The%20Weekend%20Away%29%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Sat, 04 Feb 2023 10:47:39 GMT
access-control-allow-origin: https://t.lafa.site
set-cookie: yabs-sid=2191407891675507659; Path=/; SameSite=None; Secure
i=lL7zSiv4AwT7Xk9eUyrZ/TUtFSnBKTM6rZlO5WO2B2YHa9aHa+IBSdtxToKMNfCv7i/M6VB3bvdjI3GWf5NcqI1+pr4=; Expires=Tue, 01-Feb-2033 10:47:27 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=8820698921675507659; Expires=Sun, 04-Feb-2024 10:47:39 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=8820698921675507659; Expires=Sun, 04-Feb-2024 10:47:39 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1707043659.yc.1675507659#1707043659.yrts.1675507659#1707043659.yrtsi.1675507659; Expires=Sun, 04-Feb-2024 10:47:39 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 10:47:39 GMT
last-modified: Sat, 04-Feb-2023 10:47:39 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-4444087316
302 Moved Temporarily 40 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-4444087316
IP
File type ASCII text, with CRLF line terminators
Hash 251630b588179b239e8fab1ac9ef6d3a
91b91a97bc481dd2bbd5e0f3fea6ba1c4e843882
c95661e0ef6975b1df5361695a439f71a021d72c345023c3e668e84f35b3c38b
GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-4444087316 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, no-cache=Set-Cookie, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref="//adriver.ru/w3c/p3p.xml", CP="NON DSP COR CURa ADMa DEVa OUR BUS UNI COM NAV INT STA"
Set-Cookie: cid=0; expires=Mon, 03 Feb 2025 10:47:39 GMT; path=/; domain=.adriver.ru;
uid=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; domain=.adriver.ru
Location: https://www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
ads.betweendigital.com/match?bidder_id=73&external_user_id=1303420ACA37DE63860A0B7702F0962A&crf=1
200 OK 68 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=73&external_user_id=1303420ACA37DE63860A0B7702F0962A&crf=1
IP
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /match?bidder_id=73&external_user_id=1303420ACA37DE63860A0B7702F0962A&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 04 Feb 2024 10:47:39 GMT; Path=/; Domain=.betweendigital.com
tuuid=27d730b3-3cbe-5223-b6c6-b61fd51881d4; Max-Age=31536000; Expires=Sun, 04 Feb 2024 10:47:39 GMT; Path=/; Domain=.betweendigital.com
ut=Y943ywAItnhg8F5LtlZsqzzfH8MIMkG91gPAKQ==; Max-Age=31536000; Expires=Sun, 04 Feb 2024 10:47:39 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash be1c1e132e382b8b7b94bcc7d092260e
90e6c03f0e8b38264b1d12d1c45f28d775287585
6c301529dd1e80d4468526b97cb4920d662ff377ff7ad537db930d9ee31e3509
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 08 Feb 2023 10:01:05 GMT
ETag: "90e6c03f0e8b38264b1d12d1c45f28d775287585"
Last-Modified: Sat, 04 Feb 2023 10:01:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1018
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7942d4587a2cfabc-OSL
sape-sync.rutarget.ru/sync
302 Moved Temporarily 0 B URL HTTP/1.1 sape-sync.rutarget.ru/sync
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync HTTP/1.1
Host: sape-sync.rutarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Length: 0
Connection: close
Location: https://www.acint.net/match?dp=104&euid=gG2_GAQmL8e8
P3P: CP="This is not a P3P policy. Please visit http://rutarget.ru/p3p/ to get more information."
Set-Cookie: userId=gG2_GAQmL8e8; Path=/; Domain=.rutarget.ru; Expires=Thu, 03 Aug 2023 10:47:39 GMT; SameSite=None; Secure
ad.mail.ru/cm.gif?p=48&id=1303420ACA37DE63860A0B7702F0962A
200 OK 43 B URL HTTP/2 ad.mail.ru/cm.gif?p=48&id=1303420ACA37DE63860A0B7702F0962A
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /cm.gif?p=48&id=1303420ACA37DE63860A0B7702F0962A HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:39 GMT
content-type: image/gif
content-length: 43
set-cookie: VID=0zN6hQ2pEpYF0028H92Qq8oF:::0-0-0-8f8908b:CAASEMj4CzQERUX_WRaBYU2lQn4aYO8f_BeKXJx697d8In3c3aG0kOkON6U3zdKjFaweDDArPfOncR5Jaz8JalRGdAMhyEzBHfZsIh6pq5a1HB7J3Vo_-wnKfZqI1iHT4o6Oyirmh-hCP_QwusdGdJ6mxr-pKA; path=/; expires=Mon, 05-Feb-24 10:47:39 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
expires: Sat, 04 Feb 2023 16:47:39 GMT
cache-control: max-age=21600
last-modified: Sat, 04 Feb 2023 10:47:39 GMT
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7031537895a86addfa0ebd90f333c9c2
2943bb337f5faed6c27c640dc88d00fb3983d5c2
fa494f1d700b1fb320cb4a4640c3fb1c82819836bfa124f232aa47eeede30677
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FA494F1D700B1FB320CB4A4640C3FB1C82819836BFA124F232AA47EEEDE30677"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21587
Expires: Sat, 04 Feb 2023 16:47:26 GMT
Date: Sat, 04 Feb 2023 10:47:39 GMT
Connection: keep-alive
www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
302 Found 154 B URL HTTP/2 www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWPeN8qdNBR212ziAixb/ZsZnMcLKYZyUPaf4eIqahNN; cSyncDp7v2=1675507658; cSyncDp14v3=1675507658; cSyncDp17=1675507658; cSyncDp32=1675507658; cSyncDp45v3=1675507658; cSyncDp53v2=1675507658; cSyncDp62=1675507658; cSyncDp67v2=1675507658; cSyncDp68=1675507658; cSyncDp71=1675507658; cSyncDp85=1675507658; cSyncDp95v3=1675507658; cSyncDp98v2=1675507658; cSyncDp101=1675507658; cSyncDp104v2=1675507658; cSyncDp107=1675507658; cSyncDp110=1675507658; cSyncDp125v3=1675507658; cSyncDp126=1675507658; cSyncDp127=1675507658; cSyncDp129=1675507658; cSyncDp136v2=1675507658; cSyncDp146=1675507658; cSyncDp148=1675507658; cSyncDp149v2=1675507658; cSyncDp151=1675507658; cSyncDp178=1675507658; cSyncDp186=1675507658; cSyncDp221=1675507658; cSyncDp235=1675507658
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 10:47:39 GMT
content-type: text/html
content-length: 154
location: https://ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=1503420ACA37DE637614349D02E26CD7
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sm.rtb.mts.ru/p?ssp=sape&id=1303420ACA37DE63860A0B7702F0962A
301 Moved Permanently 0 B URL HTTP/1.1 sm.rtb.mts.ru/p?ssp=sape&id=1303420ACA37DE63860A0B7702F0962A
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sape&id=1303420ACA37DE63860A0B7702F0962A HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://sm.rtb.mts.ru/match/second?ssp=30&exu=1303420ACA37DE63860A0B7702F0962A
Set-Cookie: dspid=e7570dbe-76af-435f-b829-4a9a2f28cf24; expires=Fri, 26 Jan 2024 10:47:39 GMT; domain=.mts.ru; path=/; secure; SameSite=None
px.adhigh.net/p/cm/sape?u=1303420ACA37DE63860A0B7702F0962A
302 Found 0 B URL HTTP/2 px.adhigh.net/p/cm/sape?u=1303420ACA37DE63860A0B7702F0962A
IP
ASN #48061 Limited Liability Company GPM Digital Technologies
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/cm/sape?u=1303420ACA37DE63860A0B7702F0962A HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 10:47:39 GMT
content-length: 0
x-backend-id: f8-ru
access-control-allow-origin: *
access-control-allow-credentials: true
set-cookie: gi_u=0fI8eSte4Co.AikABlGGHAnzdg;Path=/;Domain=.adhigh.net;Expires=Sun, 04-Feb-2024 10:47:39 GMT;Secure;SameSite=None
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
location: https://px.adhigh.net/p/cm/sape?u=1303420ACA37DE63860A0B7702F0962A&bounced=1
X-Firefox-Spdy: h2
ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=1503420ACA37DE637614349D02E26CD7
200 OK 42 B URL HTTP/1.1 ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=1503420ACA37DE637614349D02E26CD7
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cgi-bin/sync.cgi?ssp_id=43&external_id=1503420ACA37DE637614349D02E26CD7 HTTP/1.1
Host: ssp.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
www.acint.net/match?dp=104&euid=gG2_GAQmL8e8
200 OK 43 B URL HTTP/2 www.acint.net/match?dp=104&euid=gG2_GAQmL8e8
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=104&euid=gG2_GAQmL8e8 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWPeN8qdNBR212ziAixb/ZsZnMcLKYZyUPaf4eIqahNN; cSyncDp7v2=1675507658; cSyncDp14v3=1675507658; cSyncDp17=1675507658; cSyncDp32=1675507658; cSyncDp45v3=1675507658; cSyncDp53v2=1675507658; cSyncDp62=1675507658; cSyncDp67v2=1675507658; cSyncDp68=1675507658; cSyncDp71=1675507658; cSyncDp85=1675507658; cSyncDp95v3=1675507658; cSyncDp98v2=1675507658; cSyncDp101=1675507658; cSyncDp104v2=1675507658; cSyncDp107=1675507658; cSyncDp110=1675507658; cSyncDp125v3=1675507658; cSyncDp126=1675507658; cSyncDp127=1675507658; cSyncDp129=1675507658; cSyncDp136v2=1675507658; cSyncDp146=1675507658; cSyncDp148=1675507658; cSyncDp149v2=1675507658; cSyncDp151=1675507658; cSyncDp178=1675507658; cSyncDp186=1675507658; cSyncDp221=1675507658; cSyncDp235=1675507658
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:39 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 84dec2e77380df6c2188d61f7295f4e7
e9cca558c93123a36d158e131c0222d8d797735d
9b80df42a016c949bb06cc49c21b12fa88a110001c7c13daa0dd7f2c4ec2f69a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 02:18:44 GMT
Expires: Sat, 11 Feb 2023 02:18:43 GMT
Etag: "e9cca558c93123a36d158e131c0222d8d797735d"
Cache-Control: max-age=573663,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7942d457ca68b517-OSL
tag.digitaltarget.ru/adcm.js
200 OK 3.1 kB URL HTTP/1.1 tag.digitaltarget.ru/adcm.js
IP
File type ASCII text, with very long lines (3051), with no line terminators
Hash e7097284185069f52fc736bcd50cda13
1cdfdf2d869841202079ddf91e0a00a8610812e6
40f2a96f78f4c8484e9da6e172f5ddd3e4d7786ca29e04b96e1067a365190e80
GET /adcm.js HTTP/1.1
Host: tag.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: application/javascript
Content-Length: 3051
Last-Modified: Sat, 04 Feb 2023 10:34:21 GMT
Connection: keep-alive
ETag: "63de34ad-beb"
Accept-Ranges: bytes
x01.aidata.io/0.gif?pid=9401454&id=1303420ACA37DE63860A0B7702F0962A
302 Found 0 B URL HTTP/2 x01.aidata.io/0.gif?pid=9401454&id=1303420ACA37DE63860A0B7702F0962A
IP
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0.gif?pid=9401454&id=1303420ACA37DE63860A0B7702F0962A HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 10:47:39 GMT
content-length: 0
location: https://x01.aidata.io/0.gif?pid=9401454&id=1303420ACA37DE63860A0B7702F0962A&bounce=1
expires: Sat, 04 Feb 2023 10:47:38 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Sat, 04 Feb 2023 10:47:38 GMT
set-cookie: __upin=hX06vA5AKXw23bCyESKvRQ;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1675507659;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2
sm.rtb.mts.ru/match/second?ssp=30&exu=1303420ACA37DE63860A0B7702F0962A
200 OK 0 B URL HTTP/1.1 sm.rtb.mts.ru/match/second?ssp=30&exu=1303420ACA37DE63860A0B7702F0962A
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/second?ssp=30&exu=1303420ACA37DE63860A0B7702F0962A HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15026
Expires: Sat, 04 Feb 2023 14:58:05 GMT
Date: Sat, 04 Feb 2023 10:47:39 GMT
Connection: keep-alive
x01.aidata.io/0.gif?pid=9401454&id=1303420ACA37DE63860A0B7702F0962A&bounce=1
204 No Content 0 B URL HTTP/2 x01.aidata.io/0.gif?pid=9401454&id=1303420ACA37DE63860A0B7702F0962A&bounce=1
IP
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0.gif?pid=9401454&id=1303420ACA37DE63860A0B7702F0962A&bounce=1 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 04 Feb 2023 10:47:39 GMT
expires: Sat, 04 Feb 2023 10:47:38 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Sat, 04 Feb 2023 10:47:38 GMT
set-cookie: __upin=fH21TqpByZajC+OFzQx/cg;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1675507659;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14989
Expires: Sat, 04 Feb 2023 14:57:28 GMT
Date: Sat, 04 Feb 2023 10:47:39 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14989
Expires: Sat, 04 Feb 2023 14:57:28 GMT
Date: Sat, 04 Feb 2023 10:47:39 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:48:04 GMT
age: 46775
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca17cfb9-5ad6-429a-9791-23b12f01c467.jpeg
200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca17cfb9-5ad6-429a-9791-23b12f01c467.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8bee4ee9542d0c7a9cc8402d60e7cca2
95b8debca975255d2a0a60c5c6dde74040bd2f88
a6c63af682c3d4b11e5af0aa6b72921b8acf72626fb765a60e96d491d2a04c70
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca17cfb9-5ad6-429a-9791-23b12f01c467.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8148
x-amzn-requestid: a4cf6e4a-df1f-48c3-ae73-009f5becf3ad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEEtHTroAMFwGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8084-3ae929a84d43c3ea0336fcd8;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: adu72wkRyshUviu2Qpk8rLCyN1kh46LIVQw7K4atunuEHQuFf62VXw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:12:49 GMT
age: 45290
etag: "95b8debca975255d2a0a60c5c6dde74040bd2f88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7101f6e43855cb76ce48271a847ffbd
8e674830a97d8ce3818132fda197db4f0289d316
e78a83a4024e238bcdec3b9c4d5c12a99f49aabd57e34952f6a4cc8ed4422f55
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9141
x-amzn-requestid: ed7db574-6bca-4f3e-8879-c3e836549339
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD8zE5lIAMF1HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8051-4480112f11d4ced0037d1ad8;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6kDIOqhM4aVL80sF02uFu2TuGbiBE7_L_S2W7x-P46hO5YZFmuL9nQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:13:30 GMT
age: 45249
etag: "8e674830a97d8ce3818132fda197db4f0289d316"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg
200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d7afd5ce8fb9ec7b62e528bf97705e49
afbf22f5d8f54adcb00e8980a9b22f2c5b6703c3
b2d93ba6c0ed2c858d91afba1c81251afbffa41c779be2e9203994dcfb7bbc9d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7249
x-amzn-requestid: 007ce521-ed5c-4074-a314-684ad0df2e22
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD9GH5goAMF_ag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8053-7060f02b767c90371991a190;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5fTV_e56nzjiXo4Guu67WXDDvp3nrjB0Yfyy6ByjcDSx23J-8r0fmQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
age: 45438
etag: "afbf22f5d8f54adcb00e8980a9b22f2c5b6703c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: f95a2821-ae89-4ea9-93b2-43e570285df3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEC3FyboAMFe0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8078-7e2177f11d5715d4092cad2c;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dcFgY5x3Ef0J__7wGn3llTjZ9as5nX1H4HErIT3VlKfeQaQTjymW2g==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:33 GMT
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
age: 45426
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 392b61306c346508d3ac4a2f28218f9c
d2de32b52e0d3f4fc6acaf687b3521294b01dc03
018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10253
x-amzn-requestid: a90cb6b3-8a72-4b4b-b4f5-6dafc8c6752a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7GGv5IAMFu8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-3ca59e7c52800a4e44bda8fd;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G8F3Fflod6HB4QFtjpD09xzi-2LKPw_DBJT0PKYKU3bs3pvOwO_LRw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:32 GMT
age: 45427
etag: "d2de32b52e0d3f4fc6acaf687b3521294b01dc03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 2f59b9826b587ec88c538c4e0fdda68f
a9569ad568776c896099e2e7b4291dbe7101cb9b
76812d4ae48f41904eb3722fb49c463d4287d81fa7a9ea5d28687ddb3a546931
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 02:03:25 GMT
Expires: Wed, 08 Feb 2023 02:03:24 GMT
Etag: "a9569ad568776c896099e2e7b4291dbe7101cb9b"
Cache-Control: max-age=313544,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7942d4578888b515-OSL
tag.digitaltarget.ru/processor.js?i=323277437416869
200 OK 16 kB URL HTTP/1.1 tag.digitaltarget.ru/processor.js?i=323277437416869
IP
File type ASCII text, with very long lines (15892), with no line terminators
Hash 736e2fb1da94f3277e3f931048c1b9f3
196387db95a17da825b629de3542eff901b09905
4569d4e1b0e52b6316681f7312674f43ecb2b72ea8ab4adb2375e3686862c7dc
GET /processor.js?i=323277437416869 HTTP/1.1
Host: tag.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: application/javascript
Content-Length: 15892
Last-Modified: Sat, 04 Feb 2023 10:34:22 GMT
Connection: keep-alive
ETag: "63de34ae-3e14"
Accept-Ranges: bytes
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D
302 Found 0 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 04 Feb 2024 10:47:39 GMT; Path=/; Domain=.betweendigital.com
tuuid=3ef87ff9-20ec-5223-b3ad-c5cdd073f206; Max-Age=31536000; Expires=Sun, 04 Feb 2024 10:47:39 GMT; Path=/; Domain=.betweendigital.com
ut=Y943ywAM-FDmZ-z__GUF8On93G3zz_hsPub_dA==; Max-Age=31536000; Expires=Sun, 04 Feb 2024 10:47:39 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
200 OK 68 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
IP
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 04 Feb 2024 10:47:39 GMT; Path=/; Domain=.betweendigital.com
tuuid=1cd40133-038b-5223-b851-076fdb8f30a4; Max-Age=31536000; Expires=Sun, 04 Feb 2024 10:47:39 GMT; Path=/; Domain=.betweendigital.com
ut=Y943ywANlJD_Dh1SdCd1Mi74mHi-NfKtUL7q3Q==; Max-Age=31536000; Expires=Sun, 04 Feb 2024 10:47:39 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2
mc.yandex.ru/watch/91568473?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&site-info=%7B%22srtb_sid%22%3A%2263de37ed-7916-88oo-1ned-i6dkxxdtadt9%22%7D&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A417690794412%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A860240617%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20(The%20Weekend%20Away)%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/91568473?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&site-info=%7B%22srtb_sid%22%3A%2263de37ed-7916-88oo-1ned-i6dkxxdtadt9%22%7D&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A417690794412%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A860240617%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20(The%20Weekend%20Away)%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch/91568473?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&site-info=%7B%22srtb_sid%22%3A%2263de37ed-7916-88oo-1ned-i6dkxxdtadt9%22%7D&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A417690794412%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A860240617%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20(The%20Weekend%20Away)%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://t.lafa.site
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/91568473/1?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&site-info=%7B%22srtb_sid%22%3A%2263de37ed-7916-88oo-1ned-i6dkxxdtadt9%22%7D&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A417690794412%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A860240617%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20%28The%20Weekend%20Away%29%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Sat, 04 Feb 2023 10:47:39 GMT
access-control-allow-origin: https://t.lafa.site
set-cookie: yabs-sid=1004776021675507659; Path=/; SameSite=None; Secure
i=6GFpsqsi4o4f847/25ZFlSoImDggFj50YbNcwDHKVR4AeifKQBrZcrB9nVHshuY2y5KCYBdm07bFbtGYdFOW6DtuMmE=; Expires=Tue, 01-Feb-2033 10:47:36 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=4439794961675507659; Expires=Sun, 04-Feb-2024 10:47:39 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=4439794961675507659; Expires=Sun, 04-Feb-2024 10:47:39 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1707043659.yc.1675507659#1707043659.yrts.1675507659#1707043659.yrtsi.1675507659; Expires=Sun, 04-Feb-2024 10:47:39 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 10:47:39 GMT
last-modified: Sat, 04-Feb-2023 10:47:39 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675507659879&i=156362227582653.990186377737791&a=77&e=1303420ACA37DE63860A0B7702F0962A&pref=https%3A%2F%2Ft.lafa.site%2F&c=ss:77.up:1303420ACA37DE63860A0B7702F0962A.sync:up.xdua:duNLIW1zHxgkMWwlJ8tKyQ0c.xps:xps3hHjI5rAxmGzyWUq4BCKPq.dn:acint__net.adcm:hit.tg:adcmjs_noorient
200 OK 64 B URL HTTP/1.1 dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675507659879&i=156362227582653.990186377737791&a=77&e=1303420ACA37DE63860A0B7702F0962A&pref=https%3A%2F%2Ft.lafa.site%2F&c=ss:77.up:1303420ACA37DE63860A0B7702F0962A.sync:up.xdua:duNLIW1zHxgkMWwlJ8tKyQ0c.xps:xps3hHjI5rAxmGzyWUq4BCKPq.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8
GET /awg/custom/1093/i/i?call_source=awg&ts=1675507659879&i=156362227582653.990186377737791&a=77&e=1303420ACA37DE63860A0B7702F0962A&pref=https%3A%2F%2Ft.lafa.site%2F&c=ss:77.up:1303420ACA37DE63860A0B7702F0962A.sync:up.xdua:duNLIW1zHxgkMWwlJ8tKyQ0c.xps:xps3hHjI5rAxmGzyWUq4BCKPq.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 4
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
dmg.digitaltarget.ru/1/1093/i/i?i=156362227582653.703766342633459&a=77&e=1303420ACA37DE63860A0B7702F0962A&pref=https%3A%2F%2Ft.lafa.site%2F&c=ss:77.up:1303420ACA37DE63860A0B7702F0962A.sync:up.xdua:duNLIW1zHxgkMWwlJ8tKyQ0c.xps:xps3hHjI5rAxmGzyWUq4BCKPq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
307 Temporary Redirect 0 B URL HTTP/1.1 dmg.digitaltarget.ru/1/1093/i/i?i=156362227582653.703766342633459&a=77&e=1303420ACA37DE63860A0B7702F0962A&pref=https%3A%2F%2Ft.lafa.site%2F&c=ss:77.up:1303420ACA37DE63860A0B7702F0962A.sync:up.xdua:duNLIW1zHxgkMWwlJ8tKyQ0c.xps:xps3hHjI5rAxmGzyWUq4BCKPq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/1093/i/i?i=156362227582653.703766342633459&a=77&e=1303420ACA37DE63860A0B7702F0962A&pref=https%3A%2F%2Ft.lafa.site%2F&c=ss:77.up:1303420ACA37DE63860A0B7702F0962A.sync:up.xdua:duNLIW1zHxgkMWwlJ8tKyQ0c.xps:xps3hHjI5rAxmGzyWUq4BCKPq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Sat, 04 Feb 2023 10:47:39 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675507659982&i=156362227582653.703766342633459&a=77&e=1303420ACA37DE63860A0B7702F0962A&pref=https%3A%2F%2Ft.lafa.site%2F&c=ss:77.up:1303420ACA37DE63860A0B7702F0962A.sync:up.xdua:duNLIW1zHxgkMWwlJ8tKyQ0c.xps:xps3hHjI5rAxmGzyWUq4BCKPq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
Set-Cookie: viuserid=gJOeQVwboHacSLK7K8G6; Max-Age=93312000; Expires=Mon, 19 Jan 2026 10:47:39 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 0
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
px.adhigh.net/p/cm/sape?u=1303420ACA37DE63860A0B7702F0962A&bounced=1
200 OK 49 B URL HTTP/2 px.adhigh.net/p/cm/sape?u=1303420ACA37DE63860A0B7702F0962A&bounced=1
IP
ASN #48061 Limited Liability Company GPM Digital Technologies
File type GIF image data, version 89a, 1 x 1\012- data
Hash 889bc1fffc025af4685839fb516a0b8b
7f105137a4eafe93213ecd8cc34dd907c340467c
d0409a1b73dab4e29dc40f92fb431fa9133baa23b4a1ffae4897f39068110e32
GET /p/cm/sape?u=1303420ACA37DE63860A0B7702F0962A&bounced=1 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:39 GMT
content-type: image/gif
content-length: 49
x-backend-id: f8-ru
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675507659982&i=156362227582653.703766342633459&a=77&e=1303420ACA37DE63860A0B7702F0962A&pref=https%3A%2F%2Ft.lafa.site%2F&c=ss:77.up:1303420ACA37DE63860A0B7702F0962A.sync:up.xdua:duNLIW1zHxgkMWwlJ8tKyQ0c.xps:xps3hHjI5rAxmGzyWUq4BCKPq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
200 OK 64 B URL HTTP/1.1 dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675507659982&i=156362227582653.703766342633459&a=77&e=1303420ACA37DE63860A0B7702F0962A&pref=https%3A%2F%2Ft.lafa.site%2F&c=ss:77.up:1303420ACA37DE63860A0B7702F0962A.sync:up.xdua:duNLIW1zHxgkMWwlJ8tKyQ0c.xps:xps3hHjI5rAxmGzyWUq4BCKPq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8
GET /awg/custom/1093/i/i?call_source=awg&ts=1675507659982&i=156362227582653.703766342633459&a=77&e=1303420ACA37DE63860A0B7702F0962A&pref=https%3A%2F%2Ft.lafa.site%2F&c=ss:77.up:1303420ACA37DE63860A0B7702F0962A.sync:up.xdua:duNLIW1zHxgkMWwlJ8tKyQ0c.xps:xps3hHjI5rAxmGzyWUq4BCKPq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 10:47:40 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 3
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
t.lafa.site/themes/TBDev/images/1_a_new2.png
200 OK 4.7 kB URL HTTP/2 t.lafa.site/themes/TBDev/images/1_a_new2.png
IP
File type PNG image data, 200 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash e04f0beb9ce480fa3238514cb0c70329
095feb2a393acf562f9755772d58c14d37ee9c5e
8afdb0fbe7e1bf38f3b8bf7bb72438ab225f99469e935bd2e9e53dddf9ac9582
GET /themes/TBDev/images/1_a_new2.png HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657; surfer_uuid=6cde4cbe-f9c5-4165-9ca9-a6e63a064c49; la_page_depth=%7B%22last%22%3A%22https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm%22%2C%22depth%22%3A1%7D; page_load_uuid=c0e08fe8-0147-4eec-8924-81ed721a1e3b; u_count=%5B0%2C0%5D; fid=4a9ff6e2-ba1a-4313-91a5-cbb559302932; chash=fwWVMFTKlS; _ac_oid=39e8192718f4ed5a678fc273d654392b%3A1675511294273; _ym_uid=1675507695629989082; _ym_d=1675507695; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:39 GMT
content-type: image/png
content-length: 4678
last-modified: Sat, 09 May 2020 21:37:59 GMT
etag: "5eb722b7-1246"
expires: Mon, 05 Feb 2024 10:47:39 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/themes/TBDev/images/2_a_new.png
200 OK 3.0 kB URL HTTP/2 t.lafa.site/themes/TBDev/images/2_a_new.png
IP
File type PNG image data, 119 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 29f981af66ae9ef748f2c2aebe5403fc
82083c3e71ac73f20fa2dbfb4c78d36cd44c9f6b
935ed33ea57a05d792fe252e6ae0728b6045a2251dc479a3d2a9e52274bea60e
GET /themes/TBDev/images/2_a_new.png HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657; surfer_uuid=6cde4cbe-f9c5-4165-9ca9-a6e63a064c49; la_page_depth=%7B%22last%22%3A%22https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm%22%2C%22depth%22%3A1%7D; page_load_uuid=c0e08fe8-0147-4eec-8924-81ed721a1e3b; u_count=%5B0%2C0%5D; fid=4a9ff6e2-ba1a-4313-91a5-cbb559302932; chash=fwWVMFTKlS; _ac_oid=39e8192718f4ed5a678fc273d654392b%3A1675511294273; _ym_uid=1675507695629989082; _ym_d=1675507695; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:39 GMT
content-type: image/png
content-length: 3019
last-modified: Mon, 05 Apr 2021 10:52:38 GMT
etag: "606aebf6-bcb"
expires: Mon, 05 Feb 2024 10:47:39 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/themes/TBDev/images/3_a_new.png
200 OK 3.3 kB URL HTTP/2 t.lafa.site/themes/TBDev/images/3_a_new.png
IP
File type PNG image data, 119 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash e7bd462102e477a7cd0be7eabda568fe
498d88064ef6f2632efa63ce2ce0f6480b45b36b
39485a1236b18e388a1ba066d1219f74dc133b45f30cee906266286557355b12
GET /themes/TBDev/images/3_a_new.png HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657; surfer_uuid=6cde4cbe-f9c5-4165-9ca9-a6e63a064c49; la_page_depth=%7B%22last%22%3A%22https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm%22%2C%22depth%22%3A1%7D; page_load_uuid=c0e08fe8-0147-4eec-8924-81ed721a1e3b; u_count=%5B0%2C0%5D; fid=4a9ff6e2-ba1a-4313-91a5-cbb559302932; chash=fwWVMFTKlS; _ac_oid=39e8192718f4ed5a678fc273d654392b%3A1675511294273; _ym_uid=1675507695629989082; _ym_d=1675507695; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:39 GMT
content-type: image/png
content-length: 3261
last-modified: Mon, 05 Apr 2021 10:50:54 GMT
etag: "606aeb8e-cbd"
expires: Mon, 05 Feb 2024 10:47:39 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/themes/TBDev/images/4_a_new.png
200 OK 3.3 kB URL HTTP/2 t.lafa.site/themes/TBDev/images/4_a_new.png
IP
File type PNG image data, 119 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 1d6532ed111833515cf4b0f05811bb60
b8674ed92d67bf848005862a36045e01eac069b2
72dc03a97dfc925c2bcad957f95f1e627039efa398a8851b1b38b132c8119b88
GET /themes/TBDev/images/4_a_new.png HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657; surfer_uuid=6cde4cbe-f9c5-4165-9ca9-a6e63a064c49; la_page_depth=%7B%22last%22%3A%22https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm%22%2C%22depth%22%3A1%7D; page_load_uuid=c0e08fe8-0147-4eec-8924-81ed721a1e3b; u_count=%5B0%2C0%5D; fid=4a9ff6e2-ba1a-4313-91a5-cbb559302932; chash=fwWVMFTKlS; _ac_oid=39e8192718f4ed5a678fc273d654392b%3A1675511294273; _ym_uid=1675507695629989082; _ym_d=1675507695; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:39 GMT
content-type: image/png
content-length: 3348
last-modified: Mon, 05 Apr 2021 10:50:59 GMT
etag: "606aeb93-d14"
expires: Mon, 05 Feb 2024 10:47:39 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/themes/TBDev/images/6_a_new.png
200 OK 4.5 kB URL HTTP/2 t.lafa.site/themes/TBDev/images/6_a_new.png
IP
File type PNG image data, 119 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 6da0e9af0c2eb319578f169ec675a143
a1e39b156af596f94f52eea351686bfd923167a9
8ae288bbd2d36508b14d3d3c4c0ae654f538b1626cc9c654c8688a0108e764a5
GET /themes/TBDev/images/6_a_new.png HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657; surfer_uuid=6cde4cbe-f9c5-4165-9ca9-a6e63a064c49; la_page_depth=%7B%22last%22%3A%22https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm%22%2C%22depth%22%3A1%7D; page_load_uuid=c0e08fe8-0147-4eec-8924-81ed721a1e3b; u_count=%5B0%2C0%5D; fid=4a9ff6e2-ba1a-4313-91a5-cbb559302932; chash=fwWVMFTKlS; _ac_oid=39e8192718f4ed5a678fc273d654392b%3A1675511294273; _ym_uid=1675507695629989082; _ym_d=1675507695; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:39 GMT
content-type: image/png
content-length: 4549
last-modified: Wed, 04 Nov 2020 12:27:42 GMT
etag: "5fa29e3e-11c5"
expires: Mon, 05 Feb 2024 10:47:39 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
t.lafa.site/themes/TBDev/images/7_a_new.png
200 OK 3.2 kB URL HTTP/2 t.lafa.site/themes/TBDev/images/7_a_new.png
IP
File type PNG image data, 119 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 44376bd205b20c342d39168e5c2e48eb
d98b2448067390a18bca38dbafea775d80d6cb57
ea45c3958105380499de4e562d1f59c3e2108d481729ae86772cac1f2b46231d
GET /themes/TBDev/images/7_a_new.png HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657; surfer_uuid=6cde4cbe-f9c5-4165-9ca9-a6e63a064c49; la_page_depth=%7B%22last%22%3A%22https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm%22%2C%22depth%22%3A1%7D; page_load_uuid=c0e08fe8-0147-4eec-8924-81ed721a1e3b; u_count=%5B0%2C0%5D; fid=4a9ff6e2-ba1a-4313-91a5-cbb559302932; chash=fwWVMFTKlS; _ac_oid=39e8192718f4ed5a678fc273d654392b%3A1675511294273; _ym_uid=1675507695629989082; _ym_d=1675507695; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:39 GMT
content-type: image/png
content-length: 3204
last-modified: Mon, 05 Apr 2021 10:50:57 GMT
etag: "606aeb91-c84"
expires: Mon, 05 Feb 2024 10:47:39 GMT
cache-control: max-age=31622400, public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
mc.yandex.ru/watch/26812653/1?page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&hittoken=1675507659_4572cf748b5f1ef549ec4399aa60f78afc838cf8f02aa0e1fa09b8184560f931&browser-info=pa%3A1%3Aar%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A4%3Adp%3A0%3Als%3A270865316550%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104815%3Aet%3A1675507695%3Ac%3A1%3Arn%3A814328549%3Arqn%3A2%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A%2C%2C%2C%2C%2C%2C%2C%2C%2C2888%2C2888%2C9%2C%3Aco%3A0%3Aeu%3A1%3Ans%3A1675507692386%3Aadb%3A2%3Ast%3A1675507695&t=gdpr(14)mc(p-3)clc(0-0-0)rqnt(2)aw(1)ti(2)
200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/26812653/1?page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&hittoken=1675507659_4572cf748b5f1ef549ec4399aa60f78afc838cf8f02aa0e1fa09b8184560f931&browser-info=pa%3A1%3Aar%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A4%3Adp%3A0%3Als%3A270865316550%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104815%3Aet%3A1675507695%3Ac%3A1%3Arn%3A814328549%3Arqn%3A2%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A%2C%2C%2C%2C%2C%2C%2C%2C%2C2888%2C2888%2C9%2C%3Aco%3A0%3Aeu%3A1%3Ans%3A1675507692386%3Aadb%3A2%3Ast%3A1675507695&t=gdpr(14)mc(p-3)clc(0-0-0)rqnt(2)aw(1)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /watch/26812653/1?page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&hittoken=1675507659_4572cf748b5f1ef549ec4399aa60f78afc838cf8f02aa0e1fa09b8184560f931&browser-info=pa%3A1%3Aar%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A4%3Adp%3A0%3Als%3A270865316550%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104815%3Aet%3A1675507695%3Ac%3A1%3Arn%3A814328549%3Arqn%3A2%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A%2C%2C%2C%2C%2C%2C%2C%2C%2C2888%2C2888%2C9%2C%3Aco%3A0%3Aeu%3A1%3Ans%3A1675507692386%3Aadb%3A2%3Ast%3A1675507695&t=gdpr(14)mc(p-3)clc(0-0-0)rqnt(2)aw(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 83
Origin: https://t.lafa.site
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Feb 2023 10:47:40 GMT
access-control-allow-origin: https://t.lafa.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 10:47:40 GMT
last-modified: Sat, 04-Feb-2023 10:47:40 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/26812653/1?page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&hittoken=1675507659_4572cf748b5f1ef549ec4399aa60f78afc838cf8f02aa0e1fa09b8184560f931&browser-info=pa%3A1%3Aar%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A4%3Adp%3A0%3Als%3A270865316550%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104815%3Aet%3A1675507695%3Ac%3A1%3Arn%3A132911527%3Arqn%3A3%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Aco%3A0%3Aeu%3A1%3Ans%3A1675507692386%3Aadb%3A2%3Ast%3A1675507695&t=gdpr(14)mc(p-3)clc(0-0-0)rqnt(3)aw(1)ti(2)
200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/26812653/1?page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&hittoken=1675507659_4572cf748b5f1ef549ec4399aa60f78afc838cf8f02aa0e1fa09b8184560f931&browser-info=pa%3A1%3Aar%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A4%3Adp%3A0%3Als%3A270865316550%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104815%3Aet%3A1675507695%3Ac%3A1%3Arn%3A132911527%3Arqn%3A3%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Aco%3A0%3Aeu%3A1%3Ans%3A1675507692386%3Aadb%3A2%3Ast%3A1675507695&t=gdpr(14)mc(p-3)clc(0-0-0)rqnt(3)aw(1)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /watch/26812653/1?page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&hittoken=1675507659_4572cf748b5f1ef549ec4399aa60f78afc838cf8f02aa0e1fa09b8184560f931&browser-info=pa%3A1%3Aar%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A4%3Adp%3A0%3Als%3A270865316550%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104815%3Aet%3A1675507695%3Ac%3A1%3Arn%3A132911527%3Arqn%3A3%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Aco%3A0%3Aeu%3A1%3Ans%3A1675507692386%3Aadb%3A2%3Ast%3A1675507695&t=gdpr(14)mc(p-3)clc(0-0-0)rqnt(3)aw(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 64
Origin: https://t.lafa.site
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Feb 2023 10:47:40 GMT
access-control-allow-origin: https://t.lafa.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 10:47:40 GMT
last-modified: Sat, 04-Feb-2023 10:47:40 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/26812653/1?page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&hittoken=1675507659_4572cf748b5f1ef549ec4399aa60f78afc838cf8f02aa0e1fa09b8184560f931&browser-info=pa%3A1%3Aar%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A4%3Adp%3A0%3Als%3A270865316550%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104815%3Aet%3A1675507695%3Ac%3A1%3Arn%3A475559704%3Arqn%3A4%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Aco%3A0%3Aeu%3A1%3Ans%3A1675507692386%3Aadb%3A2%3Ast%3A1675507695&t=gdpr(14)mc(p-3)clc(0-0-0)rqnt(4)aw(1)ti(2)
200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/26812653/1?page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&hittoken=1675507659_4572cf748b5f1ef549ec4399aa60f78afc838cf8f02aa0e1fa09b8184560f931&browser-info=pa%3A1%3Aar%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A4%3Adp%3A0%3Als%3A270865316550%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104815%3Aet%3A1675507695%3Ac%3A1%3Arn%3A475559704%3Arqn%3A4%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Aco%3A0%3Aeu%3A1%3Ans%3A1675507692386%3Aadb%3A2%3Ast%3A1675507695&t=gdpr(14)mc(p-3)clc(0-0-0)rqnt(4)aw(1)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /watch/26812653/1?page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&hittoken=1675507659_4572cf748b5f1ef549ec4399aa60f78afc838cf8f02aa0e1fa09b8184560f931&browser-info=pa%3A1%3Aar%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A4%3Adp%3A0%3Als%3A270865316550%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104815%3Aet%3A1675507695%3Ac%3A1%3Arn%3A475559704%3Arqn%3A4%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Aco%3A0%3Aeu%3A1%3Ans%3A1675507692386%3Aadb%3A2%3Ast%3A1675507695&t=gdpr(14)mc(p-3)clc(0-0-0)rqnt(4)aw(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 55
Origin: https://t.lafa.site
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Feb 2023 10:47:40 GMT
access-control-allow-origin: https://t.lafa.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 10:47:40 GMT
last-modified: Sat, 04-Feb-2023 10:47:40 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775749%2C%22ev%22%3A%22vis100%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507696
200 OK 43 B URL HTTP/2 www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775749%2C%22ev%22%3A%22vis100%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507696
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /rtbw/1?dp=14&cd=%7B%22st%22%3A133641%2C%22sc%22%3A0%2C%22pl%22%3A775749%2C%22ev%22%3A%22vis100%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507696 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Cookie: test_cookie=CheckForPermission; aid=CkIDFWPeN8qdNBR212ziAixb/ZsZnMcLKYZyUPaf4eIqahNN; cSyncDp7v2=1675507658; cSyncDp14v3=1675507658; cSyncDp17=1675507658; cSyncDp32=1675507658; cSyncDp45v3=1675507658; cSyncDp53v2=1675507658; cSyncDp62=1675507658; cSyncDp67v2=1675507658; cSyncDp68=1675507658; cSyncDp71=1675507658; cSyncDp85=1675507658; cSyncDp95v3=1675507658; cSyncDp98v2=1675507658; cSyncDp101=1675507658; cSyncDp104v2=1675507658; cSyncDp107=1675507658; cSyncDp110=1675507658; cSyncDp125v3=1675507658; cSyncDp126=1675507658; cSyncDp127=1675507658; cSyncDp129=1675507658; cSyncDp136v2=1675507658; cSyncDp146=1675507658; cSyncDp148=1675507658; cSyncDp149v2=1675507658; cSyncDp151=1675507658; cSyncDp178=1675507658; cSyncDp186=1675507658; cSyncDp221=1675507658; cSyncDp235=1675507658
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:40 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/ping/?v=0.5.1&uid=6c4c40bf-18e2-4f63-a350-57f563f9d242&dp=14&tz=%2B00%3A00&nc=91814157&dT=2023-02-04T10%3A48%3A16.737
200 OK 43 B URL HTTP/2 www.acint.net/ping/?v=0.5.1&uid=6c4c40bf-18e2-4f63-a350-57f563f9d242&dp=14&tz=%2B00%3A00&nc=91814157&dT=2023-02-04T10%3A48%3A16.737
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /ping/?v=0.5.1&uid=6c4c40bf-18e2-4f63-a350-57f563f9d242&dp=14&tz=%2B00%3A00&nc=91814157&dT=2023-02-04T10%3A48%3A16.737 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Cookie: test_cookie=CheckForPermission; aid=CkIDFWPeN8qdNBR212ziAixb/ZsZnMcLKYZyUPaf4eIqahNN; cSyncDp7v2=1675507658; cSyncDp14v3=1675507658; cSyncDp17=1675507658; cSyncDp32=1675507658; cSyncDp45v3=1675507658; cSyncDp53v2=1675507658; cSyncDp62=1675507658; cSyncDp67v2=1675507658; cSyncDp68=1675507658; cSyncDp71=1675507658; cSyncDp85=1675507658; cSyncDp95v3=1675507658; cSyncDp98v2=1675507658; cSyncDp101=1675507658; cSyncDp104v2=1675507658; cSyncDp107=1675507658; cSyncDp110=1675507658; cSyncDp125v3=1675507658; cSyncDp126=1675507658; cSyncDp127=1675507658; cSyncDp129=1675507658; cSyncDp136v2=1675507658; cSyncDp146=1675507658; cSyncDp148=1675507658; cSyncDp149v2=1675507658; cSyncDp151=1675507658; cSyncDp178=1675507658; cSyncDp186=1675507658; cSyncDp221=1675507658; cSyncDp235=1675507658
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:41 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/rtbw/1?dp=16&cd=%7B%22st%22%3A133641%2C%22sc%22%3A164792279%2C%22pl%22%3A775749%2C%22ev%22%3A%22adTime%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A7%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507702
200 OK 43 B URL HTTP/2 www.acint.net/rtbw/1?dp=16&cd=%7B%22st%22%3A133641%2C%22sc%22%3A164792279%2C%22pl%22%3A775749%2C%22ev%22%3A%22adTime%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A7%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507702
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /rtbw/1?dp=16&cd=%7B%22st%22%3A133641%2C%22sc%22%3A164792279%2C%22pl%22%3A775749%2C%22ev%22%3A%22adTime%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A7%7D&sid=63de37ed-7916-88oo-1ned-i6dkxxdtadt9&ref=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&r=1675507702 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Cookie: test_cookie=CheckForPermission; aid=CkIDFWPeN8qdNBR212ziAixb/ZsZnMcLKYZyUPaf4eIqahNN; cSyncDp7v2=1675507658; cSyncDp14v3=1675507658; cSyncDp17=1675507658; cSyncDp32=1675507658; cSyncDp45v3=1675507658; cSyncDp53v2=1675507658; cSyncDp62=1675507658; cSyncDp67v2=1675507658; cSyncDp68=1675507658; cSyncDp71=1675507658; cSyncDp85=1675507658; cSyncDp95v3=1675507658; cSyncDp98v2=1675507658; cSyncDp101=1675507658; cSyncDp104v2=1675507658; cSyncDp107=1675507658; cSyncDp110=1675507658; cSyncDp125v3=1675507658; cSyncDp126=1675507658; cSyncDp127=1675507658; cSyncDp129=1675507658; cSyncDp136v2=1675507658; cSyncDp146=1675507658; cSyncDp148=1675507658; cSyncDp149v2=1675507658; cSyncDp151=1675507658; cSyncDp178=1675507658; cSyncDp186=1675507658; cSyncDp221=1675507658; cSyncDp235=1675507658
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:46 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
jsn.24smi.net/8/b/25495/16154.js?t=1674401009
200 OK 0 B URL HTTP/2 jsn.24smi.net/8/b/25495/16154.js?t=1674401009
IP
GET /8/b/25495/16154.js?t=1674401009 HTTP/1.1
Host: jsn.24smi.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Cookie: smi_uid=0kWEIJ2e-
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: application/javascript
last-modified: Sat, 04 Feb 2023 10:41:49 GMT
etag: W/"63de366d-5431"
cache-control: max-age=3600
vary: Accept-Encoding
expires: Sat, 04 Feb 2023 10:55:45 GMT
strict-transport-security: max-age=0
cf-cache-status: HIT
access-control-allow-origin: *
server: cloudflare
cf-ray: 7942d4513a8b1bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
t.lafa.site/js/ratingw.js
200 OK 0 B URL HTTP/2 t.lafa.site/js/ratingw.js
IP
GET /js/ratingw.js HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: application/javascript
last-modified: Mon, 16 Aug 2021 12:27:41 GMT
vary: Accept-Encoding
etag: W/"611a59bd-63d"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
content-encoding: gzip
X-Firefox-Spdy: h2
t.lafa.site/pic/arrowup.svg
200 OK 0 B URL HTTP/2 t.lafa.site/pic/arrowup.svg
IP
GET /pic/arrowup.svg HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/svg+xml
last-modified: Mon, 22 Feb 2021 20:32:41 GMT
vary: Accept-Encoding
etag: W/"603414e9-163"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
content-encoding: gzip
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/sapeis/1303420ACA37DE63860A0B7702F0962A?redir-setuniq=1
200 OK 0 B URL HTTP/2 an.yandex.ru/mapuid/sapeis/1303420ACA37DE63860A0B7702F0962A?redir-setuniq=1
IP
GET /mapuid/sapeis/1303420ACA37DE63860A0B7702F0962A?redir-setuniq=1 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Sat, 04 Feb 2023 10:47:39 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04 Feb 2023 10:47:39 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 04 Feb 2023 10:47:39 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
t.lafa.site/pic/document_save.svg
200 OK 0 B URL HTTP/2 t.lafa.site/pic/document_save.svg
IP
GET /pic/document_save.svg HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/svg+xml
last-modified: Mon, 22 Feb 2021 18:39:33 GMT
vary: Accept-Encoding
etag: W/"6033fa65-40a"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
content-encoding: gzip
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/sapeis/1303420ACA37DE63860A0B7702F0962A
302 Found 0 B URL HTTP/2 an.yandex.ru/mapuid/sapeis/1303420ACA37DE63860A0B7702F0962A
IP
GET /mapuid/sapeis/1303420ACA37DE63860A0B7702F0962A HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/sapeis/1303420ACA37DE63860A0B7702F0962A?redir-setuniq=1
date: Sat, 04 Feb 2023 10:47:39 GMT
set-cookie: yandexuid=4145858431675507659; domain=.yandex.ru; path=/; expires=Tue, 01-Feb-2033 10:47:39 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04 Feb 2023 10:47:39 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 04 Feb 2023 10:47:39 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
t.lafa.site/pic/help.svg
200 OK 0 B IP
GET /pic/help.svg HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/themes/TBDev/TBDev.css?v=69
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: image/svg+xml
last-modified: Mon, 22 Feb 2021 18:39:33 GMT
vary: Accept-Encoding
etag: W/"6033fa65-3b4"
expires: Mon, 05 Feb 2024 10:47:38 GMT
cache-control: max-age=31622400, public, no-transform
content-encoding: gzip
X-Firefox-Spdy: h2
t.lafa.site/themes/TBDev/TBDev.css?v=69
200 OK 0 B URL HTTP/2 t.lafa.site/themes/TBDev/TBDev.css?v=69
IP
GET /themes/TBDev/TBDev.css?v=69 HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: text/css
last-modified: Sat, 23 Jul 2022 08:16:32 GMT
vary: Accept-Encoding
etag: W/"62dbae60-e096"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
content-encoding: gzip
X-Firefox-Spdy: h2
mc.yandex.ru/watch/26812653?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&site-info=%7B%22shareVersion%22%3A2%2C%22strategy%22%3A%22a%2Ff%2Ft%22%7D&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A4%3Adp%3A0%3Als%3A270865316550%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A436774934%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20(The%20Weekend%20Away)%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/26812653?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&site-info=%7B%22shareVersion%22%3A2%2C%22strategy%22%3A%22a%2Ff%2Ft%22%7D&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A4%3Adp%3A0%3Als%3A270865316550%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A436774934%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20(The%20Weekend%20Away)%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP
GET /watch/26812653?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&site-info=%7B%22shareVersion%22%3A2%2C%22strategy%22%3A%22a%2Ff%2Ft%22%7D&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A4%3Adp%3A0%3Als%3A270865316550%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A436774934%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20(The%20Weekend%20Away)%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://t.lafa.site
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/26812653/1?wmode=7&page-url=https%3A%2F%2Ft.lafa.site%2Ffilm%2FTriller%2Fpoezdka-na-vihodnie.htm&charset=utf-8&site-info=%7B%22shareVersion%22%3A2%2C%22strategy%22%3A%22a%2Ff%2Ft%22%7D&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1092%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A4%3Adp%3A0%3Als%3A270865316550%3Ahid%3A753811365%3Az%3A0%3Ai%3A20230204104814%3Aet%3A1675507695%3Ac%3A1%3Arn%3A436774934%3Arqn%3A1%3Au%3A1675507695629989082%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C211%2C73%2C0%2C284%2C0%2C%2C482%2C83%2C%2C%2C%2C1123%3Aco%3A0%3Ans%3A1675507692386%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675507695%3At%3A%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%20%D0%9F%D0%BE%D0%B5%D0%B7%D0%B4%D0%BA%D0%B0%20%D0%BD%D0%B0%20%D0%B2%D1%8B%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D0%B5%20%28The%20Weekend%20Away%29%202022%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Sat, 04 Feb 2023 10:47:39 GMT
access-control-allow-origin: https://t.lafa.site
set-cookie: yabs-sid=1923517301675507659; Path=/; SameSite=None; Secure
i=9LP3I58jHIp50BLH2xLcL26v1wwE8keI5ILtH50FeBI1qS0ngIT2F60WYMQ/Ka/e8G2HYWTUsp6JN8d0/r3G1J1zDsw=; Expires=Tue, 01-Feb-2033 10:47:36 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=4369435101675507659; Expires=Sun, 04-Feb-2024 10:47:39 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=4369435101675507659; Expires=Sun, 04-Feb-2024 10:47:39 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1707043659.yc.1675507659#1707043659.yrts.1675507659#1707043659.yrtsi.1675507659; Expires=Sun, 04-Feb-2024 10:47:39 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 10:47:39 GMT
last-modified: Sat, 04-Feb-2023 10:47:39 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
t.lafa.site/pic/menu.svg
200 OK 0 B IP
GET /pic/menu.svg HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/themes/TBDev/TBDev.css?v=69
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/svg+xml
last-modified: Mon, 22 Feb 2021 18:39:33 GMT
vary: Accept-Encoding
etag: W/"6033fa65-18f"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
content-encoding: gzip
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/gonetdspis/MWM2ODE5ZGMyMTk5YzllZA
302 Found 0 B URL HTTP/2 an.yandex.ru/mapuid/gonetdspis/MWM2ODE5ZGMyMTk5YzllZA
IP
GET /mapuid/gonetdspis/MWM2ODE5ZGMyMTk5YzllZA HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/gonetdspis/MWM2ODE5ZGMyMTk5YzllZA?redir-setuniq=1
date: Sat, 04 Feb 2023 10:47:39 GMT
set-cookie: yandexuid=7165286891675507659; domain=.yandex.ru; path=/; expires=Tue, 01-Feb-2033 10:47:39 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04 Feb 2023 10:47:39 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 04 Feb 2023 10:47:39 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
200 OK 0 B URL HTTP/2 t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
IP
GET /film/Triller/poezdka-na-vihodnie.htm HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: text/html; charset=windows-1251
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
set-cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; path=/; secure; HttpOnly
c_24h=1675507657; expires=Sun, 05-Feb-2023 10:47:37 GMT; Max-Age=86400; path=/; domain=t.lafa.site; HttpOnly
x-frame-options: SAMEORIGIN
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
data.24smi.net/cfg?object=25495&ver=41&pio=true&pps=true&callback=__smiCb1675507693185
200 OK 0 B URL HTTP/2 data.24smi.net/cfg?object=25495&ver=41&pio=true&pps=true&callback=__smiCb1675507693185
IP
GET /cfg?object=25495&ver=41&pio=true&pps=true&callback=__smiCb1675507693185 HTTP/1.1
Host: data.24smi.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: text/javascript; charset=utf-8
cache-control: no-store
set-cookie: smi_uid=0kWEIJ2e-; max-age=31536000; domain=.24smi.net; path=/; secure; SameSite=None
strict-transport-security: max-age=0
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7942d44fb8d21bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Inter:wght@500&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Inter:wght@500&display=swap
IP
GET /css2?family=Inter:wght@500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 10:47:38 GMT
date: Sat, 04 Feb 2023 10:47:38 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fast.rocketme.top/rocketme_v_2.1.js
200 OK 0 B URL HTTP/2 fast.rocketme.top/rocketme_v_2.1.js
IP
GET /rocketme_v_2.1.js HTTP/1.1
Host: fast.rocketme.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.0
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: application/javascript
last-modified: Fri, 19 Aug 2022 08:27:03 GMT
vary: Accept-Encoding
etag: W/"62ff4957-4b9a"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
t.lafa.site/js/jquery.lazyload.min.js
200 OK 0 B URL HTTP/2 t.lafa.site/js/jquery.lazyload.min.js
IP
GET /js/jquery.lazyload.min.js HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: application/javascript
last-modified: Sat, 09 May 2020 21:37:58 GMT
vary: Accept-Encoding
etag: W/"5eb722b6-d35"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
content-encoding: gzip
X-Firefox-Spdy: h2
t.lafa.site/themes/TBDev/images/search-btn.svg
200 OK 0 B URL HTTP/2 t.lafa.site/themes/TBDev/images/search-btn.svg
IP
GET /themes/TBDev/images/search-btn.svg HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/themes/TBDev/TBDev.css?v=69
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/svg+xml
last-modified: Sun, 28 Feb 2021 10:31:42 GMT
vary: Accept-Encoding
etag: W/"603b710e-720"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
content-encoding: gzip
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/gonetdspis/MWM2ODE5ZGMyMTk5YzllZA?redir-setuniq=1
200 OK 0 B URL HTTP/2 an.yandex.ru/mapuid/gonetdspis/MWM2ODE5ZGMyMTk5YzllZA?redir-setuniq=1
IP
GET /mapuid/gonetdspis/MWM2ODE5ZGMyMTk5YzllZA?redir-setuniq=1 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Sat, 04 Feb 2023 10:47:39 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04 Feb 2023 10:47:39 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 04 Feb 2023 10:47:39 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
t.lafa.site/pic/bullet_white_alt.svg
200 OK 0 B URL HTTP/2 t.lafa.site/pic/bullet_white_alt.svg
IP
GET /pic/bullet_white_alt.svg HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/themes/TBDev/TBDev.css?v=69
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/svg+xml
last-modified: Mon, 22 Feb 2021 18:39:32 GMT
vary: Accept-Encoding
etag: W/"6033fa64-115"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
content-encoding: gzip
X-Firefox-Spdy: h2
www.acint.net/oci.js?t=1675507693738
200 OK 0 B URL HTTP/2 www.acint.net/oci.js?t=1675507693738
IP
GET /oci.js?t=1675507693738 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: application/x-javascript
last-modified: Mon, 09 Jan 2023 08:01:12 GMT
etag: W/"63bbc9c8-7dac"
content-encoding: gzip
X-Firefox-Spdy: h2
t.lafa.site/pic/magnet.svg
200 OK 0 B URL HTTP/2 t.lafa.site/pic/magnet.svg
IP
GET /pic/magnet.svg HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/svg+xml
last-modified: Mon, 22 Feb 2021 18:39:33 GMT
vary: Accept-Encoding
etag: W/"6033fa65-59b"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
content-encoding: gzip
X-Firefox-Spdy: h2
t.lafa.site/pic/arrowdown.svg
200 OK 0 B URL HTTP/2 t.lafa.site/pic/arrowdown.svg
IP
GET /pic/arrowdown.svg HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/svg+xml
last-modified: Mon, 22 Feb 2021 20:32:41 GMT
vary: Accept-Encoding
etag: W/"603414e9-160"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
content-encoding: gzip
X-Firefox-Spdy: h2
vak345.com/s.js?v=5c1e9cf88fa8a3b040df2be903c3fc47
200 OK 0 B URL HTTP/2 vak345.com/s.js?v=5c1e9cf88fa8a3b040df2be903c3fc47
IP
GET /s.js?v=5c1e9cf88fa8a3b040df2be903c3fc47 HTTP/1.1
Host: vak345.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-movieads-country: NO
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a4vL586y1saKqPbVJbCeZwendrTabQst3Raj230DWikkX15N3hJAXrOcnyG%2B36RD8hU77v4jWlFjyD5dVlBkB1x0OLHlL7lbsbvy8GZ8%2Ftx%2BrE3uZb2k3DrVoKsb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7942d44e5f1eb4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
t.lafa.site/pic/stamp.svg
200 OK 0 B URL HTTP/2 t.lafa.site/pic/stamp.svg
IP
GET /pic/stamp.svg HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/themes/TBDev/TBDev.css?v=69
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/svg+xml
last-modified: Sat, 27 Feb 2021 12:10:20 GMT
vary: Accept-Encoding
etag: W/"603a36ac-122a"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
content-encoding: gzip
X-Firefox-Spdy: h2
cdn-rtb.sape.ru/js/vast/player.min.js
200 OK 0 B URL HTTP/2 cdn-rtb.sape.ru/js/vast/player.min.js
IP
GET /js/vast/player.min.js HTTP/1.1
Host: cdn-rtb.sape.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 10:47:38 GMT
content-type: text/javascript
content-security-policy: block-all-mixed-content
etag: W/"c6b01541f3febc658823ebcfe0841eb7"
last-modified: Thu, 13 Oct 2022 07:59:01 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-request-id: 172BB5ACD5C66C5C
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
expires: Sun, 05 Feb 2023 10:47:38 GMT
cache-control: max-age=86400
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
x-cache-status: HIT
X-Firefox-Spdy: h2
t.lafa.site/pic/arrow_right.svg
200 OK 0 B URL HTTP/2 t.lafa.site/pic/arrow_right.svg
IP
GET /pic/arrow_right.svg HTTP/1.1
Host: t.lafa.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t.lafa.site/film/Triller/poezdka-na-vihodnie.htm
Cookie: PHPSESSID=to4eg7533ndu3clrfs1u4agg1u; c_24h=1675507657
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 10:47:37 GMT
content-type: image/svg+xml
last-modified: Mon, 22 Feb 2021 18:44:49 GMT
vary: Accept-Encoding
etag: W/"6033fba1-1d8"
expires: Mon, 05 Feb 2024 10:47:37 GMT
cache-control: max-age=31622400, public, no-transform
content-encoding: gzip
X-Firefox-Spdy: h2
198.251.89.77
188.114.98.234
172.67.192.102
193.3.184.227
65.108.236.88
207.180.255.39
193.200.64.20
104.18.20.226
93.184.220.29
23.33.119.27